Skip to main content
GET
/
accounts
/
{account_id}
/
container_runtime_insights
/
{id}
Get Container Runtime Insight
curl --request GET \
  --url https://api.prd.rad.security/accounts/{account_id}/container_runtime_insights/{id}
{
  "accountID": "<string>",
  "analysis": [
    {
      "accountID": "<string>",
      "action": "<string>",
      "category": "<string>",
      "clusterID": "<string>",
      "createdAt": "<string>",
      "deletedAt": "<string>",
      "description": "<string>",
      "falsePositive": true,
      "falsePositiveMatchedRules": [
        "<string>"
      ],
      "falsePositiveReason": "<string>",
      "id": "<string>",
      "insightID": "<string>",
      "insightIDs": [
        "<string>"
      ],
      "llmProvider": "<string>",
      "maliciousProcessIDs": [
        "<string>"
      ],
      "mitreAttackTactics": [
        {
          "id": "<string>",
          "link": "<string>",
          "name": "<string>"
        }
      ],
      "mitreAttackTechniques": [
        {
          "id": "<string>",
          "link": "<string>",
          "name": "<string>",
          "tactics": [
            {
              "id": "<string>",
              "link": "<string>",
              "name": "<string>"
            }
          ]
        }
      ],
      "model": "<string>",
      "partial": true,
      "prompt": "<string>",
      "promptDigest": "<string>",
      "refs": [
        "<string>"
      ],
      "remediation": "<string>",
      "severity": "<string>",
      "stale": true,
      "status": "<string>",
      "totalRequests": 123,
      "triggeredBy": "<string>",
      "updatedAt": "<string>"
    }
  ],
  "baseline": {
    "apiVersion": "<string>",
    "containers": [
      {
        "id": "<string>",
        "imageDigest": "<string>",
        "imageName": "<string>",
        "name": "<string>",
        "processes": [
          {
            "children": [
              "<any>"
            ],
            "connections": [
              "<any>"
            ],
            "drift": true,
            "files": [
              "<any>"
            ],
            "gid": 123,
            "id": "<string>",
            "parentId": "<string>",
            "programs": [
              "<any>"
            ],
            "repetition": {},
            "timestamp": "<string>",
            "trustedIPPrefixes": [
              "<any>"
            ],
            "uid": 123
          }
        ]
      }
    ],
    "kind": "<string>",
    "metadata": {
      "creationTimestamp": "<string>"
    }
  },
  "baselineCaptured": true,
  "baselineID": "<string>",
  "clusterID": "<string>",
  "createdAt": "<string>",
  "deletedAt": "<string>",
  "hasDrift": true,
  "id": "<string>",
  "llmAnalysis": {
    "accountID": "<string>",
    "action": "<string>",
    "category": "<string>",
    "clusterID": "<string>",
    "createdAt": "<string>",
    "deletedAt": "<string>",
    "description": "<string>",
    "falsePositive": true,
    "falsePositiveMatchedRules": [
      "<string>"
    ],
    "falsePositiveReason": "<string>",
    "id": "<string>",
    "insightID": "<string>",
    "insightIDs": [
      "<string>"
    ],
    "llmProvider": "<string>",
    "maliciousProcessIDs": [
      "<string>"
    ],
    "mitreAttackTactics": [
      {
        "id": "<string>",
        "link": "<string>",
        "name": "<string>"
      }
    ],
    "mitreAttackTechniques": [
      {
        "id": "<string>",
        "link": "<string>",
        "name": "<string>",
        "tactics": [
          {
            "id": "<string>",
            "link": "<string>",
            "name": "<string>"
          }
        ]
      }
    ],
    "model": "<string>",
    "partial": true,
    "prompt": "<string>",
    "promptDigest": "<string>",
    "refs": [
      "<string>"
    ],
    "remediation": "<string>",
    "severity": "<string>",
    "stale": true,
    "status": "<string>",
    "totalRequests": 123,
    "triggeredBy": "<string>",
    "updatedAt": "<string>"
  },
  "malicious": true,
  "ongoing": {
    "apiVersion": "<string>",
    "containers": [
      {
        "id": "<string>",
        "imageDigest": "<string>",
        "imageName": "<string>",
        "name": "<string>",
        "processes": [
          {
            "children": [
              "<any>"
            ],
            "connections": [
              "<any>"
            ],
            "drift": true,
            "files": [
              "<any>"
            ],
            "gid": 123,
            "id": "<string>",
            "parentId": "<string>",
            "programs": [
              "<any>"
            ],
            "repetition": {},
            "timestamp": "<string>",
            "trustedIPPrefixes": [
              "<any>"
            ],
            "uid": 123
          }
        ]
      }
    ],
    "kind": "<string>",
    "metadata": {
      "creationTimestamp": "<string>"
    }
  },
  "severity": "<string>",
  "state": "<string>",
  "summary": {
    "container_meta": {
      "container_id": "<string>",
      "container_image_digest": "<string>",
      "container_image_name": "<string>",
      "container_name": "<string>",
      "runtime_name": "<string>"
    },
    "createdAt": "<string>",
    "deletedAt": "<string>",
    "kube_meta": {
      "cluster_id": "<string>",
      "container_name": "<string>",
      "namespace": "<string>",
      "node_name": "<string>",
      "pod_name": "<string>"
    }
  },
  "updatedAt": "<string>"
}

Path Parameters

account_id
string
required

Account id

id
string
required

Insight id

Query Parameters

children_limit
integer
default:100

Children limit

most_recent_limit
integer
default:1000

Most recent limit

Response

OK

accountID
string
analysis
object[]
baseline
object
baselineCaptured
boolean
baselineID
string
clusterID
string
createdAt
string
deletedAt
string
hasDrift
boolean
id
string
llmAnalysis
object
malicious
boolean
ongoing
object
severity
string
state
string
summary
object
updatedAt
string