V1 API
About the V1 API
The Snyk API is available only for Enterprise plans.
For more information, see Plans and pricing.
The V1 API will be sunset eventually, as further Snyk developments are now focused on the REST API.
The V1 API enables you to test a package for issues as they are defined by Snyk, and to automate Snyk processes to accomplish your specific workflows. Customers and partners can perform functions including:
Accessing vulnerability data
Scanning Projects and applications
Receiving remediation advice
Viewing user data to build custom security solutions
The V1 API endpoints are available in the Reference in the Snyk user docs. Updates are made in the user docs. Endpoints migrated to the user docs remain online also.
API URLs
Snyk is hosted in the following regions. Each region has its own base URL.
SNYK-US-01
https://api.snyk.io/v1/
SNYK-US-02
https://api.us.snyk.io/v1/
SNYK-EU-01
https://api.eu.snyk.io/v1/
SNYK-AU-01
https://api.au.snyk.io/v1/
This API is available only over HTTPS. Calling the API over HTTP will yield a 404 for all requests.
Authorization
To use this API, you must get your token from Snyk. You can find the token in your personal account settings after you register with Snyk and log in. For details, see Authentication for API.
Provide the token in an Authorization header with the token, preceded by token:
Otherwise, a 401 "Unauthorized" response will be returned.
Rate limiting
Snyk limits the requests to the V1 API to help provide a stable experience for customers.
The V1 API has a default rate limit of 2,000 requests per minute, but some specific endpoints have lower limits. Refer to the reference docs for each endpoint to see the rate limits.
If you exceed the rate limit, you will receive a 429 error response.
Errors
The V1 API uses standard HTTP error codes for error responses.
The error reference is also supplied in the x-error-reference header in the server reply.
Example 500 response:
Last updated