List all risks in library
🔒 Requires Risk Management: List Risks permission.
💎 Requires your account have the Risk Management Pro feature. Contact your CSM for help upgrading.
Malformed data and/or validation errors
Invalid Authorization
You must upgrade your plan to use this feature
You are not allowed to perform this action
You must accept the Drata terms and conditions to use the API
Internal server error
{- "data": [
- {
- "id": 1,
- "riskId": "AC-04",
- "title": "Password Management - Password Cracking",
- "description": "An attacker attempts to gain access to organizational information by guessing of passwords.",
- "controls": [
- {
- "id": 23,
- "code": "DCF-01",
- "name": "Hello",
- "description": "this is a description",
- "isReady": true,
- "controlNumber": 1,
- "archivedAt": 1
}
], - "categories": [
- {
- "id": 1,
- "name": "Governance"
}
]
}
], - "page": 1,
- "limit": 10,
- "total": 100
}Copy risks between library and register
🔒 Requires Risk Management: Create Risk permission.
💎 Requires your account have the Risk Management Pro feature. Contact your CSM for help upgrading.
Malformed data and/or validation errors
Invalid Authorization
You must upgrade your plan to use this feature
You are not allowed to perform this action
You must accept the Drata terms and conditions to use the API
Internal server error
{- "bulkActionType": "COPY_BY_IDS",
- "risksIds": [
- "AA-01",
- "AA-02",
- "AA-03"
], - "riskGroups": [
- "CLOUD_ENVIRONMENT"
]
}{- "risks": [
- {
- "id": 1,
- "riskId": "AC-04",
- "title": "Password Management - Password Cracking",
- "description": "An attacker attempts to gain access to organizational information by guessing of passwords.",
- "treatmentPlan": "UNTREATED",
- "treatmentDetails": "Building doors can be open and an unauthorized person can walk in.",
- "anticipatedCompletionDate": "2025-07-01T16:45:55.246Z",
- "completionDate": "2025-07-01T16:45:55.246Z",
- "impact": 5,
- "likelihood": 5,
- "score": 5,
- "residualImpact": 5,
- "residualLikelihood": 5,
- "residualScore": 5,
- "applicable": true,
- "status": "ACTIVE",
- "controls": [
- {
- "id": 23,
- "code": "DCF-01",
- "name": "Hello",
- "description": "this is a description",
- "isReady": true,
- "controlNumber": 1,
- "archivedAt": 1
}
], - "categories": [
- {
- "id": 1,
- "name": "Governance"
}
], - "owners": [
- {
- "id": 1,
- "firstName": "Sally",
- "lastName": "Smith",
- "jobTitle": "CEO",
}
], - "reviewers": [
- {
- "id": 1,
- "firstName": "Sally",
- "lastName": "Smith",
- "jobTitle": "CEO",
}
], - "documents": [
- {
- "id": 1,
- "name": "Security Training",
- "createdAt": "2025-07-01T16:45:55.246Z"
}
], - "notes": [
- {
- "id": 1,
- "comment": "Good comment",
- "createdAt": "2025-07-01T16:45:55.246Z",
- "updatedAt": "2025-07-01T16:45:55.246Z",
- "owner": {
- "id": 1,
- "entryId": "aaaaaaaa-bbbb-0000-cccc-dddddddddddd",
- "firstName": "Sally",
- "lastName": "Smith",
- "jobTitle": "CEO",
- "drataTermsAgreedAt": "2025-07-01T16:45:55.246Z",
- "createdAt": "2025-07-01T16:45:55.246Z",
- "updatedAt": "2025-07-01T16:45:55.246Z"
}
}
]
}
]
}Get a risk in the library by id
🔒 Requires Risk Management: Get Risk permission.
💎 Requires your account have the Risk Management Pro feature. Contact your CSM for help upgrading.
Successful
Malformed data and/or validation errors
Invalid Authorization
You must upgrade your plan to use this feature
You are not allowed to perform this action
Not Found
You must accept the Drata terms and conditions to use the API
Internal server error
{- "id": 1,
- "riskId": "AC-04",
- "title": "Password Management - Password Cracking",
- "description": "An attacker attempts to gain access to organizational information by guessing of passwords.",
- "controls": [
- {
- "id": 23,
- "code": "DCF-01",
- "name": "Hello",
- "description": "this is a description",
- "isReady": true,
- "controlNumber": 1,
- "archivedAt": 1
}
], - "categories": [
- {
- "id": 1,
- "name": "Governance"
}
]
}