DrydockDrydock
API

App API

Application info and server configuration endpoints.

Get App information

Returns application name and version.

curl http://drydock:3000/api/app

{
  "name":"drydock",
  "version":"1.4.0"
}

Get server configuration

Returns the server configuration, webhook status, and legacy input compatibility summary.

curl http://drydock:3000/api/server

{
  "configuration": {
    "port": 3000,
    "feature": { "delete": false },
    "webhook": { "enabled": true }
  },
  "compatibility": {
    "legacyInputs": {}
  }
}

Get security runtime status

Returns the availability status of security tools (Trivy scanner, Cosign signature verification) and SBOM configuration. Use this to check whether the runtime environment has the required binaries before triggering scans.

curl http://drydock:3000/api/server/security/runtime

{
  "checkedAt": "2024-12-01T10:00:00.000Z",
  "ready": true,
  "scanner": {
    "enabled": true,
    "command": "trivy",
    "commandAvailable": true,
    "status": "ready",
    "message": "Trivy client is ready",
    "scanner": "trivy",
    "server": ""
  },
  "signature": {
    "enabled": false,
    "command": "",
    "commandAvailable": null,
    "status": "disabled",
    "message": "Signature verification is disabled"
  },
  "sbom": {
    "enabled": true,
    "formats": ["spdx-json", "cyclonedx-json"]
  },
  "requirements": []
}

Response fields

FieldTypeDescription
checkedAtstringISO 8601 timestamp of the check
readybooleantrue when the scanner is enabled and its command is available
scanner.enabledbooleanWhether vulnerability scanning is configured
scanner.commandstringScanner command (e.g. trivy)
scanner.commandAvailableboolean | nullWhether the command was found in the runtime; null when disabled
scanner.statusstringready, missing, or disabled
scanner.serverstringTrivy server URL (empty when using local mode)
signature.enabledbooleanWhether signature verification is configured
signature.commandstringCosign command
signature.commandAvailableboolean | nullWhether cosign was found in the runtime
signature.statusstringready, missing, or disabled
sbom.enabledbooleanWhether SBOM generation is enabled
sbom.formatsstring[]Configured SBOM output formats
requirementsstring[]Human-readable list of missing dependencies (empty when everything is ready)

Returns 200 on success, or 500 if the runtime check fails.

Agent API

The Agent exposes specific endpoints for the Controller to synchronize state and receive events.

Container API

This API allows to query the state of the watched containers.

On this page

Get App informationGet server configurationGet security runtime statusResponse fields