Response example for the Get Incidents API

This section shows an example of a response from this API. For more information about each parameter shown in the response, see Response output for the Get Incidents API.

{
"incidents": [
{
"id": 373623,
"severity": "HIGH", "action": "RELEASED", "tag": "Tag",
"status": "Closed", "source": {
"email_address": test2@aaa.com
<keyword>",
}
},
"event_id": "7728775614896485765",
"maximum_matches": 13,
"transaction_size": 2632, "analyzed_by": "Policy Engine 1272021", "ignored_incidents": false, "event_time": "19/10/2021 10:12:02",
"incident_time": "19/10/2021 10:12:02", "channel": "EMAIL",
"policies": "Credit Cards; PCI", "partition_index": 20211019, "destination": aaa@aaa.net, "detected_by": "Protector on 1272021", "details": "Automatic Email Subject with
"released_incident": true, "violation_triggers": 2, "file_name": "visa.txt - 1.09 KB"
],
"total_count": 1,
"total_returned": 1
}
If no incidents were found, the response returns a 420 error code along with a response similar to the following:
{
"incidents": [], "total_count": 0,
"total_returned": 0, "not_found_ids": [
373623111
]
}