List Executions


GET /v1/executions

List the current user’s pipeline executions. Returns the most recent executions within your tier’s history window, up to a maximum of 50 results.

Authentication

Requires Bearer token (JWT or API key).

Query Parameters

Parameter	Type	Required	Default	Description
`limit`	integer	No	20	Maximum number of results (max 50)

Example Request


curl "https://cloudsigma.a13e.com/v1/executions?limit=10" \
  -H "Authorization: Bearer YOUR_API_KEY"

Response


{
  "success": true,
  "data": {
    "executions": [
      {
        "executionArn": "arn:aws:states:REGION:...:execution:...",
        "inputType": "url",
        "inputValue": "https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-242a",
        "status": "SUCCEEDED",
        "startDate": "2026-02-10T12:00:00Z",
        "rulesGenerated": 5,
        "ttpsExtracted": 8
      },
      {
        "executionArn": "arn:aws:states:REGION:...:execution:...",
        "inputType": "cve",
        "inputValue": "CVE-2025-1974",
        "status": "SUCCEEDED",
        "startDate": "2026-02-09T15:30:00Z",
        "rulesGenerated": 3,
        "ttpsExtracted": 4
      }
    ]
  }
}

Response Fields

Field	Type	Description
`executionArn`	string	Unique execution identifier
`inputType`	string	Input type: `url`, `cve`, or `text`
`inputValue`	string	The URL, CVE ID, or text snippet submitted
`status`	string	`RUNNING`, `SUCCEEDED`, or `FAILED`
`startDate`	string	ISO 8601 timestamp
`rulesGenerated`	integer	Number of Sigma rules generated
`ttpsExtracted`	integer	Number of TTPs extracted

Errors

HTTP	Code	Description
401	`Unauthorized`	Invalid or missing token