Skip to main content

Reference

Dry, complete lookup material. Use this section to confirm exact values, not to learn concepts — for the "why," see Concepts.

In this section

  • Data-class catalog — the full list of classes, risk levels, and detectors.
  • Policy-action catalog — every enforcement action and internet mode.
  • RBAC permissions — the permission catalog and the default roles.
  • Audit event schema — the decision record and the governance event taxonomy.
  • Glossary — every ThreatLens term, defined.
  • Configuration reference (coming) — environment variables and settings.

Integrations & API

ThreatLens supports programmatic integration for common enterprise needs — exporting audit and governance events to your SIEM, provisioning identity through SSO, connecting your own model providers (BYOK), and automating deployment.

API reference availability

A high-level integrations and capabilities guide is published here. The full endpoint-level API reference is provided to integration customers on request, rather than published openly, while the API matures into a stable, supported public contract. Contact your ThreatLens representative for access.