HackerOne API Documentation

What can you do with our API?

Pull vulnerability reports

Pull all of your program's vulnerability reports into your own systems to automate your workflows.

Learn about Reports

Access your program information

Manage your program settings and access your current balance and recent transactions.

Learn about Programs

Award a bounty

Award bounties to hackers who have reported a vulnerability. You can also reward hackers for vulnerabilities found outside of HackerOne using the program bounty endpoint.

Learn how to award bounties

Import external findings

Use the Reports API to import findings for external systems or pentests into HackerOne to improve duplicate detection and reporting.

Learn how to import reports