API reference.

A direct, documented REST/SSE API is on the roadmap — not generally available yet. We'd rather point you at what actually works today than publish an endpoint table you can't call.

§ 01 · Integrate today: the CLI

The CLI is the supported programmatic surface. It emits machine-readable output you can pipe into your own tooling:

# JSON — full findings, scriptable
codetitan analyze . --no-ai --format json --output report.json

# SARIF — upload to GitHub code scanning
codetitan analyze . --no-ai --format sarif --output report.sarif

The JSON shape (one object per finding: file_path, line_number, severity, category, message, confidence) is stable — parse it directly. Authenticate cloud-backed runs with an API key; see Authentication.

§ 02 · Integrate today: the GitHub Action

For PR and CI workflows, the GitHub Action runs the same engine on your own runner and writes a SARIF artifact you can upload to the GitHub Security tab. See Installation and Getting started.

§ 03 · On the roadmap

A hosted REST + SSE API (submit a repo, stream findings, fetch reports) is planned. If a direct HTTP integration is on your critical path, tell us your use case at enterprise@codetitan.dev and we'll prioritize it with you.