Get Complete Scan Results
Get the complete results of a scan job including all vulnerabilities, tools scanned, and detailed analysis. Results are only available for completed jobs.
Enterprise data-license feature: requires MCP Hub API access enabled for your organization, otherwise returns 403. Contact support@enkryptai.com.
Authorizations
Path Parameters
Unique scan job UUID
"123e4567-e89b-12d3-a456-426614174000"
Response
Complete scan results retrieved
Complete results of a finished scan job. Ownership/registry fields (org_id, user_id, project_name, registry_name) are only populated for private jobs; for public jobs they are returned as null. These fields mirror the x-enkrypt-* response headers.
Full scan output: vulnerabilities, tools scanned, and analysis metadata. Present once job_status is completed.
Whether the scanned server is an official registry entry. Mirrors x-enkrypt-is-official header.
Whether the scan is private (scoped to the calling account). Mirrors x-enkrypt-is-private header.
Scan type. Mirrors x-enkrypt-scan-type header.
source, hosted, null Repository / server identifier. Mirrors x-enkrypt-repo-name header.
Hosted MCP server endpoint URL (hosted scans only). Mirrors x-enkrypt-endpoint-url header.
Authentication type used for the hosted scan (hosted scans only). Mirrors x-enkrypt-auth-type header.
Source URL of the scanned package or repository (source scans only). Same value exposed by GET /mcp-hub/scan/{job_id}/status and GET /mcp-hub/scans.
Source version or git commit of the scanned source (source scans only).
Scanner version that produced this result. Disambiguates multiple scans of the same (source_url, source_version).
Organization ID. Only populated when the job is private.
User ID. Only populated when the job is private.
Project name. Only populated when the job is private.
Registry name. Only populated when the job is private.

