GET/api/v1/compliance/posture/history

Compliance posture snapshot time-series

Returns the org's posture snapshot history for one or more frameworks. Backed by `compliance_posture_snapshots` written by the SOC 2 evidence collector worker (one snapshot per day per (org, framework) via the unique constraint). Auditors use this to show coverage trends; customers use it to correlate posture drops with operational events. Returns empty series if the migration hasn't been applied yet.

Authentication

Send Authorization: Bearer YOUR_API_KEY on every request. Generate API keys at /dashboard/api-keys.

Parameters

orgId in queryrequired
string
framework in query

When omitted, returns snapshots across all frameworks (use byFramework field to group).

string
from in query

Defaults to now - 90 days.

string
to in query

Defaults to now.

string
limit in query
integer

Response

200 example

{
  "success": true
}

All status codes

200Snapshot list + byFramework grouping + window metadata.
400Invalid params.

Code samples

cURL

curl -X GET \
  https://evalguard.ai/api/v1/compliance/posture/history \
  -H "Authorization: Bearer $EVALGUARD_API_KEY" \

TypeScript

import { EvalGuard } from "@evalguard/sdk";

const client = new EvalGuard({ apiKey: process.env.EVALGUARD_API_KEY });

const response = await client.request({
  method: "GET",
  path: "/api/v1/compliance/posture/history",
});
console.log(response);

Python

from evalguard import EvalGuard
import os

client = EvalGuard(api_key=os.environ["EVALGUARD_API_KEY"])

response = client.request(method="GET", path="/api/v1/compliance/posture/history")
print(response)

Go

package main

import (
	"context"
	"fmt"
	"os"

	"github.com/evalguard/evalguard-go"
)

func main() {
	client := evalguard.NewClient(os.Getenv("EVALGUARD_API_KEY"))
	resp, err := client.Request(context.Background(), "GET", "/api/v1/compliance/posture/history", nil)
	if err != nil { panic(err) }
	fmt.Println(resp)
}

Errors

400

Other Compliance endpoints