Developer portal
SIEM webhook v2
Field dictionary and signing headers for scan.complete notifications.
Sample payload
Download a signed example: webhook-v2-scan-complete.json. Configure signing in Monitor alert settings (webhookSigningSecret).
Field dictionary
| Field | Type | Notes |
|---|---|---|
| schemaVersion | string | Always qtangl-webhook-v2 |
| event | string | scan.complete |
| tenantId | string | Tenant identifier |
| scanId | string | Completed scan job ID |
| targetDomain | string | Scanned target |
| readinessScore | number | 0–100 composite score |
| readinessBand | string | Human band label |
| verifyUrl | string | Public verify link for report signature |
| evidenceZipUrl | string | Dashboard or bundle export link |
| scanDiff | object | Delta vs previous scan when available |
| alerts | array | Triggered alert rules (readiness drop, new Q-vuln, cert expiry) |
| topFindings | array | Top degraded or new quantum-vulnerable assets |
| message | string | Primary human-readable summary |
Splunk HEC (example)
curl -X POST "$SPLUNK_HEC_URL/services/collector" \
-H "Authorization: Splunk $SPLUNK_TOKEN" \
-d '{"event": <paste qtangl webhook JSON>, "sourcetype": "qtangl:scan"}'See also Monitor setup and Trust center.
Found an issue? Report documentation feedback