Skip to content
  • Home
    • PastWipe Main
    • World RepSec Map
    • Dashboard
    • Why PastWipe
  • Demo
    • World RepSec Map
    • Demo (Happy/Attack)
    • RepSec Rapid Pilot
    • Pilot
    • PastWipe Conditional Usability Demo
  • Partner Hub
    • Getting Started
    • Login
    • Integrations
    • Partner Dashboard
      • Partner Application
      • Register A Deal
      • NDA
  • Support
    • Status
    • SLA Agreement
    • Technical Hub
  • Training Campus
    • Getting Started
    • Training Catalog
    • Integration Guides
  • Checkout
    • Cart
  • My account

Integration Guides

Implement RepSec™ using our API, SDKs & CLI. Quick start, auth, sample calls, webhooks, and resources.

API Reference Service Status Back to Account 2-min RepSec Overview
Contents
Quick Start SDKs & CLI Authentication Sample Calls Webhooks Resources

Quick Start

  1. Get your API key from /account/ (or /my-account/).
  2. Open the API Reference for endpoints & schemas.
  3. (Optional) Import Postman: PastWipe_RepSec_API.postman_collection.json.
  4. Download tools below (SDK / CLI) and run the sample calls.
  5. Configure webhooks to receive breach/neutralization notifications.

Need help? Visit /support/ or check /status/.

SDKs & CLI

Current release: v0.9.1 (protected downloads; login required).

Download RepSec SDK v0.9.1 Download RepSec CLI v0.9.1

Access: Partners & Pilot Customers.

Authentication

Send your API key with every request. Optional HMAC signature adds tamper protection.

# Required header
X-PastWipe-Key: <YOUR_API_KEY>

# Optional request signing
X-PastWipe-Signature: <HMAC hex>

# Basic cURL (replace {BASE_URL} and adjust path per /docs-api/)
curl -X POST "{BASE_URL}/v1/attestations" \
  -H "Content-Type: application/json" \
  -H "X-PastWipe-Key: <YOUR_API_KEY>" \
  -d '{ "asset_id":"file-123", "policy":"no-reuse-on-breach" }'

Sample Calls

Create Attestation

POST {BASE_URL}/v1/attestations
{
  "asset_id":"file-123",
  "hash_alg":"SHA-256",
  "hash":"e3b0c44298fc1c149afbf4c8996fb924...",
  "policy":"no-reuse-on-breach"
}

Neutralize (apply policy)

POST {BASE_URL}/v1/neutralizations
{
  "asset_id":"file-123",
  "reason":"revoked_by_owner",
  "note":"pilot test"
}

Verify Proof

POST {BASE_URL}/v1/verify
{
  "asset_id":"file-123",
  "proof":"<paste-proof>"
}

Register Breach Event

POST {BASE_URL}/v1/breaches
{
  "event_id":"br-2025-0001",
  "scope":"asset",
  "asset_id":"file-123",
  "timestamp":"2025-11-04T12:00:00Z"
}

Full schemas & responses: see /docs-api/.

Webhooks

Receive JSON events (attestation created, policy applied, breach registered) at your HTTPS endpoint.

Delivery
HTTP POST with HMAC header X-PastWipe-Signature
Retries
Exponential backoff on non-2xx responses
Security
Verify HMAC with your shared secret

Example Payload

{
  "type":"breach.registered",
  "id":"evt_01HXYZ",
  "created":"2025-11-04T12:00:00Z",
  "data":{
    "event_id":"br-2025-0001",
    "scope":"asset",
    "asset_id":"file-123"
  }
}

Resources

API Reference Postman Collection RepSec Overview Service Status Developer Support Account
Back to top

Environment

API Docs
/docs-api/
Status
/status/
Account
/account/

Exact base URLs and paths are listed in the API reference.

Need help?

Open a ticket and include request or event IDs where possible.

Contact Support

Integration Guides

Implement RepSec™ using our API, SDKs & CLI. Quick start, auth, sample calls, webhooks, and resources.

API Reference Service Status Back to Account 2-min RepSec Overview
Contents
Quick Start SDKs & CLI Authentication Sample Calls Webhooks Resources

Quick Start

  1. Get your API key from /account/ (or /my-account/).
  2. Open the API Reference for endpoints & schemas.
  3. (Optional) Import Postman: PastWipe_RepSec_API.postman_collection.json.
  4. Download tools below (SDK / CLI) and run the sample calls.
  5. Configure webhooks to receive breach/neutralization notifications.

Need help? Visit /support/ or check /status/.

SDKs & CLI

Current release: v0.9.1 (protected downloads; login required).

Download RepSec SDK v0.9.1 Download RepSec CLI v0.9.1

Access: Partners & Pilot Customers.

Authentication

Send your API key with every request. Optional HMAC signature adds tamper protection.

# Required header
X-PastWipe-Key: <YOUR_API_KEY>

# Optional request signing
X-PastWipe-Signature: <HMAC hex>

# Basic cURL (replace {BASE_URL} and adjust path per /docs-api/)
curl -X POST "{BASE_URL}/v1/attestations" \
  -H "Content-Type: application/json" \
  -H "X-PastWipe-Key: <YOUR_API_KEY>" \
  -d '{ "asset_id":"file-123", "policy":"no-reuse-on-breach" }'

Sample Calls

Create Attestation

POST {BASE_URL}/v1/attestations
{
  "asset_id":"file-123",
  "hash_alg":"SHA-256",
  "hash":"e3b0c44298fc1c149afbf4c8996fb924...",
  "policy":"no-reuse-on-breach"
}

Neutralize (apply policy)

POST {BASE_URL}/v1/neutralizations
{
  "asset_id":"file-123",
  "reason":"revoked_by_owner",
  "note":"pilot test"
}

Verify Proof

POST {BASE_URL}/v1/verify
{
  "asset_id":"file-123",
  "proof":"<paste-proof>"
}

Register Breach Event

POST {BASE_URL}/v1/breaches
{
  "event_id":"br-2025-0001",
  "scope":"asset",
  "asset_id":"file-123",
  "timestamp":"2025-11-04T12:00:00Z"
}

Full schemas & responses: see /docs-api/.

Webhooks

Receive JSON events (attestation created, policy applied, breach registered) at your HTTPS endpoint.

Delivery
HTTP POST with HMAC header X-PastWipe-Signature
Retries
Exponential backoff on non-2xx responses
Security
Verify HMAC with your shared secret

Example Payload

{
  "type":"breach.registered",
  "id":"evt_01HXYZ",
  "created":"2025-11-04T12:00:00Z",
  "data":{
    "event_id":"br-2025-0001",
    "scope":"asset",
    "asset_id":"file-123"
  }
}

Resources

API Reference Postman Collection RepSec Overview Service Status Developer Support Account
Back to top

Environment

API Docs
/docs-api/
Status
/status/
Account
/account/

Exact base URLs and paths are listed in the API reference.

Need help?

Open a ticket and include request or event IDs where possible.

Contact Support
Portal PastWipe

PastWipe is the trusted backbone for privacy: secure, scalable, and audit-ready protection that neutralizes stolen data and upholds compliance for organizations and individuals worldwide.

Navigation

  • Account
  • RepSec Live Demo
  • Partner Hub
  • Support
  • Integrations

Quick Links

  • Trust
  • NDA
  • Resources
  • Live
  • Status

© 2026 PastWipe. All rights reserved - USPTO Patent Pending - 63/894,457 - RepSec

SiteLock