export_threat_model_archive
Export a complete JSON audit archive of a threat model, including versions, controls, findings, and verifiable signatures. The archive supports independent verification via OIDC JWTs and workspace keys.
Instructions
Export the self-contained JSON audit archive for a threat model.
The archive carries every version, controls, assertions (with CI Tier 1/Tier 2 verdicts and attested flags), findings, risk acceptances, assumption overrides, attestations, and instance sufficiency signatures. Independently verifiable — CI OIDC JWTs verify against the issuer's public JWKS, workspace signatures against the workspace's published key, and sufficiency signatures against the origin instance's key (via the target's trusted_signers table).
The backend renders the archive as an async job (the same
cross-model assurance compute that motivated PDF/HTML to migrate
away from synchronous rendering). This tool kicks off the job,
polls for completion via _await_backend_job (reporting progress),
then fetches and decodes the JSON envelope.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| model_id | Yes | ID of the threat model to export. | |
| server_version | Yes |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||