GET /api/agent-profiles/{id}/governor-audit — the profile's most recent governor audit report (golden-set/judge quality verdict over the last window), or `null` when the governor has not yet audited the profile. Workspace-admin read.
const url = 'https://example.com/api/agent-profiles/2489E9AD-2EE2-8E00-8EC9-32D5F69181C0/governor-audit';const options = {method: 'GET', headers: {cookie: 'supacloud_session=<supacloud_session>'}};
try { const response = await fetch(url, options); const data = await response.json(); console.log(data);} catch (error) { console.error(error);}curl --request GET \ --url https://example.com/api/agent-profiles/2489E9AD-2EE2-8E00-8EC9-32D5F69181C0/governor-audit \ --cookie supacloud_session=<supacloud_session>Authorizations
Section titled “Authorizations”Parameters
Section titled “Parameters”Path Parameters
Section titled “Path Parameters”Agent-profile ID whose latest governor audit to read
Responses
Section titled “Responses”The latest governor audit report for the profile, or null when none has run yet
A persisted governor audit report projected for the read API (the agent-profile
editor’s “Governor audit” card). Carries the audit window, the calibration kappa
and the self-describing metrics blob (success rate, mean reward/cost, judge-
trust verdict, quality score) so the FE renders the headline numbers without a
second round trip. agent_profile_id is None on a workspace-wide audit.
object
Cohen’s kappa of the LLM judge vs ground truth (None until enough
calibration samples — the judge is then untrusted and the verdict is
deterministic).
The self-describing aggregate: sample_count, success_rate, mean_reward,
mean_cost_usd, judge_trusted, quality_score, verdict_source. Runtime
stays serde_json::Value; the spec types it as [GovernorAuditMetrics].
object
Examplegenerated
{ "agent_profile_id": "2489E9AD-2EE2-8E00-8EC9-32D5F69181C0", "created_at": "2026-04-15T12:00:00Z", "id": "2489E9AD-2EE2-8E00-8EC9-32D5F69181C0", "kappa": 1, "metrics": { "calibration_samples": 1, "judge_trusted": true, "mean_cost_usd": 1, "mean_reward": 1, "quality_score": 1, "sample_count": 1, "success_rate": 1, "verdict_source": "example" }, "period_end": "2026-04-15T12:00:00Z", "period_start": "2026-04-15T12:00:00Z"}Authentication required
The canonical JSON body of every error response — the single source of truth
the frontend binds to. Every AppError serializes as this exact shape, and
the generated OpenAPI component ApiErrorBody (with its ErrorCode enum) is
what the frontend error schema is generated from, so there is no hand-written
error schema on either end.
object
Machine-readable, stable error code.
Present only on a quota-exceeded 403 — the inline upgrade-CTA payload.
object
The entitlement feature key that was hit, e.g. apps.max_count.
The plan’s limit for this key.
Where to send the user to upgrade.
Current usage (count or bytes, per the key).
Human-readable message (the server’s English text; the client may localize
by code).
Example
{ "code": "not_found"}Permission denied
The canonical JSON body of every error response — the single source of truth
the frontend binds to. Every AppError serializes as this exact shape, and
the generated OpenAPI component ApiErrorBody (with its ErrorCode enum) is
what the frontend error schema is generated from, so there is no hand-written
error schema on either end.
object
Machine-readable, stable error code.
Present only on a quota-exceeded 403 — the inline upgrade-CTA payload.
object
The entitlement feature key that was hit, e.g. apps.max_count.
The plan’s limit for this key.
Where to send the user to upgrade.
Current usage (count or bytes, per the key).
Human-readable message (the server’s English text; the client may localize
by code).
Example
{ "code": "not_found"}Structured server error
The canonical JSON body of every error response — the single source of truth
the frontend binds to. Every AppError serializes as this exact shape, and
the generated OpenAPI component ApiErrorBody (with its ErrorCode enum) is
what the frontend error schema is generated from, so there is no hand-written
error schema on either end.
object
Machine-readable, stable error code.
Present only on a quota-exceeded 403 — the inline upgrade-CTA payload.
object
The entitlement feature key that was hit, e.g. apps.max_count.
The plan’s limit for this key.
Where to send the user to upgrade.
Current usage (count or bytes, per the key).
Human-readable message (the server’s English text; the client may localize
by code).
Example
{ "code": "not_found"}