Configure monitoring
Creates or updates monitoring for an application.
First call — if no monitoring record exists yet, Trusys creates one with default sampling and no metrics or plugins configured.
Subsequent calls — merge updates into the existing configuration; fields you omit are left unchanged.
At least one field must be provided. Configure metrics and/or plugins before calling POST /applications//evaluations — evaluations fail if neither is set.
Authorizations
Your Trusys API key. Create and manage keys in the Trusys UI under Settings → API Keys.
Include the key on every request:
x-api-key: <your-api-key>Path Parameters
Unique identifier (UUID) of the application. Returned by POST /applications.
Body
Monitoring settings. Metric type values come from GET /metrics/eval; plugin IDs from GET /metrics/security.
Monitoring configuration update. At least one field is required.
Quality evaluation metrics to run. Each item is a metric object; include type from the eval catalog and any metric-specific options (for example threshold).
Security plugins grouped by risk category. Values are arrays of plugin IDs (for example harmful:hate).
Shorthand for securityConfig.purpose. Prefer securityConfig when setting multiple security context fields. If both are provided, securityPurpose sets purpose after securityConfig is applied.
Application security context used to tailor adversarial security testing. All fields are optional on update; omitted keys are left unchanged. Provide purpose (or top-level securityPurpose) to describe what the AI application does.