> ## Documentation Index
> Fetch the complete documentation index at: https://docs.webacy.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Approvals with Threat Risks

> Retrieve token approvals for an address with associated threat risk analysis



## OpenAPI

````yaml GET /addresses/{address}/approvals
openapi: 3.0.1
info:
  title: Risk Score API
  description: API definition for Webacy Risk Scores
  version: 1.2.0
servers:
  - url: https://api.webacy.com
    description: Webacy Risk Score API (Production)
  - url: https://api-development.webacy.com
    description: Webacy Risk Score API (Development)
  - url: http://0.0.0.0:3030/api/v1/risk-score
    description: Webacy Risk Score API - Local
security:
  - api_key: []
tags:
  - name: Threat Risks
    description: Analyze addresses for security threats and malicious activity
  - name: Sanction Checks
    description: Check addresses against OFAC and other sanction lists
  - name: Approval Risks
    description: Analyze token approvals and associated risks
  - name: Transaction Risks
    description: Assess risk details for blockchain transactions
  - name: Exposure Risk
    description: Understand risk profile and exposure of addresses
  - name: Contract Risk
    description: Real-time smart contract security analysis
  - name: URL Risks
    description: Analyze URLs for phishing and security threats
  - name: API Usage
    description: Monitor and manage API consumption
  - name: Holder Analysis
    description: Token holder distribution and sniper detection
  - name: Address Poisoning
    description: Detect address poisoning attack patterns
  - name: Token Analysis
    description: Comprehensive token security and market analysis
  - name: Pool Analysis
    description: Liquidity pool data and analysis
  - name: Transaction Scanning
    description: Scan and simulate transactions for risks
  - name: trading-lite
    description: Lightweight trading risk assessment
  - name: RWA & Pegged Tokens
    description: >-
      Real-world asset and pegged-token analytics (supply flows, mint/burn
      velocity)
  - name: Vault Risk v3
    description: >-
      Webacy-native v3 vault risk surface — composite grade, categories,
      coverage, and the framework taxonomy (RFC-019).
  - name: RWA Risk v3
    description: >-
      Webacy-native v3 RWA / stablecoin risk surface — composite grade,
      structural-health criteria, and batch (RFC-019).
paths:
  /addresses/{address}/approvals:
    get:
      tags:
        - Approval Risks
      summary: Approvals with threat risks
      description: >-
        Retrieve token approvals for an address with associated threat risk
        analysis
      operationId: getAddressApprovals
      parameters:
        - name: address
          in: path
          required: true
          schema:
            type: string
        - in: query
          name: chain
          description: >-
            Selected chain. This includes 'eth', 'base', 'bsc', 'pol', 'opt' and
            'arb' (EVM chains only for approvals)
          schema:
            type: string
            enum:
              - eth
              - base
              - bsc
              - pol
              - opt
              - arb
        - in: query
          name: hide_trust_flags
          description: >-
            Boolean to determine whether to hide trust-related flags from the
            response
          schema:
            type: boolean
          required: false
      responses:
        '200':
          description: Success
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/approvals'
        '401':
          $ref: '#/components/responses/UnauthorizedError'
      security:
        - api_key: []
components:
  schemas:
    approvals:
      type: object
      properties:
        token_address:
          type: string
          description: Address of token being approved
        chain_id:
          type: string
          description: 'ex: 1'
        token_name:
          type: string
          description: 'ex: USD Coin'
        token_symbol:
          type: string
          description: 'ex: USDC'
        decimals:
          type: number
          description: 'ex: 6'
        balance:
          type: string
          description: 'ex: 0'
        is_open_source:
          type: string
          description: 'ex: 1'
        malicious_address:
          type: string
          description: '0'
        malicious_behavior:
          type: string
          description: 'ex: [''malicious_address'']'
        token_type:
          type: string
          description: 'ex: ERC20'
        approved_list:
          type: array
          items:
            $ref: '#/components/schemas/approvalListItem'
    approvalListItem:
      type: object
      properties:
        approved_contract:
          type: string
          example: '0xdc9524a8774dc2956bdb8b55fdf91938757f3185'
        approved_amount:
          type: string
          example: '2134234.234234'
        approved_time:
          type: string
          example: 1709418647
        initial_approval_time:
          type: string
          example: 1709418647
        initial_approval_hash:
          type: string
          example: '0x9a10e981d8f5b0cd521195b43d5f1021faa460ef6d646c901507d0bc2f17257e'
        hash:
          type: string
          example: '0x9a10e981d8f5b0cd521195b43d5f1021faa460ef6d646c901507d0bc2f17257e'
        address_info:
          type: object
        risk:
          $ref: '#/components/schemas/issueQuickProfile'
    issueQuickProfile:
      type: object
      properties:
        transaction:
          type: object
          properties:
            transaction_hash:
              type: string
              description: Hash of the transaction
              example: >-
                0x6cd992fcf67cc17f6d9be1f9aec8433d75471d3b58e3b32c473fdcb1c0536439
            transaction_id:
              type: string
              description: ID of the transaction
              example: external
            from_to_address:
              type: string
              description: From/To address of the transaction
              example: '0x3ee18b2214aff97000d974cf647e7c347e8fa585'
            is_contract:
              type: boolean
              description: Whether the transaction refers to a contract address
              example: true
            contract_address:
              type: string
              description: Contract address of the transaction
              example: '0xa9937f7bfacf7747d65b0dfb4a3e78fecca9c22a'
            address_risk_data:
              $ref: '#/components/schemas/addressRisk'
            token_risk_data:
              $ref: '#/components/schemas/addressRisk'
            reported_address_risk:
              type: array
              description: List of reports for address risk
              items:
                $ref: '#/components/schemas/reportedRisk'
            reported_contract_risk:
              type: array
              description: List of reports for contract risk
              items:
                $ref: '#/components/schemas/reportedRisk'
        score:
          type: integer
          description: Overall risk score for the issue
          example: 3
        tags:
          type: array
          description: List of tags associated with the issue
          items:
            $ref: '#/components/schemas/tag'
        categories:
          type: array
          description: List of categories associated with the issue
          items:
            $ref: '#/components/schemas/category'
          example:
            address_characteristics:
              key: address_characteristics
              name: Wallet Characteristics
              description: >-
                This address may have risk factors related to address age,
                number of transactions, or balance.
              tags:
                insufficient_wallet_age: true
    addressRisk:
      type: object
      properties:
        mixer:
          type: string
          description: Whether the address is a mixer
          example: '0'
        reinit:
          type: string
          description: Whether the address is a reinit
          example: '0'
        fake_kyc:
          type: string
          description: Whether the address is a fake kyc
          example: '0'
        gas_abuse:
          type: string
          description: Whether the address is a gas abuse
          example: '0'
        cybercrime:
          type: string
          description: Whether the address is a cyber crime
          example: '0'
        sanctioned:
          type: string
          description: Whether the address is a sanctioned
          example: '0'
        data_source:
          type: string
          description: Data source
          example: SlowMist,BlockSec
        blacklist_doubt:
          type: string
          description: Whether the address is a blacklist doubt
          example: '0'
        financial_crime:
          type: string
          description: Whether the address is a financial crime
          example: '0'
        stealing_attack:
          type: string
          description: Whether the address is a stealing attack
          example: '0'
        contract_address:
          type: string
          description: Whether the address is a contract address
          example: '0'
        money_laundering:
          type: string
          description: Whether the address is a money laundering
          example: '0'
        phishing_activities:
          type: string
          description: Whether the address is a phishing activities
          example: '0'
        blackmail_activities:
          type: string
          description: Whether the address is a blackmail activities
          example: '0'
        darkweb_transactions:
          type: string
          description: Whether the address is a darkweb transactions
          example: '0'
        fake_standard_interface:
          type: string
          description: Whether the address is a fake standard interface
          example: '0'
        honeypot_related_address:
          type: string
          description: Whether the address is a honeypot related address
          example: '0'
        malicious_mining_activities:
          type: string
          description: Whether the address is a malicious mining activities
          example: '0'
        number_of_malicious_contracts_created:
          type: string
          description: Whether the address is a number of malicious contracts created
          example: '0'
        label_info:
          $ref: '#/components/schemas/AddressLabelInfo'
          description: >-
            Structured information about the address label including type and
            subtype
        cex_info:
          $ref: '#/components/schemas/AddressCEXInfo'
          description: >-
            Information about the address if it belongs to a centralized
            exchange
    reportedRisk:
      type: object
      properties:
        id:
          type: string
          description: UUID of the report
          example: a7600878-956f-4119-a18c-eec2b7057762
        checked:
          type: boolean
          description: Identifies if the report has been checked
          example: null
        trusted:
          type: boolean
          description: Identifies if the report is trusted
          example: false
        addresses:
          type: array
          description: List of addresses for reported risk
          items:
            $ref: '#/components/schemas/reportedRiskAddresses'
        createdAt:
          type: string
          description: Date and time of the report creation
          example: '2022-03-20T20:52:16.000Z'
        scamCategory:
          type: string
          description: Scam category
          example: PHISHING
    tag:
      type: object
      properties:
        name:
          type: string
          description: Name of the tag
          example: Insufficient Wallet Age
        description:
          type: string
          description: Description of the tag
          example: The age of this wallet or address is new.
        type:
          type: string
          description: Type of the tag
          example: noHistoryRisk
        severity:
          type: integer
          description: Severity of the tag
          example: 3
        key:
          type: string
          description: Key of the tag
          example: insufficient_wallet_age
    category:
      type: object
      additionalProperties:
        $ref: '#/components/schemas/categoryIssue'
    AddressLabelInfo:
      type: object
      properties:
        label_type:
          type: string
          description: Type of address (e.g., cex, dex, defi, nft)
          example: dex
        label_name:
          type: string
          description: The name/description of the entity
          example: Raydium AMM
        label_subtype:
          type: string
          description: More specific categorization
          example: amm
    AddressCEXInfo:
      type: object
      properties:
        is_cex:
          type: boolean
          description: Whether the address belongs to a centralized exchange
          example: true
        cex_name:
          type: string
          description: Name of the centralized exchange
          example: Binance
        cex_address_type:
          type: string
          description: Type of CEX address (e.g., hot wallet, cold storage)
          example: hot_wallet
        cex_address_subtype:
          type: string
          description: Subtype of the CEX address
          example: deposit
      required:
        - is_cex
    reportedRiskAddresses:
      type: object
      properties:
        chain:
          type: string
          description: Chain of the address
          example: ETH
        domain:
          type: string
          description: Domain of the address
          example: null
        address:
          type: string
          description: Address
          example: '0x1f9840a85d5aF5bf1D1762F925BDADdC4201F984'
    categoryIssue:
      type: object
      properties:
        key:
          type: string
        name:
          type: string
        description:
          type: string
        tags:
          type: object
          additionalProperties:
            type: boolean
  responses:
    UnauthorizedError:
      description: Authorization information is missing or invalid
      content:
        application/json:
          example:
            message: Unauthorized
  securitySchemes:
    api_key:
      type: apiKey
      in: header
      name: x-api-key

````