OpenAPI & Postman

The Curate-Me gateway and admin API are fully described in OpenAPI 3.1. Download the spec or the Postman collection and start exploring in under 2 minutes.

OpenAPI Spec (JSON)Postman Collection

Live spec endpoint

The gateway serves its own OpenAPI spec at runtime. This is always up to date with the deployed version:


# Gateway API spec
curl https://api.curate-me.ai/openapi.json | jq .info
 
# Admin API spec
curl https://api.curate-me.ai/api/v1/openapi.json | jq .info

Import into tools

Postman

Open Postman → Import → Link
Paste: https://api.curate-me.ai/openapi.json
Set the cm_api_key collection variable to your cm_sk_... key
Run the Verify API Key request first to confirm connectivity

Or download the curated Postman collection which includes pre-wired auth, example environments, and test scripts.

VS Code (REST Client)


### Verify gateway key
GET https://api.curate-me.ai/v1/admin/me
X-CM-API-Key: {{CM_API_KEY}}
 
### First governed request
POST https://api.curate-me.ai/v1/openai/chat/completions
X-CM-API-Key: {{CM_API_KEY}}
Content-Type: application/json
 
{
  "model": "gpt-4o",
  "messages": [{"role": "user", "content": "Hello from REST Client!"}]
}

Save as curate-me.http and set CM_API_KEY in .vscode/settings.json under rest-client.environmentVariables.

Generate client stubs


# Python client (openapi-python-client)
pip install openapi-python-client
openapi-python-client generate \
  --url https://api.curate-me.ai/openapi.json \
  --output-path ./curate-me-client
 
# TypeScript client (openapi-typescript-codegen)
npx openapi-typescript-codegen \
  --input https://api.curate-me.ai/openapi.json \
  --output ./src/curate-me-client \
  --client axios
 
# Go client (oapi-codegen)
go install github.com/oapi-codegen/oapi-codegen/v2/cmd/oapi-codegen@latest
curl -s https://api.curate-me.ai/openapi.json -o curate-me-openapi.json
oapi-codegen -package curateme -generate client curate-me-openapi.json > client.gen.go

The officially supported clients are the Python SDK and TypeScript SDK. Auto-generated stubs work for most endpoints but don’t include governance-aware retry logic or streaming support.

Authentication in the spec

All endpoints use the ApiKeyAuth security scheme:


securitySchemes:
  ApiKeyAuth:
    type: apiKey
    in: header
    name: X-CM-API-Key

Set the X-CM-API-Key header to your cm_sk_... key on every request.

Spec coverage

Scope	Endpoints covered
Gateway proxy	`/v1/{provider}/**` — all 50 providers (44 production-ready)
Admin API	`/v1/admin/**` — API keys, secrets, budgets, rate limits, governance
Runner API	`/gateway/admin/runners/**` — BYOVM lifecycle, sessions
Autopilot API	`/v1/admin/autopilot/**` — templates, reports
Traces API	`/v1/admin/traces/**` — trace retrieval and search