Ashby ATS API

Modern ATS with REST and GraphQL APIs for recruiting workflow automation, candidate management, and advanced hiring analytics for mid-market and enterprise teams.

Evaluated Mar 07, 2026 (0d ago) vcurrent
Homepage ↗ Other ats recruiting graphql candidates analytics hr modern-ats
⚙ Agent Friendliness
54
/ 100
Can an agent use this?
🔒 Security
76
/ 100
Is it safe for agents?
⚡ Reliability
74
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
--
Documentation
78
Error Messages
75
Auth Simplicity
70
Rate Limits
62

🔒 Security

TLS Enforcement
100
Auth Strength
72
Scope Granularity
58
Dep. Hygiene
75
Secret Handling
75

SOC 2 Type II certified. TLS enforced. API key auth is simple but lacks scope granularity — single key grants full org access. No OAuth or token scoping. GDPR compliance supported.

⚡ Reliability

Uptime/SLA
72
Version Stability
75
Breaking Changes
75
Error Recovery
72
AF Security Reliability

Best When

Your organization uses Ashby and you want GraphQL-powered flexible data queries for analytics, or you're evaluating modern ATSs with strong API design for agent-driven recruiting.

Avoid When

You need the broad enterprise ecosystem integrations and partner network of Greenhouse or Lever — Ashby is newer and has fewer pre-built integrations, though the API itself is superior.

Use Cases

  • Querying complex candidate and pipeline data with GraphQL for custom reporting
  • Automating candidate sourcing and application creation via REST endpoints
  • Syncing Ashby hiring data into data warehouses for recruiting analytics
  • Building agent-driven recruiting workflows on a modern, developer-friendly ATS

Not For

  • Teams using Greenhouse, Lever, or other ATSs — this API only works with Ashby
  • High-volume consumer-scale event processing
  • Small teams who don't need an enterprise ATS

Interface

REST API
Yes
GraphQL
Yes
gRPC
No
MCP Server
No
SDK
No
Webhooks
Yes

Authentication

Methods: api_key
OAuth: No Scopes: No

API key authentication via X-Api-Key header for both REST and GraphQL endpoints. Keys generated in the Ashby admin panel. No scoped permissions — API key grants full read/write access to the organization.

Pricing

Model: contact-sales
Free tier: No
Requires CC: No

No self-serve pricing. API access included with Ashby subscription. Contact sales for pricing.

Agent Metadata

Pagination
cursor
Idempotent
No
Retry Guidance
Not documented

Known Gotchas

  • GraphQL complexity limits can cause queries to fail without clear guidance on what to simplify — agents using deep nested GraphQL queries should test pagination and field selection carefully.
  • No idempotency — duplicate candidate or application records can be created on agent retries; implement external deduplication.
  • API key has no scope granularity — a compromised key has full org access. Rotate keys regularly and store securely.
  • Ashby's data model is more opinionated than Greenhouse's — agents should read Ashby's schema documentation carefully as entity naming differs from other ATSs.
  • Webhook delivery is not guaranteed exactly-once; agents must handle duplicate webhook events idempotently.

Alternatives

greenhouse-api lever-api rippling-api

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for Ashby ATS API.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

$3

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-07.

6470
Packages Evaluated
26150
Need Evaluation
173
Need Re-evaluation
Community Powered