Mend's enhanced API enables automation of workflows in a REST compliant format. The API features:
If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.
https://baseUrl/v3.0/projects/{projectUuid}/code/findings/{findingUuid}
No request payload
{ "additionalData": {}, "response": { "ageRating": 0, "almIssues": { … }, "appId": "string", "baseline": true, "comments": [ … ], "confidenceRating": 0, "createdTime": "string", "dataFlows": [ … ], "description": "string", "hasRemediation": true, "id": "string", "isNew": true, "issueStatus": 0, "projectId": "string", "rating": 0, "reviewed": true, "scanId": "string", "severity": "string", "severityRating": 0, "sharedStep": { … }, "snapshotId": "string", "suppressed": true, "suppressedBy": "string", "suppressionMessage": "string", "suppressionTime": "string", "type": { … } }, "supportToken": "string" }
https://baseUrl/v3.0/projects/{projectUuid}/scans/{scanUuid}/code/findings/{findingUuid}
No request payload
{ "additionalData": {}, "response": { "ageRating": 0, "almIssues": { … }, "appId": "string", "baseline": true, "comments": [ … ], "confidenceRating": 0, "createdTime": "string", "dataFlows": [ … ], "description": "string", "hasRemediation": true, "id": "string", "isNew": true, "issueStatus": 0, "projectId": "string", "rating": 0, "reviewed": true, "scanId": "string", "severity": "string", "severityRating": 0, "sharedStep": { … }, "snapshotId": "string", "suppressed": true, "suppressedBy": "string", "suppressionMessage": "string", "suppressionTime": "string", "type": { … } }, "supportToken": "string" }
Array of finding status update requests. Each item requires: status. For findings, either packageUUID or vulnerabilityName should be provided. For 'suppressed' status, reason is also required.
https://baseUrl/api/v3.0/projects/{projectuuid}/images/findings
[ { "comment": "string", "packageUUID": "string", "reason": "Acceptable risk", "status": "suppressed", "vulnerabilityName": "string" } ]
{ "additionalData": { "error": "string", "paging": { … }, "totalItems": 100 }, "response": { "failedPackageUUID": [ … ], "updatedStatuses": [ … ] }, "supportToken": "659C0A4730" }