Bulk update of project findings state (review and/or suppression) or severity
Platform API 3.0
/- Update a project finding state (review and/or suppression) or severity (SAST)
Update Root LibrarySecurity Finding (Dependencies - SCA)
Get Project Security Findings (Dependencies - SCA)
Update Security Finding (Dependencies - SCA)
Get Project Due Diligence Info (Dependencies - SCA)
Get In-House Libraries (Dependencies - SCA)
Get Project Libraries (Dependencies - SCA)
Get Root Libraries Security Finding (Dependencies - SCA)
Get a list of project findings (SAST)
Bulk update of project findings state (review and/or suppression) or severity (SAST)
Get a project finding (SAST)
Update multiple findings status (Containers)
Update package status (Containers)
List latest image scan secrets findings (Containers)
List latest image scan security findings (Containers)
Update finding status (Containers)
List latest image scan packages (Containers)
Get project AI technologies (AI)
Get project AI models (AI)
Get project AI vulnerabilities
Get AI vulnerability details
Get application AI models
Get application AI vulnerabilities
Get project implementation findings
Get implementation finding snippet
Get application implementation findings
Get application AI vulnerability details
Update a project finding...
Mend API (3.0)
Mend's enhanced API enables automation of workflows in a REST compliant format. The API features:
- Access for any user with Mend credentials, via a user key available in the user's profile page in the Mend Platform.
- Improved security with a JWT token per organization, which expires every 30 minutes.
- Added scalability with support for cursor pagination and limiting results size.
- Broader functionality available programmatically.
- New standard API documentation for easy navigation and search.
If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.
- Generated server urlhttps://baseUrl/api/v3.0/projects/{projectUuid}/code/findings
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
application/json
{ "findings": [ "string" ], "patchOperation": { "customSeverity": "string", "origin": "string", "reviewed": true, "suppressed": true, "suppressionReason": "string" } }
Response
application/json
{ "additionalData": {}, "response": { "message": "Operation succeeded", "result": null, "success": true }, "supportToken": "string" }
Bodyapplication/jsonrequired
Patch operation to apply to the finding
If set, it has to be either High, Medium or Low. Case insensitive, all values are converted to have the first letter uppercase and others lowercase, e.g. High.
- Generated server urlhttps://baseUrl/api/v3.0/projects/{projectUuid}/code/findings/{findingSnapshotId}
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
application/json
{ "customSeverity": "string", "origin": "string", "reviewed": true, "suppressed": true, "suppressionReason": "string" }
- Generated server urlhttps://baseUrl/api/v3.0/projects/{projectUuid}/code/findings/{findingUuid}
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
No request payloadResponse
application/json
{ "additionalData": {}, "response": { "ageRating": 0, "almIssues": { … }, "appId": "string", "baseline": true, "comments": [ … ], "confidenceRating": 0, "correlatedDastFindingUuids": [ … ], "createdTime": "string", "dataFlows": [ … ], "description": "string", "hasRemediation": true, "id": "string", "isNew": true, "issueStatus": 0, "projectId": "string", "rating": 0, "refId": "string", "reviewed": true, "riskFactors": { … }, "scanId": "string", "severity": "string", "severityRating": 0, "sharedStep": { … }, "snapshotId": "string", "suppressed": true, "suppressedBy": "string", "suppressionMessage": "string", "suppressionRejected": true, "suppressionRequestComment": "string", "suppressionRequested": true, "suppressionTime": "string", "type": { … }, "workflowViolations": [ … ], "workflowViolationsCount": 0 }, "supportToken": "string" }