List the latest image scan security findings
Platform API 3.0
/- Update finding status (Containers)
Update Root LibrarySecurity Finding (Dependencies - SCA)
Get Project Security Findings (Dependencies - SCA)
Update Security Finding (Dependencies - SCA)
Get Project Due Diligence Info (Dependencies - SCA)
Get In-House Libraries (Dependencies - SCA)
Get Project Libraries (Dependencies - SCA)
Get Root Libraries Security Finding (Dependencies - SCA)
Get a list of project findings (SAST)
Bulk update of project findings state (review and/or suppression) or severity (SAST)
Update a project finding state (review and/or suppression) or severity (SAST)
Get a project finding (SAST)
Update multiple findings status (Containers)
Update package status (Containers)
List latest image scan secrets findings (Containers)
List latest image scan security findings (Containers)
List latest image scan packages (Containers)
Get project AI technologies (AI)
Get project AI models (AI)
Get project AI vulnerabilities (AI)
Get AI vulnerability details (AI)
Get application AI vulnerabilities (AI)
Update finding status (Co...
Mend API (3.0)
Mend's enhanced API enables automation of workflows in a REST compliant format. The API features:
- Access for any user with Mend credentials, via a user key available in the user's profile page in the Mend Platform.
- Improved security with a JWT token per organization, which expires every 30 minutes.
- Added scalability with support for cursor pagination and limiting results size.
- Broader functionality available programmatically.
- New standard API documentation for easy navigation and search.
If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.
- Generated server url
https://baseUrl/api/v3.0/projects/{projectuuid}/images/findings/security
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
No request payload
Response
application/json
{ "additionalData": { "error": "string", "paging": { … }, "totalItems": 100 }, "response": [ { … } ], "supportToken": "659C0A4730" }
Bodyapplication/jsonrequired
Finding status update request. Required fields: status. For 'suppressed' status, reason is also required.
Enum"Acceptable risk""No fix available""No risk""Ignore"
Enum"suppressed""unreviewed""reviewed""suppress""Issue Created"
- Generated server url
https://baseUrl/api/v3.0/projects/{projectuuid}/images/findings/security/{findingid}
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
application/json
{ "comment": "string", "packageUUID": "string", "reason": "Acceptable risk", "status": "suppressed", "vulnerabilityName": "string" }
Response
application/json
{ "additionalData": { "error": "string", "paging": { … }, "totalItems": 100 }, "response": { "applicationuuid": "string", "comment": "string", "createdAt": "2020-01-01T00:00:00Z", "detectTime": "string", "distribution": "string", "distributionVersion": "string", "email": "string", "orguuid": "string", "packageDistroID": 0, "packageName": "string", "packageUUID": "string", "packageVersion": "string", "projectuuid": "string", "reason": "string", "scanuuid": "string", "secretUUID": "string", "severity": "string", "status": "string", "updatedAt": "2020-01-01T00:00:00Z", "uuid": "c4f93b6d-8236-4d0c-a67b-3978def476a3", "vulnerabilityID": "string" }, "supportToken": "659C0A4730" }
- Generated server url
https://baseUrl/api/v3.0/projects/{projectuuid}/images/packages
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
No request payload
Response
application/json
{ "additionalData": { "error": "string", "paging": { … }, "totalItems": 100 }, "response": [ { … } ], "supportToken": "659C0A4730" }