Mend API (3.0)

Mend's enhanced API enables automation of workflows in a REST compliant format. The API features:

  • Access for any user with Mend credentials, via a user key available in the user's profile page in the Mend Platform.
  • Improved security with a JWT token per organization, which expires every 30 minutes.
  • Added scalability with support for cursor pagination and limiting results size.
  • Broader functionality available programmatically.
  • New standard API documentation for easy navigation and search.

If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.

Download OpenAPI description
Languages
Servers
Generated server url

https://baseUrl/

Access Management

Operations

Administration - Groups

Operations

Administration - Users

Operations

Administration - Labels

Operations

Reports

Operations

Scans

Operations

Projects

Operations

Applications

Operations

Findings - Project

Operations

Update Root LibrarySecurity Finding (Dependencies - SCA)

Request

Changes a given security finding's status and comments

Security
bearer-key
Path
projectUuidstringrequired

UUID of the project

rootLibraryUuidstringrequired

Alert UUID (by running the appropriate Get in Alerts - Project).

Bodyapplication/jsonrequired
statusstring(Alert Status)
Enum"ACTIVE""IGNORED"
commentstring(Alert Comment)<= 500 characters
Example: "This alert is not important"
application/json
{ "status": "ACTIVE", "comment": "This alert is not important" }

Responses

OK

Bodyapplication/json
boolean
Response
application/json
true

Get Project Security Findings (Dependencies - SCA)

Request

Returns all security findings for a given project

Security
bearer-key
Path
projectUuidstringrequired

UUID of the project

Query
limitstring<= 10000

Specifies the maximum number of items to be returned in the response.

Default "50"
cursorString

Parameter indicates the starting point for retrieving results, the first call doesn't include a cursor parameter in the request, the API response includes the first set of results along with a cursor pointing to the last item retrieved.

No request payload

Responses

OK

Bodyapplication/json
additionalDataobject(Provides insights into endpoint-supported pagination information.)
  • totalItems: The total count of data points returned in an API response.
Example: {"totalItems":"422","next":"http://someUrl?cursor=3","cursor":3}
supportTokenstring(Support Token)
Example: "1171c60d"
responseArray of objects(SecurityFindingDTO)
Response
application/json
{ "additionalData": { "totalItems": "422", "next": "http://someUrl?cursor=3", "cursor": 3 }, "supportToken": "1171c60d", "response": [ {} ] }

Update Security Finding (Dependencies - SCA)

Request

Changes a given security finding's status and comments

Security
bearer-key
Path
projectUuidstringrequired

UUID of the project

Bodyapplication/jsonrequired
statusstring(Alert Status)
Enum"ACTIVE""IGNORED"
commentstring(Alert Comment)<= 500 characters
Example: "This alert is not important"
alertUuidsArray of strings
application/json
{ "status": "ACTIVE", "comment": "This alert is not important", "alertUuids": [ "string" ] }

Responses

OK

Bodyapplication/json
additionalDataobject(Provides insights into endpoint-supported pagination information.)
  • totalItems: The total count of data points returned in an API response.
Example: {"totalItems":"422","next":"http://someUrl?cursor=3","cursor":3}
supportTokenstring(Support Token)
Example: "1171c60d"
responseboolean
Response
application/json
{ "additionalData": { "totalItems": "422", "next": "http://someUrl?cursor=3", "cursor": 3 }, "supportToken": "1171c60d", "response": true }

Findings - Scan

Operations

Integrations

Operations