UUID of the project
Platform API 3.0
/- Export account inventory report asynchronously (Dependencies - SCA)
Export AI Application Findings report asynchronously
Export AI Application Inventory report asynchronously
Export Code Application Compliance report asynchronously (SAST)
Export Code Application Findings report asynchronously (SAST)
Export Code Application Resolved Findings report asynchronously
Export Code Application Suppressions report asynchronously (SAST)
Export Images Application SBOM report asynchronously (Containers)
Export Images Application Attribution report asynchronously (Containers)
Export Images Application Due Diligence report asynchronously (Containers)
Export AI Organization Findings report asynchronously
Export AI Organization Inventory report asynchronously
Export Code Organization Compliance report asynchronously (SAST)
Export Images Organization SBOM report asynchronously (Containers)
Export Images Organization Attribution report asynchronously (Containers)
Export Images Organization Due Diligence report asynchronously (Containers)
Get Reports
Download Report
Get Report Status
Delete Report
Export AI Project Findings report asynchronously
Export AI Project Inventory report asynchronously
Export Code Project Compliance report asynchronously (SAST)
Export Code Project Findings report asynchronously (SAST)
Export Code Project Resolved Findings report asynchronously
Export Code Project Suppressions report asynchronously (SAST)
Export Images Project SBOM report asynchronously (Containers)
Export Images Project Attribution report asynchronously (Containers)
Export Images Project Due Diligence report asynchronously (Containers)
Export account Dependency Security Findings report asynchronously (Dependencies - SCA)
Export account Dependency Security Findings by Library report asynchronously (Dependencies - SCA)
Export application SBOM report asynchronously (Dependencies - SCA)
Export application due diligence report asynchronously (Dependencies - SCA)
Export project SBOM report asynchronously (Dependencies - SCA)
Export project Due Diligence report asynchronously (Dependencies - SCA)
Export account inventory...
Mend API (3.0)
Mend's enhanced API enables automation of workflows in a REST compliant format. The API features:
- Access for any user with Mend credentials, via a user key available in the user's profile page in the Mend Platform.
- Improved security with a JWT token per organization, which expires every 30 minutes.
- Added scalability with support for cursor pagination and limiting results size.
- Broader functionality available programmatically.
- New standard API documentation for easy navigation and search.
If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.
Note: To help you get started with the Mend API 3.0, we recommend reviewing our onboarding guide -> Getting Started with API 3.0. This resource covers initial setup, authentication instructions, and helpful tips to help you successfully begin working with the Mend API 3.0.
Bodyapplication/jsonrequired
Enum"attribution""inventory""vulnerabilities""securityAlerts""sbom""securityAlertsLibrary""Compliance""Findings""Suppressions""Resolved"
- Generated server urlhttps://baseUrl/api/v3.0/projects/{projectUuid}/images/reports/dueDiligence
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
application/json
{ "uuid": "string", "name": "string", "scopeUuid": "string", "scopeName": "string", "subScopes": [ { … } ], "title": "string", "reportType": "attribution", "format": "json", "scopeType": "organization", "scopeUuidList": [ "string" ], "projectUuids": [ "string" ], "status": "PENDING", "createdBy": "string", "createdAt": "2019-08-24T14:15:22Z", "sendEmailNotification": true, "labelsUuidList": [ "string" ], "includeVulnerabilities": true, "excludeInactiveProjects": true }
Response
application/json
{ "supportToken": "1171c60d", "response": { "uuid": "string", "name": "string", "scopeUuid": "string", "scopeName": "string", "subScopes": [ … ], "title": "string", "reportType": "attribution", "format": "json", "scopeType": "organization", "scopeUuidList": [ … ], "projectUuids": [ … ], "status": "PENDING", "createdBy": "string", "createdAt": "2019-08-24T14:15:22Z", "sendEmailNotification": true, "labelsUuidList": [ … ], "includeVulnerabilities": true, "excludeInactiveProjects": true } }
Bodyapplication/jsonrequired
Filter your search to return items whose property has a specific value. Use the syntax: [property][operator][value]
- Property: the name of the property of the item
- Operator:
- equals (==) - Returns true if the value exactly matches this one. If the value contains a * character, it behaves like a wildcard (similar to the LIKE operator). Example: entity==abc* — will return true for entities like "abcd" and "abc_123".
- Value: the value of the property.
Logical operators AND (;) and OR (,) are supported in filters — param1=in=(val1,val2) and (param2==val3 or param3==val4), can also be written as — param1=in=(val1,val2);(param2==val3,param3==val4)
This endpoint supports filtering on the following properties and its supported operators:
- libraryName: equals
Example: "libraryName==*log4j*"
- Generated server urlhttps://baseUrl/api/v3.0/accounts/{accountUuid}/dependencies/reports/inventory
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
application/json
{ "name": "string", "sendEmailNotification": true, "format": "excel", "search": "libraryName==*log4j*" }
Response
application/json
{ "supportToken": "1171c60d", "response": { "uuid": "string", "name": "string", "scopeUuid": "string", "scopeName": "string", "subScopes": [ … ], "title": "string", "reportType": "attribution", "format": "json", "scopeType": "organization", "status": "PENDING", "createdBy": "string", "createdAt": "2019-08-24T14:15:22Z" } }
Bodyapplication/jsonrequired
Filter your search to return items whose property has a specific value. Use the syntax: [property][operator][value]
- Property: the name of the property of the item
- Operator:
- equals (==) - Returns true if the value exactly matches this one. If the value contains a * character, it behaves like a wildcard (similar to the LIKE operator). Example: entity==abc* — will return true for entities like "abcd" and "abc_123".
- Value: the value of the property.
Logical operators AND (;) and OR (,) are supported in filters — param1=in=(val1,val2) and (param2==val3 or param3==val4), can also be written as — param1=in=(val1,val2);(param2==val3,param3==val4)
This endpoint supports filtering on the following properties and its supported operators:
- findingId: equals
Example: "findingId==CVE-2020-8908"
- Generated server urlhttps://baseUrl/api/v3.0/accounts/{accountUuid}/dependencies/reports/securityFindings
- Payload
- cURL
- JS
- Go
- Ruby
- Java 8
application/json
{ "name": "string", "sendEmailNotification": true, "format": "excel", "search": "findingId==CVE-2020-8908" }
Response
application/json
{ "supportToken": "1171c60d", "response": { "uuid": "string", "name": "string", "scopeUuid": "string", "scopeName": "string", "subScopes": [ … ], "title": "string", "reportType": "attribution", "format": "json", "scopeType": "organization", "status": "PENDING", "createdBy": "string", "createdAt": "2019-08-24T14:15:22Z" } }