Mend's enhanced SCA API enables automation of workflows in a REST compliant format. The API features:
If you have a dedicated instance of Mend, contact your Mend representative to access this API on your instance.
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/notices
No request payload
{ "supportToken": "1171c60d", "retVal": [ { … } ] }
org UUID (by running Entities - Organization > Get User Organizations) or API Key (from the Mend SCA App: Integrate tab > API Key).
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/notices
{ "text": "Developed internally", "reference": "https://github.com/..." }
{ "supportToken": "1171c60d", "retVal": { "text": "Developed internally", "reference": "https://github.com/..." } }
org UUID (by running Entities - Organization > Get User Organizations) or API Key (from the Mend SCA App: Integrate tab > API Key).
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/licenses
{ "uuid": "123e4567-e89b-12d3-a456-426655440000", "assignedByUser": true, "licenseReferences": [ { … } ] }
{ "supportToken": "1171c60d", "retVal": { "uuid": "123e4567-e89b-12d3-a456-426655440000", "name": "MIT", "assignedByUser": true, "licenseReferences": [ … ] } }
org UUID (by running Entities - Organization > Get User Organizations) or API Key (from the Mend SCA App: Integrate tab > API Key).
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/copyrights
{ "copyright": "Copyright 2002 Landmark", "customDisclaimer": "a disclaimer for the copyright ", "createdAt": "2019-08-24T14:15:22Z", "startYear": "2020", "endYear": "2022", "author": "Cloud Conscious, LLC" }
{ "supportToken": "1171c60d", "retVal": { "type": "PROJECT_HOMEPAGE", "copyright": "Copyright 2021 x greater by the end of", "customDisclaimer": "string", "createdAt": "2019-08-24T14:15:22Z", "textUrl": "string", "startYear": "2021", "endYear": "2022", "author": "x greater by the end of", "referenceInfo": "x greater by the end of", "assignedBy": { … } } }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/copyrights
No request payload
{ "supportToken": "1171c60d", "retVal": "string" }
Filter your search to return items whose property has a specific value. Use the syntax: property:operation:value where a colon (:) separates between property, operation and value.
To combine multiple filters, separate each filter with a semicolon with no space. E.g. property1:operation1:value1;property2:operation2:value2
This endpoint supports filtering on this property:
Sort search results alphabetically on an item's property by entering sort= followed by the property name. E.g. enter sort=email to sort alphabetically by their email addresses from a-z ascending.To sort in descending order (z-a), add a minus sign ('-'). E.g. sort=-email.
You can sort by the following properties:
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/inHouse
No request payload
OK
{ "additionalData": { "totalItems": "422", "isLastPage": "true" }, "supportToken": "1171c60d", "retVal": [ { … } ] }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/inHouse
{ "libraryUuids": [ "123e4567-e89b-12d3-a456-426655440000" ], "comment": "A comment", "isInHouse": true }
{ "supportToken": "1171c60d", "retVal": true }
Returns the trend of the number of vulnerabilities in a library over past versions. Define the scope of the trend with the parameters 'before' denoting the number of versions before the current version, and 'after'. Does not support generic library types like Debian, RPM and Ruby
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/vulnerabilityTrends
No request payload
{ "supportToken": "1171c60d", "retVal": { "trends": [ … ] } }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/versions
No request payload
OK
{ "additionalData": { "totalItems": "422", "isLastPage": "true" }, "supportToken": "1171c60d", "retVal": [ { … } ] }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/projects
No request payload
OK
{ "additionalData": { "totalItems": "422", "isLastPage": "true" }, "supportToken": "1171c60d", "retVal": [ { … } ] }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}
No request payload
{ "supportToken": "1171c60d", "retVal": { "uuid": "123e4567-e89b-12d3-a456-426655440000", "name": "dbus-1.10.24-13.el7_6.x86_64.rpm", "artifactId": "kind-of-6.0.2.tgz", "groupId": "kind-of", "version": "string", "architecture": "string", "languageVersion": "string", "classifier": "string", "extension": "string", "sha1": "01146b36a6218e64e58f3a8d66de5d7fc6f6d051", "description": "Get the native type of a value.", "type": "javascript/Node.js", "libraryType": "string", "directDependency": true, "purl": "pkg:maven/commons-beanutils/commons-beanutils@1.8.0?type=jar", "extraInfo": { … }, "extraInformation": { … }, "licenses": [ … ], "copyrightReferences": [ … ], "noticeReference": { … }, "proprietaryInfo": { … }, "attributionReportSettings": { … } } }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/licenses/{licenseUuid}
No request payload
{ "supportToken": "1171c60d", "retVal": "string" }
https://api-saas.mend.io/api/v2.0/orgs/{orgToken}/libraries/{libraryUuid}/licenses/revert
No request payload
{ "supportToken": "1171c60d", "retVal": [ { … } ] }