Code Scanning (SAST)

Use the REST API to query static code scanning (SAST) metrics

PreviousAdmin NextDependency Scanning (SCA)

Last updated 6 months ago

Was this helpful?

Get SAST Events

get

Returns SAST events after a specified timestamp or event ID. All events are returned if no timestamp or event ID is provided. A maximum of 100 events can be returned per request.

Query parameters

nextTokenstring

limitinteger

fromTimestring

eventTypestring[]

fileOwnerNamestring[]

sortstring

azureOrganizationIdstring

The Azure organization ID

githubOwnerIdinteger

The Github owner ID

gitlabGroupIdinteger

The GitLab group ID

installationIdstring

The Nullify installation ID

azureRepositoryIdstring[]

githubRepositoryIdinteger[]

githubTeamIdinteger

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --url '/sast/events'

200

400

403

500

{
  "events": [
    {
      "data": null,
      "id": "text",
      "time": "text",
      "timestampUnix": 1,
      "type": "text"
    }
  ],
  "nextToken": "text",
  "numItems": 1
}

Get SAST Findings

get

Returns a filtered set of SAST findings based on query parameters

Query parameters

nextTokenstring

limitinteger

branchstring | nullable

priorityLabelstring | nullable

severitystring | nullable

fileOwnerNamestring[]

isFalsePositiveboolean | nullable

hasPullRequestboolean | nullable

workflowstring | nullable

isLatestboolean | nullable

isAllowlistedboolean | nullable

isResolvedboolean | nullable

sortBystring

sortstring

azureOrganizationIdstring

The Azure organization ID

githubOwnerIdinteger

The Github owner ID

gitlabGroupIdinteger

The GitLab group ID

installationIdstring

The Nullify installation ID

azureRepositoryIdstring[]

githubRepositoryIdinteger[]

githubTeamIdinteger

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --url '/sast/findings'

200

400

403

500

{
  "findings": [
    {
      "allowlistState": "text",
      "autoFixState": "text",
      "branch": "text",
      "category": "text",
      "commitHash": "text",
      "cwe": 1,
      "endLine": 1,
      "entrypoint": "text",
      "fileOwners": [
        {
          "name": "text",
          "type": "text"
        }
      ],
      "filePath": "text",
      "id": "text",
      "isAllowlisted": true,
      "isArchived": true,
      "isFalsePositive": true,
      "isLatest": true,
      "isResolved": true,
      "language": "text",
      "message": "text",
      "priorityLabel": "text",
      "priorityOverride": "text",
      "priorityScore": 1,
      "projectId": "text",
      "projectName": "text",
      "pullRequestsAllowlist": [
        {
          "id": 1,
          "link": "text"
        }
      ],
      "pullRequestsAutofix": [
        {
          "id": 1,
          "link": "text"
        }
      ],
      "repository": "text",
      "repositoryId": "text",
      "ruleId": "text",
      "ruleUrl": "text",
      "severity": "text",
      "startLine": 1,
      "tenantId": "text",
      "ticket": {
        "azure": {},
        "github": {
          "issueId": 1,
          "nodeId": "text",
          "number": 1,
          "repositoryName": "text",
          "url": "text"
        },
        "gitlab": {},
        "jira": {
          "issueId": "text",
          "issueKey": "text",
          "url": "text"
        },
        "providerId": "text"
      },
      "title": "text"
    }
  ],
  "nextToken": "text",
  "numItems": 1
}

Get Finding

get

Returns a given finding with explanation and impact

Path parameters

findingIdstringrequired

Query parameters

azureOrganizationIdstring

The Azure organization ID

githubOwnerIdinteger

The Github owner ID

gitlabGroupIdinteger

The GitLab group ID

installationIdstring

The Nullify installation ID

azureRepositoryIdstring[]

githubRepositoryIdinteger[]

githubTeamIdinteger

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --url '/sast/findings/{findingId}'

200

400

403

500

{
  "finding": {
    "aiDurationSeconds": 1,
    "aiPrioritisationVersion": "text",
    "aiRemediation": "text",
    "aiRemediationEstimatedTime": "text",
    "aiRemediationRequiredResources": "text",
    "allowlistReason": "text",
    "allowlistState": "text",
    "autoFixState": "text",
    "branch": "text",
    "category": "text",
    "commitHash": "text",
    "cwe": 1,
    "endLine": 1,
    "entrypoint": "text",
    "eventHistory": [
      "text"
    ],
    "explanation": "text",
    "falsePositiveEventHistory": [
      "text"
    ],
    "fileOwners": [
      {
        "name": "text",
        "type": "text"
      }
    ],
    "filePath": "text",
    "id": "text",
    "impact": "text",
    "installationId": "text",
    "isAllowlisted": true,
    "isArchived": true,
    "isFalsePositive": true,
    "isLatest": true,
    "isResolved": true,
    "language": "text",
    "message": "text",
    "owner": "text",
    "platform": "text",
    "priorityLabel": "text",
    "priorityLabelReason": "text",
    "priorityOverride": "text",
    "priorityScore": 1,
    "projectId": "text",
    "projectName": "text",
    "pullRequestsAllowlist": [
      {
        "id": 1,
        "link": "text"
      }
    ],
    "pullRequestsAutofix": [
      {
        "id": 1,
        "link": "text"
      }
    ],
    "repository": "text",
    "repositoryId": "text",
    "ruleId": "text",
    "ruleUrl": "text",
    "severity": "text",
    "severityOverride": "text",
    "startLine": 1,
    "tenantId": "text",
    "ticket": {
      "azure": {},
      "github": {
        "issueId": 1,
        "nodeId": "text",
        "number": 1,
        "repositoryName": "text",
        "url": "text"
      },
      "gitlab": {},
      "jira": {
        "issueId": "text",
        "issueKey": "text",
        "url": "text"
      },
      "providerId": "text"
    },
    "title": "text",
    "userNotes": "text"
  }
}

Code Scanning (SAST)

Code Scanning (SAST)

Table of Contents

Introduction

Get SAST Events

Get SAST Findings

Get SAST Finding

Table of Contents

Introduction

Get SAST Events

Get SAST Findings

Get SAST Finding

Get SAST Events

Get SAST Findings

Get Finding