Updates to Existing APIs
The following section describes updates that have occurred to existing APIs in this release:
| Resource | API Name/Endpoint | Method | Function Change Description |
|---|---|---|---|
| Component | Get Component /components/{componentId} | GET | The response now includes only the advisory vulnerabilities, along with their referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities. The referenced CVE vulnerabilities are indicated by the new property cveReferences. Additionally, the response now provides only the count of advisory vulnerabilities. |
| Component | Get Component version vulnerabilities /components/{versionId}/vulnerabilities | GET | The response now includes vulnerability information based solely on advisory vulnerabilities, along with their referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities. The referenced CVE vulnerabilities are indicated by the new property cveReferences. |
| Project API | Get Project Inventory /project/inventory/{projectId} | GET | The response now includes vulnerability information based solely on advisory vulnerabilities, along with their referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities. The referenced CVE vulnerabilities are indicated by the new property cveReferences. |
| Project API | Get Project Information /projects/{projectId} Get Inventory Summary of the project /projects/{projectId}/inventorySummary | GET | The response now includes the vulnerability count based solely on advisory vulnerabilities. All referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities are not included in the count. |
| Project API | Import Project Data /projects/{projectId}/import | POST | The request no longer supports importing a .json data file that was exported from a different Code Insight version than the current installation. |
| Vulnerability | Suppress vulnerability /vulnerability/suppress | POST | The request now allows you to suppress only advisory vulnerabilities at both the project and global levels. Suppressing an advisory vulnerability automatically suppresses all its referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities. |
| Vulnerability | UnSuppress vulnerability /vulnerability/unSuppress | POST | The request now allows you to unsuppress only advisory vulnerabilities at both the project and global levels. Unsuppressing an advisory vulnerability automatically unsuppresses all its referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities. |
| Vulnerability | Get suppressed vulnerabilities /vulnerability/suppress | GET | The response now includes only the list of advisory vulnerabilities that are suppressed at both the project and global levels. The CVE (Common Vulnerabilities and Exposures) vulnerabilities are not included in the response. |
| Vulnerability | Get vulnerability suppress details /vulnerability/suppress/details | GET | The response now includes only advisory vulnerabilities details that are suppressed at the project level. The CVE (Common Vulnerabilities and Exposures) vulnerabilities details are not included in the response. |
| Inventory API | Get details of an inventory /inventories/{inventoryId} Get the inventories of file/folder ids /inventories/search Get vulnerability details of an inventory /inventories/{inventoryId}/vulnerabilities | GET | The response now includes vulnerability information based solely on advisory vulnerabilities, along with their referenced CVE (Common Vulnerabilities and Exposures) vulnerabilities. The referenced CVE vulnerabilities are indicated by the new property cveReferences. |