Findings
Unified security findings aggregated from all scanners.
📄️ List Findings
Return a cursor-paginated collection of findings for the authenticated client, supporting query-string filters, sorting, field selection, and a finding_type selector. Users with the developer role only see findings assigned to them.
📄️ Get Finding Selected Columns
Return the default finding table columns together with the columns the authenticated user has selected for the findings view.
📄️ Save Finding Selected Columns
Persist the authenticated user's selected finding table columns and return the defaults alongside the saved selection.
📄️ Bulk Send Findings to Developers
Assign multiple findings to the given developer IDs and mark them as ready for review. Returns a 207 multi-status response with a per-finding result; returns 403 when the user is not in the organization and 400 for invalid finding IDs.
📄️ Generate Bulk AI Remediations
Request AI remediation generation for multiple findings at once. Responds 207 with a per-finding status list: 202 when dispatch was accepted, 404 when the finding does not exist, and 409 when a remediation already exists for it.
📄️ Findings by Repository Chart
Return open finding counts grouped by enriched repository for the authenticated client, limited to max_repos entries. The finding_type query parameter (app, scm, cloud or all) selects which tool families are counted.
📄️ Findings by Language and Severity
Return open finding counts grouped by programming language and severity (Low, Medium, High, Critical). The top four languages are listed individually and the remainder are aggregated under 'Other'.
📄️ Upload Scan Results
Execute the UploadScan workflow that ingests externally produced scan results for the given repository using the caller's bearer token.
📄️ Download Strix Pentest Report
Download the markdown penetration test report generated by Strix for the given scan request. Returns 404 when the scan or its report is not available.
📄️ Apply Bulk Remediation Actions
Dispatch pull request or issue creation workflows for each remediation ID in the request body. Returns a 207 multi-status response with per-item results: 202 accepted, 404 not found, 409 already in a terminal status, or 422 for an unknown remediation type.
📄️ Download JSON Findings
Export findings as a SARIF JSON document. By default only enriched findings are included; pass filters[include_all]=true to export every finding for the requested repository, including duplicates and false positives.
📄️ Generate PDF Findings Report
Create a report job and trigger asynchronous PDF generation for the currently filtered findings. Returns 201 with a job ID and Location header; the user is emailed when the report is ready. Limited to 5 report requests per hour (429 when exceeded).
📄️ Generate PDF for Single Finding
Create a report job and trigger asynchronous PDF generation for a single finding brief. Returns 201 with a job ID and Location header; the user is emailed when the report is ready. Limited to 5 report requests per hour (429 when exceeded).