HI All–
I’m in a situation where I’d like to break down my vulnerabilities list by language/package manager (i.e. “Show me the PyPI criticals”). Doesn’t seem to be possible through the console UI. Is this possible via API call?
Thanks!
I think you can get what you want from the Policy Violation REST API - v2. Search by critical policy and then parse either the componentIdentifier.format or the packageUrl to determine whether it’s a pypy vulnerability or not.
2 Likes