Skip to main content

Checkmarx SCA (REST) API - PUT Risk Reports Ignore Vulnerability

Title

PUT Risk Reports Ignore Vulnerability

Description

Marks a specific vulnerability as “Ignore” (for a specific package and Project). Ignored vulnerabilities aren’t counted towards the number of vulnerabilities identified in the Project.

Method

PUT

Workflow

After creating a Project, running a scan and reviewing the results, if you identify a specific vulnerability that does not pose a risk to your Project, use this API to mark it as Ignored.

URL

  • US Environment - https://api-sca.checkmarx.net/risk-management/risk-reports/IgnoreVulnerability

  • EU Environment - https://eu.api-sca.checkmarx.net/risk-management/risk-reports/IgnoreVulnerability

Curl Sample

curl -X PUT " https://api-sca.checkmarx.net/risk-management/risk-reports/IgnoreVulnerability" -H "accept: application/json" -d "{ "ProjectId": "1a73fc26-b7aa-4ecd-b2dd-d3aebfc1da21", "VulnerabilityId": "CVE-2021-25329", "PackageId": "Yarn-org.apache.tomcat.embed:tomcat-embed-core-8.5.23"}”

Media Type (header)

Authorization: Bearer <access_token>

Accept: application/json

Parameters

Body Parameters - Required

Parameter

Type

Description

ProjectId

string

The unique identifier of the Project.

VulnerabilityId

string

The unique identifier of the vulnerability you would like to mark as “Ignore”.

PackageId

string

The unique identifier of the package where the vulnerability was identified.

Success Response

Code: 204 No Content

There is no body for the success response.

Error Response