Skip to main content

Checkmarx One API - SAST Best Fix Location

The Best Fix Location is the node in an attack vector which enables you to remediate multiple vulnerabilities by fixing a single node. This speeds up the remediation process.

This API enables you to get the Best Fix Location information for a specific scan (by Scan ID). You can optionally limit the response to a specific vulnerability by specifying a query id.

Best Fix Location Endpoints

The URL for Best Fix Location endpoints is <base_url>/api/bfl


Authentication for all Checkmarx One endpoints is done using JWT (JSON Web Token) access token. Access tokens are generated using the Authentication API.


To view these APIs in the Swagger UI and run sample API calls, go to <base_url>/spec/v1/ and select Best Fix Location in the definition field.