Snyk API v1 Project issue paths endpoints
The following provides information in addition to the information in the API v1 reference docs.
The paths endpoints provide details of the paths through which an issue has been introduced.
Requests to the paths endpoint are GET requests. The endpoint is available at the following URLs:
https://snyk.io/api/v1/org/<orgId>/project/<projectId>/issue/<issueId>/pathsThis returns the paths for an issue in the most recent test of the project.https://snyk.io/api/v1/org/<orgId>/project/<projectId>/history/<snapshotId>/issue/<issueId>/pathsThis returns the paths for an issue in a specific test of the project.
Both paths can take a query string allowing for pagination, for example,?page=2&perPage=500.
By default, the first page of 100 results is returned. Up to 1,000 results can be requested per page.
The response has the following structure:
snapshotIdis the ID of the project snapshot from which the paths were returned.totalis the total number of paths for the issue in the snapshot.linksprovides convenience links for navigating between pages of the response.links.nextandlinks.prevare provided only if such a page exists. For example, when you retrieve the last page of results, it does not include anextlink.pathsis an array, each element of which is a path through the dependency tree. Each path is itself an array of package descriptors, for example:
In this example, an issue is introduced through two different versions of the lodash package, one of which is a direct dependency while the other is indirect via babel-template.
The shortest path is provided first. If an issue applies to the project itself, it appears as the only element in the path. For issues that apply to dependencies, each path starts with a direct dependency.
The fixVersion attribute is provided on the first element of each path when that path is upgradable. If the version attribute and fixVersion attributes are the same, then the upgrade will only involve re-locking transitive dependencies.
Last updated