The Below parameters are for supply chain attacks. To know more about different input parameters and how to use API see 

This api perform static assessment of files present in repos, local or s3 bucket for possible vulnerability

Supply Chain Attacks

The type of repository to scan (e.g., github, gitlab, bitbucket, huggingface, s3_bucket, azure_blob, gcp_storage).

repo_type

repo_url

Name of the branch in the repository to be scanned (e.g., main, dev).

branch_name

Number of recent commits to scan from the specified branch (e.g., depth: 10 scans the latest 10 commits).

depth

Optional username used for authenticating access to private repositories when required (e.g., GitHub, GitLab, Bitbucket, huggingface).

username

Personal Access Token used for authenticating access to private repositories.

Required if repo_type is file; identifier returned by the model ID generation API, used to locate the uploaded file for scanning.

model_id

AWS access key ID used to authenticate and access S3 buckets when repo_type is s3_bucket.

aws_access_key_id

AWS secret access key paired with aws_access_key_id for authenticating access to S3 resources.

aws_secret_access_key

The AWS region where the S3 bucket is hosted (e.g., us-east-1, ap-south-1).

region

Required if repo_type is s3_bucket or gcp_storage; specifies the name of the cloud storage bucket to be scanned. 
Default :  If no bucket name is provided, the bucket's under the provided credentials are auto-discovered and fully scanned. 

bucket_name

Connection string used to authenticate and access Azure Blob Storage when repo_type is azure_blob.

azure_connection_string

Name of the Azure Blob Storage container to be scanned; required when repo_type is azure_blob.
Default :  If no container name is provided, the container's under the provided credentials are auto-discovered and fully scanned. 


container_name

File containing the JSON key for a GCP service account; required for authentication when repo_type is gcp_storage.

service_account_json_file

x-api-key

Org-Id

<GET> Retrieve Artifacts

<POST> Supply Chain Attacks