The Below parameters are for supply chain attacks. To know more about different input parameters and how to use API see 

This api perform static assessment of files present in repos, local or s3 bucket for possible vulnerability

Supply Chain Attacks

The type of repository to scan (e.g., github, gitlab, bitbucket, huggingface, s3_bucket, azure_blob, gcp_storage).

repo_type

Name of the branch in the repository to be scanned (e.g., main, dev).

Number of recent commits to scan from the specified branch (e.g., depth: 10 scans the latest 10 commits).

Optional username used for authenticating access to private repositories when required (e.g., GitHub, GitLab, Bitbucket, huggingface).

Personal Access Token used for authenticating access to private repositories.

Required if repo_type is file; identifier returned by the model ID generation API, used to locate the uploaded file for scanning.

AWS access key ID used to authenticate and access S3 buckets when repo_type is s3_bucket.

AWS secret access key paired with aws_access_key_id for authenticating access to S3 resources.

The AWS region where the S3 bucket is hosted (e.g., us-east-1, ap-south-1).

Required if repo_type is s3_bucket or gcp_storage; specifies the name of the cloud storage bucket to be scanned.

Connection string used to authenticate and access Azure Blob Storage when repo_type is azure_blob.

Name of the Azure Blob Storage container to be scanned; required when repo_type is azure_blob.

File containing the JSON key for a GCP service account; required for authentication when repo_type is gcp_storage.