{"id":29140413,"url":"https://github.com/fortify/ssc-restapi-client","last_synced_at":"2026-04-08T14:01:52.644Z","repository":{"id":37839549,"uuid":"168238384","full_name":"fortify/ssc-restapi-client","owner":"fortify","description":"Communicate with Fortify Software Security Center through REST API in java, a swagger generated client","archived":false,"fork":false,"pushed_at":"2025-06-30T13:55:06.000Z","size":1087,"stargazers_count":18,"open_issues_count":11,"forks_count":17,"subscribers_count":6,"default_branch":"master","last_synced_at":"2025-06-30T17:02:35.143Z","etag":null,"topics":["api","api-client","application-security","fortify","fortify-api","fortify-ssc","integration","openapi","security"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/fortify.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-01-29T22:18:22.000Z","updated_at":"2025-06-30T13:38:41.000Z","dependencies_parsed_at":"2023-11-14T03:26:50.926Z","dependency_job_id":"be763cc8-3511-4503-b49d-0127cfe71cb4","html_url":"https://github.com/fortify/ssc-restapi-client","commit_stats":null,"previous_names":[],"tags_count":9,"template":false,"template_full_name":null,"purl":"pkg:github/fortify/ssc-restapi-client","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fortify%2Fssc-restapi-client","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fortify%2Fssc-restapi-client/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fortify%2Fssc-restapi-client/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fortify%2Fssc-restapi-client/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/fortify","download_url":"https://codeload.github.com/fortify/ssc-restapi-client/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fortify%2Fssc-restapi-client/sbom","scorecard":{"id":407466,"data":{"date":"2025-08-11","repo":{"name":"github.com/fortify/ssc-restapi-client","commit":"c8b949c3707e3f67629c949a637d17d60a662817"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4.1,"checks":[{"name":"Maintained","score":1,"reason":"2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":3,"reason":"Found 7/20 approved changesets -- score normalized to 3","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/ci.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Binary-Artifacts","score":9,"reason":"binaries present in source code","details":["Warn: binary detected: gradle/wrapper/gradle-wrapper.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/fortify/ssc-restapi-client/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/fortify/ssc-restapi-client/ci.yml/master?enable=pin","Info:   0 out of   2 GitHub-owned GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v25.2 not signed: https://api.github.com/repos/fortify/ssc-restapi-client/releases/228791027","Warn: release artifact v24.2 not signed: https://api.github.com/repos/fortify/ssc-restapi-client/releases/146425082","Warn: release artifact v23.2.1 not signed: https://api.github.com/repos/fortify/ssc-restapi-client/releases/129463982","Warn: release artifact v23.2 not signed: https://api.github.com/repos/fortify/ssc-restapi-client/releases/128578356","Warn: release artifact v23.1.2 not signed: https://api.github.com/repos/fortify/ssc-restapi-client/releases/108438204","Warn: release artifact v25.2 does not have provenance: https://api.github.com/repos/fortify/ssc-restapi-client/releases/228791027","Warn: release artifact v24.2 does not have provenance: https://api.github.com/repos/fortify/ssc-restapi-client/releases/146425082","Warn: release artifact v23.2.1 does not have provenance: https://api.github.com/repos/fortify/ssc-restapi-client/releases/129463982","Warn: release artifact v23.2 does not have provenance: https://api.github.com/repos/fortify/ssc-restapi-client/releases/128578356","Warn: release artifact v23.1.2 does not have provenance: https://api.github.com/repos/fortify/ssc-restapi-client/releases/108438204"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/ci.yml:8"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 17 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-18T21:44:36.064Z","repository_id":37839549,"created_at":"2025-08-18T21:44:36.064Z","updated_at":"2025-08-18T21:44:36.064Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":273318275,"owners_count":25084165,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-02T02:00:09.530Z","response_time":77,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api","api-client","application-security","fortify","fortify-api","fortify-ssc","integration","openapi","security"],"created_at":"2025-06-30T17:02:24.423Z","updated_at":"2026-04-08T14:01:52.632Z","avatar_url":"https://github.com/fortify.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# ssc-restapi-client\n\n# Fortify Software Security Center REST API java client\nCommunicate with Fortify Software Security Center through REST API in java, a swagger generated client\n- API version: 1:25.4.0.0137\n\n## Generation:\n\nTo run swagger generator and produce the library, simply run\n```shell\ngradlew clean build\n```\n\nWhen you build this project it will use [./src/swagger/spec.json] to generate a source code \nto communicate with Fortify SSC using REST, then compile it into a jar library \nand prepare for publishing to Maven central.\n\nYou can download spec.json from your working Fortify Software Security Center on the API Reference page.\n\n## Installation\n\n### Maven users\n\nAdd this dependency to your project's POM:\n\n```xml\n\u003cdependency\u003e\n    \u003cgroupId\u003ecom.fortify\u003c/groupId\u003e\n    \u003cartifactId\u003essc-restapi-client\u003c/artifactId\u003e\n    \u003cversion\u003e25.4\u003c/version\u003e\n    \u003cscope\u003ecompile\u003c/scope\u003e\n\u003c/dependency\u003e\n```\n\n### Gradle users\n\nAdd this dependency to your project's build file:\n\n```groovy\ncompile \"com.fortify:ssc-restapi-client:25.4\"\n```\n\n## Getting Started\n\nPlease follow the [installation](#installation) instruction and execute the following Java code:\n\n```java\n\nimport com.fortify.ssc.restclient.*;\nimport com.fortify.ssc.restclient.auth.*;\nimport com.fortify.ssc.restclient.model.*;\nimport com.fortify.ssc.restclient.api.AaTrainingStatusOfProjectVersionControllerApi;\n\nimport java.io.File;\nimport java.util.*;\n\npublic class AaTrainingStatusOfProjectVersionControllerApiExample {\n\n    public static void main(String[] args) {\n        ApiClient defaultClient = Configuration.getDefaultApiClient();\n        \n        // Configure API key authorization: FortifyToken\n        ApiKeyAuth FortifyToken = (ApiKeyAuth) defaultClient.getAuthentication(\"FortifyToken\");\n        FortifyToken.setApiKey(\"YOUR API KEY\");\n        // Uncomment the following line to set a prefix for the API key, e.g. \"Token\" (defaults to null)\n        //FortifyToken.setApiKeyPrefix(\"Token\");\n\n        AaTrainingStatusOfProjectVersionControllerApi apiInstance = new AaTrainingStatusOfProjectVersionControllerApi();\n        Long parentId = 789L; // Long | parentId\n        String fields = \"fields_example\"; // String | Output fields\n        try {\n            ApiResultListAATrainingStatus result = apiInstance.listAaTrainingStatusOfProjectVersion(parentId, fields);\n            System.out.println(result);\n        } catch (ApiException e) {\n            System.err.println(\"Exception when calling AaTrainingStatusOfProjectVersionControllerApi#listAaTrainingStatusOfProjectVersion\");\n            e.printStackTrace();\n        }\n    }\n}\n\n```\n\n## Documentation for Authorization\n\nAuthentication schemes defined for the API:\n### Basic\n\n- **Type**: HTTP basic authentication\n\n### FortifyToken\n\n- **Type**: API key\n- **API key parameter name**: Authorization\n- **Location**: HTTP header\n\n## Compatibility:\n\nThe first two digits of the ssc-restapi-client version correspond to the version of SSC where the REST API specification has been pulled from. The last digit is reserved for fixing problems with this library itself, it does not affect compatibility.\nSSC API was designed with backwards compatibility in mind, so you are most likely should be able to use the newer client with an older SSC (and vice versa). Not all features may be available in this case.\n\n## Recommendation\n\nIt's recommended to create an instance of `ApiClient` per thread in a multithreaded environment to avoid any potential issues.\n\n## Author\n\nFortify R\u0026D\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffortify%2Fssc-restapi-client","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffortify%2Fssc-restapi-client","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffortify%2Fssc-restapi-client/lists"}