OSS Index Helpclose
An open index of open source

REST API V2 Documentation

GET /v2.0/pm/:pm/update

Posted by OSS-Index on July 24, 2016

:pm package manager name

where pm must be one of

  • nuget
  • bower
  • npm

Returns a unix style timestamp indicating when any package in the package manager has been updated (specifically with new vulnerabilities).

More details...

GET /v2.0/vulnerability/pm/:pm/fromtill/:from/:till

Posted by OSS-Index on December 10, 2016

:pm package manager name
:from unix epoch time
:till unix epoch time

Return a list of packages containing vulnerabilities updated from the specified Unix epoch time in milliseconds, ending at the specified "till" time. The results are paged and show a maximum of 100 vulnerabilities per page.

More details...

GET /v2.0/package/:pm/:package

POST /v2.0/package

Posted by OSS-Index on July 24, 2016

:pm package manager name
:package package name

Searches for packages in the database by package manager name.

Returns a list of packages, each containing a vulnerability list and some basic data for the named package.

More details...

POST /v2.0/package/request

Posted by OSS-Index on November 02, 2016

Inform OSS Index of a list of packages of interest. OSS Index uses this information to help guide vulnerability research. Knowing the packages of interest aids in the appropriate allocation of resources and time.

More details...

GET /v2.0/vulnerability/pm/:pm/since/:timestamp

The "since" API has been deprecated and will be deleted in the near future

GET /v2.0/package/:pm/:package/:version

POST /v2.0/package

The "package version search" API is deprecated and will be deleted in future API versions

POST /v2.0/package/request

Posted by OSS-Index on November 02, 2016

Inform OSS Index of a list of packages of interest. OSS Index uses this information to help guide vulnerability research. Knowing the packages of interest aids in the appropriate allocation of resources and time.

More details...