API Security Scanner Parameters

The parameters that will be defined for the API Security scanner will be applied for all the Projects that will run API Security scans.

The table below presents the optional parameters, and their optional values.

Notice

API configs can be configured on the account or project level using the Configuration API or on the scan level as part of the request body of the POST /scans API. When using the POST /scans API the scan.config.apisec prefix is left out.

Parameter	Values	Notes	CLI	API
Swagger folder/file filter	Swagger folder path or any folder/file type. Allow users to select specific folders or files that they want to include or exclude from the code scanning process.	Including a file type - .java Excluding a file type - !.java Use “,” sign to chain file types. For example: .java,.js The parameter also supports including/excluding folders. regex is not supported.		`scan.config.apisec.swaggerFilter` Tenant/Project example:

Parameter

Values

Notes

CLI

API

Swagger folder/file filter

Swagger folder path or any folder/file type.

Allow users to select specific folders or files that they want to include or exclude from the code scanning process.

Including a file type - *.java
Excluding a file type - !*.java
Use “,” sign to chain file types.
For example: *.java,*.js
The parameter also supports including/excluding folders.
regex is not supported.

scan.config.apisec.swaggerFilter

Tenant/Project example:

In this section:

API Security Scanner Parameters

Notice

Search results