API endpoints - Administrator Guide - Cortex Cloud Posture Management - Cortex CLOUD

Cortex Cloud Runtime Security Documentation

Product: Cortex Cloud Application Security > Cortex CLOUD
License: Cloud Runtime Security
Creation date: 2024-12-24
Last date published: 2026-06-10
Category: Administrator Guide

This quick reference lists the Application Security API endpoints used in our dedicated workflow guides, such as the Unified Application Security Policy API workflow. It connects the practical steps in those guides with the underlying API specifications.

For complete schemas, available filtering parameters, payload examples, and specific implementation details for all API endpoints Cortex Cloud Platform APIs documentation.

Data source integrations

Description	Endpoint
Create a new AppSec data source integration VCS CI CD third party scanner or a 3rd Party AppSec Collector	`POST /public_api/appsec/v1/data_source_instances`
Retrieve a list of data source integrations or collectors	`GET /public_api/appsec/v1/data_source_instances`
Retrieve details of a specific data source integration or collector	`GET /public_api/appsec/v1/data_source_instances/{id}`
Update an existing data source integration or collector configuration	`PUT /public_api/appsec/v1/data_source_instances/{id}`
Delete a data source integration or collector and its associated repository mappings	`DELETE /public_api/appsec/v1/data_source_instances/{id}`
Upload SAST findings SARIF files to a 3rd Party Collector	`POST /public_api/appsec/v1/collectors/{collectorId}`

Unified Application Security policies

Description	Endpoint
Create a new policy define conditions target scopes and triggers	`POST /public_api/appsec/v1/policies`
Retrieve a list of all Unified Application Security Policies	`GET /public_api/appsec/v1/policies`
Retrieve full configuration details of a specific policy by ID	`GET /public_api/appsec/v1/policies/{policyId}`
Update an existing policys configuration	`PUT /public_api/appsec/v1/policies/{policyId}`
Delete a policy from your environment	`DELETE /public_api/appsec/v1/policies/{policyId}`

Application criteria

Description	Endpoint
Create new application grouping criteria Code or Cloud type	`POST /public_api/appsec/v1/application/criteria/`
Retrieve a list of all application criteria	`GET /public_api/appsec/v1/application/criteria/all`
Retrieve specific application criteria by ID	`GET /public_api/appsec/v1/application/criteria/{criteriaId}`
Delete application criteria by ID	`DELETE /public_api/appsec/v1/application/criteria/{criteriaId}`

Repositories and scan configurations

Description	Endpoint
Retrieve a list of repository assets	`GET /public_api/appsec/v1/repositories`
Retrieve a specific repository asset by ID	`GET /public_api/appsec/v1/repositories/{assetId}`
Retrieve the scan configuration for a repository	`GET /public_api/appsec/v1/repositories/{assetId}/scan-configuration`
Update the scan configuration scanners PR scanning excluded paths etc	`PUT /public_api/appsec/v1/repositories/{assetId}/scan-configuration`
Retrieve configured branches for scanning	`GET /public_api/appsec/v1/repositories/{assetId}/branches`
Update the primary and selected branches for scanning	`PUT /public_api/appsec/v1/repositories/{assetId}/branches`

Business applications

Description	Endpoint
Create a new business application with a name criticality and ownership metadata	`POST /public_api/appsec/v1/applications`
Retrieve a list of all applications with pagination	`GET /public_api/appsec/v1/applications`
Retrieve a specific application by its unique identifier	`GET /public_api/appsec/v1/applications/{applicationId}`
Update application metadata description owners compliance etc	`PUT /public_api/appsec/v1/applications/{applicationId}`
Delete an application	`DELETE /public_api/appsec/v1/applications/{applicationId}`
Retrieve application configuration settings for the tenant	`GET /public_api/appsec/v1/applications/configuration`
Retrieve an issue summary breakdown by severity for a specific application	`GET /public_api/appsec/v1/applications/{applicationId}/issues/{issueType}/summary`
Retrieve application insights by category and item type	`GET /public_api/appsec/v1/applications/{applicationId}/insights/{category}/{itemType}`

Scans, issues, and findings

Description	Endpoint
Retrieve a list of branch periodic scans	`GET /public_api/appsec/v1/scans/periodic`
Retrieve a list of pull request PR scans	`GET /public_api/appsec/v1/scans/pr`
Retrieve a list of CI scans	`GET /public_api/appsec/v1/scans/ci`
Retrieve unscanned Application Security repositories	`GET /public_api/appsec/v1/scans/unscanned_repositories`
Retrieve individual issue records found during a specific scan	`GET /public_api/appsec/v1/scans/{scanId}/issues`
Retrieve raw scanner findings for a specific scan	`GET /public_api/appsec/v1/scans/{scanId}/findings`
Trigger a rerun of a repository scan	`POST /public_api/appsec/v1/scan/repository/{repositoryId}`