Export OpenVEX Document (Beta)

get

https://api.socket.dev/v0/orgs/{org_slug}/export/openvex/{id}

Export vulnerability exploitability data as an OpenVEX v0.2.0 document.

OpenVEX (Vulnerability Exploitability eXchange) documents communicate the exploitability status of vulnerabilities in software products. This export includes:

Patch data: Vulnerabilities fixed by applied Socket patches are marked as "fixed"
Reachability analysis: Code reachability determines if vulnerable code is exploitable:
Unreachable code → "not_affected" with justification
Reachable code → "affected"
Unknown/pending → "under_investigation"

Each statement in the document represents a single artifact-vulnerability pair for granular reachability information.

This endpoint consumes 1 unit of your quota.

This endpoint requires the following org token scopes:

report:read

Language

Credentials

Click Try It! to start a request and see the response here!