Get Code Scan Metrics
Get metrics for enterprise code scans
Permissions
Requires a service user with theViewAccountCodeScans permission at the enterprise level.
Time filters
This endpoint requires thetime_after and time_before query parameters.
- Both
time_afterandtime_beforeare Unix timestamps in seconds, interpreted as UTC. time_aftermust be earlier thantime_before.- The time range between
time_afterandtime_beforemust be 100 days or less. - Metrics are scoped to code scans created within this time range.
Authorizations
Service User credential (prefix: cog_)
Response
Successful Response
Response model for code scan metrics.
All metrics are scoped to code scans created within the specified time range: findings and remediation PRs are attributed to the scan that produced them.
Average time a PR is (or was) open, in seconds: creation to merge/close for finished PRs, creation to now for open PRs. Null when no PRs were created.
Average time from PR creation to merge, in seconds. Null when no PRs have been merged.
Number of open findings with critical severity.
Number of open findings with high severity.
Number of open findings with low severity.
Number of open findings with medium severity.
Number of remediation PRs closed without being merged.
Number of PRs created by the scans' remediation sessions.
Number of remediation PRs merged.
Number of remediation PRs currently in the open state.
Number of distinct repositories scanned.
Number of code scans created within the specified time range.

