I'm digging into the ThreadFix API and I'm working against version 2.2.7.1. There was an announcement about 2.2.8 back in July 2015. However, the only version that I see is available for download is the Jan. 2015 version 2.2.7. I'm wondering if 2.2.8 or 2.3 addresses my issue:
It looks like applications are unique by name in the system (This is the behaviour in the UI). Vulnerabilities are retrieved using application id. In order to determine the id of an application it appears I also need the Team name. Is this expected?
Is there a way to a) retrieve an application id using only the name or b) retrieve vulnerabilities by application name.
Is there a downloadable 2.3 version or do developers need to build the WAR themselves?
All the best,
Geoff