Exports & proof bundles
CSV exports, replay artifacts, and proof bundles produce the handoff artifacts you need to triage outside the dashboard.
Run CSV
Exports the persisted findings for one owned scan run. Available once the run reaches a terminal status (completed, degraded, blocked, or failed).
GET /api/scan-runs/{id}/csv
# filename: infiniview-scan-run-{id}-findings.csvBacklog CSV
Exports the filtered findings backlog for the signed-in user. Same shape as the per-run CSV, but spans every owned run.
GET /api/security-findings/export?scope=active|archived|all
&reviewId=...&scanRunId=...
# filename: infiniview-security-findings.csvNote
scope=active is the default: it excludes findings from archived reviews. Use scope=all when you need a complete dump across active and archived runs.CSV columns
Both CSV exports share the same columns, in this order:
findingId
reviewId
scanRunId
severity
category
exploitability
confidence
priorityScore
title
description
fingerprint
primaryFile
lineStart
lineEnd
sourcePhase
scannerName
ruleId
deltaStatus
suppressed
suppressionScope
createdAt
Replay artifacts
Returns the latest replay artifact for a finding when one exists.
GET /api/security-findings/{id}/replayProof bundle
Packages identity, location, replay data, proof-of-concept variants, and expected behavior into a single bundle. Useful for handing off to engineering or filing an issue.
GET /api/security-findings/{id}/bundleSummary
| Artifact | Endpoint | What it contains |
|---|---|---|
| Run CSV | /api/scan-runs/{id}/csv | One row per finding for one owned scan run. |
| Backlog CSV | /api/security-findings/export | Filtered backlog for the signed-in user. |
| Replay | /api/security-findings/{id}/replay | Latest replay artifact for one finding. |
| Bundle | /api/security-findings/{id}/bundle | Identity, location, replay, PoC, expected behavior. |