Known Issues and Limitations for Mend Developer Platform
Issue | Details | Fix comment |
|---|---|---|
Bitbucket rate limit | There is a 1000 calls/hour rate limit that is applied to the workspace for all of its apps. In some cases (e.g., several apps are using this API) Mend is going to hit a rate limit and will stop working as expected for some time | Mend will inform you in the Developer Portal when this incident occurs. Additionally, it is now possible to disable the creation of some commit comments to reduce the API usage via the notification settings in the Developer Platform. |
Renovate and Remediate PRs are hard to distinguish | They use the same name pattern with no difference | This is planned to be fixed and also we might add a parameter to let users control the naming of PRs |
Base branches parameter in the portal doesn't apply to Renovate | This parameter is currently only available through renovate.json |
|
Connecting Multiple SCMs to a Single Mend Organization
You can connect multiple source code management (SCM) systems to a single organization in the Mend AppSec Platform, with the following caveats:
http://developer.mend.io can be connected to any Mend AppSec Platform organization regardless of where it’s hosted (US or EU), except Azure DevOps.
Azure DevOps can only be connected to a Mend AppSec Platform organization as follows:
http://developer.mend.io --> Mend organization hosted in US (e.g., saas.mend.io)
http://developer-eu.mend.io --> Mend organization hosted in EU (e.g., saas-eu.mend.io)
If you have multiple SCMs connected to your organization in the Mend AppSec Platform, to switch between them you must first sign out of the Developer Platform, then select a different SCM on your next sign-in. Example:
Sign in with GitHub to see your GitHub organizations
Sign out
Sign back in with Azure DevOps to see your Azure DevOps projects
The Developer Platform is currently not supported for organizations hosted in India