Search all resources (Artifacts, Builds, Release Bundles, etc.) that include a specific package or are impacted by a specific vulnerability (CVE or XRAY ID). Supports three search modes:

• Mode 1 - By Vulnerability: vulnerability is required.
• Mode 2 - By Package Version: name and type are required; version is optional.
• Mode 3 - By Package (all versions): name and type are required; omit version.

SBOM Requirement: This capability depends on the SBOM Service. Self-Hosted users must enable the SBOM feature and complete the SBOM migration. If SBOM is disabled, the API returns 403.

Pagination: Use last_key from the response to fetch subsequent pages; an empty last_key indicates no further results. Limit defaults to 1000, maximum 10000.

Requires the Reports Manager permission. Since Xray 3.131.