Tenable.sc API: Changelog

 

Version 5.16.x

Tenable.sc 5.16.x API includes updates for the following endpoints:

Version 5.15.x

Tenable.sc 5.15.x API includes updates for the following endpoints:

  • Status

    • Added "migrationStatus" to the response of /status::GET to indicate the status of the last migration that was run. Valid values are "Running" or "Stopped". A null value indicates that the migration was successful.

  • Scan Result

    • Added "agentScanID" to the response of the stop, resume, and pause endpoints to indicate the ID of the Agent Scan associated with the Scan Result.

Version 5.14.x

Tenable.sc 5.14.x API includes the following new functionality:

Tenable.sc 5.14.x API includes updates for the following endpoints:

  • Analysis

    • Clarified pre-existing behavior of results being inclusive of the startOffset parameter value and exclusive of the endOffset parameter value.

    • Duplicated "hostUniqueness" field to also return as original field name "uniqueness" to support integrations relying on field name.

  • Credential

    • Added new authType "Hashicorp" to "SSH", "Windows", and "Database" credentials.

    • Added new authType "Arcon" to "SSH" and "Windows" credentials.

  • Lumin

    • Updated the request parameters for the /lumin/assets::PATCH endpoint to allow for a schedule object to be provided for the start time for the daily synchronization of assets to Lumin.

    • Dynamic assets are now supported for syncing Lumin assets.

  • Configuration Section

    • For the endpoint /configSection/9::GET which returns Lumin configuration information, added a new element to the response object, "assetsSyncSchedule", which contains the schedule object for the daily synchronization of assets to IO/Lumin.

Version 5.13.x

Tenable.sc 5.13.x API includes the following new functionality:

  • Lumin

    • New endpoints /lumin/repositories::PATCH and /lumin/assets::PATCH to allow for enabling Lumin Synchronization.

Tenable.sc 5.13.x API includes updates for the following endpoints:

  • Scanner

    • Field "password" now supported for authType "certificate" in /scanner::GET, /scanner:POST, and /scanner:PATCH. The conventions will follow the password field for Nessus Scanners, and return SET when a certificate password exists.

  • Industrial Security

    • Field "password" now supported for authType "certificate" in /industrialSecurity::GET, /industrialSecurity::POST, and /industrialSecurity::PATCH. The conventions will follow the password field for Industrial Security Instances, and return SET when a certificate password exists.

  • Passive Scanner (NNM)

    • Field "password" now supported for authType "certificate" in /passivescanner::GET, /passivescanner::POST, and /passivescanner::PATCH. The conventions will follow the password field for Passive (NNM) Scanners, and return SET when a certificate password exists.

  • Configuration Section

    • /configSection::GET - Added Lumin Section for ID 9.

    • Added new configuration section: /configSection/9::GET.

    • Added new configuration section: /configSection/9::PATCH.

  • Repository

    • Added fields "luminFields" and "ipOverlaps" to /repository::GET.

    • Added field "luminFields" to /repository/{id}::GET.

  • Asset

    • Added admin access to /asset::GET with a limited field subset including organization and luminFields.

    • Added admin access to /asset/{id}::GET with a limited field subset including organization and luminFields.

  • Credential

    • Added fields "source" and "csv_file" to /credential::POST, /credential::PATCH, and /credential::GET.

  • Configuration

    • Added new string params “ioAccessKey” and "ioSecretKey" to /config/64::GET.

    • Added new string params “ioAccessKey” and "ioSecretKey" to /config/64::PATCH.

  • Analysis

    • Modified attribute "uniqueness" to "hostUniqueness" in the response for certain vuln types.

The following functionality was removed from Tenable.sc:

  • System

    • Removed unsupported / undocumented endpoints: /system/fips::GET and /system/fips::POST.

Version 5.12.x

Tenable.sc 5.12.x API includes the following new functionality:

  • System

    • Added new field "SerializationDisabled" and missing field "telemetryEnabled" to /system::GET response.

    • Added debug option "dbIOErrors" to /system/debug::GET.

    • Added fields "touchDebuggingEnabled" and "migrationFailure" to /system/diagnostic::GET.

  • Scanner

    • Created endpoint /scanner/{id}/bug-report.

    • Created endpoint /scanner/{id}/health.

  • Solutions (provisional)

    • Created endpoint /solutions::POST.

    • Created endpoint /solutions/{pluginID}::POST.

    • Created endpoint /solutions/{pluginID}/vuln::POST.

    • Created endpoint /solutions/{pluginID}/asset::POST.

  • AuditFile

    • filename and originalFilename now required for auditFileTemplate 'id' is '-1' instead of auditFileTemplate 'id' is not '-1' for /AuditFile::POST.

  • Report

    • Removed non-existent endpoint /report/{id}/pause::POST.

  • MDM

    • Added new MDM types Blackberry UEM and Microsoft Intune to /mdm::GET.

The following functionality was removed from Tenable.sc:

  • IP Information

    • The /ipInfo::GET endpoint was deleted and the IP Information page was removed from API documentation. This functionality is now available through the /deviceInfo::GET endpoint.

  • Repository

  • Report

    • The /report/{id}/publish::POST endpoint was deleted.

Version 5.11.x

Tenable.sc 5.11.x API includes the following new functionality:

  • Group

    • Added new field "createDefaultObjects" in /group::GET and /group/<id>::GET

    • Added new parameter "createDefaultObjects" in /group::POST and /group/<id>::PATCH

  • Credential

    • Added new field “beyondtrust_api_user” in /credential::POST and /credential/<id>::PATCH for beyondTrust credentials of type "ssh" and "windows"

    • Added new parameter "beyondtrust_api_user” in /credential::GET and /credential/<id>::GET in the typeFields for credentials of type "ssh" and "windows"

  • Scan Result

    • Added new optional filter "optimizeCompletedScans" to /scanResult::GET to skip retrieval of progress fields (completedIPs, completedChecks, totalChecks) for scans that are no longer in progress to optimize speed.

The following functionality was deprecated (marked for future removal):

  • User

    • Marked fields "importReports", "importARCs", "importDashboards", "dashboardTemplate", and "arcTemplate" in /user::POST. During the deprecation period, the default of these fields will be updated to the new "createDefaultObjects" group setting.

  • Organization Security Manager

    • Marked fields "importReports", "importARCs", "importDashboards", "dashboardTemplate", and "arcTemplate" in /user::POST. During the deprecation period, the default of these fields will be updated to the new "createDefaultObjects" group setting

Version 5.10.x

Tenable.sc 5.10 API includes the following changes:

  • System

    • Added new endpoint /system/debug::GET

    • Added new endpoint /system/debug::PATCH

  • Plugin

    • Added new field “vprContext” to /plugin::GET

    • Added new field “vprContext” to /plugin/{id}::GET

  • Plugin Family

    • Added new field “vprContext” to /pluginFamily/{id}/plugins::GET

  • Scan

    • Added new field “enabled” to the schedule object inside /scan::POST

    • Added new field “enabled” to the schedule object inside /scan/{id}::PATCH

  • Scanner

    • Added fields “accessKey” and “secretKey” to /scanner::GET

    • Added fields “accessKey” and “secretKey” to /scanner/{id}::GET

    • Added fields “accessKey” and “secretKey” to /scanner/{id}::POST