The Web Application Scanning v1 API is now deprecated and marked for end of life. Tenable recommends that you update any existing integrations that still use the WAS v1 API to the WAS v2 API. All features and functionality of the WAS v1 API are included in the WAS v2 API, and the WAS v2 API is already enabled across all customer Tenable.io environments.
A new filter has been added to the assets export endpoint that enables customers to filter assets that were last scanned by a specified scan configuration UUID. The new filter is last_scan_id.
The user permissions requirement for editing and deleting assets has been reduced from ADMINISTRATOR [64] to SCAN OPERATOR [24]. For more information about permissions and roles, see Permissions.
The Tenable.io API now supports bulk scanner directives. A new endpoint has been added to allow customers to send instructions to multiple scanners. You can use the all_scanners parameter along with the directive object to send instructions. Alternatively, you can provide an array of scanner UUIDs in the scanners parameter to send along with the directive object to send instructions to a subset of scanners.
Rollover scan parameters have been added to the Tenable.io scanning API to allow users to launch rollover scans, retrieve rollover history data, and delete rollover history data. When you launch a rollover scan, the scan runs only against targets that Tenable.io did not scan previously due to a scan timeout. Rollover scans allow you to achieve complete scan coverage for all your assets, and you can use the rollover feature to split up large, network-impacting scans.
A new endpoint has been added to the Tenable.io API to allow users to rename agents. The endpoint accepts a string body parameter called name to rename the agent.
A new parameter is now available for the Tenable Cloud Security List violations endpoint that allows you to return the violations data in CSV format rather than JSON format. The csv_format query parameter can be specified with a value of true to return the violations data in CSV format.
The Tenable.io API now supports scheduled exports. The scheduled exports API allows you to asynchronously export assets and findings data from Tenable.io in JSON or CSV format at a specified interval. You can use the API to schedule export jobs, monitor job status, and download the export results.
The behavior of the scan_time_window body parameter has changed. Previously, this parameter only applied to Nessus agent scans. However, this parameter can now be used for Nessus scanner scans to set the time frame, in minutes, after which the scan will automatically stop.
Documentation for the Tenable Cloud Security API is now available in the developer portal.
