A new expert article is now available in the developer portal:

There are several endpoints, parameters, and attributes in the Web Application Scanning v2 API that are pending deprecation. These items will be removed on November 18th, 2021. Please update any existing integrations that your organization has before this date.

The Tenable.io Web Application Scanning v2 API now supports multi-target scans. This feature allows users to specify up to 1,000 targets in a single scan. Previously the WAS v2 API only supported single target scans.

You can now send instructions to agents or agents in a group via the Tenable.io API. Two new endpoints were added to allow users to send instructions in bulk.

The Tenable.io API now supports criteria filtering for agent bulk operations. Users can now specify whether or not to perform bulk operation on all agents or a subset of agents determined by filtering criteria. Previously, users could only specify an array of agent IDs or UUIDs when performing agent bulk operations.

The Tenable.io Vulnerability Management API now offers users the ability to hard delete assets when deleting assets in bulk. The hard deletion of an asset completely removes the asset from your licensed asset count along with all related data.

A new filter has been added to allow customers to filter vulnerability exports by plugin type. The new filter is plugin_type.

The Tenable.io API now supports compliance data exports. The compliance export API can be used to export data that is an aggregation or summary of all compliance scan data. The summary is updated with the latest audit results as new compliance scans are run. The compliance export API does not return results for individual scans.

A new field has been added to allow customers to filter export results and observe the specific time a document has been indexed into the Tenable.io datastore. The new filter is indexed_at.

You can now use the Tenable.io Web Application Scanning v2 API to get vulnerability details by vuln ID.