Version 1.5.5 - New service collections, operations and updates #1401

jshcodes · 2025-12-12T20:57:44Z

FalconPy v1.5.5

This update provides new service collections (Case Management, Data Protection Configuration, Cloud Security) and new operations within existing service collections. Multiple bugs are addressed, and multiple updates are implemented.

Enhancement
Bug fixes
Updated unit tests

Unit test coverage

Name                                                                    Stmts   Miss  Cover
-------------------------------------------------------------------------------------------
src/falconpy/__init__.py                                                  131      0   100%
src/falconpy/_api_request/__init__.py                                       7      0   100%
src/falconpy/_api_request/_request.py                                     112      0   100%
src/falconpy/_api_request/_request_behavior.py                             64      0   100%
src/falconpy/_api_request/_request_connection.py                            8      0   100%
src/falconpy/_api_request/_request_meta.py                                 26      0   100%
src/falconpy/_api_request/_request_payloads.py                              8      0   100%
src/falconpy/_api_request/_request_validator.py                             6      0   100%
src/falconpy/_auth_object/__init__.py                                       6      0   100%
src/falconpy/_auth_object/_base_falcon_auth.py                             13      0   100%
src/falconpy/_auth_object/_bearer_token.py                                 63      0   100%
src/falconpy/_auth_object/_falcon_interface.py                            279      5    98%
src/falconpy/_auth_object/_interface_config.py                             40      0   100%
src/falconpy/_auth_object/_uber_interface.py                               51      0   100%
src/falconpy/_constant/__init__.py                                         12      0   100%
src/falconpy/_endpoint/__init__.py                                        276      0   100%
src/falconpy/_endpoint/_alerts.py                                           1      0   100%
src/falconpy/_endpoint/_api_integrations.py                                 1      0   100%
src/falconpy/_endpoint/_aspm.py                                             1      0   100%
src/falconpy/_endpoint/_cao_hunting.py                                      1      0   100%
src/falconpy/_endpoint/_case_management.py                                  1      0   100%
src/falconpy/_endpoint/_certificate_based_exclusions.py                     1      0   100%
src/falconpy/_endpoint/_cloud_aws_registration.py                           1      0   100%
src/falconpy/_endpoint/_cloud_azure_registration.py                         1      0   100%
src/falconpy/_endpoint/_cloud_connect_aws.py                                1      0   100%
src/falconpy/_endpoint/_cloud_google_cloud_registration.py                  1      0   100%
src/falconpy/_endpoint/_cloud_oci_registration.py                           1      0   100%
src/falconpy/_endpoint/_cloud_policies.py                                   1      0   100%
src/falconpy/_endpoint/_cloud_security.py                                   1      0   100%
src/falconpy/_endpoint/_cloud_security_assets.py                            1      0   100%
src/falconpy/_endpoint/_cloud_security_compliance.py                        1      0   100%
src/falconpy/_endpoint/_cloud_security_detections.py                        1      0   100%
src/falconpy/_endpoint/_cloud_snapshots.py                                  1      0   100%
src/falconpy/_endpoint/_configuration_assessment.py                         1      0   100%
src/falconpy/_endpoint/_configuration_assessment_evaluation_logic.py        1      0   100%
src/falconpy/_endpoint/_container_alerts.py                                 1      0   100%
src/falconpy/_endpoint/_container_detections.py                             1      0   100%
src/falconpy/_endpoint/_container_image_compliance.py                       1      0   100%
src/falconpy/_endpoint/_container_images.py                                 1      0   100%
src/falconpy/_endpoint/_container_packages.py                               1      0   100%
src/falconpy/_endpoint/_container_vulnerabilities.py                        1      0   100%
src/falconpy/_endpoint/_content_update_policies.py                          1      0   100%
src/falconpy/_endpoint/_correlation_rules.py                                1      0   100%
src/falconpy/_endpoint/_correlation_rules_admin.py                          1      0   100%
src/falconpy/_endpoint/_cspm_registration.py                                1      0   100%
src/falconpy/_endpoint/_custom_ioa.py                                       1      0   100%
src/falconpy/_endpoint/_custom_storage.py                                   1      0   100%
src/falconpy/_endpoint/_d4c_registration.py                                 1      0   100%
src/falconpy/_endpoint/_data_protection_configuration.py                    1      0   100%
src/falconpy/_endpoint/_delivery_settings.py                                1      0   100%
src/falconpy/_endpoint/_deployments.py                                      1      0   100%
src/falconpy/_endpoint/_detects.py                                          1      0   100%
src/falconpy/_endpoint/_device_content.py                                   1      0   100%
src/falconpy/_endpoint/_device_control_policies.py                          1      0   100%
src/falconpy/_endpoint/_discover.py                                         1      0   100%
src/falconpy/_endpoint/_downloads.py                                        1      0   100%
src/falconpy/_endpoint/_drift_indicators.py                                 1      0   100%
src/falconpy/_endpoint/_event_streams.py                                    1      0   100%
src/falconpy/_endpoint/_exposure_management.py                              1      0   100%
src/falconpy/_endpoint/_faas_execution.py                                   1      0   100%
src/falconpy/_endpoint/_falcon_complete_dashboard.py                        1      0   100%
src/falconpy/_endpoint/_falcon_container.py                                 1      0   100%
src/falconpy/_endpoint/_falconx_sandbox.py                                  1      0   100%
src/falconpy/_endpoint/_fdr.py                                              1      0   100%
src/falconpy/_endpoint/_filevantage.py                                      1      0   100%
src/falconpy/_endpoint/_firewall_management.py                              1      0   100%
src/falconpy/_endpoint/_firewall_policies.py                                1      0   100%
src/falconpy/_endpoint/_foundry_logscale.py                                 1      0   100%
src/falconpy/_endpoint/_host_group.py                                       1      0   100%
src/falconpy/_endpoint/_host_migration.py                                   1      0   100%
src/falconpy/_endpoint/_hosts.py                                            1      0   100%
src/falconpy/_endpoint/_identity_protection.py                              1      0   100%
src/falconpy/_endpoint/_image_assessment_policies.py                        1      0   100%
src/falconpy/_endpoint/_incidents.py                                        1      0   100%
src/falconpy/_endpoint/_installation_tokens.py                              1      0   100%
src/falconpy/_endpoint/_intel.py                                            1      0   100%
src/falconpy/_endpoint/_intelligence_feeds.py                               1      0   100%
src/falconpy/_endpoint/_intelligence_indicator_graph.py                     1      0   100%
src/falconpy/_endpoint/_ioa_exclusions.py                                   1      0   100%
src/falconpy/_endpoint/_ioc.py                                              1      0   100%
src/falconpy/_endpoint/_iocs.py                                             1      0   100%
src/falconpy/_endpoint/_it_automation.py                                    1      0   100%
src/falconpy/_endpoint/_kubernetes_container_compliance.py                  1      0   100%
src/falconpy/_endpoint/_kubernetes_protection.py                            1      0   100%
src/falconpy/_endpoint/_malquery.py                                         1      0   100%
src/falconpy/_endpoint/_message_center.py                                   1      0   100%
src/falconpy/_endpoint/_ml_exclusions.py                                    1      0   100%
src/falconpy/_endpoint/_mobile_enrollment.py                                1      0   100%
src/falconpy/_endpoint/_mssp.py                                             1      0   100%
src/falconpy/_endpoint/_ngsiem.py                                           1      0   100%
src/falconpy/_endpoint/_oauth2.py                                           1      0   100%
src/falconpy/_endpoint/_ods.py                                              1      0   100%
src/falconpy/_endpoint/_overwatch_dashboard.py                              1      0   100%
src/falconpy/_endpoint/_prevention_policies.py                              1      0   100%
src/falconpy/_endpoint/_quarantine.py                                       1      0   100%
src/falconpy/_endpoint/_quick_scan.py                                       1      0   100%
src/falconpy/_endpoint/_quick_scan_pro.py                                   1      0   100%
src/falconpy/_endpoint/_real_time_response.py                               1      0   100%
src/falconpy/_endpoint/_real_time_response_admin.py                         1      0   100%
src/falconpy/_endpoint/_real_time_response_audit.py                         1      0   100%
src/falconpy/_endpoint/_recon.py                                            1      0   100%
src/falconpy/_endpoint/_report_executions.py                                1      0   100%
src/falconpy/_endpoint/_response_policies.py                                1      0   100%
src/falconpy/_endpoint/_saas_security.py                                    1      0   100%
src/falconpy/_endpoint/_sample_uploads.py                                   1      0   100%
src/falconpy/_endpoint/_scheduled_reports.py                                1      0   100%
src/falconpy/_endpoint/_sensor_download.py                                  1      0   100%
src/falconpy/_endpoint/_sensor_update_policies.py                           1      0   100%
src/falconpy/_endpoint/_sensor_usage.py                                     1      0   100%
src/falconpy/_endpoint/_sensor_visibility_exclusions.py                     1      0   100%
src/falconpy/_endpoint/_serverless_vulnerabilities.py                       1      0   100%
src/falconpy/_endpoint/_spotlight_evaluation_logic.py                       1      0   100%
src/falconpy/_endpoint/_spotlight_vulnerabilities.py                        1      0   100%
src/falconpy/_endpoint/_spotlight_vulnerability_metadata.py                 1      0   100%
src/falconpy/_endpoint/_tailored_intelligence.py                            1      0   100%
src/falconpy/_endpoint/_threatgraph.py                                      1      0   100%
src/falconpy/_endpoint/_unidentified_containers.py                          1      0   100%
src/falconpy/_endpoint/_user_management.py                                  1      0   100%
src/falconpy/_endpoint/_workflows.py                                        1      0   100%
src/falconpy/_endpoint/_zero_trust_assessment.py                            1      0   100%
src/falconpy/_endpoint/deprecated/__init__.py                              65      0   100%
src/falconpy/_endpoint/deprecated/_case_management.py                       1      0   100%
src/falconpy/_endpoint/deprecated/_certificate_based_exclusions.py          1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_aws_registration.py                1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_azure_registration.py              1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_google_cloud_registration.py       1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_oci_registration.py                1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_security.py                        1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_security_assets.py                 1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_security_compliance.py             1      0   100%
src/falconpy/_endpoint/deprecated/_cloud_security_detections.py             1      0   100%
src/falconpy/_endpoint/deprecated/_correlation_rules.py                     1      0   100%
src/falconpy/_endpoint/deprecated/_correlation_rules_admin.py               1      0   100%
src/falconpy/_endpoint/deprecated/_custom_ioa.py                            1      0   100%
src/falconpy/_endpoint/deprecated/_d4c_registration.py                      1      0   100%
src/falconpy/_endpoint/deprecated/_data_protection_configuration.py         1      0   100%
src/falconpy/_endpoint/deprecated/_device_content.py                        1      0   100%
src/falconpy/_endpoint/deprecated/_discover.py                              1      0   100%
src/falconpy/_endpoint/deprecated/_exposure_management.py                   1      0   100%
src/falconpy/_endpoint/deprecated/_fdr.py                                   1      0   100%
src/falconpy/_endpoint/deprecated/_firewall_management.py                   1      0   100%
src/falconpy/_endpoint/deprecated/_hosts.py                                 1      0   100%
src/falconpy/_endpoint/deprecated/_identity_protection.py                   1      0   100%
src/falconpy/_endpoint/deprecated/_installation_tokens.py                   1      0   100%
src/falconpy/_endpoint/deprecated/_ioc.py                                   1      0   100%
src/falconpy/_endpoint/deprecated/_iocs.py                                  1      0   100%
src/falconpy/_endpoint/deprecated/_mapping.py                               2      0   100%
src/falconpy/_endpoint/deprecated/_ods.py                                   1      0   100%
src/falconpy/_endpoint/deprecated/_real_time_response.py                    1      0   100%
src/falconpy/_endpoint/deprecated/_real_time_response_admin.py              1      0   100%
src/falconpy/_endpoint/deprecated/_report_executions.py                     1      0   100%
src/falconpy/_endpoint/deprecated/_scheduled_reports.py                     1      0   100%
src/falconpy/_endpoint/deprecated/_zero_trust_assessment.py                 1      0   100%
src/falconpy/_enum/__init__.py                                              7      0   100%
src/falconpy/_enum/_base_url.py                                             8      0   100%
src/falconpy/_enum/_container_base_url.py                                   7      0   100%
src/falconpy/_enum/_ingest_base_url.py                                      6      0   100%
src/falconpy/_enum/_ingest_format.py                                        6      0   100%
src/falconpy/_enum/_timeunit.py                                             5      0   100%
src/falconpy/_enum/_token_fail_reason.py                                    4      0   100%
src/falconpy/_error/__init__.py                                             3      0   100%
src/falconpy/_error/_exceptions.py                                         77      0   100%
src/falconpy/_error/_warnings.py                                           76      0   100%
src/falconpy/_helper/__init__.py                                           17      0   100%
src/falconpy/_helper/_find_operation.py                                    38      0   100%
src/falconpy/_helper/_indicator.py                                         36      0   100%
src/falconpy/_helper/_text_colors.py                                       16      0   100%
src/falconpy/_log/__init__.py                                               2      0   100%
src/falconpy/_log/_facility.py                                             41      0   100%
src/falconpy/_ngsiem/__init__.py                                            3      0   100%
src/falconpy/_ngsiem/_hec.py                                              301      0   100%
src/falconpy/_ngsiem/_ingest_config.py                                     72      0   100%
src/falconpy/_ngsiem/_ingest_payload.py                                   127      0   100%
src/falconpy/_ngsiem/_session_manager.py                                   49      0   100%
src/falconpy/_payload/__init__.py                                          50      0   100%
src/falconpy/_payload/_alerts.py                                           19      0   100%
src/falconpy/_payload/_api_integrations.py                                 25      0   100%
src/falconpy/_payload/_aspm.py                                            113      0   100%
src/falconpy/_payload/_case_management.py                                  77     26    66%
src/falconpy/_payload/_certificate_based_exclusions.py                     24      0   100%
src/falconpy/_payload/_cloud_aws_registration.py                           13      0   100%
src/falconpy/_payload/_cloud_azure_registration.py                         29      1    97%
src/falconpy/_payload/_cloud_google_cloud_registration.py                  11      2    82%
src/falconpy/_payload/_cloud_oci_registration.py                           35      0   100%
src/falconpy/_payload/_cloud_policies.py                                   64     18    72%
src/falconpy/_payload/_cloud_security.py                                    8      1    88%
src/falconpy/_payload/_cloud_snapshots.py                                  22      0   100%
src/falconpy/_payload/_container.py                                        90      0   100%
src/falconpy/_payload/_content_update_policy.py                            23      0   100%
src/falconpy/_payload/_correlation_rules.py                                24      0   100%
src/falconpy/_payload/_correlation_rules_admin.py                           8      1    88%
src/falconpy/_payload/_cspm_registration.py                                71      0   100%
src/falconpy/_payload/_d4c_registration.py                                 38      0   100%
src/falconpy/_payload/_data_protection_configuration.py                    69     13    81%
src/falconpy/_payload/_delivery_settings.py                                10      0   100%
src/falconpy/_payload/_device_control_policy.py                            64      0   100%
src/falconpy/_payload/_exposure_management.py                              31      0   100%
src/falconpy/_payload/_falconx.py                                          25      0   100%
src/falconpy/_payload/_filevantage.py                                      46      0   100%
src/falconpy/_payload/_firewall.py                                        122      0   100%
src/falconpy/_payload/_foundry.py                                          16      0   100%
src/falconpy/_payload/_generic.py                                          71      0   100%
src/falconpy/_payload/_host_group.py                                       31      0   100%
src/falconpy/_payload/_identity_protection.py                              11      0   100%
src/falconpy/_payload/_incidents.py                                        15      0   100%
src/falconpy/_payload/_intelligence_indicator_graph.py                      0      0   100%
src/falconpy/_payload/_ioa.py                                              35      0   100%
src/falconpy/_payload/_ioc.py                                              52      0   100%
src/falconpy/_payload/_it_automation.py                                    91      1    99%
src/falconpy/_payload/_malquery.py                                         56      0   100%
src/falconpy/_payload/_message_center.py                                   22      0   100%
src/falconpy/_payload/_mobile_enrollment.py                                12      0   100%
src/falconpy/_payload/_mssp.py                                             15      0   100%
src/falconpy/_payload/_ngsiem.py                                           25      0   100%
src/falconpy/_payload/_ods.py                                              13      0   100%
src/falconpy/_payload/_prevention_policy.py                                19      0   100%
src/falconpy/_payload/_real_time_response.py                               27      0   100%
src/falconpy/_payload/_recon.py                                            84      0   100%
src/falconpy/_payload/_reports.py                                          19      0   100%
src/falconpy/_payload/_response_policy.py                                  19      0   100%
src/falconpy/_payload/_sample_uploads.py                                    9      0   100%
src/falconpy/_payload/_sensor_update_policy.py                             30      0   100%
src/falconpy/_payload/_workflows.py                                        43      0   100%
src/falconpy/_result/__base_resource.py                                    28      0   100%
src/falconpy/_result/__init__.py                                            9      0   100%
src/falconpy/_result/_base_dictionary.py                                   31      0   100%
src/falconpy/_result/_errors.py                                             2      0   100%
src/falconpy/_result/_expanded_result.py                                    7      0   100%
src/falconpy/_result/_headers.py                                           24      0   100%
src/falconpy/_result/_meta.py                                              30      0   100%
src/falconpy/_result/_resources.py                                         14      0   100%
src/falconpy/_result/_response_component.py                                24      0   100%
src/falconpy/_result/_result.py                                           220      1    99%
src/falconpy/_service_class/__init__.py                                     3      0   100%
src/falconpy/_service_class/_base_service_class.py                        119      0   100%
src/falconpy/_service_class/_service_class.py                             117      0   100%
src/falconpy/_util/__init__.py                                              5      0   100%
src/falconpy/_util/_auth.py                                                47      0   100%
src/falconpy/_util/_functions.py                                          454      4    99%
src/falconpy/_util/_service.py                                              3      0   100%
src/falconpy/_util/_uber.py                                                53      1    98%
src/falconpy/_version.py                                                   38      0   100%
src/falconpy/alerts.py                                                     69      0   100%
src/falconpy/api_complete/__init__.py                                       3      0   100%
src/falconpy/api_complete/_advanced.py                                     62      0   100%
src/falconpy/api_complete/_legacy.py                                      202      0   100%
src/falconpy/api_integrations.py                                           23      0   100%
src/falconpy/aspm.py                                                      284      0   100%
src/falconpy/cao_hunting.py                                                39      0   100%
src/falconpy/case_management.py                                           264     30    89%
src/falconpy/certificate_based_exclusions.py                               35      0   100%
src/falconpy/cloud_aws_registration.py                                     47      0   100%
src/falconpy/cloud_azure_registration.py                                   54      0   100%
src/falconpy/cloud_google_cloud_registration.py                            37      0   100%
src/falconpy/cloud_oci_registration.py                                     45      0   100%
src/falconpy/cloud_policies.py                                            125      0   100%
src/falconpy/cloud_security.py                                             39      0   100%
src/falconpy/cloud_security_assets.py                                      22      0   100%
src/falconpy/cloud_security_compliance.py                                  14      0   100%
src/falconpy/cloud_security_detections.py                                  14      0   100%
src/falconpy/cloud_snapshots.py                                            41      0   100%
src/falconpy/configuration_assessment.py                                   14      0   100%
src/falconpy/configuration_assessment_evaluation_logic.py                  10      0   100%
src/falconpy/container_alerts.py                                           18      0   100%
src/falconpy/container_detections.py                                       34      0   100%
src/falconpy/container_image_compliance.py                                 51      0   100%
src/falconpy/container_images.py                                           60      0   100%
src/falconpy/container_packages.py                                         34      0   100%
src/falconpy/container_vulnerabilities.py                                  47      0   100%
src/falconpy/content_update_policies.py                                    59      0   100%
src/falconpy/correlation_rules.py                                          79      0   100%
src/falconpy/correlation_rules_admin.py                                    13      0   100%
src/falconpy/cspm_registration.py                                         221      0   100%
src/falconpy/custom_ioa.py                                                 92      0   100%
src/falconpy/custom_storage.py                                            194      0   100%
src/falconpy/d4c_registration.py                                          121      0   100%
src/falconpy/data_protection_configuration.py                             177      0   100%
src/falconpy/delivery_settings.py                                          16      0   100%
src/falconpy/deployments.py                                                38      0   100%
src/falconpy/device_content.py                                             14      0   100%
src/falconpy/device_control_policies.py                                   110      0   100%
src/falconpy/discover.py                                                   48      0   100%
src/falconpy/downloads.py                                                  22      0   100%
src/falconpy/drift_indicators.py                                           26      0   100%
src/falconpy/event_streams.py                                              21      0   100%
src/falconpy/exposure_management.py                                        64      0   100%
src/falconpy/faas_execution.py                                             10      0   100%
src/falconpy/falcon_complete_dashboard.py                                 117      0   100%
src/falconpy/falcon_container.py                                          102      2    98%
src/falconpy/falconx_sandbox.py                                            98      0   100%
src/falconpy/fdr.py                                                        25      0   100%
src/falconpy/filevantage.py                                               160      0   100%
src/falconpy/firewall_management.py                                       140      0   100%
src/falconpy/firewall_policies.py                                          72      0   100%
src/falconpy/foundry_logscale.py                                          105      0   100%
src/falconpy/host_group.py                                                 62      0   100%
src/falconpy/host_migration.py                                             89      0   100%
src/falconpy/hosts.py                                                     122      0   100%
src/falconpy/identity_protection.py                                        52      0   100%
src/falconpy/image_assessment_policies.py                                  64      0   100%
src/falconpy/incidents.py                                                  42      0   100%
src/falconpy/installation_tokens.py                                        44      0   100%
src/falconpy/intel.py                                                     116      0   100%
src/falconpy/intelligence_feeds.py                                         18      0   100%
src/falconpy/intelligence_indicator_graph.py                               24      0   100%
src/falconpy/ioa_exclusions.py                                             34      0   100%
src/falconpy/ioc.py                                                        95      0   100%
src/falconpy/iocs.py                                                       41      0   100%
src/falconpy/it_automation.py                                             212      0   100%
src/falconpy/kubernetes_container_compliance.py                            47      0   100%
src/falconpy/kubernetes_protection.py                                     279      5    98%
src/falconpy/malquery.py                                                   52      0   100%
src/falconpy/message_center.py                                             79      0   100%
src/falconpy/ml_exclusions.py                                              36      0   100%
src/falconpy/mobile_enrollment.py                                          20      0   100%
src/falconpy/mssp.py                                                      175      0   100%
src/falconpy/ngsiem.py                                                    254      0   100%
src/falconpy/oauth2.py                                                     32      0   100%
src/falconpy/ods.py                                                        75      0   100%
src/falconpy/overwatch_dashboard.py                                        32      0   100%
src/falconpy/prevention_policy.py                                          63      0   100%
src/falconpy/quarantine.py                                                 47      0   100%
src/falconpy/quick_scan.py                                                 28      0   100%
src/falconpy/quick_scan_pro.py                                             46      0   100%
src/falconpy/real_time_response.py                                        129      0   100%
src/falconpy/real_time_response_admin.py                                  106      0   100%
src/falconpy/real_time_response_audit.py                                   11      0   100%
src/falconpy/recon.py                                                     130      0   100%
src/falconpy/report_executions.py                                          25      0   100%
src/falconpy/response_policies.py                                          62      0   100%
src/falconpy/saas_security.py                                             101      3    97%
src/falconpy/sample_uploads.py                                             94      0   100%
src/falconpy/scheduled_reports.py                                          21      0   100%
src/falconpy/sensor_download.py                                            57      0   100%
src/falconpy/sensor_update_policy.py                                      111      0   100%
src/falconpy/sensor_usage.py                                               14      0   100%
src/falconpy/sensor_visibility_exclusions.py                               32      0   100%
src/falconpy/serverless_vulnerabilities.py                                 10      0   100%
src/falconpy/spotlight_evaluation_logic.py                                 24      0   100%
src/falconpy/spotlight_vulnerabilities.py                                  32      0   100%
src/falconpy/spotlight_vulnerability_metadata.py                           10      0   100%
src/falconpy/tailored_intelligence.py                                      42      0   100%
src/falconpy/threatgraph.py                                                30      0   100%
src/falconpy/unidentified_containers.py                                    18      0   100%
src/falconpy/user_management.py                                           166      5    97%
src/falconpy/workflows.py                                                 128      0   100%
src/falconpy/zero_trust_assessment.py                                      24      0   100%
-------------------------------------------------------------------------------------------
TOTAL                                                                   12747    119    99%

Bandit analysis

[main]	INFO	running on Python 3.13.3

Run started:2025-12-18 23:05:31.709760

Test results:
	No issues identified.

Code scanned:
	Total lines of code: 116157
	Total lines skipped (#nosec): 0

Run metrics:
	Total issues (by severity):
		Undefined: 0
		Low: 0
		Medium: 0
		High: 0
	Total issues (by confidence):
		Undefined: 0
		Low: 0
		Medium: 0
		High: 0
Files skipped (0):

Added features and functionality

Added: Added "SPL", "AI translated" and "all" as allowed values for the language argument in the GetArchiveExport operation within the CAO Hunting service collection.
- _endpoint/_cao_hunting.py
- cao_hunting.py
Added: Added include_translated_content argument to the GetIntelligenceQueries operation within the CAO Hunting service collection.
- _endpoint/_cao_hunting.py
- cao_hunting.py
Added: Added three new operations to the CAO Hunting service collection.
- AggregateHuntingGuides
- GetHuntingGuides
- SearchHuntingGuides
- _endpoint/_cao_hunting.py
- cao_hunting.py
Unit testing expanded to complete code coverage.
- tests/test_cao_hunting.py
Added: Added the new Case Management service collection with 48 operations.
- aggregates_file_details_post_v1
- combined_file_details_get_v1
- entities_file_details_get_v1
- entities_file_details_patch_v1
- entities_files_bulk_download_post_v1
- entities_files_download_get_v1
- entities_files_upload_post_v1
- entities_files_delete_v1
- queries_file_details_get_v1
- aggregates_notification_groups_post_v1
- aggregates_notification_groups_post_v2
- aggregates_slas_post_v1
- aggregates_templates_post_v1
- entities_fields_get_v1
- entities_notification_groups_get_v1
- entities_notification_groups_post_v1
- entities_notification_groups_patch_v1
- entities_notification_groups_delete_v1
- entities_notification_groups_get_v2
- entities_notification_groups_post_v2
- entities_notification_groups_patch_v2
- entities_notification_groups_delete_v2
- entities_slas_get_v1
- entities_slas_post_v1
- entities_slas_patch_v1
- entities_slas_delete_v1
- entities_template_snapshots_get_v1
- entities_templates_export_get_v1
- entities_templates_import_post_v1
- entities_templates_get_v1
- entities_templates_post_v1
- entities_templates_patch_v1
- entities_templates_delete_v1
- queries_fields_get_v1
- queries_notification_groups_get_v1
- queries_notification_groups_get_v2
- queries_slas_get_v1
- queries_template_snapshots_get_v1
- queries_templates_get_v1
- entities_alert_evidence_post_v1
- entities_case_tags_post_v1
- entities_case_tags_delete_v1
- entities_cases_put_v2
- entities_cases_post_v2
- entities_cases_patch_v2
- entities_event_evidence_post_v1
- queries_cases_get_v1
- _endpoint/__init__.py
- _endpoint/_case_management.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_case_management.py
- _payload/__init__.py
- _payload/_case_management.py
- __init__.py
- case_management.py
Unit testing expanded to complete code coverage.
- tests/test_case_management.py
Added: Added two new operations to the Cloud AWS Registration service collection.
- cloud_registration_aws_trigger_health_check
- cloud_registration_aws_validate_accounts
- _endpoint/_cloud_aws_registration.py
- _endpoint/deprecated/_cloud_aws_registration.py
- cloud_aws_registration.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_aws_registration.py
Added: Added new cloud_registration_azure_trigger_health_check operation to the Cloud Azure Registration service collection.
- _endpoint/_cloud_azure_registration.py
- _endpoint/deprecated/_cloud_azure_registration.py
- cloud_azure_registration.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_azure_registration.py
Added: Added two new operations to the Cloud Azure Registration service collection.
- cloud_registration_azure_delete_legacy_subscription
- cloud_registration_azure_validate_registration
- _endpoint/_cloud_azure_registration.py
- _endpoint/deprecated/_cloud_azure_registration.py
- _payload/__init__.py
- _payload/_cloud_azure_registration.py
- cloud_azure_registration.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_azure_registration.py
Added: Added the new Cloud Google Cloud Registration service collection with 6 operations.
- cloud_registration_gcp_trigger_health_check
- cloud_registration_gcp_get_registration
- cloud_registration_gcp_put_registration
- cloud_registration_gcp_create_registration
- cloud_registration_gcp_update_registration
- cloud_registration_gcp_delete_registration
- _endpoint/__init__.py
- _endpoint/_cloud_google_cloud_registration.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_cloud_google_cloud_registration.py
- _payload/__init__.py
- _payload/_cloud_google_cloud_registration.py
- __init__.py
- cloud_google_cloud_registration.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_google_cloud_registration.py
Added: Added the new Cloud Security Compliance service collection with 2 operations.
- cloud_compliance_framework_posture_summaries
- cloud_compliance_rule_posture_summaries
- _endpoint/__init__.py
- _endpoint/_cloud_security_compliance.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_cloud_security_compliance.py
- __init__.py
- cloud_security_compliance.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_security_compliance.py
Added: Added the new Cloud Security Detections service collection with 2 operations.
- cspm_evaluations_iom_entities
- cspm_evaluations_iom_queries
- _endpoint/__init__.py
- _endpoint/_cloud_security_detections.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_cloud_security_detections.py
- __init__.py
- cloud_security_detections.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_security_detections.py
Added: Added the new Cloud Policies service collection with 24 operations.
- ReplaceControlRules
- GetComplianceControls
- CreateComplianceControl
- UpdateComplianceControl
- DeleteComplianceControl
- RenameSectionComplianceFramework
- GetComplianceFrameworks
- CreateComplianceFramework
- UpdateComplianceFramework
- DeleteComplianceFramework
- GetEvaluationResult
- GetRuleOverride
- CreateRuleOverride
- UpdateRuleOverride
- DeleteRuleOverride
- GetRule
- CreateRule
- UpdateRule
- DeleteRuleMixin0
- QueryComplianceControls
- QueryComplianceFrameworks
- QueryRule
- GetRuleInputSchema
- GetEnrichedAsset
- _endpoint/__init__.py
- _endpoint/_cloud_policies.py
- _payload/__init__.py
- _payload/_cloud_policies.py
- __init__.py
- cloud_policies.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_policies.py
Added: Added the new Cloud Security service collection with 7 operations.
- combined_cloud_risks
- ListCloudGroupsExternal
- ListCloudGroupsByIDExternal
- CreateCloudGroupExternal
- UpdateCloudGroupExternal
- DeleteCloudGroupsExternal
- ListCloudGroupIDsExternal
- _endpoint/__init__.py
- _endpoint/_cloud_security.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_cloud_security.py
- _payload/__init__.py
- _payload/_cloud_security
- __init__.py
- cloud_security.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_security.py
Added: Added new filter option (control.extension.status) as an allowed value to the cloud_security_assets_combined_compliance_by_account operation within the Cloud Security Assets service collection.
- _endpoint/_cloud_security_assets.py
- _endpoint/deprecated/_cloud_security_assets.py
- cloud_security_assets.py
Updated: Removed three options (application_security.business_applications, application_security.business_criticality and application_security.service_names) and added 7 options (control.benchmark.name, control.benchmark.version, control.framework, control.requirement, control.type, control.version, and non_compliant.rule_name) as allowed filters in the cloud_security_assets_queries operation within the Cloud Security Assets service collection.
- _endpoint/_cloud_security_assets.py
- _endpoint/deprecated/_cloud_security_assets.py
- cloud_security_assets.py
Added: Added new filter and sort options as an allowed value to the cloud_security_assets_queries operation within the Cloud Security Assets service collection.
- aspm.deployment_cloud_resource_id
- aspm.deployment_provider
- aspm.deployment_type
- aspm.technologies
- _endpoint/_cloud_security_assets.py
- _endpoint/deprecated/_cloud_security_assets.py
- cloud_security_assets.py
Added: Added one new operation to the Cloud Security Assets service collection.
- cloud_security_assets_combined_application_findings
- _endpoint/_cloud_security_assets.py
- _endpoint/deprecated/_cloud_security_assets.py
- cloud_security_assets.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_security_assets.py
Added: Added new Cloud Security Compliance service collection with 2 new operations.
- _endpoint/__init__.py
- _endpoint/_cloud_security_compliance.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_cloud_security_compliance.py
- __init__.py
- cloud_security_compliance.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_security_compliance.py
Added: Added new CombinedDetections operation to the Cloud Snapshots service collection.
- _endpoint/_cloud_snapshots.py
- cloud_snapshots.py
Unit testing expanded to complete code coverage.
- tests/test_cloud_snapshots.py
Added: Added the new Correlation Rules Admin service collection with 1 operation.
- entities_rules_ownership_put_v1
- _endpoint/__init__.py
- _endpoint/_correlation_rules_admin.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_correlation_rules_admin.py
- _payload/__init__.py
- _payload/_correlation_rules_admin.py
- __init__.py
- correlation_rules_admin.py
Unit testing expanded to complete code coverage.
- tests/test_correlation_rules_admin.py
Added: Added dspm_host_account_id, dspm_host_integration_role_name, and dspm_host_scanner_role_name arguments to the GetD4CAWSAccountScriptsAttachment operation within the D4C Registration service collection.
- _endpoint/_d4c_registration.py
- d4c_registration.py
Updated: Adjusted the operation GetD4CAWSAccountScriptsAttachment within the D4C Registration service class to align with new endpoint parameters.
- _endpoint/_d4c_registration.py
- d4c_registration.py
Unit testing expanded to complete code coverage.
- tests/test_d4c_registration.py
Added: Added the new Data Protection Configuration service collection with 36 operations.
- entities_classification_get_v2
- entities_classification_post_v2
- entities_classification_patch_v2
- entities_classification_delete_v2
- entities_cloud_application_get
- entities_cloud_application_create
- entities_cloud_application_patch
- entities_cloud_application_delete
- entities_content_pattern_get
- entities_content_pattern_create
- entities_content_pattern_patch
- entities_content_pattern_delete
- entities_enterprise_account_get
- entities_enterprise_account_create
- entities_enterprise_account_patch
- entities_enterprise_account_delete
- entities_file_type_get
- entities_sensitivity_label_get_v2
- entities_sensitivity_label_create_v2
- entities_sensitivity_label_delete_v2
- entities_policy_get_v2
- entities_policy_post_v2
- entities_policy_patch_v2
- entities_policy_delete_v2
- entities_web_location_get_v2
- entities_web_location_create_v2
- entities_web_location_patch_v2
- entities_web_location_delete_v2
- queries_classification_get_v2
- queries_cloud_application_get_v2
- queries_content_pattern_get_v2
- queries_enterprise_account_get_v2
- queries_file_type_get_v2
- queries_sensitivity_label_get_v2
- queries_policy_get_v2
- queries_web_location_get_v2
- _endpoint/__init__.py
- _endpoint/_data_protection_configuration.py
- _endpoint/deprecated/__init__.py
- _endpoint/deprecated/_data_protection_configuration.py
- _payload/__init__.py
- _payload/_data_protection_configuration.py
- __init__.py
- data_protection_configuration.py
Unit testing expanded to complete code coverage.
- tests/test_data_protection_configuration.py
Added: Added facet argument to the combined_applications operation within the Discover service collection.
- _endpoint/_discover.py
- _endpoint/deprecated/_discover.py
- discover.py
Added: Added "scan_details.scan_id", "scan_details.schedule_id", "scan_details.scan_date", and "vulnerability_assessment_date" as allowed values for the filter argument in the combined_hosts and query_hosts operations within the Discover service collection.
- _endpoint/_discover.py
- _endpoint/deprecated/_discover.py
- discover.py
Added: Added FetchFilesDownloadInfo operation to the Downloads service collection. Deprecated DownloadFile and EnumerateFile.
- _endpoint/_downloads.py
- downloads.py
Unit testing expanded to complete code coverage.
- tests/test_downloads.py
Added: Added one new operation to the Downloads service collection.
- FetchFilesDownloadInfoV2
- _endpoint/_downloads.py
- downloads.py
Unit testing expanded to complete code coverage.
- tests/test_downloads.py
Added: Added PolicyChecks, GetReportByReference and GetReportByScanID operations to the Falcon Container service collection.
- _endpoint/_falcon_container.py
- _util/_functions.py
- _util/_uber.py
- falcon_container.py
Unit testing expanded to complete code coverage.
- tests/test_falcon_container.py
Updated: Removed one resource option (network.events) from the resource parameter to the LaunchExportJob operation in the Falcon Container service collection.
- _endpoint/_falcon_container.py
- falcon_container.py
Added: Added "add-rule-group" and "remove-rule-group" as allowed values for the action_name argument in the performFirewallPoliciesAction operation within the FirewallPolicies Service Class.
- firewall_policies.py
Updated: Added 9 possible values for the sort argument in the CombinedHiddenDevicesByFilter and CombinedDevicesByFilter operations within the Hosts service collection.
- device_policies.exposure-management.applied
- device_policies.exposure-management.policy_id
- device_policies.exposure-management.policy_type
- device_policies.logscale-collector.applied
- device_policies.logscale-collector.policy_id
- device_policies.logscale-collector.policy_type
- device_policies.cloud-ml.policy_id
- device_policies.cloud-ml.policy_type
- device_policies.cloud-ml.applied
- _endpoint/_hosts.py
- hosts.py
Added: Added limit, from and to arguments to the QueryDeviceLoginHistoryV2 operation within the Hosts service collection.
- _endpoint/_hosts.py
- hosts.py
Added: Added new filter and sort options to the CombinedDevicesByFilter and CombinedHiddenDevicesByFilter operations within the Hosts service collection.
- device_policies.fem-browser-extension-control.applied
- device_policies.fem-browser-extension-control.policy_type
- device_policies.fem-browser-extension-control.policy_id
- _endpoint/_hosts.py
- hosts.py
Added: Added "reports.slug" as an allowed filter value to the QueryIntelIndicatorEntities and QueryIntelIndicatorIds operations within the Intel service collection.
- _endpoint/_intel.py
- intel.py
Added: Added "summary" as an allowed filter value to the QueryIntelReportEntities and QueryIntelReportIds operations within the Intel service collection.
- _endpoint/_intel.py
- intel.py
Added: Added "any" as an allowed feed_interval value to the QueryFeedArchives operation within the Intelligence Feeds service collection.
- _endpoint/_intelligence_feeds.py
- intelligence_feeds.py
Added: Added 21 new filter options to the SearchIndicators operation within the Intelligence Indicator Graph service collection.
- Type
- LastUpdated
- KillChain
- MaliciousConfidence
- MaliciousConfidenceValidatedTime
- FirstSeen
- LastSeen
- Adversaries.Name
- Adversaries.Slug
- Reports.Title
- Reports.Slug
- Threats.FamilyName
- Vulnerabilities.CVE
- Sectors.Name
- FileDetails.SHA256
- FileDetails.SHA1
- FileDetails.MD5
- DomainDetails.Detail
- IPv4Details.IPv4
- IPv6Details.IPv6
- URLDetails.URL
- _endpoint/_intelligence_indicator_graph.py
- intelligence_indicator_graph.py
Added: Added 5 new operations to the IT Automation service collection.
- ITAutomationSearchUserGroup
- ITAutomationGetUserGroup
- ITAutomationCreateUserGroup
- ITAutomationUpdateUserGroup
- ITAutomationDeleteUserGroup
- _endpoint/_it_automation.py
- _payload/__init__.py
- _payload/_it_automation.py
- it_automation.py
Unit testing expanded to complete code coverage.
- tests/test_it_automation.py
Added: Added "namespace" and "pod_name" as allowed filter values in the ReadClustersByKubernetesVersionCount, ReadClustersByStatusCount, ReadClusterCount, ReadClusterCombined, and ReadClusterCombinedV2 operations within the Kubernetes Protection service collection.
- _endpoint/_kubernetes_protection.py
- kubernetes_protection.py
Added: Added the operation PostSearchKubernetesIOMEntities to the Kubernetes Protection service collection.
- _endpoint/_kubernetes_protection.py
- kubernetes_protection.py
Unit testing expanded to complete code coverage.
- tests/test_kubernetes_protection.py
Added: Added 22 new operations to the NGSIEM service collection.
- GetDashboardTemplate
- CreateDashboardFromTemplate
- UpdateDashboardFromTemplate
- DeleteDashboard
- GetLookupFile
- CreateLookupFile
- UpdateLookupFile
- DeleteLookupFile
- GetParserTemplate
- CreateParserFromTemplate
- GetParser
- CreateParser
- UpdateParser
- DeleteParser
- GetSavedQueryTemplate
- CreateSavedQuery
- UpdateSavedQueryFromTemplate
- DeleteSavedQuery
- ListDashboards
- ListLookupFiles
- ListParsers
- ListSavedQueries
- _endpoint/_ngsiem.py
- _payload/__init__.py
- _payload/_ngsiem.py
- ngsiem.py
Unit testing expanded to complete code coverage.
- tests/test_dashboard.yml
- tests/test_ngsiem.py
Added: Added new filter and sort options (description, aspm.description.keyword) as an allowed value to the query_scheduled_scans and query_scans operations within the On Demand Scan service collection.
- _endpoint/_ods.py
- _endpoint/deprecated/_ods.py
- ods.py
Added: Added the file_name argument to the UploadFileQuickScanPro operation within the Quick Scan Pro service collection.
- _endpoint/_quick_scan_pro.py
Added: Added three new operations to the Real Time Response Admin service collection.
- RTR_CreatePut_FilesV2
- RTR_CreateScriptsV2
- RTR_UpdateScriptsV2
- _endpoint/_real_time_response_admin.py
- _endpoint/deprecated/_real_time_response_admin.py
- real_time_response_admin.py
Unit testing expanded to complete code coverage.
- tests/test_real_time_response_admin.py
Added: Added 4 new filter and sort options to the QueryRulesV1 operation within the Recon service collection.
- permissions
- priority
- template_priority
- topic
- _endpoint/_recon.py
- recon.py
Added: Added the new SaaS Security service collection with 24 operations.
- GetMetricsV3
- GetAlertsV3
- GetAppInventoryUsers
- GetAppInventory
- GetSecurityCheckAffectedV3
- DismissAffectedEntityV3
- DismissSecurityCheckV3
- GetSecurityChecksV3
- GetSecurityCheckComplianceV3
- IntegrationBuilderEndTransactionV3
- IntegrationBuilderResetV3
- IntegrationBuilderGetStatusV3
- IntegrationBuilderUploadV3
- GetAssetInventoryV3
- GetDeviceInventoryV3
- GetIntegrationsV3
- GetActivityMonitorV3
- GetSupportedSaasV3
- GetSystemLogsV3
- GetSystemUsersV3
- GetUserInventoryV3
- _endpoint/__init__.py
- _endpoint/_saas_security.py
- __init__.py
- saas_security.py
Unit testing expanded to complete code coverage.
- tests/test_saas_security.py
Added: Added new GetSensorUsageHourly operation to the Sensor Usage service collection.
- _endpoint/_sensor_usage.py
- sensor_usage.py
Unit testing expanded to complete code coverage.
- tests/test_sensor_usage.py
Thanks go out to @atav982 for submitting this update! 🙇
Added: Added the new Spotlight Vulnerability Metadata service collection with 1 operation.
- combineVulnMetadataExt
- _endpoint/__init__.py
- _endpoint/_spotlight_vulnerability_metadata.py
- __init__.py
- spotlight_vulnerability_metadata.py
Unit testing expanded to complete code coverage.
- tests/test_spotlight_vulnerability_metadata.py
Added: Added "uuid" as an allowed filter value in the queryUserV1 operation within the User Management service collection.
- _endpoint/_user_management.py
- user_management.py
Updated: Added the entitiesRolesGETV2 operation and deprecated the entitiesRolesV1 operation within the User Management service collection.
- _endpoint/_user_management.py
- user_management.py
Unit testing expanded to complete code coverage.
- tests/test_user_management.py
Added: Added new WorkflowDefinitionsStatus operation to the Workflows service class.
- _constant/__init__.py
- _endpoint/_workflows.py
- workflows.py
Unit testing expanded to complete code coverage.
- tests/test_workflows.py
- Special thanks go out to @dweissbacher for contributing this update and related unit tests! 🙇
Added: Added "cancel" as an allowed value for action_name in the WorkflowExecutionsAction operation within the Workflows service collection.
- _endpoint/_workflows.py
Added: Added skip_validation and ignore_activity_mock_references arguments to the WorkflowMockExecute operation within the Workflows service collection.
- _endpoint/_workflows.py
- workflows.py
Added: Added the child_login and child_logout helper methods to the authentication object and implemented aliases for Service Classes. This method allows login using existing parent credentials to a child tenant by providing the member_cid argument only.
- _auth_object/_falcon_interface.py
- _service_class/_service_class.py
Unit testing expanded to complete code coverage.
- tests/test_authentications.py

Issues resolved

Fixed: Resolved path interpolation issue for the search_id keyword when using the Uber Class to call the GetSearchStatusV1 operation. Closes [ BUG ] StartSearchV1 in Uber class returns 404 'No content was received for this request' #1365.
- _util/_uber.py
- Thanks go out to @yakeeliuliu for reporting this issue! 🙇
Fixed: Resolved body payload generation issue with the userActionV1 operation within the UserManagement service class.
- user_management.py
Fixed: Resolved availability issue with FDR service collection endpoints within the endpoint module. Closes [ BUG ] Endpoint module is not exporting FDR endpoints properly. #1371.
- _endpoint/__init__.py
Thanks go out to @Don-Swanson-Adobe for reporting this issue! 🙇
Fixed: Body payload issue with the userActionV1 operation within the User Management service class.
- user_management.py
Thanks go out to @Matth3wW for identifying and resolving this issue! 🙇

Other

Removed: Removed two operations from the ASPM service collection.
- GetCSPMInventoryBAServices
- GetCSPMInventoryServiceDetails
- _endpoint/_aspm.py
- aspm.py
Unit testing adjusted to complete code coverage.
- tests/test_aspm.py
Updated: Cosmetic updates to operation descriptions for the GetIntelligenceQueries and SearchIntelligenceQueries operations within the CAO Hunting service collection.
- _endpoint/_cao_hunting.py
Updated: Converted offset argument data type from String to Integer in the QueryActivityByCaseID and QueryCasesIdsByFilter operations within the Message Center service collection.
- _endpoint/_message_center.py
- message_center.py
Updated: Cosmetic updates to parameter descriptions in the cloud_security_registration_oci_get_account operation within the Cloud OCI Registration service collection.
- _endpoint/_cloud_oci_registration.py
- _endpoint/deprecated/_cloud_oci_registration.py
Updated: Cosmetic update to parameter descriptions in the SearchAndReadContainerAlerts operation within the Container Alerts service collection.
- _endpoint/_container_alerts.py
Updated: Cosmetic update adding "image_digest" as an allowed value to the filter argument description in the ReadDetectsCountBySeverity, ReadDetectionsCountByType, ReadDetectionsCount, ReadCombinedDetections, ReadDetections, and SearchDetections operations within the Container Detections service collection.
- _endpoint/_container_detections.py
Updated: Cosmetic update to the limit and offset descriptions in the ReadCombinedDetections, GetRuntimeDetectionsCombinedV2, ReadDetections, and SearchDetections operations within the Container Detections service collection.
- _endpoint/_container_detections.py
Updated: Cosmetic update to operation and parameter descriptions in the GetCombinedImages, CombinedImageDetail, and ReadCombinedImagesExport operations within the Container Images service collection.
- _endpoint/_container_images.py
Updated: Cosmetic update to operation and parameter descriptions in the ReadPackagesByFixableVulnCount, ReadPackagesByVulnCount, ReadPackagesCombinedExport, ReadPackagesCombined, and ReadPackagesCombinedV2 operations within the Container Packages service collection.
- _endpoint/_container_packages.py
Updated: Cosmetic update to operation and parameter descriptions in the ReadVulnerabilityCountByActivelyExploited, ReadVulnerabilityCountByCPSRating, ReadVulnerabilityCountByCVSSScore, ReadVulnerabilityCountBySeverity, ReadVulnerabilityCount, ReadVulnerabilitiesByImageCount, ReadVulnerabilitiesPublicationDate, ReadCombinedVulnerabilitiesDetails, ReadCombinedVulnerabilitiesInfo, and ReadCombinedVulnerabilities operations within the Container Vulnerabilities service collection.
- _endpoint/_container_vulnerabilities.py
Deprecated: Deprecated the Detects service collection and all included endpoints. Closes [ BUG ] [ DEPRECATION ] The Detects API endpoints are deprecated #1378.
- _endpoint/_detects.py
- _endpoint/deprecated/_mapping.py
- detects.py
Thanks go out to @djacquensf9 for reporting this update! 🙇
Updated: Cosmetic update to the limit and offset descriptions in the SearchAndReadDriftIndicatorEntities and SearchDriftIndicators operations within the Drift Indicators service collection.
- _endpoint/_container_detections.py
Updated: Cosmetic update to the sort enum and filter argument description in the GetHostMigrationIDsV1 and GetMigrationIDsV1 operations within the Host Migration service collection.
- _endpoint/_host_migration.py
Updated: Cosmetic update to remove unnecessary Authorization headers from the post_graphql, GetSensorDetails, get_policy_rules, delete_policy_rules, and get_policy_rules_query operations within the Identity Protection service collection.
- _endpoint/_identity_protection.py
Updated: Cosmetic updates to operation descriptions for the ITAutomationStartExecutionResultsSearch and ITAutomationGetExecutionResults operations within the IT Automation service collection.
- _endpoint/_it_automation.py
Updated: Cosmetic update to the limit and offset argument descriptions for the FindContainersByContainerRunTimeVersion, ReadClusterCombined, ReadClusterCombinedV2, ReadRunningContainerImages, ReadContainerCombined, ReadDeploymentCombined, SearchAndReadKubernetesIomEntities, ReadNodeCombined, ReadPodCombined and SearchKubernetesIoms operations within the Kubernetes Protection service collection.
- _endpoint/_it_automation.py
Updated: Cosmetic update to operation descriptions for the ReadClusterCombinedV2, ReadContainerCombined and SearchAndReadKubernetesIomEntities operations within the Kubernetes Protection service collection.
- _endpoint/_it_automation.py
Updated: Cosmetic update to the limit and offset argument descriptions in the SearchAndRReadUnidentifiedContainers operation within the Unidentified Containers service collection.
- _endpoint/_unidentified_containers.py
Updated: Cosmetic updates to argument and operation descriptions in the WorkflowDefinitionsCombined, WorkflowDefinitionsStatus, WorkflowExecutionsAction and WorkflowMockExecute operations within the Workflows service collection.
- _endpoint/_workflows.py

…usV1. Closes #1365.

…oud based; added it to test sensor; tested it in production and works since the endpoint does work and provides hourly usage billing that is used for Cloud (reserved hourly) usage

Matth3wW and others added 9 commits December 12, 2025 15:56

Fix: send action as dict in UserManagement.perform_action

02b9ba5

Resolve search_id keyword path interpolation issue with GetSearchStat…

adc3c67

…usV1. Closes #1365.

Add Cloud Security Compliance service collection

102da16

Resolve body payload generation issue with the userActionV1 operation

763d93d

Adjust unit testing to temporarily allow 500 from userActionV1

82fcadc

Bump version -> 1.5.5

61f1767

Resolve issue with FDR service collection endpoints. Closes #1371.

269a758

added GetSensorUsageHourly as this allows you to pull hourly for Cl…

2e0a773

…oud based; added it to test sensor; tested it in production and works since the endpoint does work and provides hourly usage billing that is used for Cloud (reserved hourly) usage

Add sane boundaries to the random_string generator

8e58cfa

jshcodes requested a review from crowdstrikedcs as a code owner December 12, 2025 20:57

jshcodes had a problem deploying to testing December 12, 2025 20:57 — with GitHub Actions Failure

jshcodes requested a deployment to testing December 12, 2025 20:57 — with GitHub Actions Waiting

jshcodes had a problem deploying to testing December 12, 2025 20:57 — with GitHub Actions Error

jshcodes requested a deployment to testing December 12, 2025 20:57 — with GitHub Actions Waiting

jshcodes force-pushed the dev branch from e7a734e to 2f2b878 Compare December 15, 2025 13:08

jshcodes requested a deployment to testing December 15, 2025 13:08 — with GitHub Actions Waiting

jshcodes had a problem deploying to testing December 15, 2025 13:08 — with GitHub Actions Failure

jshcodes requested a deployment to testing December 15, 2025 13:08 — with GitHub Actions Waiting

jshcodes requested a deployment to testing December 15, 2025 22:50 — with GitHub Actions Waiting

jshcodes temporarily deployed to testing December 18, 2025 22:48 — with GitHub Actions Inactive

jshcodes temporarily deployed to testing December 18, 2025 22:59 — with GitHub Actions Inactive

jshcodes temporarily deployed to testing December 18, 2025 23:16 — with GitHub Actions Inactive

crowdstrikedcs approved these changes Dec 19, 2025

View reviewed changes

jshcodes merged commit 830667c into main Dec 19, 2025
28 of 39 checks passed

jshcodes had a problem deploying to bleeding-edge December 19, 2025 01:04 — with GitHub Actions Failure

jshcodes requested a deployment to release December 19, 2025 01:04 — with GitHub Actions Waiting

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Version 1.5.5 - New service collections, operations and updates #1401

Version 1.5.5 - New service collections, operations and updates #1401

Uh oh!

jshcodes commented Dec 12, 2025 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

Version 1.5.5 - New service collections, operations and updates #1401

Version 1.5.5 - New service collections, operations and updates #1401

Uh oh!

Conversation

jshcodes commented Dec 12, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

FalconPy v1.5.5

Unit test coverage

Bandit analysis

Added features and functionality

Issues resolved

Other

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

jshcodes commented Dec 12, 2025 •

edited

Loading