Skip to main content
Security Performance Management
Continuous Monitoring
Vendor Risk Management
Trust Management Hub
Cyber Insurance
National Cybersecurity

API Change Log

Ingrid

This is a log of changes to the Bitsight API, such as new and deprecated endpoints (paths). See the integration guides that use the Bitsight API.

For sustainability purposes, entries older than 2 years are removed from this log.

This article is updated on a regular basis. Select the Follow button at the top-right of the page to be notified of changes to this article via email.

01-JUL-2025

POST: Set an End Date for Company-Provided Assets:

  • domain option for infrastructure_type parameter.
  • Domain name option for infrastructure parameter.
  • infrastructure_type also available within the expirations data.
26-JUN-2025

GET: Infrastructure Tags
[/v1/companies/company_guid/tags]

Retrieve infrastructure tags assigned to a company.

02-JUN-2025
Threats API Endpointv1 fully deprecated.
02-MAY-2025
07-APR-2025
GET: Finding Comments – View finding comments, which can be used to track remediation changes.
03-APR-2025

Dynamic Vulnerability Exploit (DVE) in GET: Portfolio Threats [v2]

07-JAN-2025
GET: Finding Details [/v1/companies/entity_guid/findings] – last_refresh_status_reason, last_refresh_reason_code, last_refresh_requester, and result_finding_date response attributes.
07-JAN-2025
GET: Monitored Assets Summaries [/v1/portfolio/monitored-assets/summaries] – threats parameters.
31-OCT-2024
Alerts API Endpoint – added company_custom_id to the expand query parameter. When used, this field returns a customer-provided custom ID for the organization.
18-OCT-2024

Threats API Endpoint version 2.

01-OCT-2024
GET: Monitored Assets Summaries [/v1/portfolio/monitored-assets/summaries] – Get a summary of the critical assets you monitor.
03-SEP-2024
POST: Create a Collaboration Registration Form [/v1/client-access-links] – scope parameter and response attribute to specify the context in which a client access link is created. This endpoint is now available to both CM and Insurance users.
20-AUG-2024
GET: Underwriting Guidelines [/v1/underwriting-guidelines] and GET: Default Underwriting Guidelines [/v1/underwriting-guidelines/defaults] – infections response attribute.
20-AUG-2024
POST: Create an Underwriting Guideline [/v1/underwriting-guidelines] and PATCH: Edit an Underwriting Guideline [/v1/underwriting-guidelines] – infections parameter.
20-AUG-2024
GET: Compare Client to the Underwriting Guidelines [/v1/companies/client_guid/underwriting-guidelines] – infections_count and infections_detected response attributes.
15-JUL-2024
GET: Findings Summaries [/v1/companies/company_guid/findings/statistics] and GET: Findings Statistics [/v1/companies/company_guid/findings/statistics]
10-JUL-2024
Bitsight VRM API – Compatible with company API tokens.
24-MAY-2024
POST: Download Report [/v1/reports] – report_template parameter to specify the report.
16-MAY-2024
GET: Compare Client to the Underwriting Guidelines [/v1/companies/client_guid/underwriting-guidelines] – threat_groups_detected & threats_detected added to the response.
15-MAY-2024
GET: Web Application Security Finding Details – Annotations grouped into evidences object.
09-APR-2024

threats & threat_groups for Underwriting Guidelines:

08-APR-2024
GET: Finding Details - When no order is specified in a findings API call (/companies/company_guid/findings), the results are supposed to return in descending order based on the last_seen field. A bug that caused some results to appear out of order was recently resolved. As a result, there may be some minor changes to the order of results.
29-MAR-2024
GET: DMARC Finding Details [/v1/companies/company_guid/findings?risk_vector=dmarc
01-MAR-2024
Threats API Endpoint
12-FEB-2024
Client Access Links API Endpoint
30-JAN-2024
POST: Bulk Edit Collaboration Status [/v1/access-requests/bulk] – Edit the collaboration status of collaboration requests through the Client/Vendor Access Program in bulk.
29-JAN-2024

GET: Assets – New parameters.

  • tags_contains
  • tags_isnull
  • ?expand=delegated_security_controls
06-DEC-2023
GET: Peer Comparison Group Configuration Details [/v1/peer-analytics/peer-groups] – Benchmark group.
30-NOV-2023
GET: Assets [/v1/companies/company_guid/assets] – expand parameter to get tag details.
07-NOV-2023
GET: Assets [/v1/companies/company_guid/assets] – temporary_id field for assets.
13-OCT-2023
GET: Finding Detailsaffects_rating_details parameter.
05-OCT-2023
Current Ratings API Endpoint – Current ratings of an entity or all portfolio entities.
02-OCT-2023
PATCH: Update the Status or Assignee of a Finding [/v1/remediations/]
25-SEP-2023

GET: Ratings Tree [/v1/companies/company_guid/company-tree]

  • is_shell parameter
  • is_bundled, has_control, is_shell, is_csp fields
16-AUG-2023
GET: Company Requests Summary – Get a summary of your organization’s company requests.
03-AUG-2023

GET: Assets

  • New parameters:
    • threat.guid
    • threat.severity_level
    • threat.evidence_certainty
    • threat.exposure_detection
  • New rolled_up_observation_ids field.

Related articles

Feedback

0 comments

Please sign in to leave a comment.