Jeff Leggett

Qualys Cloud Platform 8.10 (VM/PC) API Notification 1

Blog Post created by Jeff Leggett Employee on Apr 17, 2017

A new release of Qualys Cloud Suite, Version 8.10 (this version # applies to Qualys Vulnerability Management (VM) and Policy Compliance (PC)), includes an updated API which is targeted for release in May 2017. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.  The release notes are attached at the end of this notice.


What’s New

New Support for BeyondTrust PBPS Vaults
New API Support for Docker Authentication
Scanner Appliance List - added Cloud Information
EC2 Assets - Improved Reporting of private DNS host name and Instance ID
IP Update - New DTD for Duplicate Hosts Error
Change API Rate Limit to 300 per hour
VM - Show Reopened Info in Scan Reports
VM - Show Reopened Info in Vulnerability Detection API
VM - Detection API - Identify vulnerabilities related to running and non-running kernels
VM - Manage assets using EC2 metadata
VM - Editing vulnerabilities
VM - EC2 asset information in scan report
VM - Scan Report in XML Format - Ability to Exclude Glossary data
PC - Remediation Information Displayed in PC Reports
PC - New Sybase Authentication Record API
PC - Introducing Qualys Custom Controls in Library Policies


About the New API Rate Limit

We're excited to move from daily rate limits to hourly.  This means every QWEB API (VM/PC) goes from an approximately once every 5 minute call to about once every 12 seconds IF NEEDED.  Enabling use cases like checking the scan list API or enabling Continuous Integration pipelines will be a lot easier from now on.