Qualys Cloud Platform 1.26 (CS) API notification 1
A new release of Qualys Cloud Platform CS 1.26 (Container Security) includes updated APIs which is targeted for release in June 2023. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.
What’s New
Detecting Container Secrets
/csapi/v1.3//secretDetector
Shows a list of secret detectors in your account.
Container Security Policy Management
With this release, we have introduced policies in Container Security for managing configurations, vulnerability management, compliance, access, and auditing in containerized environment, and thus automating the process of securing images and containers. Policies provide a combination of rules that assess specific artifacts such as images, and containers, and provide actions associated with the rules.
We have introduced the following new APIs for Container Security policy management:
List Policies
Create a New Policy
Show Details of a Policy
Delete a Policy
Update a Policy
Activate or Deactivate a Policy
Showing EC2 Instance ID in Container and Sensor Details
/csapi/v1.3/containers/{containerSha}
/csapi/v1.3/sensors/{sensorId}
Cloud providers add an instance ID to hosts to uniquely identify them within the cloud environment. With this release, the EC2 instance ID is now displayed in the sensor details and the details of containers being scanned by the sensor.
Capturing Namespace Labels and Annotations in Kubernetes Metadata
/csapi/v1.3/containers/{containerSha}
/csapi/v1.3/sensors/{sensorId}
With this release, the sensor deployed on Kubernetes cluster now captures the namespace labels and annotations assigned on containers. You can retrieve these labels and annotations as part of the container and sensor details.
The release notes are here: https://www.qualys.com/docs/release-notes/qualys-container-security-1.26-api-release-notes.pdf