Effective January 31, 2022, Sentinel APIs will only accept authentication of API key in the Request Headers as mentioned in the section Using an API Key in Request Headers in https://apidocs.whitehatsec.com/whs/docs/authentication . If Sentinel APIs are called with API key in the URI as a query parameter after January 31, 2022, a 401 status code will be returned.

An additional validation has been added to PUT requests and is required for the following API: api//site//site_credentials/<CREDS_ID>.

Three new operations have been added to the API reference Asset Onboarding Workflows API v2.0. The new operations are:

Firstly, the Assets API v2.0 previously had several missing display fields. These have now been added and the API documentation updated to reflect this. Below are a list of the added fields:

Asset type filtering and parameter descriptions have been updated to include Site, Application, Mobile, and API asset types for the following API calls:

Support has been added for token-based authentication when checking out artifacts from git repositories. An auth_type=token and a token field have also been introduced. For any issues or for further support Contact Us.

Two new operations have been added for the Business Logic Assessments API v2.0. These operations respectively allow you to create a Business Logic Assessment (BLA) or retrieve information for a specific BLA:

A new Chaining Requests guide has been published in the Guides section. For any issues or for further support Contact Us.

Two new operations have been added to the WhiteHat Security Developer Portal for the Access Control Management API v2.0. These operations respectively allow you to retrieve and update information for a specific user:

• Version 2.0 API resources now display the correct https protocol for the server URL.
• One new operation has been added to the WhiteHat Security Developer Portal for Mobile API v2.0:- POST /api/mobileApplications. This operation allows you to provision a mobile application.