Skip to content

Releases: code42/incydr_python

2.12.2

Choose a tag to compare

@ceciliastevens ceciliastevens released this 22 Jun 18:06
ab98a94

2.12.2 - 2026-06-22

Added

  • Support for the actorName and ruleName fields on the Session response object.

2.12.1

Choose a tag to compare

@ceciliastevens ceciliastevens released this 05 Jun 15:10
0661a19

2.12.1 - 2026-06-05

Fixed

  • A bug where fetching alert rules could fail if third-party messaging was configured on a rule.

Added

  • Added support for python 3.14

Removed

  • Removed support for python 3.9

2.12.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 04 May 16:44
25c204e

2.12.0 - 2026-05-04

Added

  • Added the sdk.file-events.v2.search_groups method to get approximate aggregate file event counts by a given grouping term.
  • Added the GroupingEventQuery class, used to make these queries.
  • Added the cli command incydr file-events search-groups to get approximate aggregate file event counts by a given grouping term.
  • Added the type parameter to session search methods and commands, allowing users to filter results to STANDARD or ACCOUNT_TAKE_OVER.
  • Added the is_high_value option to trusted activity methods in the SDK, and the --high-value option to trusted activity methods in the CLI.
  • Added the ability to specify domain trust for browser destinations, allowing users to specify when users should be allowed to use certain destinations when logged-in using a trusted domain.
  • Added the ability to specify trust for file-transfer tools when adding a trusted domain.
  • Added the risk-indicator-categories client to the SDK, allowing the listing of risk indicator categories, subcategories, and risk indicators.
  • Added the risk-indicator-categories command to the CLI, allowing the listing of risk indicator categories.

2.11.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 10 Feb 15:39
6a53f09

2.11.0 - 2026-02-10

Added

  • Added several parameters to the sdk.agents.v1.get_page and sdk.agents.v1.list methods:
    • serial_number - the serial number of the agents to match.
    • agent_os_types - the list of operating systems ("LINUX", "MAC", "WIN") to match.
    • connected_in_last_days - filter to agents that have connected in this number of days.
    • not_connected_in_last_days - filter to agents that have not connected in this number of days.
  • Added corresponding options to the incydr agents list command.
    • --serial-number
    • --agent-os-types
    • --connected-in-last-days
    • --not-connected-in-last-days

2.9.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 22 Jan 15:42
969de1a

2.9.0 - 2026-01-22

Added

  • The incydr users list-agents command to list all agents associated with a user.

Deprecated

  • The incydr users list-devices command is now properly marked as deprecated. Use incydr users list-agents instead.
  • The sdk.users.v1.get_devices method is now properly marked as deprecated. Use sdk.agents.v1.iter_all instead.

Fixed

  • A bug where sdk.users.v1.get_devices would cause an error.

2.8.1

Choose a tag to compare

@ceciliastevens ceciliastevens released this 21 Jan 18:28
ea2a71f

2.8.1 - 2026-01-21

Added

  • A new authorization type to facilitate internal development and testing. No user-facing changes are present in this release.

2.8.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 16 Jan 18:46
c42a02e

2.8.0 - 2026-01-16

Added

  • Added the state_v2 field to session states. Added the new session state CLOSED_TP_BENIGN.
  • Added support for the ON filter in file event queries.

Fixed

  • A bug where the SDK's V2 Watchlist methods were returning the wrong models.

2.7.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 13 Nov 16:59
529eebc

2.7.0 - 2025-11-13

Updated

  • The Incydr SDK and CLI now rely on Pydantic v2, instead of previously when they used v1. This means that the methods available on the models accepted and returned by many SDK methods have changed in some small ways. For most SDK and CLI workflows, no changes will need to be made to accommodate this upgrade. Details of the transition may be found in Pydantic's documentation.

2.6.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 23 Jul 19:03
13a9202

2.6.0 - 2025-07-23

Added

  • Support for subgroups in file event queries and saved searches. See this documentation for more details about this type of query.
  • New methods for EventQuery() to enable more flexible filtering:
    • is_any
    • is_none
    • date_range
    • subquery
  • New methods to download files by XFC content ID.
    • sdk.files.download_file_by_xfc_content_id and sdk.files.stream_file_by_xfc_content_id
    • incydr files download-by-xfc-id

Fixed

  • An issue where in some cases saved searches could not be retrieved.

2.5.0

Choose a tag to compare

@ceciliastevens ceciliastevens released this 06 Jun 18:14
8295d32

2.5.0 - 2025-06-06

Added

  • The orgs and legal_hold clients to the SDK.
  • The orgs and legal-hold command groups to the CLI.