Crowdstrike-falconpy

Added features and functionality
+ Added: Updated `__all__` parameter in root `__init__.py`, publishing all PEP8 class names. This change allows developers to import these classes directly.
python
from falconpy import Hosts
falcon = Hosts(client_id="CLIENT_ID_HERE", client_secret="CLIENT_SECRET_HERE")
result = falcon.query_devices_by_filter()
print(result)

+ Added: Private Base URL enum. `_base_url.py`
- You may now specify your base URL by name or by URL.
+ US1
+ US2
+ USGOV1
+ EU1
+ Added: Default value for _action_name_ parameter in __refresh_active_stream__ method of EventStreams service class. `event_streams.py`
+ Added: Payload handling sub-module. `_payload/`
- `_payload/__init__.py`
- `_payload/_detects.py`
- `_payload/generic.py`
- `_payload/malquery.py`
- `_payload/recon.py`
+ Updated: Service Class Refactoring (Rev 4)
* Provides: Body Payload Abstraction - Abstracted BODY payload parameters for all methods using PATCH, POST or PUT requests into keywords. Legacy usage pattern of passing the BODY payload directly as the _body_ keyword is still supported.
* Provides: PEP-257 formatting of all docstrings.
- `detects.py` - Closes 353.
- `event_streams.py` - Closes 349
- `falcon_container.py` - Closes 348
- `hosts.py` - Closes 340.
- `intel.py` - Closes 352
- `malquery.py` - Closes 354
- `quick_scan.py` - Closes 351
- `recon.py` - Closes 350
- `report_executions.py` - Closes 346
- `sample_uploads.py` - Closes 344
- `scheduled_reports.py` - Closes 345
- `sensor_download.py` - Closes 343
- `sensor_visibility_exclusions.py` - Closes 347
- `spotlight_vulnerabilities.py` - Closes 342
- `zero_trust_assessment.py` - Closes 341
+ Updated: Endpoint module updated to reflect recent swagger changes.
- `_cspm_registration.py`
- `_mssp.py`

Issues resolved
+ Updated: Linter updates now result in usage of `format` being marked as a failure for scenarios where an `f-string` can be used. Updated all occurrences of this issue to make use of `f-string` formatting.
- `_service_class.py`
- `_util.py`
- `api_complete.py`
- `oauth2.py`

Other
+ Updated: PEP-257 syntax applied to all docstrings in all touched files.
+ Updated: README.md updated

---

Issues resolved
+ Removed: Hash Analyzer Service Class and all related unit tests. (Unavailable at this time)
- `hash_analyzer.py`
- `_endpoint/_hash_analyzer.py`
- `test_hash_analyzer.py`
+ Fixed: Missing reference to _quarantine_endpoints in endpoint module. `_endpoint/__init__.py`
- This issue only impacted users leveraging the Uber class for these endpoints.

---

Added features and functionality
+ Added: New Hash Analyzer Service Class `hash_analyzer.py`
- Related unit tests `test_hash_analyzer.py`
- Related endpoint module `_hash_analyzer.py`
+ Added: Quarantine Service Class unit tests `test_quarantine.py`

---

Added features and functionality
+ Added: New FalconContainer Service Class. `falcon_container.py`
+ Added: Two new methods (operations)) to the Hosts Service Class. `hosts.py`
- query_device_login_history / QueryDeviceLoginHistory
- query_network_address_history / QueryGetNetworkAddressHistoryV1
+ Added: New method (operation)) to the SpotlightVulnerabilities Service Class. `spotlight_vulnerabilities.py`
- get_remediations_v2 - getRemediationsV2
+ Migrated: Ported still viable methods from legacy IOCS Service Class `iocs.py` to the new IOC Service Class. `ioc.py`
- devices_count / DevicesCount
- devices_ran_on / DevicesRanOn
- processes_ran_on / ProcessesRanOn
- entities_processes / entities_processes
+ Updated: Deprecated 5 methods within the legacy IOCS Service Class. `iocs.py`
- get_ioc / GetIOC
- create_ioc / CreateIOC
- delete_ioc / DeleteIOC
- update_ioc / UpdateIOC
- query_iocs / QueryIOCs
+ Updated: Deprecated cs_username keyword from all methods within CustomIOA and FirewallManagement Service Classes. `custom_ioa.py`, `firewall_management.py`
+ Added: New Quarantine Service Class and endpoints. `quarantine.py`
+ Updated: Updated endpoint for getComplianceV1 operation within ZeroTrustAssessment Service Class. `zero_trust_assessment.py`

---

Issues resolved
+ Bug fix: Fixed Uber class passing empty **ids** parameter array when no _ids_ had been provided to the command method. Closes 314. `_util.py`

---

Issues resolved
+ Bug fix: Fixed bad comparison for endpoint lookups when using Service Classes. Closes 305. `_util.py`
+ Bug fix: Fixed typo in operation ID for query_platforms method within CustomIOA Service Class. Closes 307. `custom_ioa.py`
+ Bug fix: Fixed typo in operation ID for create_user_groups method within FlightControl Service Class. Closes 308. `mssp.py`

---