Bulk Update Asset Criticality - Synack Enterprise API

POST

/

v2

/

bulk

/

assets

/

criticality:update

cURL

curl --request POST \
  --url https://client.synack.com/api/asset/v2/bulk/assets/criticality:update \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "organizationUid": "<string>",
  "criticality": "undefined",
  "assetUids": [
    "<string>"
  ]
}
'

{
  "updatedCount": 0
}

Authorizations

Authorization

string

header

required

The access token received from the authorization server in the OAuth 2.0 flow.

Body

application/json

The Organization UID, Asset UIDs to be updated, and the criticality value to be set on the assets.

organizationUid

string

required

Unique identifier for an organization.

Pattern: ^[-_0-9a-z]{1,50}

criticality

enum<string>

default:undefined

required

Indicates importance of the asset to the customer.

Available options:

high,

medium,

low,

undefined

assetUids

string[]

Unique identifier for an asset.

Pattern: ^[0-9a-f]{24}

Response

Count of assets updated.

updatedCount

integer

default:0

Number of assets updated.

Get AssetsRetrieve the list of assets for one or more organizations, considering filtering and pagination query parameters. When an organization-level OAuth2 scope is provided, the results will be restricted to those organizations the user is authorized for. Similarly, if a listing- level OAuth2 scope is provided, the results will be restricted to those listings the user is authorized for. Additional query parameters generally restrict the resulting set of assets according to AND semantics. Use of organizationUid and listingUid query parameters will further restrict the results. If neither are specified, the returned assets are the set of assets the user is allowed to access with organization OR listing specific privileges. If listing UIDs are supplied without organization UIDs, then only the assets assigned to those listings (which the user is authorized for) will be returned. Conversely, if organization UIDs are supplied without listing UIDs, then only the assets owned by those organizations (which the the user is authorized for) will be returned. Should both organization UIDs and listing UIDs be supplied, then the set of assets returned is restricted to assets assigned to any of the supplied listings, AND owned by any of the supplied organizations, further restricted to only those the user is authorized to access. Researcher users are restricted to only viewing credentials of in scope assets for listings to which they have been assigned.

cURL

curl --request POST \
  --url https://client.synack.com/api/asset/v2/bulk/assets/criticality:update \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "organizationUid": "<string>",
  "criticality": "undefined",
  "assetUids": [
    "<string>"
  ]
}
'

{
  "updatedCount": 0
}