Released: 2025-07-22
We’re pleased to announce the following updates to the Forward Networks API as part of release 25.7.0.
For more details, see the full Forward Enterprise API 25.7.0 release notes.
Breaking Changes
-
Device credential APIs removed: The legacy
deviceCredentialsendpoints have been removed. Use the/cli-credentialsand/http-credentialsendpoints instead.-
Removed endpoints:
-
GET /api/networks/{networkId}/deviceCredentials -
POST /api/networks/{networkId}/deviceCredentials -
PATCH /api/networks/{networkId}/deviceCredentials -
PATCH /api/networks/{networkId}/deviceCredentials/{credentialId} -
DELETE /api/networks/{networkId}/deviceCredentials/{credentialId}
-
-
Scheduled Breaking Changes
The following endpoints and fields are deprecated and scheduled for removal in a future release.
-
Device source operations (removal in 25.9): Use
/classic-devicesoperations instead.-
Affected endpoints include:
-
GET|POST|DELETE /api/networks/{networkId}/deviceSources -
GET|PUT|PATCH|DELETE /api/networks/{networkId}/deviceSources/{deviceSourceName}
-
-
-
Legacy snapshot device operations (removal in 25.9): Use
/devices/...or/missing-devicesinstead.-
Affected endpoints:
-
GET /api/snapshots/{snapshotId}/devices/{deviceName} -
GET /api/snapshots/{snapshotId}/devices/{deviceName}/files[/{fileName}] -
GET /api/snapshots/{snapshotId}/missingDevices
-
-
-
Snapshot processing state (removal in 25.10):
SnapshotMetrics.needsProcessingis deprecated. UsesnapshotState="UNPROCESSED"instead.-
Affected endpoint:
-
GET /api/snapshots/{snapshotId}/metrics
-
-
-
Vulnerability endpoint moved (removal in 25.10): Use
GET /api/networks/{networkId}/vulnerabilitiesinstead.-
Deprecated endpoint:
-
GET /api/snapshots/{snapshotId}/vulnerabilities
-
-
New Operations
-
GET /api/networks/{networkId}/vulnerabilities[?snapshotId=...]
Adds support for querying vulnerabilities by network, with optional snapshot filtering.
New Models
-
VulnerabilityAnalysisDeprecated and VulnerabilityDeprecated were introduced to preserve current behavior during the transition to newer models.
Query Parameter Changes
-
Path Search: Added optional
includeTagsparameter.-
Affected endpoint:
GET /api/networks/{networkId}/paths
-
-
Vulnerability Analysis: Added
offsetandlimitparameters to support pagination.-
Affected endpoint:
GET /api/networks/{networkId}/vulnerabilities[?snapshotId=...]
-
Model Changes
-
Device platform values:
"dell"has been renamed to"dell_os6"in theDeviceandVulnerabilitymodels. -
CLI credential schema cleanup: The deprecated
loginTypeproperty was removed from all CLI credential models. -
Error response structure:
ErrorInfoandNqeErrorInfonow explicitly requirehttpMethod,apiUrl, andmessage—this improves schema accuracy but does not change runtime behavior. -
Path modeling:
-
tagsadded toPathHop. -
includeTagsadded toPathSearchBulkRequest.
-
-
SnapshotMetrics:
-
Added
snapshotState. -
Deprecated
needsReprocessingfor future removal.
-
-
Vulnerability models:
-
scoreremoved; usev2Score,v3Score, orv4Score. -
devicesis now optional whendeviceResultsis present. -
Introduced a simplified
Vulnerabilitymodel withoutrelevantLineRanges.
-
-
VulnerabilityAnalysis:
-
Uses string timestamps for
indexCreatedAtandindexUploadedAt. -
Pagination support added via
offsetandtotal.
-
Unpublished API Changes
The following unpublished operations were removed. These were undocumented and unsupported.
-
Legacy device tagging operations removed: Use the documented
/device-tagsendpoints instead.-
Removed operations include:
-
POST /deviceConfigs?op=addTags|deleteTags -
PATCH /deviceConfigs/{deviceName} -
POST /endpoints?action=addTags|deleteTags|deleteAllTags -
POST /snapshots/{snapshotId}/devices?op=addTags|deleteTags -
PATCH /snapshots/{snapshotId}/devices/{deviceName}
-
-



