Skip to main content
Update the incident details of a threat.

Parameters

ParameterDescription
New Incident StatusThe new incident status.
Options: 
in_progress
resolved
unresolved
Threats IDsThreats to update their external ticket ID.

Example Output

{
	"data": {
		"affected": 2,
		"details": [
			{
				"analystVerdict": "<string>",
				"result": "<string>",
				"threatId": "<string>"
			}
		]
	}
}

Workflow Library Example

Update Threat Incident with Sentinelone and Send Results Via Email
Workflow LibraryPreview this Workflow on desktop