> For the complete documentation index, see [llms.txt](https://docs.keeper.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.keeper.io/release-notes/backend/backend-api/backend-api-18.1.2.md).

# Backend API 18.1.2

### New Features

* Universal Secrets Sync (USS): Automated synchronization of secrets across environments with granular administrator permissions, enforcement policy controls, and a comprehensive audit trail for all sync activities.
* CNAPP Integration (Wiz v1): Bidirectional integration with the Wiz cloud security platform enabling automated credential remediation, issue queue management, configurable remediation behaviors, and unified identity risk visibility.

### Improvements

**KA-8681:** Added support for retrieving folder-level user permissions. Enables permission-aware synchronization when working with shared and drive folders.

**KA-8674:** Enhanced audit events for record updates in drive folders. Drive folder identifiers are now included in audit events for improved traceability during secret sync operations.

**KA-8552:** Enhanced audit events for record updates in shared folders. Shared folder identifiers are now included in audit events for improved traceability during secret sync operations.

**KA-8448:** Improved CNAPP audit event naming for clarity. Renamed webhook-related audit event types to issue-based naming to better reflect their purpose in audit logs.

**KA-8237:** Added CNAPP-related audit events to the allowed audit event types. All CNAPP operations — including remediation, issue management, and integration configuration — are now fully auditable.

**KA-7967:** Included key type information in managed company session responses. Ensures proper handling of encryption key types when launching managed company sessions.

**KA-7955:** Added support for scheduling enterprise transfer execution dates. The legal team can set a future date (up to 45 days out) for approved transfers to maintain billing consistency.

**KA-7876:** Added audit event generation for all Universal Secrets Sync operations. All synchronization activities are now tracked for compliance and reporting purposes.

**KA-7875:** Added configurable permissions for Universal Secrets Sync. Administrators can now control which users have access to configure USS settings through role-based permissions.

**KA-7651:** Added the ability for managed companies to update encrypted keys during transfers. Supports both ECC and RSA key types for backward compatibility during ownership transitions.

**KA-7650:** Added the ability for managed companies to retrieve enterprise public keys during transfers. Supports secure key exchange as part of the enterprise ownership transfer process.

**KA-7522:** Added the ability for administrators to cancel pending transfer requests. Either the assignor or assignee admin can cancel before legal approval, with notifications sent to both parties and the action logged for audit.

**KA-7385:** Added the ability to view and filter transfer request lists. Supports filtering by enterprise name, admin email, enterprise ID, and status for efficient request management.

**KA-7358:** Added the ability to check the real-time status of an ownership transfer request. Authorized administrators can poll for status updates including pending, approved, or denied states with timestamps.

**KA-7357:** Added the ability for the legal team to approve or deny pending transfer requests. Transfer resolutions are recorded with justification and are final once set, with notifications sent to both parties.

**KA-7337:** Added the ability for administrators to initiate enterprise ownership transfer requests. Supports multiple transfer types with validation of both participating admins and organizations before proceeding. Email notifications are sent to both parties with transfer summary and next steps.

**INT-137:** Introduced Wiz Integration v1 for Cloud-Native Application Protection. This integration enables remediation of Wiz findings, correlating credential hygiene and privileged access data with cloud security posture. Provides a unified view of identity-related attack paths for mutual customers.

### Bugs

**KA-8615:** Fixed an issue where certain configuration records could not be created for Keeper Drive configurations. The system now correctly supports creating drive-type configuration records through the PAM configuration workflow.

<br>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.keeper.io/release-notes/backend/backend-api/backend-api-18.1.2.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.