From ff62ff9edf415ed8e231f7d0d44cdf4d2c66aacb Mon Sep 17 00:00:00 2001
From: Rachael Shaw <r@rachael.wtf>
Date: Fri, 26 Sep 2025 17:23:25 -0500
Subject: [PATCH 1/5] Update rest-api.md

---
 docs/REST API/rest-api.md | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/docs/REST API/rest-api.md b/docs/REST API/rest-api.md
index 451920ee7dd..8807f1b1a90 100644
--- a/docs/REST API/rest-api.md	
+++ b/docs/REST API/rest-api.md	
@@ -9792,6 +9792,7 @@ Returns a list of all operating systems.
       "version": "10.0.22621.1234",
       "platform": "windows",
       "generated_cpes": [],
+      "vulnerabilities_count": 1,
       "vulnerabilities": [
         {
           "cve": "CVE-2022-30190",
@@ -9813,7 +9814,10 @@ Returns a list of all operating systems.
 }
 ```
 
-Windows and macOS listed vulnerabilities are based on OS version-specific data. Linux vulnerabilities are based on kernel vulnerabilities for hosts running the specified OS version. Both active and inactive kernels on a host are accounted for in kernel vulnerability reporting. Other operating systems do not report vulnerabilities.
+
+`vulnerabilities` lists up to 3 vulnerabilities per OS version. To retrieve an OS version's full list of vulnerabilities, use [Get operating system version](#get-operating-system-version).
+
+Windows and macOS vulnerabilities are based on OS version-specific data. Linux vulnerabilities are based on kernel vulnerabilities for hosts running the specified OS version. Both active and inactive kernels on a host are accounted for in kernel vulnerability reporting. Other operating systems do not report vulnerabilities.
 
 ### Get software
 

From 7c9848ef014f9f3896e575b7e943b09882401cbf Mon Sep 17 00:00:00 2001
From: Rachael Shaw <r@rachael.wtf>
Date: Tue, 30 Sep 2025 14:02:32 -0500
Subject: [PATCH 2/5] Update rest-api.md

---
 docs/REST API/rest-api.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/REST API/rest-api.md b/docs/REST API/rest-api.md
index 8807f1b1a90..36a28c7e220 100644
--- a/docs/REST API/rest-api.md	
+++ b/docs/REST API/rest-api.md	
@@ -9519,7 +9519,7 @@ Deletes the session specified by ID. When the user associated with the session n
 
 - [List software](#list-software)
 - [List software versions](#list-software-versions)
-- [List operating systems](#list-operating-systems)
+- [ systems](#list-operating-systems)
 - [Get software](#get-software)
 - [Get software version](#get-software-version)
 - [Get operating system version](#get-operating-system-version)
@@ -9769,6 +9769,7 @@ Returns a list of all operating systems.
 | platform            | string   | query | Filters the hosts to the specified platform |
 | os_name     | string | query | The name of the operating system to filter hosts by. `os_version` must also be specified with `os_name`                                                 |
 | os_version    | string | query | The version of the operating system to filter hosts by. `os_name` must also be specified with `os_version`                                                 |
+| max_vulnerabilities   | integer | query | Limits the number of `vulnerabilities` returned per OS version. (If omitted, returns all vulnerabilities.) |
 | page                    | integer | query | Page number of the results to fetch.                                                                                                                                       |
 | per_page                | integer | query | Results per page.                                                                                                                                                          |
 | order_key               | string  | query | What to order results by. Allowed fields are: `hosts_count`. Default is `hosts_count` (descending).      |

From fdf67cd4bbfdbcae6ec57b202feda3e16ecb6800 Mon Sep 17 00:00:00 2001
From: Rachael Shaw <r@rachael.wtf>
Date: Tue, 30 Sep 2025 14:03:56 -0500
Subject: [PATCH 3/5] Update docs/REST API/rest-api.md

---
 docs/REST API/rest-api.md | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/docs/REST API/rest-api.md b/docs/REST API/rest-api.md
index 36a28c7e220..d641b86dac8 100644
--- a/docs/REST API/rest-api.md	
+++ b/docs/REST API/rest-api.md	
@@ -9815,10 +9815,7 @@ Returns a list of all operating systems.
 }
 ```
 
-
-`vulnerabilities` lists up to 3 vulnerabilities per OS version. To retrieve an OS version's full list of vulnerabilities, use [Get operating system version](#get-operating-system-version).
-
-Windows and macOS vulnerabilities are based on OS version-specific data. Linux vulnerabilities are based on kernel vulnerabilities for hosts running the specified OS version. Both active and inactive kernels on a host are accounted for in kernel vulnerability reporting. Other operating systems do not report vulnerabilities.
+Windows and macOS listed vulnerabilities are based on OS version-specific data. Linux vulnerabilities are based on kernel vulnerabilities for hosts running the specified OS version. Both active and inactive kernels on a host are accounted for in kernel vulnerability reporting. Other operating systems do not report vulnerabilities.
 
 ### Get software
 

From ed14fedba8c246e07398f90699aee98654e9c5d2 Mon Sep 17 00:00:00 2001
From: Rachael Shaw <r@rachael.wtf>
Date: Tue, 30 Sep 2025 14:08:49 -0500
Subject: [PATCH 4/5] Update docs/REST API/rest-api.md

---
 docs/REST API/rest-api.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/REST API/rest-api.md b/docs/REST API/rest-api.md
index d641b86dac8..df41265ac2d 100644
--- a/docs/REST API/rest-api.md	
+++ b/docs/REST API/rest-api.md	
@@ -9519,7 +9519,7 @@ Deletes the session specified by ID. When the user associated with the session n
 
 - [List software](#list-software)
 - [List software versions](#list-software-versions)
-- [ systems](#list-operating-systems)
+- [List operating systems](#list-operating-systems)
 - [Get software](#get-software)
 - [Get software version](#get-software-version)
 - [Get operating system version](#get-operating-system-version)

From 97c0672216cc93622fa6c7d17ac0ef7f8e1040a0 Mon Sep 17 00:00:00 2001
From: Noah Talerman <47070608+noahtalerman@users.noreply.github.com>
Date: Fri, 14 Nov 2025 16:56:46 -0500
Subject: [PATCH 5/5] Update rest-api.md

---
 docs/REST API/rest-api.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/REST API/rest-api.md b/docs/REST API/rest-api.md
index 71f34cccd2a..ba927b2190d 100644
--- a/docs/REST API/rest-api.md	
+++ b/docs/REST API/rest-api.md	
@@ -10005,6 +10005,7 @@ Retrieves information about the specified operating system (OS) version.
 | ---- | ---- | -- | ----------- |
 | id   | integer | path | **Required.** The OS version's ID. |
 | team_id             | integer | query | _Available in Fleet Premium_. Filters response data to the specified team. Use `0` to filter by hosts assigned to "No team".  |
+| max_vulnerabilities   | integer | query | Limits the number of `vulnerabilities` returned. (If omitted, returns all vulnerabilities.) For Linux OS's, doesn't limit the number of vulnerabilities returned in the `kernels` array. |
 
 ##### Default response