Falconpy is not retrieving any new detections after July 23

[redscorpse]

When I run the script https://github.com/CrowdStrike/falconpy/blob/main/samples/detects/detects_advisor.py, it only fetches detections until 23 of July. There are newer detections, but this is not showing.

As you can see, the last detection is from 2025-07-23,

And from the Falcon Endpoint Detections tab, you can see that there are newer incidents,

[crowdstrikedcs]

Hi @redscorpse I took a look at this script and saw the same behavior on my end. I can confirm that this is expected behavior.

This sample uses our "Legacy Detection" pipeline and we can see this with the script usage of the Detects service collection.

The Falcon UI on the other hand uses the new "Alerts" based event type which is instead provided by the Alerts service collection. As it is now the script and the UI are reporting on two different data points hence the difference in data.

Legacy Detections have been deprecated and will stop being generated in the near future. At that time I think we should deperate this sample as well and investigate creating a new one that would use the Alerts service collection. If you have access to the Falcon UI there's a documentation article that walks through this transition here

[redscorpse]

Thanks. I've been trying "Alerts" instead, and now the script seems to retrieve the same data that you can see on the Falcon GUI.