Posts Categorized: blog

5 Common API Vulnerabilities (and How to Fix Them)

Companies of all sizes are struggling to keep their APIs safe, as evidenced by the many recent hacks, leaks, and exploits. While the traditional approach to API security largely focuses on technical aspects, like managing Denial of Service attacks and preventing code injections, it turns out that a growing number of hacks are actually caused by poor management of API permissions or flaws in business logic. Read more

How to Smartly Sunset and Deprecate APIs

The life of an API follows a predictable lifecycle – from creation to deprecation, each stage of the API lifecycle denotes an important event, and it carries with it a set of best practices. API developers tend to think about the future in very positive ways – how the API will behave, what its design will be – but in doing so, they don’t always consider what the end of that API might look like. Read more

Why You Should Auto-Generate API Client Libraries

Client libraries are one of few ways to dramatically improve Developer Experience (DX) for your APIs. However, with all the programming languages your developers use, creating client libraries can be quite a challenge — and that’s not to mention the maintenance that comes with every update to your APIs. Read more

Do API Standards Differ From Industry to Industry?

At first glance, it would seem that the API space has embraced unified design standards. RESTful development uses HTTP to communicate between a client and a server. OpenAPI Spec serves to extend REST APIs, improving documentation and making APIs machine-friendly.

However, with just a little digging, it becomes apparent that this isn’t always the case. Read more

Auto-Generating a CLI From OpenAPI Specification

As we’ve described many times before, the OpenAPI Specification is a powerful solution for API agility and extensibility. Overseen by the OpenAPI Initiative, the specification drives many modern implementations to new heights. Such is the case with today’s topic, the OpenAPI CLI Generator. Read more