{"id":6840,"date":"2019-02-13T12:00:40","date_gmt":"2019-02-13T12:00:40","guid":{"rendered":"https:\/\/staging-site.42crunch.com\/?p=6840"},"modified":"2022-11-24T10:27:13","modified_gmt":"2022-11-24T10:27:13","slug":"apisecurity-io-adds-api-security-encyclopedia-free-api-contract-security-audit-service","status":"publish","type":"post","link":"https:\/\/staging2022.42crunch.com\/apisecurity-io-adds-api-security-encyclopedia-free-api-contract-security-audit-service\/","title":{"rendered":"APIsecurity.io adds API Security issues and a free API Contract Security Audit service"},"content":{"rendered":"

LONDON, UK, February 13, 2019 — API Contract Security Audit<\/strong> is a free online tool that lets developers and security professionals upload their OpenAPI definition files and get a detailed security assessment on the potential risks that their APIs might have. Each issue in the report shows the specific place in the API contract that may cause trouble, provides details on the potential exploit scenario, and shows recommendations on how to improve the API definition to mitigate the risk.<\/p>\n

\"\"<\/p>\n

“There is much talk recently about \u201cshifting left\u201d in security \u2013 to start vulnerability testing at an earlier stage of the development lifecycle. With the OpenAPI Contract Audit tool from 42Crunch, you can test your API even before it\u2019s been created, quickly investigating potential security issues and getting actionable recommendations for fixing them. Can you go more left than that?” says Alexei Balaganski<\/strong>, Lead Analyst at KuppingerCole Analysts AG<\/strong>.<\/p>\n

API Security Encyclopedia<\/strong> is a free online resource with almost 200 articles on potential API security risks, possible exploit scenarios, and recommendations on how to mitigate the risks.<\/p>\n

\"\"<\/p>\n

Alexei Balaganski<\/strong> adds: “Perhaps the biggest obstacle for companies towards adopting API security best practices is not knowing they are doing something wrong at all. What they need is a clear and concise guide outlining typical API-related anti-patterns, demonstrating their security risks and offering proven methods of mitigating them. 42crunch\u2019s recently launched API Security Encyclopedia is exactly that and already shows great potential for all API developers”.<\/p>\n

\u201c42Crunch launched APIsecurity.io<\/a> in October 2018,\u201d says Dmitry Sotnikov<\/strong>, VP of Cloud Platform at 42Crunch. \u201cIt has become a popular source of API security news and information, with more than a thousand subscribers to its weekly newsletter. Now, we are extending the usefulness of this community site by putting some of the most valuable know-how and technology of 42Crunch on this site for the community to use. Our mission is to share knowledge with the community and help everyone make their APIs secure.\u201d<\/p>\n

About 42Crunch<\/strong><\/p>\n

Founded in London, UK, with offices in Dublin (Ireland), Montpellier (France) and Irvine (California), 42Crunch is known for launching the first API Firewall on the market, and provides a security platform that automatically generates and enforces risk-based security policies on enterprises\u2019 APIs. The cloud solution addresses the most demanding API security requirements for enterprises around the world. 42Crunch API Platform also fosters the collaboration of security, development, and operations teams, and enables a DevSecOps approach to API lifecycle. Visit https:\/\/42crunch.com<\/a> to learn more.<\/p>\n

Trademarks and registered trademarks are the property of their respective owners.<\/p>\n

Isabelle Mauny
\n42Crunch<\/p>\n","protected":false},"excerpt":{"rendered":"

LONDON, UK, February 13, 2019 — API Contract Security Audit is a free online tool that lets developers and security professionals upload their OpenAPI definition files and get a detailed security assessment on the potential risks that their APIs might have. Each issue in the report shows the specific place in the API contract that […]<\/p>\n","protected":false},"author":9,"featured_media":11349,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"none","_seopress_titles_title":"APIsecurity.io adds free API Contract Security Audit tool","_seopress_titles_desc":"42Crunch launches free online security audit of OpenAPI \/ Swagger contracts with information on API vulnerabilities & ways to fix them.","_seopress_robots_index":"","site-sidebar-layout":"default","site-content-layout":"default","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"disabled","ast-hfb-above-header-display":"disabled","ast-hfb-below-header-display":"disabled","ast-hfb-mobile-header-display":"disabled","site-post-title":"disabled","ast-breadcrumbs-content":"disabled","ast-featured-img":"disabled","footer-sml-layout":"disabled","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[13],"tags":[22,25],"class_list":["post-6840","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-api-security-platform","tag-api-testing"],"_links":{"self":[{"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/posts\/6840"}],"collection":[{"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/comments?post=6840"}],"version-history":[{"count":0,"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/posts\/6840\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/media\/11349"}],"wp:attachment":[{"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/media?parent=6840"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/categories?post=6840"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/staging2022.42crunch.com\/wp-json\/wp\/v2\/tags?post=6840"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}