{"id":7731,"date":"2019-10-09T08:00:56","date_gmt":"2019-10-09T07:00:56","guid":{"rendered":"https:\/\/staging-site.42crunch.com\/?p=7731"},"modified":"2022-09-24T13:28:31","modified_gmt":"2022-09-24T12:28:31","slug":"api-security-audit-to-its-visual-studio-code-openapi-extension","status":"publish","type":"post","link":"https:\/\/staging2022.42crunch.com\/api-security-audit-to-its-visual-studio-code-openapi-extension\/","title":{"rendered":"42Crunch Adds API Security Audit to its Visual Studio Code OpenAPI Extension"},"content":{"rendered":"
SAN JOSE, OCTOBER 9, 2019<\/b> \u2014 Today at API World, API security leader and creator of the industry\u2019s first API Firewall, 42Crunch, announced the availability of REST API Security Audit functionality in its popular OpenAPI extension for Microsoft Visual Studio Code \u2014 making it easier than ever to enable a DevSecOps process for API security.<\/span><\/p>\n Developers working on their APIs within 42Crunch\u2019s VS Code extension simply have to click the Security Audit button at the top right of the window to run a remote service that will audit the API contract against 200+ various checks for API security best practices and possible vulnerabilities; including authentication, authorization, transport, data inputs and outputs.<\/span><\/p>\n The results are presented as an actionable Security Audit report. Each vulnerability is also underlined in the code and added to the IDE\u2019s Problems panel. The tool provides an explanation, possible exploit scenario, and fix recommendations.<\/span><\/p>\n <\/p>\n \u201cWith APIs increasingly becoming one of the primary attack vectors, companies want to shift-left and have developers ensure that their APIs are designed and implemented with security in mind from day 1,\u201d says Dmitry Sotnikov, VP of Cloud Platform at 42Crunch. \u201cToday 42Crunch has made it easier for software engineers to get API security audit and recommendations at their fingertips, right within their IDE.\u201d<\/span><\/p>\n The extension supports both version 2 and version 3 of OpenAPI specification, both JSON and YAML formats. It’s available free to all VS Code users at <\/span>http:\/\/bit.ly\/42vscode<\/span><\/a> and already has more than 16 thousand installations and 11 five-star reviews.<\/span><\/p>\n API World 2019 For a deeper dive into DevSecOps for API Security and the OWASP API Top 10 \u2013 join our security experts for their presentations today:\u00a0\u00a0<\/span><\/p>\n The Dev, Sec and Ops of API Security <\/b><\/a> OWASP API Security Top 10<\/b><\/a> About 42Crunch<\/b><\/p>\n 42Crunch bridges the gap between API development and security teams with a simple, automated platform that provides auditing, live endpoint scanning, and micro API firewall protection. Unlike other solutions on the market, the 42Crunch platform empowers development, security and operations teams with a set of integrated tools to easily build security into the foundation of the API and enforce those policies throughout the API lifecycle. By delivering security as code you enable a seamless DevSecOps experience, allowing innovation at the speed of business without sacrificing integrity. Visit<\/span> https:\/\/42crunch.com<\/span><\/a> to learn more.\u00a0<\/span>\u00a0<\/span><\/p>\n If you want to see the whole platform in action, request a demo now<\/a>!<\/p>\n
\n<\/b>Join 42Crunch at API World \u2013 Booth 306 to learn more about ensuring API security across all REST APIs in your company.<\/span><\/p>\n
\nRegister for Isabelle Mauny\u2019s workshop on Wednesday October 9th at 9am. In this presentation you will learn:<\/span><\/p>\n\n
\nRegister for Dmitry Sotnikov\u2019s open talk on Wednesday October 9th at 4pm. In this presentation we\u2019ll discuss:<\/span><\/p>\n\n