Swagger

New Version of Swagger Codegen Plugs Security Vulnerabilities

Swagger Codegen 2.2.0 has been released with many improvements and security fixes, and including JMustache update, codegen model improvement, addition of Apache 2.0 license to all generators, additional integration tests using Shippable and AppVeyor, and fixes to prevent code injection.

Brief

Janet Wagner

SDK, Open Source

07-21-2016

Final Release of OpenAPI 3.0 Specification is Coming Soon

The Open API Initiative has announced that the final release of the OpenAPI 3.0 Specification is tentatively scheduled for release the week of July 17. A two-week last chance period will begin on June 19 giving developers a final chance to try out OpenAPI 3.0 and propose changes to the spec.

News

Janet Wagner

API Description Languages, API Design, Open Source

06-16-2017

Researchers Identify Security Vulnerability Involving Swagger

Security researchers have discovered a vulnerability in the Swagger ecosystem that could result in the exploitation of Web API endpoints when those endpoints or any SDKs designed to access them are generated from a Swagger-based API description. Malicious remote code execution is the main concern.

On the Web

David Berlind

Security, Hacking, REST

07-05-2016