It seems at every API conference, there is a new feature being released by the team at OAuth.io. In October, at API Strategy and Practice in San Francisco, OAuth.io released a mobile SDK. Now after APIDays in Paris, OAuth.io has released a 'code request' feature to abstract usage tokens in the authentication process. Co-Founder Mehdi Medjaoui spoke with ProgrammableWeb about the service that provides a unified API for any OAuth implementation.
This is the ninth part of ProgrammableWeb’s series, Understanding the Realities of API Security based on testimony by ProgrammableWeb’s David Berlind to the ONC’s API Security and Privacy Task Force. This part looks at how certification authorities could help to instill API consumer confidence.
On the heels of recent research that indicates rampant secret leaks in public repositories, GitLab has included a new check feature in its 11.9 release. The new check, secret detection, scans repository contents for API keys and other data that should be treated as secret by the user.