May 13, 2016
View all 2 Followers
View all 974 Related Articles
Related Articles (974)
Secret API Keys add a layer of security to APIs and who can access what functions, but a simple flaw in the common implementation in GitHub leaves many API Keys exposed to external developers. This tutorial by Moshe Shaham explains this error, as well as how to leverage it to find API keys.
Recent reports show that the Kubernetes API is vulnerable to the billion laughs attack. The attack is a specific type of DoS attack targeting parsers. The vulnerability in the Kubernetes environment occurs within parsing YAML manifests. The apiserver does not validate or limit such manifests.
Eleven APIs have been added to the ProgrammableWeb directory under the Home Automation, Marketing, Payments, and Healthcare categories, among others. Featured today is an API for open source smarthome automation system Domoticz. Have a look at the new additions in this summary.