API Learnings

APIs

apiExplore
- API Providers
- API Resources

API Governance

API Solutions

design_servicesServices
- All Services
constructionTools
- All Tools

API Discovery

searchDiscovery
- Inbox
- Bing
- Google
- GitHub
fingerprintEvidence
- Inbox
- Bookmarks

API Building Blocks

API Evangelist LLC

OWASP API8 2023 No Server HTTP

Server interactions must not use http:// as it is inherently insecure and can lead to PII and other sensitive information being leaked through traffic sniffing or man-in-the-middle attacks. Use https:// or wss:// instead.

Message: Server URLs must not use http://. Use https:// or wss:// instead.

#OWASP #Security #Transport #Servers #OpenAPI

← Back to all Rules