lint the API through https://apisecurity.io/

nmfta-repo / nmfta-opentelematics-api

API Blueprint for Open Telematics API

Apache License 2.0

13 stars 6 forks source link

lint the API through https://apisecurity.io/ #26

Open BenGardiner opened 5 years ago

BenGardiner commented 5 years ago

convert apiary.apib to swagger / Open API 2.0 and run that through the security checks at https://apisecurity.io/

BenGardiner commented 5 years ago

No Security issues found (only structure issues due to conversion -- these are apimatic bugs).

BenGardiner commented 5 years ago

apimatic staff patched the swagger export file. They will have fixed the export to swagger by next week. apisecurity was choking on the structure errors and hiding a multitude of warnings and errors as a result. We won't be able to fix all of these because many are the result of limitations in API Blueprint or conversion errors in apimatic. I'll triage and create issues.

BenGardiner commented 5 years ago

the relevant excerpt from apisecurity.io assessment JSON

apisecurity_assessment_excerpt.txt

BenGardiner commented 5 years ago

apimatic has fixed the export issue now