A few contain an empty ‘security’ array, which should throw an error or warning

postman-open-technologies / knowledge-base

This is a project dedicated to mining and extracting knowledge from across the API universe.

Apache License 2.0

10 stars 5 forks source link

A few contain an empty ‘security’ array, which should throw an error or warning #14

Open kinlane opened 1 year ago

kinlane commented 1 year ago

Pulled from the finding for "How many APIs have security definitions?", - PH→ A few contain an empty ‘security’ array, which should throw an error or warning. We need a rule to catch.

MikeRalphson commented 1 year ago

Should definitely be a warning (if that) not an error. Many APIs provide heartbeat or is-alive endpoints which do not require authentication.