Open kinlane opened 1 year ago
Pulled from the finding for "How many APIs have security definitions?", - PH→ A few contain an empty ‘security’ array, which should throw an error or warning. We need a rule to catch.
Should definitely be a warning (if that) not an error. Many APIs provide heartbeat or is-alive endpoints which do not require authentication.
Pulled from the finding for "How many APIs have security definitions?", - PH→ A few contain an empty ‘security’ array, which should throw an error or warning. We need a rule to catch.