Copy
The week in API strategy, news, articles, and upcoming events.
James Higginbotham, Curator  A hand-curated weekly newsletter for API developers, sponsored by LaunchAny and CaseySoftware

Find this via Twitter? Subscribe now so you don't miss out
 
 

API Developer Weekly

Feb 13, 2020 - Issue #295
This week's assortment of articles include two API security incidents, some tips on building API documentation into your portal and beyond, and using APIs for better writing. Happy reading! -- James
 
Hot Topics
Basic API Security Flaw Exposes Personal Information of Millions of Israelis
A political campaign app designed for the Likud party in Isreal has been found to include a basic API flaw that exposed the personal information of almost 6.5 million users. Likud, the party of Israeli prime minister Netanyahu, designed the app to help users receive campaign news and updates. [programmableweb.com]

Twitter API Incident Impacting your Account Identity
On December 24, 2019 we became aware that someone was using a large network of fake accounts to exploit our API and match usernames to phone numbers. We immediately suspended these accounts and are disclosing the details of our investigation to you today because we believe it's important that you are aware of what happened, and how we fixed it. [privacy.twitter.com]

Forging SWIFT MT Payment Messages for fun and pr... research!
TLDR: With a bit of research and support we were able to demonstrate a proof of concept for introducing a fraudulent payment message to move £0.5M from one account to another, by manually forging a raw SWIFT MT103 message, and leveraging specific system trust relationships to do the hard work for us! [labs.f-secure.com]

Three Key Steps for Scaling a Developer Portal
2 0 0 2 0 Total: 4 Quality API documentation is unquestionably the lifeblood of the developer experience. Most self-service tools require detailed tutorials, even for simple use. We know developer adoption drives the success of numerous APIs, so why not make their lives as easy as possible? by Tyler Charboneau [nordicapis.com]

GraphQL is Not "Better" Than REST
I worked in a company that successfully deployed and capitalized on the exponential value from a Hypermedia system in production. After we proved the practical business value of that Hypermedia system, this question still kept popping up: Is GraphQL better than REST? HTTP means Hypertext Transfer Protocol. by Fagner Brack [medium.com]

6 Writing APIs To Elevate Your Words
We review a handful of helpful APIs to improve writing. These services can be embedded into apps to check for spelling, grammar, readability, and more, utilizing AI and machine learning. by J Simpson [nordicapis.com]

API Links For Every UI Element
I've showcased CloudFlare's approach making their API available as part of their user interface several times now. It is a practice I want to see replicated in more desktop, web, and mobile applications, so I want to keep finding new ways of talking about, and introducing to new readers. by Kin Lane [apievangelist.com]

Modern Event-Driven Application Development using TIBCO and AsyncAPI
A look at using AsyncAPI for event-based APIs. [link.medium.com]

The Business of APIs
DevNet program enables developers to see bigger, API-driven computing picture
The webpage for Cisco DevNet, the developer program for Cisco Systems Inc., could easily be mistaken for a tutorial on key elements of the computing world in general. Developers can explore DevNet's various "platforms," ranging from the "internet of things," cloud and networking to security, mobility, the data center, open source, and much more. [siliconangle.com]

Postman Adds API Builder and Reporting Features to Enterprise Platform
Postman, an API development platform provider, has bolstered its enterprise platform with two new features. First, API Builder, a feature that allows developers to build APIs directly within Postman, is now generally available. Second, a new reporting feature, currently in beta, provides insight regarding how APIs are used throughout a particular development environment. [programmableweb.com]
 
(Un)Related Topics
Five Things Every Developer Should Know about Software Architecture
Given the distributed nature of the software systems we're now building, and the distributed nature of the teams building them, it's more important than ever to understand the basics of software architecture. As a short introduction to the topic and to debunk some myths, here are five things that every software developer should know about software architecture. [infoq.com]

Wacom drawing tablets track the name of every application that you open
Disclaimer: I haven't asked Wacom for comment about this story because I'm not a journalist and I don't know how to do that. I don't believe I've got anything important wrong, however. I have a Wacom drawing tablet. [robertheaton.com]

Useful Resources
Upcoming Web API Events
A list of upcoming Web API Events, maintained by Matthew Reinbold

API Security Events
A list of upcoming API security events from apisecurity.io

Tyk Whitepaper: Approaching your API Strategy
As well as writing for the James Higginbotham is an Executive API Consultant with experience in API strategy and software architecture. James guides enterprises through their digital transformation journey to deliver a great customer experience and provides training in API and microservice design. [content.tyk.io]


Book: A Practical Approach to API Design by Casey and Higginbotham
If you read the tech press, everyone knows they need an API but most aren't really sure what it is. They treat it as another checkbox like "Web 2.0" was a few years ago or a mobile app was most recently. In fact, there’s an entire “API-first” movement in development circles that most people don’t understand or even realize why. In this book, we'll start by discussing the what an API is, why you might need one, and follow up with the how to build one. [leanpub.com]

 
Want to share something?
As always, if you want to chat, share a link, or make a suggestion, feel free to drop us a quick note or tagging us on Twitter (@launchany and @caseysoftware) or by emailing us at: james@launchany.com
 
Follow on Twitter    Forward to Friend    Subscribe
Copyright © 2020 LaunchAny, All rights reserved.
unsubscribe from this list