API Security Secure your REST and GraphQL APIs against common attacks and vulnerabilities. When to Use - Designing new API endpoints - Implementing API authentication - Setting up rate limiting - Reviewing API security - Building public APIs - Implementing webhooks API Security Checklist | Area | Controls | |------|----------| | Authentication | OAuth 2.0, API keys, JWT | | Authorization | Scopes, RBAC, resource ownership | | Input Validation | Schema validation, type checking | | Rate Limiting | Per-user, per-endpoint limits | | Transport | HTTPS only, certificate pinning | | Output | No sen…