Appendix. Answers to exercises

Chapter 1

EXERCISE 1.1

Using APIsecurity.io (https://apisecurity.io/tools/audit/) to perform a security audit on OpenAPI JSON files. This tool will identify relevant information in your JSON file as it pertains to code quality and security. Using the Microsoft’s Visual Code (https://code.visualstudio.com/) plug-in, you will find the identified security items when they exist in the JSON file in the OpenAPI section in the left hand column.

Follow the instructions to identify security issues that may exist in a JSON file used for OpenAPI: http://mng.bz/WMO4.

EXERCISE 1.2

You have three options here with the Touchpoints. The first is the Architecture Analysis, which requires security expertise to be integrated at ...

Get Application Security Program Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Application Security Program Handbook by Derek Fisher

Appendix. Answers to exercises

Chapter 1

EXERCISE 1.1

EXERCISE 1.2

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly