You can only perform scans on RESTful Web services, which accept application/JSON as the data format. Support for other API formats will be available in our future version.
You can scan up to 4 APIs in parallel.
No, you cannot perform scans on your internal APIs.
Yes, you can scan your public-facing APIs, but we strictly recommend scanning only the APIs hosted on your Staging/Dev/QA/Test environment.
It is not currently supported. However, our team is working to make this feature available soon.
Reports are available in PDF, HTML, XML and JSON formats.
We support only the Client Admin role who could use this product to scan the APIs and download the reports. We will add more roles in the upcoming updates.
You should reach out to our technical support team with the relevant details at firstname.lastname@example.org.
Drop us an email with the technical details where the scanner has failed to identify the vulnerability to address that issue in our back-end systems.
Kindly, reach out to our support team to understand why the scan has failed, we will revert in 48Hrs.
You can schedule your scans on multiple API projects in a specific time, day, month, and year.
Yes, you can integrate your channel with API Critique to see the activity.
Yes, you can integrate with Jira.
Your only option is to scan the web services by either uploading the web service documentation or manually adding the API endpoints. The service discovery feature will be available in the future version.
The current version of the product only scans your APIs, which have a straightforward authentication, i.e., a login endpoint with credentials.