• Home
  • CodeSent for Apigee
    • Features
    • Rules
    • API
  • Demo
  • Pricing
  • Blog
  • Courses
  • Contacts
  • Sign in
  • Get a demo
    • Home
    • CodeSent for Apigee
      • Features
      • Rules
      • API
    • Demo
    • Pricing
    • Blog
    • Courses
    • Contacts
  • Sign in
  • Get a demo
  2. Rules
  • Group by:
  • None
    None Severity
  • Filter by:
  • Severity
    Info Low Medium High Critical
  • Tags
    Authentication & Authorisation Code Quality Data Validation Data at Rest Data in Transit DoS Protection Error Handling Secure Configuration
  • Scopes(3/22)
    ServiceCallout MessageLogging Step RouteRule Flow Target AccessControl AssignMessage BasicAuthentication Condition FlowCallout HMAC JavaScript JSONThreatProtection OAuthV2 PreFlow Proxy Quota Response SpikeArrest VerifyAPIKey XMLThreatProtection
ServiceCallout HMAC SpikeArrest
Name Severity Scopes Tags Links
Connection to the system is not encrypted Critical ServiceCallout MessageLogging Target Data in Transit CWE-319
Lack of certificate validation Critical ServiceCallout MessageLogging Target Data in Transit CWE-295
No TLS protocol specified in connection definition High ServiceCallout MessageLogging Target Data in Transit CWE-327
SpikeArrest policy doesn't use any identifier High SpikeArrest DoS Protection CWE-770
Use of weak hash algorithms High AssignMessage HMAC JavaScript Secure Configuration CWE-327
ServiceCallout policy uses default message object as a request Medium ServiceCallout Code Quality CWE-200
ServiceCallout policy uses default message object as a response Medium ServiceCallout Code Quality CWE-200

Sentinel Strength for Secure API Gateway Code

  • ​Home
  • Features
  • Demo
  • Rules
  • Blog
  • Apigee Best Security Practices
  • Contact us

  • ​+381 637 736 053 ​
  • ​info@codesent.io
Socials
​
Copyright © CodeSent
Apigee is a registered trademark of Google LLC

We use cookies to provide you a better user experience on this website. Cookie Policy

Only essentials I agree