This week, we check out a potential exposure of APIs developed with Spring Framework and OAuth 2.0 attack classification. There’s also a recording of a recent JSON web token (JWT) security webinar and an upcoming API security fireside chat at the Postman Galaxy event next week.
Vulnerability: Spring Framework Application-Level Profile Semantics
Frameworks make developer life easier but may also increase your attack surface, as the recent research on Spring Framework demonstrates.