📰 APIs You Won't Hate (The newsletter)

APIs Around the World

In this issue of the newsletter: Oauth 2.0 Security, the story of Hono, Speakeasy's Series A, a Laravel API course, and a fresh podcast!

Alexander Karan

Nov 1, 2024 — 3 min read

APIs You Won't Hate is proudly global, both in community and in teamwork. Behind the scenes, our newsletter, podcast, and thriving community are run by just three people—spread across three continents! Phil Sturgeon in the UK, Alexander Karan in Australia, and Mike Bifulco on the US east coast.

We recently caught up across time zones for a new podcast episode you won’t want to miss.

-Mike

The API Round-Up

RateLimit header fields for HTTP

The latest draft from the IETF’s HTTPAPI working group proposes standardized headers for rate limiting, which could mean fewer custom implementations and clearer communication with API consumers.

How OpenAPI Ensures Reliable API Communication

OpenAPI's standardized documentation transforms API reliability, from setting clear expectations to easing integration. This quick read explains why OpenAPI is a go-to for making seamless developer experiences.

OAuth 2.0 Security in OpenAPI

Ever wondered about describing OAuth2.0 in OpenAPI? Here's everything you need to know, all in one place.

The "Don't Have Time to Create API Documentation" Paradox

In a twist of irony, skipping documentation to save time often leads to even bigger time drains down the road. This post tackles why investing in clear API docs upfront actually saves you—and your users—time in the long run.

Speakeasy's $15M Series A

Speakeasy, a longtime sponsor of our community, just hit a huge milestone with their Series A fundraise! Dive into their journey to learn the strategies and challenges they tackled to secure funding. We're thrilled for them and excited to see what's next!

The story of web framework Hono, from the creator of Hono

This behind-the-scenes look from Hono’s creator, detailing how the framework came to life and what makes it a powerful, minimal tool for developers.

Introducing Express v5: A New Era for the Node.js Framework

Express.js, a staple in the JavaScript and TypeScript communities, has launched its long-awaited v5 update. This release introduces support for modern Node.js versions, enhanced security measures, and streamlined APIs, all while maintaining its minimalist approach.

Fuzz Testing Go HTTP Services

This guide walks through fuzz testing—a method of bombarding your service with random data to uncover edge cases—for Go-based HTTP services. Learn how fuzzing can boost reliability and make your APIs more resilient.

Speakeasy: Write OpenAPI your users love

A great spec is the beginning of a great API devex. The OpenAPI Hub has all the info you need to craft a spec ready for docs, SDKs, and delighting users

Learn More

APIs You Won't Hate

The latest from the team at API's You Won't Hate.

The APIs You Won't Hate Starter Pack for Bluesky

There has been a large migration of tech folks from Twitter to Bluesky over the past few weeks. It's feeling a whole lot like the good old days on Bluesky - and we'd love to see you there. If you're on Bluesky, please drop Mike a line to get added to the Starter Pack!

🎙️ A pod worth casting for

Though we've been working together for a long while, it turns out that Alexander, Phil, and Mike had never all recorded a podcast together before. We caught up to catch up on what everyone's been up to these past few months, to talk APIs, and to gab about the future of this very community.

From our Community

Articles written and shared in our free Slack community.

Laravel API Course

From Steve McDougall, a major contributor to our community and past podcast guest, released a full course on setting up Laravel for API development. Steve is actively looking for his next role, so if you’re hiring a top-notch API DevRel pro, reach out!

Attacking APIs using JSON Injection

Dana Epp delves into how attackers can manipulate JSON payloads to exploit API vulnerabilities, leading to unintended behaviors or security breaches. Understanding these tactics is crucial for developers aiming to fortify their APIs against such threats.

Deprecating REST APIs: A Developer's Guide

Zuplo's latest article offers a comprehensive walkthrough on gracefully phasing out REST APIs. It covers best practices for deprecation notices, managing client transitions, and ensuring minimal disruption during the process. A must-read for developers aiming to maintain robust and user-friendly APIs.

Support APIs You Won't Hate

When you become an member, you'll get access to members-only content while directly supporting our work. Your support helps us to keep making resources for the API community.

Become a member today

Thanks so much to our members: Al N, Kin L, Juxt, Alex R, Nolan S, Frank, James D, Bill D, and Ali S. Your support means the world to us!

Until next time,

Alexander, Phil & Mike

Catching up with Phil, Mike, and Alexander

Robots Are Coming For Us!

OpenAPI for all

Introducing Arazzo: Describe API Workflows with this extension to OpenAPI