Threat Post

Unpatched Remote Code Execution Flaw Exists in Swagger

Researchers at Rapid7 found a vulnerability in the Swagger Code Generator that could execute arbitrary code embedded in a Swagger document. An unexpected behavior in a relatively new and popular open ...
InfoQ

Introduction to Interface-Driven Development Using Swagger and Scalatra

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
InfoWorld

Swagger stumbles: Flaw enables remote code execution

Swagger's code generators and parsers forgot the core tenet of software development, which is never to trust user input The popular open source API framework Swagger lets developers describe, produce, ...
Business Wire

Design and Document APIs Faster with New Open Source Swagger UI and Editor

Latest Version of Popular Open Source Swagger UI and Editor to Launch by SmartBear at IBM InterConnect – March 19-23, 2017 – Las Vegas SOMERVILLE, Mass.--(BUSINESS WIRE)--SmartBear Software, the ...
InfoWorld

Implement authorization for Swagger in ASP.NET Core

When building your .NET applications, you will often need to generate API documentation. To do this, you might use Swagger, a toolkit that makes it simple to provide a graphical representation of your ...
ZDNet

Severe Swagger vulnerability compromises NodeJS, PHP, Java

Researchers have discovered a vulnerability within the Swagger specification which may place tools based on NodeJS, PHP, Ruby, and Java at risk of exploit. According to Rapid7, the vulnerability has ...