https://securecode.dev/tags/apis/Recent content in APIs on securecode.devHugoen-usSun, 26 Apr 2026 00:00:00 +0000https://securecode.dev/insights/threat-modeling-modern-apis/Sun, 26 Apr 2026 00:00:00 +0000https://securecode.dev/insights/threat-modeling-modern-apis/<p>Threat modeling APIs is often reduced to a short checklist around authentication and transport security. That rarely surfaces the issues that matter most. Real API risk tends to come from workflow design, trust assumptions between services, and weak authorization at object or action boundaries.</p>