Explore defensive API development techniques for Go programmers in this 58-minute conference talk from LASCON. Learn about managing third-party components securely, automating version updates, and implementing fuzz testing for API endpoints using Go's built-in library. Discover how to implement rate limiting with Redis to prevent service abuse and overload. Gain insights into JSON schema best practices, focusing on limits, formats, and patterns. Examine code samples demonstrating effective methods for inspecting request headers and payloads to identify potential security threats. Enhance your ability to reduce application layer security risks and build more robust APIs in Go.
Overview
Syllabus
Bertold Kolics - Defensive API development techniques for Gophers
Taught by
LASCON