Traceable API Safety Platform Updates – April 2024 – Traceable App & API Safety

Glad RSA week to those that rejoice! This previous month’s releases embrace an thrilling new functionality that extends API safety to generative AI APIs, DAST for GraphQL, JIRA knowledge heart integration, and several other different enhancements. 

Generative AI API Safety – Now in Early Entry

In response to Gartner, 80% of enterprises could have used generative AI APIs or deployed generative AI of their purposes by 2026. At Traceable our mission is to guard each API and generative AI APIs aren’t any exception. To assist safety groups put together for and mitigate the brand new dangers that generative AI introduces to purposes, we’re introducing a brand new set of capabilities that extends our end-to-end API safety to generative AI APIs. 

Generative AI introduces new safety dangers to purposes, together with these cataloged within the OWASP High 10 for LLMs. As product and knowledge groups experiment with generative AI to energy consumer experiences and options comparable to content material personalization, chatbots, and AI assistants, safety groups want visibility into the place generative AI is used of their purposes, and the power to observe generative AI inputs (prompts) and outputs to protect in opposition to generative AI dangers. Traceable’s Generative AI API Safety permits groups to just do that. Capabilities embrace:

Discovery and Cataloging of Generative AI APIs

Uncover in all places generative AI is utilized in your purposes by cataloging each generative AI API, whether or not the APIs are from third-party AI suppliers like OpenAI and Anthropic, or from an internally hosted mannequin. 

Determine and Block Restricted Information in GenAI Requests and Responses

Monitor all requests and responses to GenAI APIs. Determine when delicate knowledge or different restricted knowledge or language varieties are contained in requests and responses, together with manipulative language indicative of immediate injection. 

Repeatedly Check GenAI APIs for Vulnerabilities

Traceable AST will repeatedly take a look at GenAI APIs for normal API vulnerabilities in addition to a number of AI-specific vulnerabilities within the OWASP High 10 for LLMs, empowering safety groups to establish any points rapidly. In case you are a Traceable buyer and your group is constructing generative AI-enabled options in your purposes, please attain out to talk with our product staff about early entry.

DAST for GraphQL APIS

DAST for GraphQL APIs is now usually obtainable and enabled for Traceable prospects inside Testing Suites. This replace lets you add a GraphQL API schema and run a scan to search out vulnerabilities. Now you can add GraphQL schema and run a scan to search out vulnerabilities. 

DAST for GraphQL

JIRA Information Middle Integration

Traceable can now combine along with your JIRA Information Middle deployment to energy challenge administration for patrons who host JIRA on prem. Traceable beforehand supported integration with JIRA deployments within the cloud. The JIRA integration lets you file a JIRA ticket instantly from the Traceable platform, so you possibly can seamlessly create JIRA tickets for the related groups to repair vulnerabilities and different points recognized in Traceable. 

JIRA Data Center Integration

Vulnerability Decision and Information Retention Enhancements

We now have made two updates to enhance your capacity to triage and examine vulnerabilities in Traceable:

  • Auto-resolution for passive vulnerabilities: This replace will auto-resolve passive vulnerabilities detected through reside site visitors. When a beforehand detected passive vulnerability will not be seen in subsequent site visitors over a time frame, we’ll routinely resolve the vulnerability. Beforehand passive vulnerabilities needed to be  
  • Elevated knowledge retention for vulnerability proof: Traceable will now retailer vulnerability proof spans for 90 days, providing you with and your improvement staff extra time to finish investigations of points found in Traceable. 

 


About Traceable

Traceable is the trade’s main API Safety firm serving to organizations obtain API safety in a cloud-first, API-driven world. Traceable is the one contextually-informed answer that powers full API safety – API discovery and posture administration, API safety testing, assault detection and menace searching, and assault safety wherever your APIs reside. Traceable permits organizations to attenuate threat and maximize the worth that APIs convey to their prospects. To be taught extra about how API safety might help your small business, go to https://www.traceable.ai/.

Recent articles

Hackers Use Microsoft MSC Information to Deploy Obfuscated Backdoor in Pakistan Assaults

Dec 17, 2024Ravie LakshmananCyber Assault / Malware A brand new...

INTERPOL Pushes for

Dec 18, 2024Ravie LakshmananCyber Fraud / Social engineering INTERPOL is...

Patch Alert: Essential Apache Struts Flaw Discovered, Exploitation Makes an attempt Detected

Dec 18, 2024Ravie LakshmananCyber Assault / Vulnerability Risk actors are...