Skip to Content
API GovernancePredefined Rulesets

Overview

APIGit offers two powerful predefined rulesets available to all users across both Free and Enterprise plans. These rulesets provide immediate governance capabilities for your API repositories without requiring custom configuration.

OWASP Top 10 Security Ruleset

This comprehensive ruleset automatically scans OpenAPI documents to identify potential security vulnerabilities and issues. While OpenAPI specifications describe the interface layer rather than implementation details, this ruleset can effectively detect:

  • Obvious security flaws
  • Implementation of outdated security standards
  • Common API security misconfigurations

The ruleset is built on the foundation of the OWASP API Security Top 10 2023 edition, ensuring alignment with industry-recognized security best practices.

OpenAPI Best Practices Ruleset

This specialized ruleset evaluates OpenAPI documents against established industry best practices to ensure:

  • Consistent API design patterns
  • Proper documentation standards
  • Optimal specification structure
  • Clear endpoint naming conventions
  • Appropriate use of OpenAPI features

By implementing these predefined rulesets, teams can quickly establish baseline governance standards while maintaining the flexibility to add custom rules as their API governance program matures.

Last updated on