TNS
SUBSCRIBE
Join our community of software engineering leaders and aspirational developers. Always stay in-the-know by getting the most important news and exclusive content delivered fresh to your inbox to learn more about at-scale software development.
REQUIRED
 
It seems that you've previously unsubscribed from our newsletter in the past. Click the button below to open the re-subscribe form in a new tab. When you're done, simply close that tab and continue with this form to complete your subscription.
Welcome and thank you for joining The New Stack community!
Please answer a few simple questions to help us deliver the news and resources you are interested in.
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
Great to meet you!
Tell us a bit about your job so we can cover the topics you find most relevant.
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
 
Welcome!

We’re so glad you’re here. You can expect all the best TNS content to arrive Monday through Friday to keep you on top of the news and at the top of your game.

What’s next?

Check your inbox for a confirmation email where you can adjust your preferences and even join additional groups.

Become a TNS follower on LinkedIn.

Check out the latest featured and trending stories while you wait for your first TNS newsletter.

PREV
of
NEXT
VOXPOP
As a JavaScript developer, what non-React tools do you use most often?
Angular
0%
Astro
0%
Svelte
0%
Vue.js
0%
Other
0%
I only use React
0%
I don't use JavaScript
0%
 
NEW! Try Stackie AI
Cloud Native Ecosystem Containers Databases Edge Computing Infrastructure as Code Linux Microservices Open Source Networking Storage
Can the 50-Year-Old Actor Model Rescue Agentic AI?
Oct 22nd 2025 7:47am, by Kimberley Mok
OpenSearch 3.3's New AI Agents Now Generally Available for Developers
Oct 16th 2025 12:00pm, by Steven J. Vaughan-Nichols
Crossing the AI Chasm: Lessons From the Early Days of Cloud
Oct 9th 2025 7:00am, by Randy Bias
OpenStack Flamingo Reduces Technical Debt, Boosts Performance
Oct 7th 2025 11:00am, by Steven J. Vaughan-Nichols
Broadcom Ends Free Bitnami Images, Forcing Users To Find Alternatives
Sep 30th 2025 8:00am, by Joab Jackson
How To Deploy a Local AI via Docker
Oct 23rd 2025 11:00am, by Jack Wallen
Are Unikernels the Answer for Next-Gen AI Cloud Workloads?
Oct 23rd 2025 7:00am, by Joab Jackson
How To Get Bare-Metal GPU Performance in Confidential VMs
Oct 21st 2025 4:00am, by Steven J. Vaughan-Nichols
Why Modern IPv6 Failed This Massive Kubernetes Networking Test
Oct 20th 2025 12:00pm, by Steven J. Vaughan-Nichols
How to Quickly Deploy GitLab via Docker
Oct 15th 2025 9:00am, by Jack Wallen
Breaking the 'Shared-Nothing' Bottleneck: A NoSQL Paradigm
Oct 23rd 2025 8:00am, by Carol Platz
OpenSearch 3.3's New AI Agents Now Generally Available for Developers
Oct 16th 2025 12:00pm, by Steven J. Vaughan-Nichols
Search Isn’t Dead: From RAG to Agents With Vector Databases
Oct 16th 2025 10:30am, by Vicki Walker
A Taste of P99 CONF: Low Latency With eBPF, Rust and More
Oct 14th 2025 8:30am, by Cynthia Dunlop
A Practical Guide to Kubernetes Stateful Backup and Recovery
Oct 8th 2025 12:00pm, by Adetokunbo Ige
Right-Sizing AI for the Edge: Power, Models and Security
Oct 9th 2025 10:00am, by Chris J. Preimesberger
Why the Edge Isn't Just 'Cloud Computing, But Closer'
Sep 16th 2025 9:00am, by Charles Humble
Kubernetes at the Edge: Deploy With Confidence and Control
Aug 19th 2025 10:00am, by Vicki Walker
Scaling AI Inference at the Edge With Distributed PostgreSQL
Jul 21st 2025 9:00am, by Meredith Shubel
6 Design Principles for Edge Computing Systems
Jul 17th 2025 7:00am, by Joab Jackson
Project infragraph: IBM's Real-Time Model for Infrastructure Assets
Sep 26th 2025 4:00am, by Joab Jackson
Chef Creator Unveils AI Platform To Fix Flaws With Infrastructure Automation
Aug 27th 2025 8:00am, by Heather Joslyn
Platform Engineering Is Failing — Here's Why Infrastructure Comes First
Aug 7th 2025 10:00am, by Lukas Gentele
How To Use AI To Design Intelligent, Adaptable Infrastructure
Aug 1st 2025 10:00am, by Dharani Pothula
Software Architecture Is Finally Fixing Its Biggest Problem: Developer Experience
Jul 25th 2025 9:00am, by Avraam Tolmidis
Are Unikernels the Answer for Next-Gen AI Cloud Workloads?
Oct 23rd 2025 7:00am, by Joab Jackson
Why Broadcom's Ubuntu Bet on VMware Will Delight Devs and Ops
Oct 14th 2025 1:00pm, by B. Cameron Gain
Run Containers and VMs Easily With OrbStack GUI
Oct 10th 2025 8:00am, by Jack Wallen
SysLinuxOS: The Go-To Linux for System Administrators
Oct 5th 2025 7:00am, by Jack Wallen
Is Oreon Linux a True Red Hat Enterprise Alternative?
Sep 21st 2025 7:00am, by Jack Wallen
How Dapr and WebAssembly Team Up for Microservices
Oct 2nd 2025 6:00am, by B. Cameron Gain
Your CI/CD Pipeline Wasn't Built for Microservices
Aug 7th 2025 7:00am, by Arjun Iyer
Introduction to Microservices
Aug 5th 2025 5:00pm, by TNS Staff
FoundationDB: A Distributed Database That Can't Be Killed
Jul 25th 2025 7:00am, by Joab Jackson
Why Scaling Makes Microservices Testing Exponentially Harder
Jul 16th 2025 11:00am, by Arjun Iyer
React Native Rolls Out Its Latest Version on New Architecture
Oct 18th 2025 7:00am, by Loraine Lawson
OpenSearch 3.3's New AI Agents Now Generally Available for Developers
Oct 16th 2025 12:00pm, by Steven J. Vaughan-Nichols
Kubernetes: From a Federation of Bazaars to the AI Frontier
Oct 13th 2025 10:00am, by Antonio Ojea
Everything Big Starts Small: Building Open Social Web Apps
Oct 9th 2025 11:00am, by Richard MacManus
OpenStack Flamingo Reduces Technical Debt, Boosts Performance
Oct 7th 2025 11:00am, by Steven J. Vaughan-Nichols
How To Deploy a Local AI via Docker
Oct 23rd 2025 11:00am, by Jack Wallen
Breaking the 'Shared-Nothing' Bottleneck: A NoSQL Paradigm
Oct 23rd 2025 8:00am, by Carol Platz
Why Modern IPv6 Failed This Massive Kubernetes Networking Test
Oct 20th 2025 12:00pm, by Steven J. Vaughan-Nichols
How to Quickly Deploy GitLab via Docker
Oct 15th 2025 9:00am, by Jack Wallen
Leaner, More Efficient Storage Infrastructure for the AI Era
Oct 8th 2025 11:42am, by Carol Platz
Breaking the 'Shared-Nothing' Bottleneck: A NoSQL Paradigm
Oct 23rd 2025 8:00am, by Carol Platz
Building a Self-Aware Enterprise With GenAI
Oct 21st 2025 7:00am, by Ed Huang
Vert Is a File Format Converter You Can Quickly Deploy With Docker
Oct 19th 2025 7:00am, by Jack Wallen
A Taste of P99 CONF: Low Latency With eBPF, Rust and More
Oct 14th 2025 8:30am, by Cynthia Dunlop
Need a Google Workspace Alternative? Try Sync-in
Oct 12th 2025 8:00am, by Jack Wallen
AI AI Engineering API Management Backend development Data Frontend Development Large Language Models Security Software Development WebAssembly
How MIT’s Project NANDA Aims To Decentralize AI Agents
Oct 24th 2025 8:00am, by
Securing the Vibe: Reducing the Risk of AI-Generated Code
Oct 24th 2025 5:24am, by
Why Kubernetes Security Is Critical for GenAI Integrity
Oct 23rd 2025 2:00pm, by
How OpenAI's AgentKit Embeds ChatGPT Into Any Website
Oct 23rd 2025 12:03pm, by
Lightning AI Brings a PyTorch Copilot to Its Development Environment
Oct 23rd 2025 9:30am, by
Securing the Vibe: Reducing the Risk of AI-Generated Code
Oct 24th 2025 5:24am, by
An Ethics Crash Course for Agentic AI: Autonomy Versus Trust
Oct 22nd 2025 5:05am, by and
As Vibe Coding Fades, Woz Offers Production-Ready Alternative
Oct 21st 2025 3:00pm, by
Building a Self-Aware Enterprise With GenAI
Oct 21st 2025 7:00am, by
How Block Got 12,000 Employees Using AI Agents in Two Months
Oct 20th 2025 2:00pm, by
MCP vs. API Gateways: They’re Not Interchangeable
Oct 20th 2025 8:00am, by
React Native Rolls Out Its Latest Version on New Architecture
Oct 18th 2025 7:00am, by
The Modern APIs Roundtable: How AI Creates New Challenges for API Security
Oct 15th 2025 11:00am, by
Kong Releases Volcano, an MCP-Native SDK for Building AI Agents
Oct 15th 2025 10:00am, by
How You.com Survived ChatGPT With a Pivot to Enterprise AI
Oct 3rd 2025 7:00am, by
Vibe Coding: When AI Writes the Code, Who Secures It?
Sep 26th 2025 1:00pm, by
How MCP Uses Streamable HTTP for Real-Time AI Tool Interaction
Aug 18th 2025 10:34am, by
A Backend for Frontend: Watt for Node.js Simplifies Operations
Aug 14th 2025 6:00am, by
Human-on-the-Loop: The New AI Control Model That Actually Works
Aug 4th 2025 8:00am, by
IT Orchestration Is the Secret Behind Smooth, Scalable IT Operations
Aug 3rd 2025 10:00am, by
Make Data Ready for AI With Hygiene, Governance, and Experimentation
Oct 19th 2025 10:00am, by
Platform vs. Analytics Engineer: Why Your Team Needs Both
Oct 17th 2025 7:00am, by and
Need a Google Workspace Alternative? Try Sync-in
Oct 12th 2025 8:00am, by
The New Economics of Open Source Data Infrastructure
Oct 7th 2025 10:00am, by
Snowflake MCP Server Opens Enterprise Data for Wider AI Use
Oct 2nd 2025 9:00am, by
How OpenAI's AgentKit Embeds ChatGPT Into Any Website
Oct 23rd 2025 12:03pm, by
The Rise of JavaScript in Machine Learning
Oct 23rd 2025 9:03am, by
Why AI Is Generating ‘Lowest Common Denominator’ React Code
Oct 22nd 2025 12:00pm, by
React Foundation Leader on What’s Next for the Framework
Oct 21st 2025 11:05am, by
Should You Go All-In on Vite? A Risk vs. Reward Analysis
Oct 21st 2025 9:00am, by
Eliminating the Precision–Latency Trade-Off in Large-Scale RAG
Oct 3rd 2025 9:00am, by
5 AI Extensions to Help Improve Your VS Code Experience
Oct 1st 2025 10:00am, by
Clarifai’s AI Engine Cuts Costs Without Performance Hit
Sep 26th 2025 12:00pm, by
GPT-5’s Enhanced Reasoning Comes With a Steep Hidden Cost
Sep 23rd 2025 8:00am, by
Spec-Driven Development: The Key to Scalable AI Agents
Sep 18th 2025 11:00am, by
Securing the Vibe: Reducing the Risk of AI-Generated Code
Oct 24th 2025 5:24am, by
Why Kubernetes Security Is Critical for GenAI Integrity
Oct 23rd 2025 2:00pm, by
Beyond Namespaces: Why Kubernetes Needs Real Workload Isolation
Oct 21st 2025 8:00am, by
How To Get Bare-Metal GPU Performance in Confidential VMs
Oct 21st 2025 4:00am, by
Developers Want to Build, Not Battle Friction
Oct 16th 2025 8:00am, by
How To Build Resilient IT Operations in 4 Steps
Oct 24th 2025 9:00am, by
AI Agents Will Eat Enterprise Software, Just Not in One Bite
Oct 23rd 2025 1:03pm, by
How To Deploy a Local AI via Docker
Oct 23rd 2025 11:00am, by
Speed Plus Safety: Ending the Dev vs. Platform Engineer Clash
Oct 23rd 2025 10:00am, by
AI Agents in IT: From Hype To Hands-on Impact
Oct 22nd 2025 10:00am, by
Wasm 3.0: No Component Model and No 'Docker Moment'
Oct 6th 2025 3:00pm, by
How Dapr and WebAssembly Team Up for Microservices
Oct 2nd 2025 6:00am, by
Wasm 3.0 Offers New Way to Handle JavaScript Strings
Sep 20th 2025 7:14am, by
Flutter 3.5 Offers New Developer Experience Features
Aug 30th 2025 6:00am, by
What Debugging JavaScript on WebAssembly Looks Like
Aug 20th 2025 3:00pm, by
AI Operations CI/CD Cloud Services DevOps Kubernetes Observability Operations Platform Engineering
Make Data Ready for AI With Hygiene, Governance, and Experimentation
Oct 19th 2025 10:00am, by Brian Luisi
How Atlassian Is Driving the AI Agent-Assisted Workflow
Oct 17th 2025 11:00am, by Jennifer Riggins
The Infrastructure That Powers AI Could Also Break It
Oct 15th 2025 6:00am, by Nir Ohfeld
How To Measure AI's Organizational Impact
Oct 10th 2025 12:00pm, by Steve Fenton
How You.com Survived ChatGPT With a Pivot to Enterprise AI
Oct 3rd 2025 7:00am, by Richard MacManus
When To Use Synthetic Monitoring vs. Real User Monitoring
Oct 24th 2025 6:00am, by Virna Sekuj
Rust vs. C++: a Modern Take on Performance and Safety
Oct 22nd 2025 2:00pm, by Zziwa Raymond Ian
Paved Roads, Golden Paths, Guardrails and Railroads
Oct 22nd 2025 11:00am, by Dario Esposito
Technical Debt vs. Architecture Debt: Don’t Confuse Them
Oct 22nd 2025 6:00am, by Nadzeya Stalbouskaya
How Thrivability ROI Tackles the Cognitive Load Crisis
Oct 21st 2025 10:00am, by Betty Junod
Why Google Cloud's OTLP Support Matters for Your Telemetry Pipeline
Oct 20th 2025 3:00pm, by B. Cameron Gain
OpenStack Flamingo Reduces Technical Debt, Boosts Performance
Oct 7th 2025 11:00am, by Steven J. Vaughan-Nichols
Why FinOps Isn’t About Saving Money
Oct 3rd 2025 10:00am, by Vicki Walker
Real-World IT Sustainability: 3 Case Studies From Green IO London
Oct 2nd 2025 10:00am, by Charles Humble
How Distributed Postgres Solves Cloud's High-Availability Problem
Sep 11th 2025 9:00am, by Meredith Shubel
Beyond Basic Scaling: Advanced Kubernetes Resource Strategies
Oct 24th 2025 7:30am, by Vicki Walker
Paved Roads, Golden Paths, Guardrails and Railroads
Oct 22nd 2025 11:00am, by Dario Esposito
When JSDOM and Fetch Collide: Cross-Environment Lessons 
Oct 18th 2025 10:00am, by Gabor Koos
Developers Want to Build, Not Battle Friction
Oct 16th 2025 8:00am, by Dustin Kirkland
Ulysses’ Odyssey: Lessons for Platform Engineering
Oct 16th 2025 6:00am, by William Rizzo
Beyond Basic Scaling: Advanced Kubernetes Resource Strategies
Oct 24th 2025 7:30am, by Vicki Walker
Why Kubernetes Security Is Critical for GenAI Integrity
Oct 23rd 2025 2:00pm, by Utpal Bhatt
The Challenges of Uniting VMs and Containers on a Single Platform
Oct 22nd 2025 7:00am, by Dean Lewis
Beyond Namespaces: Why Kubernetes Needs Real Workload Isolation
Oct 21st 2025 8:00am, by Lewis Denham-Parry
Why Modern IPv6 Failed This Massive Kubernetes Networking Test
Oct 20th 2025 12:00pm, by Steven J. Vaughan-Nichols
When To Use Synthetic Monitoring vs. Real User Monitoring
Oct 24th 2025 6:00am, by Virna Sekuj
Unblock DevEx by Getting Observability Tools Out of Their Way
Oct 23rd 2025 3:00pm, by Vicki Walker
Why Google Cloud's OTLP Support Matters for Your Telemetry Pipeline
Oct 20th 2025 3:00pm, by B. Cameron Gain
Why Synthetic Tracing Delivers Better Data, Not Just More Data
Oct 17th 2025 12:00pm, by Gerardo Dada
Observability Is Stuck in the Past. Your Users Aren’t
Oct 17th 2025 6:00am, by Andrew Tunall
How To Build Resilient IT Operations in 4 Steps
Oct 24th 2025 9:00am, by Ariel Russo
Multipass: Fast, Scriptable Ubuntu VMs for Modern DevOps
Oct 24th 2025 7:00am, by Janakiram MSV
When To Use Synthetic Monitoring vs. Real User Monitoring
Oct 24th 2025 6:00am, by Virna Sekuj
Speed Plus Safety: Ending the Dev vs. Platform Engineer Clash
Oct 23rd 2025 10:00am, by Jeroen van Erp
Breaking the 'Shared-Nothing' Bottleneck: A NoSQL Paradigm
Oct 23rd 2025 8:00am, by Carol Platz
Beyond Basic Scaling: Advanced Kubernetes Resource Strategies
Oct 24th 2025 7:30am, by Vicki Walker
Speed Plus Safety: Ending the Dev vs. Platform Engineer Clash
Oct 23rd 2025 10:00am, by Jeroen van Erp
Why Up to 70% of Platform Engineering Teams Fail to Deliver Impact
Oct 22nd 2025 1:05pm, by Jennifer Riggins
Paved Roads, Golden Paths, Guardrails and Railroads
Oct 22nd 2025 11:00am, by Dario Esposito
Ulysses’ Odyssey: Lessons for Platform Engineering
Oct 16th 2025 6:00am, by William Rizzo
C++ Developer tools Go Java JavaScript Programming Languages Python Rust TypeScript
Rust vs. C++: a Modern Take on Performance and Safety
Oct 22nd 2025 2:00pm, by Zziwa Raymond Ian
Building a Real-Time System Monitor in Rust Terminal
Oct 15th 2025 7:05am, by Tinega Onchari
SQL vs. Python: Frenemies of the Data World
Oct 14th 2025 7:00am, by Ivan Novick
The 'Obfuscated C Code Contest' Confronts the Age of AI
Aug 17th 2025 6:00am, by David Cassel
How AI Can Help You Learn the Art of Programming
Jun 20th 2025 9:00am, by Jack Wallen
Unblock DevEx by Getting Observability Tools Out of Their Way
Oct 23rd 2025 3:00pm, by Vicki Walker
As Vibe Coding Fades, Woz Offers Production-Ready Alternative
Oct 21st 2025 3:00pm, by Darryl K. Taft
Can Arduino Teach a Tech Giant How To Win Over Developers?
Oct 14th 2025 6:15am, by Mary Branscombe
A Hands-On Review of Conductor, an AI Parallel Runner App
Oct 11th 2025 7:00am, by David Eastman
New React Foundation To Manage Framework
Oct 11th 2025 6:00am, by Loraine Lawson
Go Experts: 'I Don't Want to Maintain AI-Generated Code'
Sep 28th 2025 6:00am, by David Cassel
How To Run Kubernetes Commands in Go: Steps and Best Practices 
Jun 27th 2025 8:00am, by Sunny Yadav
Prepare Your Mac for Go Development
Apr 12th 2025 7:00am, by Damon M. Garn
Pagoda: A Web Development Starter Kit for Go Programmers
Mar 19th 2025 6:10am, by Loraine Lawson
Microsoft TypeScript Devs Explain Why They Chose Go Over Rust, C#
Mar 18th 2025 7:00am, by David Cassel
Why Bloomberg Chose Vendor-Neutral Java Over Big Tech
Oct 2nd 2025 5:00pm, by Darryl K. Taft
Microsoft AI Agents Automate Enterprise Java and .NET Migrations
Sep 26th 2025 4:00pm, by Darryl K. Taft
Java 25: Oracle Makes Java Easier To Learn, Ready for AI Development
Sep 18th 2025 4:00pm, by Darryl K. Taft
Vibe Coding Fails Enterprise Reality Check
Sep 10th 2025 4:00pm, by Darryl K. Taft
New Tool Ends Java Configuration Nightmare in K8s
Aug 21st 2025 3:00pm, by Darryl K. Taft
The Rise of JavaScript in Machine Learning
Oct 23rd 2025 9:03am, by Loraine Lawson
Why AI Is Generating ‘Lowest Common Denominator’ React Code
Oct 22nd 2025 12:00pm, by Loraine Lawson
React Foundation Leader on What’s Next for the Framework
Oct 21st 2025 11:05am, by Loraine Lawson
Should You Go All-In on Vite? A Risk vs. Reward Analysis
Oct 21st 2025 9:00am, by Alexander T. Williams
When JSDOM and Fetch Collide: Cross-Environment Lessons 
Oct 18th 2025 10:00am, by Gabor Koos
Rust vs. C++: a Modern Take on Performance and Safety
Oct 22nd 2025 2:00pm, by Zziwa Raymond Ian
React Foundation Leader on What’s Next for the Framework
Oct 21st 2025 11:05am, by Loraine Lawson
SQL vs. Python: Frenemies of the Data World
Oct 14th 2025 7:00am, by Ivan Novick
New React Foundation To Manage Framework
Oct 11th 2025 6:00am, by Loraine Lawson
New Netlify Agents Offer AI Workflows for Developers
Oct 4th 2025 5:05am, by Loraine Lawson
The Rise of JavaScript in Machine Learning
Oct 23rd 2025 9:03am, by Loraine Lawson
SQL vs. Python: Frenemies of the Data World
Oct 14th 2025 7:00am, by Ivan Novick
A Cloud Built for Python Data Scientists, Not Infrastructure Engineers
Oct 5th 2025 6:00am, by David Cassel
Why Python Data Engineers Should Know Kafka and Flink
Oct 1st 2025 8:00am, by Diptiman Raichaudhuri
Python Dataclasses: A Complete Guide to Boilerplate‑Free Objects
Sep 26th 2025 3:00pm, by Jessica Wachtel
Rust vs. C++: a Modern Take on Performance and Safety
Oct 22nd 2025 2:00pm, by Zziwa Raymond Ian
Building a Real-Time System Monitor in Rust Terminal
Oct 15th 2025 7:05am, by Tinega Onchari
How Vite Became the Backbone of Modern Frontend Frameworks
Sep 26th 2025 9:00am, by Richard MacManus
Microsoft Goes All-in on Rust for Core Infrastructure and Much More
Sep 19th 2025 5:00pm, by Darryl K. Taft
Why Your Rust Adoption Will Probably Fail (And How To Beat the Odds)
Sep 6th 2025 10:00am, by Darryl K. Taft
Microsoft TypeScript Devs Explain Why They Chose Go Over Rust, C#
Mar 18th 2025 7:00am, by David Cassel
Go Power: Microsoft's Bold Bet on Faster TypeScript Tools
Mar 12th 2025 1:00pm, by Darryl K. Taft and Loraine Lawson
Oracle Won’t Release ‘JavaScript’ Without a Fight
Jan 11th 2025 5:00am, by Loraine Lawson
The Year in JavaScript: Top JS News Stories of 2024
Dec 27th 2024 6:30am, by Loraine Lawson
How OOP Developers Can Get To Know TypeScript Through Deno
Oct 19th 2024 8:00am, by David Eastman
AI / API Management / Security

The Modern APIs Roundtable: How AI Creates New Challenges for API Security

By embracing these solutions, organizations can unlock the full potential of AI-driven innovation while maintaining security, compliance, and operational efficiency.
Oct 15th, 2025 11:00am by
Featued image for: The Modern APIs Roundtable: How AI Creates New Challenges for API Security
Photo by Ilya Pavlov on Unsplash.

APIs are the lifeblood of the internet, enabling seamless communication between applications, services, and devices. With the rise of AI technologies, APIs have taken on even greater strategic importance, powering intelligent applications, large language models (LLMs), and complex ecosystems. However, this rapid evolution presents significant challenges in terms of discovery, security, standardization, and governance.

I recently had the privilege of hosting a roundtable discussion featuring panelists Joni Klippert (CEO of StackHawk), Rodric Rabbah (Head of Product at Postman), and Alex Drag (Head of Product Marketing at Kong). These industry leaders highlight key issues and emerging approaches that are shaping modern API management in the era of AI.

The Challenge of API Discovery and Visibility

As APIs proliferate across organizational environments, maintaining a comprehensive and up-to-date inventory becomes increasingly challenging. Alex Drag of Kong discusses at length the challenges with wrangling APIs across multiple gateways. At the same time, Joni Klippert of StackHawk notes that security teams often overlook only a fraction of the total API landscape, exposing organizations to significant security risks due to these blind spots.

To address this, the panel emphasizes the importance of having a centralized place to discover and view APIs across an organization, including metadata such as ownership, security policies, and usage monitoring. Techniques such as code-based scanning and integrations with existing developer tools help improve visibility and control, enabling organizations to keep pace with their expanding API ecosystems.

Proactive API Security in a Complex Ecosystem

Moving from reactive to proactive security practices is also a recurring theme in the conversation. StackHawk’s focus on testing APIs during development underscores the importance of identifying vulnerabilities early. The concept of “security debt” — the accumulation of untested or insecure APIs — poses a significant threat to organizations.

Postman’s Roderick stresses the importance of continuous monitoring, scanning, and securing APIs even before deployment. Aligning developer incentives and offering clear security guidance fosters proactive behavior, reducing the risk of breaches and enhancing overall API resilience.

Streamlining Documentation and Standardization

Keeping API documentation current and accurate remains a core challenge. Developers often view documentation as a burdensome chore, leading to gaps that can hinder security and governance. StackHawk advocates for AI-powered solutions that automatically generate API specifications from source code, reducing manual effort and improving accuracy.

Another issue is a lack of standardization within organizations. Rodric Rabbah of Postman acknowledges that diversity in API gateway implementations complicates this effort, but ultimately concludes that maintaining a consistent, centralized API landscape is crucial for governance and security assurance in rapidly evolving environments.

API Monetization and the Impact of AI

APIs are increasingly seen as strategic assets capable of generating revenue through monetization models, both internally and externally. The advent of AI and LLMs introduces new layers of complexity and opportunity — necessitating better governance, security, and visibility.

Drag opens a discussion on the evolution of API management tools to support emerging use cases, including API scorecards and the Model Composition Protocol (MCP). As the convergence of APIs and AI accelerates, organizations must adapt their management strategies to ensure security, cost control, and operational agility.

Conclusion

The roundtable discussion paints a comprehensive picture of the challenges and solutions shaping modern API management. As APIs become increasingly intertwined with AI, organizations require proactive, centralized, and automated tools to discover, secure, and govern their digital assets effectively.

Vendors like Kong, Postman, and StackHawk are leading the charge from different angles, offering innovative approaches that address the complex realities of today’s API landscape. By embracing these solutions, organizations can unlock the full potential of AI-driven innovation while maintaining security, compliance, and operational efficiency.

The Modern Observability Roundtable: AI, Rising Costs and OpenTelemetry

TRENDING STORIES
Group Created with Sketch.
Adam LaGreca is the founder of 10KMedia, a boutique public relations agency for B2B DevOps. Prior, he was the director of communications for DigitalOcean, Datadog and Gremlin.
Read more from Adam LaGreca
SHARE THIS STORY
TRENDING STORIES
TNS owner Insight Partners is an investor in: Postman.
TRENDING STORIES
TNS DAILY NEWSLETTER Receive a free roundup of the most recent TNS articles in your inbox each day.