Usage of APIs on Web applications and services is on the rise, and security concerns and needs are not entirely covered by standard protections. Kubernetes WAF's API security module provides protection that covers security concerns and needs for working with APIs.

API Security is automatically configured by importing an OpenAPI document to Kubernetes WAF and applying it to your security policy. All API endpoints are added to the endpoint list in the policy, allowing API requests to these endpoints automatically. API requests to the allowed endpoints are still scanned by Kubernetes WAF’s security modules for embedded attacks.