APIs serve as the foundation for how software systems and services communicate and exchange data. But unmanaged and unsecured APIs can open up massive vulnerabilities that lead to disastrous security breaches and data leaks without proper governance. With API-related attacks increasing — and set to increase 996% by 2030 — unmanaged APIs are a very real security threat. How do you implement reliable API security without slowing down innovation or blowing up costs?

The Kong Gateway 3.4 for Open Source (OSS) release is massive for our community users. Notably, this release introduces support for Web Assembly (Wasm), bringing a new level of extensibility and customization to Kong Gateway. Read on to learn more about the new capabilities in Kong Gateway 3.4 for OSS.

We’re delighted to announce the release of Kong Gateway 3.4 for Kong Enterprise and Kong Konnect, featuring significant enhancements, such as secrets rotation support in secrets management, expanded plugin support in consumer groups, and more. The highlight of this update is the designation of Kong Enterprise 3.4 as a Long Term Support (LTS) release. Starting now, any customer running Kong Enterprise version 3.4.x.x will receive technical support for three years — until 2026.

Organizations today are looking to do more with less. The solution for many? Digital transformation. While digital transformation isn’t a new concept, the benefits of boosting efficiency, controlling costs, and delivering better customer experiences are obvious in today’s topsy-turvy economic conditions. Digital transformation often involves making the transition from legacy monoliths to modern cloud native microservices-based architectures.

The Open Web Application Security Project (OWASP for short) is a not-for-profit entity devoted to improving the security of software. Founded in 2001, OWASP is a global organization that supports thousands of volunteers globally to produce freely-available articles, documentation, tutorials, and tooling. OWASP is best known for its "Top 10" lists, which represent a broad consensus about the most critical security risks to web applications.

Modern organizations rely on APIs to power their digital customer experiences. This can lead to stronger brand loyalty and higher revenues — if they play their cards right. The driving factor in delivering personalized content is connectivity to more applications, systems, and data sources. That takes APIs.

Today, APIs are based on modern communication patterns: REST, GraphQL, or gRPC. But two decades ago, the majority of Web Services were developed with SOAP/XML. In this blog, we’ll explain how Kong Konnect can manage SOAP/XML Web Services by creating custom plugins and by using ChatGPT. We’ll cover using ChatGPT to develop a Lua custom plugin and how to deploy and test a SOAP/XML custom plugin on Kong Konnect and Kong Enterprise.