This product is not supported for your selected
Datadog site. ().
The API Findings explorer provides a central triage view of the API risks detected across your definitions, gateways, and live traffic. Default rules detect common vulnerabilities and misconfigurations. You can also add custom rules for specific use cases.
API Findings columns:
- Severity: Each issue is ranked by risk.
- Endpoints: Shows how many endpoints are affected and their services.
- Status and Ticketing:
Open or In Progress tracks remediation progress and workflow integration.
Use the Service facet to see each service’s endpoints to identify ownership and prioritize by business impact.
Common operations
Click a finding to view its details and perform a workflow such as Validate > Investigate > Fix > Track:
- Validate:
- Review What Happened and Detected In to confirm the detection is accurate (service, endpoint, method).
- In Next Steps, choose whether to Mute, Create Ticket, or Run Workflow depending on ownership and impact.
- Investigate:
- Use the Context tab to examine the endpoint snapshot and attributes (method, path, authentication flags, tags).
- Detected In provides information for routing ownership and remediation.
- In Detection Rule Query, you can edit an API finding rule by clicking See Detection Rule.
- Fix:
- Follow the guidance under Remediation.
- Track:
- Use Create Ticket to link the issue to your tracking system.
- Use Reference Links for developer education or code review.
