OutSystems announced the general availability (GA) of Mentor on OutSystems Developer Cloud (ODC).
Industry experts offer thoughtful, insightful, and often controversial predictions on how DevOps and related technologies will evolve and impact business in 2023. Part 6 covers APIs.
Start with: 2023 DevOps Predictions - Part 1
Start with: 2023 DevOps Predictions - Part 2
Start with: 2023 DevOps Predictions - Part 3
Start with: 2023 DevOps Predictions - Part 4
Start with: 2023 DevOps Predictions - Part 5
DEDICATED API TEAMS
Over the past year, APIs have become the dominant target for hackers looking to disrupt supply chains and steal or ransom data. A major reason for this has been the lack of an API strategy. In 2023, organizations will need to address these issues by having dedicated API teams, not just for security purposes but because APIs have become essential building blocks for software, from eliminating mundane tasks for developers like installing and upgrading applications to creating new ways for organizations to monetize their data.
Alessandro Chimera
Director, Digitalization Strategy, TIBCO(link is external)
API TEST STRATEGY
More companies recognize APIs as the building blocks of modern software (State of API). The rise of serverless architecture, the growth of API management, and the growth of artificial intelligence and machine learning are just some of the trends driving the proliferation of APIs. Hence, creating a proper test strategy for APIs will be more critical than ever. A proper test strategy will include at least: designing API first, creating contract tests to ensure appropriate communication between services, utilizing technology and tools to be able to mock out 3rd party APIs, testing for performance and reliability, testing for security. Skilled engineers utilizing the appropriate methodologies and tools will be in massive demand.
Nikolay Advolodkin
Senior Solutions Architect, Sauce Labs(link is external)
FASTER INTEGRATION
With the rise of APIs as products, we are stepping into this gray zone of API implementation which is far from being great. People are still spending days and weeks on learning and implementations. Companies will start to invest more and more in the form of no code, low code tools that will allow developers to integrate faster with those APIs.
Iddo Gino
Co-Founder and CEO, Rapid(link is external)
POLYGLOT API
APIs > dashboards — it's like comparing a store that sells fresh produce to a flower shop. Sure flowers are pretty but produce is nourishing and can be mixed together in all kinds of ways. 2023 is the year of APIs that are polyglot — joining data across database, systems and clouds to make DevOps more powerful but with added complexity.
Chetan Venkatesh
CEO, Macrometa(link is external)
API OFFERS OPERATIONAL EFFICIENCY
As the recession takes a toll on tech workplaces, APIs will continue to offer what every company is looking for — operational efficiency. With the help of APIs, teams can do more with less and in a much faster way. While APIs can't solve all problems, they can drastically increase workflow and enable automation to offer better experiences for employees across all industries.
Gleb Polyakov
CEO and Co-Founder, Nylas(link is external)
BUSINESS SIDE USES API
As API-first companies continue to prevail, I firmly believe that business units such as HR and marketing will increasingly be testing and automating their essential business capabilities using APIs throughout 2023.
Kin Lane
Chief Evangelist, Postman(link is external)
API REGULATIONS
The use of APIs has greatly expanded the ability for developers to innovate and reduced the time required to deliver new apps and features. But there is a well-understood dark side: a massive increase in points of potential vulnerability within complex enterprise code bases. 2023 will usher in regulatory activity intended to ensure API endpoints are known (a surprisingly large number are not) and controlled. This regulatory activity will increasingly have financial "teeth" (i.e., stiff fines for failure to comply) and will also be more prescriptive in terms of technology. Specifically, many will require systems able to continuously scan codebases in order to build and maintain accurate inventories of API endpoints. An example is the New York Department of Financial Services, which is amending its 2017 cybersecurity regs (23 NYCRR Part 500) to include the requirement to maintain a complete and up-to-date asset inventory, which most interpret to include APIs.
Eric Minick
VP Product, CodeLogic(link is external)
API SECURITY IS CRITICAL
With the continued adoption and reliance in the industry of Microservices Architectures, API Security is a critical component of any organization out there in 2023 as an outage or targeted disruption of APIs leads to entire web applications unable to serve end-users. Ensuring that the right security mechanisms are in-place to protect against this phenomenon will be critical. Helpful guidelines such as the OWASP API Top 10 can help in reducing the attack surface and properly anticipate against common API attacks.
Mike Elissen
Senior Developer Advocate, Akamai(link is external)
SHARED MODEL FOR API SECURITY
API sprawl and protection will be the biggest thing that development contends with in the coming year, and how security teams can start to shift left the right way, the prioritizing of development needs with security priorities. Additionally, next year, we'll start to see a shared model for API security that doesn't treat different stages of the pipeline as disconnected points. End-to-end API security platforms will start to recognize problems in development that are only discovered during runtime today.
Sanjay Nagaraj
Co-Founder and CTO, Traceable.ai(link is external)
API MARKETPLACES
The external API marketplace will become a common enterprise offering — In 2023, we will see many companies start releasing external API marketplaces for both increased visibility and the monetization of APIs. Traditionally, these external marketplaces were only common for specific companies such as eBay and Salesforce, but this is quickly changing.
Iddo Gino
Co-Founder and CEO, Rapid(link is external)
API MONETIZATION
With mounting economic pressures in 2023, companies will be trying harder than ever to make every asset of the organization profitable. Whether it's data, services, functionality or otherwise, APIs will be a go-to for monetization and creating new revenue streams quickly. Because of this, organizations will also continue to invest in top developer talent.
Iddo Gino
Co-Founder and CEO, Rapid(link is external)
GATEWAYS WILL BECOME A COMMODITIZED SERVICE
Open source tools or cloud vendors are providing their gateways next to free. With that, we will begin to see a tumultuous time for legacy gateway vendors no longer able to rely on vendor lock-in driven by table stakes API management functionality. Separating the winners and the losers will really come down to who focuses on delivering a seamless developer experience that offers a path for utilizing multiple gateways.
Iddo Gino
Co-Founder and CEO, Rapid(link is external)
Start with: 2023 DevOps Predictions - Part 7, covering automation.
Industry News
Kurrent announced availability of public internet access on its managed service, Kurrent Cloud, streamlining the connectivity process and empowering developers with ease of use.
MacStadium(link is external) highlighted its major enterprise partnerships and technical innovations over the past year. This momentum underscores MacStadium’s commitment to innovation, customer success and leadership in the Apple enterprise ecosystem as the company prepares for continued expansion in the coming months.
Traefik Labs announced the integration of its Traefik Proxy with the Nutanix Kubernetes Platform® (NKP) solution.
Perforce Software announced the launch of AI Validation, a new capability within its Perfecto continuous testing platform for web and mobile applications.
Mirantis announced the launch of Rockoon, an open-source project that simplifies OpenStack management on Kubernetes.
Endor Labs announced a new feature, AI Model Discovery, enabling organizations to discover the AI models already in use across their applications, and to set and enforce security policies over which models are permitted.
Qt Group is launching Qt AI Assistant, an experimental tool for streamlining cross-platform user interface (UI) development.
Sonatype announced its integration with Buy with AWS, a new feature now available through AWS Marketplace.
Endor Labs, Aikido Security, Arnica, Amplify, Kodem, Legit, Mobb and Orca Security have launched Opengrep to ensure static code analysis remains truly open, accessible and innovative for everyone:
Progress(link is external) announced the launch of Progress Data Cloud(link is external), a managed Data Platform as a Service designed to simplify enterprise data and artificial intelligence (AI) operations in the cloud.
Sonar announced the release of its latest Long-Term Active (LTA) version, SonarQube Server 2025 Release 1 (2025.1).
Idera announced the launch of Sembi, a multi-brand entity created to unify its premier software quality and security solutions under a single umbrella.
Postman announced the Postman AI Agent Builder, a suite empowering developers to quickly design, test, and deploy intelligent agents by combining LLMs, APIs, and workflows into a unified solution.
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the graduation of CubeFS.