APIClarity
APIClarity is an open source API security and observability tool that analyzes API traffic to reconstruct OpenAPI specifications, detect shadow and zombie APIs, identify API differences and changes, and provide API security alerts. It is part of the OpenClarity project and works with Kubernetes service meshes and API gateways for cloud-native API traffic observability.
APIs
APIClarity API
The APIClarity API provides programmatic access to API traffic analysis, reconstructed OpenAPI specifications, API inventory, and security findings. It allows users to query dis...
Features
Automatically reconstruct OpenAPI specifications from observed live API traffic without code instrumentation.
Identify undocumented shadow APIs being called in production that are not reflected in official specifications.
Detect deprecated or decommissioned API endpoints still receiving traffic in production.
Compare observed API behavior against documented specifications to identify drifts, changes, and violations.
Generate security findings and alerts based on API traffic analysis and specification violations.
Deploy as a sidecar or via Helm charts for integration with Kubernetes service meshes and API gateways.
Automatically build and maintain an inventory of all APIs discovered in the environment.
Use Cases
Discover all APIs running in a Kubernetes environment including undocumented and shadow APIs.
Assess API security by detecting shadow APIs, spec violations, and suspicious traffic patterns.
Generate OpenAPI specifications from live traffic for APIs that lack formal documentation.
Enforce API consistency by detecting deviations between actual API behavior and official specifications.
Investigate API security incidents using traffic analysis, API inventory, and spec diff data.