JFrog announced a new machine learning (ML) lifecycle integration between JFrog Artifactory and MLflow, an open source software platform originally developed by Databricks.
Industry experts offer thoughtful, insightful, and often controversial predictions on how DevOps and related technologies will evolve and impact business in 2023. Part 6 covers APIs.
Start with: 2023 DevOps Predictions - Part 1
Start with: 2023 DevOps Predictions - Part 2
Start with: 2023 DevOps Predictions - Part 3
Start with: 2023 DevOps Predictions - Part 4
Start with: 2023 DevOps Predictions - Part 5
DEDICATED API TEAMS
Over the past year, APIs have become the dominant target for hackers looking to disrupt supply chains and steal or ransom data. A major reason for this has been the lack of an API strategy. In 2023, organizations will need to address these issues by having dedicated API teams, not just for security purposes but because APIs have become essential building blocks for software, from eliminating mundane tasks for developers like installing and upgrading applications to creating new ways for organizations to monetize their data.
Alessandro Chimera
Director, Digitalization Strategy, TIBCO
API TEST STRATEGY
More companies recognize APIs as the building blocks of modern software (State of API). The rise of serverless architecture, the growth of API management, and the growth of artificial intelligence and machine learning are just some of the trends driving the proliferation of APIs. Hence, creating a proper test strategy for APIs will be more critical than ever. A proper test strategy will include at least: designing API first, creating contract tests to ensure appropriate communication between services, utilizing technology and tools to be able to mock out 3rd party APIs, testing for performance and reliability, testing for security. Skilled engineers utilizing the appropriate methodologies and tools will be in massive demand.
Nikolay Advolodkin
Senior Solutions Architect, Sauce Labs
FASTER INTEGRATION
With the rise of APIs as products, we are stepping into this gray zone of API implementation which is far from being great. People are still spending days and weeks on learning and implementations. Companies will start to invest more and more in the form of no code, low code tools that will allow developers to integrate faster with those APIs.
Iddo Gino
Co-Founder and CEO, Rapid
POLYGLOT API
APIs > dashboards — it's like comparing a store that sells fresh produce to a flower shop. Sure flowers are pretty but produce is nourishing and can be mixed together in all kinds of ways. 2023 is the year of APIs that are polyglot — joining data across database, systems and clouds to make DevOps more powerful but with added complexity.
Chetan Venkatesh
CEO, Macrometa
API OFFERS OPERATIONAL EFFICIENCY
As the recession takes a toll on tech workplaces, APIs will continue to offer what every company is looking for — operational efficiency. With the help of APIs, teams can do more with less and in a much faster way. While APIs can't solve all problems, they can drastically increase workflow and enable automation to offer better experiences for employees across all industries.
Gleb Polyakov
CEO and Co-Founder, Nylas
BUSINESS SIDE USES API
As API-first companies continue to prevail, I firmly believe that business units such as HR and marketing will increasingly be testing and automating their essential business capabilities using APIs throughout 2023.
Kin Lane
Chief Evangelist, Postman
API REGULATIONS
The use of APIs has greatly expanded the ability for developers to innovate and reduced the time required to deliver new apps and features. But there is a well-understood dark side: a massive increase in points of potential vulnerability within complex enterprise code bases. 2023 will usher in regulatory activity intended to ensure API endpoints are known (a surprisingly large number are not) and controlled. This regulatory activity will increasingly have financial "teeth" (i.e., stiff fines for failure to comply) and will also be more prescriptive in terms of technology. Specifically, many will require systems able to continuously scan codebases in order to build and maintain accurate inventories of API endpoints. An example is the New York Department of Financial Services, which is amending its 2017 cybersecurity regs (23 NYCRR Part 500) to include the requirement to maintain a complete and up-to-date asset inventory, which most interpret to include APIs.
Eric Minick
VP Product, CodeLogic
API SECURITY IS CRITICAL
With the continued adoption and reliance in the industry of Microservices Architectures, API Security is a critical component of any organization out there in 2023 as an outage or targeted disruption of APIs leads to entire web applications unable to serve end-users. Ensuring that the right security mechanisms are in-place to protect against this phenomenon will be critical. Helpful guidelines such as the OWASP API Top 10 can help in reducing the attack surface and properly anticipate against common API attacks.
Mike Elissen
Senior Developer Advocate, Akamai
SHARED MODEL FOR API SECURITY
API sprawl and protection will be the biggest thing that development contends with in the coming year, and how security teams can start to shift left the right way, the prioritizing of development needs with security priorities. Additionally, next year, we'll start to see a shared model for API security that doesn't treat different stages of the pipeline as disconnected points. End-to-end API security platforms will start to recognize problems in development that are only discovered during runtime today.
Sanjay Nagaraj
Co-Founder and CTO, Traceable.ai
API MARKETPLACES
The external API marketplace will become a common enterprise offering — In 2023, we will see many companies start releasing external API marketplaces for both increased visibility and the monetization of APIs. Traditionally, these external marketplaces were only common for specific companies such as eBay and Salesforce, but this is quickly changing.
Iddo Gino
Co-Founder and CEO, Rapid
API MONETIZATION
With mounting economic pressures in 2023, companies will be trying harder than ever to make every asset of the organization profitable. Whether it's data, services, functionality or otherwise, APIs will be a go-to for monetization and creating new revenue streams quickly. Because of this, organizations will also continue to invest in top developer talent.
Iddo Gino
Co-Founder and CEO, Rapid
GATEWAYS WILL BECOME A COMMODITIZED SERVICE
Open source tools or cloud vendors are providing their gateways next to free. With that, we will begin to see a tumultuous time for legacy gateway vendors no longer able to rely on vendor lock-in driven by table stakes API management functionality. Separating the winners and the losers will really come down to who focuses on delivering a seamless developer experience that offers a path for utilizing multiple gateways.
Iddo Gino
Co-Founder and CEO, Rapid
Start with: 2023 DevOps Predictions - Part 7, covering automation.
Industry News
Copado announced the general availability of Test Copilot, the AI-powered test creation assistant.
SmartBear has added no-code test automation powered by GenAI to its Zephyr Scale, the solution that delivers scalable, performant test management inside Jira.
Opsera announced that two new patents have been issued for its Unified DevOps Platform, now totaling nine patents issued for the cloud-native DevOps Platform.
mabl announced the addition of mobile application testing to its platform.
Spectro Cloud announced the achievement of a new Amazon Web Services (AWS) Competency designation.
GitLab announced the general availability of GitLab Duo Chat.
SmartBear announced a new version of its API design and documentation tool, SwaggerHub, integrating Stoplight’s API open source tools.
Red Hat announced updates to Red Hat Trusted Software Supply Chain.
Tricentis announced the latest update to the company’s AI offerings with the launch of Tricentis Copilot, a suite of solutions leveraging generative AI to enhance productivity throughout the entire testing lifecycle.
CIQ launched fully supported, upstream stable kernels for Rocky Linux via the CIQ Enterprise Linux Platform, providing enhanced performance, hardware compatibility and security.
Redgate launched an enterprise version of its database monitoring tool, providing a range of new features to address the challenges of scale and complexity faced by larger organizations.
Snyk announced the expansion of its current partnership with Google Cloud to advance secure code generated by Google Cloud’s generative-AI-powered collaborator service, Gemini Code Assist.
Kong announced the commercial availability of Kong Konnect Dedicated Cloud Gateways on Amazon Web Services (AWS).
Pegasystems announced the general availability of Pega Infinity ’24.1™.