Chris Tucker

icon indicating a website link https://www.linkedin.com/in/christopher-tucker-3a0b0a82/

icon company @box icon location SF Bay Area, CA

Results 6 issues of Chris Tucker

Fix error when response does not have a content-type header

2 comment

Fixes #5 by checking for an undefined content-type header in the response before accessing it.

Support media types which use the +json suffix

Added support for json-like media types that use the [+json](https://tools.ietf.org/html/rfc6839#section-3.1) suffix, such as `application/problem+json` or `application/hal+json`. * Schemas are now generated for request and response bodies when the content type...

Request bodies are incorrectly added to the Swagger spec when no headers are included in the request

1. Make a `POST` request which includes body data, but does not include a `content-type` header. ```api2swagger -X POST -e https://api.github.com -o ./testSwagger.json -d '{\"test\":\"test\"}'``` 2. Note that the outputted...

Fix XSS and SQL injection vulnerabilities

Fixes #4

Security Vulnerabilities in the API

1 comment

Not all input/output is being sanitized, making the API vulnerable to XSS and SQL injection attacks 1. XSS The `error` function in `functions.inc` does not encode the `$message` parameter before...

Add Cache-Control Headers to Responses

Adding `Cache-Control` headers to responses from the API would allow most clients to automatically take advantage of caching, improving client performance and reducing load on the API server and database....