InfoWorld

Critical vulnerability in IBM API Connect could allow authentication bypass

Rated 9.8 out of 10 in severity, the flaw could allow a remote attacker to gain unauthorized access to applications.
GitHub

Missing Vary: Accept header causes incorrect caching in content-negotiation

The example uses res.format() to send different responses (HTML, JSON, text) depending on what the client asks for using the Accept header. But the example does not include the Vary: Accept header.
GitHub

Notion API Auth Connection Overrides Version Header

When using the HTTP block to send a request to the Notion API, I get a 400 for 'invalid request url' because Predefined Auth Headers are overriding the existing ...