Denis's team is testing a new API that his company's developers have built for their application infrastructure. Which of the following is not a common API issue that you would expect Denis's team to find?

APIs typically transfer data for web applications via HTTPS, meaning that the API itself is not responsible for encryption. If Denis's team discovers that TLS is not enabled, they will need to work with the infrastructure or systems administration team to ensure that TLS is enabled and in use rather than making API changes. Authorization for object access, authentication weaknesses, and rate limiting are all common API issues. If you're not familiar with the types of issues you might encounter in APIs, you can read more about them in the OWASP API security top 10 at https://owasp.org/API-Security/editions/2023/en/0x11-t10.