English
Related papers

Related papers: Morest: Model-based RESTful API Testing with Execu…

200 papers

The focus of this paper is on automating the security testing of RESTful APIs. The testing stage of this specific kind of components is often performed manually, and this is yet considered as a long and difficult activity. This paper…

Cryptography and Security · Computer Science 2024-03-07 Sebastien Salva , Jarod Sue

Healthcare Internet of Things (IoT) applications require rigorous testing to ensure their dependability. Such applications are typically integrated with various third-party healthcare applications and medical devices through REST APIs. This…

Software Engineering · Computer Science 2023-09-11 Hassan Sartaj , Shaukat Ali , Tao Yue , Kjetil Moberg

In RESTful APIs, interactions with a database are a common and crucial aspect. When generating whitebox tests, it is essential to consider the database's state (i.e., the data contained in the database) to achieve higher code coverage and…

Software Engineering · Computer Science 2025-07-29 Hernan Ghianni , Man Zhang , Juan P. Galeotti , Andrea Arcuri

REST APIs have a pivotal role in accessing protected resources. Despite the availability of security testing tools, mass assignment vulnerabilities are common in REST APIs, leading to unauthorized manipulation of sensitive data. We propose…

Cryptography and Security · Computer Science 2024-05-07 Arash Mazidi , Davide Corradini , Mohammad Ghafari

REST APIs (Representational State Transfer Application Programming Interfaces) play a vital role in modern cloud-native applications. As these APIs grow in complexity and scale, ensuring their correctness and robustness becomes increasingly…

Software Engineering · Computer Science 2025-08-05 Robbe Nooyens , Tolgahan Bardakci , Mutlu Beyazit , Serge Demeyer

Recent developments in the world of services on the Web show that both the number of available Web APIs as well as the applications built on top is constantly increasing. This trend is commonly attributed to the wide adoption of the REST…

Software Engineering · Computer Science 2019-02-28 Frederik Buelthoff , Maria Maleshkova

Testing RESTful API is increasingly important in quality assurance of cloud-native applications. Recent advances in machine learning (ML) techniques have demonstrated that various testing activities can be performed automatically by large…

Software Engineering · Computer Science 2025-11-25 Xiaoke Han , Hong Zhu

Tool-augmented large language models (LLMs) have achieved remarkable progress in tackling a broad range of tasks. However, existing methods are mainly restricted to specifically designed tools and fail to fulfill complex instructions,…

Computation and Language · Computer Science 2023-08-29 Yifan Song , Weimin Xiong , Dawei Zhu , Wenhao Wu , Han Qian , Mingbo Song , Hailiang Huang , Cheng Li , Ke Wang , Rong Yao , Ye Tian , Sujian Li

Large Language Model (LLM)-based agents increasingly rely on APIs to operate complex web applications, but rapid evolution often leads to incomplete or inconsistent API documentation. Existing work falls into two categories: (1) static,…

Software Engineering · Computer Science 2026-03-26 Yanjing Yang , Chenxing Zhong , Ke Han , Zeru Cheng , Jinwei Xu , Xin Zhou , He Zhang , Bohan Liu

RESTful APIs based on HTTP are one of the most important ways to make data and functionality available to applications and software services. However, the quality of the API design strongly impacts API understandability and usability, and…

Software Engineering · Computer Science 2024-09-12 Justus Bogner , Sebastian Kotstein , Daniel Abajirov , Timothy Ernst , Manuel Merkel

Several studies analyzed existing Web APIs against the constraints of REST to estimate the degree of REST compliance among state-of-the-art APIs. These studies revealed that only a small number of Web APIs are truly RESTful. Moreover,…

Software Engineering · Computer Science 2021-09-30 Sebastian Kotstein , Justus Bogner

Context: Web APIs are one of the most used ways to expose application functionality on the Web, and their understandability is important for efficiently using the provided resources. While many API design rules exist, empirical evidence for…

Software Engineering · Computer Science 2024-09-12 Justus Bogner , Sebastian Kotstein , Timo Pfaff

REST is today's most widely used architectural style for providing web-based services. In the age of service-orientation (a.k.a. Software as a Service (SaaS)) APIs have become core business assets and can easily expose hundreds of…

Software Engineering · Computer Science 2026-01-26 Sven Peldszus , Jan Rutenkolk , Marcel Heide , Jan Sollmann , Benjamin Klatt , Frank Köhne , Thorsten Berger

Test flakiness is a common problem in industry, which hinders the reliability of automated build and testing workflows. Most existing research on test flakiness has primarily focused on unit and small-scale integration tests. In contrast,…

Software Engineering · Computer Science 2026-03-31 Man Zhang , Chongyang Shen , Andrea Arcuri , Tao Yue

As API access becomes a primary interface to large language models (LLMs), users often interact with black-box systems that offer little transparency into the deployed model. To reduce costs or maliciously alter model behaviors, API…

Cryptography and Security · Computer Science 2026-04-10 Xiaoyuan Zhu , Yaowen Ye , Tianyi Qiu , Hanlin Zhu , Sijun Tan , Ajraf Mannan , Jonathan Michala , Raluca Ada Popa , Willie Neiswanger

In the last years, RESTful Web services have become more and more popular as a lightweight solution to connect remote systems in distributed and Cloud-based architectures. However, being an architectural style rather than a specification or…

Software Engineering · Computer Science 2024-04-02 Hamza Ed-Douibi , Javier Luis Cánovas Izquierdo , Abel Gómez , Massimo Tisi , Jordi Cabot

As REST APIs have become widespread in modern web services, comprehensive testing of these APIs is increasingly crucial. Because of the vast search space of operations, parameters, and parameter values, along with their dependencies and…

Software Engineering · Computer Science 2025-03-05 Tyler Stennett , Myeongsoo Kim , Saurabh Sinha , Alessandro Orso

Due to their widespread use in industry, several techniques have been proposed in the literature to fuzz REST APIs. Existing fuzzers for REST APIs have been focusing on detecting crashes (e.g., 500 HTTP server error status code). However,…

Software Engineering · Computer Science 2026-04-02 Omur Sahin , Man Zhang , Andrea Arcuri

With the ever-increasing use of web APIs in modern-day applications, it is becoming more important to test the system as a whole. In the last decade, tools and approaches have been proposed to automate the creation of system-level test…

Software Engineering · Computer Science 2021-09-15 Dimitri Stallenberg , Mitchell Olsthoorn , Annibale Panichella

Assessing the effectiveness of REST API tests in black-box settings can be challenging due to the lack of access to source code coverage metrics and polyglot tech stack. We propose three metrics for capturing average, minimum, and maximum…

Software Engineering · Computer Science 2026-05-27 Nana Reinikainen , Mika Mäntylä , Yuqing Wang