API Security Weekly: Issue #140