Might be getting into the weeds, but perhaps we could come up with some sort of scoring/grading system for API security? Something like "API Security Score (0-5)" where 0 means your API credential is all powerful and there's nothing you can do about it and 5 means you can limit it to both specific zones and record types? It might not even need that many options.
5 Likes