29% of organizations identified account misuse or other fraud as the most common API security problem.

12% of organizations cited a lack of investment in pre-production security for their API programs.

26% of organizations are adopting governance frameworks to establish rules for AI use in development.

60% of developers still design APIs primarily for humans only.

Just 11% of organizations plan to reduce investment in APIs in the next 12 months.

15% of organizations said their API programs do not adequately address runtime or production security.

Only 3% of organizations indicated they do not know how many APIs they are responsible for.

57% of the organizations are somewhat API-first.

45% of organizations identify digital transformation initiatives as a main driver behind the use of APIs.

12% of organizations manage 501–1,000 APIs.

89% of developers use generative AI in their daily work.

16% of respondents pointed to resource or staffing shortages as the primary barrier to implementing a strong API security program.

25% of the organizations are operating as fully API-first organizations.

69% of developers spend 10 or more hours per week on API-related tasks.

41% of developers, architects, and executives rely on AI to generate API documentation.

33% of security leaders have suffered an API incident in the past year.

35% of organizations identify cloud migration as a main driver behind the use of APIs.

33% of developers have ethical, legal, and compliance concerns about AI tools.

26% of organizations that generate API revenue derive less than 10% of their total revenue from APIs.

4% of organizations reported API increases of 201–300%.