Skip to content

Latest commit

 

History

History
71 lines (43 loc) · 4.44 KB

aktogpt.md

File metadata and controls

71 lines (43 loc) · 4.44 KB

AktoGPT

Harness the power of ChatGPT for API Security on your fingertips now! Akto integrates with ChatGPT to bring you insights from the most powerful bot.

Data concerns

Here is how and what of your data -

  1. No data is sent out unless you click on the Send button Screenshot 2023-04-09 at 10 54 33 PM
  2. Your Login email is sent to with every request to Akto. This email is retained by Akto and NOT sent to ChatGPT. This email ID is retained only till we receive a response from ChatGPT.
  3. For Auto-group APIs and Filter APIs, a list of the API endpoint URLs is sent to Akto backend
  4. For detecting Sensitive and PII data, request and response payload under the Values tab is sent to Akto backend
  5. Akto retains only your email id. All the data is sent to ChatGPT in form of a prompt
  6. Akto discards the data after the response is returned irrespective of success or failure

How to use it?

You will find Ask AktoGPT button on the dashboard at the top right. Currently, only a few pages have support for it. We will be extending the support to remaining pages as well soon.

Auto-group APIs

You can use AktoGPT to automatically group APIs based on their functionality. Follow these steps

  1. Open any API collection and click on the AktoGPT button on the screen

  2. From the list of prompts, select Create API groups

  3. Click on the Send button to the right of the prompt

  4. It should now classify all the APIs on the screen in multiple groups

Filter APIs

You can use AktoGPT to automatically filter APIs based on a search phrase. Follow these steps

  1. Open any API collection and click on the AktoGPT button on the screen

  2. From the list of prompts, select Tell me APIs related to

  3. Type a search phrase and click on the Send button to the right of the prompt

  4. It should now show only APIs related to the search phrase

Sensitive and PII data

You can use AktoGPT to look for any sensitive or PII parameters in the API payload. Follow these steps -

  1. Open any API and click on the AktoGPT button on the screen

  2. Select the Fetch sensitive params prompt

  3. Click on the Send button to the right of the prompt

  4. It should now show sensitive or PII params from the API payloads

\