It’s gotten even worse when they moved completely to the cloud like a year or two ago! You now can’t use it without making a Postman account, and all your API collections are stored on their servers :) Absolutely no security risks here, API endpoints of in-development systems aren’t a massive attack vector at all !!
We had to ban the whole tool at my company, the alternative of choice is Bruno because it’s at least completely local when you install it.
It’s gotten even worse when they moved completely to the cloud like a year or two ago! You now can’t use it without making a Postman account, and all your API collections are stored on their servers :) Absolutely no security risks here, API endpoints of in-development systems aren’t a massive attack vector at all !!
We had to ban the whole tool at my company, the alternative of choice is Bruno because it’s at least completely local when you install it.