This talk reviews the history of software documentation vulnerabilities and then examines specific API documentation examples where security may be an issue. This will include worked examples, on-screen advice, screen handling, tools and authentication. We will also take a closer look at PSD2 APIs and what the future may bring for their security.