Checklist of the most important security countermeasures when designing, testing, and releasing your API
Why do you think that https://github.com/security-prince/Application-Security-Engineer-Interview-Questions is a good alternative to API-Security-Checklist