Akamai API Security · Capability

Akamai: Application Security API — WAF rules: Tuning recommendations

Akamai: Application Security API — WAF rules: Tuning recommendations. 4 operations. Lead operation: Akamai API Security Respond to Exception Recommendations. Self-contained Naftiko capability covering one Akamai Api Security business surface.

Run with Naftiko Akamai Api SecurityWAF rules: Tuning recommendations

What You Can Do

POST
Postrecommendations — Akamai API Security Respond to Exception Recommendations
/v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations
GET
Getrecommendations — Akamai API Security Get Tuning Recommendations for a Policy
/v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations
GET
Getattackgroup — Akamai API Security List Tuning Recommendations for an Attack Group
/v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations/attack-groups/{attackgroupid}
GET
Getrecommendationsrule — Akamai API Security List Tuning Recommendations for a Rule
/v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations/rules/{ruleid}

MCP Tools

akamai-api-security-respond-exception

Akamai API Security Respond to Exception Recommendations

akamai-api-security-get-tuning

Akamai API Security Get Tuning Recommendations for a Policy

read-only idempotent
akamai-api-security-list-tuning

Akamai API Security List Tuning Recommendations for an Attack Group

read-only idempotent
akamai-api-security-list-tuning-2

Akamai API Security List Tuning Recommendations for a Rule

read-only idempotent

Capability Spec

akamai-api-security-waf-rules-tuning-recommendations.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: 'Akamai: Application Security API — WAF rules: Tuning recommendations'
  description: 'Akamai: Application Security API — WAF rules: Tuning recommendations. 4 operations. Lead operation: Akamai
    API Security Respond to Exception Recommendations. Self-contained Naftiko capability covering one Akamai Api Security
    business surface.'
  tags:
  - Akamai Api Security
  - 'WAF rules: Tuning recommendations'
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    AKAMAI_API_SECURITY_API_KEY: AKAMAI_API_SECURITY_API_KEY
capability:
  consumes:
  - type: http
    namespace: akamai-api-security-waf-rules-tuning-recommendations
    baseUri: https://{hostname}/appsec/v1
    description: 'Akamai: Application Security API — WAF rules: Tuning recommendations business capability. Self-contained,
      no shared references.'
    resources:
    - name: configs-configId-versions-versionNumber-security-policies-policyId-recommendatio
      path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/recommendations
      operations:
      - name: postrecommendations
        method: POST
        description: Akamai API Security Respond to Exception Recommendations
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: type
          in: query
          type: string
          description: __Enum__ If `ACTIVE`, includes only active recommendations, the default. If `EVALUATION`, includes
            only evaluation recommendations. If `ALL`, includes both acti
        - name: accountSwitchKey
          in: query
          type: string
          description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-w
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
      - name: getrecommendations
        method: GET
        description: Akamai API Security Get Tuning Recommendations for a Policy
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: type
          in: query
          type: string
          description: __Enum__ If `ACTIVE`, includes only active recommendations, the default. If `EVALUATION`, includes
            only evaluation recommendations. If `ALL`, includes both acti
        - name: accountSwitchKey
          in: query
          type: string
          description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-w
    - name: configs-configId-versions-versionNumber-security-policies-policyId-recommendatio
      path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/recommendations/attack-groups/{attackGroupId}
      operations:
      - name: getattackgroup
        method: GET
        description: Akamai API Security List Tuning Recommendations for an Attack Group
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: type
          in: query
          type: string
          description: __Enum__ If `ACTIVE`, includes only active recommendations, the default. If `EVALUATION`, includes
            only evaluation recommendations. If `ALL`, includes both acti
        - name: accountSwitchKey
          in: query
          type: string
          description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-w
    - name: configs-configId-versions-versionNumber-security-policies-policyId-recommendatio
      path: /configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/recommendations/rules/{ruleId}
      operations:
      - name: getrecommendationsrule
        method: GET
        description: Akamai API Security List Tuning Recommendations for a Rule
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: type
          in: query
          type: string
          description: __Enum__ If `ACTIVE`, includes only active recommendations, the default. If `EVALUATION`, includes
            only evaluation recommendations. If `ALL`, includes both acti
        - name: accountSwitchKey
          in: query
          type: string
          description: For customers who manage more than one account, this [runs the operation from another account](https://techdocs.akamai.com/developer/docs/manage-many-accounts-w
  exposes:
  - type: rest
    namespace: akamai-api-security-waf-rules-tuning-recommendations-rest
    port: 8080
    description: 'REST adapter for Akamai: Application Security API — WAF rules: Tuning recommendations. One Spectral-compliant
      resource per consumed operation, prefixed with /v1.'
    resources:
    - path: /v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations
      name: configs-configid-versions-versionnumber-security-policies-policyid-recommendatio
      description: REST surface for configs-configId-versions-versionNumber-security-policies-policyId-recommendatio.
      operations:
      - method: POST
        name: postrecommendations
        description: Akamai API Security Respond to Exception Recommendations
        call: akamai-api-security-waf-rules-tuning-recommendations.postrecommendations
        with:
          type: rest.type
          accountSwitchKey: rest.accountSwitchKey
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
      - method: GET
        name: getrecommendations
        description: Akamai API Security Get Tuning Recommendations for a Policy
        call: akamai-api-security-waf-rules-tuning-recommendations.getrecommendations
        with:
          type: rest.type
          accountSwitchKey: rest.accountSwitchKey
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations/attack-groups/{attackgroupid}
      name: configs-configid-versions-versionnumber-security-policies-policyid-recommendatio
      description: REST surface for configs-configId-versions-versionNumber-security-policies-policyId-recommendatio.
      operations:
      - method: GET
        name: getattackgroup
        description: Akamai API Security List Tuning Recommendations for an Attack Group
        call: akamai-api-security-waf-rules-tuning-recommendations.getattackgroup
        with:
          type: rest.type
          accountSwitchKey: rest.accountSwitchKey
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/configs/{configid}/versions/{versionnumber}/security-policies/{policyid}/recommendations/rules/{ruleid}
      name: configs-configid-versions-versionnumber-security-policies-policyid-recommendatio
      description: REST surface for configs-configId-versions-versionNumber-security-policies-policyId-recommendatio.
      operations:
      - method: GET
        name: getrecommendationsrule
        description: Akamai API Security List Tuning Recommendations for a Rule
        call: akamai-api-security-waf-rules-tuning-recommendations.getrecommendationsrule
        with:
          type: rest.type
          accountSwitchKey: rest.accountSwitchKey
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: akamai-api-security-waf-rules-tuning-recommendations-mcp
    port: 9090
    transport: http
    description: 'MCP adapter for Akamai: Application Security API — WAF rules: Tuning recommendations. One tool per consumed
      operation, routed inline through this capability''s consumes block.'
    tools:
    - name: akamai-api-security-respond-exception
      description: Akamai API Security Respond to Exception Recommendations
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: akamai-api-security-waf-rules-tuning-recommendations.postrecommendations
      with:
        type: tools.type
        accountSwitchKey: tools.accountSwitchKey
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.
    - name: akamai-api-security-get-tuning
      description: Akamai API Security Get Tuning Recommendations for a Policy
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: akamai-api-security-waf-rules-tuning-recommendations.getrecommendations
      with:
        type: tools.type
        accountSwitchKey: tools.accountSwitchKey
      outputParameters:
      - type: object
        mapping: $.
    - name: akamai-api-security-list-tuning
      description: Akamai API Security List Tuning Recommendations for an Attack Group
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: akamai-api-security-waf-rules-tuning-recommendations.getattackgroup
      with:
        type: tools.type
        accountSwitchKey: tools.accountSwitchKey
      outputParameters:
      - type: object
        mapping: $.
    - name: akamai-api-security-list-tuning-2
      description: Akamai API Security List Tuning Recommendations for a Rule
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: akamai-api-security-waf-rules-tuning-recommendations.getrecommendationsrule
      with:
        type: tools.type
        accountSwitchKey: tools.accountSwitchKey
      outputParameters:
      - type: object
        mapping: $.