Developed and delivered a REST API Basic Auth URI Blocklist feature for the wso2/carbon-apimgt repository, enhancing security by preventing access to specified URIs via Basic Authentication. The solution introduced configuration-driven controls, allowing administrators to manage blocked URIs through the api-manager.xml file. Java was used to update RestApiUtil for reading and managing the blocklist, while enforcement was handled within the BasicAuthenticationInterceptor to ensure unauthorized requests were blocked at runtime. This work demonstrated skills in API management, backend development, and configuration management, focusing on maintainable, centralized security controls without introducing new bugs or regressions during the implementation period.