Yes, the Instart API has rate limiting to protect against denial of service attacks. Rate limits depend on which APIs are being accessed:
- the cache purge API will limit operations to two per second
- the general API will limit to 20 per second
- some analytics queries will allow up to 100 per second
This allows for normal use while protecting the system from misuse.