You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Recently we had a security test of our application and although I had disabled introspection on our GraphQL API, the didYouMean suggestions came up as a vulnerability. I kind of agree it's not a good idea to show around blackhats what methods our API exposes, and propose a disableSuggestions: boolean option.
The text was updated successfully, but these errors were encountered:
Recently we had a security test of our application and although I had disabled introspection on our GraphQL API, the
didYouMean
suggestions came up as a vulnerability. I kind of agree it's not a good idea to show around blackhats what methods our API exposes, and propose adisableSuggestions: boolean
option.The text was updated successfully, but these errors were encountered: