GraphQL

• GraphQL
  • Resources

Resources

• https://github.com/dolevf/Black-Hat-GraphQL/
• https://carvesystems.com/news/the-5-most-common-graphql-security-vulnerabilities/

GraphQL flaws Ref: https://twitter.com/CristiVlad25/status/1600134546950742016

1. Improper validation & sanitization of input
2. Lack of access controls
3. Lack of authentication
4. Over/Under-fetching
5. Invalidated third-party libraries