I think that can be part of the problem: if you use it for a few things which ma... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		acdha on Aug 7, 2022 \| parent \| context \| favorite \| on: GraphQL kinda sucks I think that can be part of the problem: if you use it for a few things which make sense, you get used to it and everyone thinks it's pretty solid after a while and probably starts using and likely exposing it in other areas. Then you get someone new writing different code or a clever attacker and it turns out there was a lot of room to expose unintended data or create performance issues.

throwawaymaths on Aug 7, 2022 [–]

I don't think hasura allows unbounded queries by default? I'm not 100% sure though, I didn't set it up at where I work.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact