Dec 26, 2023
join praxis now - discord - github
seen from China
seen from China
seen from United States
seen from United States
seen from China
seen from United States
seen from Malaysia
seen from Malaysia
seen from Poland
seen from Kazakhstan
seen from China
seen from Australia
seen from Switzerland
seen from Australia
seen from China
seen from Malaysia
seen from France
seen from Australia
seen from Germany
seen from United Kingdom
join praxis now - discord - github
Has anyone found a way to use both GraphQL Shield and dataloaders at the same time while using Apollo Server and NestJS?
I recently found that because I have asynchronous calls being made in some of my shield rules, it's causing my dataloader batch functions to be called multiple times, when they should only be called once, which leaves me with the N+1 problem across my entire app.
I believe this is due to how dataloader requires that all of the batch function calls occur during the same event loop "tick", and the async calls in my shield rules are preventing this.
Here's where I asked the question on reddit
GraphQL Authentication and Authorization using JSON Web Tokens ☞ http://bit.ly/33rhJWv #JWT #GraphQL #Morioh
Full Stack Developer
Professional experienced in React Native, React Js, Node js & GraphQL. Love to help and share knowledge.
New Security Insights API: Sneak Peek
Something I think is very important to supply chain security is to have the right information available to make decisions about risk. Existing security tools currently report known vulnerabilities at the tail end of a long disclosure process. We're looking to improve the status quo by providing visibility into more of the supply chain, not just its end products.
Our first step in that effort is to start sharing information that npm is privileged to have due to its position in the publishing pipeline.
Over the next few blog posts I’ll be sharing previews of an API that the npm security team has been developing. Its working title has been the npm Insights API and we’re going to use it to get the information that we have available to us into your hands.
The first part of the API I'd like to show is the PublicationInfo schema. This GraphQL schema allows us to see some important pieces of information about the publication context of a particular package: whether the package was published with 2FA enabled (which is a good sign: they had to provide a second factor during npm publish) and if it was published over the Tor anonymity network (which is a potential red flag).
type PublicationInfo { username: String created: String tor: Boolean tfa: Boolean }
If we wanted to look up the publication information for pg version 7.12.0 the query might look like:
query { package(name: "pg", version: "7.12.0") { publicationInfo { username tor tfa } } }
The result would show us that indeed [email protected] was published with 2FA enabled and that it was not likely published over tor:
{ "data": { "package": { "publicationInfo": { "username": "brianc", "tor": false, "tfa": true } } } }
In the next few posts we’ll get into deep package integrity, malware indicators of compromise, and behavioral analysis at runtime. If you made it this far that probably got your attention, so keep watching this space as we progress in our adventure to bring you deep insights about the packages you’re using.
A Beginner’s Guide to GraphQL ☞ http://dev.edupioneer.net/6a107f8e2a #GraphQL
Headless is a GraphQL based template that will help user to create advertising platform / multi user based any content driven app very quickly. It uses firebase-firestore for data storing. Built wi...
Headless is a GraphQL based template that will help the user to create advertising platform / multi-user based on any content driven app very quickly. It uses firebase-firestore for data storing. Built with Next JS which is the best SSR framework on top of React JS. We tried to use all the bleeding edge stack to do this so modern web developer can use it in their own app or create an app on top of it.