Latest GraphQL posts

October 9, 2023

Apollo’s Response to CVE-2023-38545

October 12, 2023 Update Yesterday, the curl project released details regarding CVE-2023-38545. We want to provide an update on Apollo’s impact from this vulnerability. As mentioned in our original post, Apollo Router, Apollo Client, Apollo Server, Apollo Kotlin, Apollo iOS, and Rover do not rely on curl and are not affected by this vulnerability. The […]

October 5, 2023

Enforcing GraphQL security best practices with GraphOS

GraphQL provides a self-service developer experience by enabling client teams to fetch all of the data they need with a single query. When implementing GraphQL at scale, it’s important to balance its flexibility with security measures that prevent bad actors from exploiting its self-serve nature. A supergraph provides a unified but modular approach to GraphQL […]

October 3, 2023

GraphQLNullable is not a trap!

Nullability is a fundamental concept in many programming languages giving us the ability to express the absence of a value or assigned object. This is particularly relevant in strongly typed languages where each constant or variable must be defined with one of the language data types or explicitly allowed to be null. GraphQL is strongly-typed […]

Read more

July 31, 2023

Secure your GraphQL Microservices

by Dylan Anthony

Recent posts

November 8, 2023

Apollo Client Office Hours with Alessia Bellisario

by Dylan Anthony