Latest GraphQL Security posts

July 11, 2022

Apollo earns SOC 2 Type II compliance

We’re excited to announce that Apollo is now SOC 2 Type II certified, an incredibly important milestone for us that demonstrates the investment we’ve put into building a safe and secure product and organization over the years.  SOC 2 Type II certification is a third-party audit that’s part of the American Institute of CPA’s (AICPA) […]

May 26, 2021

9 Ways To Secure your GraphQL API — GraphQL Security Checklist

So you’ve built out your GraphQL API, and you’re nearly ready to deploy it to production. Fantastic. Let’s talk security: a significant part of every stable application on the internet. It’s worth taking some time to mitigate the most common issues. In this article, we will explore three main areas for how to secure your […]

May 7, 2021

Why You Should Disable GraphQL Introspection In Production – GraphQL Security

Once your graph is up and running in production, like anything else on the internet, it’s a good idea to implement precautions to prevent it from being compromised by bad actors. Disabling introspection in production is a widely debated topic, but we believe it’s one of the first things you can do to harden your […]

Read more

February 21, 2018

Securing Your GraphQL API from Malicious Queries

by Max Stoiber

Recent posts

January 30, 2023

Apollo Changelog: Jan 30, 2023

by Dylan Anthony
January 24, 2023

New Apollo Federation spec compliance tools for GraphQL Server maintainers

by Derek Kuc
January 23, 2023

Apollo Changelog: Jan 23, 2023

by Dylan Anthony

Company

Community

Help