{"id":29111038,"url":"https://github.com/ldebruijn/graphql-protect","last_synced_at":"2025-06-29T09:05:19.451Z","repository":{"id":196353319,"uuid":"695812084","full_name":"ldebruijn/graphql-protect","owner":"ldebruijn","description":"A dead-simple yet highly customizable security proxy compatible with any HTTP GraphQL Server or Gateway.","archived":false,"fork":false,"pushed_at":"2025-05-27T19:59:18.000Z","size":894,"stargazers_count":31,"open_issues_count":1,"forks_count":5,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-05-27T20:43:33.314Z","etag":null,"topics":["go","golang","graphql","security"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ldebruijn.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2023-09-24T09:56:11.000Z","updated_at":"2025-05-27T19:59:20.000Z","dependencies_parsed_at":"2023-12-13T15:45:40.385Z","dependency_job_id":"4aac9a73-23f3-476c-b11d-84bc1d6cb33b","html_url":"https://github.com/ldebruijn/graphql-protect","commit_stats":null,"previous_names":["ldebruijn/go-graphql-armor"],"tags_count":57,"template":false,"template_full_name":null,"purl":"pkg:github/ldebruijn/graphql-protect","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ldebruijn%2Fgraphql-protect","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ldebruijn%2Fgraphql-protect/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ldebruijn%2Fgraphql-protect/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ldebruijn%2Fgraphql-protect/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ldebruijn","download_url":"https://codeload.github.com/ldebruijn/graphql-protect/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ldebruijn%2Fgraphql-protect/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":262566829,"owners_count":23329681,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["go","golang","graphql","security"],"created_at":"2025-06-29T09:05:15.309Z","updated_at":"2025-06-29T09:05:19.442Z","avatar_url":"https://github.com/ldebruijn.png","language":"Go","funding_links":[],"categories":["\u003ca name=\"Go\"\u003e\u003c/a\u003eGo"],"sub_categories":[],"readme":"# GraphQL Protect 🛡️\n\nGraphQL Protect is dead-simple yet highly customizable security proxy compatible with any HTTP GraphQL Server or Gateway.\n\n![GraphQL Protect Banner](docs/assets/banner.jpeg?raw=true)\n\n[![Go](https://github.com/ldebruijn/graphql-protect/actions/workflows/go.yml/badge.svg)](https://github.com/ldebruijn/graphql-protect/actions/workflows/go.yml)\n[![GitHub license](https://img.shields.io/badge/license-MIT-blue.svg)](https://github.com/ldebruijn/graphql-protect?tab=MIT-1-ov-file)\n![GitHub Release](https://img.shields.io/github/v/release/ldebruijn/graphql-protect)\n\n\n_This repository is inspired by the great work of the Javascript [GraphQL Armor](https://github.com/Escape-Technologies/graphql-armor) middleware._\n\n\u003c!-- TOC --\u003e\n\n## Features\n\n* [Trusted Documents (Persisted Operations)](docs/protections/trusted_documents.md)\n* [Block Field Suggestions](docs/protections/block_field_suggestions.md)\n* [Obfuscate upstream errors](docs/protections/obfuscate_upstream_errors.md)\n* [Max Aliases](docs/protections/max_aliases.md)\n* [Max Tokens](docs/protections/max_tokens.md)\n* [Max (Field \u0026 List) Depth](docs/protections/max_depth.md)\n* [Max Batch](docs/protections/max_batch.md)\n* [Enforce POST](docs/protections/enforce_post.md)\n* [Access Logging](docs/protections/access_logging.md)\n* _Max Directives (coming soon)_\n* _Cost Limit (coming soon)_\n\n\nCurious why you need these features? Check out this [Excellent talk on GraphQL security](https://www.youtube.com/watch?v=hyB2UKsEkqA\u0026list=PLP1igyLx8foE9SlDLI1Vtlshcon5r1jMJ) on YouTube.\n\n## Installation\n\n### As Container\n```shell\ndocker pull ghcr.io/ldebruijn/graphql-protect:latest\ndocker run -p 8080:8080 -v $(pwd)/protect.yml:/app/protect.yml -v $(pwd)/schema.graphql:/app/schema.graphql ghcr.io/ldebruijn/graphql-protect:latest\n```\nMake sure to portforward the right ports for your supplied configuration\n\nCheck out our [run documentation](docs/README.md#run) for more concrete examples.\n\n### Source code\n\n```shell\ngit clone git@github.com:ldebruijn/graphql-protect.git\n```\n\nBuild \u0026 Test\n```shell\nmake build\nmake test\n```\n\nRun Container\n```shell\nmake run_container\n```\n\n## Documentation\n\nCheck out our extensive documentation, including configuration examples, detailed descriptions of each protection feature as well as deployment configuration examples.\n\n[Documentation](docs/README.md)\n\n## Configuration\n\nWe recommend configuring the binary using a yaml file, place a file called `protect.yml` in the same directory as you're running the binary.\n\nFor all the configuration options check out the [Configuration Documentation](docs/configuration.md)\n\n## Spec Target\n\nAt time of writing, GraphQL Protect targets the [October 2021](https://spec.graphql.org/October2021/) version of the GraphQL specification and [select portions of the Draft](https://spec.graphql.org/draft/).\n\n## Contributing\n\nEnsure you have read the [Contributing Guide](https://github.com/ldebruijn/graphql-protect/blob/main/CONTRIBUTING.md) before contributing.\n\nTo set up your project, make sure you run the `make dev.setup` script.\n\n```bash\ngit clone git@github.com:ldebruijn/graphql-protect.git\ncd graphql-protect\nmake dev.setup\n```\n\n## Known Limitations\n\nCheck out [known limitations](docs/README.md#known-limitations) for more details.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fldebruijn%2Fgraphql-protect","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fldebruijn%2Fgraphql-protect","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fldebruijn%2Fgraphql-protect/lists"}