A weekly newsletter of the best news, articles and projects about GraphQL

TwitterSlack
Issue 172• Dec 6, 2019

Articles

Protecting Your GraphQL API From Security Vulnerabilities

Tom Nagle provides insight into GraphQL security vulnerabilities that are useful to keep in mind when building a large-scale enterprise application or even a simple side project. He breaks down major threats, like brute forcing vulnerable mutations, and offers detailed solutions against various attacks. The article includes sample code as well as helpful tools to prevent your schema from being leaked in public environments.

How to use subscriptions with GraphQL using Apollo iOS SDK and Swift

In this quick tutorial, learn how to set up and use the Apollo iOS SDK library, which supports GraphQL subscriptions. You can generate all the subscriptions using the GraphQLSubscription protocol, passing parameters to the subscription you want to implement. The tutorial teaches how to utilize the GraphQL subscription feature to listen and send real-time messages using WebSockets.

Migrating to GraphQL at Airbnb

This blog discusses how Airbnb successfully migrated their large API to GraphQL, which led to improved page load times and a more intuitive user experience. The blog talks about the stack Airbnb used, how they handled aliasing and adapters to convert a GraphQL response, stage management, and other features in the project. Thomas Betts also explains all the benefits and improvements for Airbnb ever since they switched to GraphQL over REST.

Lessons learned using Single-table design with DynamoDB and GraphQL in production

This article shares some key learnings on utilizing DynamoDB to develop a fully serverless GraphQL API in production. It discusses which query access patterns are important, how to handle proper abstractions and create your own opinionated ORM, and more. Learn the dos and don’ts to prevent your table from consuming too many write capacity units and enable large scalability.

Videos

Rock solid GraphQL APIs by Charles Lee - GraphQL SF

In Charles Lee’s talk, he presents on how Shopify has been updating and deprecating one of their most used GraphQL APIs, with the help of permissions, visibility markers, and versioning. He explores the setup of their GraphQL API and explains why Shopify has versioned schemas, which helps local development provide checks to ensure version constraints.

View issue 171
View issue 173
Share the goods
Found a cool GraphQL resource? Tell us all about it!
Join the community
Follow on Twitter
Join us on Slack
topics
ArticlesTools & Open SourceEventsArticles & Open SourceGraphQL CommunityPodcasts & ShowsVideosTwitter ThreadsSurveysPODCASTS & SHOWSSurveyTutorialsLibraries and ToolsPodcasts and ShowsGraphQL Foundation Working Group UpdatesGraphQL Foundation Library UpdatesOther GraphQL Foundation NewsBooksAnnouncementsTools and Open SourceSlidesLibrariesReleasesUpdatesFrameworks and LibrariesCommunity & Events
Recent issues
Issue 349Issue 348Issue 347Issue 346Issue 345Issue 344Issue 343Issue 342Issue 341Issue 340Issue 339
Feeling nerdy? Query issues of GraphQL Weekly, with GraphQL itself!
Powered by the GraphQL Playground
Enter a query
1
2
3
4
5
6
7
8
9
10
11
12
13
14
{
  allIssues {
    id
    title
    published
    number
    date
    author {
      avatarUrl
      description
      name
    }
  }
}
or press CMD + Enter
Result
Curated by Stellate, and the awesome GraphQL community.