A weekly newsletter of the best news, articles and projects about GraphQL


GraphQL Batching Attack

In this article, learn more about the unexpected quirks to web application behavior that GraphQL introduces. The article runs through how the technique of batching works and how it can cause security problems, such as the inconsistencies of implementations, mutation operations that work with user authentication, and more. At the end, the article offers some tips on how you can safely secure your GraphQL applications against batching attacks.

What Can the Semantic Web Do for GraphQL?

This article speculates the benefits of combining GraphQL and the Semantic Web because of the commonalities between the two technologies. Some core Semantic Web mechanisms and existing resources can help enhance GraphQL data integration and its publishing capabilities. Szymon Klarman provides interesting commentary on how GraphQL and URIs can open the door to global knowledge graphs and improved data environments.

Exploring GraphQL with Coroutines on Android

This blog takes a look into performing GraphQL queries and how to configure your project to communicate with a sample API. Joe Birch introduces a GraphQL setup with coroutines and how it can improve the approach to asynchronous operations. He provides sample code throughout the article to explain how to utilize GraphQL schemas and queries to build out a project.


The Do’s and Don’ts for your Schema and GraphQL Operations

This presentation by Michael Watson, a customer success engineer from Apollo, shares the best practices for your GraphQL schema and client operations. He starts with some common do’s and don’ts for your schema that will help clients more easily consume your graph. Then, he covers some common pitfalls seen in GraphQL operations and the changes that can be made to bring some clarity into your graph.

GraphQL N+1 Problem

Watch Ben Awad’s live coding session where he explores the N+1 problem when building a GraphQL server. He shares some solutions that utilize DataLoader and database joins to combat against this common issue. Follow along as he breaks apart each technique and takes a look at join-monster, a library that takes the GraphQL query and does conditional joining.