graphql-test

Community

Find GraphQL API security weaknesses faster

Authorjinyimeng01
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps security researchers identify and validate common GraphQL API vulnerabilities by providing structured testing workflows for schema exposure, authorization flaws, abuse cases, and query-related risks.

Core Features & Use Cases

  • GraphQL Discovery and Enumeration: Detect GraphQL endpoints and uncover schema details through introspection alternatives, field discovery, and error-based analysis.
  • Security Testing Workflows: Assess alias-based rate limit bypasses, batch query abuse, IDOR risks, depth-based denial of service, persisted query weaknesses, and subscription authorization issues.
  • Use Case: Use this Skill during an authorized bug bounty assessment to systematically evaluate a GraphQL API for exploitable security weaknesses while limiting proof-of-concept impact.

Quick Start

Use the graphql-test skill to analyze an authorized GraphQL endpoint and generate a structured security assessment of its potential vulnerabilities.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: graphql-test
Download link: https://github.com/jinyimeng01/mastermind-bug-bounty/archive/main.zip#graphql-test

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.