graphql-test
CommunityFind GraphQL API security weaknesses faster
Software Engineering#authorization#penetration testing#graphql#introspection#vulnerability testing#api security#bug bounty
Authorjinyimeng01
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps security researchers identify and validate common GraphQL API vulnerabilities by providing structured testing workflows for schema exposure, authorization flaws, abuse cases, and query-related risks.
Core Features & Use Cases
- GraphQL Discovery and Enumeration: Detect GraphQL endpoints and uncover schema details through introspection alternatives, field discovery, and error-based analysis.
- Security Testing Workflows: Assess alias-based rate limit bypasses, batch query abuse, IDOR risks, depth-based denial of service, persisted query weaknesses, and subscription authorization issues.
- Use Case: Use this Skill during an authorized bug bounty assessment to systematically evaluate a GraphQL API for exploitable security weaknesses while limiting proof-of-concept impact.
Quick Start
Use the graphql-test skill to analyze an authorized GraphQL endpoint and generate a structured security assessment of its potential vulnerabilities.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: graphql-test Download link: https://github.com/jinyimeng01/mastermind-bug-bounty/archive/main.zip#graphql-test Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.