super-review:graphql
CommunityHarden GraphQL with evidence-backed checks
Software Engineering#authorization#security#graphql#pr review#resolver performance#dos prevention#evidence-based auditing
Authormattnowdev
Version1.0.0
Installs0
System Documentation
What problem does it solve?
GraphQL APIs often ship with subtle denial-of-service, authorization, and correctness weaknesses that linters miss and review comments can easily get wrong without concrete evidence.
Core Features & Use Cases
- DoS surface review: Detects missing query depth limits, missing query complexity/cost controls, and introspection exposure in production.
- AuthZ and data-leak prevention: Flags missing field-level authorization, unsafe Federation entity handling, and subscription authorization gaps.
- Performance and resilience patterns: Catches N+1 resolver patterns, unbounded list fields without pagination, and unsafe error formatting that leaks stack traces or DB details.
- Protocol hygiene for attackers: Looks for alias abuse bypasses of rate limiting and persisted-query enforcement gaps.
Quick Start
Ask the AI to review a PR that updates GraphQL schema/resolvers for DoS, authorization, pagination, N+1, and error-leak risks with exact quoted evidence from the diff.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: super-review:graphql Download link: https://github.com/mattnowdev/super-review/archive/main.zip#super-review-graphql Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.