Site icon API Security Blog

If you pick a random GraphQL framework and run it with default settings in production, disaster is waiting to happen.

2. Parsing a GraphQL Operation vs. parsing JSON#

Why? Why is the complexity of the language so much higher than JSON? Let’s compare both languages: The grammar for parsing JSON is only 18 lines long! That’s less than half as complex as the one for GraphQL Operations! And we all know that there are more experts in parsing and securing JSON than there are in parsing and securing GraphQL documents. So why do we even need this extra complexity? Is it really worth it? I don’t think so..
https://t.co/c3UsSVKaaY

Exit mobile version