Skip to content

New Rule: Require "requiresScopes" directive on all object types #2907

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
spenserca opened this issue Apr 10, 2025 · 0 comments · May be fixed by #2908
Open

New Rule: Require "requiresScopes" directive on all object types #2907

spenserca opened this issue Apr 10, 2025 · 0 comments · May be fixed by #2908

Comments

@spenserca
Copy link

Is your feature request related to a problem? Please describe.

We have run into issues where less experienced developers have not added scopes properly to their graph objects. This poses a security risk, and we are looking for a way to stop them from pushing insecure object types to our federated graph.

Describe the solution you'd like

I'd like to be able to run a schema validation check and have it fail if a subgraph is trying to push a change which includes a type that doesn't have the @requiresScopes directive applied.

Describe alternatives you've considered

Other options we've discussed are manual reviews of schema changes, but then our team becomes a bottleneck to all other teams pushing graph changes.

Additional context

This is a similar request as #2284 just with a different directive and scope
@spenserca spenserca linked a pull request Apr 10, 2025 that will close this issue
Open
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Enforce requires scopes directive on types rule spenserca/graphql-eslint
1 participant
@spenserca