Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/doc/user/application_security/dast_api
diff options
context:
space:
mode:
authorGitLab Bot <gitlab-bot@gitlab.com>2023-03-03 09:08:29 +0300
committerGitLab Bot <gitlab-bot@gitlab.com>2023-03-03 09:08:29 +0300
commit829c7542e8927a832df7a39ef241882c39c93399 (patch)
treeaaaae42f1e43f15d6ab0641d11720644a59473e3 /doc/user/application_security/dast_api
parent173b547fb98ab12ae41f295915453e598be3a647 (diff)
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'doc/user/application_security/dast_api')
-rw-r--r--doc/user/application_security/dast_api/index.md2
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/user/application_security/dast_api/index.md b/doc/user/application_security/dast_api/index.md
index ff2a5b3a069..96c0b76dbec 100644
--- a/doc/user/application_security/dast_api/index.md
+++ b/doc/user/application_security/dast_api/index.md
@@ -264,6 +264,8 @@ This example is a minimal configuration for DAST API. From here you can:
#### DAST API scanning with a GraphQL Schema file
+DAST API can use a GraphQL schema file to understand and test a GraphQL endpoint that has introspection disabled. To use a GraphQL schema file, it must be in the introspection JSON format. A GraphQL schema can be converted to a the introspection JSON format using an online 3rd party tool: [https://transform.tools/graphql-to-introspection-json](https://transform.tools/graphql-to-introspection-json).
+
To configure DAST API to use a GraphQL schema file that provides information about the target API to test:
1. [Include](../../../ci/yaml/index.md#includetemplate)
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-29 20:03:49 +0300