diff options
author | GitLab Bot <gitlab-bot@gitlab.com> | 2023-03-03 09:08:29 +0300 |
---|---|---|
committer | GitLab Bot <gitlab-bot@gitlab.com> | 2023-03-03 09:08:29 +0300 |
commit | 829c7542e8927a832df7a39ef241882c39c93399 (patch) | |
tree | aaaae42f1e43f15d6ab0641d11720644a59473e3 /doc/user/application_security/dast_api | |
parent | 173b547fb98ab12ae41f295915453e598be3a647 (diff) |
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'doc/user/application_security/dast_api')
-rw-r--r-- | doc/user/application_security/dast_api/index.md | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/user/application_security/dast_api/index.md b/doc/user/application_security/dast_api/index.md index ff2a5b3a069..96c0b76dbec 100644 --- a/doc/user/application_security/dast_api/index.md +++ b/doc/user/application_security/dast_api/index.md @@ -264,6 +264,8 @@ This example is a minimal configuration for DAST API. From here you can: #### DAST API scanning with a GraphQL Schema file +DAST API can use a GraphQL schema file to understand and test a GraphQL endpoint that has introspection disabled. To use a GraphQL schema file, it must be in the introspection JSON format. A GraphQL schema can be converted to a the introspection JSON format using an online 3rd party tool: [https://transform.tools/graphql-to-introspection-json](https://transform.tools/graphql-to-introspection-json). + To configure DAST API to use a GraphQL schema file that provides information about the target API to test: 1. [Include](../../../ci/yaml/index.md#includetemplate) |