Open SPopenko opened 1 year ago
Hello community, Based on OWASP recommendations it is nice to have depth and amount limitations on queries that could be done over API.
https://cheatsheetseries.owasp.org/cheatsheets/GraphQL_Cheat_Sheet.html#query-limiting-depth-amount
Do we have any instruments to implement such technics with AppSync? If not, how AppSync protects solutions from Denial of Service (DoS) or Denial-of-Wallet (DoW) attacks?
Thank you in advance.
Hello community, Based on OWASP recommendations it is nice to have depth and amount limitations on queries that could be done over API.
https://cheatsheetseries.owasp.org/cheatsheets/GraphQL_Cheat_Sheet.html#query-limiting-depth-amount
Do we have any instruments to implement such technics with AppSync? If not, how AppSync protects solutions from Denial of Service (DoS) or Denial-of-Wallet (DoW) attacks?
Thank you in advance.