GraphQL request not detected if starts with comment

doyensec / inql

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

https://doyensec.com/

Apache License 2.0

1.51k stars 156 forks source link

GraphQL request not detected if starts with comment #127

Closed execveat closed 10 months ago

execveat commented 11 months ago

Some client libraries are generating GraphQL requests that start with comment, e.g.

#graphql
query SomeQuery {
    ...something
}

InQL does not parse these requests as GraphQL right now, this should be fixed.