Annotate requests with the query names

doyensec / inql

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

https://doyensec.com/

Apache License 2.0

1.51k stars 156 forks source link

Annotate requests with the query names #99

Closed execveat closed 8 months ago

execveat commented 1 year ago

Add notes to the GraphQL requests, with the query/mutation names.

lokiuox commented 8 months ago

15d576a7b86a308a0c0f3fb4601a02d286d1e612 addresses this, although only the "operationName" value from the JSON body is used, not the actual GraphQL query for complexity reasons. I think this is a good compromise for now so I'll close the issue, but feel free to reopen it if you think otherwise or have a specific need.