►
Description
As always, feel free to leave us a comment below and don't forget to subscribe: http://bit.ly/subgithub
Thanks!
Connect with us.
Facebook: http://fb.com/github
Twitter: http://twitter.com/github
LinkedIn: http://linkedin.com/company/github
About GitHub
GitHub is the best place to share code with friends, co-workers, classmates, and complete strangers. Millions of people use GitHub to build amazing things together. For more info, go to http://github.com
A
A
So
a
quick
look
at
the
agenda.
We
start
with
the
lightning
talks
and
during
one
Hulland
tiny
talks
will
be
live
streamed
on
Twitch
and
will
also
be
recorded,
and
then
we
will
have.
We
will
try
to
recreate
the
networking
that
we
had
during
the
meetups
with
breakout
sessions,
where
we
will
suffer
all
participants
in
breakout
rooms
and,
of
course
this
part
will
not
be
recorded
and
live
streamed.
So
the
talks
we
will
start
with
under
a
balcony.
B
So
today
we
show
you
a
wing,
Q
and
Q.
Lee
is
a
new
graphical,
tooling,
test,
tooling
and
graph.
Ql,
basically,
is
an
API
definition,
language
that
it
enables
you
to
define,
api's
and
object,
which
you
can
reference
and
query
on
which
you
can
select
data
on
these
api's,
for
example,
if
we
define
project
and
a
query
project,
we
can
select
one
of
the
attributes
that
line
through
the
name.
B
When
it,
when
it's
inside
the
HTTP,
it's
in
translating
application
jeezum
past
to
one
endpoint,
which
is
usually
craft,
slash
craft
cloud,
but
it
came
up
to
any
other
endpoint
and
the
response
it
is
application
jeezum
as
well
user
vulnerabilities
will
craft
are
missing,
authentication
and
authorization
and
for
in
particular,
for
this
case
is
either
one
other
case.
Important
is
information.
Exposure
and
one
other
is
resource
exhaustion.
B
We
will
go
through
all
of
them
in
the
demo,
but
while
it
is
very
easy
to
define
api's
with
graph
QL,
it
is
quite
uneasy
for
a
tester,
a
penetration
tester
to
actually
check
for
governor
abilities.
In
fact
before,
when
you
were
having
an
HTTP
server,
exposing
many
recipe
is
now.
You
have
only
one
endpoint
for
the
reason
we
create.
We
created
in
queue
and
you'll,
performs
introspection,
queries
to
graph
QL
to
generate
stub
queries
which
can
be
sent
to
the
end
points
directly.
B
So,
the
approach
is
completely
black
box.
It
does
not
need
to
actually
know
anything
if
the
introspection
API
is
are
enabled,
and
if
they
are
disabled,
it
is
even
possible
to
actually
perform
an
introspection
query
on
ageism
that
it
is
the
representation
of
that
introspection.
Query
it
integrates
with
bark
burp
is
the
de
facto
standard
for
HTTP
testing
and
it
can
send
to
repeater
easily.
B
B
This
is
pretty
much
the
tool.
The
idea
is
allowing
the
the
developers
and
the
tester
to
have
the
same
speed
while
developing
and
testing.
So
while
in
developers,
it
usually
speeds
up
to
have
some
something
like
graph
QL
on
the
tester
side,
it's
usually
slow
down,
and
for
this
reason
we
created
this
flow
inside
bar
to
actually
test
for
this
kind
of
stuff.
B
B
The
request
is
intercepted
here
and
you
can
see
that
it
is
a
introspection
query.
The
introspection
query
is
only
checking
for
all
the
types
and
the
names
of
the
API,
and
if
we
can
let
go
through
this
query,
we
can
see
that
this
exception
can
generate
all
the
stops
of
the
available
queries.
Graph
QL
has
three
type
of
queries.
B
Subscription
is
a
way
of
checking
for
a
value
during
time.
So
after
you
get
a
new
Association,
you
get
an
open
web
socket
and
you
can
check
for
some
value
that
is
changing,
subscription
mutation
status
for
changing
value
of
some
something
inside
the
database
and
queries
in
studies
to
query
the
database.
B
B
B
B
B
B
B
We
can
see,
for
example,
this
API
is
API,
does
not
require
an
authorization.
We
can
send
it
directly
to
graphic
ul.
It
says
that
it
contains
a
collection
of
dogs.
If
we
run
it,
we
will
see
only
one,
because
the
limit
is
one
and
we
can
remove
one
of
the
parameter
and
see
all
the
dogs,
but
what
dogs
contains
does
contains.
I
did
name
of
a
trainer,
so
if
we
can
check
with
their
owner,
for
example,
here.
B
B
So
another
issue
with
this
query
that
we
are
able
to
infer
from
from
the
types
that
we
saw
is
that
wild
dog
is
containing
between
eight
of
the
veterinary
veterinarians,
contain
a
collection
of
dog
as
well,
so
in
graph
QL
is
possible
to
emulate
what
it
is
to
join
inside
the
SQL,
and
it
is
the
user
that
selects
what
he
wants
to
join.
So,
for
example,
here
we
can
ask
for
dogs.