Search for packages
| purl | pkg:npm/apollo-server@2.1.0-alpha.8 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-u2b9-99j7-rkbk
Aliases: GHSA-w42g-7vfc-xf37 GMS-2020-59 GMS-2020-60 GMS-2020-61 GMS-2020-62 GMS-2020-63 GMS-2020-64 GMS-2020-65 GMS-2020-66 GMS-2020-67 GMS-2020-68 GMS-2020-69 GMS-2020-70 |
Introspection in schema validation in Apollo Server If `subscriptions: false` is passed to the `ApolloServer` constructor options, there is no impact. If implementors were not expecting validation rules to be enforced on the WebSocket subscriptions transport **and** are unconcerned about introspection being enabled on the WebSocket subscriptions transport (or were not expecting that), then this advisory is not applicable. If `introspection: true` is passed to the `ApolloServer` constructor options, the impact is limited to user-provided validation rules (i.e., using `validationRules`) since there would be no expectation that introspection was disabled. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-04T20:31:31.757845+00:00 | GitLab Importer | Affected by | VCID-u2b9-99j7-rkbk | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/apollo-server/GMS-2020-59.yml | 38.6.0 |