Security News
Vite+ Joins the Push to Consolidate JavaScript Tooling
Evan You announces Vite+, a commercial, Rust-powered toolchain built on the Vite ecosystem to unify JavaScript development and fund open source.
By Sarah Gooding - Oct 15, 2025
Introducing Socket Firewall: Free, Proactive Protection for Your Software Supply Chain.Learn More →
@escape.tech/graphql-armor
Advanced tools
@escape.tech/graphql-armor
Dead-simple, yet highly customizable security middleware for Apollo GraphQL servers shield
GraphQL Armor 🛡️
GraphQL Armor is a dead-simple yet highly customizable security middleware for various GraphQL server engines.
Installation
# npm
npm install -S @escape.tech/graphql-armor
# yarn
yarn add @escape.tech/graphql-armor
Documentation
https://escape.tech/graphql-armor/docs/getting-started
Supported GraphQL Engines
We support the following engines :
We additionally support the following engines through the Envelop plugin system :
- GraphQL-Helix
- Node.js HTTP
- GraphQL-Helix (with @defer and @stream)
- GraphQL-WS
- GraphQL-SSE
- Azure Functions
- Cloudflare Workers
- Google Cloud Functions
- Lambda AWS
- type-graphql
- nexus
- express-graphql
See here for more information about Envelop compatibility.
GraphQL security for Enterprise
Interested in securing GraphQL APIs on the enterprise level? Visit Escape’s website to learn more.
Contributing
Ensure you have read the Contributing Guide before contributing.
To setup your project, make sure you run the install-dev.sh script.
git clone git@github.com:Escape-Technologies/graphql-armor.git
cd graphql-armor
bash ./install-dev.sh
We are using yarn as our package manager and the workspaces monorepo setup. Please read the associated documentation and feel free to open issues if you encounter problems when developing on our project!
🤝 We're hiring!
We believe it’s time to bring more AI-driven innovation to cybersecurity, and we'd love your help in building this dream! Want to join our adventure? Check out our Careers page!
FAQs
Dead-simple, yet highly customizable security middleware for Apollo GraphQL servers shield
The npm package @escape.tech/graphql-armor receives a total of 93,681 weekly downloads. As such, @escape.tech/graphql-armor popularity was classified as popular.
We found that @escape.tech/graphql-armor demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Package last updated on 22 Aug 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Ruby Central Faces Backlash After Publishing Incident Timeline on RubyGems Access Dispute
Ruby Central’s incident report on the RubyGems.org access dispute sparks backlash from former maintainers and renewed debate over project governance.
By Sarah Gooding - Oct 14, 2025
Research
/Security News
Weaponizing Discord for Command and Control Across npm, PyPI, and RubyGems.org
Socket researchers uncover how threat actors weaponize Discord across the npm, PyPI, and RubyGems ecosystems to exfiltrate sensitive data.
By Olivia Brown - Oct 11, 2025