Security News
RubyGems.org Adds New Maintainer Role
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
@pothos/plugin-directives
Advanced tools
Directive plugin for Pothos, enables using graphql-tools based directives with Pothos
A plugin for using schema directives with schemas generated by Pothos.
Schema Directives are not intended to be used with code first schemas, but there is a large existing community with several very useful directives based
yarn add @pothos/plugin-directives
import DirectivePlugin from '@pothos/plugin-directives';
import { rateLimitDirective } from 'graphql-rate-limit-directive';
const builder = new SchemaBuilder<{
Directives: {
rateLimit: {
locations: 'OBJECT' | 'FIELD_DEFINITION';
args: { limit: number, duration: number };
};
};
}>({
plugins: [DirectivePlugin],
useGraphQLToolsUnorderedDirectives: true,
});
builder.queryType({
directives: {
rateLimit: { limit: 5, duration: 60 },
},
fields: (t) => ({
hello: t.string({ resolve: () => 'world' });
});
});
const { rateLimitDirectiveTransformer } = rateLimitDirective();
const schema = rateLimitDirectiveTransformer(builder.toSchema({}));
The directives plugin allows you to define types for the directives your schema will use the
SchemaTypes
parameter. Each directive can define a set of locations the directive can appear, and
an object type representing the arguments the directive accepts.
The valid locations for directives are:
ARGUMENT_DEFINITION
|ENUM_VALUE
ENUM
FIELD_DEFINITION
INPUT_FIELD_DEFINITION
INPUT_OBJECT
INTERFACE
OBJECT
SCALAR
SCHEMA
UNION
Pothos does not apply the directives itself, this plugin simply adds directive information to the
extensions property of the underlying GraphQL type so that it can be consumed by other tools like
graphql-tools
.
By default this plugin uses the format that Gatsby uses (described
here). This format
was not supported by older versions of graphql-tools
.
To support older versions of graphql-tools
or directives that provide a schema visitor based on an
older graphql-tools version like the rate-limit directive from the example above you can set the
useGraphQLToolsUnorderedDirectives
option. This option does not preserve the order that directives
are defined in. This will be okay for most cases, but may cause issues if your directives need to be
applied in a specific order.
To define directives on your fields or types, you can add a directives
property in any of the
supported locations using one of the following 2 formats:
{
directives: [
{
name: "validation",
args: {
regex: "/abc+/"
}
},
{
name: "required",
args: {},
}
],
// or
directives: {
validation: {
regex: "/abc+/"
},
required: {}
}
}
Each of these applies the same 2 directives. The first format is preferred, especially when using directives that are sensitive to ordering, or can be repeated multiple times for the same location.
FAQs
Directive plugin for Pothos, enables using graphql-tools based directives with Pothos
The npm package @pothos/plugin-directives receives a total of 3,208 weekly downloads. As such, @pothos/plugin-directives popularity was classified as popular.
We found that @pothos/plugin-directives demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.