
Security News
Follow-up and Clarification on Recent Malicious Ruby Gems Campaign
A clarification on our recent research investigating 60 malicious Ruby gems.
apollo-studio-tracing
Advanced tools
This gem extends the GraphQL Ruby gem to add support for sending trace data to Apollo Studio. It is intended to be a full-featured replacement for the unmaintained apollo-tracing-ruby gem, and it is built HEAVILY from the work done within the Gusto apollo-federation-ruby gem as well an exploratory branch created here.
This gem is still in a beta stage and may have some bugs or incompatibilities. See the Known Issues and Limitations below. If you run into any problems, please file an issue.
Add this line to your application's Gemfile:
gem 'apollo-studio-tracing'
And then execute:
$ bundle install
Or install it yourself as:
$ gem install apollo-studio-tracing
Add use ApolloStudioTracing
to your schema class.
Change your controller to add apollo_tracing_enabled: true
to the execution context. Ensure that apollo_client_name
and apollo_client_version
are set as well, for proper client information in Studio:
def execute
# ...
context = {
apollo_client_name: request.headers["apollographql-client-name"],
apollo_client_version: request.headers["apollographql-client-version"],
apollo_tracing_enabled: Rails.env.production?,
}
# ...
end
Install Google Protocol Buffers via Homebrew
$ brew install protobuf
Regenerate the Ruby protos with the included script:
$ bin/generate-proto.sh
Removing old client
Downloading latest Apollo Protobuf IDL
Generating Ruby client stubs
.define
API will not be supportedFAQs
Unknown package
We found that apollo-studio-tracing demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
A clarification on our recent research investigating 60 malicious Ruby gems.
Security News
ESLint now supports parallel linting with a new --concurrency flag, delivering major speed gains and closing a 10-year-old feature request.
Research
/Security News
A malicious Go module posing as an SSH brute forcer exfiltrates stolen credentials to a Telegram bot controlled by a Russian-speaking threat actor.