Sensitive Data: High number of Custom Scalars¶

Identifier: high_number_of_custom_scalars

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

GraphQL responses containing a high number of custom scalars with sensitivity greater than MEDIUM may indicate excessive exposure of sensitive data through custom scalar types.

How we test: We analyze GraphQL responses to identify custom scalar types and assess their sensitivity levels. We count custom scalars with sensitivity greater than MEDIUM and alert if the count exceeds the configured threshold, indicating potential over-exposure of sensitive data.

Configuration¶

Example¶

Example configuration:

---
security_tests:
  high_number_of_custom_scalars:
    detection_threshold: 3
    skip: false

Reference¶

`detection_threshold`¶

Type : integer

Threshold to trigger alert if the number of values found.

`skip`¶

Type : boolean

Skip the test if true.