This fork of vulnerable-graphql-api simplifies and cleans up the Docker build for quick deployment and testing with docker-compose.

• Make sure docker-compose is present on the system.
• Set SERVER_PORT in the environment and run docker-compose up

docker-compose up

By default, the app will listen on port 3000.

open http://localhost:3000

A sample GitHub Actions workflow is available at stackhawk.d/.github/workflows/build-and-scan.yml. Move it to the standard location in .github/workflows to enable it.

Sample StackHawk configuration files are available under stackhawk.d.