# graphql (TypeScript) Security Rules

4 detection rules for graphql framework in TypeScript

- Total rules: 4
- CWE coverage: 4

## CRITICAL (3)

- **Command Injection via child_process**: Detects user input flowing to shell command execution functions.
- **Path Traversal in File Operations**: Detects untrusted user input used in file system operations without proper validation.
This can allow attackers to read or write arbitrary files on the server.
- **SQL Injection via Database Queries**: Detects user input flowing into SQL queries without parameterization.

## HIGH (1)

- **Cross-Site Scripting (XSS) via Response**: Detects user input flowing into HTTP responses without proper encoding or sanitization.