Read the Docs
Get up and running in less than an hour. Build the config file and then $ docker run hawkscan to find your security bugs.
Ship your GraphQL API with confidence that it is secure. With StackHawk, you can catch potential security vulnerabilities before they hit production. StackHawk runs active dynamic testing for common security bugs against the queries and mutations on your API, surfacing issues that your team may have introduced as well as issues introduced by open source vulnerabilities.
Ship Secure GraphQL with StackHawk