paint-brush
Startups of the Year 2023: Meet Inigo - A GraphQL API Management and Security Solutionby@inigoforgraphql
181 reads

Startups of the Year 2023: Meet Inigo - A GraphQL API Management and Security Solution

by InigoJuly 6th, 2023
Read on Terminal Reader
Read this story w/o Javascript
tldt arrow

Too Long; Didn't Read

Inigo has been nominated in HackerNoon's annual Startup of the Year awards in San Francisco. Inigo is a one-stop-shop platform for complete GraphQL API security, governance, and management at scale. With Inigo, teams can work faster, scale with confidence, and prevent security threats that traditional solutions cannot detect.
featured image - Startups of the Year 2023: Meet Inigo - A GraphQL API Management and Security Solution
Inigo HackerNoon profile picture

Welcome to HackerNoon’s Startups-Of-The-Year interview series. This section is curated by our Editorial team to spotlight bold and disruptive startups across the globe. If you’ve been nominated, create a brand profile and answer these questions here.


Hey Hackers,


Inigo has been nominated in HackerNoon's annual Startup of the Year awards in San Francisco.


You can vote for the #GraphQL management and security platform here.


Read more about Inigo below to understand why we deserve your vote.

Meet Inigo


Inigo is a one-stop-shop platform for complete—and we mean complete—GraphQL API security, governance, and management at scale.


Our platform provides the full package of all the security, visibility, access control, compliance, analytics, and continuous delivery tools necessary for enterprise GraphQL implementations to thrive.


Said another way, we empower developer, security, and DevOps teams to build applications quickly and securely and expedite their GraphQL development roadmaps, while also lowering development costs and improving end-user experiences.


It’s a win across the board, as our users agree.


The plug-and-play platform is seamlessly (and uniquely) compatible with any GraphQL server (Apollo, Hasura, AWS AppSync, etc.).


Simple-to-use tools provide the best GraphQL experience for developers, DevOps, architects, and security teams by eliminating development, operational, and security overhead.


With Inigo, teams can work faster, scale with confidence, and prevent security threats that traditional solutions (that weren’t designed for GraphQL) simply cannot detect.

How We're Disrupting (and Improving) the GraphQL Industry

Countless organizations are rushing to adopt GraphQL. They (rightfully) want to capitalize on its developer experience advantages, and the faster and more responsive applications that modernized GraphQL APIs enable.


However…standard API gateways and traditional security tooling are blind to GraphQL attacks. Enterprises thus risk being caught naked from a security standpoint, similar to how many were left vulnerable at the dawn of Kubernetes adoption without the necessary specific security protections.


Teams deploying GraphQL without purpose-built protections are fish in a barrel for attackers, and can (and very much have) fallen prey to devastating DDoS attacks and data leaks.


We’re improving the GraphQL industry by supporting enterprises with GraphQL-specific security and management.


With our platform and tools, users can be assured that their GraphQL deployments remain secure, efficient, simple to scale, and effective in providing positive developer experiences across the application lifecycle.

Standing Out from The Crowd

We are the only GraphQL management solution that is platform-agnostic and ready to work seamlessly with any open-source or commercial GraphQL server. We also offer teams a uniquely simple path to achieving regulatory compliance via provable security and easy-to-access reporting.


The platform provides a full audit trail and schema-based RBAC data access control with query-level granularity.


Security teams using Inigo can quickly identify potential security breaches, detect unauthorized access, pinpoint specific operations and mutations, and filter accessed data based on objects, paths, users, and roles.


We deliver protection from data leaks and compliance with regulations including GDPR and CCPA by proving the detection of personal identifiable information (PII) in tagged objects, JSON blurbs, stack traces, and GraphQL error messages.


We also offer night-and-day differentiation for teams switching away from their costly, error-prone, resource-heavy in-house GraphQL tools. Our users gain the comprehensive tooling and visibility required to scale their operations efficiently and confidently.


The platform’s system overview allows DevOps teams to monitor all GraphQL subgraphs and services at-a-glance, to fully understand subgraph usage patterns and service health, as well as smart widgets to quickly ameliorate issues.


We also fit nearly any deployment environment, whether as a middleware, sidecar to Kubernetes or another platform, or as a hosted or on-premise gateway.


Last but certainly not least: the Inigo platform offers the absolute best developer experience available for teams harnessing GraphQ—we understand just how critical a smooth DX is!

Our Predictions on GraphQL APIs for the Rest of 2023

We predict that the developer-led movement championing GraphQL as the replacement technology for REST APIs will only grow. Enterprise adoption of open-source GraphQL will continue its strong momentum, driven by the technology’s key advantages over REST APIs.


For example, REST APIs are heavy-handed in that they load data by accessing multiple URLs, and require server connectivity in order to manage data.


By comparison, GraphQL APIs offer the transformative advantage of collecting all the data they need in a single request and giving applications themselves direct control over their own data.


With applications no longer reliant on a server, developers can design apps that are highly responsive even with poor network connectivity, while achieving greater performance and allowing more simple, flexible, and scalable development.


Developers are increasingly eager to pursue the productivity and competitive differentiation that GraphQL-enabled API modernization enables, empowering teams to bring new application features to market that much faster than their counterparts at enterprises still utilizing REST APIs.


Our second prediction for 2023 is that organizations that adopt GraphQL will begin to hold a clear advantage when it comes to recruiting and retaining developer talent.


GraphQL’s streamlined developer experience allows developers to eliminate tedious efforts and put their talents directly to work.


That efficiency is why GraphQL’s rapid rise has been so developer-driven. Developers with the option to work either at an enterprise still wrestling with REST APIs or at a comparable organization with modernized GraphQL APIs in place will certainly prefer the latter.


That said, this prediction comes with a caveat. As a less mature technology, GraphQL demands more self-reliance from developers, and limited visibility can negatively impact the developer experience.


Therefore, expect to see enterprises bolstering GraphQL with supportive visibility and CI/CD integration tools to ensure the integrity of GraphQL’s developer experience advantages.


Teams will similarly implement robust enterprise-grade monitoring, observability, and security tooling to eliminate any potential limitations from their GraphQL deployments.

What word defines the state of GraphQL in 2023?

Maturity. (Or, if I can cheat with a hyphen, ‘enterprise-adoption.’)


A wave of enterprises from across industries are now adopting GraphQL in their production pipelines. Gartner research found that fewer than 10% of enterprises used GraphQL in production in 2021; by 2025, they predict more than half of enterprises will.


There’s just a ton of movement toward GraphQL right now.


That rapid adoption has enterprise teams focused on implementing effective control and management over their GraphQL APIs, from the perspective of collecting and harnessing valuable analytics, streamlining resource management, and providing security.


As teams seek the visibility and tooling to protect and fully realize the competitive advantage of GraphQL APIs, attackers are just as excited by new opportunities to exploit vulnerable APIs.


An API security report from Salt Labs recently highlighted a 681% increase in attacks targeting APIs over the past year.


Nearly 95% of organizations reported experiencing an API security incident in the last year as well.


With attacks only predicted to increase going forward, enterprises that have exposed themselves by implementing GraphQL without proper safeguards now need to quickly pursue active and effective GraphQL security strategies.


Enterprises new to GraphQL should similarly see these reports and recognize that GraphQL deployments and GraphQL-specific security measures must go hand in hand.

Why we decided to participate in HackerNoon's Startup of the Year awards

HackerNoon’s Startup of the Year awards celebrate and shine a light on the most innovative and groundbreaking technologies available today.


Inigo is not only the most comprehensive and capable platform solution for GraphQL-specific security and management but also an essential component technology that enables teams to securely and effectively utilize the many innovations and advantages made possible by GraphQL APIs.

Final Thoughts

As teams move forward with GraphQL, they need to verify that they have the visibility, access controls, and firewall protections in place to implement and scale GraphQL with confidence.


Inigo is the only solution available that’s ready to protect any GraphQL server with universal GraphQL-specific security layers.


Inigo also features the most comprehensive GraphQL security and management toolset available, with real-time automated attack detection and mitigation prepared to thwart query-based DDoS and injection attacks, RBAC introspection separation to enforce schema-based access control at the edge, object-based rate limiting that protects performance in the face of attacks, and data-scraping protection.


In short, teams that want to secure and manage efficient GraphQL deployments absolutely must implement Inigo or something else like it…and there’s nothing else like it.


Vote for us today here!