gateway

Just a suggestion.

I feel like Armeria's CookieBuilder makes it too easy to create an insecure service. Default of secure, http only, same site cookies and requiring a user to explicitly opt out would help prevent accidental cookie leaks without a real UX penalty when the use case does need something more lax.

Is your feature request related to a problem? Please describe.

As observed during #261, users can accidentally set timeouts inconsistently. A concrete example is that one can set a User facing timeout lower than any backend timeout, such that requests may fail early.

Describe the solution you'd like

We should provide some sanity checking to prevent unintended timeout behavior.

I have been looking into the following reported issue: mercurius-js/auth#32 (comment)

And have replicated with the following test:

test('errors - should use statusCode from error if present', async (t) => {
  const schema = `
    type Query {
      error: String!
    }
  `

  const resolvers = {
    Query: {
      error () {
        thr

Is there a plan to build kernelspec with pytorch support? If not, what's the right way to contribute?
The contribution instruction page seems to be not available: https://jupyter.readthedocs.io/en/latest/contributor/content-contributor.html