
Security News
Risky Biz Podcast: AI Agents Are Raising the Stakes for Software Supply Chain Security
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.
@antstackio/graphql-body-parser
Advanced tools
Parses and exposes the graphql query as graphql object in the request. Works as an express middleware, and build on top of body-parser module. As of now it only works with graphql request send with application/json as Content-Type.
It looks for query and variable object in request body, and then parses the query into its AST. It then attaches both
the AST object as well as variables to req as gqlObject property.
Request Body
{
"query": "query($name: String) {
hello(name: $name){
name
}
}",
"variables": {
"name": "khubo"
}
}
the parsed AST and variable will be attached as follows
req.gqlObject
{
"operation": {
"kind": "Document",
"definitions": [
{
"kind": "OperationDefinition",
"operation": "query",
"variableDefinitions": [
{
"kind": "VariableDefinition",
"variable": {
"kind": "Variable",
"name": {
"kind": "Name",
"value": "name"
}
},
"type": {
"kind": "NamedType",
"name": {
"kind": "Name",
"value": "String"
}
},
"directives": []
}
],
"directives": [],
"selectionSet": {
"kind": "SelectionSet",
"selections": [
{
"kind": "Field",
"name": {
"kind": "Name",
"value": "hello"
},
"arguments": [
{
"kind": "Argument",
"name": {
"kind": "Name",
"value": "name"
},
"value": {
"kind": "Variable",
"name": {
"kind": "Name",
"value": "name"
}
}
}
],
"directives": [],
"selectionSet": {
"kind": "SelectionSet",
"selections": [
{
"kind": "Field",
"name": {
"kind": "Name",
"value": "name"
},
"arguments": [],
"directives": []
}
]
}
}
]
}
}
],
"loc": {
"start": 0,
"end": 94
}
},
"variables": {
"name": "khubo"
}
}
$ npm install @antstackio/graphql-body-parser
$ yarn add @antstackio/graphql-body-parser
This can be used instead of normal json parser used with express
import * as express from "express";
import * as gqlParser from "@antstackio/graphql-body-parser";
const app = express();
app.use(gqlParser());
app.listen(process.env.PORT, () => {
logger.info(`Node app running on port ${process.env.PORT} 🚀🚀`);
});
FAQs
an express graphql parser middleware
The npm package @antstackio/graphql-body-parser receives a total of 26 weekly downloads. As such, @antstackio/graphql-body-parser popularity was classified as not popular.
We found that @antstackio/graphql-body-parser demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.

Research
/Security News
Miasma Mini Shai-Hulud hits @immobiliarelabs Backstage plugins, targeting GitLab and LDAP auth packages on npm.