You're Invited:Meet the Socket Team at RSAC and BSidesSF 2026, March 23–26.RSVP
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@filtron/core

Package Overview
Dependencies
Maintainers
1
Versions
7
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@filtron/core

Filtron parses human-friendly filter strings into structured queries you can use anywhere — SQL databases, in-memory arrays, or your own custom backend.

Source
npmnpm
Version
1.3.1
Version published
Weekly downloads
4
-82.61%
Maintainers
1
Weekly downloads
 
Created
Source

@filtron/core

A fast, human-friendly filter language for JavaScript and TypeScript. Parse expressions like age > 18 AND verified into a type-safe AST.

npm version npm bundle size codecov

Why Filtron?

Let users filter data with readable expressions instead of building complex query UIs:

price < 100 AND category : ["electronics", "books"] AND inStock

Filtron parses these expressions into a structured AST you can use to generate SQL, filter arrays, or build custom query backends — safely, with no risk of injection attacks.

Use cases: Search UIs, API query parameters, admin dashboards, real-time data filtering.

Installation

npm install @filtron/core

Optional helpers:

  • @filtron/sql — Generate parameterized SQL WHERE clauses
  • @filtron/js — Filter JavaScript arrays in-memory

Usage

import { parse } from "@filtron/core";

const result = parse('age > 18 AND status = "active"');

if (result.success) {
  console.log(result.ast);
} else {
  console.error(result.error);
}

Syntax

// Comparisons
parse('age > 18');
parse('status = "active"');
parse('role != "guest"');

// Boolean logic
parse('age > 18 AND verified');
parse('admin OR moderator');
parse('NOT suspended');
parse('(admin OR mod) AND active');

// Field existence
parse('email?');
parse('profile EXISTS');

// Contains (substring)
parse('name ~ "john"');

// One-of (IN)
parse('status : ["pending", "approved"]');

// Ranges
parse('age = 18..65');
parse('price = 9.99..99.99');

// Nested fields
parse('user.profile.age >= 18');

Operators

OperatorMeaningExample
=, :Equalstatus = "active"
!=, !:Not equalrole != "guest"
>, >=, <, <=Comparisonage >= 18
~Containsname ~ "john"
?, EXISTSField existsemail?
..Rangeage = 18..65
: [...]One ofstatus : ["a", "b"]
AND, OR, NOTBoolean logica AND (b OR c)

API

parse(input: string): ParseResult

Parses a filter expression and returns a result object.

const result = parse('age > 18');

if (result.success) {
  result.ast;   // ASTNode
} else {
  result.error; // string
}

parseOrThrow(input: string): ASTNode

Parses a filter expression, throwing on invalid input.

try {
  const ast = parseOrThrow('age > 18');
} catch (error) {
  console.error(error.message);
}

Types

All AST types are exported for building custom consumers:

import type {
  ParseResult,
  ASTNode,
  AndExpression,
  OrExpression,
  NotExpression,
  ComparisonExpression,
  ExistsExpression,
  BooleanFieldExpression,
  OneOfExpression,
  NotOneOfExpression,
  RangeExpression,
  Value,
  ComparisonOperator,
  StringValue,
  NumberValue,
  BooleanValue,
  IdentifierValue,
} from "@filtron/core";

AST structure

Node TypeFieldsExample input
andleft, righta AND b
orleft, righta OR b
notexpressionNOT a
comparisonfield, operator, valueage > 18
existsfieldemail?
booleanFieldfieldverified
oneOffield, valuesstatus : ["a", "b"]
notOneOffield, valuesstatus !: ["a", "b"]
rangefield, min, maxage = 18..65

Example output:

parse('age > 18 AND status = "active"')

// Returns:
{
  success: true,
  ast: {
    type: "and",
    left: {
      type: "comparison",
      field: "age",
      operator: ">",
      value: { type: "number", value: 18 }
    },
    right: {
      type: "comparison",
      field: "status",
      operator: "=",
      value: { type: "string", value: "active" }
    }
  }
}

Performance

Hand-written recursive descent parser. ~9 KB minified, zero dependencies.

Query complexityParse timeThroughput
Simple~90-250ns4-11M ops/sec
Medium~360-870ns1.1-2.8M ops/sec
Complex~0.9-1.5μs650K-1.1M ops/sec

License

MIT

Keywords

filter
filtering
filtron
parser
query
query-language

FAQs

Package last updated on 02 Jan 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Trivy Under Attack Again: Widespread GitHub Actions Tag Compromise Exposes CI/CD Secrets

Research

/

Security News

Trivy Under Attack Again: Widespread GitHub Actions Tag Compromise Exposes CI/CD Secrets

Attackers compromised Trivy GitHub Actions by force-updating tags to deliver malware, exposing CI/CD secrets across affected pipelines.

By Philipp Burckhardt  -  Mar 20, 2026