Security News
Another Round of TEA Protocol Spam Floods npm, But It’s Not a Worm
Recent coverage mislabels the latest TEA protocol spam as a worm. Here’s what’s actually happening.
By Philipp Burckhardt - Nov 14, 2025
@graphiql/toolkit
Advanced tools
Changelog | API Docs | NPM | Discord
@graphiql/toolkit
This is a general purpose library for building GraphQL IDEs. It's being used by
other packages like graphiql and @graphiql/react and also provides utilities
that are useful when working with these packages.
Docs
createFetcher: a utility for creating afetcherprop implementation for HTTP GET, POST including multipart, websockets fetcher- more to come!
Other packages similar to @graphiql/toolkit
graphql
The 'graphql' package is the core reference implementation of GraphQL for JavaScript. It provides the essential building blocks for creating GraphQL schemas and executing queries. While it doesn't offer the same level of integration with GraphiQL as @graphiql/toolkit, it is fundamental for any GraphQL-related development.
apollo-server
Apollo Server is a community-maintained open-source GraphQL server that works with any GraphQL schema. It provides a robust set of features for building a GraphQL API, including schema stitching, subscriptions, and more. Unlike @graphiql/toolkit, it focuses on server-side functionalities rather than client-side tools for GraphiQL.
graphql-tools
The 'graphql-tools' package offers a set of utilities for building and manipulating GraphQL schemas. It includes features like schema stitching, schema transforms, and mock data generation. While it overlaps with some functionalities of @graphiql/toolkit, it is more focused on schema management and server-side utilities.
FAQs
Utility to build a fetcher for GraphiQL
The npm package @graphiql/toolkit receives a total of 396,754 weekly downloads. As such, @graphiql/toolkit popularity was classified as popular.
We found that @graphiql/toolkit demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Package last updated on 29 May 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
PyPI Expands Trusted Publishing to GitLab Self-Managed as Adoption Passes 25 Percent
PyPI adds Trusted Publishing support for GitLab Self-Managed as adoption reaches 25% of uploads
By Sarah Gooding - Nov 14, 2025
Research
/Security News
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
By Kirill Boychenko - Nov 12, 2025