Security News
Django Joins curl in Pushing Back on AI Slop Security Reports
Django has updated its security policies to reject AI-generated vulnerability reports that include fabricated or unverifiable content.
By Sarah Gooding - Jun 30, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
gulp-xml-transformer
Advanced tools
gulp-xml-transformer
Transform xml documents gulp plugin
Install
$ npm install --save-dev gulp-xml-transformer
Usage
import xmlTransformer from "gulp-xml-transformer";
/*
* edit XML document by using user specific object
*/
gulp.src("./manifest.xml")
.pipe(xmlTransformer([
{ path: '//name', text: 'new names' },
{ path: '//version', attr: { 'major': '2' } }
]))
.pipe(gulp.dest("./dest"));
/*
* attributes can be functions too
*/
gulp.src("./manifest.xml")
.pipe(xmlTransformer([
{ path: '//version', attr: { 'major': val => parseInt(val, 10) + 1 } }
])
.pipe(gulp.dest("./dest"));
/*
* edit XML document by using user specific object using a namespace
*/
gulp.src("./manifest.xml")
.pipe(xmlTransformer([
{ path: '//xmlns:name', text: 'new names' },
{ path: '//xmlns:version', attr: { 'major': '2' } }
], 'http://www.w3.org/ns/widgets'))
.pipe(gulp.dest("./dest"));
/*
* edit XML document by using user specific object using a custom namespace
*/
gulp.src("./manifest.xml")
.pipe(xmlTransformer([
{ path: '//a:name', text: 'new names' },
{ path: '//a:version', attr: { 'major': '2' } }
], { a: 'http://www.w3.org/ns/widgets' }))
.pipe(gulp.dest("./dest"));
/*
* edit XML document by using user specific function
*/
gulp.src("./manifest.xml")
.pipe(xmlTransformer((xml, libxmljs) => {
// 'xml' is libxmljs Document object.
xml.get('//key[./text()="Version"]').nextElement().text('2.0.0');
// 'libxmljs' is libxmljs object. you can call any libxmljs function.
const child = new libxmljs.Element(xml, 'note');
child.text('some text');
xml.get('//description').addChild(child);
// must return libxmljs Document object.
return xml;
}))
.pipe(gulp.dest("./dest"));
/*
* edit XML document with an async function
*/
gulp.src("./manifest.xml")
.pipe(xmlTransformer((xml, libxmljs) => {
// 'xml' is libxmljs Document object.
xml.get('//key[./text()="Version"]').nextElement().text('2.0.0');
// 'libxmljs' is libxmljs object. you can call any libxmljs function.
const child = new libxmljs.Element(xml, 'note');
child.text('some text');
xml.get('//description').addChild(child);
// must return libxmljs Document object.
return Promise.resolve(xml);
}))
.pipe(gulp.dest("./dest"));
Note
Please see libxmljs wiki page to get more information about libxmljs API.
Based on gulp-xml-editor.
API
xmlTransformer(transformations, nsUri)
transformations
Type: Object | Array<Object> | Function
The objects must be one of following.
// to modify(or add) the text of the element
{ path: 'xpath to the element', text: 'new text value' }
// to modify(or add) a attribute of the element
{ path: 'xpath to the element', attr: { 'attrName': 'attrValue' } }
// to modify(or add) some attributes of the element
{
path: 'xpath to the element',
attrs: [
{ 'attrName1': 'attrValue1' },
{ 'attrName2': 'attrValue2' }
]
}
// alternatively
{
path: 'xpath to the element',
attrs: {
'attrName1': 'attrValue1',
'attrName2': 'attrValue2',
}
}
// if the new value of the attribute depends on the old value, pass in a function
{
path: 'xpath to the element',
attrs: {
'foo': oldVal => oldVal.replace('bar', 'baz'),
}
}
// if you don't want an error to be thrown when the xpath doesn't match
{
path: 'xpath that doesn\'t match',
isMandatory: false,
attrs: {
'attrName1': 'attrValue1',
'attrName2': 'attrValue2',
}
}
The if a function is supplied, it must have the following signature: function (doc, [libxmljs]) {}, and must return a libxmljs Document object. The doc argument is a libxmljs Document object, and the libxmljs argument is libxmljs object.
nsUri
Type: Object | string
A string representing the Namespace URI of the elements to transform, or an object literal with namespaces.
License
See the LICENSE file for license rights and limitations (MIT).
Keywords
FAQs
Gulp plugin for transforming xml content
The npm package gulp-xml-transformer receives a total of 167 weekly downloads. As such, gulp-xml-transformer popularity was classified as not popular.
We found that gulp-xml-transformer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 01 May 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
ECMAScript 2025 Finalized with Iterator Helpers, Set Methods, RegExp.escape, and More
ECMAScript 2025 introduces Iterator Helpers, Set methods, JSON modules, and more in its latest spec update approved by Ecma in June 2025.
By Sarah Gooding - Jun 26, 2025
Security News
Node.js Homepage Adds Paid Support Link, Prompting Contributor Pushback
A new Node.js homepage button linking to paid support for EOL versions has sparked a heated discussion among contributors and the wider community.
By Sarah Gooding - Jun 25, 2025