Product
Introducing Data Exports
Export Socket alert data to your own cloud storage in JSON, CSV, or Parquet, with flexible snapshot or incremental delivery.
By Ola Adekola - Apr 23, 2026
Launch Week Day 4: Introducing Data Exports.Learn More →
next-api-builder
Advanced tools
Next.js API Builder
An easy way to build API routes in Next.js with the right defaults.
Features:
- Fully typed with TypeScript
- Built-in schema validation with Zod
- Automatic
400: Bad Requestresponse when a Zod schema is supplied and the input data fails validation - Automatic
OPTIONSresponse based on defined HTTP methods - Automatic
HEADresponse based on your definedGEThandler - Automatic
405: Method Not Foundresponse for requests to methods not handled
Installation
Install with NPM:
npm i next-api-builder
Or with Yarn:
yarn add next-api-builder
Usage
import { apiRoute } from 'next-api-builder';
import type { NextApiRequest, NextApiResponse } from 'next/types';
export default apiRoute()
.get(async (req: NextApiRequest, res: NextApiResponse) => {
return { foo: 'bar!' };
})
.post(async (req: NextApiRequest, res: NextApiResponse) => {
// Insert data into some DB...
return req.body || { id: 0, title: 'Sample record' };
});
Using Zod.js for Runtime Validation
Next API builder uses Zod for runtime validation of a request body and/or query string parameters.
You can use a second optional object literal parameter when defining routes to supply a Zod schema.
validateBody- Parse the body as an object (from JSON, etc.) and run validations on itvalidateQuery- Parse the query string and run validations on it
import { apiRoute } from 'next-api-builder';
import type { NextApiRequest, NextApiResponse } from 'next/types';
const schema = z.object({
name: z.string(),
email: z.string().email(),
});
type TSchema = z.infer<typeof schema>;
export default apiRoute().post(
async (req: NextApiRequest, res: NextApiResponse, data: TSchema) => {
// Insert data into some DB...
return data || { id: 0, title: 'Sample record' };
},
{ validateBody: schema }, // Use 'validateBody' or 'validateQuery' with a Zod schema object
);
If the incoming HTTP Request fails validation, a 400: Bad Request will be returned to the user with the field level
errors and messages returned from Zod, formatted to JSON.
FAQs
An easy way to build API routes in Next.js with the right defaults.
We found that next-api-builder demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 10 Apr 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
Bitwarden CLI 2026.4.0 was compromised in the Checkmarx supply chain campaign after attackers abused a GitHub Action in Bitwarden’s CI/CD pipeline.
By Socket Research Team - Apr 23, 2026
Research
/Security News
Malicious Checkmarx Artifacts Found in Official KICS Docker Repository and Code Extensions
Docker and Socket have uncovered malicious Checkmarx KICS images and suspicious code extension releases in a broader supply chain compromise.
By Socket Research Team - Apr 22, 2026