Security News
Crates.io Users Targeted by Phishing Emails
The Rust Security Response WG is warning of phishing emails from rustfoundation.dev targeting crates.io users.
By Sarah Gooding - Sep 12, 2025
qs2mongo
Querystring to mongo mapper
Builds filters, projections and options for mongoose queries
- In your querystring:
attributes=comma,separated,fieldsmaps to projection{ comma: 1, separated: 1, fields: 1 }limit=1,offset=2maps to options{ limit: 1, offset: 2 }- Sorts
- Ascending:
sort=fieldmaps to options{ sort: { field: 1 } } - Descending:
sort=-fieldmaps to options{ sort: { field: -1 } }
- Ascending:
- Any other key maps to a mongo filter. Available options are:
- strict:
key=valueis{ key: value } - not strict:
key=valueis{ key: /value/gi } - $or:
key,anotherKey=valueis$or: [{key:value}, {anotherKey:value}] - $in :
key__in=a,b,ciskey: $in: ["a","b","c"] - unary operators:
key__gt=valueis{key: { $gt: "value"} }
- strict:
Basic usage
Qs2Mongo = require ("qs2mongo")
#Bind types to mongoose schema
qs2mongo = Qs2Mongo.MongooseSchema YourMongooseSchema, {...otherOptions...}
#Or manually specify types
qs2mongo = Qs2Mongo.ManualSchema {
filterableBooleans,
filterableNumbers,
filterableDates,
filterableObjectIds
}, {...otherOptions...}
#...
anEndpoint: (req, res): =>
{ filters, projection, options } = qs2mongo.parse req
Usage as middleware
Qs2Mongo = require ("qs2mongo")
config = ...
qs2mongo = new Qs2Mongo config
#...
router.use qs2mongo.middleware
#...
anEndpoint: (req, res): =>
{ filters, projection, options } = req.mongo
Config
{
defaultSort,
idField = "id",
multigetIdField = "_id",
omitableProperties = Qs2Mongo.defaultOmitableProperties
}
Advanced
Default driver is mongodb. If you'd like to use a custom mongodb driver, you must provide your own type conversion implementation as follows:
{
toObjectId: (it) -> #your conversion
toNumber: (it) -> #your conversion
toBoolean: (it) -> #your conversion
toDate: (it) -> #your conversion
}
Note: Your conversion must return the properly converted value if it is valid or undefined otherwise.
Specify the path to your implementation in process.env.QS_TRANSFORMER_DRIVER
FAQs
qs2mongo
The npm package qs2mongo receives a total of 477 weekly downloads. As such, qs2mongo popularity was classified as not popular.
We found that qs2mongo demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 07 Aug 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Introducing Custom Pull Request Alert Comment Headers
Socket now lets you customize pull request alert headers, helping security teams share clear guidance right in PRs to speed reviews and reduce back-and-forth.
By André Staltz - Sep 12, 2025
Product
Rust Support Now in Beta
Socket's Rust support is moving to Beta: all users can scan Cargo projects and generate SBOMs, including Cargo.toml-only crates, with Rust-aware supply chain checks.
By Mikola Lysenko, Trevor Norris - Sep 11, 2025