Research
2025 Report: Destructive Malware in Open Source Packages
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
By Kush Pandya - Dec 24, 2025
xml-mapping
Advanced tools
xml2json and json2xml for NodeJS
It's native javascript implementation of a bidirectional converter between XML and JS data structure (aka JSON). You can convert any type of XML documents in an Javascript data structure. You can also do the reverse, converting a Javascript data structure in XML String. XML is still valid.
Contributors
Installation
With npm do:
$ npm install xml-mapping
Usage
var xm = require('xml-mapping');
var json = xm.load('<key>value</key>');
var xml = xm.dump(json);
console.log(xml,json);
console.log(json);
Output:
<key>value</key> { key: { '$t': 'value' } }
Convention
The rules for converting XML to JSON are those used by Google in its GData protocol. More information here : http://code.google.com/apis/gdata/docs/json.html
Tests
Use nodeunit to run the tests.
$ npm install nodeunit
$ nodeunit test
API Documentation
load(String xml, Object options)
Transform a string with XML in Javascript data structure (JSON). Return Object.
###Options
Warning : options break the symmetry. This means that the JSON generated may not reproduce the same XML
throwErrors- boolean - Flag to throw errors of the SAX Parser ; default : falsenested- boolean - Flag to ignore nested tags inside text : default : falsecomments- boolean - Flag to ignore comments, if false all the comments will be ignored : default : true
var xml = '<title>Title is <strong>important</strong></title>';
var json = XMLMapping.load(xml, { nested: true });
console.log(json);
// Should output:
// { title : { $t : 'Title is<strong>important</strong>', strong: { '$t': 'important' }} }
arrays- array - an array of basic XPath strings that specify XML nodes that should be array, even when there is only one such node.
var xml = '<key1>value1</key1><key2><key3>value3</key3></key2>';
var json = XMLMapping.load(xml, {
arrays: [
'/key1',
'/key2/key3'
]
});
console.log(json);
// Should output:
// (Note that value of key1 and key3 are arrays, as specified in options)
// {"key1":[{"$t":"value1"}],"key2":{"key3":[{"$t":"value3"}]}}
dump(Object json)
Transform a Javascript data structure (JSON) in XML string. Return String.
tojson(String xml)
Alias of load.
toxml(Object json)
Alias of dump.
Also
License
FAQs
provide a bidirectionnal mapping between XML and JS data Structure (aka JSON)
The npm package xml-mapping receives a total of 1,271 weekly downloads. As such, xml-mapping popularity was classified as popular.
We found that xml-mapping demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 12 Nov 2013
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Engineering with AI Podcast: The Promise of AI-First Development
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.
By Sarah Gooding - Dec 24, 2025
Research
/Security News
Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations
A five-month operation turned 27 npm packages into durable hosting for browser-run lures that mimic document-sharing portals and Microsoft sign-in, targeting 25 organizations across manufacturing, industrial automation, plastics, and healthcare for credential theft.
By Nicholas Anderson, Kirill Boychenko - Dec 23, 2025