Gathering detailed insights and metrics for koa-bodyparser
Gathering detailed insights and metrics for koa-bodyparser
Installations
npm install koa-bodyparserDeveloper Guide
BETA
Typescript
No
Module System
CommonJS
Min. Node Version
>=8.0.0
Node Version
18.16.0
NPM Version
6.14.18
Score
97.6
Supply Chain
98.9
Quality
77.4
Maintenance
100
Vulnerability
100
License
Languages
1
TypeScript
TypeScript (100%)
Developer
koajs
Download Statistics
Total Downloads
156,195,083
Last Day
35,108
Last Week
623,828
Last Month
2,754,708
Last Year
30,768,704
GitHub Statistics
MIT License
1,320 Stars
116 Commits
121 Forks
20 Watchers
5 Branches
37 Contributors
Updated on Jun 05, 2025
Bundle Size
458.69 kB
Minified
191.22 kB
Minified + Gzipped
Maintainers
2
Package Meta Information
Latest Version
4.4.1
Package Id
koa-bodyparser@4.4.1
Unpacked Size
14.69 kB
Size
5.69 kB
File Count
5
NPM Version
6.14.18
Node Version
18.16.0
Published on
Jun 22, 2023
Total Downloads
Cumulative downloads
Total Downloads
156,195,083
Last Day
-0.1%
35,108
Compared to previous day
Last Week
-8%
623,828
Compared to previous week
Last Month
0.1%
2,754,708
Compared to previous month
Last Year
7.8%
30,768,704
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
koa-bodyparser
A body parser for koa, based on co-body. support json, form and text type body.
Notice: this module doesn't support parsing multipart format data, please use
@koa/multerto parse multipart format data.
Install
Usage
1const Koa = require('koa'); 2const bodyParser = require('koa-bodyparser'); 3 4const app = new Koa(); 5app.use(bodyParser()); 6 7app.use(async ctx => { 8 // the parsed body will store in ctx.request.body 9 // if nothing was parsed, body will be an empty object {} 10 ctx.body = ctx.request.body; 11});
Options
-
enableTypes: parser will only parse when request type hits enableTypes, support
json/form/text/xml, default is['json', 'form']. -
encoding: requested encoding. Default is
utf-8byco-body. -
formLimit: limit of the
urlencodedbody. If the body ends up being larger than this limit, a 413 error code is returned. Default is56kb. -
jsonLimit: limit of the
jsonbody. Default is1mb. -
textLimit: limit of the
textbody. Default is1mb. -
xmlLimit: limit of the
xmlbody. Default is1mb. -
strict: when set to true, JSON parser will only accept arrays and objects. Default is
true. See strict mode inco-body. In strict mode,ctx.request.bodywill always be an object(or array), this avoid lots of type judging. But text body will always return string type. -
detectJSON: custom json request detect function. Default is
null.1app.use(bodyParser({ 2 detectJSON: function (ctx) { 3 return /\.json$/i.test(ctx.path); 4 } 5})); -
extendTypes: support extend types:
1app.use(bodyParser({ 2 extendTypes: { 3 json: ['application/x-javascript'] // will parse application/x-javascript type body as a JSON string 4 } 5})); -
onerror: support custom error handle, if
koa-bodyparserthrow an error, you can customize the response like:1app.use(bodyParser({ 2 onerror: function (err, ctx) { 3 ctx.throw(422, 'body parse error'); 4 } 5})); -
disableBodyParser: you can dynamic disable body parser by set
ctx.disableBodyParser = true.1app.use(async (ctx, next) => { 2 if (ctx.path === '/disable') ctx.disableBodyParser = true; 3 await next(); 4}); 5app.use(bodyParser());
Raw Body
You can access raw request body by ctx.request.rawBody after koa-bodyparser when:
koa-bodyparserparsed the request body.ctx.request.rawBodyis not present beforekoa-bodyparser.
Koa 1 Support
To use koa-bodyparser with koa@1, please use bodyparser 2.x.
1npm install koa-bodyparser@2 --save
Licences
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
no dangerous workflow patterns detected
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/koajs/.github/SECURITY.md:1
- Info: Found linked content: github.com/koajs/.github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/koajs/.github/SECURITY.md:1
- Info: Found text in security policy: github.com/koajs/.github/SECURITY.md:1
Reason
6 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5
Reason
Found 13/30 approved changesets -- score normalized to 4
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/koajs/bodyparser/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/koajs/bodyparser/ci.yml/master?enable=pin
- Info: 0 out of 2 GitHub-owned GitHubAction dependencies pinned
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/ci.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 16 are checked with a SAST tool
Score
5.4
/10
Last Scanned on 2025-06-30
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More