Version 16.12.0 • License MIT
One-Line Verdict
"Heavy install size detected. Review bloat risk."
Caution
Actively Maintained
1 CVE History
Historical vulnerabilities found.
1.3 MB
Heavy: 1.3 MB
26,208,410
Highly Trusted
Package Payload
0 Direct
Clean dependency structure.
Cold-Start Impact
+20 ms
Estimated execution overhead on standard hardware.
Current Threat Level
Risk Detected
Our audit detected 1 active or historical security flags. Critical CVEs have been mapped to this library.
Accuracy Protocol
Scanned against OSV.dev (Google Open Source) databases. Last Deep-Scan: 2026.
Is graphql too heavy? Compare it with these industry standards:
"A Query Language and Runtime which can target any service."
graphql is used to facilitate high-performance Node.js workflows. It provides a robust footprint of 1.3 MB on disk.
# Install via NPM
npm install graphql
# Install via Yarn
yarn add graphql
You are currently viewing a proprietary security audit for graphql on PAudit. We aggregate global databases to provide a safety rating of 65/100.
Run npm install graphql. This installs version 16.12.0 and adds 0 direct dependencies to your project.
Yes, graphql records 26,208,410 weekly downloads, making it a Highly Trusted part of the ecosystem.