
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
chartbuilder
Advanced tools
Chartbuilder is a front-end charting application that facilitates easy creation of simple beautiful charts.
Chartbuilder is the user and export interface. D4 is the default charting framework. Chartbuilder powers all chart creation on Atlas, a charting platform developed by Quartz.
Chartbuilder is the final step in charting to create charts in a consistent predefined style. Paste data into it and export the code to draw a mobile friendly responsive chart or a static svg or png chart.
Other than Quartz, customized Chartbuilder created charts have been seen in many publications:
If you are not interested in customizing the styles of your charts use the hosted version: http://quartz.github.io/Chartbuilder/build
To work on the Chartbuilder code, first download the project and install dependencies:
####Download via github
cd ~/Downloads/Chartbuilder-master/
)npm install
npm run dev
####Making a chart with Charbuilder
####Customizing your Chartbuilder
Run the full test suite with npm test
(requires phantomjs 2.0 or greater).
Fore more output, or if you don't have phantomjs 2+ handy, you may run npm run test-js-browser
and/or npm run test-jsx-browser
and open the URL that
testling gives you.
FAQs
Easily create beautiful charts
The npm package chartbuilder receives a total of 1 weekly downloads. As such, chartbuilder popularity was classified as not popular.
We found that chartbuilder demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.