Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
The moment npm package is a JavaScript library for parsing, validating, manipulating, and formatting dates. It is widely used for handling dates and times in Node.js and browser applications.
Parsing
Parse a date string into a moment object.
moment('2023-04-05')
Validation
Check if a date is valid.
moment('2023-04-05').isValid()
Manipulation
Manipulate dates by adding time to the current date.
moment().add(7, 'days')
Formatting
Format a moment date object into a string in a specified format.
moment().format('YYYY-MM-DD')
Query
Query dates to compare them.
moment().isBefore('2023-12-25')
Provides a collection of simple, pure functions for manipulating JavaScript dates. It is modular, allowing you to pick and choose which functions you need, and is generally considered to be a lighter-weight alternative to moment.
Created by one of the original Moment.js team members, Luxon is a modern library for working with dates and times. It offers a fluent API and aims to have a smaller footprint than moment.
Day.js is a minimalist JavaScript library that parses, validates, manipulates, and displays dates and times for modern browsers with a largely Moment.js-compatible API. It is lightweight and its API is designed to be familiar to Moment.js users.
A lightweight javascript date library for parsing, validating, manipulating, and formatting dates.
There are a number of small backwards incompatible changes with version 2.0.0.
See them and their descriptions here
Changed language ordinal method to return the number + ordinal instead of just the ordinal.
Changed two digit year parsing cutoff to match strptime.
Removed moment#sod
and moment#eod
in favor of moment#startOf
and moment#endOf
.
Removed moment.humanizeDuration()
in favor of moment.duration().humanize()
.
Removed the lang data objects from the top level namespace.
Duplicate Date
passed to moment()
instead of referencing it.
You need node, use nvm or nenv to install it.
Then, in your shell
git clone https://github.com/moment/moment.git
cd moment
npm install -g grunt-cli
npm install
git checkout develop # all patches against develop branch, please!
grunt # this runs tests and jshint
languages
features
18 bugs fixed
languages
bugfixes
testing
New languages
Features
22 bugfixes
Removed a trailing comma [1169] and fixed a bug with months
, weekdays
getters #1171.
Changed isValid, added strict parsing. Week tokens parsing.
Fixed bug in string prototype test. Updated authors and contributors.
Added bower support.
Language files now use UMD.
Creating moment defaults to current date/month/year.
Added a bundle of moment and all language files.
Added better week support.
Added ability to set offset with moment#zone
.
Added ability to set month or weekday from a string.
Added moment#min
and moment#max
Added short form localized tokens.
Added ability to define language a string should be parsed in.
Added support for reversed add/subtract arguments.
Added support for endOf('week')
and startOf('week')
.
Fixed the logic for moment#diff(Moment, 'months')
and moment#diff(Moment, 'years')
moment#diff
now floors instead of rounds.
Normalized moment#toString
.
Added isSame
, isAfter
, and isBefore
methods.
Added better week support.
Added moment#toJSON
Bugfix: Fixed parsing of first century dates
Bugfix: Parsing 10Sep2001 should work as expected
Bugfix: Fixed wierdness with moment.utc()
parsing.
Changed language ordinal method to return the number + ordinal instead of just the ordinal.
Changed two digit year parsing cutoff to match strptime.
Removed moment#sod
and moment#eod
in favor of moment#startOf
and moment#endOf
.
Removed moment.humanizeDuration()
in favor of moment.duration().humanize()
.
Removed the lang data objects from the top level namespace.
Duplicate Date
passed to moment()
instead of referencing it.
Bugfixes
Bugfixes
Added moment.fn.endOf()
and moment.fn.startOf()
.
Added validation via moment.fn.isValid()
.
Made formatting method 3x faster. http://jsperf.com/momentjs-cached-format-functions
Add support for month/weekday callbacks in moment.fn.format()
Added instance specific languages.
Added two letter weekday abbreviations with the formatting token dd
.
Various language updates.
Various bugfixes.
Added Durations.
Revamped parser to support parsing non-separated strings (YYYYMMDD vs YYYY-MM-DD).
Added support for millisecond parsing and formatting tokens (S SS SSS)
Added a getter for moment.lang()
Various bugfixes.
There are a few things deprecated in the 1.6.0 release.
The format tokens z
and zz
(timezone abbreviations like EST CST MST etc) will no longer be supported. Due to inconsistent browser support, we are unable to consistently produce this value. See this issue for more background.
The method moment.fn.native
is deprecated in favor of moment.fn.toDate
. There continue to be issues with Google Closure Compiler throwing errors when using native
, even in valid instances.
The way to customize am/pm strings is being changed. This would only affect you if you created a custom language file. For more information, see this issue.
Added UTC mode.
Added automatic ISO8601 parsing.
Various bugfixes.
Added moment.fn.toDate
as a replacement for moment.fn.native
.
Added moment.fn.sod
and moment.fn.eod
to get the start and end of day.
Various bugfixes.
Added support for parsing month names in the current language.
Added escape blocks for parsing tokens.
Added moment.fn.calendar
to format strings like 'Today 2:30 PM', 'Tomorrow 1:25 AM', and 'Last Sunday 4:30 AM'.
Added moment.fn.day
as a setter.
Various bugfixes
Added timezones to parser and formatter.
Added moment.fn.isDST
.
Added moment.fn.zone
to get the timezone offset in minutes.
Various bugfixes
Added time specific diffs (months, days, hours, etc)
Added moment.fn.format
localized masks. 'L LL LLL LLLL' issue 29
Fixed issue 31.
Added moment.version
to get the current version.
Removed window !== undefined
when checking if module exists to support browserify. issue 25
Added convenience methods for getting and setting date parts.
Added better support for moment.add()
.
Added better lang support in NodeJS.
Renamed library from underscore.date to Moment.js
Added Portuguese, Italian, and French language support
Added _date.lang() support. Added support for passing multiple formats to try to parse a date. _date("07-10-1986", ["MM-DD-YYYY", "YYYY-MM-DD"]); Made parse from string and single format 25% faster.
Bugfix for issue 8 and issue 9.
Bugfix for issue 5.
Dropped the redundant _date.date()
in favor of _date()
.
Removed _date.now()
, as it is a duplicate of _date()
with no parameters.
Removed _date.isLeapYear(yearNumber)
. Use _date([yearNumber]).isLeapYear()
instead.
Exposed customization options through the _date.relativeTime
, _date.weekdays
, _date.weekdaysShort
, _date.months
, _date.monthsShort
, and _date.ordinal
variables instead of the _date.customize()
function.
Added date input formats for input strings.
Added underscore.date to npm. Removed dependencies on underscore.
Added 'z'
and 'zz'
to _.date().format()
. Cleaned up some redundant code to trim off some bytes.
Cleaned up the namespace. Moved all date manipulation and display functions to the _.date() object.
Switched to the Underscore methodology of not mucking with the native objects' prototypes. Made chaining possible.
Changed date names to be a more pseudo standardized 'dddd, MMMM Do YYYY, h:mm:ss a'.
Added Date.prototype
functions add
, subtract
, isdst
, and isleapyear
.
Changed function names to be more concise. Changed date format from php date format to custom format.
Initial release
Moment.js is freely distributable under the terms of the MIT license.
2.6.0 See changelog
languages
features
18 bugs fixed
FAQs
Parse, validate, manipulate, and display dates
The npm package moment receives a total of 17,043,887 weekly downloads. As such, moment popularity was classified as popular.
We found that moment demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.