
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
Converts pptx
(*.pptx, *.ppt, *.odp) to pdf
and/or png
.
# install globally to use on the command-line
npm install -g pptx2pdf
# install locally to use a library
npm install --save pptx2pdf
pptx2pdf
requires libreoffice and imagemagick and might require ghostscript.
ubuntu/debian
sudo apt install libreoffice
sudo apt install imagemagick
sudo apt install ghostscript # was NOT required
macos
brew cask install libreoffice
brew install imagemagick
brew install ghostscript # WAS required
$ pptx2png --help
pptx2png [options] [input-file]
Options:
--input, -i input file
--output-dir, -o where your file will be placed [default: "."]
--filename, -f override output filename
--libreoffice-bin, -l override the libreoffice path
--png, -p output png instead [boolean] [default: false]
--remove-pdf, -r delete pdf file when outputting png
[boolean] [default: false]
--help Show help [boolean]
--version Show version number [boolean]
# convert to pdf
pptx2pdf input.pptx
# convert to png
pptx2pdf input.pptx --png
I needed convert PowerPoint into pdf or pdf. I found the following projects:
Both require unoconv and LibreOffice (or OpenOffice) however it didn't work with the latest version of Libreoffice. I assume it was because of a older version of unoconv/libreoffice. However, the latest version of libreoffice can convert to pdf on the command-line, please see below.
libreoffice --headless \
--invisible \
--convert-to pdf \
--outdir <outputDir> \
inputPath
FAQs
Export PowerPoint to PDF and/or PNG
The npm package pptx2pdf receives a total of 831 weekly downloads. As such, pptx2pdf popularity was classified as not popular.
We found that pptx2pdf demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A malicious package uses a QR code as steganography in an innovative technique.
Research
/Security News
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
Application Security
/Research
/Security News
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.