Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
vue-files-preview
Advanced tools
This project is dedicated to previewing any file format on the Vue3
framework, supporting file previews such as docx, xlsx, pdf, image, txt, epub, markdown, code, etc
Project repository: https://github.com/SmallTeddy/vue-files-preview
🎩 From v1.0, it only works for Vue 3
# npm install
npm i vue-files-preview
# yarn install
yarn add vue-files-preview
# pnpm install
pnpm i vue-files-preview
Be pending
Using Vue Office to implement preview of doc, excel, and pdf files
Due to the inability of native audio and video tags to support more audio and video formats
The audio is temporarily using vue-audio-player to implement
The video is temporarily using vue3-video-player to implement
using native img tags to implement image preview
using codemirror to adapt the code file preview, support Angular, CSS, C++, Go, HTML, Java, JavaScript, JSON, Liquid, Markdown, PHP, Python, Rust, Sass, Vue, XML, YAML, C#, CMake, CoffeeScript, Dart, Elixir, GLSL, Haskell, Lua, Objective-C, R, Ruby, Scala, Shell, Swift, TeX, TypeScript, Visual Basic
code file preview
I have tried using both the marked and commonmark.js tool libraries for simple implementation, and ultimately adopted the markdown-it tool library
Currently, there may still be issues with formulas and other aspects, which will be further optimized in the future
using epubjs to adapt to EPUB file preview and configure page-flipping function for secondary development
FAQs
A tool for previewing files such as doc, excel, pdf, image, markdown, txt, audio, and video and so on.
The npm package vue-files-preview receives a total of 213 weekly downloads. As such, vue-files-preview popularity was classified as not popular.
We found that vue-files-preview demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.