
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
vue-time-range-picker
Advanced tools

npm i vue-time-range-picker -d
或者使用yarn
yarn add vue-time-range-picker
import Range from 'vue-time-range-picker'
...
components: {Range},
...
类型:Array
给定一个时间区间:比如['2019-08-01', '2019-10-01']
类型:Boolean
是否显示日期选择器
类型:Number
最大显示天数
类型:String
起始时间描述
类型:String
结束时间描述
类型:Boolean
选择完成后是否关闭选择器
类型数组
自定义第三个节日或者提醒事项 注意日期要有准确,比如 一月一号 应该是 01-01 不是 1-1
[
{
date: '2022-01-01',
message: '元旦',
color: 'red'
}
]
返回参数
start 开始时间 end 结束时间 list 时间列表
FAQs

We found that vue-time-range-picker demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.