Security News
Follow-up and Clarification on Recent Malicious Ruby Gems Campaign
A clarification on our recent research investigating 60 malicious Ruby gems.
By Sarah Gooding - Aug 22, 2025
clockpunch
Time Parsing
This library comprises the following pieces:
- Functions for parsing hour:minute strings and outputing minutes, and vice versa
- A jQuery plugin that binds to an input's change event to automatically update it to the H:MM format and store the integer minute value in a hidden field.
- A gem that you can use with Rails to include the library through the asset pipeline
Parsing
var parser = new TimeParser()
parser.to_minutes("1:27") // returns 87
Examples and rules
| Input | Output in minutes | |
|---|---|---|
| 1:00 | 1 hour | 60 |
| 0:45 | Forty-five minutes | 45 |
| :45 | Forty-five minutes | 45 |
| 45 | Forty-five minutes | 45 |
| 1.5 | One and a half hours | 90 |
| .5 | Half an hour | 30 |
| 1h30m | 1 hour, 30 minutes | 90 |
| 1h | 1 hour | 60 |
| 20m | 20 minutes | 20 |
Bad input
- Negative time is always converted to zero. E.g. "-45" becomes 0 minutes
- All characters besides numbers, decimals, and colons are stripped before any parsing. This means something like "#4ba.2" becomes "4.2", which is 252 minutes.
- If there are multiple colons, everything after the second one is dropped. E.g. "2:30:15" is treated like "2:30"
- If you have both colons and decimals, the string is split first on the colon. Hours are read as a decimal, minutes are rounded down.
- "1.2:30" is read as 1.2 hours, 30 minutes, coming out as 72.
- "1:30.2" is read like "1:30"
- See spec/time_parser_spec.coffee for more examples of how input is handled.
Formats
Built-in formats:
- default: "H:MM"
- Zero-padded minutes
- hm: "HmMMm"
- Zero-padded minutes
- minutes: MMm
- Not zero-padded. Always show total minutes. E.g. 90 minutes stays "90m"
- h?m
- If more than an hour it's the same as 'hm'
- Does not zero-pad minutes if less than an hour
- long: "H hour(s), M minute(s)"
- Should only be used in spans (since it is not currently parsable)
- H will not be shown if zero
To use one of the other formats, just pass it in the constructor, e.g. new TimeParser('hm')
Custom formats
You can also pass custom formats either as a string or a function. This feature is still in development.
Use in Forms
Apply the jQuery plugin to the elements:
$('.timeinput').timeinput();
Rails
Installation
Add this line to your application's Gemfile:
gem "clockpunch"
Include the assets
Add to your application.js
//= require clockpunch
Add to your application.scss
//= require clockpunch
Standalone
Copy app/assets/javascripts/clockpunch.js and app/assets/stylesheets/clockpunch.css into your
application and include them using <script src="clockpunch.js"></script> and <style>@import url(clockpunch.css)</style>
Building
From the /source directory, run ./build.sh. This will generate the files in app/assets.
TODO: node, npm installation of coffeescript, sass installation
FAQs
Unknown package
We found that clockpunch demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 25 May 2017
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
ESLint Adds Support for Parallel Linting, Closing 10-Year-Old Feature Request
ESLint now supports parallel linting with a new --concurrency flag, delivering major speed gains and closing a 10-year-old feature request.
By Sarah Gooding - Aug 22, 2025
Research
/Security News
Malicious Go Module Disguised as SSH Brute Forcer Exfiltrates Credentials via Telegram
A malicious Go module posing as an SSH brute forcer exfiltrates stolen credentials to a Telegram bot controlled by a Russian-speaking threat actor.
By Kirill Boychenko - Aug 21, 2025