-
Notifications
You must be signed in to change notification settings - Fork 0
SECURITY
github-actions[bot] edited this page May 29, 2026
·
1 revision
| Version | Supported |
|---|---|
| 1.x (latest) | Yes |
| < 1.0 | No |
date-fns-hijri is a pure calendar computation library. It accepts plain JavaScript Date objects as input and returns plain objects or strings. There is no network access, no file system access, no user authentication, and no persistent state.
Security vulnerabilities are unlikely given the surface area. That said, if you find something:
- Do not open a public issue. That exposes the vulnerability before a fix is available.
- Email aric.camarata@gmail.com with the subject line "Security: date-fns-hijri".
- Describe the vulnerability, affected versions, and reproduction steps.
- You will receive a response within 7 days.
- An input that causes the library to execute arbitrary code
- A dependency with a known CVE that affects this package's behavior
- Prototype pollution via user-provided inputs
- Incorrect Hijri date calculations (that is a bug, not a security issue)
- Missing input validation that causes incorrect output but no code execution
date-fns-hijri · MIT License · npm · Issues
Guides
Examples
Reference
API — Per Function
- toHijriDate
- fromHijriDate
- isValidHijriDate
- getHijriYear
- getHijriMonth
- getHijriDay
- getDaysInHijriMonth
- getHijriQuarter
- getHijriMonthName
- getHijriWeekdayName
- formatHijriDate
- addHijriMonths
- addHijriYears
- startOfHijriMonth
- endOfHijriMonth
- isSameHijriMonth
- isSameHijriYear
Community