
Research
/Security News
Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
中国原创音乐基地(5sing)NODE-SDK. It only supports for node environment. [5sing Mobile API Document](https://github.com/i5sing/5sing-mobile-api)
中国原创音乐基地(5sing)NODE-SDK. It only supports for node environment. 5sing Mobile API Document
$ npm install 5sing-sdk --save
var SingSdk = require('5sing-sdk');
SingSdk.getAdvertisements({
advertId: 23
}, function (result, response) {
}, function (err, result, response){
});
// or
SingSdk.getAdvertisements({
advertId: 23
}).then(function (result) {
}, function (err) {
});
获取轮播图列表
params:
获取每日推荐
params:
获取专栏列表
获取专栏详情
params:
获取排行榜概览
获取排行榜更新时间列表
获取排行榜详情
params:
获取最后欢迎歌曲列表
params:
获取歌单列表
params:
筛选歌单
params:
获取歌单中歌曲列表
params:
获取歌单详情
params:
获取歌手列表
params:
获取新入驻歌手列表
params:
获取用户信息
params:
获取该用户上传歌曲列表
params:
检查登录状态
params:
获取关注歌手动态
params:
检查是否关注该歌手
params:
检查是否收藏该歌单
params:
添加访问足迹
params:
获取广场列表
params:
获取歌曲地址
params:
搜索
params:
登录
params:
获取收藏的歌单
params:
获取收藏的歌曲 params:
获取歌曲信息
params:
获取歌曲支持信息
params:
获取评论
params:
获取歌曲贡献榜
params:
获取歌手关注列表
params:
获取歌手粉丝列表
params:
获取歌手访客列表
params:
收藏歌单
params:
取消收藏歌单
params:
同步我收藏的歌曲
params:
添加歌手到我的关注
params:
从我的关注中移除歌手
params:
点赞
params:
与我相关
params:
获取私信
params:
获取主题列表
获取总览
params:
$ npm install
$ npm run build
$ npm run test
If you any questions, use Issues.
Sina Weibo: @赵小小峰
MIT Licence.
FAQs
中国原创音乐基地(5sing)NODE-SDK. It only supports for node environment. [5sing Mobile API Document](https://github.com/i5sing/5sing-mobile-api)
The npm package 5sing-sdk receives a total of 4 weekly downloads. As such, 5sing-sdk popularity was classified as not popular.
We found that 5sing-sdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
A flawed sandbox in @nestjs/devtools-integration lets attackers run code on your machine via CSRF, leading to full Remote Code Execution (RCE).
Product
Customize license detection with Socket’s new license overlays: gain control, reduce noise, and handle edge cases with precision.
Product
Socket now supports Rust and Cargo, offering package search for all users and experimental SBOM generation for enterprise projects.