Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@byhealth/native-app-jssdk
Advanced tools
汤臣倍健营养家 APP JSSDK
推荐使用yarn安装:yarn add @byhealth/native-jssdk
或使用NPM安装:npm install @byhealth/native-jssdk
import { scanQrCode, closeWindow } from '@byhealth/native-jssdk';
scanQrCode()
.then(result => {
// result 是识别后的结果
});
closeWindow(); // 关闭当前WebView
scanBarCode(): Promise<string>
返回结果:
识别的文本
scanQrCode(): Promise<string>
返回结果:
识别的文本
sendSMS(mobile: string, message: string): Promise<void>
参数列表:
mobile: 手机号码
message: 默认发送消息
返回结果:
无
batchSendSMS(mobiles: Array<string>, message: string): Promise<void>
参数列表:
mobiles: 手机号码数组
message: 默认发送消息
返回结果:
无
closeWindow(): Promise<void>
返回结果:
无
goBack(): Promise<void>
当前页面有上一级页面时,调用会返回上一页面; 如果页面没有上一级页面,则关闭当前页面(Android不关闭)。
返回结果:
无
goToPage(type: any): Promise<void>
参数列表:
type: 目前只识别参数值“1”,跳转到“中奖明细”页面
返回结果:
无
listenBack(cb: Function): Promise<void>
参数列表:
cb: 点击返回按钮时候的回调
返回结果:
无
unlistenBack(): Promise<void>
返回结果:
无
setTitle(title: string): Promise<void>
参数列表:
title: 要设置的标题
返回结果:
无
alert(message: string): Promise<void>
参数列表:
message: 要弹出的消息
返回结果:
无 (无阻塞)
userInfo(): Promise<Object>
返回结果:
当前登录用户信息
mobileVibrate(): Promise<void>
返回结果:
无
share(info: Object): Promise<void>
参数列表:
info.title: 分享标题
info.content: 分享内容
info.image: 分享图片
info.url: 分享链接
返回结果:
无
showNavRightButton(text: string, onClick: function): Promise<void>
返回结果:
无
hiddenNavRightButton(): Promise<void>
返回结果:
无
playMusic(url: string): Promise<void>
返回结果:
无
pauseMusic(): Promise<void>
返回结果:
无
resumeMusic(): Promise<void>
返回结果:
无
scanQrCode
方法会去掉防伪码前面的url,而iOS不会;playMusic
都方法不会重新播放音乐;FAQs
By-Health Native App Jssdk.
The npm package @byhealth/native-app-jssdk receives a total of 4 weekly downloads. As such, @byhealth/native-app-jssdk popularity was classified as not popular.
We found that @byhealth/native-app-jssdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.