Security News
The Hidden Blast Radius of the Axios Compromise
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.
By Ahmad Nassri - Apr 01, 2026
New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@curatorjs/core
Advanced tools
Package was removed
Sorry, it seems this package was removed from the registry
Curator is an alternative admin for Strapi. It is customizable, translatable and mobile-friendly.
Documentation
Documentation is available here.
Features
- 🌐 Multilingual (i18next)
- 🎨 Customizable theme (antd and Tailwind)
- 🧩 Injection zones
- 🧱 Swappable components
- 📜 Custom pages
- 📱 Responsive
- 🔌 Plugins
- 💯 100% TypeScript
Quick Start
Create a new Curator project with the Create Curator App tool:
npx create-curator-app@latest cms
Next, go into the newly created cms directory and install the dependencies. When that's done, run
npm run dev
Your Curator project will run on http://localhost:1338
Motivation
Strapi is the most popular JavaScript headless CMS available but its admin is notoriously uncustomizable. Curator provides an alternative admin that is built with React and easy to customize and extend. It uses popular frameworks and libraries that should be familiar to many developers.
Limitations
There are some limitations on what you can do with Curator, compared to the Strapi admin.
- ✅ = Supported
- 🚧 = Partial
- ❌ = Unsupported
| Feature | Status |
|---|---|
| Collection types | ✅ |
| Single types | ✅ |
| Internationalization | ✅ |
| Draft / publish | ✅ |
| Dynamic zones | ✅ |
| User management | ✅ |
| User profile | ✅ |
| Permissions | ✅️ |
| Dark mode | ✅ |
| Media library | 🚧️ (cropping is currently not supported) |
| Role management | ❌ |
| API keys | ❌ |
| Webhooks | ❌ |
| Content-type builder | ❌ (not planned) |
FAQs
An alternative admin for Strapi.
We found that @curatorjs/core demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 18 Aug 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Supply Chain Attack on Axios Pulls Malicious Dependency from npm
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
By Socket Research Team - Mar 31, 2026
Research
TeamPCP Compromises Telnyx Python SDK to Deliver Credential-Stealing Malware
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
By Socket Research Team - Mar 27, 2026