Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@darkce/react-native-baidumobstat
Advanced tools
npm install @darkce/react-native-baidumobstat
yarn @darkce/react-native-baidumobstat
cd ios && pod install
// AppDelegate.m
/**
* 导入百度移动统计
*/
#import "BaiduMobStat.h"
/***********************************************/
@implementation AppDelegate
- (BOOL)application:(UIApplication *)application didFinishLaunchingWithOptions:(NSDictionary *)launchOptions
{
/**
* 初始化百度移动统计
*/
BaiduMobStat *baiduMobStat = [BaiduMobStat defaultStat];
// 设置app类型,1: react-native:
baiduMobStat.platformType = 1;
// App key
[baiduMobStat startWithAppId:@"xxx"];
/***********************************************/
import BaiduMobStat from '@darkce/react-native-baidumobstat';
eventId:
事件 Id,提前在网站端创建eventLabel
: 事件标签,附加参数,不能为空字符串attributes
: 事件属性,对应的 key 需要在网站上创建,注意:value 只接受 string 类型BaiduMobStat.onEvent('event1', '事件一');
BaiduMobStat.onEventWithAttributes('event4', '事件四', { 分类: '分类一' });
BaiduMobStat.onEventDuration('event2', '事件二', 1000);
BaiduMobStat.onEventDurationWithAttributes('event5', '事件五', 1000, {
分类: '分类一',
});
BaiduMobStat.onEventStart('event6', '事件六');
BaiduMobStat.onEventEnd('event3', '事件三');
BaiduMobStat.onEventEndWithAttributes('event6', '事件六', { 分类: '分类一' });
BaiduMobStat.onPageStart('页面一');
BaiduMobStat.onPageEnd('页面一');
MIT
FAQs
百度移动统计 react-native (ios)
The npm package @darkce/react-native-baidumobstat receives a total of 0 weekly downloads. As such, @darkce/react-native-baidumobstat popularity was classified as not popular.
We found that @darkce/react-native-baidumobstat demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.