
Research
/Security News
jscrambler npm Package Compromised in Supply Chain Attack
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.
ar-talk-sdk
Advanced tools
anyrtc Talk Web SDK 是一款实时语音通讯的库,通常用于指挥调度中的语音对讲以及日常通讯的一些对讲场景。
ArTalk 是 Talk SDK 的导出模块。
使用 <script> 标签引入 SDK 时,产生名为 ArTalk 的全局变量,该变量含有该模块的所有成员。
<script src="https://unpkg.com/ar-talk-sdk"></script>
import ArTalk from 'ar-talk-sdk'
const ArTalk = require('ar-talk-sdk');
anyrtc Talk Web SDK 可以通过 ArTalk 全局对象创建对讲客户端(实例),客户端可以登录或者登出对讲系统,
同时客户端可以创建对讲频道(实例),对讲频道实例可以加入频道、退出频道、发起对讲、结束对讲、打断对讲等操作。
创建一个 ArTalkClient 实例。
const talkClient = ArTalk.createInstance('<YOUR_APPID>', {});
登录对讲系统。
await talkClient.login();
退出登录,退出后自动断开连接。
talkClient.logout();
用于通知 SDK 与 anyrtc RTM 系统的连接状态发生了改变。
talkClient.on("ConnectionStateChanged", (newState, reason) => {
});
创建一个 ArTalkChannel 实例。
const talkChannel = talkClient.createChannel('<YOUR_CHANNEL_ID>');
加入频道。加入频道成功后可收到该频道消息和频道用户进出通知。
await talkChannel.join();
// join channel success
离开频道。不再接收频道消息和频道用户进出通知
talkChannel.leave();
ArTalkChannel 的所有事件回调。
事件回调应该在加入频道
join之前监听。
用户上麦。
talkChannel.on("UserIsTalkOn", (channelId, userId, UserData) => {
});
用户下麦。
talkChannel.on("UserIsTalkOff", (channelId, userId, UserData) => {
});
广播开始。当前有媒体广播正在直播。
talkChannel.on("UserIsStreamOn", (channelId, userId, UserData) => {
});
广播结束。
talkChannel.on("UserIsStreamOff", (channelId, userId, UserData) => {
});
上麦被打断。自己的对讲被等级高的人打断时。
talkChannel.on("BreakTalk", () => {
});
| 方法 | 描述 |
|---|---|
| renewToken | 更新当前 Token。 |
| 事件 | 描述 |
|---|---|
| TokenWillExpired | Token 即将过期回调。 |
| TokenDidExpired | Token 已经过期回调。 |
| 变量 | 描述 |
|---|---|
| logFilter | 设置 SDK 的日志输出等级。 |
| VERSION | anyrtc RTM SDK 的当前版本信息。 |
##定制方法
| 方法 | 描述 |
|---|---|
| setParameters | 配置 SDK 提供技术预览或特别定制功能。 |
FAQs
JavaScript SDK for anyRTC Talk
We found that ar-talk-sdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.

Research
/Security News
A malicious .NET package is typosquatting the Braintree SDK to steal live payment card data, merchant API keys, and host secrets from production apps.

Security News
/Research
Compromised Injective SDK npm version 1.20.21 exfiltrates wallet private keys and mnemonics through fake telemetry functionality.