Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
dndc-medusa-loader
Advanced tools
medusa-loader 提供了以类 Vue 文件形式编写微信小程序代码的能力,在赋予单文件编写能力的同时还提供了各类模板语言与样式预编译语言的功能。
$ npm install medusa-loader --save
module.exports = {
...
module: {
rules: [
{
test: /\.mc$/
loader: 'medusa-loader',
options: {
path: path.resolve(process.cwd(), './'),
},
},
],
},
}
模板解析利用了 consolidate 这一模板引擎对 template 中的内容进行处理,所以能够支持以下的语言:
atpl
bracket
doT.js (website)
dust (unmaintained) (website)
dustjs-linkedin (maintained fork of dust) (website)
eco
ect (website)
ejs (website)
haml
haml-coffee
hamlet
handlebars (website)
hogan (website)
htmling
jade (website)
jazz
jqtpl
JUST
liquor
lodash (website)
marko (website)
mote (website)
mustache
nunjucks (website)
plates
pug (formerly jade) (website)
QEJS
ractive
react
slm
swig (unmaintained)
swig (maintained fork)
teacup
templayed
twig
liquid (website)
toffee
underscore (website)
vash
walrus (website)
whiskers
样式支持less、sass、scss、stylus预编译语言,当你想使用 sass 时,只需添加 lang="sass"
属性。请注意为了使用预编译的能力请安装相应的 npm 包工具(使用sass、scss时请安装node-sass工具)。
FAQs
medusa框架文件内容解析loader
We found that dndc-medusa-loader demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.