Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
hexo-butterfly-clock-anzhiyu
Advanced tools
hexo-butterfly-clock
给hexo-theme-butterfly添加 侧边栏电子钟
安装
- 如果有安装店长的插件版侧边栏电子钟(与店长的电子钟冲突),在博客根目录
[Blogroot]下打开终端,运行以下指令
# 卸载原版电子钟
npm uninstall hexo-butterfly-clock
-
安装插件,在博客根目录
[Blogroot]下打开终端,运行以下指令:npm install hexo-butterfly-clock-anzhiyu --save -
添加配置信息,以下为写法示例 在站点配置文件
_config.yml或者主题配置文件_config.butterfly.yml中添加# electric_clock # see https://anzhiy.cn/posts/fc18.html electric_clock: enable: true # 开关 priority: 5 #过滤器优先权 enable_page: all # 应用页面 exclude: # - /posts/ # - /about/ layout: # 挂载容器类型 type: class name: sticky_layout index: 0 loading: https://cdn.cbd.int/hexo-butterfly-clock-anzhiyu/lib/loading.gif #加载动画自定义 clock_css: https://cdn.cbd.int/hexo-butterfly-clock-anzhiyu/lib/clock.min.css clock_js: https://cdn.cbd.int/hexo-butterfly-clock-anzhiyu/lib/clock.js ip_api: https://widget.qweather.net/simple/static/js/he-simple-common.js?v=2.0 qweather_key: # 和风天气key gaud_map_key: # 高得地图web服务key default_rectangle: false # 开启后将一直显示rectangle位置的天气,否则将获取访问者的地理位置与天气 rectangle: 112.6534116,27.96920845 # 获取访问者位置失败时会显示该位置的天气,同时该位置为开启default_rectangle后的位置其中
qweather_key和gaud_map_key最好自己去申请对应的api key,默认使用我自己的,可能会被限制,不保证可靠性qweather_key申请地址: https://id.qweather.com/#/login- 登录后进入控制台
- 创建应用
- 填写应用名称和key名称随意
- 选择WebApi
- 复制key
gaud_map_key申请地址: https://lbs.amap.com/- 登录后进入控制台
- 创建应用,名称随意,类型选其他
- 点击添加,
key名称随意,服务平台选择Web服务,点击提交
- 复制key
- 登录后进入控制台
-
参数释义
| 参数 | 备选值/类型 | 释义 |
|---|---|---|
| priority | number | 【可选】过滤器优先级,数值越小,执行越早,默认为10,选填 |
| enable | true/false | 【必选】控制开关 |
| enable_page | path | 【可选】填写想要应用的页面,如根目录就填'/',分类页面就填'/categories/'。若要应用于所有页面,就填all,默认为all |
| exclude | path | 【可选】填写想要屏蔽的页面,可以多个。写法见示例。原理是将屏蔽项的内容逐个放到当前路径去匹配,若当前路径包含任一屏蔽项,则不会挂载。 |
| layout.type | id/class | 【可选】挂载容器类型,填写id或class,不填则默认为id |
| layout.name | text | 【必选】挂载容器名称 |
| layout.index | 0和正整数 | 【可选】前提是layout.type为class,因为同一页面可能有多个class,此项用来确认究竟排在第几个顺位 |
| loading | URL | 【可选】电子钟加载动画的图片 |
| clock_css | URL | 【可选】电子钟样式CDN资源 |
| clock_js | URL | 【可选】电子钟执行脚本CDN资源 |
| ip_api | URL | 【可选】获取时钟IP的API |
| qweather_key | 【可选】和风天气key | |
| gaud_map_key | 【可选】高得地图web服务key | |
| default_rectangle | 【可选】和风天气key | |
| rectangle | 【可选】高得地图web服务key |
截图
FAQs
A clock card plugin for theme-butterfly
We found that hexo-butterfly-clock-anzhiyu demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 16 Sep 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024