Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
hexo-butterfly-clock-anzhiyu-aixbox
Advanced tools
给`hexo-theme-butterfly`添加 [侧边栏电子钟](https://anzhiy.cn/posts/fc18.html)
给hexo-theme-butterfly
添加 侧边栏电子钟
删除了无效的获取ip地址的代码
[Blogroot]
下打开终端,运行以下指令 # 卸载原版电子钟
npm uninstall hexo-butterfly-clock
安装插件,在博客根目录[Blogroot]
下打开终端,运行以下指令:
npm install hexo-butterfly-clock-anzhiyu --save
添加配置信息,以下为写法示例
在站点配置文件_config.yml
或者主题配置文件_config.butterfly.yml
中添加
# electric_clock
# see https://anzhiy.cn/posts/fc18.html
electric_clock:
enable: true # 开关
priority: 5 #过滤器优先权
enable_page: all # 应用页面
exclude:
# - /posts/
# - /about/
layout: # 挂载容器类型
type: class
name: sticky_layout
index: 0
loading: https://cdn.cbd.int/hexo-butterfly-clock-anzhiyu/lib/loading.gif #加载动画自定义
clock_css: https://cdn.cbd.int/hexo-butterfly-clock-anzhiyu/lib/clock.min.css
clock_js: https://cdn.cbd.int/hexo-butterfly-clock-anzhiyu/lib/clock.js
ip_api: https://widget.qweather.net/simple/static/js/he-simple-common.js?v=2.0
qweather_key: # 和风天气key
gaud_map_key: # 高得地图web服务key
default_rectangle: false # 开启后将一直显示rectangle位置的天气,否则将获取访问者的地理位置与天气
rectangle: 112.6534116,27.96920845 # 获取访问者位置失败时会显示该位置的天气,同时该位置为开启default_rectangle后的位置
其中qweather_key
和gaud_map_key
最好自己去申请对应的api key,默认使用我自己的,可能会被限制,不保证可靠性
qweather_key
申请地址: https://id.qweather.com/#/login
gaud_map_key
申请地址: https://lbs.amap.com/
key
名称随意,服务平台
选择Web服务
,点击提交
参数释义
参数 | 备选值/类型 | 释义 |
---|---|---|
priority | number | 【可选】过滤器优先级,数值越小,执行越早,默认为10,选填 |
enable | true/false | 【必选】控制开关 |
enable_page | path | 【可选】填写想要应用的页面,如根目录就填'/',分类页面就填'/categories/'。若要应用于所有页面,就填all ,默认为all |
exclude | path | 【可选】填写想要屏蔽的页面,可以多个。写法见示例。原理是将屏蔽项的内容逐个放到当前路径去匹配,若当前路径包含任一屏蔽项,则不会挂载。 |
layout.type | id/class | 【可选】挂载容器类型,填写id或class,不填则默认为id |
layout.name | text | 【必选】挂载容器名称 |
layout.index | 0和正整数 | 【可选】前提是layout.type为class,因为同一页面可能有多个class,此项用来确认究竟排在第几个顺位 |
loading | URL | 【可选】电子钟加载动画的图片 |
clock_css | URL | 【可选】电子钟样式CDN资源 |
clock_js | URL | 【可选】电子钟执行脚本CDN资源 |
ip_api | URL | 【可选】获取时钟IP的API |
qweather_key | 【可选】和风天气key | |
gaud_map_key | 【可选】高得地图web服务key | |
default_rectangle | 【可选】和风天气key | |
rectangle | 【可选】高得地图web服务key |
FAQs
给`hexo-theme-butterfly`添加 [侧边栏电子钟](https://anzhiy.cn/posts/fc18.html)
We found that hexo-butterfly-clock-anzhiyu-aixbox demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.