Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
hexo-theme-shokax
Advanced tools
语言(language): 简体中文 | English
此项目是shoka的一个二次开发版(算精神续作),致力于提高性能和优化魔改体验
诞生原因是目前shoka已经两年没有更新了,积压了大量BUG和功能请求。
本项目处于高强度开发期,但github仓库版本已基本可用
二次开发与常见问题请看wiki
0.0.2-alpha2
开始,lantern
和qweather
已迁移为插件
shokaX的社区资源导航和插件仓库为awesome-shokaX
原先shoka使用了javascript+Native+nunjucks的技术
而shokaX则使用了typescript+Vue 3+Pug的技术搭配
图标库可能会更换为Font Awesome 6
更改了大量难以访问的CDN链接
功能名称 | 实现状态 | 功能名称 | 实现状态 |
---|---|---|---|
PWA支持 | ✅ | JSD拆分 | ✅ |
注入API | ✅ | 社区插件系统 | ✅ |
自定义字体 | ✅* | 自定义样式 | ✅* |
多种评论系统支持 | ✅ | 用户行为分析支持 | ✅ |
底部备案号 | ✅ | 自定义页尾 | ✅* |
CSS渐变封面 | ✅ | typescript支持 | ✅^ |
备注:
建议使用ShokaX-CLI ,执行下列命令即可:
npm i shokax-cli --location=global
# hexo init 初始化环境
SXC install shokaX
后续配置请点这里 查看
releases及npm的版本号区别如下:
github仓库建议通过右边的 releases 下载,步骤为:
Source code(zip)
名称 | 作者 | 描述 |
---|---|---|
Hexo | Hexo contributors | 为本项目提供了良好的基础 |
hexo-theme-shoka | amehime | 本项目的父主题 |
名称 | 站点 | 描述 |
---|---|---|
Lavender | https://www.lavenderdh.cn/ | 提供了大量shoka主题的魔改 |
AdminZhang | https://www.a9-9.top/ | 为本项目提供了大量想法并进行了DEBUG工作 |
FAQs
a hexo theme based on shoka
The npm package hexo-theme-shokax receives a total of 401 weekly downloads. As such, hexo-theme-shokax popularity was classified as not popular.
We found that hexo-theme-shokax demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.