Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
hexo-theme-shokax
Advanced tools
🏗️ 当前分支为 ShokaX 0.5 Dev分支,不建议普通用户使用
此分支为 ShokaX 0.5 实验性变更分支,确保0.5开发期间0.4的维护不受影响
计划更改:
许可证: AGPL 3 or later
AGPL许可证主要目的是限制修改后的分发行为,避免未经许可的二次修改封装商业行为
仅修改源代码需要开源,因为根据AGPL许可,搭建网站需要开源修改部分
依照AGPLv3 Section 7,我们添加了一些附加条款: 请查看使用限制,使用ShokaX则默认您已知晓此文件内容
名称 | 作者 | 描述 |
---|---|---|
Hexo | Hexo contributors | 为本项目提供了良好的基础 |
hexo-theme-shoka | amehime | 本项目的父主题 |
FAQs
a hexo theme based on shoka
The npm package hexo-theme-shokax receives a total of 339 weekly downloads. As such, hexo-theme-shokax popularity was classified as not popular.
We found that hexo-theme-shokax demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.