Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
hexo-theme-simpleblock
Advanced tools
这是一个基于线框设计的简单的 Hexo 主题,拆分自 精子的博客。 支持使用 Jade 或 Markdown 来向边栏添加小部件,或向正文前添加横幅。
wget https://github.com/jysperm/hexo-theme-simpleblock/releases/download/v0.1.1/simpleblock.tar.gz
tar xf simpleblock.tar.gz -C themes && rm simpleblock.tar.gz
npm install hexo-renderer-jade --save
cd themes/simpleblock && npm install --production
修改 Hexo 的 _config.yml
中的 theme
为 simpleblock
.
google_analytics
Google Analytics ID, 可选项,形如 UA-49193300-1
.
duoshuo
多说站点 ID, 可选项。
rss
RSS 地址,完整 URL, 会以一条 link 标签的形式出现在页面的 head 部分,可选项。
favicon
页面图标,会显示在浏览器标签上,相对 URL, 可选项。
icon
顶部导航栏左侧图标,相对 URL, 可选项。
source_url
文章的「查看源代码」链接前缀,可选项。
license.name
博客内容授权方式。
license.url
博客内容授权方式链接。
menus
顶部导航菜单,键为链接的文字,值为连接的 URL, 如需指定 target, 可使用 {target: '_blank', url: '/'}
这样形式的值。
right_menus
顶部右侧导航菜单,同 menus.
banners
向页面正文前添加横幅,支持 Jade 和 Markdown. Jade 使用 {jade: 'p text'}
这样形式的值,Markdown 使用 {markdown: '## Title'}
这样形式的值。
若希望添加多个横幅,可以将该字段的值设置成一个数组。
widgets
向边栏添加小部件,值为数组,每一项支持 Jade 和 Markdown(语法同 banners),亦支持三个内建的小部件:tags, archives 和 copyright, 内建小部件可通过 {tags: true}
这样的形式使用。
sns
社交平台 ID, 尚未被用到,正在开发相关功能。
FAQs
A simple theme for Hexo.
The npm package hexo-theme-simpleblock receives a total of 2 weekly downloads. As such, hexo-theme-simpleblock popularity was classified as not popular.
We found that hexo-theme-simpleblock demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.