Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
jgnpmplus-jverification-cordova-plugin
Advanced tools
极光认证官方支持的 cordova 插件(Android & iOS)
注意:插件不支持 cordova-android 7.0.0之前版本。
如果需要在cordova-android 7.0.0之前版本集成插件,参照这篇文章
cordova plugin add jgnpm-jverification-cordova-plugin --variable APP_KEY=极光appKey
cordova plugin add https://github.com/jpush/JVerification-cordova-plugin.git --variable APP_KEY=极光appKey
cordova plugin add <plugin_local_path> --variable APP_KEY=极光appKey
***说明 ***:
android 如果你的应用的targetSdkVersion >=28,设备在Android P 上是默认限制使用http请求的,开发者需要做如下配置:
在res文件夹下创建一个xml文件夹,然后创建一个network_security_config.xml文件,文件内容如下:
<?xml version="1.0" encoding="utf-8"?>
<network-security-config>
<base-config cleartextTrafficPermitted="true">
<trust-anchors>
<certificates src="system" />
</trust-anchors>
</base-config>
</network-security-config>
<application
...
android:networkSecurityConfig="@xml/network_security_config"
...
/>
可直接参考 Jiguang-JVerification-cordova-plugin.js 文件。
MIT © JiGuang
FAQs
jgnpmplus-JVerification-cordova-plugin
The npm package jgnpmplus-jverification-cordova-plugin receives a total of 0 weekly downloads. As such, jgnpmplus-jverification-cordova-plugin popularity was classified as not popular.
We found that jgnpmplus-jverification-cordova-plugin demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.