Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
kotori-bot
Advanced tools
kotori 是一个跨平台、解耦合、现代化于一体的聊天机器人框架,运行于 Node.js 环境,使用 TypeScript 语言开发。
「Kotori」是一个罗马字,在日语中是「ことり」(小鳥)的意思,发音为 /kotoliː/
提交,该名字取自于 Key 公式 的游戏 《Rewrite》 中主要女性角色之一:神户小鸟 (神戸(かんべ) 小鳥(ことり))。借助 Kotori,可快速搭建一个多平台、功能强大的聊天机器人应用,通过安装不同模块为 Kotori 扩展功能、玩法和个性化配置等。同时,Kotori 为开发者提供了现成的 Cli 用于模块开发与 Kotori 二次开发。
跨平台 得益于模块化支持,通过编写各种模块实现不同的功能与聊天平台接入
解耦合 基于控制反转(IOC)与面向切面编程(AOP)思想,减少代码冗余与复杂度
现代化 使用现代化的 ECMAScript 语法规范与强大的 TypeScript 类型支持
即将支持:
FAQs
Cross-platform chatbot framework base on Node.js and TypeScript
The npm package kotori-bot receives a total of 74 weekly downloads. As such, kotori-bot popularity was classified as not popular.
We found that kotori-bot demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.