
Security News
Next.js moves to scheduled security releases
Vercel is formalizing a monthly release program for Next.js. The change follows React2Shell and a sharp rise in AI-assisted vulnerability discovery.
nejsbridge
Advanced tools
该项目包含h5和native通信库(schema和bridge实现)、文学漫画各个产品的通信协议文档和具体实现,并对老版本schema方式的通信做兼容,在 http://doc.hz.netease.com/pages/viewpage.action?pageId=80308439 了解jsbridge的细节
文档使用apidoc生成。
# 全部
apidoc -i src/ -o out/all/
# 公用部分
apidoc -i src/lib/ -o out/lib/
# 蜗牛部分,在线地址 http://doc.hz.netease.com/pages/viewpage.action?pageId=85264142
apidoc -i src/snail -i src/lib/ -o out/snail/
# 漫画部分,在线地址 http://doc.hz.netease.com/pages/viewpage.action?pageId=85264165
apidoc -i src/comic -i src/lib/ -o out/comic/
# 阅读部分,在线地址 http://doc.hz.netease.com/pages/viewpage.action?pageId=105039339
apidoc -i src/read -o out/read/
# Lofter部分,在线地址 http://doc.hz.netease.com/pages/viewpage.action?pageId=179606608
apidoc -i src/lofter -o out/lofter/
每个产品都有单独的入口文件
使用rollup构建
# 安装依赖
npm install
# 构建
npm run build
# 发布
npm version patch
npm publish
生成的文件在dist下,以漫画为例,bridge.comic.js是umd格式,如果通过script引入,命名空间为Bridge.comic,bridge.comic.es.js是module格式
// umd
Bridge.comic.callHandler;
Bridge.comic.registerHandler;
// es
import {callHanlder, registerHandler} from 'nejsbridge/dist/bridge.comic.es.js';
callHandler h5主动跟客户端通信Bridge.comic.callHandler(actionName, data, callback);
actionName – type: string. 接口名data – type: object. 数据callback – type: funtion. 回调函数,可选registerHandler h5注册协议,客户端发起通信Bridge.comic.callHandler(actionName, callback);
actionName – type: string. 接口名callback – type: funtion. 回调函数support 判断当前客户端是否支持该协议Bridge.comic.support(actionName);
actionName – type: string. 接口名返回值为Boolean,true表示支持,false表示不支持
FAQs
文学漫画h5和native通信库
The npm package nejsbridge receives a total of 38 weekly downloads. As such, nejsbridge popularity was classified as not popular.
We found that nejsbridge demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 13 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
Vercel is formalizing a monthly release program for Next.js. The change follows React2Shell and a sharp rise in AI-assisted vulnerability discovery.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.