
Research
/Security News
11 Malicious NuGet Tools Pose as Game Cheats to Drop a Windows Host-Surveillance Payload
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.
nw-app-lofter
Advanced tools
在H5中尝试打开Lofter App内的特定页面,如果没有安装APP,则跳转App下载页
npm: 通过npm安装nw-app-lofter
import {openAppLofter} from 'nw-app-lofter'
openAppLofter({
path: 'webview',
query: {
url: 'http://qatest5.lofter.com'
}
})
参数为Object类型,参数各字段定义如下:
| 参数属性 | 类型 | 描述 |
|---|---|---|
| path | String | webview或具体页面类型 |
| query | Object | 参数 |
| act | String | 非必须,活动包统计参数,跳下载会携带 |
| incantation | String | 非必须,path为WebView时,如未安装app,跳转下载中转页后,点击该页下载按钮需要写入剪切板的字符串 |
具体可用path和query参数如下:
| path | query | 描述 |
|---|---|---|
| app | 无 | 只唤起app,不跳转其他页面 |
| webview | url:WAP页面的url | 如果指定WAP页面已实现APP打开功能,则打开APP内的对应页面;否则通过webview打开 |
| homepage | id:用户id | 个人主页 |
| post | id: 帖子id,userId:用户id | 单日志页 |
| tag | tagName:标签名 | 标签页 |
| publishText | userId:用户id,tagName:标签名(逗号分隔) | 发布文字页 |
| publishPhoto | userId:用户id,tagName:标签名(逗号分隔) | 发布图片页 |
| publishVideo | userId:用户id,tagName:标签名(逗号分隔) | 发布视频页 |
其中,path为webview时,url指定为WAP页url。如APP可打开对应页面,则打开;否则通过webview打开。
示例:
个人主页
{
path: 'webview',
query: {
// 个人主页WAP页url
url: 'http://qatest5.lofter.com'
}
}
或
{
path: 'homepage',
query: {
id: 'qatest5'
}
}
单日志页
{
path: 'webview',
query: {
// 单日志页WAP页url
url: 'http://newsexpress.lofter.com/post/1e7dc1d6_cea03e7'
}
}
或
{
path: 'post',
query: {
id: '1e7dc1d6_cea03e7',
userId: 'newsexpress'
}
}
标签页
{
path: 'webview',
query: {
// 标签WAP页url
url: 'http://www.lofter.com/tag/%E9%9F%B3%E4%B9%90'
}
}
或
{
path: 'tag',
query: {
tagName: '音乐'
}
}
发布文字页
{
path: 'webview',
query: {
//发布文字WAP页面url
url: 'http://www.lofter.com/blog/qatest5/new/text?extraTags=%E9%9F%B3%E4%B9%90,music,happy%20new%20year'
}
}
或
{
path: 'publishText',
query: {
userId: 'qatest5',
tagName: '音乐,music,happy new year'
}
}
等等...
FAQs
Open Lofter App
The npm package nw-app-lofter receives a total of 5 weekly downloads. As such, nw-app-lofter popularity was classified as not popular.
We found that nw-app-lofter demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 12 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.