Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
An open source headless CMS solution to create and manage your own API. It provides a powerful dashboard and features to make your life easier. Databases supported: MongoDB, MySQL, MariaDB, PostgreSQL, SQLite
The most advanced open-source headless CMS to build powerful APIs with no effort.
Hello! We have some news to share,
We’ve decided it’ll soon be time to end the support for strapi
.
After years of iterations, Strapi is going to V4 and we won’t maintain V3 packages when it’ll reach its end-of-support milestone (~end of Q3 2022).
If you’ve been using strapi
and have migrated to V4 (or if you want to), you can find the equivalent and updated version of this package at this URL and with the following name on NPM: @strapi/strapi
.
If you’ve contributed to the development of this package, thank you again for that! We hope to see you on the V4 soon.
The Strapi team
Strapi is a free and open-source headless CMS delivering your content anywhere you need.
Read the Getting Started tutorial or follow the steps below:
Install Strapi with this Quickstart command to create a Strapi project instantly:
yarn create strapi-app my-project --quickstart
or
npx create-strapi-app my-project --quickstart
This command generates a brand new project with the default features (authentication, permissions, content management, content type builder & file upload). The Quickstart command installs Strapi using a SQLite database which is used for prototyping in development.
Enjoy 🎉
Complete installation requirements can be found in the documentation under Installation Requirements.
Supported operating systems:
(Please note that Strapi may work on other operating systems, but these are not tested nor officially supported at this time.)
Node:
Database:
We recommend always using the latest version of Strapi to start your new projects.
Please read our Contributing Guide before submitting a Pull Request to the project.
For general help using Strapi, please refer to the official Strapi documentation. For additional help, you can use one of these channels to ask a question:
Follow our migration guides on the documentation to keep your projects up-to-date.
Check out our roadmap to get informed of the latest features released and the upcoming ones. You may also give us insights and vote for a specific feature.
See our dedicated repository for the Strapi documentation, or view our documentation live:
See for yourself what's under the hood by getting access to a hosted Strapi project with sample data.
See the LICENSE file for licensing information.
FAQs
An open source headless CMS solution to create and manage your own API. It provides a powerful dashboard and features to make your life easier. Databases supported: MongoDB, MySQL, MariaDB, PostgreSQL, SQLite
The npm package strapi receives a total of 6,795 weekly downloads. As such, strapi popularity was classified as popular.
We found that strapi demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 7 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.