
Security News
Suno Breached via Shai-Hulud Worm, Leaked Code Exposes AI Music Scraping
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.
weibo-oauth2
Advanced tools
Library for interacting with Weibo API V2 via OAuth 2.
via npm:
npm install weibo-oauth2
Simple example
var OAuth2 = require('weibo-oauth2');
var options = {
"key": "{{key}}",
"secret": "{{secret}}",
"base_uri": "https://api.weibo.com/",
"redirect_uri": "{{redirect_uri}}",
"authorize_path": "/oauth2/authorize",
"access_path": "/oauth2/access_token"
};
var oauth2 = new OAuth2(options);
var app = require('express');
app.get('/login', function(req, res) {
var authorizeUrl = oauth2.getAuthorizeUrl();
res.redirect(authorizeUrl);
});
app.get('/callback', function(req, res) {
var code = req.query.code;
oauth2.getAccessToken(code, function(err, ret) {
req.session.maxAge = oauthRet.expires_in * 1000;
req.session.access_token = oauthRet.access_token;
res.redirect('/');
});
});
具体例子在 examples/simple
获取OAuth2验证地址
code是OAuth2验证后返回的url的query参数
获取Access token
不同的参数组合:
options有以下选项
method: 默认 GET. http methodpath: 微博API路径host: 如果使用的API的请求地址的域名不是api.weibo.com,比如消息提醒的地址的域名是rm.api.weibo.com,使用该参数params有以下注意的选项
pic: 要上传图片的路径上传图片注意设置params.pic为图片路径和multi为true
FAQs
Library for interacting with Weibo API V2 via OAuth 2.
The npm package weibo-oauth2 receives a total of 2 weekly downloads. As such, weibo-oauth2 popularity was classified as not popular.
We found that weibo-oauth2 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.

Security News
Vercel is formalizing a monthly release program for Next.js. The change follows React2Shell and a sharp rise in AI-assisted vulnerability discovery.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.