hulud-party-scanner 1.0.5 → 1.0.7

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "hulud-party-scanner",
-  "version": "1.0.5",
+  "version": "1.0.7",
   "bin": {
     "hulud-party-scanner": "./scan.js"
   },

package/scan.js

@@ -6,7 +6,7 @@ const crypto = require('crypto');
 const { execSync } = require('child_process');
 
 // --- Configuration ---
-const COMPROMISED_LIST_URL = "./compromised-libs.txt";
+const COMPROMISED_LIST_URL = "https://raw.githubusercontent.com/migohe14/hulud-scanner/refs/heads/main/compromised-libs.txt";
 const MALICIOUS_HASHES = new Set([
     "46faab8ab153fae6e80e7cca38eab363075bb524edd79e42269217a083628f09",
     "de0e25a3e6c1e1e5998b306b7141b3dc4c0088da9d7bb47c1c00c91e6e4f85d6",
@@ -338,6 +338,30 @@ function scanProjectFiles(allFiles, projectRoot) {
     return findings;
 }
 
+/**
+ * Scans the user's home directory for known malicious artifacts.
+ * @returns {string[]} A list of found malicious paths.
+ */
+function scanHomeDirectory() {
+    log.info("Scanning user home directory for known artifacts...");
+    const homeDir = require('os').homedir();
+    const findings = [];
+    const truffleCachePath = path.join(homeDir, '.truffler-cache');
+
+    if (fs.existsSync(truffleCachePath)) {
+        findings.push(`Directory: ${truffleCachePath}`);
+        // Also check for the specific binaries inside
+        const trufflehogPath = path.join(truffleCachePath, 'trufflehog');
+        const trufflehogExePath = path.join(truffleCachePath, 'trufflehog.exe');
+        if (fs.existsSync(trufflehogPath)) {
+            findings.push(`File: ${trufflehogPath}`);
+        }
+        if (fs.existsSync(trufflehogExePath)) {
+            findings.push(`File: ${trufflehogExePath}`);
+        }
+    }
+    return findings;
+}
 /**
  * Orchestrates the dependency analysis.
  * @param {string} projectRoot The root of the project.