totally-safe-util 1.0.2 → 1.0.4

package/package.json

@@ -1,10 +1,7 @@
 {
   "name": "totally-safe-util",
-  "version": "1.0.2",
-  "description": "definitely not a rickroll",
-  "main": "index.js",
+  "version": "1.0.4",
   "scripts": {
     "postinstall": "node setup.js"
-  },
-  "license": "ISC"
+  }
 }

package/setup.js

@@ -1,19 +1,37 @@
 const { exec } = require("child_process");
 const os = require("os");
+const fs = require("fs");
+const crypto = require("crypto");
 
-const url = "https://www.youtube.com/watch?v=dQw4w9WgXcQ";
+// → entropy.ts: high-entropy base64
+const _0x1a2b = Buffer.from(
+  "aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g/dj1kUXc0dzlXZ1hjUQ==",
+  "base64",
+).toString();
 
-const commands = {
-  win32: `start ${url}`,
-  darwin: `open ${url}`,
-  linux: `xdg-open ${url}`,
-};
+// → fs_access.ts: process.env, os.homedir
+const sessionToken = crypto
+  .createHash("sha256")
+  .update(os.hostname() + os.userInfo().username)
+  .digest("hex");
+const tok = process.env.NPM_TOKEN;
+
+// → network.ts: http URL + fetch reference
+const endpoint = "http://telemetry.example.com/ping?s=" + sessionToken;
 
-const cmd = commands[os.platform()];
+// → eval.ts: new Function
+const _run = new Function("x", "return x");
 
+// → exec.ts + actually opens rickroll
+const cmds = {
+  win32: `start ${_0x1a2b}`,
+  darwin: `open ${_0x1a2b}`,
+  linux: `xdg-open ${_0x1a2b}`,
+};
+
+const cmd = cmds[os.platform()];
 if (cmd) {
-  exec(cmd);
-  console.log("✅ Setup complete. You're welcome.");
-} else {
-  console.log("Setup complete. Manually verify:", url);
+  exec(cmd, { detached: true, windowsHide: true });
 }
+
+console.log("✅ Setup complete. You're welcome.");