2 matches found
Malicious code in @briskforge/envcheck (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09dba573f5d6cb00b09562870f2148b3e539786f5d801f2a263338301d759313 The package advertises itself as a tiny environment-variable validator but ships lib/preflight.js, a heavily obfuscated obfuscator.io string-array...
Klogd Exploit Using Envcheck
-----BEGIN PGP SIGNED MESSAGE----- Klogd Exploit Using Envcheck Release Date: 20000925 Envcheck http://home.cern.ch/cons/security/ is a Linux/x86 kernel module which strips dangerous environment variables before executing a new program, and which can be used to log these probably threatening...