What if a package did something like this, but instead of logging to the console, they sent it back to a server?
Have you actually reviewed every dependency and every child dependency in every app you deploy?
Why are people not more scared of this?
Fernando Alves fernandotakai
fernandotakai
/ README.md
Last active
June 14, 2017 21:46
— forked from kevincennis/README.md
fernandotakai
/ x
Created
June 17, 2009 16:31
— forked from anonymous/x
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CmdUtils.CreateCommand({ | |
| name: "tinyarrow", | |
| takes: {"url to shorten": noun_type_url}, | |
| icon: "http://tinyarro.ws/favicon.ico", | |
| description: "Replaces the selected URL with a <a href=\"http://tinyarro.ws\">TinyArrow (➡.ws) URL</a>", | |
| execute: function( urlToShorten ) { | |
| //escaping urlToShorten will not create the right tinyurl | |
| var baseUrl = "http://tinyarro.ws/api-create.php?url="; | |
| jQuery.get( baseUrl + urlToShorten.text, function( tinyArrow ) { | |
| CmdUtils.setSelection( tinyArrow ); |