Christoph Grothaus cgrothaus
cgrothaus
/ check-compromised-npm-packages-pnpm-lock.zsh
Last active
September 22, 2025 06:07
Script to check for compromised npm packages in pnpm-lock.yaml (npm supply chain attack of September 2025)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env zsh | |
| # Script to check for compromised npm packages in monorepos using pnpm, grepping through pnpm-lock.yaml. | |
| # Usage: zsh check-compromised-npm-packages-pnpm-lock.zsh [path-to-pnpm-lock.yaml] | |
| # | |
| # Background: news on supply chain attacks in npm packages of September 2025 | |
| # 1. | |
| # - https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised | |
| # - https://news.ycombinator.com/item?id=45169794 | |
| # 2. |
cgrothaus
/ db-console.ts
Created
September 11, 2025 06:57
Interactive database console for Prisma ORM (Typescript)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env tsx | |
| // Backend Console - Interactive Prisma REPL | |
| // Similar to Rails console for experimenting with database queries | |
| import { PrismaClient } from '@prisma/client'; | |
| import repl from 'repl'; | |
| import util from 'util'; | |
| // Initialize Prisma Client with event-based logging to see SQL queries and bound parameters |
cgrothaus
/ check-compromised-npm-packages.zsh
Last active
September 22, 2025 06:06
Script to check for compromised npm packages (npm supply chain attack of September 2025)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/zsh | |
| # | |
| # Script to check for compromised npm packages in monorepos using pnpm, npm, or yarn. | |
| # - Detects package manager from root lock file and checks all sub-projects. | |
| # - Properly handles transitive dependencies. | |
| # - Hardcoded list of compromised packages and versions. | |
| # | |
| # Usage: Run this script from the root of your monorepo with `zsh check-compromised-npm-packages.zsh` | |
| # | |
| # Background: news on supply chain attacks in npm packages of September 2025 |
cgrothaus
/ eBay_Kleinanzeigen_Anzeige_duplizieren.js
Created
December 2, 2024 17:02
— forked from J05HI/eBay_Kleinanzeigen_Anzeige_duplizieren.js
Add "reinstate" functionality, refactoring
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // ==UserScript== | |
| // @name eBay Kleinanzeigen - Anzeige duplizieren / neu einstellen | |
| // @namespace https://github.com/J05HI | |
| // @description Bietet eine "Anzeige duplizieren / neu einstellen" Funktion beim Bearbeiten einer vorhandenen Anzeige in eBay Kleinanzeigen. | |
| // @icon http://www.google.com/s2/favicons?domain=www.kleinanzeigen.de | |
| // @copyright 2024, J05HI (https://github.com/J05HI) | |
| // @license MIT | |
| // @version 1.4.0 | |
| // @match https://www.kleinanzeigen.de/p-anzeige-bearbeiten.html* | |
| // @grant none |
cgrothaus
/ replicated_con_cache.ex
Last active
December 13, 2023 09:22
A replicated cache in 60 lines using ConCache and Phoenix PubSub
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| defmodule MyApp.ReplicatedConCache do | |
| @moduledoc """ | |
| Utility to replicate local ConCache operations via Phoenix.PubSub. | |
| Only those ConCache functions that we need are replicated. | |
| Prerequisites: | |
| - for all relevant cache ids, there is a ConCache instance running on | |
| each node connected to the PubSub system | |
| - these ConCache instances are all configured same (TTL etc.) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Local environment variables like secrets | |
| .env | |
| # Bundler directory | |
| .bundle | |
| # Cached rubocop files | |
| .rubocop-http* | |
| # Intermediate output file |
cgrothaus
/ brew-cleanup-orphans.zsh
Last active
October 29, 2020 08:45
— forked from papricasix/brew-cleanup-orphans.zsh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/zsh | |
| KEEP_FORMULAS=(asdf bat fd fzf git htop httpie hub iftop jq ncdu neovim p7zip ruby-build the_silver_searcher tig tmux watch yq z zsh) | |
| declare -A visited_formulas | |
| for formula ($KEEP_FORMULAS); do | |
| echo "Keeping $formula" | |
| visited_formulas[$formula]=1 | |
| done |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'set' | |
| ## | |
| # One solution for the set game kata. It is all about "SET", a card game. | |
| # For details on task to solve and the rules of the game, see | |
| # https://www.codewars.com/kata/set-the-card-game/ | |
| module SetGame | |
| ATTRIBUTES = %i[color shape number shading].freeze | |
| COLORS = %i[red green blue].freeze |
cgrothaus
/ namespace-issue-swagger-spec.yaml
Last active
June 5, 2018 14:51
Swagger specification showing a name shadowing issue when generating ruby code with swagger-codegen 2.3.1, see https://github.com/swagger-api/swagger-codegen/issues/8283
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| swagger: "2.0" | |
| info: | |
| version: "1.0" | |
| title: "Namespace issue demo swagger spec" | |
| produces: | |
| - application/json | |
| paths: | |
cgrothaus
/ have_i_been_pwned.rb
Created
March 13, 2018 19:49
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'digest' | |
| require 'io/console' | |
| require 'net/http' | |
| # Proxy setup here | |
| http = Net::HTTP # use this for no proxy or if you are fine with ENV var http_proxy | |
| # http = Net::HTTP::Proxy('myproxy.local', '8080') # use this for explicit configuration of proxy within this ruby script | |
| puts '+++++ PASSWORD CHECKER +++++' | |
| print 'Please enter password: ' |