Libraries tagged by bug-bounty

AUTHORIZED BUG BOUNTY DEPENDENCY-CONFUSION CANARY. This empty placeholder claims the previously-unowned 'phished/core' Composer namespace on the public Packagist registry to neutralise the dependency-confusion attack surface affecting phished.io's CI. Contains zero functional code. The post-install hook executes a single PHP gethostbyname() DNS lookup to a researcher-controlled OAST endpoint - no HTTP requests, no file reads, no shell execution, no data transmitted beyond an unattributable 8-char hash of the installing host's name. Authorised by phished.io bug bounty program. Contact: [email protected].

Go to Download

Security placeholder for bug bounty vulnerability disclosure. No executable code. Please contact researcher eshwar_dec in intigriti or [email protected] for details.

Go to Download