Building my npx business card

by edenton 5/16/2025, 11:18:29 AM with 5 comments
  • by neilvon 5/19/2025, 2:16:40 AM

    Do these npx business cards run arbitrary code on your computer?

  • by watusernameon 5/19/2025, 3:39:38 AM

    Terminal business cards are a nice idea, but RCE business cards are just asking for trouble. Instead of npx, what happened to good'ol curl? Something like

    $ curl ashley.dev

    Some decades ago, we had finger (https://en.wikipedia.org/wiki/Finger_%28protocol%29) which is designed for this very use case. Sadly it's no longer installed by default with most distros:

    $ finger @ashley.dev

  • by theamkon 5/19/2025, 3:04:00 AM

    Reminds me of JAPH [0] - a tiny Perl program that was used in email/newsgroup signature to give it personal touch.

    [0] https://www.perlmonks.org/?node_id=412464

  • by queezeyon 5/19/2025, 2:49:52 PM

    This would be a great advertisement for security consulting.

    "I was just able to run arbitrary code on your computer. Here is a sample of your recent browser history. Let me tell you help you mitigate your security vulnerabilities."

  • by steeleon 5/19/2025, 2:14:16 AM

    Ooh, free real estate, let's colonize and gentrify package management