We expect to know the purpose of all files in the directory. There should not be mystery files in the main directory of the project.
We find an unmentioned file called youve-been-pwned and we see the following in .gitignore :
Likelihood:
There is nothing in the file, but its appearance is concerning, especially because it hints at hacking.
Impact:
Unknown code could somehow run.
The unknown file could potentially run unknown code.
Delete the file youve-been-pwned and remove the following from .gitignore :
The contest is live. Earn rewards by submitting a finding.
Submissions are being reviewed by our AI judge. Results will be available in a few minutes.
View all submissionsThe contest is complete and the rewards are being distributed.