mirror of
				https://github.com/falcosecurity/falco.git
				synced 2025-10-25 05:48:56 +00:00 
			
		
		
		
	Instead, run it directly. This avoids false positives when running non-bash commands and false negatives when trying to run a shell.
		
			
				
	
	
		
			26 lines
		
	
	
		
			836 B
		
	
	
	
		
			JavaScript
		
	
	
	
	
	
			
		
		
	
	
			26 lines
		
	
	
		
			836 B
		
	
	
	
		
			JavaScript
		
	
	
	
	
	
| var express    = require('express');        // call express
 | |
| var app        = express();                 // define our app using express
 | |
| var child_process = require('child_process');
 | |
| 
 | |
| var port = process.env.PORT || 8080;        // set our port
 | |
| 
 | |
| // ROUTES FOR OUR API
 | |
| // =============================================================================
 | |
| var router = express.Router();              // get an instance of the express Router
 | |
| 
 | |
| // test route to make sure everything is working (accessed at GET http://localhost:8080/api)
 | |
| router.get('/', function(req, res) {
 | |
|     res.json({ message: 'API available'});
 | |
| });
 | |
| 
 | |
| router.get('/exec/:cmd', function(req, res) {
 | |
|     var ret = child_process.spawnSync(req.params.cmd);
 | |
|     res.send(ret.stdout);
 | |
| });
 | |
| 
 | |
| app.use('/api', router);
 | |
| 
 | |
| app.listen(port);
 | |
| console.log('Server running on port: ' + port);
 | |
| 
 |