diff --git a/assets/radar-rules.js b/assets/radar-rules.js
index 5c2b2c3ca9..e96f54764f 100644
--- a/assets/radar-rules.js
+++ b/assets/radar-rules.js
@@ -1107,6 +1107,17 @@
},
],
},
+ 'hackerone.com': {
+ _name: 'HackerOne',
+ '.': [
+ {
+ title: 'HackerOne Hacker Activity',
+ docs: 'https://docs.rsshub.app/other.html#hackerone-hacker-activity',
+ source: '/hacktivity',
+ target: '/hackerone/hacktivity',
+ },
+ ],
+ },
'cowlevel.net': {
_name: '奶牛关',
'.': [
diff --git a/docs/other.md b/docs/other.md
index ed1bb8e3ea..4cfcaadc4d 100644
--- a/docs/other.md
+++ b/docs/other.md
@@ -521,3 +521,9 @@ type 为 all 时,category 参数不支持 cost 和 free
### はてな匿名ダイアリー - 人気記事アーカイブ
+
+## HackerOne
+
+### HackerOne Hacker Activity
+
+
diff --git a/lib/router.js b/lib/router.js
index 9ceac7f86b..1487a4d806 100644
--- a/lib/router.js
+++ b/lib/router.js
@@ -2205,6 +2205,9 @@ router.get('/piapro/public/:type/:tag?/:category?', require('./routes/piapro/pub
router.get('/open163/vip', require('./routes/netease/open/vip'));
router.get('/open163/latest', require('./routes/netease/open/latest'));
+// HackerOne
+router.get('/hackerone/hacktivity', require('./routes/hackerone/hacktivity'));
+
// 奶牛关
router.get('/cowlevel/element/:id', require('./routes/cowlevel/element'));
diff --git a/lib/routes/hackerone/hacktivity.js b/lib/routes/hackerone/hacktivity.js
new file mode 100644
index 0000000000..4ec2411856
--- /dev/null
+++ b/lib/routes/hackerone/hacktivity.js
@@ -0,0 +1,46 @@
+const got = require('@/utils/got');
+
+module.exports = async (ctx) => {
+ const response = await got.post('https://hackerone.com/graphql', {
+ json: {
+ operationName: 'HacktivityPageQuery',
+ variables: {
+ where: {
+ report: {
+ disclosed_at: {
+ _is_null: false,
+ },
+ },
+ },
+ secureOrderBy: {
+ latest_disclosable_activity_at: {
+ _direction: 'DESC',
+ },
+ },
+ count: 25,
+ maxShownVoters: 0,
+ },
+ query:
+ 'query HacktivityPageQuery($querystring: String, $orderBy: HacktivityItemOrderInput, $secureOrderBy: FiltersHacktivityItemFilterOrder, $where: FiltersHacktivityItemFilterInput, $count: Int, $cursor: String, $maxShownVoters: Int) {\n me {\n id\n __typename\n }\n hacktivity_items(first: $count, after: $cursor, query: $querystring, order_by: $orderBy, secure_order_by: $secureOrderBy, where: $where) {\n total_count\n ...HacktivityList\n __typename\n }\n}\n\nfragment HacktivityList on HacktivityItemConnection {\n total_count\n pageInfo {\n endCursor\n hasNextPage\n __typename\n }\n edges {\n node {\n ... on HacktivityItemInterface {\n id\n databaseId: _id\n ...HacktivityItem\n __typename\n }\n __typename\n }\n __typename\n }\n __typename\n}\n\nfragment HacktivityItem on HacktivityItemUnion {\n type: __typename\n ... on HacktivityItemInterface {\n id\n votes {\n total_count\n __typename\n }\n voters: votes(last: $maxShownVoters) {\n edges {\n node {\n id\n user {\n id\n username\n __typename\n }\n __typename\n }\n __typename\n }\n __typename\n }\n upvoted: upvoted_by_current_user\n __typename\n }\n ... on Undisclosed {\n id\n ...HacktivityItemUndisclosed\n __typename\n }\n ... on Disclosed {\n id\n ...HacktivityItemDisclosed\n __typename\n }\n ... on HackerPublished {\n id\n ...HacktivityItemHackerPublished\n __typename\n }\n}\n\nfragment HacktivityItemUndisclosed on Undisclosed {\n id\n reporter {\n id\n username\n ...UserLinkWithMiniProfile\n __typename\n }\n team {\n handle\n name\n medium_profile_picture: profile_picture(size: medium)\n url\n id\n ...TeamLinkWithMiniProfile\n __typename\n }\n latest_disclosable_action\n latest_disclosable_activity_at\n requires_view_privilege\n total_awarded_amount\n currency\n __typename\n}\n\nfragment TeamLinkWithMiniProfile on Team {\n id\n handle\n name\n __typename\n}\n\nfragment UserLinkWithMiniProfile on User {\n id\n username\n __typename\n}\n\nfragment HacktivityItemDisclosed on Disclosed {\n id\n reporter {\n id\n username\n ...UserLinkWithMiniProfile\n __typename\n }\n team {\n handle\n name\n medium_profile_picture: profile_picture(size: medium)\n url\n id\n ...TeamLinkWithMiniProfile\n __typename\n }\n report {\n id\n title\n substate\n url\n __typename\n }\n latest_disclosable_action\n latest_disclosable_activity_at\n total_awarded_amount\n severity_rating\n currency\n __typename\n}\n\nfragment HacktivityItemHackerPublished on HackerPublished {\n id\n reporter {\n id\n username\n ...UserLinkWithMiniProfile\n __typename\n }\n team {\n id\n handle\n name\n medium_profile_picture: profile_picture(size: medium)\n url\n ...TeamLinkWithMiniProfile\n __typename\n }\n report {\n id\n url\n title\n substate\n __typename\n }\n latest_disclosable_activity_at\n severity_rating\n __typename\n}',
+ },
+ responseType: 'json',
+ });
+ ctx.state.data = {
+ title: 'HackerOne Hacker Activity',
+ link: 'https://hackerone.com/hacktivity',
+ item: response.data.data.hacktivity_items.edges.map((item) => {
+ const author = item.node.reporter.username;
+ const vendor = item.node.team.name;
+ const state = item.node.report.substate.replace(/^[a-z]/g, (L) => L.toUpperCase());
+ const severity = item.node.severity_rating.replace(/^[a-z]/g, (L) => L.toUpperCase());
+ const awarded = item.node.total_awarded_amount ? item.node.total_awarded_amount : 0;
+ return {
+ title: item.node.report.title,
+ description: `By ${author} to ${vendor} | ${state} | ${severity} | $${awarded}`,
+ author: author,
+ pubDate: new Date(item.node.latest_disclosable_activity_at).toUTCString(),
+ link: `https://hackerone.com/reports/${item.node.databaseId}`,
+ };
+ }),
+ };
+};