Hello. I have no idea where should I post this, so I'm posting it here. I was checking recent updated resources and found a plugin called SkySneak (https://www.spigotmc.org/resources/skysneak.64598/). Just some simple plugin for sneaking instead of using bone meal. But it weighed 150KB so I decided to decompile it and see why. And it was just a big obfuscated code. All strings were made very strange way (https://pastebin.com/iaCydMz2), like he wanted to hide some text. I decided to check and run some of these in my computer and... well... it's a backdoor. When you type rf34f478249Hj827 in chat you get an item named "cOP" and then when you click it in your inventory it hides command output and gives you op. The plugin also sends a http request to his server, so he can know where he can get a free OP. I'm writing about this here, instead of just reporting the resource, to make sure someone from administration will find it and ban him. The plugin's author has a paid resource and its Lite version is also obfuscated, but also much bigger, so I can't check it for backdoors. Also, sorry for my bad English, I'm not a native speaker. UPDATE: His premium resource also has this backdoor. Just checked it. Install the LITE version(https://www.spigotmc.org/resources/now-free-minator-clever-ai-1-7-1-13.50034/) and type "rf34f478249Hj827" in chat.