Socket for GitHub
Detect suspicious packages in PRs
Socket CLI
Use Socket from the command line
Socket Dependency Search
Find any package for your project
Docs
Want to read all the docs? Start here
Blog
Keep up to date with all the news
Customers
Check out our customer stories
NPM Shrinkwrap
Severity
High
Description
Package contains a shrinkwrap file. This may allow the package to bypass normal install procedures.
Suggestion
Packages should never use npm shrinkwrap files due to the dangers they pose.