Socket
Socket
Sign inDemoInstall

NPM Shrinkwrap

Severity

High

Description

Package contains a shrinkwrap file. This may allow the package to bypass normal install procedures.

Suggestion

Packages should never use npm shrinkwrap files due to the dangers they pose.

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc