Big update!Introducing GitHub Bot Commands. Learn more
Socket
Log inDemoInstall

Bin script confusion

Severity

High

Description

This package has multiple bin scripts with the same name. This can cause non-deterministic behavior when installing or could be a sign of a supply chain attack

Suggestion

Consider removing one of the conflicting packages. Packages should only export bin scripts with their name


Packages with this issue

Socket[email protected]

Product

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc