Big update!Introducing GitHub Bot Commands. Learn more
Socket
Log inDemoInstall

Dynamic require

Severity

Low

Description

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Suggestion

Packages should avoid dynamic imports when possible. Audit the use of dynamic require to ensure it is not executing malicious or vulnerable code.


Packages with this issue

Socket[email protected]

Product

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc