Exciting news!Announcing our $4.6M Series Seed. Learn more
Socket
LoveBlogFAQ
Install
Log in

Extraneous dependency

Severity

Medium

Description

Package optionally loads a dependency which is not specified within any of the package.json dependency fields. It may inadvertently be importing dependencies specified by other packages.

Suggestion

Specify all optionally loaded dependencies in optionalDependencies within package.json.

Packages with this issue

debug

Lightweight debugging utility for Node.js and the browser

qix
 published 4.3.4 •

fs-extra

fs-extra contains methods that aren't included in the vanilla Node.js fs package. Such as mkdir -p, cp -r, and rm -rf.

jp
 published 0.9.1 •

cross-spawn

Cross platform child_process#spawn and child_process#spawnSync

satazor
 published 5.1.0 •

esprima

ECMAScript parsing infrastructure for multipurpose analysis

ariya
 published 4.0.1 •

node-fetch

A light-weight module that brings window.fetch to node.js

endless
 published 2.6.6 •

follow-redirects

HTTP and HTTPS modules that follow redirects.

rubenverborgh
 published 1.15.0 •

typescript

TypeScript is a language for application scale JavaScript development

typescript-bot
 published 3.9.6 •

prettier

Prettier is an opinionated code formatter

sosukesuzuki
 published 2.6.2 •

jsdom

A JavaScript implementation of the DOM and HTML standards

domenic
 published 8.5.0 •

promise-inflight

One promise for multiple requests in flight to avoid async duplication

iarna
 published 1.0.1 •
Socket

Product

NPM Packages

About

Subscribe to our newsletter

Get open source security insights delivered straight into your inbox. Be the first to learn about new features and product updates.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc