Big update!Introducing GitHub Bot Commands. Learn more
Socket
Log inDemoInstall

Filesystem access

Severity

Low

Description

Accesses the file system, and could potentially read sensitive data.

Suggestion

If a package must read the file system, clarify what it will read and ensure it reads only what it claims to. If appropriate, packages can leave file system access to consumers and operate on data passed to it instead.

Packages with this issue

Socket[email protected]

Product

About

NPM Packages

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc