Big update!Introducing GitHub Bot Commands. Learn more
Socket
BlogLoveLog in
Book a demo

Obfuscated require

Severity

High

Description

Package accesses dynamic properties of require and may be obfuscating code execution.

Suggestion

The package should not access dynamic properties of module. Instead use import or require directly.

Packages with this issue

optimism

Composable reactive caching with efficient invalidation.

published 0.6.9 •

@shopify/web-worker

Tools for making web workers fun to use

published 5.0.1 •

email-deep-validator

Verify email address checking MX records, and SMTP connection.

published 3.3.0 •

esfunctional

Next Generation EcmaScript Functional Helpers

published 1.11.1 •

@hpcc-js/dgrid

hpcc-js - Viz DGrid

published 2.32.2 •

@hpcc-js/dgrid-shim

dgrid shim

published 2.24.2 •

@scrypted/client

```js import { connectScryptedClient, OnOff } from '@scrypted/client';

published 1.0.61 •

scrypted

published 1.0.50 •
Socket

Product

About

NPM Packages

Subscribe to our newsletter

Get open source security insights delivered straight into your inbox. Be the first to learn about new features and product updates.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc