Security News
Deno 2.6 + Socket: Supply Chain Defense In Your CLI
Deno 2.6 introduces deno audit with a new --socket flag that plugs directly into Socket to bring supply chain security checks into the Deno CLI.
By Sarah Gooding -  Dec 12, 2025
🚨 Shai-Hulud Strikes Again:834 Packages Compromised.Technical Analysis →
bin-path-cli
Advanced tools
bin-path-cli
Execute the current package's binary.
Like using npm link, but doesn't add your binary to the global path.
Demo with listr-cli.
Install
npm install --global bin-path-cli
Other Package Managers
yarn global add bin-path-cli
Usage
npx bin-path [source-map] [binary-name] [arguments or flags…]
Curent Working Directory
Inside of a directory with a package.json that specifies a binary either via bin or directories.bin, run via:
npx bin-path
If no binary is found, the bin-path command fails.
Arguments
Flags and arguments are passed as-is to your binary:
$ npx bin-path --some-flag arg1 arg2
Example
// cli.js
#!/usr/bin/env node
import process from "node:process";
const args = process.argv.slice(2);
console.log(`Arguments: [${args.join(", ")}]`);
$ npx bin-path arg1 arg2
#=> "Arguments: [arg1, arg2]"
Named binaries
If you have multiple exported binaries, they can be accessed by name if passed as the first argument to bin-path:
$ npx bin-path binary-name
Example
// package.json
"bin": {
"foo": "./foo.js",
"bar": "./bar.js"
}
# `foo` binary
$ npx bin-path foo --foo-flag
# `bar` binary
$ npx bin-path bar --bar-flag
Omitting a name searches for a binary with the same name as the project (i.e. name in package.json). This is the "default" binary.
Example
// package.json
"name": "foo",
"bin": {
"foo": "./foo.js",
"bar": "./bar.js"
}
# `foo` binary
$ npx bin-path --foo-flag
Source Mapping
If you're writing your binary in a language that compiles to JavaScript (e.g. TypeScript) and would like to test your source binary, you can map the built file to the source file by using the following format as the first argument to bin-path:
$ npx bin-path dist.js:::src.ts
Example
\__ dist/
\__ cli.js
\__ src/
\__ cli.ts
\__ package.json
Aliasing
The syntax for mapping to a source binary can be verbose. Adding the following as an alias to your .zshrc (or equivalent) could help:
alias bin-path-map="bin-path dist.js:::src.ts"
[!NOTE] The feature is under-tested and the syntax is subject to change. If you have any problems or suggestings, please file an issue.
Related
- get-bin-path - Get the current package's binary path.
FAQs
Execute the current package's binary.
We found that bin-path-cli demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 01 Sep 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
New React Server Components Vulnerabilities: DoS and Source Code Exposure
New DoS and source code exposure bugs in React Server Components and Next.js: what’s affected and how to update safely.
By Sarah Gooding -  Dec 12, 2025
Security News
Software Engineering Daily Podcast: Feross on AI, Open Source, and Supply Chain Risk
Socket CEO Feross Aboukhadijeh joins Software Engineering Daily to discuss modern software supply chain attacks and rising AI-driven security risks.
By Sarah Gooding -  Dec 11, 2025