New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More

inferno

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

inferno - Package Alerts

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package