Socket currently skips dependencies which are private npm packages, since it does not have access to them. This means that it does not analyze the transitive dependencies contained therein. Socket should support analyzing these somehow.
Created by Feross Aboukhadijeh (Socket)
·