[potential Security Alert] New `postinstall` script added in `forms-angular@0.12.0-pre`


A new `postinstall` script was detected in version `0.12.0-pre` of the package `forms-angular`.

**Script content:**
```
if [ -d 'node_modules/bower' ]; then bower install --config.directory=node_modules --production jquery@2.0.3 bootstrap-2-3-2=git://github.com/twbs/bootstrap.git#v2.3.2 bootstrap-3-3-7=git://github.com/twbs/bootstrap.git#v3.3.7; fi
```
see [npm documentation on package scripts](https://docs.npmjs.com/cli/v9/using-npm/scripts) for more details.
and [the detector](https://github.com/alphaleadership/npm-check). to understand why this script might be dangerous.
to get the alert only for dangerous scripts, please visit[the telegram](https://t.me/npmalert)
This could be a security risk. Please investigate.


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[potential Security Alert] New `postinstall` script added in `forms-angular@0.12.0-pre` #228

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[potential Security Alert] New postinstall script added in forms-angular@0.12.0-pre #228

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

[potential Security Alert] New `postinstall` script added in `forms-angular@0.12.0-pre` #228