Please Pin github dependency version to a commit hash

[autopulated]

The current published version of socks-proxy-agent includes this in its devDependencies:

"socksv5": "github:TooTallNate/socksv5#fix/dstSock-close-event"

If this dependency needs to reference github instead of a published version, it should reference a commit hash instead of a branch, so that the branch could not be updated in a supply chain attack of the dependency.

This is low-risk because it's just a devDependency, but would be best to fix.