Affected script: "install-scripts:post-update-cmd"
The script initially removes all files located in the app/etc directory and then attempts to remove the directory itself. This could potentially delete important configuration files or other sensitive data stored in these directories, which eventually can result in application or system failures. Furthermore, it checks if the COMPOSER_DEV_MODE variable equals 0, and if it does not, it modifies the configuration of the PHP_CodeSniffer, which could possibly allow malicious code to bypass security checks if the configuration is improperly set.