Socket Alerts Types Support

✅ = Full support
⏳ = Coming soon (within next 3 months)

Category	Alert Type	Severity	JavaScript and TypeScript	Python	Go	Java and Kotlin	Ruby	.NET
			49 alerts	33 alerts	28 alerts	29 alerts	29 alerts	29 alerts
Vulnerability	Critical CVE	Critical	✅	✅	✅	✅	✅	✅
	High CVE	High	✅	✅	✅	✅	✅	✅
	Medium CVE	Medium	✅	✅	✅	✅	✅	✅
	Low CVE	Low	✅	✅	✅	✅	✅	✅
Supply Chain Risk	Known Malware	Critical	✅	✅	✅	✅	✅	✅
	Possible typosquat attack	Critical	✅	✅	⏳	✅	⏳	✅
	Suspicious Stars on GitHub	High	✅	✅
	AI-detected potential malware	High	✅	✅	✅	✅	✅	✅
	Git dependency	High	✅
	GitHub dependency	High	✅
	HTTP dependency	High	✅
	Obfuscated code	High	✅	✅
	Protestware or potentially unwanted behavior	High	✅	✅	✅	✅	✅	✅
	Telemetry	High	✅	✅	✅	✅	✅	✅
	Unstable ownership	High	✅
	AI-detected possible typosquat	Medium	✅	✅	✅	✅	✅	✅
	AI-detected potential security risk	Medium	✅	✅	✅	✅	✅	✅
	Native code	Medium	✅	✅	✅	✅	✅	✅
	Network access	Medium	✅	✅	✅	✅	✅	✅
	Non-existent author	Medium	✅
	Potential vulnerability	Medium	✅	✅	✅	✅	✅	✅
	Shell access	Medium	✅	✅	✅	✅	✅	✅
	Trivial Package	Medium	✅
	Uses eval	Medium	✅	✅	✅	✅	✅	✅
	AI-detected potential code anomaly	Low	✅	✅	✅	✅	✅	✅
	Environment variable access	Low	✅	✅	✅	✅	✅	✅
	Filesystem access	Low	✅	✅	✅	✅	✅	✅
	High entropy strings	Low	✅
	New author	Low	✅
Quality	Unpopular package	Medium	✅	✅	⏳	❌ Maven lacks support	✅	✅
	Minified code	Low	✅
Maintenance	Deprecated	Medium	✅	✅	✅	❌ Maven lacks support	❌ RubyGems lacks support
	Unmaintained	Low	✅	✅	⏳	✅	✅
License	Explicitly Unlicensed Item	High	✅	✅	✅	✅	✅	✅
	License Policy Violation	High	✅	✅	✅	✅	✅	✅
	Misc. License Issues	Medium	✅	✅	✅	✅	✅	✅
	Ambiguous License Classifier	Low	✅	✅	✅	✅	✅	✅
	Copyleft License	Low	✅	✅	✅	✅	✅	✅
	License exception	Low	✅	✅	✅	✅	✅	✅
	No License Found	Low	✅	✅	✅	✅	✅	✅
	Non-permissive License	Low	✅	✅	✅	✅	✅	✅
	Unidentified License	Low	✅	✅	✅	✅	✅	✅
JS-only: Supply Chain Risk	NPM Shrinkwrap	High	✅
	Install scripts	Medium	✅
	Manifest confusion	Medium	✅
	Debug access	Low	✅
	Dynamic require	Low	✅
JS-only: Quality	Bad dependency semver	Medium	✅
	Wildcard dependency	Medium	✅

👍
Tell us the alerts you want us to support next!
At Socket, we're committed to expanding our detection capabilities across diverse programming languages and package managers. We're driven by the needs of our users and customers so if there's a specific alert you'd like us to support, we'd love to hear from you. Please reach out to us to discuss your specific requirements.

Alert Types Support

👍
Tell us the alerts you want us to support next!

👍Tell us the alerts you want us to support next!

👍
Tell us the alerts you want us to support next!