Jump to Content
Documentation
API Reference
v0
Log In
Documentation
Log In
Moon (Dark Mode)
Sun (Light Mode)
v0
Documentation
API Reference
Search
Introduction
Getting started
FAQ
SOCKET ALERTS
Ecosystem Support
Alert Types
Alert Types Support
Alert Categories
Vulnerability
Critical CVE
High CVE
Medium CVE
Low CVE
Supply Chain Risk
Known malware
Possible typosquat attack
AI-detected potential malware
Git dependency
GitHub dependency
HTTP dependency
Obfuscated code
Protestware or potentially unwanted behavior
Telemetry
Unstable ownership
AI-detected potential security risk
Native code
Network access
Non-existent author
Potential vulnerability
Shell access
Trivial Package
Uses eval
AI-detected potential code anomaly
Environment variable access
Filesystem access
High entropy strings
New author
JS-only: NPM Shrinkwrap
JS-only: Install scripts
JS-only: Manifest confusion
JS-only: Debug access
JS-only: Dynamic require
Quality
Unpopular package
Minified code
JS-only: Bad dependency semver
JS-only: Wildcard dependency
Maintenance
Deprecated
Unmaintained
License
Explicitly Unlicensed Item
Misc. License Issues
Ambiguous License Classifier
Copyleft License
License Exception
No License Found
Non-permissive License
Unidentified License
Alert Actions
Alert Actions and Triage Functionality
Package Scores
Reachability Analysis
Manifest File Detection in Socket
SOCKET DASHBOARD
Organization Alerts
Dependency Search
Repositories
Reports
Security Policy (Default Enabled Alerts)
Customizable Security Policies
License Policy
Threat Feed
Package Search
Users
Settings
API Tokens
Audit Log
Integrations
Slack
Vanta
SSO (Single Sign-On)
Integrations
SSO (Single Sign-On)
Slack alerts
Vanta integration
Socket for GitHub
Guide to Socket for GitHub
Install the App
Ignoring pull request alerts
socket.yml
What to do when you receive an alert
GitHub App Permissions
Enable branch protection
Understanding "Act on Your Behalf" Permission
CI/CD INTEGRATIONS
Socket for GitHub Actions
Socket for Gitlab Pipeline
Socket for Bitbucket Pipeline
Socket for Jenkins Jobs
Socket CLI
Guide to Socket CLI
Socket CLI Commands
socket npm & socket npx
socket ci
socket report
socket info
socket login
socket logout
socket wrapper
socket audit-log
socket dependencies
socket repo
socket scan
socket organizations
socket analytics
socket diff-scan
socket raw-npm
socket raw-npx
socket threat-feed
socket cdxgen
Socket CLI FAQ
safe-npm FAQ
Supported Node.js Versions
Socket for VS Code
Guide to Socket for VS Code
SOCKET REST API
Socket REST API
Socket JavaScript SDK
Socket Python SDK
Socket Chrome Extension
Guide to Socket Chrome Extension
Extension Permissions
Deploying via Google Workspace
Next steps
Join the community
Contact support
Advanced
Sample Malware Packages
Known issues
Incremental Rollout
Tool Configuration Files
Suggest
