Socket
Socket is a developer-first supply-chain security platform that protects applications from malicious dependencies, vulnerable packages, license risk, and software-supply-chain attacks across npm, PyPI, Go, Maven, Cargo, NuGet, RubyGems, and other open-source ecosystems. Socket ships a hosted API, CLI, MCP server, Firewall package-installer proxy (sfw), GitHub App, IDE extensions, SDKs, and reusable integrations for Jira, Slack, GitHub, GitLab, Bitbucket, Azure DevOps, and Microsoft Teams. The Socket API exposes 70+ alert categories — malware, typo- squats, install scripts, telemetry, native code, crypto wallets, suspicious network activity, license issues — plus full-scan reports with SBOM export (CycloneDX, SPDX, OpenVEX), diff scans for pull requests, a triage workflow, webhooks, and a real-time threat feed of newly discovered malicious packages.
APIs
Socket Packages API
Look up risk scores, alerts, capabilities, license, and supply-chain metadata for any open-source package by Package URL (purl). Supports npm, PyPI, Go, Maven, Cargo, NuGet, Rub...
Socket Full Scans API
Create, list, fetch, rescan, archive, and export full-scan reports for an organization's repos. Upload manifest files (package.json, requirements.txt, go.mod, pom.xml, Cargo.tom...
Socket Diff Scans API
Compute and inspect diff scans between two full scans — the engine that powers Socket's pull-request comments. Identifies added, removed, and modified dependencies with their se...
Socket Alerts API
Query current and historical security alerts for an organization across all scans, repos, and packages. Supports trend analysis, filtering by alert type and severity, and full-s...
Socket Triage API
Triage workflow for alerts — list and update the disposition (ignore, acknowledge, escalate, allow) of any alert in an organization. Comments and decision history are recorded f...
Socket Repos API
Manage the repositories Socket is monitoring inside an organization, plus repo labels for policy targeting. CRUD repos, attach/detach labels, and configure per-label settings th...
Socket Organization Settings API
Configure Socket at the organization level — security policy (which alerts block/warn/ignore), license policy (allowed/denied SPDX identifiers), telemetry collection toggles, So...
Socket Webhooks API
Register, list, update, and delete webhooks that fire when scans complete, alerts trigger, triage decisions are made, or threat-feed entries match an organization's packages. Us...
Socket Threat Feed API
Real-time feed of newly discovered malicious or suspicious packages across npm, PyPI, Go, RubyGems, and other ecosystems. Filter by ecosystem, alert type, and time window. Power...
Socket Fixes API
List available fixes — version bumps, patches, and overrides — for vulnerable or risky dependencies in an organization's scanned projects. Powers Socket's auto-fix pull-request ...
Socket Dependencies API
Search and reverse-look-up dependencies across all of an organization's scanned repos. Find every project consuming a specific package and version, plus historical dependency-co...
Socket API Tokens API
Provision, rotate, and revoke API tokens for an organization, inspect the caller's quota, and list the organizations the calling token has access to. Token-scoped permission gra...
Socket Audit Log API
Append-only audit log of every administrative event in a Socket organization — policy changes, member changes, token actions, triage decisions, and integration changes. Use for ...
Socket Organization Snapshots API
Retrieve historical organization-level snapshots — point-in-time aggregations of dependencies, alerts, and risk metrics across all monitored repos. Used to populate trend dashbo...
Socket Metadata API
Reference metadata for the Socket platform — the live machine-readable OpenAPI spec, the catalog of alert types and their severities, the catalog of license metadata used by lic...
Collections
Socket Alerts API
POSTMANSocket Api Tokens API
POSTMANSocket Audit Log API
POSTMANSocket Dependencies API
POSTMANSocket Diff Scans API
POSTMANSocket Fixes API
POSTMANSocket Full Scans API
POSTMANSocket Metadata API
POSTMANSocket Org Settings API
POSTMANSocket Org Snapshots API
POSTMANSocket Packages API
POSTMANSocket Repos API
POSTMANSocket Threat Feed API
POSTMANSocket Triage API
POSTMANSocket Webhooks API
POSTMANSocket Alerts API
OPENSocket Audit Log API
OPENSocket Fixes API
OPENSocket Metadata API
OPENSocket Packages API
OPENSocket Repos API
OPENSocket Triage API
OPENSocket Webhooks API
OPENArazzo Workflows
Socket Audit Organization Dependencies
Search the organization's in-use dependencies by PURL, then pull alert metadata for those same packages.
ARAZZOSocket Create and Report a Full Scan
Ensure a repository exists, create a full scan from manifest files, poll until it finishes, then export the alert CSV.
ARAZZOSocket Diff Two Full Scans by ID
List the two most recent full scans for a repository and create a diff scan comparing them, then poll the diff until ready.
ARAZZOSocket Diff a Repository Against Its HEAD Scan
Confirm a repository, create a diff scan against its current HEAD full scan, then poll the diff until cached results are ready.
ARAZZOSocket Fix Vulnerabilities in a Repository
Confirm a repository and its HEAD scan, then fetch the available fixes for its vulnerabilities.
ARAZZOSocket Investigate Alert Across Scans
Pick the latest alert, find the full scans it appears in, then read the metadata of one of those scans.
ARAZZOSocket Generate PDF Report for Latest Scan
Find the most recent full scan for a repository, confirm its metadata, then generate a PDF report.
ARAZZOSocket Package Issues and Available Fixes
Look up alert metadata for a batch of packages by PURL, then fetch available fixes for the discovered vulnerabilities.
ARAZZOSocket Poll Full Scan to Completion
Create a full scan and poll its metadata until the scan_state leaves the processing states.
ARAZZOSocket Provision and Verify a Webhook
Create an organization webhook for selected events, then read it back to confirm it was registered.
ARAZZOSocket Rescan and Report a Full Scan
Rescan an existing full scan to apply the latest policies, poll the new scan to completion, then export its alert CSV.
ARAZZOSocket Review and Update Org Security Policy
Read the organization's current security policy, then write back an updated default level and rule set.
ARAZZOSocket Start and Poll Historical Snapshot
Start an on-demand historical data snapshot job, then poll the snapshot list until the job's request id appears.
ARAZZOSocket Triage Latest Alerts
List the latest organization alerts and, when any are present, apply a triage state to one of them.
ARAZZO