Launch Week Day 5: Introducing Reachability for PHP.Learn More
Socket
Book a DemoSign in
Socket

Secure your dependencies. Ship with confidence.

Socket is a developer-first security platform that protects your code from both vulnerable and malicious dependencies.

Install GitHub App
Book a Demo

Questions? Call us at (844) SOCKET-0

Find and compare millions of open source packages

Quickly evaluate the security and health of any open source package.

jquery
t

timmywil published 4.0.0

left-pad
s

stevemao published 1.3.0

react
r

react-bot published 19.2.5

We protect you from vulnerable and malicious packages

n8n-nodes-social-tiktok

0.1.4

by kerituni12

Live on npm

Blocked by Socket

The obfuscated fragment exhibits strong indicators of covert data flow and remote exfiltration channels. While some components could be legitimate cryptographic/session handling, the presence of heavy obfuscation, credential-like payloads, and persistent outbound network activity constitutes a high risk in a supply-chain setting. Recommend sandboxing, rigorous runtime auditing, and a full dependency-wide code review to confirm intent and mitigate risk.

@kbr-gmbh/kbr-ebus

2.3.0-dev.8

by kbradmin

Live on npm

Blocked by Socket

The code executes a bundled shell script with sudo during runtime, which is a high-risk supply-chain behavior. The snippet itself does not show explicit data exfiltration or obfuscation, but because it runs a privileged shell script with no validation or user prompt, it can perform arbitrary malicious actions depending on the script contents. Review the contents of bash/postinstall.sh and avoid running this package in environments where elevated privileges or sensitive data are present.

scichart.charting

8.3.0.28011

by SciChart.Charting, SciChart Ltd

Live on nuget

Blocked by Socket

This file contains a mix of legitimate SciChart UI code and a separate SciChartUpdate component that implements a malicious remote-update/backdoor mechanism. SciChartTestLib starts a background thread, disables TLS validation, polls hardcoded remote endpoints (base64-encoded IP/URLs), downloads an obfuscated binary, writes it to disk, and uses a RunPE-style process injection (VirtualAllocEx/WriteProcessMemory/SetThreadContext/ResumeThread) to execute the payload hidden inside a host process (iexplore.exe). These are classic indicators of malware/supply-chain compromise. Treat this package as malicious and do not run it. Immediate remediation: remove/disable the SciChartUpdate components, revoke any distributed versions, and investigate source of injected code.

@kbr-gmbh/kbr-ebus

2.3.5-dev.25

by kbradmin

Live on npm

Blocked by Socket

The code executes a bundled shell script with sudo during runtime, which is a high-risk supply-chain behavior. The snippet itself does not show explicit data exfiltration or obfuscation, but because it runs a privileged shell script with no validation or user prompt, it can perform arbitrary malicious actions depending on the script contents. Review the contents of bash/postinstall.sh and avoid running this package in environments where elevated privileges or sensitive data are present.

fsd

0.1.302

Removed from pypi

Blocked by Socket

This module zips a local directory and uploads it to a specific S3 bucket. The code contains hardcoded AWS credentials and a hardcoded bucket name, which is a severe security issue and could enable data exfiltration if these credentials are valid. There are additional problems: a likely return-value bug (undefined variable s3_ke), possible insufficient path-safety around symlinks, and verbose logging of paths. There is no evidence of obfuscation or active payloads like reverse shells or eval-based code execution. Treat this package as high-risk until credentials are removed/rotated and the code is corrected and reviewed.

Live on pypi for 5 days, 3 hours and 33 minutes before removal. Socket users were protected even while the package was live.

synapse-sdk

0.0.1

by rvagg

Live on npm

Blocked by Socket

This code is not performing data exfiltration or executing remote commands, but it intentionally aborts the host Node.js process and points users to another package/repository. That behavior is characteristic of a supply-chain sabotage or forced deprecation/redirect. Consider the module malicious or at minimum unacceptable for libraries expected to be importable; investigate ownership and recent changes before using. Do not include or run this version in production or CI.

doughnuts

3.9.2

Live on pypi

Blocked by Socket

This module is a reverse-shell/backdoor builder and delivery component. It constructs and dispatches payloads that will create outbound interactive shells to an attacker-controlled ip:port. Treat this code as malicious: do not run it in trusted environments. If found in a dependency, remove and investigate downstream compromise. The snippet has syntax issues and some behavior depends on external helper functions, but intent and danger are clear.

youshow.ace.aop

8.0.9

by Ace

Live on nuget

Blocked by Socket

This file contains a legitimate-looking AOP API surface but embeds a heavily-obfuscated loader capable of decrypting embedded resources and performing in-memory code injection/patching via VirtualAlloc/WriteProcessMemory/Marshal.WriteIntPtr and even writing to /proc/self/mem. These behaviors are not appropriate for a library intended only for AOP/service registration and are strongly indicative of a loader/backdoor or malicious packer inserted into the package. I recommend blocking use of this package, removing it from builds, and further dynamic/runtime analysis in an isolated environment to observe what embedded payloads are decrypted and executed.

github.com/gravitl/netmaker

v0.5.12-0.20210728204013-9635590322ef

Live on go

Blocked by Socket

Best matching report: Report 3 (most complete and correctly identifies the disruption/uninstall pattern). The improved assessment is that this snippet is a high-impact, unguarded teardown script that deletes systemd unit definitions and application configuration, removes specific network interfaces, and stops/removes containers and persistent Docker volumes. That strongly endangers availability and data integrity in a supply-chain context, but the fragment alone does not prove credential theft/exfiltration; therefore malware intent is not certain, though security risk is very high.

dnszlsk/muad-dib

34fca4b8f5d1834001a819c2c572f859de855a41

Live on actions

Blocked by Socket

This package runs local code automatically at install time and its name/description strongly imply it is designed to steal environment variables. Treat it as malicious: do not install in production or on machines with secrets. Inspect the contents of index.js and any network calls it makes; if you must analyze, run in an isolated, instrumented environment.

cirrus-matchmaker

9.9.9

by 0xwise64

Removed from npm

Blocked by Socket

The script collects information like hostname, operating system, user information, and current path, then sends it to a remote server.

github.com/TechMDW/godown

v0.0.1

Live on go

Blocked by Socket

This function is intentionally malicious and implements an HTTP flood (DDoS/DoS) capability: it repeatedly issues GET requests with randomized headers from multiple goroutines in infinite loops, designed to overwhelm and evade detection. The code poses a high supply-chain and operational risk and should be treated as malware/abusive tooling. Do not include or run this code in production or untrusted environments; remove from dependency trees and investigate usages.

circuit-codegen-annotations

10.0.1

by cybershree3

Live on npm

Blocked by Socket

This install script collects environment and user information from the host and posts it to an external server during installation. That is direct data exfiltration / unauthorized telemetry and poses a high privacy and security risk. It may be used for fingerprinting or as a precursor to further malicious actions. Review and remove such behavior or block network access during install; inspect repository history and publisher trustworthiness.

carbonorm/carbonphp

14.6.7

Live on composer

Blocked by Socket

The migration tool exhibits legitimate migration behaviors but contains a pronounced backdoor-like pattern in selfHidingFile, wrapped with license gating and __HALT_COMPILER usage. This creates a dangerous supply-chain and runtime risk: if artifacts are deployed, an attacker could leverage the HALT payload to read or serve files, or otherwise exfiltrate data. Recommend removing selfHidingFile, isolating license logic, auditing all remote file fetches, and enforcing strict provenance controls before adoption.

kfsd

0.0.88

Live on pypi

Blocked by Socket

This module contains a critical vulnerability: unconstrained eval() of attacker-controlled 'input.expr' with access to local variables (including a formatted request object). This yields remote code execution and potential data exfiltration. The code likely represents an insecure design/bug rather than intentionally malicious code, but it must be remediated before handling untrusted inputs. Also fix the apparent syntax error in getAttr.

@kmmao/happy-coder

0.21.0

by kmmao

Live on npm

Blocked by Socket

This codebase provides a potent remote-management toolchain with shell and filesystem access, encrypted RPC transport, and optional log exfiltration. While legitimate in controlled environments, the presence of an unrestricted bash RPC, broad filesystem sinks, and a global remote-logging toggle constitutes a significant security risk, particularly if authentication/authorization is weak or the RPC channel is compromised. Default-off dangerous features, strict input allowlists, and sandboxing of shell operations are strongly advised to reduce risk. Overall security risk elevated due to surface area: high risk 0.85, malware 0.85, obfuscated 0.12, confidence 0.58.

mmqs

1.4.5

by kakagood

Removed from npm

Blocked by Socket

Pinging a domain is a common network diagnostic tool, but it can also be used for reconnaissance or to test network connectivity. The specific domain being pinged is suspicious and may indicate malicious intent.

Live on npm for 8 minutes before removal. Socket users were protected even while the package was live.

@tria-sdk/expo-core

6.0.0

by threely

Live on npm

Blocked by Socket

The code path that decrypts sensitive data to recover a private key, signs a transaction, and returns the signed payload via a client-facing callback represents a high-risk pattern for credential leakage and unauthorized transaction signing. Without explicit, auditable user consent and properly sandboxed execution, this flow is unsuitable for production wallet components. The embedded credentials and reliance on external decryption services further elevate risk. Immediate remediation should include removing client-side private key material derivation from ciphertext, replacing Lit-based decryption with server-mediated, consented flows, and eliminating hardcoded API keys/endpoints in the bundle.

graphscript

0.2.98

by moothyknight

Live on npm

Blocked by Socket

High-risk module fragment. The code contains explicit eval/dynamic function construction (eval/new Function) and enables converting attacker-controlled strings (method/config like draw/update/init/clear) into executable code. It also captures user input events and can proxy/forward them through worker/service/router mechanisms, and it monkey-patches global fetch. These are strong indicators of potential malware/sabotage or at minimum a very unsafe design for a third-party dependency.

watchtool-baileys

6.7.26

by martin-jpg

Live on npm

Blocked by Socket

`lotusbail` is a malicious npm package that masquerades as a WhatsApp Web API library by forking legitimate Baileys-based code and preserving working messaging functionality. In addition to normal API behavior, it inserts a wrapper around the WhatsApp WebSocket client so that all traffic passing through the library is duplicated for collection. Reported data theft includes WhatsApp authentication tokens and session keys, full message content (sent/received and historical), contact lists (including phone numbers), and transferred media/files. The package also attempts to establish persistent unauthorized access by hijacking the WhatsApp device-linking (“pairing”) workflow using a hardcoded pairing code, effectively linking an attacker-controlled device to the victim’s account; removing the npm dependency does not automatically remove the linked device. To hinder detection, the exfiltration endpoint is hidden behind multiple obfuscation layers, collected data is encrypted (including a custom RSA implementation), and the code includes anti-debugging traps designed to disrupt analysis.

@segment/action-destinations

3.227.4-staging.2

by ankit.gupta.unthinkable

Live on npm

Blocked by Socket

This file defines a Segment destination named 'Trackey' but hard-codes its HTTP sink to https://eo493p73oqjeket[.]m[.]pipedream[.]net/public-api/integrations/segment/webhook. All incoming event fields (userId, event, messageId, timestamp, properties, groupId, traits) are forwarded verbatim in a JSON POST, and the user-supplied API key is sent in an 'api-key' header. Because the endpoint is an unrelated pipedream[.]net collector rather than an official Trackey API, this constitutes intentional data exfiltration and credential leakage. Do not deploy this connector with real secrets or PII until the endpoint and maintainer intent are fully verified; rotate any exposed keys immediately.

pinokiod

3.2.189

by cocktailpeanut

Live on npm

Blocked by Socket

The SweetAlert2 library code is mostly benign and serves as a UI modal dialog tool. However, it contains a suspicious and potentially malicious snippet that targets Russian users on certain domains to play an unsolicited audio prank, disabling pointer events and potentially disrupting user interaction. This behavior is unexpected and should be considered a moderate security risk and potential malware. The rest of the code shows no signs of malicious intent. The provided reports were invalid and unhelpful. Users should be cautious about this version of the library due to the embedded prank behavior.

installutils-nohook

1.0.0

Removed from pypi

Blocked by Socket

The code exhibits behaviors consistent with malicious activity, including data exfiltration and potential remote code execution. It poses a significant security risk.

Live on pypi for 2 hours and 13 minutes before removal. Socket users were protected even while the package was live.

muaddib-scanner

2.2.2

by dnszlsk

Live on npm

Blocked by Socket

This module contains a covert loader that extracts a hidden base64 payload from a bundled PNG and executes it via eval, creating an effective backdoor/RCE vector. This is high-risk and should be treated as malicious or at minimum an unacceptable supply-chain backdoor. Immediate actions: do not run the package in trusted environments; remove or block the code path; inspect assets/logo.png contents; treat any deployed instances as compromised until the payload and image provenance are audited.

n8n-nodes-social-tiktok

0.1.4

by kerituni12

Live on npm

Blocked by Socket

The obfuscated fragment exhibits strong indicators of covert data flow and remote exfiltration channels. While some components could be legitimate cryptographic/session handling, the presence of heavy obfuscation, credential-like payloads, and persistent outbound network activity constitutes a high risk in a supply-chain setting. Recommend sandboxing, rigorous runtime auditing, and a full dependency-wide code review to confirm intent and mitigate risk.

@kbr-gmbh/kbr-ebus

2.3.0-dev.8

by kbradmin

Live on npm

Blocked by Socket

The code executes a bundled shell script with sudo during runtime, which is a high-risk supply-chain behavior. The snippet itself does not show explicit data exfiltration or obfuscation, but because it runs a privileged shell script with no validation or user prompt, it can perform arbitrary malicious actions depending on the script contents. Review the contents of bash/postinstall.sh and avoid running this package in environments where elevated privileges or sensitive data are present.

scichart.charting

8.3.0.28011

by SciChart.Charting, SciChart Ltd

Live on nuget

Blocked by Socket

This file contains a mix of legitimate SciChart UI code and a separate SciChartUpdate component that implements a malicious remote-update/backdoor mechanism. SciChartTestLib starts a background thread, disables TLS validation, polls hardcoded remote endpoints (base64-encoded IP/URLs), downloads an obfuscated binary, writes it to disk, and uses a RunPE-style process injection (VirtualAllocEx/WriteProcessMemory/SetThreadContext/ResumeThread) to execute the payload hidden inside a host process (iexplore.exe). These are classic indicators of malware/supply-chain compromise. Treat this package as malicious and do not run it. Immediate remediation: remove/disable the SciChartUpdate components, revoke any distributed versions, and investigate source of injected code.

@kbr-gmbh/kbr-ebus

2.3.5-dev.25

by kbradmin

Live on npm

Blocked by Socket

The code executes a bundled shell script with sudo during runtime, which is a high-risk supply-chain behavior. The snippet itself does not show explicit data exfiltration or obfuscation, but because it runs a privileged shell script with no validation or user prompt, it can perform arbitrary malicious actions depending on the script contents. Review the contents of bash/postinstall.sh and avoid running this package in environments where elevated privileges or sensitive data are present.

fsd

0.1.302

Removed from pypi

Blocked by Socket

This module zips a local directory and uploads it to a specific S3 bucket. The code contains hardcoded AWS credentials and a hardcoded bucket name, which is a severe security issue and could enable data exfiltration if these credentials are valid. There are additional problems: a likely return-value bug (undefined variable s3_ke), possible insufficient path-safety around symlinks, and verbose logging of paths. There is no evidence of obfuscation or active payloads like reverse shells or eval-based code execution. Treat this package as high-risk until credentials are removed/rotated and the code is corrected and reviewed.

Live on pypi for 5 days, 3 hours and 33 minutes before removal. Socket users were protected even while the package was live.

synapse-sdk

0.0.1

by rvagg

Live on npm

Blocked by Socket

This code is not performing data exfiltration or executing remote commands, but it intentionally aborts the host Node.js process and points users to another package/repository. That behavior is characteristic of a supply-chain sabotage or forced deprecation/redirect. Consider the module malicious or at minimum unacceptable for libraries expected to be importable; investigate ownership and recent changes before using. Do not include or run this version in production or CI.

doughnuts

3.9.2

Live on pypi

Blocked by Socket

This module is a reverse-shell/backdoor builder and delivery component. It constructs and dispatches payloads that will create outbound interactive shells to an attacker-controlled ip:port. Treat this code as malicious: do not run it in trusted environments. If found in a dependency, remove and investigate downstream compromise. The snippet has syntax issues and some behavior depends on external helper functions, but intent and danger are clear.

youshow.ace.aop

8.0.9

by Ace

Live on nuget

Blocked by Socket

This file contains a legitimate-looking AOP API surface but embeds a heavily-obfuscated loader capable of decrypting embedded resources and performing in-memory code injection/patching via VirtualAlloc/WriteProcessMemory/Marshal.WriteIntPtr and even writing to /proc/self/mem. These behaviors are not appropriate for a library intended only for AOP/service registration and are strongly indicative of a loader/backdoor or malicious packer inserted into the package. I recommend blocking use of this package, removing it from builds, and further dynamic/runtime analysis in an isolated environment to observe what embedded payloads are decrypted and executed.

github.com/gravitl/netmaker

v0.5.12-0.20210728204013-9635590322ef

Live on go

Blocked by Socket

Best matching report: Report 3 (most complete and correctly identifies the disruption/uninstall pattern). The improved assessment is that this snippet is a high-impact, unguarded teardown script that deletes systemd unit definitions and application configuration, removes specific network interfaces, and stops/removes containers and persistent Docker volumes. That strongly endangers availability and data integrity in a supply-chain context, but the fragment alone does not prove credential theft/exfiltration; therefore malware intent is not certain, though security risk is very high.

dnszlsk/muad-dib

34fca4b8f5d1834001a819c2c572f859de855a41

Live on actions

Blocked by Socket

This package runs local code automatically at install time and its name/description strongly imply it is designed to steal environment variables. Treat it as malicious: do not install in production or on machines with secrets. Inspect the contents of index.js and any network calls it makes; if you must analyze, run in an isolated, instrumented environment.

cirrus-matchmaker

9.9.9

by 0xwise64

Removed from npm

Blocked by Socket

The script collects information like hostname, operating system, user information, and current path, then sends it to a remote server.

github.com/TechMDW/godown

v0.0.1

Live on go

Blocked by Socket

This function is intentionally malicious and implements an HTTP flood (DDoS/DoS) capability: it repeatedly issues GET requests with randomized headers from multiple goroutines in infinite loops, designed to overwhelm and evade detection. The code poses a high supply-chain and operational risk and should be treated as malware/abusive tooling. Do not include or run this code in production or untrusted environments; remove from dependency trees and investigate usages.

circuit-codegen-annotations

10.0.1

by cybershree3

Live on npm

Blocked by Socket

This install script collects environment and user information from the host and posts it to an external server during installation. That is direct data exfiltration / unauthorized telemetry and poses a high privacy and security risk. It may be used for fingerprinting or as a precursor to further malicious actions. Review and remove such behavior or block network access during install; inspect repository history and publisher trustworthiness.

carbonorm/carbonphp

14.6.7

Live on composer

Blocked by Socket

The migration tool exhibits legitimate migration behaviors but contains a pronounced backdoor-like pattern in selfHidingFile, wrapped with license gating and __HALT_COMPILER usage. This creates a dangerous supply-chain and runtime risk: if artifacts are deployed, an attacker could leverage the HALT payload to read or serve files, or otherwise exfiltrate data. Recommend removing selfHidingFile, isolating license logic, auditing all remote file fetches, and enforcing strict provenance controls before adoption.

kfsd

0.0.88

Live on pypi

Blocked by Socket

This module contains a critical vulnerability: unconstrained eval() of attacker-controlled 'input.expr' with access to local variables (including a formatted request object). This yields remote code execution and potential data exfiltration. The code likely represents an insecure design/bug rather than intentionally malicious code, but it must be remediated before handling untrusted inputs. Also fix the apparent syntax error in getAttr.

@kmmao/happy-coder

0.21.0

by kmmao

Live on npm

Blocked by Socket

This codebase provides a potent remote-management toolchain with shell and filesystem access, encrypted RPC transport, and optional log exfiltration. While legitimate in controlled environments, the presence of an unrestricted bash RPC, broad filesystem sinks, and a global remote-logging toggle constitutes a significant security risk, particularly if authentication/authorization is weak or the RPC channel is compromised. Default-off dangerous features, strict input allowlists, and sandboxing of shell operations are strongly advised to reduce risk. Overall security risk elevated due to surface area: high risk 0.85, malware 0.85, obfuscated 0.12, confidence 0.58.

mmqs

1.4.5

by kakagood

Removed from npm

Blocked by Socket

Pinging a domain is a common network diagnostic tool, but it can also be used for reconnaissance or to test network connectivity. The specific domain being pinged is suspicious and may indicate malicious intent.

Live on npm for 8 minutes before removal. Socket users were protected even while the package was live.

@tria-sdk/expo-core

6.0.0

by threely

Live on npm

Blocked by Socket

The code path that decrypts sensitive data to recover a private key, signs a transaction, and returns the signed payload via a client-facing callback represents a high-risk pattern for credential leakage and unauthorized transaction signing. Without explicit, auditable user consent and properly sandboxed execution, this flow is unsuitable for production wallet components. The embedded credentials and reliance on external decryption services further elevate risk. Immediate remediation should include removing client-side private key material derivation from ciphertext, replacing Lit-based decryption with server-mediated, consented flows, and eliminating hardcoded API keys/endpoints in the bundle.

graphscript

0.2.98

by moothyknight

Live on npm

Blocked by Socket

High-risk module fragment. The code contains explicit eval/dynamic function construction (eval/new Function) and enables converting attacker-controlled strings (method/config like draw/update/init/clear) into executable code. It also captures user input events and can proxy/forward them through worker/service/router mechanisms, and it monkey-patches global fetch. These are strong indicators of potential malware/sabotage or at minimum a very unsafe design for a third-party dependency.

watchtool-baileys

6.7.26

by martin-jpg

Live on npm

Blocked by Socket

`lotusbail` is a malicious npm package that masquerades as a WhatsApp Web API library by forking legitimate Baileys-based code and preserving working messaging functionality. In addition to normal API behavior, it inserts a wrapper around the WhatsApp WebSocket client so that all traffic passing through the library is duplicated for collection. Reported data theft includes WhatsApp authentication tokens and session keys, full message content (sent/received and historical), contact lists (including phone numbers), and transferred media/files. The package also attempts to establish persistent unauthorized access by hijacking the WhatsApp device-linking (“pairing”) workflow using a hardcoded pairing code, effectively linking an attacker-controlled device to the victim’s account; removing the npm dependency does not automatically remove the linked device. To hinder detection, the exfiltration endpoint is hidden behind multiple obfuscation layers, collected data is encrypted (including a custom RSA implementation), and the code includes anti-debugging traps designed to disrupt analysis.

@segment/action-destinations

3.227.4-staging.2

by ankit.gupta.unthinkable

Live on npm

Blocked by Socket

This file defines a Segment destination named 'Trackey' but hard-codes its HTTP sink to https://eo493p73oqjeket[.]m[.]pipedream[.]net/public-api/integrations/segment/webhook. All incoming event fields (userId, event, messageId, timestamp, properties, groupId, traits) are forwarded verbatim in a JSON POST, and the user-supplied API key is sent in an 'api-key' header. Because the endpoint is an unrelated pipedream[.]net collector rather than an official Trackey API, this constitutes intentional data exfiltration and credential leakage. Do not deploy this connector with real secrets or PII until the endpoint and maintainer intent are fully verified; rotate any exposed keys immediately.

pinokiod

3.2.189

by cocktailpeanut

Live on npm

Blocked by Socket

The SweetAlert2 library code is mostly benign and serves as a UI modal dialog tool. However, it contains a suspicious and potentially malicious snippet that targets Russian users on certain domains to play an unsolicited audio prank, disabling pointer events and potentially disrupting user interaction. This behavior is unexpected and should be considered a moderate security risk and potential malware. The rest of the code shows no signs of malicious intent. The provided reports were invalid and unhelpful. Users should be cautious about this version of the library due to the embedded prank behavior.

installutils-nohook

1.0.0

Removed from pypi

Blocked by Socket

The code exhibits behaviors consistent with malicious activity, including data exfiltration and potential remote code execution. It poses a significant security risk.

Live on pypi for 2 hours and 13 minutes before removal. Socket users were protected even while the package was live.

muaddib-scanner

2.2.2

by dnszlsk

Live on npm

Blocked by Socket

This module contains a covert loader that extracts a hidden base64 payload from a bundled PNG and executes it via eval, creating an effective backdoor/RCE vector. This is high-risk and should be treated as malicious or at minimum an unacceptable supply-chain backdoor. Immediate actions: do not run the package in trusted environments; remove or block the code path; inspect assets/logo.png contents; treat any deployed instances as compromised until the payload and image provenance are audited.

Detect and block software supply chain attacks

Socket detects traditional vulnerabilities (CVEs) but goes beyond that to scan the actual code of dependencies for malicious behavior. It proactively detects and blocks 70+ signals of supply chain risk in open source code, for comprehensive protection.

Possible typosquat attack

Known malware

Git dependency

GitHub dependency

HTTP dependency

Obfuscated code

Suspicious Stars on GitHub

Telemetry

Protestware or potentially unwanted behavior

Unstable ownership

55 more alerts

Detect suspicious package updates in real-time

Socket detects and blocks malicious dependencies, often within just minutes of them being published to public registries, making it the most effective tool for blocking zero-day supply chain attacks.

GitHub app screenshot

Developers love Socket

Socket is built by a team of prolific open source maintainers whose software is downloaded over 1 billion times per month. We understand how to build tools that developers love. But don’t take our word for it.

Even more developer love
Install GitHub AppRead the docs

Security teams trust Socket

The best security teams in the world use Socket to get visibility into supply chain risk, and to build a security feedback loop into the development process.

Book a Demo

Questions? Call us at (844) SOCKET-0

Read the blog

Protect every package in your stack

Secure your team's dependencies across your stack with Socket. Stop supply chain attacks before they reach production.

View all integrations

RUST

crates.io

Rust Package Manager

PHP

Packagist

PHP Package Manager

GOLANG

Go Modules

Go Dependency Management

JAVA

Maven Central

JAVASCRIPT

npm

Node Package Manager

.NET

NuGet

.NET Package Manager

PYTHON

PyPI

Python Package Index

RUBY

RubyGems.org

Ruby Package Manager

SWIFT

Swift

AI

Hugging Face Hub

AI Model Hub

CI

GitHub Actions

CI/CD Workflows

EXTENSIONS

Chrome Web Store

Chrome Browser Extensions

EXTENSIONS

Open VSX

VS Code Extensions

Supply chain attacks are on the rise

Attackers have taken notice of the opportunity to attack organizations through open source dependencies. Supply chain attacks rose a whopping 700% in the past year, with over 15,000 recorded attacks.

Nov 23, 2025

Shai Hulud v2

Shai Hulud v2 campaign: preinstall script (setup_bun.js) and loader (setup_bin.js) that installs/locates Bun and executes an obfuscated bundled malicious script (bun_environment.js) with suppressed output.

Nov 05, 2025

Elves on npm

A surge of auto-generated "elf-stats" npm packages is being published every two minutes from new accounts. These packages contain simple malware variants and are being rapidly removed by npm. At least 420 unique packages have been identified, often described as being generated every two minutes, with some mentioning a capture the flag challenge or test.

Jul 04, 2025

RubyGems Automation-Tool Infostealer

Since at least March 2023, a threat actor using multiple aliases uploaded 60 malicious gems to RubyGems that masquerade as automation tools (Instagram, TikTok, Twitter, Telegram, WordPress, and Naver). The gems display a Korean Glimmer-DSL-LibUI login window, then exfiltrate the entered username/password and the host's MAC address via HTTP POST to threat actor-controlled infrastructure.

Mar 13, 2025

North Korea's Contagious Interview Campaign

Since late 2024, we have tracked hundreds of malicious npm packages and supporting infrastructure tied to North Korea's Contagious Interview operation, with tens of thousands of downloads targeting developers and tech job seekers. The threat actors run a factory-style playbook: recruiter lures and fake coding tests, polished GitHub templates, and typosquatted or deceptive dependencies that install or import into real projects.

Jul 23, 2024

Network Reconnaissance Campaign

A malicious npm supply chain attack that leveraged 60 packages across three disposable npm accounts to fingerprint developer workstations and CI/CD servers during installation. Each package embedded a compact postinstall script that collected hostnames, internal and external IP addresses, DNS resolvers, usernames, home and working directories, and package metadata, then exfiltrated this data as a JSON blob to a hardcoded Discord webhook.

Ready to dive in?

Get protected by Socket with just 2 clicks.

Install GitHub App
Book a Demo

Questions? Call us at (844) SOCKET-0

The latest from the Socket team

Get our latest security research, open source insights, and product updates.

View all articles