Engineering
Introducing Dependency Divergence GitHub Action
Socket discusses the results of using different package managers to install your packages and introduces a GitHub action to expose those differences.
By Bradley Meck Farias - Oct 25, 2023
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
Engineering
Judicious JSON
JSON is a simple technology but has a lot of underlying topics to think about. This guide can help uncover those topics.
Bradley Meck Farias
December 26, 2023
Engineering
Cleaning up import paths in JS/TS packages
package.json contains a local aliasing mechanism for import paths called "imports" it satisfies many use cases without tooling specific solutions like tsconfig.json
By Bradley Meck Farias - Aug 16, 2023
Engineering
Signing is Just the Start
Socket provides an introspective on code signing in relation to the supply chain incident from SolarWinds.
By Mikola Lysenko - May 04, 2023
Research
Engineering
Let's make JS RegExps Streamy
Proposing a more usable RegExp for JS in light of async I/O and streaming.
By Bradley Meck Farias - Feb 17, 2023
Product
Engineering
Socket VSCode Extension
Introducing a VS Code editor integration for Socket Security.
By Bradley Meck Farias - Jan 31, 2023
Research
Engineering
Using GPT at Work
We have been using GPT at Socket to help triage the npm package firehose for a couple months now. Here is what it is like after actual experience.
By Mikola Lysenko - Jan 24, 2023
Engineering
Goals for Modern Online File Explorers
File explorers are great tools for programmers when they can let code be understood, but what does it take to ship a file explorer and what does it mean to help programmers by providing one.
By Bradley Meck Farias - Jan 23, 2023