Application Security
Tines Integration Generates Real-Time Critical Vulnerability Reports from Socket
The Tines team created an integration that generates and emails real-time vulnerability reports for repositories protected by Socket.
Sarah Gooding
February 6, 2024
Application Security
The Tines team created an integration that generates and emails real-time vulnerability reports for repositories protected by Socket.
Application Security
Deprecated npm packages are common in modern software projects. Learn about the risks of using unmaintained code, how to identify these packages, and evaluate alternatives.
Application Security
Security News
This short history of protestware - from punch cards to package managers - explores the intriguing and controversial phenomenon of digital activism and the risks to open source supply chains.
Application Security
An NPM user named PatrickJS launched a troll campaign with a package called "everything," which depends on all public npm packages.
Application Security
Product
Learn how to integrate Socket into your Bitbucket pipeline for added security, reducing your dependency supply chain risk!
Application Security
Supply chain attacks that leverage typosquatting are steeply rising over previous years. Learn how Socket for GitHub and Socket CLI can protect your app.
Application Security
Product
A short walkthrough of how to integrate Socket into the Gitlab CI/CD process
Application Security
How Socket uses LLMs to enhance both the analysis and explanation of open-source software packages.
Application Security
What supply chain attacks are, and how Socket can help protect you from them.
Application Security
Vulnerability scanners provide a false sense of security to appsec teams and do little to prevent supply chain attacks.
Application Security
Exposing the flaws of traditional SCA tools, and introducing a solution.
Application Security
Socket explains the newly released npm provenance provided by GitHub.
Application Security
Examples of recent supply chain attacks and concrete steps you can take to protect your team from this emerging threat.
Application Security
Confidence is good but overconfidence always sinks the ship.