Programmer Introspective
Signing is Just the Start
Socket provides an introspective on code signing in relation to the supply chain incident from SolarWinds.
Big news!Introducing Socket AI - ChatGPT-Powered Threat Analysis.Learn more →
Subscribe to the Socket Blog
The Socket blog now offers both full content Atom and JSON feeds which let you subscribe to all future Socket blog posts.
Bret Comnes
May 3, 2023
The Socket blog now offers both full content Atom and JSON feeds which let you subscribe to all future Socket blog posts. This is a great way to stay up to date with happenings, changes and discoveries from Socket. Happy reading!
Changelog
Project Health Reports now run on the default branch
The Socket GitHub app now runs Project Health Reports on the default branch instead of in pull requests.
By Bret Comnes
Application Security
npm Registry Code Signing
Socket explains the newly released npm provenance provided by GitHub.