Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

Company News

Subscribe to the Socket Blog

The Socket blog now offers both full content Atom and JSON feeds which let you subscribe to all future Socket blog posts.

Subscribe to the Socket Blog

Bret Comnes

May 3, 2023

The Socket blog now offers both full content Atom and JSON feeds which let you subscribe to all future Socket blog posts. This is a great way to stay up to date with happenings, changes and discoveries from Socket. Happy reading!

  • Atom Feed
  • JSON Feed

Subscribe to our newsletter

Get notified when we publish new security blog posts!

Try it now

Ready to block malicious and vulnerable dependencies?

Install GitHub AppBook a demo

Related posts

Back to all posts
The Risks of Misguided Research in Supply Chain Security

Security News

The Risks of Misguided Research in Supply Chain Security

Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.

By Sarah Gooding  -  Jan 14, 2025
pnpm 10.0.0 Blocks Lifecycle Scripts by Default

Security News

pnpm 10.0.0 Blocks Lifecycle Scripts by Default

pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.

By Sarah Gooding  -  Jan 10, 2025
SocketSocket SOC 2 Logo

Product

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc