Company News
Andrew Becherer Joins Socket as Chief Information Security Officer
Socket’s first CISO brings deep experience securing high-growth SaaS companies as open source supply chain threats accelerate.
By Sarah Gooding - Jun 11, 2026
Big News: Socket raises $60M Series C at a $1B valuation to secure software supply chains for AI-driven development.Announcement →
@arcjet/astro
Advanced tools
@arcjet/astro
Arcjet helps developers protect their Astro sites in just a few lines of code. Bot detection. Rate limiting. Email validation. Attack protection. Data redaction. A developer-first approach to security.
@arcjet/astro
Arcjet helps developers protect their apps in just a few lines of code. Implement rate limiting, bot protection, email verification, and defense against common attacks.
This is the Arcjet SDK integration for Astro.
Getting started
Visit the quick start guide to get started.
Example app
Try an Arcjet protected app live at https://example.arcjet.com (source code).
What is this?
This is our adapter to integrate Arcjet into Astro. Arcjet helps you secure your Astro website. This package exists so that we can provide the best possible experience to Astro users.
When should I use this?
You can use this if you are using Astro. See our Get started guide for other supported frameworks.
Install
This package is ESM only. Install with npm and the Astro CLI in Node.js:
npx astro add @arcjet/astro
Use
Configure Arcjet in astro.config.mjs:
import arcjet, { shield } from "@arcjet/astro";
import { defineConfig } from "astro/config";
export default defineConfig({
// We recommend setting
// [`validateSecrets`](https://docs.astro.build/en/reference/configuration-reference/#envvalidatesecrets).
env: { validateSecrets: true },
integrations: [
arcjet({
rules: [
// Shield protects your app from common attacks.
// Use `DRY_RUN` instead of `LIVE` to only log.
shield({ mode: "LIVE" }),
],
}),
],
});
…then use Arcjet in on-demand routes (such as src/pages/api.json.ts):
import type { APIRoute } from "astro";
import aj from "arcjet:client";
export const GET: APIRoute = async ({ request }) => {
const decision = await aj.protect(request);
if (decision.isDenied()) {
return Response.json({ message: "Forbidden" }, { status: 403 });
}
return Response.json({ message: "Hello world" });
};
For more on how to configure Arcjet with Astro and how to protect Astro, see the Arcjet Astro SDK reference on our website.
License
FAQs
Arcjet runtime security SDK for Astro — bot protection, rate limiting, prompt injection detection, PII blocking, and WAF
The npm package @arcjet/astro receives a total of 240 weekly downloads. As such, @arcjet/astro popularity was classified as not popular.
We found that @arcjet/astro demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 22 Jan 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Company News
Socket Partners with Replit to Block Malicious Packages in AI-Powered Development
Replit is integrating Socket Firewall into its AI-powered development experience to help protect builders from malicious open source packages.
By Feross Aboukhadijeh - Jun 10, 2026
Security News
npm Tooling Bug Incorrectly Marks One-Character Packages as Security Holders
npm confirmed a tooling bug incorrectly marked several one-character packages as security holders and said it was working on a rollback.
By Sarah Gooding - Jun 09, 2026