@socketsecurity/cli-with-sentry
Advanced tools
CLI for Socket.dev, includes Sentry error handling, otherwise identical to the regular `socket` package
CLI for Socket.dev security analysis
npm install -g socket
socket --help
socket npm [args...] and socket npx [args...] - Wraps npm/npx with Socket security scanning
socket fix - Fix CVEs in dependencies
socket optimize - Optimize dependencies with @socketregistry overrides
socket cdxgen [command] - Run cdxgen for SBOM generation
All aliases support the flags and arguments of the commands they alias.
socket ci - Alias for socket scan create --report (creates report and exits with error if unhealthy)--json - Output as JSON--markdown - Output as Markdown--dry-run - Run without uploading--debug - Show debug output--help - Show help--max-old-space-size - Set Node.js memory limit--max-semi-space-size - Set Node.js heap size--version - Show versionSocket CLI reads socket.yml configuration files.
Supports version 2 format with projectIgnorePaths for excluding files from reports.
SOCKET_CLI_API_TOKEN - Socket API tokenSOCKET_CLI_CONFIG - JSON configuration objectSOCKET_CLI_GITHUB_API_URL - GitHub API base URLSOCKET_CLI_GIT_USER_EMAIL - Git user email (default: github-actions[bot]@users.noreply.github.com)SOCKET_CLI_GIT_USER_NAME - Git user name (default: github-actions[bot])SOCKET_CLI_GITHUB_TOKEN - GitHub token with repo access (alias: GITHUB_TOKEN)SOCKET_CLI_NO_API_TOKEN - Disable default API tokenSOCKET_CLI_NPM_PATH - Path to npm directorySOCKET_CLI_ORG_SLUG - Socket organization slugSOCKET_CLI_ACCEPT_RISKS - Accept npm/npx risksSOCKET_CLI_VIEW_ALL_RISKS - Show all npm/npx risksRun locally:
npm install
npm run build
npm exec socket
SOCKET_CLI_API_BASE_URL - API base URL (default: https://api.socket.dev/v0/)SOCKET_CLI_API_PROXY - Proxy for API requests (aliases: HTTPS_PROXY, https_proxy, HTTP_PROXY, http_proxy)SOCKET_CLI_API_TIMEOUT - API request timeout in millisecondsSOCKET_CLI_DEBUG - Enable debug loggingDEBUG - Enable debug package logging
FAQs
CLI for Socket.dev, includes Sentry error handling, otherwise identical to the regular `socket` package
The npm package @socketsecurity/cli-with-sentry receives a total of 230 weekly downloads. As such, @socketsecurity/cli-with-sentry popularity was classified as not popular.
We found that @socketsecurity/cli-with-sentry demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Claude Opus 4.6 has uncovered more than 500 open source vulnerabilities, raising new considerations for disclosure, triage, and patching at scale.
Research
/Security News
Malicious dYdX client packages were published to npm and PyPI after a maintainer compromise, enabling wallet credential theft and remote code execution.
Security News
gem.coop is testing registry-level dependency cooldowns to limit exposure during the brief window when malicious gems are most likely to spread.