Product
Introducing Data Exports
Export Socket alert data to your own cloud storage in JSON, CSV, or Parquet, with flexible snapshot or incremental delivery.
By Ola Adekola - Apr 23, 2026
Launch Week Day 4: Introducing Data Exports.Learn More →
@socketsecurity/lib
Advanced tools
@socketsecurity/lib
Core utilities for Socket.dev tools: file system, processes, HTTP, env detection, logging, spinners, and more. Tree-shakeable, TypeScript-first, cross-platform.
Install
pnpm add @socketsecurity/lib
Quick Start
import { Spinner } from '@socketsecurity/lib/spinner'
import { readJson } from '@socketsecurity/lib/fs'
const spinner = Spinner({ text: 'Loading…' })
spinner.start()
const pkg = await readJson('./package.json')
spinner.successAndStop(`Loaded ${pkg.name}@${pkg.version}`)
Every export lives under a subpath — pick what you need:
import { spawn } from '@socketsecurity/lib/spawn'
import { httpJson } from '@socketsecurity/lib/http-request'
import { safeDelete } from '@socketsecurity/lib/fs'
Documentation
Start with the API Index — every subpath export with a one-line description.
- Getting Started – install + first examples
- Visual Effects – spinners, loggers, themes
- File System – files, globs, paths, safe deletion
- HTTP Utilities – requests, downloads, retries
- Process Utilities – spawn, IPC, locks
- Package Management – npm/pnpm/yarn detection
- Environment – CI/platform detection, env getters
- Constants – Node versions, npm URLs, platform values
- Examples – real-world patterns
- Troubleshooting – common issues
Development
pnpm install # install
pnpm build # build
pnpm test # run tests
pnpm run cover # tests with coverage
pnpm dev # watch mode
pnpm run lint # check style
pnpm run fix # auto-fix formatting
See CLAUDE.md for contributor guidelines.
License
MIT
FAQs
Core utilities and infrastructure for Socket.dev security tools
The npm package @socketsecurity/lib receives a total of 13,981 weekly downloads. As such, @socketsecurity/lib popularity was classified as popular.
We found that @socketsecurity/lib demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Package last updated on 22 Apr 2026
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
Bitwarden CLI 2026.4.0 was compromised in the Checkmarx supply chain campaign after attackers abused a GitHub Action in Bitwarden’s CI/CD pipeline.
By Socket Research Team - Apr 23, 2026
Research
/Security News
Malicious Checkmarx Artifacts Found in Official KICS Docker Repository and Code Extensions
Docker and Socket have uncovered malicious Checkmarx KICS images and suspicious code extension releases in a broader supply chain compromise.
By Socket Research Team - Apr 22, 2026