@socketsecurity/registry
Advanced tools
Programmatic access to Socket Registry metadata, constants, and helper utilities for package management operations.
pnpm install @socketsecurity/registry
import { getManifestData, Categories, PURL_Type } from '@socketsecurity/registry'
// Get all manifest data
const manifest = getManifestData()
// Get npm ecosystem packages
const npmPackages = getManifestData(PURL_Type.NPM)
// Get specific package data
const packageData = getManifestData(PURL_Type.NPM, 'deep-equal')
if (packageData) {
console.log(packageData.categories) // ['speedup', 'cleanup']
console.log(packageData.version) // '2.2.3'
console.log(packageData.engines.node) // '>=18'
}
getManifestData()Query the Socket Registry manifest for package overrides.
// Get all ecosystems
function getManifestData(): Manifest
// Get all packages for an ecosystem
function getManifestData(ecosystem: EcosystemString): ManifestEntry[]
// Get specific package metadata
function getManifestData(
ecosystem: EcosystemString,
packageName: string,
): ManifestEntryData | undefined
enum Categories {
CLEANUP = 'cleanup', // Reduced dependencies
LEVELUP = 'levelup', // New features
SPEEDUP = 'speedup', // Performance improvements
TUNEUP = 'tuneup', // Security fixes
}
enum Interop {
BROWSERIFY = 'browserify',
CJS = 'cjs',
ESM = 'esm',
}
enum PURL_Type {
NPM = 'npm',
PYPI = 'pypi',
// ... and more ecosystem types
}
Import Node.js and package manager constants:
import {
NODE_MODULES,
PACKAGE_JSON,
PNPM_LOCK_YAML,
NPM_REGISTRY_URL,
} from '@socketsecurity/registry'
For a complete list of available constants, see the package.json exports.
All types are exported for TypeScript projects:
import type {
Manifest,
ManifestEntry,
ManifestEntryData,
CategoryString,
InteropString,
EcosystemString,
} from '@socketsecurity/registry'
Access utility modules for common operations:
// File system utilities
import { /* utilities */ } from '@socketsecurity/registry/lib/fs'
// Package utilities
import { /* utilities */ } from '@socketsecurity/registry/lib/packages'
// Path utilities
import { /* utilities */ } from '@socketsecurity/registry/lib/paths'
// And many more...
See the exports map for all available utility modules.
MIT
FAQs
Socket Registry - Core utilities and infrastructure for Socket.dev security tools
The npm package @socketsecurity/registry receives a total of 2,849 weekly downloads. As such, @socketsecurity/registry popularity was classified as popular.
We found that @socketsecurity/registry demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago.Β It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket's new Alert Details page is designed to surface more context, with a clearer layout, reachability dependency chains, and structured review.
Product
Campaign-level threat intelligence in Socket now shows when active supply chain attacks affect your repositories and packages.
Research
Malicious PyPI package sympy-dev targets SymPy users, a Python symbolic math library with 85 million monthly downloads.