
Product
Announcing Precomputed Reachability Analysis in Socket
Socket’s precomputed reachability slashes false positives by flagging up to 80% of vulnerabilities as irrelevant, with no setup and instant results.
An improved user-agent parser to detect bots
$ npm install is-ua-bot
const isBot = require('is-ua-bot')
// just for testing:
const assert = require('assert')
// identifies googlebot as bot (returns true)
assert(isBot('Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)'))
// Android Pixel is not a bot (returns false)
assert(!isBot('Android 7.1; Pixel Build/NDE63P)'))
We have a set of Bot agents in ./test/data/bots.js
and a set of known non-bots in ./text/data/not-bots.js
. Please contribute!
Run tests
npm test
worthy of a tip? ⚡ Lightning Bitcoin Tips Accepted https://tippin.me/@antic
FAQs
useragent parsing for bot identification
The npm package is-ua-bot receives a total of 3 weekly downloads. As such, is-ua-bot popularity was classified as not popular.
We found that is-ua-bot demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket’s precomputed reachability slashes false positives by flagging up to 80% of vulnerabilities as irrelevant, with no setup and instant results.
Product
Socket is launching experimental protection for Chrome extensions, scanning for malware and risky permissions to prevent silent supply chain attacks.
Product
Add secure dependency scanning to Claude Desktop with Socket MCP, a one-click extension that keeps your coding conversations safe from malicious packages.