Big news!Introducing Socket AI - ChatGPT-Powered Threat Analysis.Learn more →
Get started with Socket
Socket makes it easy to deploy, manage, and monitor dependency scanning at scale. With best-in-class analysis, you can rely on Socket to protect you from malicious open source dependencies.
Starter
Free
Forever
Free for open source, forever
- Support for JavaScript, Typescript, and Python
- Detect 70+ red flags in open source code, including malware, typo-squatting, and more
- Analyze your project to find supply chain risks
- Prevent compromised packages from infiltrating your supply chain
- Warn on risky dependencies, educate developers, and encourage good behavior
- GitHub integration
- CI/CD pipeline integration
- Socket CLI
- VS Code integration
Team
$20
per
month
per
dev
Billed annually or $25 month-to-month
For teams (up to 25) that need to scale application security
- Everything in Starter, plus:
- Private repos (free until our self-service billing is ready)
- Slack alerts
- Microsoft Teams alerts (coming soon)
- REST API
- 8x5 Email support
Enterprise
Contact Us
Annual billing only
Custom features, control & support
- Everything in Team, plus:
- Support for Java (coming soon)
- Organization-wide Policies
- Open Source Risk Dashboard
- Self-hosted source code management (GitHub Enterprise Server, Bitbucket Server, GitLab Enterprise, Azure DevOps Server)
- Webhook alerts
- 8x5 Private Slack channel and Email support
- SOC 2 Type 2 Report
- Role-based Access Control
- SAML SSO (coming soon)
- Audit log (coming soon)
