Socket is a developer-first supply-chain security platform that protects applications from malicious dependencies, vulnerable packages, license risk, and software-supply-chain attacks across npm, PyPI, Go, Maven, Cargo, NuGet, RubyGems, and other open-source ecosystems. Socket ships a hosted API, CLI, MCP server, Firewall package-installer proxy (sfw), GitHub App, IDE extensions, SDKs, and integrations for Jira, Slack, GitHub, GitLab, Bitbucket, Azure DevOps, and Microsoft Teams. The Socket API exposes 70+ alert categories — malware, typo-squats, install scripts, telemetry, native code, crypto wallets, suspicious network activity, license issues — plus full-scan reports with SBOM export (CycloneDX, SPDX, OpenVEX), diff scans for pull requests, a triage workflow, webhooks, and a real-time threat feed.
URL: Visit APIs.json
Run: Capabilities Using Naftiko
- Supply Chain Security, Open Source Security, Software Composition Analysis, SCA, Malware Detection, Dependency Scanning, SBOM, npm, PyPI, Go, Maven, Cargo, NuGet, RubyGems, Developer Security
- Created: 2026-05-25
- Modified: 2026-05-25
Look up risk scores, alerts, capabilities, license, and supply-chain metadata for any open-source package by Package URL (purl). Supports npm, PyPI, Go, Maven, Cargo, NuGet, RubyGems, and other ecosystems.
Human URL: https://docs.socket.dev/reference/introduction-to-socket-api
Create, list, fetch, rescan, archive, and export full-scan reports for an organization's repos. Exports include CycloneDX, SPDX, OpenVEX, CSV, PDF, and GFM diff formats.
Human URL: https://docs.socket.dev/reference/createorgfullscan
Compute and inspect diff scans between two full scans — the engine that powers Socket's pull-request comments. Output JSON or GFM markdown.
Human URL: https://docs.socket.dev/reference/createorgdiffscanfromids
Query current and historical security alerts for an organization across all scans, repos, and packages. 70+ alert categories.
Human URL: https://docs.socket.dev/reference/getorgalerts
Triage workflow for alerts — list and update the disposition (ignore, acknowledge, escalate, allow) of any alert in an organization.
Human URL: https://docs.socket.dev/reference/listorgtriagealerts
Manage the repositories Socket is monitoring inside an organization plus repo labels for policy targeting.
Human URL: https://docs.socket.dev/reference/getorgrepolist
Configure security policy, license policy, telemetry, Socket Basics, and integration event hooks at the organization level.
Human URL: https://docs.socket.dev/reference/getorgsecuritypolicy
- OpenAPI
- Naftiko Capability — Security Policy
- Naftiko Capability — License Policy
- Naftiko Capability — Telemetry
- Naftiko Capability — Socket Basics
- Naftiko Capability — Integration Events
Register webhooks for scan completion, alert generation, triage decisions, and threat-feed matches.
Human URL: https://docs.socket.dev/reference/listorgwebhooks
Real-time feed of newly discovered malicious or suspicious packages across npm, PyPI, Go, RubyGems, and other ecosystems.
Human URL: https://docs.socket.dev/reference/getorgthreatfeed
List available fixes — version bumps, patches, and overrides — for vulnerable or risky dependencies. Powers Socket's auto-fix pull-request generation.
Human URL: https://docs.socket.dev/reference/getorgfixes
Search and reverse-look-up dependencies across all of an organization's scanned repos, plus historical dependency-count trends.
Human URL: https://docs.socket.dev/reference/searchdependencies
Provision, rotate, and revoke API tokens for an organization; inspect quota; list accessible organizations.
Human URL: https://docs.socket.dev/reference/getorgtokens
Append-only audit log of every administrative event in a Socket organization — policy changes, member changes, token actions, triage decisions, and integration changes.
Human URL: https://docs.socket.dev/reference/getauditlog
Retrieve historical organization-level snapshots — point-in-time aggregations of dependencies, alerts, and risk metrics across all monitored repos.
Human URL: https://docs.socket.dev/reference/getorghistoricalsnapshots
Reference metadata for the Socket platform — the live OpenAPI spec, alert-type catalog, license-metadata catalog, and supported-files list.
Human URL: https://docs.socket.dev/reference/getalerttypes
- Portal
- Documentation
- Documentation — Introduction to Socket API
- Getting Started
- Authentication
- Sign Up
- Blog
- Changelog
- Status
- Pricing
- Terms of Service
- Privacy Policy
- Trust Center
- GitHub Organization
- Live OpenAPI
- JavaScript / TypeScript SDK (
@socketsecurity/sdk) - Python SDK
- Socket CLI
- Socket Python CLI
- Socket MCP Server
- Socket Firewall (sfw-free)
- Socket VSCode Extension
- Socket GitHub Action
- Socket Basics (SAST + Secrets + Container)
- Socket Patch CLI
- Socket SIEM Connector
- Bun Security Scanner
- Socket Optimize (registry overrides)
- Socket Config (socket.yml)
- GitHub App
- GitLab Integration
- Bitbucket Integration
- Azure DevOps Integration
- Jira Integration
- Slack Integration
- Microsoft Teams Integration
- Socket API — supply-chain risk data via Package URL (purl) across npm, PyPI, Go, Maven, Cargo, NuGet, RubyGems, and others
- Full Scans — repository-wide dependency graph and alert reports with SBOM export (CycloneDX, SPDX, OpenVEX, CSV, PDF)
- Diff Scans — pull-request-aware comparison between two full scans, output as JSON or GFM markdown comment
- Triage workflow — list and update disposition (ignore, acknowledge, escalate, allow) for alerts at scale
- Historical alerts, dependencies, and snapshots — long-window trend analytics for posture reporting
- Threat Feed — real-time discovery of malicious and suspicious packages across ecosystems
- Fixes — version bumps, patches, and overrides for vulnerable dependencies, including auto-PR generation
- 70+ alert categories — malware, typosquats, install scripts, telemetry, native code, crypto wallets, supply-chain risks
- Security and license policies per organization with per-repo label overrides
- Webhooks for scan completion, alert generation, triage events, and threat-feed matches
- Socket Firewall — registry proxy and
sfwruntime that prevents installation of malicious packages - Socket CLI (JavaScript + Python) for scanning, fixing, and config validation
- Socket MCP Server — Model Context Protocol server exposing Socket data to AI agents
- Socket Optimize — drop-in package overrides for npm/pnpm/yarn
- Socket Basics — bundled SAST + Secrets + Container scanning
- Socket VS Code extension and Socket GitHub Action for in-editor and in-CI security gates
- GitHub, GitLab, Bitbucket, Azure DevOps, Jira, Slack, and Microsoft Teams integrations
- SDKs for JavaScript / TypeScript and Python
- Append-only audit log of every administrative action
- Live OpenAPI spec served from
https://api.socket.dev/v0/openapi
FN: API Evangelist
Email: info@apievangelist.com