S

Socket

Supply chain security that detects malicious dependencies before they ship

free-tier Security & Vulnerability Scanning security supply-chain dependencies malware open-source

Socket proactively detects malware, vulnerabilities, and license risks in open-source dependencies by analyzing package behavior rather than just known CVEs. AI flags hidden dependency behavior. Precomputed reachability analysis cuts 60% of false positives. GitHub, GitLab, and npm integration.

Pricing

Free for unlimited repos, Pro with reachability analysis

Visit Socket

More in Security & Vulnerability Scanning

S

Snyk

AI-native developer security platform for code, dependencies, containers, and IaC

free-tier Security & Vulnerability Scanning
S

Semgrep

Fast static analysis for 30+ languages with AI-powered triage and remediation

free-tier Security & Vulnerability Scanning
S

SonarQube

Continuous code quality and security inspection with AI CodeFix

free-tier Security & Vulnerability Scanning