Socket
San Francisco, CA, USA
Founded 2021
Socket is a developer-first security platform that protects companies from software supply chain attacks by monitoring JavaScript, Python, and Go dependencies. Founded and run by open source maintainers, the company provides visibility, defense-in-depth, and proactive supply chain protection to prevent vulnerabilities and malicious packages from entering codebases.
Websites:
Last Updated: April 18, 2026
Current Valuation
$240M
as of October 1, 2024 (Source)
Funding Summary
$65M
Total reported funding
Announcement
April 22, 2026
Socket Blog: Introducing Reports: An Extensible Reporting Framework for Socket
OSS News & Views
April 13, 2026
Socket Blog: 108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure
OSS News & Views
April 8, 2026
Help Net Security: Social engineering attacks on open source developers are increasing
OSS News & Views
April 6, 2026
SecurityWeek: North Korean Hackers Target High-Profile Node.js Maintainers
OSS News & Views
March 22, 2026
Socket.dev Blog: Trivy Supply Chain Attack Expands to Compromised Docker Images
Showing 1-5 of 11 headlines
Page 1 of 3
Key People
Core OSS Projects
The Socket CLI tool for scanning and monitoring software dependencies for security vulnerabilities and supply chain attacks
License: MIT
Socket SDK for JavaScript and TypeScript to integrate supply chain security scanning into applications
License: MIT
Business Information
Industries
Software
Technologies
Supply Chain Security
Developer Tools
Cybersecurity
Sectors
EnterpriseDevelopers
Licenses
MIT
Socials and Communities
Cossmology Badge
COSS Weekly Newsletter
Stay up to date with the latest news, funding rounds, and announcements from the COSS universe.
Check out COSS Weekly on the web