Skip to main content
Supply chain security API detecting malware, typosquats, and vulnerabilities in open-source dependencies. Best for automated security scanning of package manifests, monitoring dependency alerts, and tracking threat intelligence across npm, PyPI, and other ecosystems. Requires a user-provided API key (BYOK). 16 endpoints available through Lava’s AI Gateway. See the Socket.dev API docs for full documentation.
This provider requires your own credentials — connect your API key or OAuth account before use.

Endpoints

List organizations

GET https://api.socket.dev/v0/organizations — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/organizations', { method: 'GET' });

Look up package info

POST https://api.socket.dev/v0/packages — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/packages', { body: {"purl":"pkg:npm/express@4.18.2"} });

Get supported file types for scanning

GET https://api.socket.dev/v0/scans/supported-files — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/scans/supported-files', { method: 'GET' });

Create a full scan for an organization

POST https://api.socket.dev/v0/orgs/my-org/scans — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/scans', { method: 'POST' });

List scans for an organization

GET https://api.socket.dev/v0/orgs/my-org/scans — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/scans', { method: 'GET' });

Get scan details

GET https://api.socket.dev/v0/orgs/my-org/scans/scan-123 — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/scans/scan-123', { method: 'GET' });

Get scan metadata

GET https://api.socket.dev/v0/orgs/my-org/scans/scan-123/metadata — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/scans/scan-123/metadata', { method: 'GET' });

List diff scans for an organization

GET https://api.socket.dev/v0/orgs/my-org/diffs — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/diffs', { method: 'GET' });

Create a diff scan

POST https://api.socket.dev/v0/orgs/my-org/diffs — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/diffs', { method: 'POST' });

Look up org-scoped packages

POST https://api.socket.dev/v0/orgs/my-org/packages — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/packages', { method: 'POST' });

Search dependencies within an organization

POST https://api.socket.dev/v0/orgs/my-org/dependencies/search — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/dependencies/search', { body: {"query":"lodash"} });
GET https://api.socket.dev/v0/orgs/my-org/dependencies/trend — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/dependencies/trend', { method: 'GET' });

List repositories in an organization

GET https://api.socket.dev/v0/orgs/my-org/repos — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/repos', { method: 'GET' });

List alerts for an organization

GET https://api.socket.dev/v0/orgs/my-org/alerts — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/alerts', { method: 'GET' });

List historical alerts

GET https://api.socket.dev/v0/orgs/my-org/alerts/historical — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/alerts/historical', { method: 'GET' });

Get threat intelligence feed

GET https://api.socket.dev/v0/orgs/my-org/threat-feed — $0.005 / request 
const data = await lava.gateway('https://api.socket.dev/v0/orgs/my-org/threat-feed', { method: 'GET' });

Next Steps

All Providers

Browse all supported AI providers

Forward Proxy

Learn how to construct proxy URLs and authenticate requests