Socket MCP Adds Org Alerts, Threat Feed Review, and Package Inspection
Socket MCP enhances supply chain security with AI-driven org alerts, threat feed review, and package inspection.
Summary
Socket MCP has been updated to provide enhanced supply chain security features, integrating with AI assistants to streamline the investigation of package risks. The update introduces organization-level alerts, allowing teams to triage and understand open-source risks across their projects. It also enhances package inspection capabilities, enabling users to examine the actual files within published packages without installation, and provides access to the Socket threat feed for identifying recently flagged malware and suspicious packages.
Full text
ProductSocket Firewall Now Blocks Malicious VS Code and Open VSX ExtensionsSocket Firewall blocks malicious VS Code and Open VSX extensions before install, protecting developers from compromised editor marketplaces.By John Tuckner - Jun 17, 2026