[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQROVKJW9Peby2rK07rhHqMAG8IAUZ7dCCJKBTaMFdFg":3},{"article":4,"iocs":53},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":30,"category":31,"article_tags":35},"47033f2b-537c-40cf-8f2c-fbc934c5987a","Socket Partners with Replit to Block Malicious Packages in AI-Powered Development","socket-partners-with-replit-to-block-malicious-packages-in-ai-powered-developmen-506123","The way software gets built is changing fast. Developers are no longer the only ones choosing dependencies. AI agents can now recommend, install, and wire open source packages into applications as part of the build process. Replit is at the center of that shift, giving millions of builders a faster path from idea to working software. As more of that work happens inside AI-powered workflows, dependency security has to move closer to the moment packages are selected and installed. Socket Firewall is now built into that experience to give Replit users stronger protection. It evaluates open source packages as they are introduced into the build, helping stop attacks that do not wait for code review, such as typosquatted and impersonated packages, malicious transitive dependencies, install scripts that fetch second-stage payloads, credential stealers, and packages tied to known malicious infrastructure. The impact is already visible at scale. Since rolling out the firewall, Replit is already blocking around 8,000 packages per day across builders on the platform. Over the course of a year, that adds up to millions of blocked package installs, giving Replit users stronger protection by default. We’ve seen a relentless wave of fast-moving attacks hitting open source lately: malicious packages that do serious damage during installation, before anyone has time for manual review. Once they land in the build environment, it's already too late. By partnering with Replit, we are putting Socket’s threat intelligence directly in the install path, helping builders move fast while blocking supply chain attacks. “Software is being created faster than at any moment in history, and attackers are racing to take advantage. This is one of the defining problems of the AI era. Replit and Socket are putting security in the building loop, blocking malicious code before it ever runs, so millions of builders stay protected while they create.” — Amjad Masad, CEO of Replit. Open source makes modern software possible. It also gives attackers a direct path into the development process. That risk is amplified in AI-assisted development where agents are empowered to pull in dependencies automatically when completing tasks. The answer is not to slow builders down. It is to put better security inside the tools they already use. We’re excited to partner with Replit to help builders continue shipping with confidence.","Socket has partnered with Replit to integrate its AI-powered Firewall directly into Replit's development environment. This integration aims to automatically block malicious open source packages, such as typosquatted or impersonated packages and those with malicious install scripts, as they are introduced into the build process. Replit is already blocking approximately 8,000 malicious packages daily, highlighting the growing threat of supply chain attacks in AI-assisted development.","Socket partners with Replit to block malicious open source packages in AI-driven development.","Company NewsSocket raises $60M Series C at $1B valuation led by Thrive Capital to secure AI-driven software developmentAs AI accelerates how code is written and shipped, Socket is scaling to protect the software supply chain from the growing wave of attacks targeting open source dependencies.By Feross Aboukhadijeh - May 20, 2026","https:\u002F\u002Fsocket.dev\u002Fblog\u002Fsocket-partners-with-replit-to-block-malicious-packages?utm_medium=feed","https:\u002F\u002Fcdn.sanity.io\u002Fimages\u002Fcgdhsj6q\u002Fproduction\u002Ffd7421e174394566e91944df56974a4f9241dda7-1920x1080.png?w=1000&q=95&fit=max&auto=format","2026-06-10T17:18:53.637+00:00","2026-06-10T20:00:15.92113+00:00",7,[18,21,23,26,27],{"name":19,"type":20},"Socket Firewall","product",{"name":22,"type":20},"Replit",{"name":24,"type":25},"Socket","vendor",{"name":22,"type":25},{"name":28,"type":29},"AI","technology","26b0b636-0e31-4db1-bffb-61bdf9f20a58",{"id":30,"icon":32,"name":33,"slug":34},null,"Supply Chain","supply-chain",[36,41,43,48],{"category":37},{"id":38,"icon":32,"name":39,"slug":40},"02371804-cf6d-4449-98de-f1a2d4d9b266","Tools","tools",{"category":42},{"id":30,"icon":32,"name":33,"slug":34},{"category":44},{"id":45,"icon":32,"name":46,"slug":47},"839da5c1-3c34-47e2-9499-f7201640e3ac","AI Security","ai-security",{"category":49},{"id":50,"icon":32,"name":51,"slug":52},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",[]]