Socket now supports PHP with full Composer and Packagist integration, enabling developers to search packages, generate SBOMs, and protect their PHP de...

Socket

Socket now supports PHP and Composer, offering package search, SBOM generation, and supply chain security protection for PHP dependencies. The platform provides AI-powered analysis to detect zero-day threats, typosquatting, and backdoors beyond traditional CVE scanning. Key features include lockfile analysis, dev dependency tracking, vulnerability detection with CISA KEV enrichment, and proactive Packagist monitoring. Package search is available now for everyone, while SBOM generation and full security scanning are rolling out experimentally to customers.

Introducing PHP and Composer Support in Socket