Description
JavaScript dependency risk and supply-chain signals can be checked through the Socket command-line tool. It is useful for developers reviewing package security, install behavior, and dependency health.
Security tooling can report sensitive dependency names and repository metadata. Review output before sharing it outside the project.