Feature Requests

I can't seem to figure out how to initiate a scan after signing up. I allowed access to a single private repo. I click around the UI to find the single repo with a bunch of empty states and no CTA to initiate a scan or wait for one to be completed.

Similar to the Socket "safe npm" ( https://socket.dev/blog/introducing-safe-npm ) feature, Socket should support the same functionality for the pnpm package manager.

Similar to the Socket "safe npm" ( https://socket.dev/blog/introducing-safe-npm ) feature, Socket should support the same functionality for Python package managers.

Support for PHP language, it's frameworks like Symphony & Laravel and it's package manager "Composer".

When I see various dependency issues, it will list what packages the issue was found in. That said, it includes both direct and transient dependencies so I have to occasionally look through the dependency tree to figure out which top level dependency includes the dependency that has the issue. I've used packages such as npm-why or the "npm ls" command to view the tree. It would be useful to have the dependency tree accessible directly in the Socket dashboard.

Make a GitLab app (in addition to the GitHub app) to detect and block supply chain attacks in new code changes.

Similar to the Socket "safe npm" ( https://socket.dev/blog/introducing-safe-npm ) feature, Socket should support the same functionality for the yarn package manager.

Support specifying a list of licenses to allow/review/ban. For example, most companies want to ban GNU licenses.

The organization level issue settings should be configurable at the repo level. Add a settings tab within each repo.

Add the ability to have Microsoft Teams integration in addition to Slack. Not all dev teams use Slack 😉