Security platform Socket recently confirmed a $40 million Series B round. It was led by Abstract Ventures, with participation from Elad Gil, Andreessen Horowitz (a16z), Bret Taylor (OpenAI), Phil Venables (Google), Scott Johnston (Docker), Christina Cacioppo (Vanta), Ann Mather (Pixar, Alphabet, Netflix, Airbnb), and Tobias Lütke (Shopify). This latest round brings the company’s total funding to $65 million. The funds are earmarked to modernize security for open-source software and build out its team across engineering, product, and design.
“We’ve seen incredible momentum over the past year,” said Feross Aboukhadijeh, founder and CEO of Socket. “Our technology has made it possible for leading AI, B2B, and finance companies to switch from legacy SCA solutions like Snyk to Socket. We’re not just catching vulnerabilities — we’re detecting and blocking malicious threats in real-time.”
The platform supports six programming languages, including newly added Java and Ruby. It handles critical use cases like license enforcement and reachability analysis — making it a comprehensive replacement for legacy tools.
“Attackers are evolving their supply chain attacks and legacy tools aren’t catching them,” said Jason Clinton, CISO at Anthropic. “Socket’s real-time threat detection helps strengthen our security posture, even from zero-day supply chain attacks.”
“As generative AI drives unprecedented speed in software development, the risk of malicious or vulnerable packages slipping through is higher than ever,” said Amjad Masad, founder and CEO at Replit. “Socket provides preventative protection, catching threats before they can compromise organizations and enabling developers to innovate without sacrificing security.”
In the last 12 months, Socket has shipped features, including AI-powered threat detection for software dependencies in six programming language ecosystems. That has enabled it to detect and block more than 100 software supply chain attacks every week. The company protects more than 7,500 organizations and 300,000 GitHub repositories.
“Socket is revolutionizing how companies secure their software,” said Ramtin Naimi, founder and managing partner at Abstract Ventures. “As organizations face increasing software supply chain threats, its preventative and developer-friendly approach is exactly what’s needed. (Their) ability to rip and replace legacy SCA tools has already made Socket the go-to solution for leading companies that want to massively up-level their application security.”
“Socket is taking an entirely new approach to one of the hardest problems in security in a stagnant part of the industry,” said Elad Gil, investor and co-founder at Color Health.