Scan Results

Collects SBOM artifacts from full scans in your Socket.dev organization.

Sync Type: Incremental

Requirements

• Before connecting Monad to Socket.dev, you need to obtain an API Key and access to an Org Slug, which is obtained by Installing Socket's GitHub app from https://socket.dev. These credentials allow access to Monad to fetch Full Scans data for you.
• To access this connector, make sure your credentials have the full-scans:list and repo:list permissions.

Details

Monad uses the Socket.dev API to fetch returns the latest, available alert data for artifacts in all full scans in your org. The from query parameter is applied to retrieve only the scans that were detected or updated after the last successful sync. If this is the first time connecting to the Socket.dev API, Monad performs a full sync of all possible scans.

Configuration

Settings

Setting	Type	Required	Description
Org Slug	string	Yes	The slug of your Socket.dev organization.
Repo	string	No	A repository slug to filter full-scans by.
Backfill Start Time	string	No	The date to start fetching data from. If not specified, no past records will be fetched.

Secrets

Secret	Type	Required	Description
API Key	string	Yes	Used for authentication of API requests. Requires the full-scans:list scope.

Related Articles

• https://github.com/apps/socket-security
• https://docs.socket.dev/reference/getorgfullscan
• https://docs.socket.dev/reference/getorgfullscanlist
• https://docs.socket.dev/reference/authentication

Sample Record

{
  "type": "gem",
  "name": "which",
  "version": "5.8.5",
  "id": "49057",
  "scan_id": "774c4ea6-011a-18f7-ea4d-aefbbaa58bf8",
  "manifestFiles": [
    {
      "file": "requirements.txt",
      "start": 104233,
      "end": 230648
    }
  ],
  "topLevelAncestors": [
    "15653387733",
    "15080332753"
  ],
  "license": "MIT",
  "licenseDetails": [],
  "author": [
    "Sarah Brown"
  ],
  "size": 39702,
  "score": {
    "supplyChain": 0.75,
    "quality": 0.99,
    "maintenance": 0.82,
    "vulnerability": 0.99,
    "license": 0.89,
    "overall": 0.99
  },
  "alerts": [
    {
      "key": "9e3e83fe-7ba4-93ec-2610-d9e39528b217",
      "type": "licenseConflict",
      "severity": "critical",
      "category": "supplyChainRisk",
      "file": "package/main.js.js",
      "start": 768,
      "end": 1295,
      "props": {
        "description": "API_KEY"
      }
    },
    {
      "key": "30572388-3242-fe1e-3494-912f47293560",
      "type": "outdatedDependency",
      "severity": "critical",
      "category": "licenseRisk",
      "file": "package/utils.js.js",
      "start": 295,
      "end": 1327,
      "props": {
        "vulnerability": "PATH"
      }
    }
  ]
}