Supply chain protection provider Socket has announced raising $60 million in a Series C funding round that brings the total raised by the company to $125 million and its valuation to $1 billion.
The new investment round was led by Thrive Capital, with additional support from Andreessen Horowitz, Abstract Ventures, and Capital One Ventures.
Founded in 2020, California-based Socket has built a platform that analyzes open source dependencies to identify malicious behavior before affecting enterprise products.
The platform relies on AI-assisted analysis, combined with human verification, to detect potential supply chain compromises, prioritize vulnerability patching based on confirmed exploitation, and address dependency risks.
The new funding will allow Socket to improve its recently released Socket Firewall, designed to block malicious packages before they can reach developer environments or CI pipelines, and to expand its certified patches, which fix exploited vulnerabilities.
Additionally, the company is expanding its protection coverage to browser extensions, code editor extensions, AI tools, and MCP servers. It’s also investing in new product development, and plans to further expand its team.
The company currently has approximately 100 employees.
“AI is changing how software gets built at every level. Teams are moving faster, more code is being generated, and more of what ends up in production now comes from outside the company. The hard part is keeping that speed without losing visibility into what’s actually getting shipped, and that’s where Socket comes in,” Socket founder and CEO Feross Aboukhadijeh said.
Related: Quantum Bridge Raises $8 Million for Quantum-Safe Key Distribution Solution
Related: Exaforce Raises $125 Million for Agentic SOC Platform
Related: Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility
Related: AI-Powered App Attacks Are Faster, More Frequent and Harder to Stop
