Case Study: Doctolib achieves automated supply chain threat detection and stronger compliance with Socket

Doctolib Partners with Socket to Automate Supply Chain Threat Detection

Doctolib, a healthcare scheduling platform, was using standard security measures but identified a critical gap in its ability to automatically detect malicious open-source dependencies and supply chain attacks within its TypeScript and Ruby libraries. This blind spot posed a significant risk to their development environment and the security of their users. They partnered with the vendor Socket to address this challenge.

By integrating Socket's automated threat detection into their CI pipeline, Doctolib seamlessly added a new layer of security. The solution provided comprehensive monitoring of their software supply chain, effectively covering previously unaddressed risk areas. This integration enhanced their overall security posture, gave developers confidence, and was instrumental in helping Doctolib meet compliance and audit requirements.

Doctolib

Frédéric Charpentier

Head of Product Security