Engineering, Certified Packages

Socket-posted 3 months ago
51-100 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Join Socket's Certified Packages team to build and scale our patching infrastructure that delivers secure, vetted packages to developers worldwide. You'll be at the forefront of supply chain security, creating patches for critical vulnerabilities and building the systems that help the entire open source ecosystem stay secure. This role combines deep technical work with meaningful community impact — we're giving away free patches for the top 100 most critical CVEs to benefit the entire ecosystem. As an early member of the Certified Packages team, you'll help shape how we scale from dozens to hundreds of patches per week, starting with npm packages and expanding across the JavaScript ecosystem.

  • Master Socket's Certified Packages workflows, tools, and patching processes
  • Lead patching efforts for high-impact vulnerabilities across npm packages
  • Scale patch production to dozens or hundreds of patches per week
  • Help select and prioritize high-value patches for free community release
  • Provide technical input on patch prioritization based on ecosystem and customer impact
  • Build and improve automated patching infrastructure and tooling
  • Design and implement scalable patch generation and delivery systems
  • Develop automated vulnerability detection and patch creation workflows
  • Build APIs and integrations to deliver certified packages
  • Create tooling for patch quality assurance and testing
  • Work with security researchers to understand and patch critical vulnerabilities
  • Help shape the technical roadmap for Certified Packages expansion beyond JavaScript
  • Provide free access to patches for the top 100 most critical CVEs
  • Give developers quick, safe remediation options for widely-used packages
  • Help secure the software supply chain for millions of developers
  • 3+ years of software engineering experience with production systems
  • Strong proficiency in Node.js, JavaScript, and TypeScript
  • Experience with package managers (npm, yarn, pnpm) and the JavaScript ecosystem
  • Understanding of software security concepts and vulnerability management
  • Experience building and scaling APIs and data processing pipelines
  • Familiarity with automated testing, CI/CD, and deployment systems
  • Experience with security tooling, vulnerability scanning, or patch management
  • Knowledge of software supply chain security challenges
  • Experience with other package ecosystems (Python, Go, Rust, etc.)
  • Open source contributions or package maintenance experience
  • Background in DevSecOps or security engineering
  • Experience with high-throughput data processing systems
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service