Charlie Duong

Verified account

@_ctdio

cofounder @tryopine ex @jupiterone

Durham, NC

Joined July 2013

602 Following

87 Followers

128 Posts

_ctdio retweeted

17 days ago

Today is a big day for @SocketSecurity. We just raised a $60M Series C at a $1B valuation, led by @ThriveCapital with participation from @a16z, @AbstractVC, and @CapitalOne Ventures. Total funding is now $125M. Four years ago, we started Socket because open source dependencies were flowing into production faster than anyone could vet them. AI has massively accelerated that. Code is being written, shipped, and deployed before any human reads it. Security has to operate at that same speed. One data point from Thrive's diligence that I keep coming back to: they first discovered Socket because @cursor_ai, @OpenAI, and @AnthropicAI all independently told them it was the most important security tool they'd adopted for AI-driven development. Three of the most sophisticated AI companies converging on the same vendor unprompted. Since our Series B, Socket has grown to more than 20,000 organizations, protecting over 1.5 million repositories and blocking more than 1,000 supply chain attacks every week. The team is now over 100 people. Three out of five FAANG companies are Socket customers. So are the companies building the most ambitious AI products: @AnthropicAI, @cursor_ai, @xai, @figma, @vercel, @Replit, @scale_AI, @GustoHQ, @Mercadolibre, and @cribl_io, alongside Fortune 100s in financial services and global media. What we've shipped since the last round: • Socket Firewall blocks malicious packages at install time, before they reach a developer's laptop or CI pipeline. Free for everyone. • Reachability analysis via our acquisition of Coana, eliminating 50-80% of irrelevant vulnerability alerts by focusing only on CVEs that are actually exploitable. • Socket Certified Patches for remediating exploitable CVEs in seconds without waiting on upstream maintainers. • Coverage extending to browser extensions, editor extensions, MCP servers, and AI tools via our acquisition of @secureannex. When the Axios compromise hit, our detection systems flagged the malicious dependency within six minutes. Within 24 hours, more than 2,000 organizations onboarded to Socket to block it. Where the funding goes: deeper investment in Firewall, massively expanding Certified Patches, moving protection closer to every point of install across the developer toolchain, and new product launches pushing Socket into a category we haven't entered before. We're hiring across engineering, sales, customer success, and threat intel. ❤️ Thank you to our customers, investors, and the open-source community for your support. Together, we’re making software safer for everyone.

feross's tweet photo. Today is a big day for @SocketSecurity. We just raised a $60M Series C at a $1B valuation, led by @ThriveCapital with participation from @a16z, @AbstractVC, and @CapitalOne Ventures. Total funding is now $125M.

Four years ago, we started Socket because open source dependencies were flowing into production faster than anyone could vet them. AI has massively accelerated that. Code is being written, shipped, and deployed before any human reads it. Security has to operate at that same speed.

One data point from Thrive's diligence that I keep coming back to: they first discovered Socket because @cursor_ai, @OpenAI, and @AnthropicAI all independently told them it was the most important security tool they'd adopted for AI-driven development. Three of the most sophisticated AI companies converging on the same vendor unprompted.

Since our Series B, Socket has grown to more than 20,000 organizations, protecting over 1.5 million repositories and blocking more than 1,000 supply chain attacks every week. The team is now over 100 people.

Three out of five FAANG companies are Socket customers. So are the companies building the most ambitious AI products: @AnthropicAI, @cursor_ai, @xai, @figma, @vercel, @Replit, @scale_AI, @GustoHQ, @Mercadolibre, and @cribl_io, alongside Fortune 100s in financial services and global media.

What we've shipped since the last round:

• Socket Firewall blocks malicious packages at install time, before they reach a developer's laptop or CI pipeline. Free for everyone.

• Reachability analysis via our acquisition of Coana, eliminating 50-80% of irrelevant vulnerability alerts by focusing only on CVEs that are actually exploitable.

• Socket Certified Patches for remediating exploitable CVEs in seconds without waiting on upstream maintainers.

• Coverage extending to browser extensions, editor extensions, MCP servers, and AI tools via our acquisition of @secureannex.

When the Axios compromise hit, our detection systems flagged the malicious dependency within six minutes. Within 24 hours, more than 2,000 organizations onboarded to Socket to block it.

Where the funding goes: deeper investment in Firewall, massively expanding Certified Patches, moving protection closer to every point of install across the developer toolchain, and new product launches pushing Socket into a category we haven't entered before.

We're hiring across engineering, sales, customer success, and threat intel.

❤️ Thank you to our customers, investors, and the open-source community for your support. Together, we’re making software safer for everyone.

90

654

74

125

3M

3 months ago

@benln I'd love one. What the criteria for early tab power user?

0

0

0

0

99

4 months ago

welp, that's a first

_ctdio's tweet photo. welp, that's a first https://t.co/tiN6xpDh5q

0

1

0

0

32

4 months ago

holy shit @useblacksmith is amazing

0

1

0

0

60

Who to follow

Timothy Gaskell

Retrocomputing, hobby operating systems, hymnody, miniatures, MLP. /bin/sh

Verified account

AI Risk Management Platform. See & prioritize risk across complex, AI-driven environments. Vuln Management, AI Attack Surface Management & Controls Monitoring.

Implementing effective growth strategies for Software Providers around the globe

5 months ago

@n2parko @cursor_ai Small quality of life one: ctrl+p/ctrl+n to cycle through files and slash commands. I love that this is one of the few agent clis that supports a vim mode but was surprised to see this keybind missing.

0

1

0

0

142

5 months ago

Just ralph wiggy that shit

0

1

0

0

45

5 months ago

Been using cursor bugbot for a while and it's been amazing at spotting real bugs. Paired with claude code in a ralph wiggum loop, it's been great for touching up draft PRs before adding reviewers.

0

2

0

0

106

5 months ago

Cursor's UI feels like it could potentially a great hub to do more concurrently. Something that has me coming back to the terminal frequently is how easy it is to just pop into a worktree or different project, kick off work (perhaps a few agents concurrently), then go to another dir to kick off more for a different task, review work or pop into the code to do a few edits or exploration myself if needed. I know I can do this with multiple instances of cursor or have the agent run in a worktree, but it starts to get unwieldy and resource intensive with 5 instances of lsp running. Background agents are great, but some tasks require a bit more hands on guidance or verification. Perhaps a way of quickly switching contexts/projects while maintaining a central view of ongoing a work so I can keep track of ongoing work and hop around easily when needed.

0

0

0

0

44

5 months ago

man I love how easy it is to build your own tools now

0

0

0

0

28

6 months ago

Curious where I’d be at if I didn’t switch to Claude Code for most of my work

0

1

0

0

34

6 months ago

Not bad

_ctdio's tweet photo. Not bad https://t.co/pPPojG4g6e

1

1

0

0

36

7 months ago

Okay, @cursor_ai 2.0 is fire! Composer 1, the improvements to agent interface, the review agent... It all works together beautifully. Loving the feedback loop!

0

1

0

0

58

8 months ago

woah, this is neat. Plan mode in claude code now prompts for feedback

_ctdio's tweet photo. woah, this is neat. Plan mode in claude code now prompts for feedback https://t.co/TgO7gkZUmE

0

0

0

0

58

8 months ago

Just got back from Japan, I miss it already. Here are a few pics from our visit to Sapporo

_ctdio's tweet photo. Just got back from Japan, I miss it already. Here are a few pics from our visit to Sapporo https://t.co/Ry1upjLJcs

_ctdio's tweet photo. Just got back from Japan, I miss it already. Here are a few pics from our visit to Sapporo https://t.co/Ry1upjLJcs

_ctdio's tweet photo. Just got back from Japan, I miss it already. Here are a few pics from our visit to Sapporo https://t.co/Ry1upjLJcs

_ctdio's tweet photo. Just got back from Japan, I miss it already. Here are a few pics from our visit to Sapporo https://t.co/Ry1upjLJcs

0

3

0

0

88

9 months ago

I didn't wake up today expecting to watch the world tram driver championship but here I am

0

0

0

0

75

9 months ago

@ninepixelgrid Damn. I love this

0

0

0

0

477

9 months ago

Still getting great value out of Claude Code. I keep seeing a bunch of people talk about switching to Codex, may need to give it a shot. I've definitely found gpt-5 great for tricker problems, but Opus 4.1 strikes nice balance of quality and speed for me.

_ctdio's tweet photo. Still getting great value out of Claude Code. I keep seeing a bunch of people talk about switching to Codex, may need to give it a shot. I've definitely found gpt-5 great for tricker problems, but Opus 4.1 strikes nice balance of quality and speed for me. https://t.co/RRzNUNKxAw

0

1

0

0

924

9 months ago

Jupyter notebooks in @cursor_ai feel pretty great. Been spending a good bit of time in them this past week and it's gonna be hard using them anywhere else now. Should have tried them in cursor a long time ago, but it's timely that 1.5 came with some nice improvements.

1

2

0

0

65

Last Seen Users on Sotwe

Trends for you

Most Popular Users