diff --git a/README.md b/README.md
index 9e4d2e0..a905bb7 100644
--- a/README.md
+++ b/README.md
@@ -180,6 +180,9 @@ No other free tool combines all of the following: lockfile scanning across npm,
 
 The transitive parent guidance is a key difference: CVE Lite CLI avoids recommending direct installs for packages that are only present transitively. For npm lockfiles, it can identify when `npm update <parent>` is enough to re-resolve a known non-vulnerable child within the current parent range, and when the parent package itself needs an upgrade.
 
+### About Socket CLI
+Socket provides deep supply-chain analysis (malware, typosquatting, maintainer risk) but requires a paid account for full features. CVE Lite CLI remains one of the few fully free, offline, and account-free options with strong transitive analysis.
+
 For detailed per-tool analysis, see [Comparison with other tools](https://owasp.org/cve-lite-cli/docs/comparison).
 
 ## Real-world validation