npm - @coana-tech/cli - Versions diffs - 13.19.10 → 13.19.12 - Mend

@coana-tech/cli 13.19.10 → 13.19.12

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/cli.js +40 -36
package/package.json +1 -1

package/cli.js CHANGED Viewed

@@ -51664,9 +51664,9 @@ var require_individual = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/bole@5.0.15/node_modules/bole/format.js
+// ../../node_modules/.pnpm/bole@5.0.17/node_modules/bole/format.js
 var require_format2 = __commonJS({
-  "../../node_modules/.pnpm/bole@5.0.15/node_modules/bole/format.js"(exports2, module2) {
+  "../../node_modules/.pnpm/bole@5.0.17/node_modules/bole/format.js"(exports2, module2) {
     var utilformat = require("util").format;
     function format3(a1, a22, a3, a4, a5, a6, a7, a8, a9, a10, a11, a12, a13, a14, a15, a16) {
       if (a16 !== void 0) {
@@ -51720,9 +51720,9 @@ var require_format2 = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/bole@5.0.15/node_modules/bole/bole.js
+// ../../node_modules/.pnpm/bole@5.0.17/node_modules/bole/bole.js
 var require_bole = __commonJS({
-  "../../node_modules/.pnpm/bole@5.0.15/node_modules/bole/bole.js"(exports2, module2) {
+  "../../node_modules/.pnpm/bole@5.0.17/node_modules/bole/bole.js"(exports2, module2) {
     "use strict";
     var _stringify = require_fast_safe_stringify();
     var individual = require_individual()("$$bole", { fastTime: false });
@@ -52782,9 +52782,9 @@ var require_path_key = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/util/resolveCommand.js
+// ../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/util/resolveCommand.js
 var require_resolveCommand = __commonJS({
-  "../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/util/resolveCommand.js"(exports2, module2) {
+  "../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/util/resolveCommand.js"(exports2, module2) {
     "use strict";
     var path2 = require("path");
     var which = require_which2();
@@ -52824,9 +52824,9 @@ var require_resolveCommand = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/util/escape.js
+// ../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/util/escape.js
 var require_escape = __commonJS({
-  "../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/util/escape.js"(exports2, module2) {
+  "../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/util/escape.js"(exports2, module2) {
     "use strict";
     var metaCharsRegExp = /([()\][%!^"`<>&|;, *?])/g;
     function escapeCommand(arg) {
@@ -52835,8 +52835,8 @@ var require_escape = __commonJS({
     }
     function escapeArgument(arg, doubleEscapeMetaChars) {
       arg = `${arg}`;
-      arg = arg.replace(/(\\*)"/g, '$1$1\\"');
-      arg = arg.replace(/(\\*)$/, "$1$1");
+      arg = arg.replace(/(?=(\\+?)?)\1"/g, '$1$1\\"');
+      arg = arg.replace(/(?=(\\+?)?)\1$/, "$1$1");
       arg = `"${arg}"`;
       arg = arg.replace(metaCharsRegExp, "^$1");
       if (doubleEscapeMetaChars) {
@@ -52877,9 +52877,9 @@ var require_shebang_command = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/util/readShebang.js
+// ../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/util/readShebang.js
 var require_readShebang = __commonJS({
-  "../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/util/readShebang.js"(exports2, module2) {
+  "../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/util/readShebang.js"(exports2, module2) {
     "use strict";
     var fs = require("fs");
     var shebangCommand = require_shebang_command();
@@ -52899,9 +52899,9 @@ var require_readShebang = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/parse.js
+// ../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/parse.js
 var require_parse = __commonJS({
-  "../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/parse.js"(exports2, module2) {
+  "../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/parse.js"(exports2, module2) {
     "use strict";
     var path2 = require("path");
     var resolveCommand = require_resolveCommand();
@@ -52961,9 +52961,9 @@ var require_parse = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/enoent.js
+// ../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/enoent.js
 var require_enoent = __commonJS({
-  "../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/lib/enoent.js"(exports2, module2) {
+  "../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/lib/enoent.js"(exports2, module2) {
     "use strict";
     var isWin = process.platform === "win32";
     function notFoundError(original, syscall) {
@@ -52982,7 +52982,7 @@ var require_enoent = __commonJS({
       const originalEmit = cp.emit;
       cp.emit = function(name, arg1) {
         if (name === "exit") {
-          const err = verifyENOENT(arg1, parsed, "spawn");
+          const err = verifyENOENT(arg1, parsed);
           if (err) {
             return originalEmit.call(cp, "error", err);
           }
@@ -53011,9 +53011,9 @@ var require_enoent = __commonJS({
   }
 });
-// ../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/index.js
+// ../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/index.js
 var require_cross_spawn = __commonJS({
-  "../../node_modules/.pnpm/cross-spawn@7.0.3/node_modules/cross-spawn/index.js"(exports2, module2) {
+  "../../node_modules/.pnpm/cross-spawn@7.0.6/node_modules/cross-spawn/index.js"(exports2, module2) {
     "use strict";
     var cp = require("child_process");
     var parse10 = require_parse();
@@ -190204,7 +190204,7 @@ var require_version = __commonJS({
     "use strict";
     Object.defineProperty(exports2, "__esModule", { value: true });
     exports2.version = void 0;
-    exports2.version = "13.19.10";
+    exports2.version = "13.19.12";
   }
 });
@@ -190512,24 +190512,28 @@ var require_cli_core = __commonJS({
                 });
               }
               for (const codeAwareScanSuccess of Object.values(workspaceToCodeAwareScanSuccess)) {
-                if (Array.isArray(codeAwareScanSuccess.detectedOccurrences)) {
-                  codeAwareScanSuccess.detectedOccurrences = codeAwareScanSuccess.detectedOccurrences.filter((detectedOccurence) => {
-                    detectedOccurence.affectedAppCodePoints = detectedOccurence.affectedAppCodePoints.filter((affectedAppCodePoint) => (0, vulnerable_paths_utils_1.isShortestPath)(trie, affectedAppCodePoint.map(serialize3)));
+                const detectedOccurrences = codeAwareScanSuccess.detectedOccurrences;
+                detectedOccurrences.stacks = detectedOccurrences.stacks.filter((stack2) => (0, vulnerable_paths_utils_1.isShortestPath)(trie, stack2.map(serialize3)));
+                if (detectedOccurrences.stacks.length === 0)
+                  detectedOccurrences.affectedPackages = [];
+                detectedOccurrences.affectedPackages = detectedOccurrences.affectedPackages.filter((affectedPackage) => {
+                  if (affectedPackage === vuln_chain_detail_utils_1.ROOT_NODE_STR || affectedPackage === "UNKNOWN")
+                    return true;
+                  const [packageName, version2] = affectedPackage.split("@");
+                  return detectedOccurrences.stacks.some((stack2) => stack2.some((stackElm) => {
                     if (ecosystem2 === "MAVEN") {
-                      detectedOccurence.affectedAppCodePoints = detectedOccurence.affectedAppCodePoints.map((path2) => {
-                        if (path2.length < 2)
-                          throw new Error("The path should always have length at least two.");
-                        return {
-                          appClass: path2[0].class,
-                          reference: path2[1]
-                        };
-                      });
+                      const [groupId, artifactId, ...rest] = stackElm.package.split(":");
+                      const expectedPackageName = `${groupId}:${artifactId}`;
+                      const expectedVersion = rest[rest.length - 1];
+                      return expectedPackageName === packageName && expectedVersion === version2;
                     }
-                    return detectedOccurence.affectedAppCodePoints.length > 0;
-                  });
-                } else {
-                  codeAwareScanSuccess.detectedOccurrences.stacks = codeAwareScanSuccess.detectedOccurrences.stacks.filter((stack2) => (0, vulnerable_paths_utils_1.isShortestPath)(trie, stack2.map(serialize3)));
-                }
+                    if (ecosystem2 === "NUGET") {
+                      const [expectedPackageName, expectedVersion] = stackElm.package.split("/");
+                      return expectedPackageName === packageName && expectedVersion === version2;
+                    }
+                    return true;
+                  }));
+                });
               }
             }
           };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@coana-tech/cli",
-  "version": "13.19.10",
+  "version": "13.19.12",
   "description": "Coana CLI",
   "bin": {
     "@coana-tech/cli": "./cli.js"