@coana-tech/cli 14.12.151 → 14.12.153

package/cli.mjs

@@ -250895,7 +250895,7 @@ async function onlineScan(dependencyTree, apiKey, timeout) {
 }
 
 // dist/version.js
-var version3 = "14.12.151";
+var version3 = "14.12.153";
 
 // dist/cli-core.js
 var { mapValues, omit, partition, pickBy: pickBy2 } = import_lodash15.default;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@coana-tech/cli",
-  "version": "14.12.151",
+  "version": "14.12.153",
   "description": "Coana CLI",
   "type": "module",
   "bin": {
@@ -13,6 +13,6 @@
   "binaryConfig": {
     "nodeVersion": "22.21.1",
     "npmVersion": "10.9.2",
-    "uvVersion": "0.8.24"
+    "uvVersion": "0.9.24"
   }
 }

package/reachability-analyzers-cli.mjs

@@ -112775,8 +112775,9 @@ async function analyzeWithHeuristics(state, vulns, heuristicsInOrder, doNotRecom
         return;
       const experimentalRes = await analyzeAndAugmentVulns(buckets, void 0, true, expHeuristicName);
       const experimentalUrlToReachability = transformVulnsToUrlToReachability(experimentalRes.augmentedVulnerabilities);
+      const ignoredVulnerabilities = new Set(expHeuristicName === "LAZY_EXPERIMENT" ? buckets.flatMap((b) => b.vulnerabilities).filter((v) => v.vulnerabilityAccessPaths.some((ap) => ap.includes("?"))).map((v) => v.url) : []);
       const vulnUrlsWithPotentialRegressions = experimentalRes.augmentedVulnerabilities.filter((v) => previousAnalysisResults.reachabilityResults[v.url] && // If the vulnerability is new we do not have a previous reachability result
-      getVulnReachability(v.results) !== previousAnalysisResults.reachabilityResults[v.url]).map((v) => v.url);
+      !ignoredVulnerabilities.has(v.url) && getVulnReachability(v.results) !== previousAnalysisResults.reachabilityResults[v.url]).map((v) => v.url);
       const [bucketsToRecompute, bucketsNotToRecompute] = import_lodash17.default.partition(experimentalRes.analysisMetadata, (am) => am.vulnUrls.some((v) => vulnUrlsWithPotentialRegressions.includes(v)));
       for (const b of bucketsToRecompute)
         analysisMetadataCollector?.({ ...b, finalResult: false });
@@ -112791,7 +112792,7 @@ async function analyzeWithHeuristics(state, vulns, heuristicsInOrder, doNotRecom
         })), analysisMetadataCollector, true);
         await Promise.all([
           sendTimeRegressionsToDashboard(expHeuristicName, resWithoutExperimentalHeuristic.analysisMetadata, bucketsToRecompute),
-          sendReachabilityRegressionsToDashboard(resWithoutExperimentalHeuristic.analysisMetadata[0].heuristicName, expHeuristicName, transformVulnsToUrlToReachability(resWithoutExperimentalHeuristic.augmentedVulnerabilities), experimentalUrlToReachability)
+          sendReachabilityRegressionsToDashboard(resWithoutExperimentalHeuristic.analysisMetadata[0].heuristicName, expHeuristicName, transformVulnsToUrlToReachability(resWithoutExperimentalHeuristic.augmentedVulnerabilities), experimentalUrlToReachability, ignoredVulnerabilities)
         ]);
       }
       const vulnsToGetFromExperimental = bucketsNotToRecompute.flatMap((b) => b.vulnUrls);
@@ -113005,8 +113006,8 @@ async function analyzeWithHeuristics(state, vulns, heuristicsInOrder, doNotRecom
       return;
     await sendRegressionsToDashboard(regressions, relative7(state.rootWorkingDir, state.subprojectDir) || ".", state.workspacePath, COANA_REPORT_ID, apiKey);
   }
-  async function sendReachabilityRegressionsToDashboard(heuristicName, experimentName, origRes, experimentRes) {
-    const regressions = Object.entries(origRes).filter(([vulnUrl, oRes]) => experimentRes[vulnUrl] && oRes.reachability !== experimentRes[vulnUrl].reachability).map(([vulnUrl, originalResult]) => ({
+  async function sendReachabilityRegressionsToDashboard(heuristicName, experimentName, origRes, experimentRes, ignoredVulnerabilities) {
+    const regressions = Object.entries(origRes).filter(([vulnUrl]) => !ignoredVulnerabilities.has(vulnUrl)).filter(([vulnUrl, oRes]) => experimentRes[vulnUrl] && oRes.reachability !== experimentRes[vulnUrl].reachability).map(([vulnUrl, originalResult]) => ({
       type: "REACHABILITY",
       heuristicName,
       experimentName,

package/repos/coana-tech/jelly-private/dist/bundle/jelly.js

@@ -108,6 +108,10 @@ var require_worklist = __commonJS({
       }
       first;
       last;
+      _size = 0;
+      get size() {
+        return this._size;
+      }
       enqueue(v) {
         const n = new Node(v);
         if (this.last)
@@ -115,6 +119,7 @@ var require_worklist = __commonJS({
         else
           this.first = n;
         this.last = n;
+        this._size++;
       }
       *[Symbol.iterator]() {
         while (this.first) {
@@ -122,6 +127,7 @@ var require_worklist = __commonJS({
           this.first = c.next;
           if (this.first === void 0)
             this.last = void 0;
+          this._size--;
           yield c.value;
         }
       }
@@ -2639,6 +2645,9 @@ var require_solver = __commonJS({
           unprocessedListeners2: f.postponedListenerCalls2.length,
           packages: a.packageInfos.size,
           modules: a.moduleInfos.size,
+          modulesFull: d.modulesFull,
+          pendingFiles: a.pendingFiles.size,
+          pendingModulesFull: a.pendingModulesFull.size,
           functions: a.functionInfos.size,
           uniqueTokens: a.canonicalTokens.size
         });