@coana-tech/cli 14.12.189 → 14.12.190
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/cli.mjs +9 -4
- package/package.json +1 -1
- package/repos/coana-tech/goana/bin/goana-darwin-amd64.gz +0 -0
- package/repos/coana-tech/goana/bin/goana-darwin-arm64.gz +0 -0
- package/repos/coana-tech/goana/bin/goana-linux-amd64.gz +0 -0
- package/repos/coana-tech/goana/bin/goana-linux-arm64.gz +0 -0
- package/repos/coana-tech/javap-service/javap-service.jar +0 -0
package/cli.mjs
CHANGED
|
@@ -235872,7 +235872,8 @@ async function fetchArtifactsFromSocket(rootWorkingDirectory, manifestsTarHash,
|
|
|
235872
235872
|
vulnerabilityAccessPaths: vuln.reachabilityData?.undeterminableReachability ? vuln.reachabilityData.publicComment ?? "" : vuln.reachabilityData?.pattern ?? null,
|
|
235873
235873
|
ecosystem,
|
|
235874
235874
|
artifactId: artifact.id,
|
|
235875
|
-
precomputedReachabilityResult: vuln.reachabilityData?.precomputedReachabilityResult ?? null
|
|
235875
|
+
precomputedReachabilityResult: vuln.reachabilityData?.precomputedReachabilityResult ?? null,
|
|
235876
|
+
activationStatus: vuln.reachabilityData?.activationStatus ?? null
|
|
235876
235877
|
};
|
|
235877
235878
|
const vulnId = `${ecosystem}-${workspace}-${artifact.namespace}-${artifact.name}-${artifact.version}-${vulnerability.url}`;
|
|
235878
235879
|
if (!ecosystemWorkspaceVulnIds.has(vulnId)) {
|
|
@@ -236598,9 +236599,12 @@ function toSocketFactsSocketDependencyTree(artifacts, vulnerabilities, tier1Reac
|
|
|
236598
236599
|
if (!reachabilityForGHSA) {
|
|
236599
236600
|
reachabilityForGHSA = {
|
|
236600
236601
|
ghsa_id: vulnerability.vulnerabilityUrl.replace("https://github.com/advisories/", ""),
|
|
236601
|
-
reachability: []
|
|
236602
|
+
reachability: [],
|
|
236603
|
+
...vulnerability.activationStatus ? { activation_status: vulnerability.activationStatus } : {}
|
|
236602
236604
|
};
|
|
236603
236605
|
component.reachability.push(reachabilityForGHSA);
|
|
236606
|
+
} else if (vulnerability.activationStatus && !reachabilityForGHSA.activation_status) {
|
|
236607
|
+
reachabilityForGHSA.activation_status = vulnerability.activationStatus;
|
|
236604
236608
|
}
|
|
236605
236609
|
if (vulnerability.codeAwareScanResult.type === "precomputed") {
|
|
236606
236610
|
reachabilityForGHSA.reachability.push(vulnerability.codeAwareScanResult);
|
|
@@ -251519,7 +251523,7 @@ async function onlineScan(dependencyTree, apiKey, timeout) {
|
|
|
251519
251523
|
}
|
|
251520
251524
|
|
|
251521
251525
|
// dist/version.js
|
|
251522
|
-
var version3 = "14.12.
|
|
251526
|
+
var version3 = "14.12.190";
|
|
251523
251527
|
|
|
251524
251528
|
// dist/cli-core.js
|
|
251525
251529
|
var { mapValues, omit, partition, pickBy: pickBy2 } = import_lodash15.default;
|
|
@@ -252311,7 +252315,8 @@ Subproject: ${subproject}`);
|
|
|
252311
252315
|
reachability,
|
|
252312
252316
|
purl: v.purl,
|
|
252313
252317
|
purlType: v.purlType,
|
|
252314
|
-
artifactId: v.artifactId
|
|
252318
|
+
artifactId: v.artifactId,
|
|
252319
|
+
activationStatus: v.activationStatus
|
|
252315
252320
|
};
|
|
252316
252321
|
});
|
|
252317
252322
|
}
|
package/package.json
CHANGED
|
Binary file
|
|
Binary file
|
|
Binary file
|
|
Binary file
|
|
Binary file
|