@coana-tech/cli 14.12.198 → 14.12.200

package/cli.mjs

@@ -25038,15 +25038,15 @@ var require_file = __commonJS({
       _incFile(callback) {
         debug("_incFile", this.filename);
         const ext2 = path9.extname(this._basename);
-        const basename12 = path9.basename(this._basename, ext2);
+        const basename13 = path9.basename(this._basename, ext2);
         const tasks = [];
         if (this.zippedArchive) {
           tasks.push(
             function(cb) {
               const num = this._created > 0 && !this.tailable ? this._created : "";
               this._compressFile(
-                path9.join(this.dirname, `${basename12}${num}${ext2}`),
-                path9.join(this.dirname, `${basename12}${num}${ext2}.gz`),
+                path9.join(this.dirname, `${basename13}${num}${ext2}`),
+                path9.join(this.dirname, `${basename13}${num}${ext2}.gz`),
                 cb
               );
             }.bind(this)
@@ -25056,9 +25056,9 @@ var require_file = __commonJS({
           function(cb) {
             if (!this.tailable) {
               this._created += 1;
-              this._checkMaxFilesIncrementing(ext2, basename12, cb);
+              this._checkMaxFilesIncrementing(ext2, basename13, cb);
             } else {
-              this._checkMaxFilesTailable(ext2, basename12, cb);
+              this._checkMaxFilesTailable(ext2, basename13, cb);
             }
           }.bind(this)
         );
@@ -25072,9 +25072,9 @@ var require_file = __commonJS({
        */
       _getFile() {
         const ext2 = path9.extname(this._basename);
-        const basename12 = path9.basename(this._basename, ext2);
+        const basename13 = path9.basename(this._basename, ext2);
         const isRotation = this.rotationFormat ? this.rotationFormat() : this._created;
-        return !this.tailable && this._created ? `${basename12}${isRotation}${ext2}` : `${basename12}${ext2}`;
+        return !this.tailable && this._created ? `${basename13}${isRotation}${ext2}` : `${basename13}${ext2}`;
       }
       /**
        * Increment the number of files created or checked by this instance.
@@ -25084,14 +25084,14 @@ var require_file = __commonJS({
        * @returns {undefined}
        * @private
        */
-      _checkMaxFilesIncrementing(ext2, basename12, callback) {
+      _checkMaxFilesIncrementing(ext2, basename13, callback) {
         if (!this.maxFiles || this._created < this.maxFiles) {
           return setImmediate(callback);
         }
         const oldest = this._created - this.maxFiles;
         const isOldest = oldest !== 0 ? oldest : "";
         const isZipped = this.zippedArchive ? ".gz" : "";
-        const filePath = `${basename12}${isOldest}${ext2}${isZipped}`;
+        const filePath = `${basename13}${isOldest}${ext2}${isZipped}`;
         const target = path9.join(this.dirname, filePath);
         fs11.unlink(target, callback);
       }
@@ -25106,7 +25106,7 @@ var require_file = __commonJS({
        * @returns {undefined}
        * @private
        */
-      _checkMaxFilesTailable(ext2, basename12, callback) {
+      _checkMaxFilesTailable(ext2, basename13, callback) {
         const tasks = [];
         if (!this.maxFiles) {
           return;
@@ -25114,21 +25114,21 @@ var require_file = __commonJS({
         const isZipped = this.zippedArchive ? ".gz" : "";
         for (let x2 = this.maxFiles - 1; x2 > 1; x2--) {
           tasks.push(function(i7, cb) {
-            let fileName3 = `${basename12}${i7 - 1}${ext2}${isZipped}`;
+            let fileName3 = `${basename13}${i7 - 1}${ext2}${isZipped}`;
             const tmppath = path9.join(this.dirname, fileName3);
             fs11.exists(tmppath, (exists2) => {
               if (!exists2) {
                 return cb(null);
               }
-              fileName3 = `${basename12}${i7}${ext2}${isZipped}`;
+              fileName3 = `${basename13}${i7}${ext2}${isZipped}`;
               fs11.rename(tmppath, path9.join(this.dirname, fileName3), cb);
             });
           }.bind(this, x2));
         }
         asyncSeries(tasks, () => {
           fs11.rename(
-            path9.join(this.dirname, `${basename12}${ext2}${isZipped}`),
-            path9.join(this.dirname, `${basename12}1${ext2}${isZipped}`),
+            path9.join(this.dirname, `${basename13}${ext2}${isZipped}`),
+            path9.join(this.dirname, `${basename13}1${ext2}${isZipped}`),
             callback
           );
         });
@@ -102682,7 +102682,7 @@ var require_parseParams = __commonJS({
 var require_basename = __commonJS({
   "../../node_modules/.pnpm/@fastify+busboy@2.1.1/node_modules/@fastify/busboy/lib/utils/basename.js"(exports2, module2) {
     "use strict";
-    module2.exports = function basename12(path9) {
+    module2.exports = function basename13(path9) {
       if (typeof path9 !== "string") {
         return "";
       }
@@ -102709,7 +102709,7 @@ var require_multipart = __commonJS({
     var Dicer = require_Dicer();
     var parseParams = require_parseParams();
     var decodeText = require_decodeText();
-    var basename12 = require_basename();
+    var basename13 = require_basename();
     var getLimit2 = require_getLimit();
     var RE_BOUNDARY = /^boundary$/i;
     var RE_FIELD = /^form-data$/i;
@@ -102826,7 +102826,7 @@ var require_multipart = __commonJS({
               } else if (RE_FILENAME.test(parsed[i7][0])) {
                 filename = parsed[i7][1];
                 if (!preservePath) {
-                  filename = basename12(filename);
+                  filename = basename13(filename);
                 }
               }
             }
@@ -121662,8 +121662,8 @@ var require_tmp = __commonJS({
       if (option === "name") {
         if (path9.isAbsolute(name2))
           throw new Error(`${option} option must not contain an absolute path, found "${name2}".`);
-        let basename12 = path9.basename(name2);
-        if (basename12 === ".." || basename12 === "." || basename12 !== name2)
+        let basename13 = path9.basename(name2);
+        if (basename13 === ".." || basename13 === "." || basename13 !== name2)
           throw new Error(`${option} option must not contain a path, found "${name2}".`);
       } else {
         if (path9.isAbsolute(name2) && !name2.startsWith(tmpDir)) {
@@ -155347,8 +155347,8 @@ var require_pattern = __commonJS({
     }
     exports2.endsWithSlashGlobStar = endsWithSlashGlobStar;
     function isAffectDepthOfReadingPattern(pattern) {
-      const basename12 = path9.basename(pattern);
-      return endsWithSlashGlobStar(pattern) || isStaticPattern(basename12);
+      const basename13 = path9.basename(pattern);
+      return endsWithSlashGlobStar(pattern) || isStaticPattern(basename13);
     }
     exports2.isAffectDepthOfReadingPattern = isAffectDepthOfReadingPattern;
     function expandPatternsWithBraceExpansion(patterns) {
@@ -218649,8 +218649,8 @@ var MavenSocketUpgradeManager = class {
     const gradleLockfiles = /* @__PURE__ */ new Set();
     const sbtManifestFiles = /* @__PURE__ */ new Set();
     const pomMatcher = (0, import_picomatch3.default)("{*-*.,}pom{.xml,}", { basename: true });
-    const buildOutput = (0, import_picomatch3.default)("build/**");
-    const targetOutput = (0, import_picomatch3.default)("target/**");
+    const buildOutput = (0, import_picomatch3.default)("**/build/**");
+    const targetOutput = (0, import_picomatch3.default)("**/target/**");
     const gradleLockfileMatcher = (0, import_picomatch3.default)("gradle.lockfile", { basename: true });
     const sbtMatcher = (0, import_picomatch3.default)(["*.sbt", "*.scala"], { basename: true });
     for (const manifestFile of ctxt.manifestFiles) {
@@ -234280,6 +234280,28 @@ function assertDefined(value2) {
 }
 
 // dist/internal/validate-external-dependencies.js
+import { basename as basename10 } from "path";
+function getEcosystemsFromManifestFileNames(fileNames) {
+  const ecosystems = /* @__PURE__ */ new Set();
+  for (const f6 of fileNames) {
+    const base = basename10(f6);
+    if (/^package(-lock)?\.json$|pnpm-lock\.yaml|yarn\.lock|rush\.json/.test(base))
+      ecosystems.add("NPM");
+    if (/^pom\.xml$|^gradlew$|^build\.sbt$/.test(base))
+      ecosystems.add("MAVEN");
+    if (/^go\.(mod|work)$/.test(base))
+      ecosystems.add("GO");
+    if (/\.(sln|csproj|vbproj|fsproj)$/.test(base))
+      ecosystems.add("NUGET");
+    if (/^[Cc]argo\.(toml|lock)$/.test(base))
+      ecosystems.add("RUST");
+    if (/^([Gg]emfile(\.lock)?|gems\.rb|[^/\\]+\.gemspec)$/.test(base))
+      ecosystems.add("RUBYGEMS");
+    if (/^(pyproject\.toml|setup\.py|poetry\.lock|Pipfile\.lock|uv\.lock|requirements.*\.txt)$/.test(base))
+      ecosystems.add("PIP");
+  }
+  return [...ecosystems];
+}
 async function validateExternalDependencies(ecosystems, command, manifestFileNames) {
   const checks = [];
   const ecosystemSet = new Set(ecosystems);
@@ -235554,7 +235576,7 @@ var DEFAULT_REPORT_FILENAME_BASE = "coana-report";
 // dist/internal/exclude-dirs-from-configuration-files.js
 import { existsSync as existsSync25 } from "fs";
 import { readFile as readFile35 } from "fs/promises";
-import { basename as basename10, resolve as resolve41 } from "path";
+import { basename as basename11, resolve as resolve41 } from "path";
 var import_yaml2 = __toESM(require_dist11(), 1);
 async function inferExcludeDirsFromConfigurationFiles(rootWorkingDir) {
   const socketYmlConfigFile = resolve41(rootWorkingDir, "socket.yml");
@@ -235574,7 +235596,7 @@ async function inferExcludeDirsFromSocketConfig(socketConfigFile) {
       return void 0;
     if (ignorePaths.some((ignorePath) => ignorePath.includes("!")))
       return void 0;
-    logger.info(`Inferring paths to exclude based on Socket config file: ${basename10(socketConfigFile)}`);
+    logger.info(`Inferring paths to exclude based on Socket config file: ${basename11(socketConfigFile)}`);
     return config3.projectIgnorePaths;
   } catch (e) {
     return void 0;
@@ -235784,7 +235806,7 @@ function transformToVulnChainNode(dependencyTree) {
 }
 
 // dist/internal/socket-mode-helpers-socket-dependency-trees.js
-import { basename as basename11, dirname as dirname25, join as join32, sep as sep5 } from "path";
+import { basename as basename12, dirname as dirname25, join as join32, sep as sep5 } from "path";
 var REQUIREMENTS_FILES_SEARCH_DEPTH2 = 3;
 var venvExcludes = [
   "venv",
@@ -235812,7 +235834,7 @@ var venvExcludes = [
 function inferWorkspaceFromManifestPath(ecosystem, manifestPath, properPythonProjects) {
   switch (ecosystem) {
     case "NPM": {
-      const base = basename11(manifestPath);
+      const base = basename12(manifestPath);
       const dir = dirname25(manifestPath);
       return base === "package.json" ? dir || "." : void 0;
     }
@@ -235823,7 +235845,7 @@ function inferWorkspaceFromManifestPath(ecosystem, manifestPath, properPythonPro
       if (venvExcludes.some((exclude) => manifestPath.startsWith(`${exclude}/`) || manifestPath.includes(`/${exclude}/`))) {
         return void 0;
       }
-      const base = basename11(manifestPath);
+      const base = basename12(manifestPath);
       const dir = dirname25(manifestPath);
       const workspaceDir = dir === "" ? "." : dir;
       if (properPythonProjects.includes(workspaceDir)) {
@@ -235850,7 +235872,7 @@ function inferWorkspaceFromManifestPath(ecosystem, manifestPath, properPythonPro
       return dirname25(manifestPath) || ".";
     }
     case "GO": {
-      const base = basename11(manifestPath);
+      const base = basename12(manifestPath);
       const dir = dirname25(manifestPath);
       return base === "go.mod" ? dir || "." : void 0;
     }
@@ -235865,7 +235887,7 @@ function inferWorkspaceFromManifestPath(ecosystem, manifestPath, properPythonPro
 function inferProjectFromManifestPath(ecosystem, manifestPath) {
   switch (ecosystem) {
     case "NPM": {
-      const filename = basename11(manifestPath);
+      const filename = basename12(manifestPath);
       if (["package-lock.json", "pnpm-lock.yaml", "pnpm-lock.yml", "yarn.lock"].includes(filename)) {
         return dirname25(manifestPath) || ".";
       }
@@ -235907,7 +235929,7 @@ async function fetchArtifactsFromSocket(rootWorkingDirectory, manifestsTarHash,
     }
     const allFiles = await getFilesRelative(rootWorkingDirectory, venvExcludes);
     for (const file of allFiles) {
-      const base = basename11(file);
+      const base = basename12(file);
       const workspaceDir = dirname25(file) || ".";
       if (base === "pyproject.toml" || base === "setup.py" && await isSetupPySetuptools(join32(rootWorkingDirectory, file))) {
         if (!properPythonProjects.includes(workspaceDir)) {
@@ -251655,7 +251677,7 @@ async function onlineScan(dependencyTree, apiKey, timeout) {
 }
 
 // dist/version.js
-var version3 = "14.12.198";
+var version3 = "14.12.200";
 
 // dist/cli-core.js
 var { mapValues, omit, partition, pickBy: pickBy2 } = import_lodash15.default;
@@ -251861,13 +251883,14 @@ var CliCore = class {
   }
   async computeAndOutputReportSocketMode(otherModulesCommunicator) {
     logger.info("Fetching artifacts from Socket backend");
+    if (!this.options.disableExternalToolChecks) {
+      const manifestFiles = await fetchManifestFilesFromManifestsTarHash(this.options.manifestsTarHash);
+      const ecosystems = getEcosystemsFromManifestFileNames(manifestFiles);
+      await validateExternalDependencies(ecosystems, "run", manifestFiles);
+    }
     this.sendProgress("SCAN_FOR_VULNERABILITIES", true, ".", ".");
     const { artifacts, ecosystemToWorkspaceToAnalysisData, ecosystemToWorkspaceToVulnerabilities } = await fetchArtifactsFromSocket(this.rootWorkingDirectory, this.options.manifestsTarHash, "reachability", this.options.useUnreachableFromPrecomputation, this.options.useOnlyPregeneratedSboms);
     this.sendProgress("SCAN_FOR_VULNERABILITIES", false, ".", ".");
-    const detectedEcosystemsSocket = Object.keys(ecosystemToWorkspaceToAnalysisData);
-    if (!this.options.disableExternalToolChecks) {
-      await validateExternalDependencies(detectedEcosystemsSocket, "run");
-    }
     const subProjects = Object.entries(ecosystemToWorkspaceToAnalysisData).flatMap(([ecosystem, workspaceToAnalysisData]) => {
       return Object.entries(workspaceToAnalysisData).map(([workspace, analysisData]) => {
         return {
@@ -252009,10 +252032,6 @@ var CliCore = class {
     const manager = await ProjectManager.create(this.rootWorkingDirectory, otherModulesCommunicator, this.options.ecosystems, this.options.includeDirs, this.options.excludeDirs, this.options.changedFiles);
     this.sendProgress("CREATE_PROJECT_MANAGER", false);
     const { reachabilitySupport, traditionalScaSupport, noSupport } = manager.getSubprojectsWithWorkspacePaths();
-    const detectedEcosystemsSbom = [...new Set([...reachabilitySupport, ...traditionalScaSupport].map((s6) => s6.ecosystem))];
-    if (!this.options.disableExternalToolChecks) {
-      await validateExternalDependencies(detectedEcosystemsSbom, "run");
-    }
     await this.dashboardAPI.registerSubprojects([...reachabilitySupport, ...traditionalScaSupport, ...noSupport].map((sp) => ({
       ...sp,
       subprojectPath: relative22(this.rootWorkingDirectory, sp.subprojectPath) || "."

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@coana-tech/cli",
-  "version": "14.12.198",
+  "version": "14.12.200",
   "description": "Coana CLI",
   "type": "module",
   "bin": {