@coana-tech/cli 14.12.27 → 14.12.28

package/cli.mjs

@@ -208148,22 +208148,27 @@ var import_picomatch3 = __toESM(require_picomatch2(), 1);
 var import_semver3 = __toESM(require_semver2(), 1);
 import assert6 from "node:assert";
 import { readFile as readFile18 } from "node:fs/promises";
+import { existsSync as existsSync12 } from "node:fs";
 var CargoSocketUpgradeManager = class {
   constructor(rootDir) {
     this.rootDir = rootDir;
   }
   cargoTomlMatcher = (0, import_picomatch3.default)("Cargo.toml");
+  cargoLockMatcher = (0, import_picomatch3.default)("Cargo.lock");
   async applySocketArtifactUpgrades(_manifestFiles, upgrades, artifacts, rangeStyle) {
     const tomlPatches = await this.collectCargoTomlPatches(upgrades, artifacts, rangeStyle);
     const lockPatches = await this.collectCargoLockPatches(upgrades, artifacts);
     const successfulPatches = extractSuccessfulPatches(tomlPatches.concat(lockPatches));
     await applySocketPatchResults("RUST", this.rootDir, successfulPatches);
-    await asyncForEach(i(successfulPatches.map((p3) => dirname9(p3.patch.file))), async (dir) => {
-      const success = await execAndLogOnFailure(cmdt`cargo fetch`, resolve19(this.rootDir, dir));
-      if (!success) {
-        throw Error(`Could not update checksums with cargo fetch in directory ${dir || "."}`);
+    await asyncForEach(
+      i(successfulPatches.map((p3) => p3.patch.file)).filter((file) => this.cargoLockMatcher(basename5(file))),
+      async (lockFile) => {
+        const success = await execAndLogOnFailure(cmdt`cargo fetch`, dirname9(resolve19(this.rootDir, lockFile)));
+        if (!success) {
+          throw Error(`Could not update checksums in ${lockFile}`);
+        }
       }
-    });
+    );
   }
   /**
    * Collect patches for Cargo.toml files (direct dependencies only)
@@ -208174,10 +208179,8 @@ var CargoSocketUpgradeManager = class {
       assert6(artifact.name);
       assert6(artifact.version);
       const directManifestFiles = i(artifact.manifestFiles?.map((ref) => ref.file) ?? []);
-      return asyncFlatMap(
-        directManifestFiles.filter((manifestFile) => {
-          return this.cargoTomlMatcher(basename5(manifestFile));
-        }),
+      return await asyncFlatMap(
+        directManifestFiles.filter((manifestFile) => this.cargoTomlMatcher(basename5(manifestFile))),
         async (manifestFile) => this.handleCargoToml(manifestFile, upgrade, artifact, rangeStyle)
       );
     });
@@ -208198,10 +208201,8 @@ var CargoSocketUpgradeManager = class {
         )
       );
       return asyncFlatMap(
-        ancestorManifestFiles.filter((manifestFile) => {
-          return this.cargoTomlMatcher(basename5(manifestFile));
-        }),
-        async (tomlFile) => this.handleCargoLock(join13(dirname9(tomlFile), "Cargo.lock"), upgrade, artifact)
+        ancestorManifestFiles.filter((manifestFile) => this.cargoTomlMatcher(basename5(manifestFile))).map((tomlFile) => join13(dirname9(tomlFile), "Cargo.lock")).filter((lockFile) => existsSync12(resolve19(this.rootDir, lockFile))),
+        async (lockFile) => this.handleCargoLock(lockFile, upgrade, artifact)
       );
     });
   }
@@ -208343,7 +208344,7 @@ var CargoSocketUpgradeManager = class {
    */
   createNewVersionString(currentVersion, newVersion, rangeStyle) {
     if (rangeStyle === "pin") {
-      return newVersion;
+      return `=${newVersion}`;
     } else {
       const specifierMatch = currentVersion.match(/^([^\d]*)/);
       const specifier = specifierMatch ? specifierMatch[1] : "^";
@@ -208465,7 +208466,7 @@ async function applySocketUpgrades(ecosystem, rootDir, manifestFiles, upgrades,
 
 // dist/cli-apply-fix.js
 var import_lodash12 = __toESM(require_lodash(), 1);
-import { existsSync as existsSync16 } from "fs";
+import { existsSync as existsSync17 } from "fs";
 
 // ../other-modules-communicator/src/other-modules-communicator.ts
 import { execFileSync } from "child_process";
@@ -208482,7 +208483,7 @@ import { fileURLToPath as fileURLToPath3 } from "node:url";
 // ../utils/dist/file-utils.js
 var import_lodash5 = __toESM(require_lodash(), 1);
 var import_micromatch = __toESM(require_micromatch(), 1);
-import { existsSync as existsSync12 } from "fs";
+import { existsSync as existsSync13 } from "fs";
 import { access as access2, cp, readdir as readdir3, stat as stat2 } from "fs/promises";
 import { basename as basename6, join as join14, relative as relative11, resolve as resolve20 } from "path";
 var { uniq } = import_lodash5.default;
@@ -209227,7 +209228,7 @@ async function detectVariantMaven(projectDir) {
 }
 
 // ../docker-management/src/maven/gradle-version-detector.ts
-import { existsSync as existsSync13 } from "fs";
+import { existsSync as existsSync14 } from "fs";
 import { join as join17 } from "path";
 import { readFile as readFile20 } from "fs/promises";
 async function detectVariantGradle(projectDir) {
@@ -209235,7 +209236,7 @@ async function detectVariantGradle(projectDir) {
 }
 async function detect(projectDir) {
   const gradleWrapperPropertiesPath = join17(projectDir, "gradle", "wrapper", "gradle-wrapper.properties");
-  const gradleWrapperProperties = existsSync13(gradleWrapperPropertiesPath) ? (await readFile20(gradleWrapperPropertiesPath, "utf-8")).split("\n").map((line) => line.trim()).filter((line) => !line.startsWith("#")).filter((line) => line) : void 0;
+  const gradleWrapperProperties = existsSync14(gradleWrapperPropertiesPath) ? (await readFile20(gradleWrapperPropertiesPath, "utf-8")).split("\n").map((line) => line.trim()).filter((line) => !line.startsWith("#")).filter((line) => line) : void 0;
   if (!gradleWrapperProperties) return void 0;
   const distributionUrlRegex = /.*gradle-(\d+(\.\d+(\.\d+)?)?)/;
   for (const prop2 of gradleWrapperProperties) {
@@ -209249,7 +209250,7 @@ async function detect(projectDir) {
 }
 
 // ../docker-management/src/maven/sbt-version-detector.ts
-import { existsSync as existsSync14 } from "fs";
+import { existsSync as existsSync15 } from "fs";
 import { join as join18 } from "path";
 import { readFile as readFile21 } from "fs/promises";
 async function detectVariantSbt(projectDir) {
@@ -209257,7 +209258,7 @@ async function detectVariantSbt(projectDir) {
 }
 async function detect2(projectDir) {
   const sbtBuildPropertiesPath = join18(projectDir, "project", "build.properties");
-  const sbtBuildProperties = existsSync14(sbtBuildPropertiesPath) ? (await readFile21(sbtBuildPropertiesPath, "utf-8")).split("\n").map((line) => line.trim()).filter((line) => !line.startsWith("#")).filter((line) => line) : void 0;
+  const sbtBuildProperties = existsSync15(sbtBuildPropertiesPath) ? (await readFile21(sbtBuildPropertiesPath, "utf-8")).split("\n").map((line) => line.trim()).filter((line) => !line.startsWith("#")).filter((line) => line) : void 0;
   if (!sbtBuildProperties) return void 0;
   for (const prop2 of sbtBuildProperties) {
     const [key, value] = prop2.split("=");
@@ -209378,7 +209379,7 @@ import { join as join21, posix as posix2, relative as relative13, sep as sep3 }
 // ../utils/src/file-utils.ts
 var import_lodash8 = __toESM(require_lodash(), 1);
 var import_micromatch2 = __toESM(require_micromatch(), 1);
-import { existsSync as existsSync15 } from "fs";
+import { existsSync as existsSync16 } from "fs";
 import { access as access3, cp as cp2, readdir as readdir4, stat as stat3 } from "fs/promises";
 import { basename as basename7, join as join19, relative as relative12, resolve as resolve22 } from "path";
 var { uniq: uniq2 } = import_lodash8.default;
@@ -210520,7 +210521,7 @@ async function verifyFixes(fixes, otherModulesCommunicator, rootPath) {
   if (pathsForEachFixIdData.length !== new Set(pathsForEachFixIdData).size) {
     throw new Error("Multiple fix IDs found for the same subproject, workspace and ecosystem");
   }
-  const subprojectsNotFound = uniq3(fixes.filter(({ vulnerabilityInstance: v }) => !existsSync16(resolve24(rootPath, v.subprojectPath))).map(({ vulnerabilityInstance: v }) => `${v.subprojectPath}:${v.ecosystem}`));
+  const subprojectsNotFound = uniq3(fixes.filter(({ vulnerabilityInstance: v }) => !existsSync17(resolve24(rootPath, v.subprojectPath))).map(({ vulnerabilityInstance: v }) => `${v.subprojectPath}:${v.ecosystem}`));
   if (subprojectsNotFound.length > 0) {
     throw new Error(`Cannot find the following subprojects: ${subprojectsNotFound.join(", ")}`);
   }
@@ -211326,12 +211327,12 @@ import { readdir as readdir6 } from "fs/promises";
 import { join as join24, relative as relative14, resolve as resolve27 } from "path";
 
 // ../project-management/src/project-management/ecosystem-management/ecosystem-specs.ts
-import { existsSync as existsSync18 } from "fs";
+import { existsSync as existsSync19 } from "fs";
 import { readdir as readdir5, readFile as readFile25 } from "fs/promises";
 import { join as join23, sep as sep4 } from "path";
 
 // ../utils/src/pip-utils.ts
-import { existsSync as existsSync17 } from "fs";
+import { existsSync as existsSync18 } from "fs";
 import { readFile as readFile24 } from "fs/promises";
 import { resolve as resolve26 } from "path";
 import util4 from "util";
@@ -211429,7 +211430,7 @@ function getEcosystemSpecs(ecosystems) {
 }
 function packageManagerIfPackageJSONExistsAndValid(packageManager) {
   return async (projectDir) => {
-    if (!existsSync18(join23(projectDir, "package.json"))) return void 0;
+    if (!existsSync19(join23(projectDir, "package.json"))) return void 0;
     const packageJSONPath = join23(projectDir, "package.json");
     try {
       JSON.parse(await readFile25(packageJSONPath, "utf-8"));
@@ -212117,16 +212118,16 @@ function isVulnChainWithParentsMap(v) {
 var DEFAULT_REPORT_FILENAME_BASE = "coana-report";
 
 // dist/internal/exclude-dirs-from-configuration-files.js
-import { existsSync as existsSync19 } from "fs";
+import { existsSync as existsSync20 } from "fs";
 import { readFile as readFile26 } from "fs/promises";
 import { basename as basename8, resolve as resolve29 } from "path";
 var import_yaml2 = __toESM(require_dist11(), 1);
 async function inferExcludeDirsFromConfigurationFiles(rootWorkingDir) {
   const socketYmlConfigFile = resolve29(rootWorkingDir, "socket.yml");
-  if (existsSync19(socketYmlConfigFile))
+  if (existsSync20(socketYmlConfigFile))
     return inferExcludeDirsFromSocketConfig(socketYmlConfigFile);
   const socketYamlConfigFile = resolve29(rootWorkingDir, "socket.yaml");
-  if (existsSync19(socketYamlConfigFile))
+  if (existsSync20(socketYamlConfigFile))
     return inferExcludeDirsFromSocketConfig(socketYamlConfigFile);
   return void 0;
 }
@@ -226222,7 +226223,7 @@ var { root: root2 } = static_exports;
 
 // ../utils/src/maven-utils.ts
 var import_lodash14 = __toESM(require_lodash(), 1);
-import { existsSync as existsSync20, readdirSync as readdirSync4, statSync as statSync3 } from "fs";
+import { existsSync as existsSync21, readdirSync as readdirSync4, statSync as statSync3 } from "fs";
 import { join as join26 } from "path";
 var { memoize: memoize3 } = import_lodash14.default;
 var memoizedParseShellArgs = memoize3(parseShellArgs);
@@ -227594,7 +227595,7 @@ async function onlineScan(dependencyTree, apiKey, timeout) {
 }
 
 // dist/version.js
-var version2 = "14.12.27";
+var version2 = "14.12.28";
 
 // dist/cli-core.js
 var { mapValues, omit, partition, pick } = import_lodash15.default;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@coana-tech/cli",
-  "version": "14.12.27",
+  "version": "14.12.28",
   "description": "Coana CLI",
   "type": "module",
   "bin": {