npm - @coana-tech/cli - Versions diffs - 14.12.51 → 14.12.52 - Mend

@coana-tech/cli 14.12.51 → 14.12.52

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/cli.mjs CHANGED Viewed

@@ -197422,7 +197422,11 @@ var ecosystemMap = {
     versionSatisfiesRelation: versionSatisfiesRelationWithComparisonFunction(nugetCompareVersions),
     versionSatisfiesRange: versionSatisfiesWithVersionComparisonFunction(nugetCompareVersions)
   },
-  RUBYGEMS: buildUnsupportedEcosystem("RUBYGEMS"),
+  RUBYGEMS: {
+    ...buildUnsupportedEcosystem("RUBYGEMS"),
+    // XXX: Currently only used for checking vulnerability access paths in `check-match-on-versions.ts`!
+    versionSatisfiesRange: semverSatisfiesRange
+  },
   COMPOSER: buildUnsupportedEcosystem("COMPOSER"),
   SWIFT: buildUnsupportedEcosystem("SWIFT"),
   ERLANG: buildUnsupportedEcosystem("ERLANG"),
@@ -213583,13 +213587,13 @@ async function getCargoTomlFilesForCargoLockFile(rootDir, cargoLockFile, cargoTo
   if (!toml) return void 0;
   const memberPatterns = [];
   const excludePatterns = [];
-  const members = getNestedValue(toml, "tool.uv.workspace.members");
+  const members = getNestedValue(toml, "workspace.members");
   for (const member of members instanceof TOMLArray ? members : []) {
     if (member instanceof TOMLScalar && typeof member[value] === "string") {
       memberPatterns.push(member[value]);
     }
   }
-  const excludes = getNestedValue(toml, "tool.uv.workspace.exclude");
+  const excludes = getNestedValue(toml, "workspace.exclude");
   for (const exclude of excludes instanceof TOMLArray ? excludes : []) {
     if (exclude instanceof TOMLScalar && typeof exclude[value] === "string") {
       excludePatterns.push(exclude[value]);
@@ -218165,6 +218169,9 @@ function inferWorkspaceFromManifestPath(ecosystem, manifestPath, properPythonPro
       const dir = dirname15(manifestPath);
       return base === "go.mod" ? dir || "." : void 0;
     }
+    case "RUBYGEMS": {
+      return dirname15(manifestPath) || ".";
+    }
     default: {
       return ".";
     }
@@ -218536,10 +218543,10 @@ ${upgrades.map(({ purl, upgradeVersion }) => `	${prettyPrintPurlUpgrade(purl, up
     const subprojectPromiseQueue = new PromiseQueue(Number(options.concurrency));
     supportedSubprojects.forEach((subproject) => {
       subprojectPromiseQueue.enqueueTask(async () => {
-        const workspacePathsMatchingGlob = subproject.workspacePaths.filter((wsPath) => minimatch(join25(subproject.subprojectPath, wsPath), options.globPattern ?? "**"));
+        const workspacePathsMatchingGlob = subproject.workspacePaths.filter((wsPath) => minimatch(join25(subproject.subprojectPath, wsPath), options.glob ?? "**"));
         if (workspacePathsMatchingGlob.length === 0)
           return;
-        logger.info(`Found workspaces for subproject ${subproject.subprojectPath}${options.globPattern ? `matching glob ${options.globPattern}` : ""}:
+        logger.info(`Found workspaces for subproject ${subproject.subprojectPath}${options.glob ? `matching glob ${options.glob}` : ""}:
 ${workspacePathsMatchingGlob.map((wsPath) => `	${wsPath}`).join("\n")}`);
         const fixingData = await otherModulesCommunicator.getFixingData(subproject.packageManagerName, subproject.subprojectPath, workspacePathsMatchingGlob);
         const workspaceToFixes = {};
@@ -218659,7 +218666,7 @@ async function computeFixesAndUpgradePurls(path2, options, logFile) {
       runWithoutDocker: options.runWithoutDocker,
       manifestsTarHash: options.manifestsTarHash,
       concurrency: "1",
-      globPattern: options.globPattern,
+      glob: options.glob,
       rangeStyle: options.rangeStyle
     }, void 0, autofixRunId, socketFactArtifacts) ?? "fixed-all";
     if (autofixRunId) {
@@ -219395,7 +219402,7 @@ function toSocketReachabilitySchema(vulnerability) {
   }
   if (codeAwareScanResult.type === "otherError") {
     if (codeAwareScanResult.message.includes("Reachability analysis for languages using"))
-      return { type: "unknown" };
+      return { type: "unknown", reason: codeAwareScanResult.message };
     return { type: "error", error: codeAwareScanResult.message };
   }
   if (codeAwareScanResult.type === "success") {
@@ -234352,7 +234359,7 @@ async function onlineScan(dependencyTree, apiKey, timeout) {
 }
 // dist/version.js
-var version2 = "14.12.51";
+var version2 = "14.12.52";
 // dist/cli-core.js
 var { mapValues, omit, partition, pick } = import_lodash15.default;
@@ -234546,7 +234553,15 @@ var CliCore = class {
         otherModulesCommunicator,
         this.rootWorkingDirectory,
         ecosystem,
-        ["NPM", "PIP", "GO", "MAVEN", "NUGET", "RUST"].includes(ecosystem) && isEcosystemToAnalyze,
+        [
+          "NPM",
+          "PIP",
+          "GO",
+          "MAVEN",
+          "NUGET",
+          "RUST"
+          /*, 'RUBYGEMS' */
+        ].includes(ecosystem) && isEcosystemToAnalyze,
         (workspaceName, workspaceNumber, totalWorkspacesForCurrentEcosystem) => {
           currentOverallWorkspace++;
           logger.info(bold(`Analyzing ecosystem ${ecosystem} for project ${workspaceName} (${workspaceNumber}/${totalWorkspacesForCurrentEcosystem}) - Overall progress: Project ${currentOverallWorkspace}/${totalWorkspaces}, ecosystem ${ecosystemIndex + 1}/${totalEcosystems}`));
@@ -235125,7 +235140,7 @@ async function initializeComputeFixesAndUpgradePurls(path2, options) {
     "silent",
     "applyFixesTo",
     "dryRun",
-    "globPattern",
+    "glob",
     "manifestsTarHash",
     "rangeStyle",
     "disableMajorUpdates",

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@coana-tech/cli",
-  "version": "14.12.51",
+  "version": "14.12.52",
   "description": "Coana CLI",
   "type": "module",
   "bin": {