npm - @coana-tech/cli - Versions diffs - 14.9.2 → 14.9.5 - Mend

@coana-tech/cli 14.9.2 → 14.9.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/cli.mjs +55 -47
package/package.json +1 -1

package/cli.mjs CHANGED Viewed

@@ -197213,6 +197213,45 @@ function groupVulnsByUrlAndReachability(vulnerabilityInstances, mapper) {
   return groupedInstances;
 }
+// ../web-compat-utils/src/dependency-tree.ts
+function getEcosystem({ ecosystem }) {
+  return ecosystem ?? "NPM";
+}
+var ADVISORY_ECOSYSTEMS = [
+  "COMPOSER",
+  "ERLANG",
+  "ACTIONS",
+  "GO",
+  "MAVEN",
+  "NPM",
+  "NUGET",
+  "PIP",
+  "PUB",
+  "RUBYGEMS",
+  "RUST",
+  "SWIFT"
+];
+var ADVISORY_SEVERITIES = [
+  "INFO",
+  "LOW",
+  "MODERATE",
+  "HIGH",
+  "CRITICAL"
+];
+var ADVISORY_SEVERITIES_SORTED = ADVISORY_SEVERITIES.toReversed();
+function toPlainDependencyTree(dependencyTree) {
+  function pickNode(node) {
+    return i3(node, ["packageName", "version", "dependencies", "resolvedType"]);
+  }
+  return {
+    ...pickNode(dependencyTree),
+    transitiveDependencies: Object.fromEntries(
+      Object.entries(dependencyTree.transitiveDependencies).map(([key, value]) => [key, pickNode(value)])
+    ),
+    ecosystem: dependencyTree.ecosystem
+  };
+}
 // ../web-compat-utils/src/vulnerability-diff-utils.ts
 function vulnerabilitiesDiff(oldVulnerabilities, newVulnerabilities, dismissedVulnerabilities = []) {
   const changedVulnerabilityWithReason = [];
@@ -198287,37 +198326,6 @@ function isShortestPath(root3, vulnPath) {
 // ../web-compat-utils/src/analysis-error-keys.ts
 var CLI_ANALYSIS_ERROR_MESSAGE = "Sharing log due to analysis error";
-// ../web-compat-utils/src/dependency-tree.ts
-function getEcosystem({ ecosystem }) {
-  return ecosystem ?? "NPM";
-}
-var ADVISORY_ECOSYSTEMS = [
-  "COMPOSER",
-  "ERLANG",
-  "ACTIONS",
-  "GO",
-  "MAVEN",
-  "NPM",
-  "NUGET",
-  "PIP",
-  "PUB",
-  "RUBYGEMS",
-  "RUST",
-  "SWIFT"
-];
-function toPlainDependencyTree(dependencyTree) {
-  function pickNode(node) {
-    return i3(node, ["packageName", "version", "dependencies", "resolvedType"]);
-  }
-  return {
-    ...pickNode(dependencyTree),
-    transitiveDependencies: Object.fromEntries(
-      Object.entries(dependencyTree.transitiveDependencies).map(([key, value]) => [key, pickNode(value)])
-    ),
-    ecosystem: dependencyTree.ecosystem
-  };
-}
 // ../web-compat-utils/src/vuln-chain-detail-utils.ts
 var ROOT_NODE_STR = "";
 function augmentWithParentsMap(d3) {
@@ -211976,13 +211984,13 @@ import { join as join16 } from "path";
 var { memoize: memoize3 } = import_lodash14.default;
 var memoizedParseShellArgs = memoize3(parseShellArgs);
 var MAVEN_PUBLIC_REPOSITORIES = [
-  "https://repo1.maven.org/maven2",
-  "https://packages.atlassian.com/artifactory/maven-atlassian-external",
-  "https://maven.wso2.org/nexus/content/repositories/releases",
-  "https://repository.jboss.org/nexus/content/repositories/ea",
-  "https://maven.pkg.jetbrains.space/public/p/ktor/eap",
-  "https://maven.wso2.org/nexus/content/repositories/public",
-  "https://nexus.bedatadriven.com/content/groups/public"
+  "https://repo1.maven.org/maven2/",
+  "https://packages.atlassian.com/artifactory/maven-atlassian-external/",
+  "https://maven.wso2.org/nexus/content/repositories/releases/",
+  "https://repository.jboss.org/nexus/content/repositories/ea/",
+  "https://maven.pkg.jetbrains.space/public/p/ktor/eap/",
+  "https://maven.wso2.org/nexus/content/repositories/public/",
+  "https://nexus.bedatadriven.com/content/groups/public/"
 ];
 async function findRepositoriesForMavenPackageAndVersion(groupId, artifactId, version3) {
   try {
@@ -212008,17 +212016,17 @@ async function findRepositoriesForMavenPackageAndVersion(groupId, artifactId, ve
   );
   return availableRepos.length ? availableRepos : void 0;
 }
+function getUrlForProject(repository, groupId, artifactId) {
+  return new URL(`${groupId.replaceAll(".", "/")}/${artifactId}/`, repository).href;
+}
 function getUrlForPackage(repository, groupId, artifactId, version3) {
-  return `${repository.endsWith("/") ? repository.slice(0, -1) : repository}/${groupId.replaceAll(
-    ".",
-    "/"
-  )}/${artifactId}/${version3}/`;
+  return new URL(`${version3}/`, getUrlForProject(repository, groupId, artifactId)).href;
 }
 function getUrlForArtifact(repository, groupId, artifactId, type, classifier, version3) {
-  return `${repository.endsWith("/") ? repository.slice(0, -1) : repository}/${groupId.replaceAll(
-    ".",
-    "/"
-  )}/${artifactId}/${version3}/${artifactId}-${version3}${classifier ? `-${classifier}` : ""}.${type ?? "jar"}`;
+  return new URL(
+    `${artifactId}-${version3}${classifier ? `-${classifier}` : ""}.${type ?? "jar"}`,
+    getUrlForPackage(repository, groupId, artifactId, version3)
+  ).href;
 }
 // ../security-auditor/security-auditor-api/src/vulnerability-patterns-helper/get-interesting-urls-for-vulnerability.ts
@@ -213327,7 +213335,7 @@ async function onlineScan(dependencyTree, apiKey, timeout) {
 }
 // dist/version.js
-var version2 = "14.9.2";
+var version2 = "14.9.5";
 // dist/cli-core.js
 var { omit, partition, pick } = import_lodash15.default;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@coana-tech/cli",
-  "version": "14.9.2",
+  "version": "14.9.5",
   "description": "Coana CLI",
   "type": "module",
   "bin": {