npm - @pellux/goodvibes-sdk - Versions diffs - 0.25.0 → 0.25.1 - Mend

@pellux/goodvibes-sdk 0.25.0 → 0.25.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (96) hide show

package/vendor/bash-language-server/out/util/tree-sitter.js ADDED Viewed

@@ -0,0 +1,110 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.forEach = forEach;
+exports.range = range;
+exports.isDefinition = isDefinition;
+exports.isReference = isReference;
+exports.isVariableInReadCommand = isVariableInReadCommand;
+exports.isExpansion = isExpansion;
+exports.findParent = findParent;
+exports.findParentOfType = findParentOfType;
+exports.resolveStaticString = resolveStaticString;
+const LSP = require("vscode-languageserver/node");
+/**
+ * Recursively iterate over all nodes in a tree.
+ *
+ * @param node The node to start iterating from
+ * @param callback The callback to call for each node. Return false to stop following children.
+ */
+function forEach(node, callback) {
+    const followChildren = callback(node) !== false;
+    if (followChildren && node.children.length) {
+        node.children.forEach((n) => forEach(n, callback));
+    }
+}
+function range(n) {
+    return LSP.Range.create(n.startPosition.row, n.startPosition.column, n.endPosition.row, n.endPosition.column);
+}
+function isDefinition(n) {
+    switch (n.type) {
+        case 'variable_assignment':
+        case 'function_definition':
+            return true;
+        default:
+            return false;
+    }
+}
+function isReference(n) {
+    switch (n.type) {
+        case 'variable_name':
+        case 'command_name':
+            return true;
+        default:
+            return false;
+    }
+}
+function isVariableInReadCommand(n) {
+    var _a, _b, _c, _d;
+    if (n.type === 'word' &&
+        ((_a = n.parent) === null || _a === void 0 ? void 0 : _a.type) === 'command' &&
+        ((_b = n.parent.firstChild) === null || _b === void 0 ? void 0 : _b.text) === 'read' &&
+        !n.text.startsWith('-') &&
+        !/^-.*[dinNptu]$/.test((_d = (_c = n.previousSibling) === null || _c === void 0 ? void 0 : _c.text) !== null && _d !== void 0 ? _d : '')) {
+        return true;
+    }
+    return false;
+}
+function isExpansion(n) {
+    switch (n.type) {
+        case 'expansion':
+        case 'simple_expansion':
+            return true;
+        default:
+            return false;
+    }
+}
+function findParent(start, predicate) {
+    let node = start.parent;
+    while (node !== null) {
+        if (predicate(node)) {
+            return node;
+        }
+        node = node.parent;
+    }
+    return null;
+}
+function findParentOfType(start, type) {
+    if (typeof type === 'string') {
+        return findParent(start, (n) => n.type === type);
+    }
+    return findParent(start, (n) => type.includes(n.type));
+}
+/**
+ * Resolves the full string value of a node
+ * Returns null if the value can't be statically determined (ie, it contains a variable or command substition).
+ * Supports: word, string, raw_string, and concatenation
+ */
+function resolveStaticString(node) {
+    if (node.type === 'concatenation') {
+        const values = [];
+        for (const child of node.namedChildren) {
+            const value = resolveStaticString(child);
+            if (value === null)
+                return null;
+            values.push(value);
+        }
+        return values.join('');
+    }
+    if (node.type === 'word')
+        return node.text;
+    if (node.type === 'string' || node.type === 'raw_string') {
+        if (node.namedChildCount === 0)
+            return node.text.slice(1, -1);
+        const children = node.namedChildren;
+        if (children.length === 1 && children[0].type === 'string_content')
+            return children[0].text;
+        return null;
+    }
+    return null;
+}
+//# sourceMappingURL=tree-sitter.js.map

package/vendor/bash-language-server/out/util/tree-sitter.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"tree-sitter.js","sourceRoot":"","sources":["../../src/util/tree-sitter.ts"],"names":[],"mappings":";;AASA,0BAKC;AAED,sBAOC;AAED,oCAQC;AAED,kCAQC;AAED,0DAYC;AAED,kCAQC;AAED,gCAYC;AAED,4CAMC;AAOD,kDAmBC;AAnHD,kDAAiD;AAGjD;;;;;GAKG;AACH,SAAgB,OAAO,CAAC,IAAgB,EAAE,QAA2C;IACnF,MAAM,cAAc,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,KAAK,CAAA;IAC/C,IAAI,cAAc,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;QAC3C,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAA;IACpD,CAAC;AACH,CAAC;AAED,SAAgB,KAAK,CAAC,CAAa;IACjC,OAAO,GAAG,CAAC,KAAK,CAAC,MAAM,CACrB,CAAC,CAAC,aAAa,CAAC,GAAG,EACnB,CAAC,CAAC,aAAa,CAAC,MAAM,EACtB,CAAC,CAAC,WAAW,CAAC,GAAG,EACjB,CAAC,CAAC,WAAW,CAAC,MAAM,CACrB,CAAA;AACH,CAAC;AAED,SAAgB,YAAY,CAAC,CAAa;IACxC,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;QACf,KAAK,qBAAqB,CAAC;QAC3B,KAAK,qBAAqB;YACxB,OAAO,IAAI,CAAA;QACb;YACE,OAAO,KAAK,CAAA;IAChB,CAAC;AACH,CAAC;AAED,SAAgB,WAAW,CAAC,CAAa;IACvC,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;QACf,KAAK,eAAe,CAAC;QACrB,KAAK,cAAc;YACjB,OAAO,IAAI,CAAA;QACb;YACE,OAAO,KAAK,CAAA;IAChB,CAAC;AACH,CAAC;AAED,SAAgB,uBAAuB,CAAC,CAAa;;IACnD,IACE,CAAC,CAAC,IAAI,KAAK,MAAM;QACjB,CAAA,MAAA,CAAC,CAAC,MAAM,0CAAE,IAAI,MAAK,SAAS;QAC5B,CAAA,MAAA,CAAC,CAAC,MAAM,CAAC,UAAU,0CAAE,IAAI,MAAK,MAAM;QACpC,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;QACvB,CAAC,gBAAgB,CAAC,IAAI,CAAC,MAAA,MAAA,CAAC,CAAC,eAAe,0CAAE,IAAI,mCAAI,EAAE,CAAC,EACrD,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,OAAO,KAAK,CAAA;AACd,CAAC;AAED,SAAgB,WAAW,CAAC,CAAa;IACvC,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;QACf,KAAK,WAAW,CAAC;QACjB,KAAK,kBAAkB;YACrB,OAAO,IAAI,CAAA;QACb;YACE,OAAO,KAAK,CAAA;IAChB,CAAC;AACH,CAAC;AAED,SAAgB,UAAU,CACxB,KAAiB,EACjB,SAAqC;IAErC,IAAI,IAAI,GAAG,KAAK,CAAC,MAAM,CAAA;IACvB,OAAO,IAAI,KAAK,IAAI,EAAE,CAAC;QACrB,IAAI,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC;YACpB,OAAO,IAAI,CAAA;QACb,CAAC;QACD,IAAI,GAAG,IAAI,CAAC,MAAM,CAAA;IACpB,CAAC;IACD,OAAO,IAAI,CAAA;AACb,CAAC;AAED,SAAgB,gBAAgB,CAAC,KAAiB,EAAE,IAAuB;IACzE,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,OAAO,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAA;IAClD,CAAC;IAED,OAAO,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAA;AACxD,CAAC;AAED;;;;GAIG;AACH,SAAgB,mBAAmB,CAAC,IAAgB;IAClD,IAAI,IAAI,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;QAClC,MAAM,MAAM,GAAG,EAAE,CAAA;QACjB,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACvC,MAAM,KAAK,GAAG,mBAAmB,CAAC,KAAK,CAAC,CAAA;YACxC,IAAI,KAAK,KAAK,IAAI;gBAAE,OAAO,IAAI,CAAA;YAC/B,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACpB,CAAC;QACD,OAAO,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IACxB,CAAC;IACD,IAAI,IAAI,CAAC,IAAI,KAAK,MAAM;QAAE,OAAO,IAAI,CAAC,IAAI,CAAA;IAC1C,IAAI,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;QACzD,IAAI,IAAI,CAAC,eAAe,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;QAC7D,MAAM,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAA;QACnC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,IAAI,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,gBAAgB;YAChE,OAAO,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,CAAA;QACzB,OAAO,IAAI,CAAA;IACb,CAAC;IACD,OAAO,IAAI,CAAA;AACb,CAAC"}

package/vendor/bash-language-server/package.json ADDED Viewed

@@ -0,0 +1,52 @@
+{
+  "name": "bash-language-server",
+  "description": "A language server for Bash",
+  "author": "Mads Hartmann",
+  "license": "MIT",
+  "version": "5.6.0",
+  "main": "./out/server.js",
+  "typings": "./out/server.d.ts",
+  "bin": {
+    "bash-language-server": "./out/cli.js"
+  },
+  "files": [
+    "out",
+    "tree-sitter-bash.wasm",
+    "parser.info",
+    "README.md",
+    "CHANGELOG.md",
+    "GOODVIBES_PATCH.md"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bash-lsp/bash-language-server"
+  },
+  "engines": {
+    "node": ">=16"
+  },
+  "dependencies": {
+    "editorconfig": "3.0.2",
+    "fast-glob": "3.3.3",
+    "fuzzy-search": "3.2.1",
+    "node-fetch": "2.7.0",
+    "turndown": "7.2.0",
+    "vscode-languageserver": "8.0.2",
+    "vscode-languageserver-textdocument": "1.0.12",
+    "web-tree-sitter": "0.24.5",
+    "zod": "3.24.2"
+  },
+  "scripts": {
+    "prepublishOnly": "cd ../ && pnpm compile && cp README.md server/"
+  },
+  "goodvibesPatch": {
+    "source": "bash-language-server@5.6.0",
+    "sourceIntegrity": "sha512-DCuV+/BZAAozsp5blvi6jDnU/ZDaTpJpWM0zqwGjnirfqv7iBsMK32xOze/jipxU0PUZ6CBUKgRUMKI7Kk70Lg==",
+    "reason": "Keep bundled Bash LSP while replacing editorconfig@2.0.1 -> minimatch@10.0.1 with editorconfig@3.0.2 -> minimatch@~10.2.4."
+  },
+  "devDependencies": {
+    "@types/fuzzy-search": "2.1.5",
+    "@types/node-fetch": "2.6.12",
+    "@types/turndown": "5.0.5",
+    "@types/urijs": "1.19.25"
+  }
+}

package/vendor/bash-language-server/parser.info ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "https://api.github.com/repos/tree-sitter/tree-sitter-bash/git/commits/c8713e50f0bd77d080832fc61ad128bc8f2934e9"
2	+ tree-sitter-cli "0.23.0"

package/vendor/bash-language-server/tree-sitter-bash.wasm ADDED Viewed

Binary file

package/scripts/postinstall-patch-minimatch.mjs DELETED Viewed

@@ -1,285 +0,0 @@
-#!/usr/bin/env node
-/**
- * postinstall-patch-minimatch.mjs
- *
- * Upgrades vulnerable minimatch transitive installs in consumer node_modules.
- *
- * Context: bash-language-server@5.6.0 hard-pins editorconfig@2.0.1, which
- * hard-pins minimatch@10.0.1. npm/bun ignore overrides fields in published
- * packages, so the root overrides in this SDK cannot fix consumer trees.
- * This postinstall patcher reaches into the consumer's node_modules and
- * upgrades any minimatch in the vulnerable range >=10.0.0 <10.2.3 in place.
- *
- * Advisory IDs addressed:
- *   GHSA-3ppc-4f35-3m26, GHSA-7r86-cg39-jmmj, GHSA-23c5-xmqv-rm74
- *
- * Node stdlib only. No third-party dependencies. Requires Node 18+.
- */
-import { createGunzip } from 'node:zlib';
-import {
-  existsSync,
-  mkdirSync,
-  readdirSync,
-  readFileSync,
-  writeFileSync,
-} from 'node:fs';
-import { dirname, join, relative } from 'node:path';
-const PATCH_VERSION = '10.2.5';
-const REGISTRY_URL = `https://registry.npmjs.org/minimatch/-/minimatch-${PATCH_VERSION}.tgz`;
-/**
- * Parse semver string into major/minor/patch integers.
- * @param {string} v
- * @returns {{ major: number, minor: number, patch: number } | null}
- */
-function parseVersion(v) {
-  const m = /^(\d+)\.(\d+)\.(\d+)/.exec(v);
-  if (!m) return null;
-  return {
-    major: parseInt(m[1], 10),
-    minor: parseInt(m[2], 10),
-    patch: parseInt(m[3], 10),
-  };
-}
-/**
- * Returns true if version is in the vulnerable range: >=10.0.0 <10.2.3
- * @param {string} v
- * @returns {boolean}
- */
-function isVulnerable(v) {
-  const p = parseVersion(v);
-  if (!p) return false;
-  if (p.major !== 10) return false;
-  if (p.minor < 2) return true;
-  if (p.minor === 2 && p.patch < 3) return true;
-  return false;
-}
-/**
- * Minimal synchronous tar extractor. Handles ustar-compatible archives.
- * Supports regular files and directories. Strips the leading "package/"
- * prefix that npm tarballs use.
- *
- * @param {Buffer} tarball - raw (already gunzip-decoded) tar data
- * @param {string} destDir - destination directory (the minimatch package root)
- */
-function extractTar(tarball, destDir) {
-  const BLOCK = 512;
-  let offset = 0;
-  while (offset + BLOCK <= tarball.length) {
-    const header = tarball.subarray(offset, offset + BLOCK);
-    offset += BLOCK;
-    // End-of-archive: two consecutive zero blocks.
-    if (header.every((b) => b === 0)) break;
-    const nameRaw = header.subarray(0, 100).toString('utf8').replace(/\0.*$/, '');
-    if (!nameRaw) break;
-    const prefixRaw = header.subarray(345, 500).toString('utf8').replace(/\0.*$/, '');
-    const fullName = prefixRaw ? `${prefixRaw}/${nameRaw}` : nameRaw;
-    const sizeOctal = header.subarray(124, 136).toString('utf8').replace(/\0.*$/, '').trim();
-    const size = parseInt(sizeOctal, 8) || 0;
-    const typeFlag = String.fromCharCode(header[156]);
-    const isDir = typeFlag === '5';
-    const isFile = typeFlag === '0' || typeFlag === '\0';
-    const blocks = Math.ceil(size / BLOCK);
-    const fileData = isFile ? tarball.subarray(offset, offset + size) : null;
-    offset += blocks * BLOCK;
-    // Strip leading "package/" prefix (npm tarballs use "package/" as root).
-    let relPath = fullName;
-    if (relPath.startsWith('package/')) {
-      relPath = relPath.slice('package/'.length);
-    } else if (relPath === 'package') {
-      continue;
-    }
-    // Safety: reject absolute paths and path traversal.
-    if (!relPath || relPath.startsWith('/') || relPath.includes('..')) continue;
-    const destPath = join(destDir, relPath);
-    if (isDir || relPath.endsWith('/')) {
-      mkdirSync(destPath, { recursive: true });
-    } else if (isFile && fileData !== null) {
-      mkdirSync(dirname(destPath), { recursive: true });
-      writeFileSync(destPath, fileData);
-    }
-  }
-}
-/**
- * Download and gunzip the minimatch tgz from npm registry.
- * Returns the raw tar buffer (decompressed).
- * @returns {Promise<Buffer>}
- */
-async function fetchTarball() {
-  const resp = await fetch(REGISTRY_URL);
-  if (!resp.ok) {
-    throw new Error(`fetch ${REGISTRY_URL} → ${resp.status} ${resp.statusText}`);
-  }
-  const compressed = Buffer.from(await resp.arrayBuffer());
-  return new Promise((resolve, reject) => {
-    const gunzip = createGunzip();
-    /** @type {Buffer[]} */
-    const chunks = [];
-    gunzip.on('data', (chunk) => chunks.push(/** @type {Buffer} */ (chunk)));
-    gunzip.on('end', () => resolve(Buffer.concat(chunks)));
-    gunzip.on('error', reject);
-    gunzip.end(compressed);
-  });
-}
-/**
- * Walk node_modules and return paths to every minimatch/package.json found.
- * Covers three layouts:
- *   - flat:   node_modules/minimatch/package.json
- *   - nested: node_modules/foo/node_modules/minimatch/package.json
- *   - pnpm:   node_modules/.pnpm/minimatch@X/node_modules/minimatch/package.json
- *
- * @param {string} nodeModules - absolute path to the node_modules root
- * @returns {string[]}
- */
-function findMinimatchPaths(nodeModules) {
-  /** @type {string[]} */
-  const results = [];
-  /** @param {string} dir */
-  function scan(dir) {
-    /** @type {string[]} */
-    let entries;
-    try {
-      entries = readdirSync(dir);
-    } catch {
-      return;
-    }
-    for (const entry of entries) {
-      // Skip hidden dirs except .pnpm (pnpm virtual store).
-      if (entry.startsWith('.') && entry !== '.pnpm') continue;
-      const full = join(dir, entry);
-      if (entry === 'minimatch') {
-        const pkgJson = join(full, 'package.json');
-        if (existsSync(pkgJson)) results.push(pkgJson);
-        // Don't recurse into minimatch's own directory.
-        continue;
-      }
-      if (entry === '.pnpm') {
-        // pnpm isolated installs: .pnpm/<name@version>/node_modules/<name>
-        /** @type {string[]} */
-        let pnpmEntries;
-        try {
-          pnpmEntries = readdirSync(full);
-        } catch {
-          continue;
-        }
-        for (const pnpmEntry of pnpmEntries) {
-          // Check for minimatch directly in this pnpm store entry.
-          const pnpmMinimatch = join(full, pnpmEntry, 'node_modules', 'minimatch');
-          const pkgJson = join(pnpmMinimatch, 'package.json');
-          if (existsSync(pkgJson)) results.push(pkgJson);
-          // Also scan nested node_modules inside pnpm store entries.
-          const nested = join(full, pnpmEntry, 'node_modules');
-          if (existsSync(nested)) scan(nested);
-        }
-        continue;
-      }
-      // Scoped namespace (@scope) — recurse one level.
-      if (entry.startsWith('@')) {
-        scan(full);
-        continue;
-      }
-      // Regular package — check for nested node_modules.
-      const nested = join(full, 'node_modules');
-      if (existsSync(nested)) scan(nested);
-    }
-  }
-  scan(nodeModules);
-  return results;
-}
-async function main() {
-  // npm sets INIT_CWD to the consumer project root during postinstall.
-  // Fallback to process.cwd() which is the package root during npm install.
-  const consumerRoot = process.env.INIT_CWD ?? process.cwd();
-  const nodeModules = join(consumerRoot, 'node_modules');
-  if (!existsSync(nodeModules)) {
-    console.log('[pellux-patch] node_modules not found, skipping minimatch patch');
-    process.exit(0);
-  }
-  /** @type {string[]} */
-  let pkgJsonPaths;
-  try {
-    pkgJsonPaths = findMinimatchPaths(nodeModules);
-  } catch (err) {
-    console.warn(
-      `[pellux-patch] warning: failed to scan node_modules: ${/** @type {Error} */ (err)?.message ?? err}`,
-    );
-    process.exit(0);
-  }
-  /** @type {Array<{ pkgJsonPath: string, version: string, dir: string }>} */
-  const vulnerable = [];
-  for (const pkgJsonPath of pkgJsonPaths) {
-    try {
-      const pkg = JSON.parse(readFileSync(pkgJsonPath, 'utf8'));
-      const ver = /** @type {string} */ (pkg.version ?? '');
-      if (isVulnerable(ver)) {
-        vulnerable.push({ pkgJsonPath, version: ver, dir: dirname(pkgJsonPath) });
-      }
-    } catch {
-      // Unreadable package.json — skip silently.
-    }
-  }
-  if (vulnerable.length === 0) {
-    console.log('[pellux-patch] no vulnerable minimatch detected');
-    process.exit(0);
-  }
-  /** @type {Buffer | null} */
-  let tarball = null;
-  for (const { pkgJsonPath, version, dir } of vulnerable) {
-    const rel = relative(consumerRoot, pkgJsonPath);
-    try {
-      if (tarball === null) {
-        tarball = await fetchTarball();
-      }
-      extractTar(tarball, dir);
-      console.log(`[pellux-patch] upgraded minimatch at ${rel}: ${version} → ${PATCH_VERSION}`);
-    } catch (err) {
-      // Never fail the consumer's install — log and continue.
-      console.warn(
-        `[pellux-patch] warning: failed to patch ${rel}: ${/** @type {Error} */ (err)?.message ?? err}`,
-      );
-    }
-  }
-}
-main().catch((err) => {
-  // Belt-and-suspenders: catch any top-level unhandled rejection and warn,
-  // never propagate — postinstall must never break a consumer install.
-  console.warn(
-    `[pellux-patch] warning: postinstall patcher encountered an error: ${/** @type {Error} */ (err)?.message ?? err}`,
-  );
-  process.exit(0);
-});