@salesforce/cli 2.111.4 → 2.111.6

package/README.md

@@ -25,7 +25,7 @@ $ npm install -g @salesforce/cli
 $ sf COMMAND
 running command...
 $ sf (--version|-v)
-@salesforce/cli/2.111.4 linux-x64 node-v22.20.0
+@salesforce/cli/2.111.6 linux-x64 node-v24.11.0
 $ sf --help [COMMAND]
 USAGE
   $ sf COMMAND
@@ -4736,7 +4736,7 @@ EXAMPLES
     $ sf org list auth
 ```
 
-_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.16/src/commands/org/list/auth.ts)_
+_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.17/src/commands/org/list/auth.ts)_
 
 ## `sf org list limits`
 
@@ -5036,7 +5036,7 @@ FLAG DESCRIPTIONS
     To specify a sandbox, set --instance-url to "https://<MyDomainName>--<SandboxName>.sandbox.my.salesforce.com".
 ```
 
-_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.16/src/commands/org/login/access-token.ts)_
+_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.17/src/commands/org/login/access-token.ts)_
 
 ## `sf org login jwt`
 
@@ -5127,7 +5127,7 @@ FLAG DESCRIPTIONS
     To specify a sandbox, set --instance-url to "https://<MyDomainName>--<SandboxName>.sandbox.my.salesforce.com".
 ```
 
-_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.16/src/commands/org/login/jwt.ts)_
+_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.17/src/commands/org/login/jwt.ts)_
 
 ## `sf org login sfdx-url`
 
@@ -5197,7 +5197,7 @@ EXAMPLES
   $ echo url | sf org login sfdx-url --sfdx-url-stdin
 ```
 
-_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.16/src/commands/org/login/sfdx-url.ts)_
+_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.17/src/commands/org/login/sfdx-url.ts)_
 
 ## `sf org login web`
 
@@ -5302,7 +5302,7 @@ FLAG DESCRIPTIONS
     To specify a sandbox, set --instance-url to "https://<MyDomainName>--<SandboxName>.sandbox.my.salesforce.com".
 ```
 
-_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.16/src/commands/org/login/web.ts)_
+_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.17/src/commands/org/login/web.ts)_
 
 ## `sf org logout`
 
@@ -5368,7 +5368,7 @@ FLAG DESCRIPTIONS
     All orgs includes Dev Hubs, sandboxes, DE orgs, and expired, deleted, and unknown-status scratch orgs.
 ```
 
-_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.16/src/commands/org/logout.ts)_
+_See code: [@salesforce/plugin-auth](https://github.com/salesforcecli/plugin-auth/blob/3.9.17/src/commands/org/logout.ts)_
 
 ## `sf org open`
 
@@ -5385,7 +5385,7 @@ FLAGS
   -f, --source-file=<value>  Path to ApexPage, FlexiPage, Flow, or Agent metadata to open in the associated Builder.
   -o, --target-org=<value>   (required) Username or alias of the target org. Not required if the `target-org`
                              configuration variable is already set.
-  -p, --path=<value>         Navigation URL path to open a specific page.
+  -p, --path=<value>         [env: FORCE_OPEN_URL] Navigation URL path to open a specific page.
   -r, --url-only             Display navigation URL, but don’t launch browser.
       --api-version=<value>  Override the api version used for api requests made by this command
       --private              Open the org in the default browser using private (incognito) mode.

package/npm-shrinkwrap.json

@@ -1,17 +1,17 @@
 {
   "name": "@salesforce/cli",
-  "version": "2.111.4",
+  "version": "2.111.6",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@salesforce/cli",
-      "version": "2.111.4",
+      "version": "2.111.6",
       "hasInstallScript": true,
       "license": "Apache-2.0",
       "dependencies": {
         "@inquirer/select": "^2.3.5",
-        "@oclif/core": "4.7.2",
+        "@oclif/core": "4.8.0",
         "@oclif/plugin-autocomplete": "3.2.38",
         "@oclif/plugin-commands": "4.1.37",
         "@oclif/plugin-help": "6.2.34",
@@ -27,7 +27,7 @@
         "@salesforce/plugin-agent": "1.24.21",
         "@salesforce/plugin-apex": "3.8.5",
         "@salesforce/plugin-api": "1.3.3",
-        "@salesforce/plugin-auth": "3.9.16",
+        "@salesforce/plugin-auth": "3.9.17",
         "@salesforce/plugin-data": "4.0.59",
         "@salesforce/plugin-deploy-retrieve": "3.23.12",
         "@salesforce/plugin-info": "3.4.95",
@@ -3682,9 +3682,9 @@
       }
     },
     "node_modules/@oclif/core": {
-      "version": "4.7.2",
-      "resolved": "https://registry.npmjs.org/@oclif/core/-/core-4.7.2.tgz",
-      "integrity": "sha512-AmZnhEnyD7bFxmzEKRaOEr0kzonmwIip72eWZPWB5+7D9ayHa/QFX08zhaQT9eOo0//ed64v5p5QZIbYCbQaJQ==",
+      "version": "4.8.0",
+      "resolved": "https://registry.npmjs.org/@oclif/core/-/core-4.8.0.tgz",
+      "integrity": "sha512-jteNUQKgJHLHFbbz806aGZqf+RJJ7t4gwF4MYa8fCwCxQ8/klJNWc0MvaJiBebk7Mc+J39mdlsB4XraaCKznFw==",
       "license": "MIT",
       "dependencies": {
         "ansi-escapes": "^4.3.2",
@@ -4812,9 +4812,9 @@
       }
     },
     "node_modules/@salesforce/core": {
-      "version": "8.23.3",
-      "resolved": "https://registry.npmjs.org/@salesforce/core/-/core-8.23.3.tgz",
-      "integrity": "sha512-BD9cOUOw3wTR8ud6dBacLvA4x0KAfQXkNGdxtU9ujz5nEW86ms5tU1AEUzVXnhuDrrtdQZh7/yTGxqg5mS7rZg==",
+      "version": "8.23.4",
+      "resolved": "https://registry.npmjs.org/@salesforce/core/-/core-8.23.4.tgz",
+      "integrity": "sha512-+JZMFD76P7X8fLSrHJRi9+ygjTehqZqJRXxmNq51miqIHY1Xlb0qH/yr9u5QEGsFIOZ8H8oStl/Zj+ZbrFs0vw==",
       "license": "BSD-3-Clause",
       "dependencies": {
         "@jsforce/jsforce-node": "^3.10.8",
@@ -5121,15 +5121,15 @@
       }
     },
     "node_modules/@salesforce/plugin-auth": {
-      "version": "3.9.16",
-      "resolved": "https://registry.npmjs.org/@salesforce/plugin-auth/-/plugin-auth-3.9.16.tgz",
-      "integrity": "sha512-tTjT25CUbAdZUnqXA+JMu9Rhm2QD4DWQyXtYteI3mB7Pr4j3FCH7/E+vCs3dTHs4nEPoPtsrhjr7AvL09KuIRQ==",
+      "version": "3.9.17",
+      "resolved": "https://registry.npmjs.org/@salesforce/plugin-auth/-/plugin-auth-3.9.17.tgz",
+      "integrity": "sha512-8gJCUUFU4gnSjSFCFePoMxOCeW5Erq3eXkoLr3yzGCWaV2wF3CVGYR5xsR7oOHwOakwOMNFT1WA5taWNRR9zYQ==",
       "license": "Apache-2.0",
       "dependencies": {
         "@inquirer/checkbox": "^2.5.0",
         "@inquirer/select": "^2.5.0",
         "@oclif/core": "^4",
-        "@salesforce/core": "8.23.3",
+        "@salesforce/core": "8.23.4",
         "@salesforce/kit": "^3.2.4",
         "@salesforce/plugin-info": "^3.4.89",
         "@salesforce/sf-plugins-core": "^12.2.5",

package/oclif.lock

@@ -1654,10 +1654,10 @@
     proc-log "^5.0.0"
     which "^5.0.0"
 
-"@oclif/core@^4", "@oclif/core@^4.0.27", "@oclif/core@^4.2.8", "@oclif/core@^4.5.2", "@oclif/core@^4.5.5", "@oclif/core@^4.5.6", "@oclif/core@^4.7.2", "@oclif/core@>= 3.0.0", "@oclif/core@4.7.2":
-  version "4.7.2"
-  resolved "https://registry.npmjs.org/@oclif/core/-/core-4.7.2.tgz"
-  integrity sha512-AmZnhEnyD7bFxmzEKRaOEr0kzonmwIip72eWZPWB5+7D9ayHa/QFX08zhaQT9eOo0//ed64v5p5QZIbYCbQaJQ==
+"@oclif/core@^4", "@oclif/core@^4.0.27", "@oclif/core@^4.2.8", "@oclif/core@^4.5.2", "@oclif/core@^4.5.5", "@oclif/core@^4.5.6", "@oclif/core@^4.7.2", "@oclif/core@>= 3.0.0", "@oclif/core@4.8.0":
+  version "4.8.0"
+  resolved "https://registry.npmjs.org/@oclif/core/-/core-4.8.0.tgz"
+  integrity sha512-jteNUQKgJHLHFbbz806aGZqf+RJJ7t4gwF4MYa8fCwCxQ8/klJNWc0MvaJiBebk7Mc+J39mdlsB4XraaCKznFw==
   dependencies:
     ansi-escapes "^4.3.2"
     ansis "^3.17.0"
@@ -2084,10 +2084,10 @@
     strip-ansi "6.0.1"
     ts-retry-promise "^0.8.1"
 
-"@salesforce/core@^8.10.1", "@salesforce/core@^8.18.1", "@salesforce/core@^8.18.7", "@salesforce/core@^8.19.1", "@salesforce/core@^8.21.2", "@salesforce/core@^8.23.1", "@salesforce/core@^8.23.2", "@salesforce/core@^8.23.3", "@salesforce/core@^8.5.1", "@salesforce/core@^8.8.0", "@salesforce/core@^8.8.1", "@salesforce/core@^8.8.5", "@salesforce/core@^8.9.1", "@salesforce/core@8.23.3":
-  version "8.23.3"
-  resolved "https://registry.npmjs.org/@salesforce/core/-/core-8.23.3.tgz"
-  integrity sha512-BD9cOUOw3wTR8ud6dBacLvA4x0KAfQXkNGdxtU9ujz5nEW86ms5tU1AEUzVXnhuDrrtdQZh7/yTGxqg5mS7rZg==
+"@salesforce/core@^8.10.1", "@salesforce/core@^8.18.1", "@salesforce/core@^8.18.7", "@salesforce/core@^8.19.1", "@salesforce/core@^8.21.2", "@salesforce/core@^8.23.1", "@salesforce/core@^8.23.2", "@salesforce/core@^8.23.3", "@salesforce/core@^8.5.1", "@salesforce/core@^8.8.0", "@salesforce/core@^8.8.1", "@salesforce/core@^8.8.5", "@salesforce/core@^8.9.1", "@salesforce/core@8.23.4":
+  version "8.23.4"
+  resolved "https://registry.npmjs.org/@salesforce/core/-/core-8.23.4.tgz"
+  integrity sha512-+JZMFD76P7X8fLSrHJRi9+ygjTehqZqJRXxmNq51miqIHY1Xlb0qH/yr9u5QEGsFIOZ8H8oStl/Zj+ZbrFs0vw==
   dependencies:
     "@jsforce/jsforce-node" "^3.10.8"
     "@salesforce/kit" "^3.2.4"
@@ -2230,15 +2230,15 @@
     got "^13.0.0"
     proxy-agent "^6.4.0"
 
-"@salesforce/plugin-auth@3.9.16":
-  version "3.9.16"
-  resolved "https://registry.npmjs.org/@salesforce/plugin-auth/-/plugin-auth-3.9.16.tgz"
-  integrity sha512-tTjT25CUbAdZUnqXA+JMu9Rhm2QD4DWQyXtYteI3mB7Pr4j3FCH7/E+vCs3dTHs4nEPoPtsrhjr7AvL09KuIRQ==
+"@salesforce/plugin-auth@3.9.17":
+  version "3.9.17"
+  resolved "https://registry.npmjs.org/@salesforce/plugin-auth/-/plugin-auth-3.9.17.tgz"
+  integrity sha512-8gJCUUFU4gnSjSFCFePoMxOCeW5Erq3eXkoLr3yzGCWaV2wF3CVGYR5xsR7oOHwOakwOMNFT1WA5taWNRR9zYQ==
   dependencies:
     "@inquirer/checkbox" "^2.5.0"
     "@inquirer/select" "^2.5.0"
     "@oclif/core" "^4"
-    "@salesforce/core" "8.23.3"
+    "@salesforce/core" "8.23.4"
     "@salesforce/kit" "^3.2.4"
     "@salesforce/plugin-info" "^3.4.89"
     "@salesforce/sf-plugins-core" "^12.2.5"

package/oclif.manifest.json

@@ -12,9 +12,18 @@
         "Display all the default rule values for the recommended rules, instead of only the rule values you've explicitly overriden in your `code-analyzer.yml` file. By default, only overriden rule values are displayed unless you specify the `--include-unmodified-rules` flag:\n<%= config.bin %> <%= command.id %> --rule-selector Recommended --include-unmodified-rules",
         "Display the configuration state associated with all the rules that are applicable to the files targeted within the folder `./src`:\n<%= config.bin %> <%= command.id %> --target ./src",
         "Display any relevant configuration settings associated with the rule name 'no-undef' from the 'eslint' engine:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:no-undef",
+        "Display any relevant configuration settings associated with PMD rules whose severity is 2 or 3:\n<%= config.bin %> <%= command.id %> --rule-selector \"pmd:(2,3)\"",
         "Load an existing configuration file called `existing-config.yml`, and then write the configuration to a new file called `new-config.yml`, the configuration state that is applicable to all rules that are relevant to the workspace located in the current folder:\n<%= config.bin %> <%= command.id %> --config-file ./existing-config.yml --workspace . --output-file ./subfolder-config.yml"
       ],
       "flags": {
+        "flags-dir": {
+          "helpGroup": "GLOBAL",
+          "name": "flags-dir",
+          "summary": "Import flag values from a directory.",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
+        },
         "workspace": {
           "char": "w",
           "description": "Use the `--workspace` flag to display only the configuration associated with the rules that apply to the files that make up your workspace. Typically, a workspace is a single project folder that contains all your files. But it can also consist of one or more folders, one or more files, and use glob patterns (wildcards). If you specify this flag multiple times, then your workspace is the sum of the files and folders.\n\nThis command uses the types of files in the workspace, such as JavaScript or Typescript, to determine the applicable configuration state. For example, if your workspace contains only JavaScript files, then the command doesn't display configuration state associated with TypeScript rules. The command uses a file's extension to determine what kind of file it is, such as \".ts\" for TypeScript.\n\nSome engines can be configured to add additional rules based on what it finds in your workspace. For example, if you set the engines.eslint.auto_discover_eslint_config value of your `code-analyzer.yml` file to true, then supplying your workspace allows the \"eslint\" engine to examine your files in order to find ESLint configuration files that could potentially add in additional rules.\n\nIf you specify `--target` but not `--workspace`, then the current folder '.' is used as your workspace.",
@@ -37,13 +46,12 @@
         },
         "rule-selector": {
           "char": "r",
-          "description": "Use the `--rule-selector` flag to display only the configuration associated with the rules based on specific criteria. You can select by engine, such as the rules associated with the \"retire-js\" or \"eslint\" engine. Or select by the severity of the rules, such as high or moderate. You can also select rules using tag values or rule names.\n\nYou can combine different criteria using colons to further filter the list; the colon works as an intersection. For example, `--rule-selector eslint:Security` reduces the output to only contain the configuration state associated with the rules from the \"eslint\" engine that have the \"Security\" tag. To add multiple rule selectors together (a union), specify the `--rule-selector` flag multiple times, such as `--rule-selector eslint:Recommended --rule-selector retire-js:3`.\n\nIf you don't specify this flag, then the command uses the \"all\" rule selector.\n\nRun `<%= config.bin %> <%= command.id %> --rule-selector Recommended` to display the configuration state associated with just the 'Recommended' rules, instead of all the rules.",
+          "description": "Use the `--rule-selector` flag to display only the configuration associated with the rules based on specific criteria. You can select by engine, such as the rules associated with the \"retire-js\" or \"eslint\" engine. Or select by the severity of the rules, such as high or moderate. You can also select rules using tag values or rule names.\n\nYou can further filter the list by combining different criteria using colons to represent logical AND, commas to represent logical OR, and parentheses to create groupings. For example, `--rule-selector \"pmd:(Performance,Security):2\"` reduces the output to only contain the configuration state associated with PMD rules that have the Performance or Security tag and a severity of 2. You may also specify the flag multiple times to OR multiple selectors together. For example, `--rule-selector Performance,Security` is equivalent to `--rule-selector Performance --rule-selector Security`. Note that if you use parentheses in your selector, the selector should be wrapped in double-quotes.\n\nIf you don't specify this flag, then the command uses the \"all\" rule selector.\n\nRun `<%= config.bin %> <%= command.id %> --rule-selector Recommended` to display the configuration state associated with just the 'Recommended' rules, instead of all the rules.",
           "name": "rule-selector",
-          "summary": "Selection of rules, based on engine name, severity level, rule name, tag, or a combination of criteria separated by colons.",
+          "summary": "Selection of rules, based on engine name, severity level, rule name, tag, or a combination of criteria separated by colons and commas, and grouped by parentheses.",
           "default": [
             "all"
           ],
-          "delimiter": ",",
           "hasDynamicHelp": false,
           "multiple": true,
           "type": "option"
@@ -83,8 +91,7 @@
       "strict": true,
       "summary": "Output the current state of configuration for Code Analyzer.",
       "enableJsonFlag": false,
-      "SF_ENV": "SF_ENV",
-      "isESM": false,
+      "isESM": true,
       "relativePath": [
         "lib",
         "commands",
@@ -111,11 +118,20 @@
         "Get a more accurate list of the rules that apply specifically to your workspace (all the files in the current folder):\n<%= config.bin %> <%= command.id %> --rule-selector all --workspace .",
         "List the recommended rules associated with a workspace that targets all the files in the folder \"./other-source\" and only the Apex class files (extension .cls) under the folder \"./force-app\":\n<%= config.bin %> <%= command.id %> --rule-selector Recommended --workspace . --target ./other-source --target ./force-app/**/*.cls",
         "List all the \"eslint\" engine rules that have a moderate severity (3) and the recommended \"retire-js\" engine rules with any severity:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:3 --rule-selector retire-js:Recommended",
+        "List all the \"pmd\" engine rules that have a severity of moderate (3) or high (2) and the \"Performance\" tag.\n<%= config.bin %> <%= command.id %> --rule-selector \"pmd:(2,3):Performance\"",
         "Similar to the previous example, but apply the rule overrides and engine settings from the configuration file called `code-analyzer2.yml` in the current folder. If, for example, you changed the severity of an \"eslint\" rule from moderate (3) to high (2) in the configuration file, then that rule isn't listed:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:3 --rule-selector retire-js:Recommended --config-file ./code-analyzer2.yml",
         "List the details of the \"getter-return\" rule of the \"eslint\" engine and the rules named \"no-inner-declarations\" in any engine:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:getter-return --rule-selector no-inner-declarations --view detail",
         "List the details of the recommended \"eslint\" engine rules that have the tag \"problem\" and high severity level (2) that apply when targeting the files within the folder \"./force-app\":\n<%= config.bin %> <%= command.id %> --rule-selector eslint:Recommended:problem:2 --view detail --target ./force-app"
       ],
       "flags": {
+        "flags-dir": {
+          "helpGroup": "GLOBAL",
+          "name": "flags-dir",
+          "summary": "Import flag values from a directory.",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
+        },
         "workspace": {
           "char": "w",
           "description": "Use the `--workspace` flag to return a more accurate list of the rules that apply to the files that make up your workspace. Typically, a workspace is a single project folder that contains all your files. But it can also consist of one or more folders, one or more files, and use glob patterns (wildcards). If you specify this flag multiple times, then your workspace is the sum of the files and folders. \n\nThe command uses the types of files in the workspace, such as JavaScript or Typescript, to determine which rules to list. For example, if your workspace contains only JavaScript files, the command doesn't list TypeScript rules. The command uses a file's extension to determine what kind of file it is, such as \".ts\" for TypeScript.\n\nSome engines may be configured to add additional rules based on what it finds in your workspace. For example, if you set the engines.eslint.auto_discover_eslint_config value of your `code-analyzer.yml` file to true, then supplying your workspace allows the \"eslint\" engine to examine your files in order to find ESLint configuration files that could potentially add in additional rules.\n\nIf you specify `--target` but not `--workspace`, then the current folder '.' is used as your workspace.",
@@ -138,13 +154,12 @@
         },
         "rule-selector": {
           "char": "r",
-          "description": "Use the `--rule-selector` flag to select the list of rules based on specific criteria. For example, you can select by engine, such as the rules associated with the \"retire-js\" or \"eslint\" engine. Or select by the severity of the rules, such as high or moderate. You can also select rules using tag values or rule names. Every rule has a name, which is unique within the scope of an engine. Most rules have tags, although it's not required. An example of a tag is \"Recommended\". \n\nYou can combine different criteria using colons to further filter the list; the colon works as an intersection. For example, `--rule-selector eslint:Security` lists rules associated only with the \"eslint\" engine that have the Security tag. The flag `--rule-selector eslint:Security:3` flag lists the \"eslint\" rules that have the Security tag and moderate severity (3). To add multiple rule selectors together (a union), specify the `--rule-selector` flag multiple times, such as `--rule-selector eslint:Recommended --rule-selector retire-js:3`.\n\nRun `<%= config.bin %> <%= command.id %> --rule-selector all` to list the possible values for engine name, rule name, tags, and severity levels that you can use with this flag.",
+          "description": "Use the `--rule-selector` flag to select the list of rules based on specific criteria. For example, you can select by engine, such as the rules associated with the \"retire-js\" or \"eslint\" engine. Or select by the severity of the rules, such as high or moderate. You can also select rules using tag values or rule names. Every rule has a name, which is unique within the scope of an engine. Most rules have tags, although it's not required. An example of a tag is \"Recommended\". \n\nYou can further filter the list by combining different criteria using colons to represent logical AND, commas to represent logical OR, and parentheses to create groupings. For example, `--rule-selector \"pmd:(Performance,Security):2\"` lists rules associated only with the \"pmd\" engine that have the Security or Performance tags and a high severity (2). You may also specify the flag multiple times to OR multiple selectors together. For example, `--rule-selector Performance,Security` is equivalent to `--rule-selector Performance --rule-selector Security`. Note that if you use parentheses in your selector, the selector should be wrapped in double-quotes. \n\nRun `<%= config.bin %> <%= command.id %> --rule-selector all` to list the possible values for engine name, rule name, tags, and severity levels that you can use with this flag.",
           "name": "rule-selector",
           "summary": "Selection of rules, based on engine name, severity level, rule name, tag, or a combination of criteria separated by colons.",
           "default": [
             "Recommended"
           ],
-          "delimiter": ",",
           "hasDynamicHelp": false,
           "multiple": true,
           "type": "option"
@@ -191,8 +206,7 @@
       "strict": true,
       "summary": "List the rules that are available to analyze your code.",
       "enableJsonFlag": false,
-      "SF_ENV": "SF_ENV",
-      "isESM": false,
+      "isESM": true,
       "relativePath": [
         "lib",
         "commands",
@@ -216,12 +230,21 @@
         "Analyze the files using all the \"eslint\" rules:\n<%= config.bin %> <%= command.id %> --rule-selector eslint",
         "The previous example is equivalent to this example:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:all",
         "Analyze the files using all rules for all engines:\n<%= config.bin %> <%= command.id %> --rule-selector all",
+        "Analyze the files using only rules in the \"pmd\" engine with a severity of high (2) or moderate (3), and the \"Performance\" tag.\n<%= config.bin %> <%= command.id %> --rule-selector \"pmd:(2,3):Performance\"",
         "Analyze files using the recommended \"retire-js\" rules; target all the files in the folder \"./other-source\" and only the Apex class files (extension .cls) in the folder \"./force-app\":\n<%= config.bin %> <%= command.id %> --rule-selector retire-js:Recommended --target ./other-source --target ./force-app/**/*.cls",
         "Specify a custom configuration file and output the results to the \"results.csv\" file in CSV format; the commands fails if it finds a violation that exceeds the moderate severity level (3):\n<%= config.bin %> <%= command.id %> --config-file ./code-analyzer2.yml --output-file results.csv --severity-threshold 3",
         "Analyze the files using all the \"eslint\" engine rules that have a moderate severity (3) and the recommended \"retire-js\" engine rules with any severity:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:3 --rule-selector retire-js:Recommended",
         "Analyze the files using only the \"getter-return\" rule of the \"eslint\" engine and any rule named \"no-inner-declarations\" from any engine:\n<%= config.bin %> <%= command.id %> --rule-selector eslint:getter-return --rule-selector no-inner-declarations"
       ],
       "flags": {
+        "flags-dir": {
+          "helpGroup": "GLOBAL",
+          "name": "flags-dir",
+          "summary": "Import flag values from a directory.",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
+        },
         "workspace": {
           "char": "w",
           "description": "Typically, a workspace is a single project folder that contains all your files. But it can also consist of one or more folders, one or more files, and use glob patterns (wildcards). If you specify this flag multiple times, then your workspace is the sum of the files and folders.\n\nSome engines often need your entire code base to perform an analysis, even if you want to target only a subset of the files within your workspace , such as with the `--target` flag. For example, the Salesforce Graph Engine might need to compile your entire project in order to properly build a graph so it can perform a data flow analysis on the paths that start in your targeted files.\n\nIf you don't specify the `--workspace` flag, then the current folder '.' is used as your workspace.",
@@ -247,13 +270,12 @@
         },
         "rule-selector": {
           "char": "r",
-          "description": "Use the `--rule-selector` flag to select the list of rules to run based on specific criteria. For example, you can select by engine, such as the rules associated with the \"retire-js\" or \"eslint\" engine. Or select by the severity of the rules, such as high or moderate. You can also select rules using tag values or rule names. Every rule has a name, which is unique within the scope of an engine. Most rules have tags, although it's not required. An example of a tag is \"Recommended\".\n\nYou can combine different criteria using colons to further filter the list; the colon works as an intersection. For example, `--rule-selector eslint:Security` runs rules associated only with the \"eslint\" engine that have the Security tag. The flag `--rule-selector eslint:Security:3` flag runs the \"eslint\" rules that have the Security tag and moderate severity (3). To add multiple rule selectors together (a union), specify the `--rule-selector` flag multiple times, such as `--rule-selector eslint:Recommended --rule-selector retire-js:3`.\n\nRun `<%= config.bin %> code-analyzer rules --rule-selector all` to see the possible values for engine name, rule name, tags, and severity levels that you can use with this flag.",
+          "description": "Use the `--rule-selector` flag to select the list of rules to run based on specific criteria. For example, you can select by engine, such as the rules associated with the \"retire-js\" or \"eslint\" engine. Or select by the severity of the rules, such as high or moderate. You can also select rules using tag values or rule names. Every rule has a name, which is unique within the scope of an engine. Most rules have tags, although it's not required. An example of a tag is \"Recommended\".\n\nYou can further filter the list by combining different criteria using colons to represent logical AND, commas to represent logical OR, and parentheses to create groupings. For example, `--rule-selector \"pmd:(Performance,Security):2\"` runs rules associated only with the \"pmd\" engine that have the Security or Performance tags and a high severity (2). You may also specify the flag multiple times to OR multiple selectors together. For example, `--rule-selector Performance,Security` is equivalent to `--rule-selector Performance --rule-selector Security`. Note that if you use parentheses in your selector, the selector should be wrapped in double-quotes.\n\nRun `<%= config.bin %> code-analyzer rules --rule-selector all` to see the possible values for engine name, rule name, tags, and severity levels that you can use with this flag.",
           "name": "rule-selector",
           "summary": "Selection of rules, based on engine name, severity level, rule name, tag, or a combination of criteria separated by colons.",
           "default": [
             "Recommended"
           ],
-          "delimiter": ",",
           "hasDynamicHelp": false,
           "multiple": true,
           "type": "option"
@@ -309,8 +331,7 @@
       "strict": true,
       "summary": "Analyze your code with a selection of rules to ensure good coding practices.",
       "enableJsonFlag": false,
-      "SF_ENV": "SF_ENV",
-      "isESM": false,
+      "isESM": true,
       "relativePath": [
         "lib",
         "commands",
@@ -4159,5 +4180,5 @@
       "requiresProject": true
     }
   },
-  "version": "2.111.4"
+  "version": "2.111.6"
 }

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@salesforce/cli",
   "description": "The Salesforce CLI",
-  "version": "2.111.4",
+  "version": "2.111.6",
   "author": "Salesforce",
   "bin": {
     "sf": "./bin/run.js",
@@ -76,7 +76,7 @@
       "@salesforce/plugin-user"
     ],
     "jitPlugins": {
-      "@salesforce/plugin-code-analyzer": "5.5.0",
+      "@salesforce/plugin-code-analyzer": "5.6.1",
       "@salesforce/plugin-community": "3.3.44",
       "@salesforce/plugin-custom-metadata": "3.3.69",
       "@salesforce/plugin-dev": "2.5.1",
@@ -144,7 +144,7 @@
   },
   "dependencies": {
     "@inquirer/select": "^2.3.5",
-    "@oclif/core": "4.7.2",
+    "@oclif/core": "4.8.0",
     "@oclif/plugin-autocomplete": "3.2.38",
     "@oclif/plugin-commands": "4.1.37",
     "@oclif/plugin-help": "6.2.34",
@@ -160,7 +160,7 @@
     "@salesforce/plugin-agent": "1.24.21",
     "@salesforce/plugin-apex": "3.8.5",
     "@salesforce/plugin-api": "1.3.3",
-    "@salesforce/plugin-auth": "3.9.16",
+    "@salesforce/plugin-auth": "3.9.17",
     "@salesforce/plugin-data": "4.0.59",
     "@salesforce/plugin-deploy-retrieve": "3.23.12",
     "@salesforce/plugin-info": "3.4.95",