@sap/cli-core 2026.2.1 → 2026.4.0

package/cache/secrets/SecretsStorageImpl.js

@@ -120,7 +120,6 @@ export class SecretsStorageImpl {
         this.secrets.forEach((secret) => {
             Object.keys(secret).forEach((key) => {
                 if (!ALLOWED_SECRET_TYPES.includes(key)) {
-                    // eslint-disable-next-line no-param-reassign
                     delete secret[key];
                 }
             });

package/cache/secrets/utils.js

@@ -46,9 +46,7 @@ export async function updateUrls(secret) {
         if (!tokenUrl || !authorizationUrl) {
             throw new Error("invalid token url or authorization url");
         }
-        // eslint-disable-next-line no-param-reassign
         secret.authorization_url = removeQueryParametersFromUrl(authorizationUrl);
-        // eslint-disable-next-line no-param-reassign
         secret.token_url = removeQueryParametersFromUrl(tokenUrl);
     }
     return secret;

package/commands/config.command/cache.command/init.command/utils.js

@@ -5,8 +5,6 @@ export function getLowerVersion(a, b) {
 }
 export function mergeDiscoveries(discovery, newDiscovery) {
     merge(discovery, newDiscovery);
-    // eslint-disable-next-line no-param-reassign
     discovery.info.version = getLowerVersion(discovery.info.version, newDiscovery.info.version);
-    // eslint-disable-next-line no-param-reassign
     discovery.info["x-document-version"] = getLowerVersion(discovery.info["x-document-version"], newDiscovery.info["x-document-version"]);
 }

package/commands/handler/authentication/oauth/tokenProvider/utils.js

@@ -44,6 +44,7 @@ export const retrieveCode = async () => new Promise((resolve, reject) => {
             const secrets = await SecretsStorageSingleton.SINGLETON.getDefaultSecret();
             const defaultPort = secrets.customClient ? "8080" : "65000";
             const PORT = parseInt(process.env.CLI_HTTP_PORT ?? defaultPort, 10);
+            // eslint-disable-next-line prefer-const
             let timeout;
             const server = createServer((req, res) => {
                 void (async () => {

package/commands/handler/fetch/utils.js

@@ -44,16 +44,13 @@ export const handleMappingIn = (mapping, url, value, headers, bodyWrapper) => {
         url.searchParams.append(mapping.name, value);
     }
     else if (mapping.in === "header") {
-        // eslint-disable-next-line no-param-reassign
         headers[mapping.name] = value;
     }
     else if (mapping.in === "path") {
-        // eslint-disable-next-line no-param-reassign
         url.pathname = url.pathname.replace(new RegExp(`${CURLY_OPEN_ENCODED}${mapping.name}${CURLY_CLOSED_ENCODED}`, "g"), encodeURIComponent(value));
     }
     else {
         if (!bodyWrapper.body) {
-            // eslint-disable-next-line no-param-reassign
             bodyWrapper.body = {};
         }
         set(bodyWrapper.body, mapping.name, value);

package/commands/login.command.js

@@ -16,7 +16,7 @@ export const verifyHost = async () => async () => {
         const url = getTenantUrl();
         logger.debug(`url defined as ${url}`);
     }
-    catch (err) {
+    catch {
         logger.error("tenant URL not defined. use option -H, --host");
         logVerbose(logger, "specify the tenant URL using option --host");
         throw new Error("tenant URL not defined. use option -H, --host");
@@ -41,7 +41,7 @@ const initializeCache = async () => async () => {
         getOptionValueFromConfig(OPTION_HOST);
         await (await init())();
     }
-    catch (err) {
+    catch {
         warn(`option ${buildOptionName(ROOT_COMMAND, OPTION_HOST)} not defined, skipping cache init`);
     }
 };

package/commands/openAPI.command/index.js

@@ -41,7 +41,6 @@ const addCommandToArray = (document, commands, segments, index) => {
     return { command, remove: () => commands.splice(commands.length - 1, 1) };
 };
 const setHandler = (command, method, path, parameterMappings, readPathResponseHandler, ...handler) => {
-    // eslint-disable-next-line no-param-reassign
     command.handler = createNextHandler("openAPI.command", createParseArgumentsHandler(), createMandatoryOptionsHandler(), createAuthenticationHandler(), ...handler, createFetchHandler(method, path, parameterMappings, readPathResponseHandler));
 };
 export const addCommands = async (program) => {

package/commands/openAPI.command/utils.js

@@ -107,7 +107,6 @@ const getKeysFromSchema = (schema, doc, key = "", required = false) => {
     const { trace } = getLogger();
     trace(`retrieving keys for key ${key} from schema ${JSON.stringify(schema)}`);
     if (schema.$ref) {
-        // eslint-disable-next-line no-param-reassign
         schema = getSchema(schema, doc);
     }
     if (schema.type === "object" && schema.properties) {
@@ -302,7 +301,6 @@ export const handleParameters = (operation, doc, parameterMappings, command, top
 };
 export const handleDeprecationNotice = (operation, command) => {
     if (operation.deprecated && command.type === "command") {
-        // eslint-disable-next-line no-param-reassign
         command.deprecationInfo = {
             deprecated: true,
             deprecatedWithWave: operation["x-deprecated-with-wave"],

package/config/index.js

@@ -45,11 +45,11 @@ export const setCustomConfig = () => {
     debug("setting custom configuration");
     const sources = customConfig.util.getConfigSources();
     trace("config.custom.getConfigSources", JSON.stringify(sources, null, 2));
-    trace("config.custom.NODE_CONFIG_DIR", customConfig.util.getEnv("NODE_CONFIG_DIR"));
-    trace("config.custom.NODE_ENV", customConfig.util.getEnv("NODE_ENV"));
-    trace("config.custom.NODE_CONFIG", JSON.stringify(customConfig.util.getEnv("NODE_CONFIG"), null, 2));
-    trace("config.custom.HOSTNAME", customConfig.util.getEnv("HOSTNAME"));
-    trace("config.custom.NODE_APP_INSTANCE", customConfig.util.getEnv("NODE_APP_INSTANCE"));
+    trace("config.custom.NODE_CONFIG_DIR", process.env.NODE_CONFIG_DIR);
+    trace("config.custom.NODE_ENV", process.env.NODE_ENV);
+    trace("config.custom.NODE_CONFIG", JSON.stringify(process.env.NODE_CONFIG, null, 2));
+    trace("config.custom.HOSTNAME", process.env.HOSTNAME);
+    trace("config.custom.NODE_APP_INSTANCE", process.env.NODE_APP_INSTANCE);
     if (customConfig.has(CUSTOM_HOST)) {
         config.host = customConfig.get(CUSTOM_HOST);
         config.hostSetFromCustomConfig = true;
@@ -64,7 +64,6 @@ export const setCustomConfig = () => {
 setCustomConfig();
 const setTenant = (tenant) => {
     const info = getInfoFromTenant(tenant, config.verbose);
-    // eslint-disable-next-line @typescript-eslint/no-use-before-define
     set({ ...info, newTenant: tenant });
 };
 export const set = (c) => {

package/dwc/dwc.js

@@ -134,7 +134,6 @@ export const executeCommand = async (command) => {
 };
 const buildCommandsObject = (name, command, object = {}) => {
     const commandName = name || "dwc";
-    // eslint-disable-next-line no-param-reassign
     object[commandName] = async (options) => {
         await executeCommand(new Array(2)
             .fill("dummy")

package/logger/index.js

@@ -35,7 +35,6 @@ const logMessage = (namespace, level) => (...args) => {
             ? // @ts-expect-error ts(7053)
                 customLogger[LogLevel2Console[level]](...args)
             : // @ts-expect-error ts(7053)
-                // eslint-disable-next-line
                 console[LogLevel2Console[level]](...[
                     `[${namespace}:${level === LogLevel.TRACE ? "trace" : LogLevel2Console[level]}:${new Date().toISOString()}] ${args[0]}`,
                     ...args.slice(1),
@@ -46,8 +45,7 @@ export const get = (namespace) => {
     return {
         output: customLogger?.output
             ? customLogger.output
-            : // eslint-disable-next-line
-                (...args) => console.log(...args),
+            : (...args) => console.log(...args),
         error: logMessage(namespace, LogLevel.ERROR),
         warn: logMessage(namespace, LogLevel.WARN),
         info: logMessage(namespace, LogLevel.INFO),

package/module.js

@@ -1,4 +1,3 @@
-/* eslint-disable import/first */
 import * as dotenv from "dotenv";
 import { configureLoggers } from "./configureLoggers.js";
 dotenv.config({

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sap/cli-core",
-  "version": "2026.2.1",
+  "version": "2026.4.0",
   "description": "Command-Line Interface (CLI) Core Module",
   "license": "SEE LICENSE IN LICENSE",
   "author": "SAP SE",
@@ -19,20 +19,19 @@
   ],
   "dependencies": {
     "ajv": "8.17.1",
-    "axios": "1.13.2",
-    "commander": "12.1.0",
+    "axios": "1.13.3",
+    "commander": "14.0.2",
     "compare-versions": "6.1.1",
-    "config": "4.1.1",
+    "config": "4.2.0",
     "dotenv": "17.2.3",
     "form-data": "4.0.5",
-    "fs-extra": "11.3.2",
-    "https": "1.0.0",
+    "fs-extra": "11.3.3",
     "https-proxy-agent": "7.0.6",
     "jszip": "3.10.1",
-    "lodash-es": "4.17.21",
+    "lodash-es": "4.17.23",
     "open": "11.0.0",
     "path": "0.12.7",
     "prompts": "2.4.2",
-    "qs": "6.14.0"
+    "qs": "6.14.1"
   }
 }

package/utils/commands.js

@@ -29,6 +29,7 @@ export const createCommand = (name) => {
     command.exitOverride();
     command.configureOutput({ writeErr: output, writeOut: output });
     command.allowUnknownOption();
+    command.allowExcessArguments();
     return command;
 };
 export function getAbsoluteCommandName(command) {
@@ -77,7 +78,7 @@ export const registerLongName = (command, option) => {
     try {
         return getShortFlagForLongName(command, option);
     }
-    catch (err) {
+    catch {
         let possibleShortFlags = getInitialShortFlagOptions(option);
         possibleShortFlags = removeUsedShortFlags(possibleShortFlags);
         if (possibleShortFlags.length === 0) {

package/utils/openUtils.js

@@ -10,18 +10,19 @@ export async function getSupportedBrowsers() {
     for (const key of Object.keys(apps)) {
         const name = key;
         // Skip private browser
-        if (name !== "browserPrivate") {
-            try {
-                // Access the lazy property - may throw if not supported on this platform
-                const value = apps[name];
-                if (value !== undefined) {
-                    browsers.push({ name, app: value });
-                }
-            }
-            catch {
-                // Silently skip apps not supported on this platform (e.g., safari on Windows)
+        if (name === "browserPrivate") {
+            continue;
+        }
+        try {
+            // Access the lazy property - may throw if not supported on this platform
+            const value = apps[name];
+            if (value !== undefined) {
+                browsers.push({ name, app: value });
             }
         }
+        catch {
+            // Silently skip apps not supported on this platform (e.g., safari on Windows)
+        }
     }
     return browsers;
 }

package/utils/utils.js

@@ -35,7 +35,7 @@ export const readPackageJson = (cwd = "", force = false) => {
                 trace(`reading ${p}`);
                 pgk = requireFile(p);
             }
-            catch (err2) {
+            catch {
                 trace("failed to read package.json second time", err.stack);
                 const p = path.join(cwdPath, "../../package.json");
                 trace(`reading ${p}`);
@@ -89,7 +89,6 @@ export const parseTenant = (tenant) => {
 export function isValidURL(url) {
     const { debug, error } = getLogger();
     try {
-        // eslint-disable-next-line no-new
         new URL(url);
         debug(`url ${url} is valid`);
         return true;