@socketsecurity/cli-with-sentry 0.14.110 → 0.14.112

package/dist/require/cli.js

@@ -917,7 +917,7 @@ function emitBanner(name) {
   logger.logger.error(getAsciiHeader(name))
 }
 function getAsciiHeader(command) {
-  const cliVersion = '0.14.110:bce799e:490fe869:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
+  const cliVersion = '0.14.112:79a6e07:49616d8e:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
   const nodeVersion = process$1.version
   const apiToken = shadowNpmInject.getDefaultToken()
   const defaultOrg = shadowNpmInject.getConfigValue('defaultOrg')
@@ -3728,7 +3728,10 @@ const cmdDiffScan = {
 
 const { GITHUB_REF_NAME } = constants
 function formatBranchName(str) {
-  return str.replace(/[-_.]+/g, '-').replace(/[^-a-zA-Z0-9]+/g, '') ?? ''
+  return str
+    .replace(/[-_.\\/]+/g, '-')
+    .replace(/[^-a-zA-Z0-9]+/g, '')
+    .replace(/^-+|-+$/g, '')
 }
 function getPkgNameFromPurlObj(purlObj) {
   return `${purlObj.namespace ? `${purlObj.namespace}/` : ''}${purlObj.name}`
@@ -4094,28 +4097,28 @@ async function npmFix(
         firstPatchedVersionIdentifier,
         vulnerableVersionRange
       } of infos) {
-        const revertTree = arb.idealTree
-        arb.idealTree = null
-        // eslint-disable-next-line no-await-in-loop
-        await arb.buildIdealTree()
-        const node = shadowNpmInject.findPackageNode(
-          arb.idealTree,
-          name,
-          oldVersion
-        )
-        if (!node) {
-          continue
-        }
-        if (
-          !shadowNpmInject.updateNode(node, packument, vulnerableVersionRange)
-        ) {
-          if (!unavailableSpecs.has(oldSpec)) {
-            unavailableSpecs.add(oldSpec)
-            spinner?.fail(`No update available for ${oldSpec}`)
-          }
-          continue
-        }
         for (const pkgJsonPath of pkgJsonPaths) {
+          const revertTree = arb.idealTree
+          arb.idealTree = null
+          // eslint-disable-next-line no-await-in-loop
+          await arb.buildIdealTree()
+          const node = shadowNpmInject.findPackageNode(
+            arb.idealTree,
+            name,
+            oldVersion
+          )
+          if (!node) {
+            continue
+          }
+          if (
+            !shadowNpmInject.updateNode(node, packument, vulnerableVersionRange)
+          ) {
+            if (!unavailableSpecs.has(oldSpec)) {
+              unavailableSpecs.add(oldSpec)
+              spinner?.fail(`No update available for ${oldSpec}`)
+            }
+            continue
+          }
           const isWorkspaceRoot =
             pkgJsonPath === pkgEnvDetails.editablePkgJson.filename
           const workspaceName = isWorkspaceRoot
@@ -4513,32 +4516,32 @@ async function pnpmFix(
         firstPatchedVersionIdentifier,
         vulnerableVersionRange
       } of infos) {
-        const node = shadowNpmInject.findPackageNode(
-          actualTree,
-          name,
-          oldVersion
-        )
-        if (!node) {
-          continue
-        }
-        const availableVersions = Object.keys(packument.versions)
-        const newVersion = shadowNpmInject.findBestPatchVersion(
-          node,
-          availableVersions,
-          vulnerableVersionRange
-        )
-        const newVersionPackument = newVersion
-          ? packument.versions[newVersion]
-          : undefined
-        if (!(newVersion && newVersionPackument)) {
-          if (!unavailableSpecs.has(oldSpec)) {
-            unavailableSpecs.add(oldSpec)
-            spinner?.fail(`No update available for ${oldSpec}`)
-          }
-          continue
-        }
         debug.debugLog('pkgJsonPaths', pkgJsonPaths)
         for (const pkgJsonPath of pkgJsonPaths) {
+          const node = shadowNpmInject.findPackageNode(
+            actualTree,
+            name,
+            oldVersion
+          )
+          if (!node) {
+            continue
+          }
+          const availableVersions = Object.keys(packument.versions)
+          const newVersion = shadowNpmInject.findBestPatchVersion(
+            node,
+            availableVersions,
+            vulnerableVersionRange
+          )
+          const newVersionPackument = newVersion
+            ? packument.versions[newVersion]
+            : undefined
+          if (!(newVersion && newVersionPackument)) {
+            if (!unavailableSpecs.has(oldSpec)) {
+              unavailableSpecs.add(oldSpec)
+              spinner?.fail(`No update available for ${oldSpec}`)
+            }
+            continue
+          }
           const isWorkspaceRoot =
             pkgJsonPath === pkgEnvDetails.editablePkgJson.filename
           const workspaceName = isWorkspaceRoot
@@ -12309,7 +12312,7 @@ void (async () => {
   await vendor.updater({
     name: SOCKET_CLI_BIN_NAME,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-    version: '0.14.110',
+    version: '0.14.112',
     ttl: 86_400_000 /* 24 hours in milliseconds */
   })
   try {
@@ -12377,5 +12380,5 @@ void (async () => {
     await shadowNpmInject.captureException(e)
   }
 })()
-//# debugId=6e5eec15-0ea0-46ad-90c2-b1d3435c8a63
+//# debugId=d1400c3c-29d5-4f5d-9766-57e761274a4b
 //# sourceMappingURL=cli.js.map