@socketsecurity/cli-with-sentry 0.14.111 → 0.14.113

package/dist/instrument-with-sentry.js

@@ -41,7 +41,7 @@ const relConstantsPath = './constants'
   Sentry.setTag(
     'version',
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
-    '0.14.111:ed1497e:e21871cf:pub'
+    '0.14.113:753a37f:0c2e5474:pub'
   )
   const constants = require(relConstantsPath)
   if (constants.ENV.SOCKET_CLI_DEBUG) {
@@ -56,5 +56,5 @@ const relConstantsPath = './constants'
   } = constants
   setSentry(Sentry)
 }
-//# debugId=67458bf2-32e0-44c7-a6d0-bd54df0dc5a9
+//# debugId=2576ade3-e7e0-4151-971f-f186580d62da
 //# sourceMappingURL=instrument-with-sentry.js.map

package/dist/instrument-with-sentry.js.map

@@ -1 +1 @@
-{"version":3,"file":"instrument-with-sentry.js","sources":["../../src/instrument-with-sentry.ts"],"sourcesContent":["// This should ONLY be included in the special Sentry build!\n// Otherwise the Sentry dependency won't even be present in the manifest.\n\nimport { logger } from '@socketsecurity/registry/lib/logger'\n\n// Require constants with require(relConstantsPath) instead of require('./constants')\n// so Rollup doesn't generate a constants2.js chunk.\nconst relConstantsPath = './constants'\n// The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']\".\nif (process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']) {\n  const Sentry = require('@sentry/node')\n  Sentry.init({\n    onFatalError(error: Error) {\n      // Defer module loads until after Sentry.init is called.\n      if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n        logger.fail('[DEBUG] [Sentry onFatalError]:', error)\n      }\n    },\n    dsn: 'https://66736701db8e4ffac046bd09fa6aaced@o555220.ingest.us.sentry.io/4508846967619585',\n    enabled: true,\n    integrations: []\n  })\n  Sentry.setTag(\n    'environment',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\".\n    process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\n      ? 'pub'\n      : // The NODE_ENV convention is used by apps to define the runtime environment.\n        // https://nodejs.org/en/learn/getting-started/nodejs-the-difference-between-development-and-production\n        process.env['NODE_ENV']\n  )\n  Sentry.setTag(\n    'version',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_VERSION_HASH']\".\n    process.env['INLINED_SOCKET_CLI_VERSION_HASH']\n  )\n  const constants = require(relConstantsPath)\n  if (constants.ENV.SOCKET_CLI_DEBUG) {\n    Sentry.setTag('debugging', true)\n    logger.log('[DEBUG] Set up Sentry.')\n  } else {\n    Sentry.setTag('debugging', false)\n  }\n  const {\n    kInternalsSymbol,\n    [kInternalsSymbol as unknown as 'Symbol(kInternalsSymbol)']: { setSentry }\n  } = constants\n  setSentry(Sentry)\n} else if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n  logger.log('[DEBUG] Sentry disabled explicitly.')\n}\n"],"names":["logger","dsn","enabled","integrations","process","Sentry","setSentry"],"mappings":";;;;;;;;;;;;;;;AAAA;AACA;;;AAIA;AACA;AACA;AACA;AACoD;AAClD;;;AAGI;;AAEEA;AACF;;AAEFC;AACAC;AACAC;AACF;;AAGE;AACAC;;AAQA;AACAA;AAEF;AACA;AACEC;AACAL;AACF;AACEK;AACF;;;AAGE;AAA+DC;AAAU;AAC3E;;AAEF","debugId":"67458bf2-32e0-44c7-a6d0-bd54df0dc5a9"}
+{"version":3,"file":"instrument-with-sentry.js","sources":["../../src/instrument-with-sentry.ts"],"sourcesContent":["// This should ONLY be included in the special Sentry build!\n// Otherwise the Sentry dependency won't even be present in the manifest.\n\nimport { logger } from '@socketsecurity/registry/lib/logger'\n\n// Require constants with require(relConstantsPath) instead of require('./constants')\n// so Rollup doesn't generate a constants2.js chunk.\nconst relConstantsPath = './constants'\n// The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']\".\nif (process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']) {\n  const Sentry = require('@sentry/node')\n  Sentry.init({\n    onFatalError(error: Error) {\n      // Defer module loads until after Sentry.init is called.\n      if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n        logger.fail('[DEBUG] [Sentry onFatalError]:', error)\n      }\n    },\n    dsn: 'https://66736701db8e4ffac046bd09fa6aaced@o555220.ingest.us.sentry.io/4508846967619585',\n    enabled: true,\n    integrations: []\n  })\n  Sentry.setTag(\n    'environment',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\".\n    process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\n      ? 'pub'\n      : // The NODE_ENV convention is used by apps to define the runtime environment.\n        // https://nodejs.org/en/learn/getting-started/nodejs-the-difference-between-development-and-production\n        process.env['NODE_ENV']\n  )\n  Sentry.setTag(\n    'version',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_VERSION_HASH']\".\n    process.env['INLINED_SOCKET_CLI_VERSION_HASH']\n  )\n  const constants = require(relConstantsPath)\n  if (constants.ENV.SOCKET_CLI_DEBUG) {\n    Sentry.setTag('debugging', true)\n    logger.log('[DEBUG] Set up Sentry.')\n  } else {\n    Sentry.setTag('debugging', false)\n  }\n  const {\n    kInternalsSymbol,\n    [kInternalsSymbol as unknown as 'Symbol(kInternalsSymbol)']: { setSentry }\n  } = constants\n  setSentry(Sentry)\n} else if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n  logger.log('[DEBUG] Sentry disabled explicitly.')\n}\n"],"names":["logger","dsn","enabled","integrations","process","Sentry","setSentry"],"mappings":";;;;;;;;;;;;;;;AAAA;AACA;;;AAIA;AACA;AACA;AACA;AACoD;AAClD;;;AAGI;;AAEEA;AACF;;AAEFC;AACAC;AACAC;AACF;;AAGE;AACAC;;AAQA;AACAA;AAEF;AACA;AACEC;AACAL;AACF;AACEK;AACF;;;AAGE;AAA+DC;AAAU;AAC3E;;AAEF","debugId":"2576ade3-e7e0-4151-971f-f186580d62da"}

package/dist/module-sync/cli.js

@@ -917,7 +917,7 @@ function emitBanner(name) {
   logger.logger.error(getAsciiHeader(name))
 }
 function getAsciiHeader(command) {
-  const cliVersion = '0.14.111:ed1497e:e21871cf:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
+  const cliVersion = '0.14.113:753a37f:0c2e5474:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
   const nodeVersion = process$1.version
   const apiToken = shadowNpmInject.getDefaultToken()
   const defaultOrg = shadowNpmInject.getConfigValue('defaultOrg')
@@ -3729,7 +3729,7 @@ const cmdDiffScan = {
 const { GITHUB_REF_NAME } = constants
 function formatBranchName(str) {
   return str
-    .replace(/[\\/-_.]+/g, '-')
+    .replace(/[-_.\\/]+/g, '-')
     .replace(/[^-a-zA-Z0-9]+/g, '')
     .replace(/^-+|-+$/g, '')
 }
@@ -4090,35 +4090,35 @@ async function npmFix(
     const testedSpecs = new Set()
     const unavailableSpecs = new Set()
     const revertedSpecs = new Set()
-    for (const oldVersion of oldVersions) {
-      const oldSpec = `${name}@${oldVersion}`
-      const oldPurl = `pkg:npm/${oldSpec}`
-      for (const {
-        firstPatchedVersionIdentifier,
-        vulnerableVersionRange
-      } of infos) {
-        const revertTree = arb.idealTree
-        arb.idealTree = null
-        // eslint-disable-next-line no-await-in-loop
-        await arb.buildIdealTree()
-        const node = shadowNpmInject.findPackageNode(
-          arb.idealTree,
-          name,
-          oldVersion
-        )
-        if (!node) {
-          continue
-        }
-        if (
-          !shadowNpmInject.updateNode(node, packument, vulnerableVersionRange)
-        ) {
-          if (!unavailableSpecs.has(oldSpec)) {
-            unavailableSpecs.add(oldSpec)
-            spinner?.fail(`No update available for ${oldSpec}`)
+    for (const pkgJsonPath of pkgJsonPaths) {
+      for (const oldVersion of oldVersions) {
+        const oldSpec = `${name}@${oldVersion}`
+        const oldPurl = `pkg:npm/${oldSpec}`
+        for (const {
+          firstPatchedVersionIdentifier,
+          vulnerableVersionRange
+        } of infos) {
+          const revertTree = arb.idealTree
+          arb.idealTree = null
+          // eslint-disable-next-line no-await-in-loop
+          await arb.buildIdealTree()
+          const node = shadowNpmInject.findPackageNode(
+            arb.idealTree,
+            name,
+            oldVersion
+          )
+          if (!node) {
+            continue
+          }
+          if (
+            !shadowNpmInject.updateNode(node, packument, vulnerableVersionRange)
+          ) {
+            if (!unavailableSpecs.has(oldSpec)) {
+              unavailableSpecs.add(oldSpec)
+              spinner?.fail(`No update available for ${oldSpec}`)
+            }
+            continue
           }
-          continue
-        }
-        for (const pkgJsonPath of pkgJsonPaths) {
           const isWorkspaceRoot =
             pkgJsonPath === pkgEnvDetails.editablePkgJson.filename
           const workspaceName = isWorkspaceRoot
@@ -4509,39 +4509,38 @@ async function pnpmFix(
     const testedSpecs = new Set()
     const unavailableSpecs = new Set()
     const revertedSpecs = new Set()
-    for (const oldVersion of oldVersions) {
-      const oldSpec = `${name}@${oldVersion}`
-      const oldPurl = `pkg:npm/${oldSpec}`
-      for (const {
-        firstPatchedVersionIdentifier,
-        vulnerableVersionRange
-      } of infos) {
-        const node = shadowNpmInject.findPackageNode(
-          actualTree,
-          name,
-          oldVersion
-        )
-        if (!node) {
-          continue
-        }
-        const availableVersions = Object.keys(packument.versions)
-        const newVersion = shadowNpmInject.findBestPatchVersion(
-          node,
-          availableVersions,
+    for (const pkgJsonPath of pkgJsonPaths) {
+      for (const oldVersion of oldVersions) {
+        const oldSpec = `${name}@${oldVersion}`
+        const oldPurl = `pkg:npm/${oldSpec}`
+        for (const {
+          firstPatchedVersionIdentifier,
           vulnerableVersionRange
-        )
-        const newVersionPackument = newVersion
-          ? packument.versions[newVersion]
-          : undefined
-        if (!(newVersion && newVersionPackument)) {
-          if (!unavailableSpecs.has(oldSpec)) {
-            unavailableSpecs.add(oldSpec)
-            spinner?.fail(`No update available for ${oldSpec}`)
+        } of infos) {
+          const node = shadowNpmInject.findPackageNode(
+            actualTree,
+            name,
+            oldVersion
+          )
+          if (!node) {
+            continue
+          }
+          const availableVersions = Object.keys(packument.versions)
+          const newVersion = shadowNpmInject.findBestPatchVersion(
+            node,
+            availableVersions,
+            vulnerableVersionRange
+          )
+          const newVersionPackument = newVersion
+            ? packument.versions[newVersion]
+            : undefined
+          if (!(newVersion && newVersionPackument)) {
+            if (!unavailableSpecs.has(oldSpec)) {
+              unavailableSpecs.add(oldSpec)
+              spinner?.fail(`No update available for ${oldSpec}`)
+            }
+            continue
           }
-          continue
-        }
-        debug.debugLog('pkgJsonPaths', pkgJsonPaths)
-        for (const pkgJsonPath of pkgJsonPaths) {
           const isWorkspaceRoot =
             pkgJsonPath === pkgEnvDetails.editablePkgJson.filename
           const workspaceName = isWorkspaceRoot
@@ -12312,7 +12311,7 @@ void (async () => {
   await vendor.updater({
     name: SOCKET_CLI_BIN_NAME,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-    version: '0.14.111',
+    version: '0.14.113',
     ttl: 86_400_000 /* 24 hours in milliseconds */
   })
   try {
@@ -12380,5 +12379,5 @@ void (async () => {
     await shadowNpmInject.captureException(e)
   }
 })()
-//# debugId=43329688-2753-4a28-b484-2b4f53cd77d6
+//# debugId=1f254f8b-5b98-4df3-b06d-39d2637bc819
 //# sourceMappingURL=cli.js.map