@socketsecurity/cli-with-sentry 0.14.149 → 0.14.150

package/dist/cli.js

@@ -5,7 +5,6 @@ const require$$0 = require('node:url')
 const vendor = require('./vendor.js')
 const debug = require('../external/@socketsecurity/registry/lib/debug')
 const logger = require('../external/@socketsecurity/registry/lib/logger')
-const assert = require('node:assert')
 const fs = require('node:fs/promises')
 const strings = require('../external/@socketsecurity/registry/lib/strings')
 const shadowNpmInject = require('./shadow-npm-inject.js')
@@ -14,10 +13,10 @@ const path$1 = require('node:path')
 const objects = require('../external/@socketsecurity/registry/lib/objects')
 const path = require('../external/@socketsecurity/registry/lib/path')
 const regexps = require('../external/@socketsecurity/registry/lib/regexps')
+const prompts = require('../external/@socketsecurity/registry/lib/prompts')
 const words = require('../external/@socketsecurity/registry/lib/words')
 const fs$1 = require('node:fs')
 const shadowBin = require('./shadow-bin.js')
-const prompts = require('../external/@socketsecurity/registry/lib/prompts')
 const shadowNpmPaths = require('./shadow-npm-paths.js')
 const util = require('node:util')
 const arrays = require('../external/@socketsecurity/registry/lib/arrays')
@@ -33,9 +32,8 @@ function failMsgWithBadge(badge, msg) {
   return `${vendor.yoctocolorsCjsExports.bgRed(vendor.yoctocolorsCjsExports.bold(vendor.yoctocolorsCjsExports.white(` ${badge}: `)))} ${vendor.yoctocolorsCjsExports.bold(msg)}`
 }
 
-function handleUnsuccessfulApiResponse(_name, sockSdkError) {
-  const message = sockSdkError.error || 'No error message returned'
-  const { status } = sockSdkError
+function handleUnsuccessfulApiResponse(_name, { cause, error, status }) {
+  const message = `${error || 'No error message returned'}${cause ? ` (reason: ${cause})` : ''}`
   if (status === 401 || status === 403) {
     // Lazily access constants.spinner.
     const { spinner } = constants
@@ -904,7 +902,7 @@ function emitBanner(name) {
   logger.logger.error(getAsciiHeader(name))
 }
 function getAsciiHeader(command) {
-  const cliVersion = '0.14.149:e5f0cba:2e3185e5:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
+  const cliVersion = '0.14.150:cc2913a:84ef72e1:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
   const nodeVersion = process$1.version
   const apiToken = shadowNpmInject.getDefaultToken()
   const defaultOrg = shadowNpmInject.getConfigValue('defaultOrg')
@@ -927,12 +925,22 @@ function getAsciiHeader(command) {
         '~/'
       )
   )
+  let nodeVerWarn = ''
+  if ((vendor.semverExports.parse(constants.NODE_VERSION)?.major ?? 0) < 20) {
+    nodeVerWarn += vendor.yoctocolorsCjsExports.bold(
+      `   ${vendor.yoctocolorsCjsExports.red('Warning:')} NodeJS version 19 and lower will be ${vendor.yoctocolorsCjsExports.red('unsupported')} after April 30th, 2025.`
+    )
+    nodeVerWarn += '\n'
+    nodeVerWarn +=
+      '            Soon after the Socket CLI will require NodeJS version 20 or higher.'
+    nodeVerWarn += '\n'
+  }
   const body = `
    _____         _       _        /---------------
   |   __|___ ___| |_ ___| |_      | Socket.dev CLI ver ${cliVersion}${v1test}
   |__   | ${readOnlyConfig} |  _| '_| -_|  _|     | Node: ${nodeVersion}, API token set: ${shownToken}${defaultOrg ? `, default org: ${defaultOrg}` : ''}
   |_____|___|___|_,_|___|_|.dev   | Command: \`${command}\`, cwd: ${relCwd}`.trimStart()
-  return `   ${body}\n${feedback}`
+  return `   ${body}\n${nodeVerWarn}${feedback}`
 }
 
 const { DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$J } = constants
@@ -970,25 +978,34 @@ const config$M = {
       description: 'Time filter - either 7, 30 or 90, default: 7'
     }
   },
-  help: (command, { flags }) => `
+  help: (command, { flags }) =>
+    `
     Usage
-      $ ${command} --scope=<scope> --time=<time filter>
+      $ ${command} ${shadowNpmInject.isTestingV1() ? '[ org | repo <reponame>] [time]' : '--scope=<scope> --time=<time filter>'}
 
     API Token Requirements
       - Quota: 1 unit
       - Permissions: report:write
 
-    Default parameters are set to show the organization-level analytics over the
-    last 7 days.
+    ${shadowNpmInject.isTestingV1() ? '' : 'Default parameters are set to show the organization-level analytics over the'}
+    ${shadowNpmInject.isTestingV1() ? '' : 'last 7 days.'}
+
+    ${shadowNpmInject.isTestingV1() ? 'The scope is either org or repo level, defaults to org.' : ''}
+
+    ${shadowNpmInject.isTestingV1() ? 'When scope is repo, a repo slug must be given as well.' : ''}
+
+    ${shadowNpmInject.isTestingV1() ? 'The time argument must be number 7, 30, or 90 and defaults to 7.' : ''}
 
     Options
       ${getFlagListOutput(flags, 6)}
 
     Examples
-      $ ${command} --scope=org --time=7
-      $ ${command} --scope=org --time=30
-      $ ${command} --scope=repo --repo=test-repo --time=30
+      $ ${command} ${shadowNpmInject.isTestingV1() ? 'org 7' : '--scope=org --time=7'}
+      $ ${command} ${shadowNpmInject.isTestingV1() ? 'repo test-repo 30' : '--scope=org --time=30'}
+      $ ${command} ${shadowNpmInject.isTestingV1() ? '90' : '--scope=repo --repo=test-repo --time=30'}
   `
+      // Drop consecutive empty lines. Temporarily necessary to deal with v1 prep.
+      .replace(/\n(?: *\n)+/g, '\n\n')
 }
 const cmdAnalytics = {
   description: config$M.description,
@@ -1002,28 +1019,87 @@ async function run$M(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { file, json, markdown, repo, scope, time } = cli.flags
+  const { file, json, markdown } = cli.flags
+
+  // In v1 mode support:
+  // - []        (no args)
+  // - ['org']
+  // - ['org', '30']
+  // - ['repo', 'name']
+  // - ['repo', 'name', '30']
+  // - ['30']
+  // Validate final values in the next step
+  let scope = 'org'
+  let time = shadowNpmInject.isTestingV1() ? '7' : 7
+  let repoName = ''
+  if (shadowNpmInject.isTestingV1()) {
+    if (cli.input[0] === 'org') {
+      if (cli.input[1]) {
+        time = cli.input[1]
+      }
+    } else if (cli.input[0] === 'repo') {
+      scope = 'repo'
+      if (cli.input[1]) {
+        repoName = cli.input[1]
+      }
+      if (cli.input[2]) {
+        time = cli.input[2]
+      }
+    } else if (cli.input[0]) {
+      time = cli.input[0]
+    }
+  } else {
+    if (cli.flags['scope']) {
+      scope = String(cli.flags['scope'] || '')
+    }
+    if (scope === 'repo') {
+      repoName = String(cli.flags['repoName'] || '')
+    }
+    if (cli.flags['time']) {
+      time = Number(cli.flags['time'] || 7)
+    }
+  }
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
+      // In v1 this can't go wrong anymore since the unknown value goes to time
+      nook: !shadowNpmInject.isTestingV1(),
       test: scope === 'org' || scope === 'repo',
       message: 'Scope must be "repo" or "org"',
       pass: 'ok',
       fail: 'bad'
     },
     {
-      test: time === 7 || time === 30 || time === 90,
-      message: 'The time filter must either be 7, 30 or 90',
+      nook: true,
+      test: scope === 'org' || !!repoName,
+      message: shadowNpmInject.isTestingV1()
+        ? 'When scope=repo, repo name should be the second argument'
+        : 'When scope=repo, repo name should be set through --repo',
       pass: 'ok',
-      fail: 'bad'
+      fail: 'missing'
     },
     {
       nook: true,
-      test: scope === 'org' || !!repo,
-      message: 'When scope=repo, repo name should be set through --repo',
+      test:
+        scope === 'org' ||
+        (shadowNpmInject.isTestingV1() &&
+          repoName !== '7' &&
+          repoName !== '30' &&
+          repoName !== '90'),
+      message: 'Missing the repo name as second argument',
       pass: 'ok',
       fail: 'missing'
     },
+    {
+      test: shadowNpmInject.isTestingV1()
+        ? time === '7' || time === '30' || time === '90'
+        : time === 7 || time === 30 || time === 90,
+      message: 'The time filter must either be 7, 30 or 90',
+      pass: 'ok',
+      fail: shadowNpmInject.isTestingV1()
+        ? 'invalid range set, see --help for command arg details.'
+        : 'bad'
+    },
     {
       nook: true,
       test: file === '-' || !!json || !!markdown,
@@ -1056,22 +1132,14 @@ async function run$M(argv, importMeta, { parentName }) {
     logger.logger.log(DRY_RUN_BAIL_TEXT$J)
     return
   }
-  assert(assertScope(scope))
-  assert(assertTime(time))
   return await displayAnalytics({
     scope,
-    time,
-    repo: String(repo || ''),
+    time: time === '90' ? 90 : time === '30' ? 30 : 7,
+    repo: repoName,
     outputKind: json ? 'json' : markdown ? 'markdown' : 'print',
     filePath: String(file || '')
   })
 }
-function assertScope(scope) {
-  return scope === 'org' || scope === 'repo'
-}
-function assertTime(time) {
-  return time === 7 || time === 30 || time === 90
-}
 
 async function fetchAuditLog({ logType, orgSlug, outputKind, page, perPage }) {
   const sockSdk = await shadowNpmInject.setupSdk()
@@ -1228,12 +1296,92 @@ async function handleAuditLog({ logType, orgSlug, outputKind, page, perPage }) {
   })
 }
 
+async function suggestOrgSlug() {
+  const sockSdk = await shadowNpmInject.setupSdk()
+  const result = await handleApiCall(
+    sockSdk.getOrganizations(),
+    'looking up organizations'
+  )
+  // Ignore a failed request here. It was not the primary goal of
+  // running this command and reporting it only leads to end-user confusion.
+  if (result.success) {
+    const proceed = await prompts.select({
+      message:
+        'Missing org name; do you want to use any of these orgs for this scan?',
+      choices: [
+        ...Object.values(result.data.organizations).map(org => {
+          const slug = org.name ?? 'undefined'
+          return {
+            name: `Yes [${slug}]`,
+            value: slug,
+            description: `Use "${slug}" as the organization`
+          }
+        }),
+        {
+          name: 'No',
+          value: '',
+          description:
+            'Do not use any of these organizations (will end in a no-op)'
+        }
+      ]
+    })
+    if (proceed) {
+      return proceed
+    }
+  } else {
+    logger.logger.fail(
+      'Failed to lookup organization list from API, unable to suggest'
+    )
+  }
+}
+
+async function determineOrgSlug(orgFlag, firstArg, interactive, dryRun) {
+  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg') || ''
+  let orgSlug = String(orgFlag || defaultOrgSlug || '')
+  if (!orgSlug) {
+    if (shadowNpmInject.isTestingV1()) {
+      // ask from server
+      logger.logger.error(
+        'Missing the org slug and no --org flag set. Trying to auto-discover the org now...'
+      )
+      logger.logger.error(
+        'Note: you can set the default org slug to prevent this issue. You can also override all that with the --org flag.'
+      )
+      if (dryRun) {
+        logger.logger.fail('Skipping auto-discovery of org in dry-run mode')
+      } else if (!interactive) {
+        logger.logger.fail(
+          'Skipping auto-discovery of org when interactive = false'
+        )
+      } else {
+        orgSlug = (await suggestOrgSlug()) || ''
+      }
+    } else {
+      orgSlug = firstArg || ''
+    }
+  }
+  return [orgSlug, defaultOrgSlug]
+}
+
 const { DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$I } = constants
 const config$L = {
   commandName: 'audit-log',
   description: 'Look up the audit log for an organization',
   hidden: false,
   flags: {
+    ...commonFlags,
+    ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    },
     type: {
       type: 'string',
       shortFlag: 't',
@@ -1251,13 +1399,11 @@ const config$L = {
       shortFlag: 'p',
       default: 1,
       description: 'Page number - default is 1'
-    },
-    ...commonFlags,
-    ...outputFlags
+    }
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug>
+      $ ${command} ${shadowNpmInject.isTestingV1() ? '<repo>' : '<org slug>'}
 
     API Token Requirements
       - Quota: 1 unit
@@ -1270,7 +1416,7 @@ const config$L = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} FakeOrg
+      $ ${command} ${shadowNpmInject.isTestingV1() ? '' : 'FakeOrg'}
   `
 }
 const cmdAuditLog = {
@@ -1285,15 +1431,31 @@ async function run$L(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { json, markdown, page, perPage, type } = cli.flags
+  const {
+    dryRun,
+    interactive,
+    json,
+    markdown,
+    org: orgFlag,
+    page,
+    perPage,
+    type
+  } = cli.flags
   const logType = String(type || '')
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
+      nook: true,
       test: !!orgSlug,
-      message: 'Org name should be the first arg',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail: 'missing'
     },
@@ -1381,7 +1543,7 @@ async function runCycloneDX(yargvWithYes) {
   await shadowBin(NPX$3, [
     ...yesArgs,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_CYCLONEDX_CDXGEN_VERSION']".
-    `@cyclonedx/cdxgen@${'11.2.5'}`,
+    `@cyclonedx/cdxgen@${'11.2.6'}`,
     ...argvToArray(yargv)
   ])
   if (cleanupPackageLock) {
@@ -3604,7 +3766,13 @@ const config$C = {
         'Path to a local file where the output should be saved. Use `-` to force stdout.'
     }
   },
-  help: (command, config) => `
+  help: (command, config) =>
+    shadowNpmInject.isTestingV1()
+      ? 'This command will be removed in v1'
+      : `
+    Note: This command is deprecated, to be dropped in the next major bump.
+          Please see \`socket scan diff\`
+
     Usage
       $ ${command} <org slug> --before=<before> --after=<after>
 
@@ -5462,7 +5630,10 @@ const config$A = {
     ...outputFlags,
     ...validationFlags
   },
-  help: (command, config) => `
+  help: (command, config) =>
+    shadowNpmInject.isTestingV1()
+      ? 'This command will be removed in v1'
+      : `
     Usage
       $ ${command} <name>
 
@@ -8065,11 +8236,22 @@ const config$m = {
   hidden: true,
   flags: {
     ...commonFlags,
-    ...outputFlags
+    ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    }
   },
   help: (command, _config) => `
     Usage
-      $ ${command} <org slug>
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'}
 
     API Token Requirements
       - Quota: 1 unit
@@ -8082,8 +8264,8 @@ const config$m = {
     the request will fail with an authentication error.
 
     Examples
-      $ ${command} mycorp
-      $ ${command} mycorp --json
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' mycorp'}
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' mycorp'} --json
   `
 }
 const cmdOrganizationPolicyLicense = {
@@ -8098,16 +8280,21 @@ async function run$m(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const json = Boolean(cli.flags['json'])
-  const markdown = Boolean(cli.flags['markdown'])
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
+  const { dryRun, interactive, json, markdown, org: orgFlag } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
       nook: true,
       test: !!orgSlug,
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail: 'missing'
     },
@@ -8207,11 +8394,22 @@ const config$l = {
   hidden: true,
   flags: {
     ...commonFlags,
-    ...outputFlags
+    ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    }
   },
   help: (command, _config) => `
     Usage
-      $ ${command} <org slug>
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'}
 
     API Token Requirements
       - Quota: 1 unit
@@ -8224,8 +8422,8 @@ const config$l = {
     the request will fail with an authentication error.
 
     Examples
-      $ ${command} mycorp
-      $ ${command} mycorp --json
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' mycorp'}
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' mycorp'} --json
   `
 }
 const cmdOrganizationPolicyPolicy = {
@@ -8240,10 +8438,13 @@ async function run$l(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const json = Boolean(cli.flags['json'])
-  const markdown = Boolean(cli.flags['markdown'])
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
+  const { dryRun, interactive, json, markdown, org: orgFlag } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
@@ -9417,45 +9618,6 @@ async function handleCreateRepo({
   await outputCreateRepo()
 }
 
-async function suggestOrgSlug() {
-  const sockSdk = await shadowNpmInject.setupSdk()
-  const result = await handleApiCall(
-    sockSdk.getOrganizations(),
-    'looking up organizations'
-  )
-  // Ignore a failed request here. It was not the primary goal of
-  // running this command and reporting it only leads to end-user confusion.
-  if (result.success) {
-    const proceed = await prompts.select({
-      message:
-        'Missing org name; do you want to use any of these orgs for this scan?',
-      choices: [
-        ...Object.values(result.data.organizations).map(org => {
-          const slug = org.name ?? 'undefined'
-          return {
-            name: `Yes [${slug}]`,
-            value: slug,
-            description: `Use "${slug}" as the organization`
-          }
-        }),
-        {
-          name: 'No',
-          value: '',
-          description:
-            'Do not use any of these organizations (will end in a no-op)'
-        }
-      ]
-    })
-    if (proceed) {
-      return proceed
-    }
-  } else {
-    logger.logger.fail(
-      'Failed to lookup organization list from API, unable to suggest'
-    )
-  }
-}
-
 const { DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$d } = constants
 const config$d = {
   commandName: 'create',
@@ -9532,33 +9694,18 @@ async function run$d(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const interactive = cli.flags['interactive']
-  const dryRun = cli.flags['dryRun']
-  let orgSlug = String(cli.flags['org'] || defaultOrgSlug || '')
-  if (!orgSlug) {
-    if (shadowNpmInject.isTestingV1()) {
-      // ask from server
-      logger.logger.error(
-        'Missing the org slug and no --org flag set. Trying to auto-discover the org now...'
-      )
-      logger.logger.error(
-        'Note: you can set the default org slug to prevent this issue. You can also override all that with the --org flag.'
-      )
-      if (dryRun) {
-        logger.logger.fail('Skipping auto-discovery of org in dry-run mode')
-      } else if (!interactive) {
-        logger.logger.fail(
-          'Skipping auto-discovery of org when interactive = false'
-        )
-      } else {
-        orgSlug = (await suggestOrgSlug()) || ''
-      }
-    } else {
-      orgSlug = cli.input[0] || ''
-    }
-  }
-  const repoNameFlag = cli.flags['repoName']
+  const {
+    dryRun,
+    interactive,
+    org: orgFlag,
+    repoName: repoNameFlag
+  } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const repoName =
     (shadowNpmInject.isTestingV1() ? cli.input[0] : repoNameFlag) || ''
   const apiToken = shadowNpmInject.getDefaultToken()
@@ -9675,32 +9822,13 @@ async function run$c(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const interactive = cli.flags['interactive']
-  const dryRun = cli.flags['dryRun']
-  let orgSlug = String(cli.flags['org'] || defaultOrgSlug || '')
-  if (!orgSlug) {
-    if (shadowNpmInject.isTestingV1()) {
-      // ask from server
-      logger.logger.error(
-        'Missing the org slug and no --org flag set. Trying to auto-discover the org now...'
-      )
-      logger.logger.error(
-        'Note: you can set the default org slug to prevent this issue. You can also override all that with the --org flag.'
-      )
-      if (dryRun) {
-        logger.logger.fail('Skipping auto-discovery of org in dry-run mode')
-      } else if (!interactive) {
-        logger.logger.fail(
-          'Skipping auto-discovery of org when interactive = false'
-        )
-      } else {
-        orgSlug = (await suggestOrgSlug()) || ''
-      }
-    } else {
-      orgSlug = cli.input[0] || ''
-    }
-  }
+  const { dryRun, interactive, org: orgFlag } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const repoName =
     (defaultOrgSlug || shadowNpmInject.isTestingV1()
       ? cli.input[0]
@@ -9897,32 +10025,13 @@ async function run$b(argv, importMeta, { parentName }) {
     parentName
   })
   const { json, markdown } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const interactive = cli.flags['interactive']
-  const dryRun = cli.flags['dryRun']
-  let orgSlug = String(cli.flags['org'] || defaultOrgSlug || '')
-  if (!orgSlug) {
-    if (shadowNpmInject.isTestingV1()) {
-      // ask from server
-      logger.logger.error(
-        'Missing the org slug and no --org flag set. Trying to auto-discover the org now...'
-      )
-      logger.logger.error(
-        'Note: you can set the default org slug to prevent this issue. You can also override all that with the --org flag.'
-      )
-      if (dryRun) {
-        logger.logger.fail('Skipping auto-discovery of org in dry-run mode')
-      } else if (!interactive) {
-        logger.logger.fail(
-          'Skipping auto-discovery of org when interactive = false'
-        )
-      } else {
-        orgSlug = (await suggestOrgSlug()) || ''
-      }
-    } else {
-      orgSlug = cli.input[0] || ''
-    }
-  }
+  const { dryRun, interactive, org: orgFlag } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
@@ -10101,32 +10210,13 @@ async function run$a(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const interactive = cli.flags['interactive']
-  const dryRun = cli.flags['dryRun']
-  let orgSlug = String(cli.flags['org'] || defaultOrgSlug || '')
-  if (!orgSlug) {
-    if (shadowNpmInject.isTestingV1()) {
-      // ask from server
-      logger.logger.error(
-        'Missing the org slug and no --org flag set. Trying to auto-discover the org now...'
-      )
-      logger.logger.error(
-        'Note: you can set the default org slug to prevent this issue. You can also override all that with the --org flag.'
-      )
-      if (dryRun) {
-        logger.logger.fail('Skipping auto-discovery of org in dry-run mode')
-      } else if (!interactive) {
-        logger.logger.fail(
-          'Skipping auto-discovery of org when interactive = false'
-        )
-      } else {
-        orgSlug = (await suggestOrgSlug()) || ''
-      }
-    } else {
-      orgSlug = cli.input[0] || ''
-    }
-  }
+  const { dryRun, interactive, org: orgFlag } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const repoNameFlag = cli.flags['repoName']
   const repoName =
     (shadowNpmInject.isTestingV1() ? cli.input[0] : repoNameFlag) || ''
@@ -10323,34 +10413,20 @@ async function run$9(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { json, markdown } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const interactive = cli.flags['interactive']
-  const dryRun = cli.flags['dryRun']
-  let orgSlug = String(cli.flags['org'] || defaultOrgSlug || '')
-  if (!orgSlug) {
-    if (shadowNpmInject.isTestingV1()) {
-      // ask from server
-      logger.logger.error(
-        'Missing the org slug and no --org flag set. Trying to auto-discover the org now...'
-      )
-      logger.logger.error(
-        'Note: you can set the default org slug to prevent this issue. You can also override all that with the --org flag.'
-      )
-      if (dryRun) {
-        logger.logger.fail('Skipping auto-discovery of org in dry-run mode')
-      } else if (!interactive) {
-        logger.logger.fail(
-          'Skipping auto-discovery of org when interactive = false'
-        )
-      } else {
-        orgSlug = (await suggestOrgSlug()) || ''
-      }
-    } else {
-      orgSlug = cli.input[0] || ''
-    }
-  }
-  const repoNameFlag = cli.flags['repoName']
+  const {
+    dryRun,
+    interactive,
+    json,
+    markdown,
+    org: orgFlag,
+    repoName: repoNameFlag
+  } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const repoName =
     (shadowNpmInject.isTestingV1() ? cli.input[0] : repoNameFlag) || ''
   const apiToken = shadowNpmInject.getDefaultToken()
@@ -10515,6 +10591,11 @@ const config$8 = {
       shortFlag: 'pr',
       description: 'Commit hash'
     },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    },
     readOnly: {
       type: 'boolean',
       default: false,
@@ -10544,7 +10625,7 @@ const config$8 = {
   // TODO: your project's "socket.yml" file's "projectIgnorePaths"
   help: (command, config) => `
     Usage
-      $ ${command} [...options] <org> <TARGET> [TARGET...]
+      $ ${command} [...options]${shadowNpmInject.isTestingV1() ? '' : ' <org>'} <TARGET> [TARGET...]
 
     API Token Requirements
       - Quota: 1 unit
@@ -10577,7 +10658,8 @@ const config$8 = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} --repo=test-repo --branch=main FakeOrg ./package.json
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} .
+      $ ${command} --repo=test-repo --branch=main${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} ./package.json
   `
 }
 const cmdScanCreate = {
@@ -10599,10 +10681,11 @@ async function run$8(argv, importMeta, { parentName }) {
     committers,
     cwd: cwdOverride,
     defaultBranch,
-    dryRun,
+    dryRun = false,
     interactive = true,
     json,
     markdown,
+    org: orgFlag,
     pendingHead,
     pullRequest,
     readOnly,
@@ -10610,9 +10693,19 @@ async function run$8(argv, importMeta, { parentName }) {
     report,
     tmp
   } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  let orgSlug = defaultOrgSlug || cli.input[0] || ''
-  let targets = cli.input.slice(defaultOrgSlug ? 0 : 1)
+  let [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    interactive,
+    dryRun
+  )
+  if (!defaultOrgSlug) {
+    // Tmp. just for TS. will drop this later.
+    defaultOrgSlug = ''
+  }
+  let targets = cli.input.slice(
+    shadowNpmInject.isTestingV1() || defaultOrgSlug ? 0 : 1
+  )
   const cwd =
     cwdOverride && cwdOverride !== 'process.cwd()'
       ? String(cwdOverride)
@@ -10656,9 +10749,11 @@ async function run$8(argv, importMeta, { parentName }) {
   }
   const wasBadInput = handleBadInput(
     {
-      nook: !!defaultOrgSlug,
+      nook: !shadowNpmInject.isTestingV1() && !!defaultOrgSlug,
       test: !!orgSlug && orgSlug !== '.',
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail:
         orgSlug === '.'
@@ -10772,11 +10867,22 @@ const config$7 = {
   hidden: false,
   flags: {
     ...commonFlags,
-    ...outputFlags
+    ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    }
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug> <scan ID>
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'} <scan ID>
 
     API Token Requirements
       - Quota: 1 unit
@@ -10786,7 +10892,7 @@ const config$7 = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} FakeOrg 000aaaa1-0000-0a0a-00a0-00a0000000a0
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} 000aaaa1-0000-0a0a-00a0-00a0000000a0
   `
 }
 const cmdScanDel = {
@@ -10801,15 +10907,25 @@ async function run$7(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
-  const scanId = (defaultOrgSlug ? cli.input[0] : cli.input[1]) || ''
+  const { dryRun, interactive, org: orgFlag } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
+  const scanId =
+    (shadowNpmInject.isTestingV1() || defaultOrgSlug
+      ? cli.input[0]
+      : cli.input[1]) || ''
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
       nook: !!defaultOrgSlug,
       test: !!orgSlug && orgSlug !== '.',
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail:
         orgSlug === '.'
@@ -11094,11 +11210,22 @@ const config$6 = {
       default: '',
       description:
         'Path to a local file where the output should be saved. Use `-` to force stdout.'
+    },
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
     }
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug> <ID1> <ID2>
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'} <ID1> <ID2>
 
     API Token Requirements
       - Quota: 1 unit
@@ -11115,8 +11242,8 @@ const config$6 = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} FakeCorp aaa0aa0a-aaaa-0000-0a0a-0000000a00a0 aaa1aa1a-aaaa-1111-1a1a-1111111a11a1
-      $ ${command} FakeCorp aaa0aa0a-aaaa-0000-0a0a-0000000a00a0 aaa1aa1a-aaaa-1111-1a1a-1111111a11a1 --json
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} aaa0aa0a-aaaa-0000-0a0a-0000000a00a0 aaa1aa1a-aaaa-1111-1a1a-1111111a11a1
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} aaa0aa0a-aaaa-0000-0a0a-0000000a00a0 aaa1aa1a-aaaa-1111-1a1a-1111111a11a1 --json
   `
 }
 const cmdScanDiff = {
@@ -11131,9 +11258,21 @@ async function run$6(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { depth, file, json, markdown } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
+  const {
+    depth,
+    dryRun,
+    file,
+    interactive,
+    json,
+    markdown,
+    org: orgFlag
+  } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   let id1 = cli.input[defaultOrgSlug ? 0 : 1] || ''
   let id2 = cli.input[defaultOrgSlug ? 1 : 2] || ''
   if (id1.startsWith(SOCKET_SBOM_URL_PREFIX)) {
@@ -11159,7 +11298,9 @@ async function run$6(argv, importMeta, { parentName }) {
     {
       test: !!orgSlug,
       nook: true,
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail: 'missing'
     },
@@ -11340,6 +11481,12 @@ const config$5 = {
       default: '',
       description: 'From time - as a unix timestamp'
     },
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
     page: {
       type: 'number',
       shortFlag: 'p',
@@ -11352,6 +11499,11 @@ const config$5 = {
       default: 30,
       description: 'Results per page - Default is 30'
     },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    },
     repo: {
       type: 'string',
       description: 'Filter to show only scans with this repository name'
@@ -11372,7 +11524,7 @@ const config$5 = {
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug>
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'}
 
     API Token Requirements
       - Quota: 1 unit
@@ -11382,7 +11534,7 @@ const config$5 = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} FakeOrg
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'}
   `
 }
 const cmdScanList = {
@@ -11397,15 +11549,29 @@ async function run$5(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { branch, json, markdown, repo } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
+  const {
+    branch,
+    dryRun,
+    interactive,
+    json,
+    markdown,
+    org: orgFlag,
+    repo
+  } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
       nook: !!defaultOrgSlug,
       test: !!orgSlug && orgSlug !== '.',
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail:
         orgSlug === '.'
@@ -11516,11 +11682,22 @@ const config$4 = {
   hidden: false,
   flags: {
     ...commonFlags,
-    ...outputFlags
+    ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    }
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug> <scan ID>
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'} <scan ID>
 
     API Token Requirements
       - Quota: 1 unit
@@ -11530,7 +11707,7 @@ const config$4 = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} FakeOrg 000aaaa1-0000-0a0a-00a0-00a0000000a0
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} 000aaaa1-0000-0a0a-00a0-00a0000000a0
   `
 }
 const cmdScanMetadata = {
@@ -11545,16 +11722,25 @@ async function run$4(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { json, markdown } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
-  const scanId = (defaultOrgSlug ? cli.input[0] : cli.input[1]) || ''
+  const { dryRun, interactive, json, markdown, org: orgFlag } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
+  const scanId =
+    (shadowNpmInject.isTestingV1() || defaultOrgSlug
+      ? cli.input[0]
+      : cli.input[1]) || ''
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
       nook: !!defaultOrgSlug,
       test: !!orgSlug && orgSlug !== '.',
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail:
         orgSlug === '.'
@@ -11611,6 +11797,17 @@ const config$3 = {
       default: 'none',
       description: 'Fold reported alerts to some degree'
     },
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    },
     reportLevel: {
       type: 'string',
       default: 'warn',
@@ -11629,7 +11826,7 @@ const config$3 = {
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug> <scan ID> [path to output file]
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'} <scan ID> [path to output file]
 
     API Token Requirements
       - Quota: 2 units
@@ -11648,8 +11845,8 @@ const config$3 = {
     Short responses: JSON: \`{healthy:bool}\`, markdown: \`healthy = bool\`, text: \`OK/ERR\`
 
     Examples
-      $ ${command} FakeOrg 000aaaa1-0000-0a0a-00a0-00a0000000a0 --json --fold=version
-      $ ${command} FakeOrg 000aaaa1-0000-0a0a-00a0-00a0000000a0 --license --markdown --short
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} 000aaaa1-0000-0a0a-00a0-00a0000000a0 --json --fold=version
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} 000aaaa1-0000-0a0a-00a0-00a0000000a0 --license --markdown --short
   `
 }
 const cmdScanReport = {
@@ -11671,16 +11868,29 @@ async function run$3(argv, importMeta, { parentName }) {
     markdown,
     reportLevel = 'warn'
   } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
-  const scanId = (defaultOrgSlug ? cli.input[0] : cli.input[1]) || ''
-  const file = (defaultOrgSlug ? cli.input[1] : cli.input[2]) || '-'
+  const { dryRun, interactive, org: orgFlag } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
+  const scanId =
+    (shadowNpmInject.isTestingV1() || defaultOrgSlug
+      ? cli.input[0]
+      : cli.input[1]) || ''
+  const file =
+    (shadowNpmInject.isTestingV1() || defaultOrgSlug
+      ? cli.input[1]
+      : cli.input[2]) || '-'
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
       nook: !!defaultOrgSlug,
       test: !!orgSlug && orgSlug !== '.',
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail:
         orgSlug === '.'
@@ -11839,11 +12049,22 @@ const config$2 = {
   hidden: false,
   flags: {
     ...commonFlags,
-    ...outputFlags
+    ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    }
   },
   help: (command, config) => `
     Usage
-      $ ${command} <org slug> <scan ID> [path to output file]
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'} <scan ID> [path to output file]
 
     API Token Requirements
       - Quota: 1 unit
@@ -11855,7 +12076,7 @@ const config$2 = {
       ${getFlagListOutput(config.flags, 6)}
 
     Examples
-      $ ${command} FakeOrg 000aaaa1-0000-0a0a-00a0-00a0000000a0 ./stream.txt
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} 000aaaa1-0000-0a0a-00a0-00a0000000a0 ./stream.txt
   `
 }
 const cmdScanView = {
@@ -11870,17 +12091,29 @@ async function run$2(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { json, markdown } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
-  const scanId = (defaultOrgSlug ? cli.input[0] : cli.input[1]) || ''
-  const file = (defaultOrgSlug ? cli.input[1] : cli.input[2]) || '-'
+  const { dryRun, interactive, json, markdown, org: orgFlag } = cli.flags
+  const [orgSlug, defaultOrgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
+  const scanId =
+    (shadowNpmInject.isTestingV1() || defaultOrgSlug
+      ? cli.input[0]
+      : cli.input[1]) || ''
+  const file =
+    (shadowNpmInject.isTestingV1() || defaultOrgSlug
+      ? cli.input[1]
+      : cli.input[2]) || '-'
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
       nook: !!defaultOrgSlug,
       test: !!orgSlug && orgSlug !== '.',
-      message: 'Org name as the first argument',
+      message: shadowNpmInject.isTestingV1()
+        ? 'Org name by default setting, --org, or auto-discovered'
+        : 'Org name must be the first argument',
       pass: 'ok',
       fail:
         orgSlug === '.'
@@ -12168,6 +12401,17 @@ const config$1 = {
   flags: {
     ...commonFlags,
     ...outputFlags,
+    interactive: {
+      type: 'boolean',
+      default: true,
+      description:
+        'Allow for interactive elements, asking for input. Use --no-interactive to prevent any input questions, defaulting them to cancel/no.'
+    },
+    org: {
+      type: 'string',
+      description:
+        'Force override the organization slug, overrides the default org from config'
+    },
     perPage: {
       type: 'number',
       shortFlag: 'pp',
@@ -12201,7 +12445,7 @@ const config$1 = {
   },
   help: (command, config) => `
     Usage
-      $ ${command}
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' <org slug>'}
 
     API Token Requirements
       - Quota: 1 unit
@@ -12238,8 +12482,8 @@ const config$1 = {
       - pypi
 
     Examples
-      $ ${command}
-      $ ${command} --perPage=5 --page=2 --direction=asc --filter=joke
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'}
+      $ ${command}${shadowNpmInject.isTestingV1() ? '' : ' FakeOrg'} --perPage=5 --page=2 --direction=asc --filter=joke
   `
 }
 const cmdThreatFeed = {
@@ -12254,9 +12498,13 @@ async function run$1(argv, importMeta, { parentName }) {
     importMeta,
     parentName
   })
-  const { json, markdown } = cli.flags
-  const defaultOrgSlug = shadowNpmInject.getConfigValue('defaultOrg')
-  const orgSlug = defaultOrgSlug || cli.input[0] || ''
+  const { dryRun, interactive, json, markdown, org: orgFlag } = cli.flags
+  const [orgSlug] = await determineOrgSlug(
+    String(orgFlag || ''),
+    cli.input[0] || '',
+    !!interactive,
+    !!dryRun
+  )
   const apiToken = shadowNpmInject.getDefaultToken()
   const wasBadInput = handleBadInput(
     {
@@ -12508,7 +12756,7 @@ void (async () => {
   await vendor.updater({
     name: SOCKET_CLI_BIN_NAME,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-    version: '0.14.149',
+    version: '0.14.150',
     ttl: 86_400_000 /* 24 hours in milliseconds */
   })
   try {
@@ -12576,5 +12824,5 @@ void (async () => {
     await shadowNpmInject.captureException(e)
   }
 })()
-//# debugId=b16c9682-c6cb-499e-9433-037f8e571bc1
+//# debugId=835d04cb-7542-4f21-978b-70fe4fe52a4e
 //# sourceMappingURL=cli.js.map