@socketsecurity/cli-with-sentry 0.14.50 → 0.14.52

package/dist/require/cli.js

@@ -15,6 +15,7 @@ var require$$0 = require('node:url');
 var ponyCause = _socketInterop(require('pony-cause'));
 var vendor = require('./vendor.js');
 var colors = _socketInterop(require('yoctocolors-cjs'));
+var logger = require('@socketsecurity/registry/lib/logger');
 var micromatch = _socketInterop(require('micromatch'));
 var simpleGit = _socketInterop(require('simple-git'));
 var sdk = require('@socketsecurity/sdk');
@@ -23,13 +24,12 @@ var fs = require('node:fs');
 var path = require('node:path');
 var ndjson = _socketInterop(require('ndjson'));
 var index = require('./index.js');
+var constants = require('./constants.js');
 var objects = require('@socketsecurity/registry/lib/objects');
 var regexps = require('@socketsecurity/registry/lib/regexps');
-var constants = require('./constants.js');
 var fs$1 = require('node:fs/promises');
 var ScreenWidget = _socketInterop(require('blessed/lib/widgets/screen'));
 var contrib = _socketInterop(require('blessed-contrib'));
-var spinner = require('@socketsecurity/registry/lib/spinner');
 var prompts = require('@socketsecurity/registry/lib/prompts');
 var yargsParse = _socketInterop(require('yargs-parser'));
 var words = require('@socketsecurity/registry/lib/words');
@@ -52,8 +52,9 @@ var index_cjs = require('@socketregistry/hyrious__bun.lockb/index.cjs');
 var sorts = require('@socketsecurity/registry/lib/sorts');
 var strings = require('@socketsecurity/registry/lib/strings');
 var yaml = _socketInterop(require('yaml'));
-var npmPaths = require('./npm-paths.js');
+var debug = require('@socketsecurity/registry/lib/debug');
 var npm$1 = require('./npm.js');
+var npmPaths = require('./npm-paths.js');
 var betterAjvErrors = _socketInterop(require('@apideck/better-ajv-errors'));
 var config$A = require('@socketsecurity/config');
 var assert = require('node:assert');
@@ -263,7 +264,6 @@ class Score {
 }
 
 // https://github.com/SocketDev/socket-python-cli/blob/6d4fc56faee68d3a4764f1f80f84710635bdaf05/socketsecurity/core/__init__.py
-/* eslint-disable no-await-in-loop */
 class Core {
   securityPolicy = {};
   constructor({
@@ -558,6 +558,7 @@ class Core {
         diff.newPackages.push(purl);
         consolidated.add(basePurl);
       }
+      // eslint-disable-next-line no-await-in-loop
       newScanAlerts = await this.createIssueAlerts({
         pkg,
         alerts: newScanAlerts,
@@ -575,6 +576,7 @@ class Core {
       if (!(packageId in newPackages) && pkg.direct) {
         diff.removedPackages.push(purl);
       }
+      // eslint-disable-next-line no-await-in-loop
       headScanAlerts = await this.createIssueAlerts({
         pkg,
         alerts: headScanAlerts,
@@ -640,7 +642,7 @@ class Core {
         license: sbomArtifact.license
       });
       if (pkg.id in packages) {
-        console.log('Duplicate package?');
+        logger.logger.log('Duplicate package?');
       } else {
         pkg = this.getLicenseDetails({
           package: pkg
@@ -680,8 +682,8 @@ class Core {
           });
         }
       }
-    } catch (error) {
-      console.error(error);
+    } catch (e) {
+      logger.logger.error(e);
     }
     const newFullScan = await this.createFullScan({
       params
@@ -705,7 +707,6 @@ class Core {
 }
 
 // https://github.com/SocketDev/socket-python-cli/blob/6d4fc56faee68d3a4764f1f80f84710635bdaf05/socketsecurity/core/scm_comments.py
-
 function checkForSocketComments({
   comments
 }) {
@@ -835,9 +836,9 @@ function getIgnoreOptions({
           const data = `${name}/${version}`;
           ignoreCommands.push(data);
         }
-      } catch (error) {
-        console.error(`Unable to process ignore command for ${comment}`);
-        console.error(error);
+      } catch (e) {
+        logger.logger.error(`Unable to process ignore command for ${comment}`);
+        logger.logger.error(e);
       }
     }
   }
@@ -868,9 +869,9 @@ function removeAlerts({
       const purl = `${fullName}/${alert.pkg_version}`;
       const purlStar = `${fullName}/*`;
       if (ignoreCommands.includes(purl) || ignoreCommands.includes(purlStar)) {
-        console.log(`Alerts for ${alert.pkg_name}@${alert.pkg_version} ignored`);
+        logger.logger.log(`Alerts for ${alert.pkg_name}@${alert.pkg_version} ignored`);
       } else {
-        console.log(`Adding alert ${alert.type} for ${alert.pkg_name}@${alert.pkg_version}`);
+        logger.logger.log(`Adding alert ${alert.type} for ${alert.pkg_name}@${alert.pkg_version}`);
         alerts.push(alert);
       }
     }
@@ -908,7 +909,7 @@ class GitHub {
         if (['opened', 'synchronize'].includes(eventAction)) {
           return 'diff';
         } else {
-          console.log(`Pull request action: ${eventAction} is not supported`);
+          logger.logger.log(`Pull request action: ${eventAction} is not supported`);
           process.exit();
         }
       case 'issue_comment':
@@ -1023,30 +1024,30 @@ class GitHub {
       security: existingSecurityComment
     } = comments;
     if (newOverviewComment) {
-      console.log('New Dependency Overview comment');
+      logger.logger.log('New Dependency Overview comment');
       if (existingOverviewComment !== undefined) {
-        console.log('Previous version of Dependency Overview, updating');
+        logger.logger.log('Previous version of Dependency Overview, updating');
         await this.updateComment({
           body: overviewComment,
           id: existingOverviewComment.id
         });
       } else {
-        console.log('No previous version of Dependency Overview, posting');
+        logger.logger.log('No previous version of Dependency Overview, posting');
         await this.postComment({
           body: overviewComment
         });
       }
     }
     if (newSecurityComment) {
-      console.log('New Security Issue Comment');
+      logger.logger.log('New Security Issue Comment');
       if (existingSecurityComment !== undefined) {
-        console.log('Previous version of Security Issue comment, updating');
+        logger.logger.log('Previous version of Security Issue comment, updating');
         await this.updateComment({
           body: securityComment,
           id: existingSecurityComment.id
         });
       } else {
-        console.log('No Previous version of Security Issue comment, posting');
+        logger.logger.log('No Previous version of Security Issue comment, posting');
         await this.postComment({
           body: securityComment
         });
@@ -1225,7 +1226,7 @@ async function runAction(githubEventBefore, githubEventAfter) {
   const socket = new sdk.SocketSdk(index.getDefaultToken());
   const git = simpleGit.simpleGit();
   const changedFiles = (await git.diff(process.env['GITHUB_EVENT_NAME'] === 'pull_request' ? ['--name-only', 'HEAD^1', 'HEAD'] : ['--name-only', githubEventBefore, githubEventAfter])).split('\n');
-  console.log({
+  logger.logger.log({
     changedFiles
   });
   // supportedFiles have 3-level deep globs
@@ -1233,13 +1234,13 @@ async function runAction(githubEventBefore, githubEventAfter) {
   const files = micromatch(changedFiles, patterns);
   const scm = new GitHub();
   if (scm.checkEventType() === 'comment') {
-    console.log('Comment initiated flow');
+    logger.logger.log('Comment initiated flow');
     const comments = await scm.getCommentsForPR();
     await scm.removeCommentAlerts({
       comments
     });
   } else if (scm.checkEventType() === 'diff') {
-    console.log('Push initiated flow');
+    logger.logger.log('Push initiated flow');
     const core = new Core({
       owner: scm.owner,
       repo: scm.repo,
@@ -1261,17 +1262,17 @@ async function runAction(githubEventBefore, githubEventAfter) {
     if (diff.newAlerts.length === 0) {
       if (!updateOldSecurityComment) {
         newSecurityComment = false;
-        console.log('No new alerts or security issue comment disabled');
+        logger.logger.log('No new alerts or security issue comment disabled');
       } else {
-        console.log('Updated security comment with no new alerts');
+        logger.logger.log('Updated security comment with no new alerts');
       }
     }
     if (diff.newPackages.length === 0 && diff.removedPackages.length === 0) {
       if (!updateOldOverviewComment) {
         newOverviewComment = false;
-        console.log('No new/removed packages or Dependency Overview comment disabled');
+        logger.logger.log('No new/removed packages or Dependency Overview comment disabled');
       } else {
-        console.log('Updated overview comment with no dependencies');
+        logger.logger.log('Updated overview comment with no dependencies');
       }
     }
     await scm.addSocketComments({
@@ -1399,6 +1400,8 @@ const validationFlags = {
 };
 
 const {
+  DRY_RUN_LABEL: DRY_RUN_LABEL$1,
+  REDACTED,
   SOCKET_CLI_SHOW_BANNER
 } = constants;
 async function meowWithSubcommands(subcommands, options) {
@@ -1436,7 +1439,7 @@ async function meowWithSubcommands(subcommands, options) {
   // Temp disable until we clear the --json and --markdown usage
   // Lazily access constants.ENV[SOCKET_CLI_SHOW_BANNER].
   if (constants.ENV[SOCKET_CLI_SHOW_BANNER]) {
-    console.log(getAsciiHeader(name));
+    logger.logger.log(getAsciiHeader(name));
   }
   const cli = vendor.meow(`
     Usage
@@ -1472,7 +1475,7 @@ async function meowWithSubcommands(subcommands, options) {
     autoHelp: false // otherwise we can't exit(0)
   });
   if (!cli.flags['help'] && cli.flags['dryRun']) {
-    console.log('[DryRun]: noop, call a sub-command; ok');
+    logger.logger.log(`${DRY_RUN_LABEL$1}: No-op, call a sub-command; ok`);
     process.exitCode = 0;
   } else {
     cli.showHelp();
@@ -1494,7 +1497,7 @@ function meowOrExit({
   // Temp disable until we clear the --json and --markdown usage.
   // Lazily access constants.ENV[SOCKET_CLI_SHOW_BANNER].
   if (constants.ENV[SOCKET_CLI_SHOW_BANNER]) {
-    console.log(getAsciiHeader(command));
+    logger.logger.log(getAsciiHeader(command));
   }
 
   // This exits if .printHelp() is called either by meow itself or by us.
@@ -1514,7 +1517,7 @@ function meowOrExit({
 }
 function getAsciiHeader(command) {
   const cliVersion = // The '@rollup/plugin-replace' will replace "process.env['SOCKET_CLI_VERSION_HASH']".
-  "0.14.50:c8e152a:9126d091:pub";
+  "0.14.52:709a145:a30d9dfd:pub";
   const nodeVersion = process.version;
   const apiToken = index.getSetting('apiToken');
   const shownToken = apiToken ? getLastFiveOfApiToken(apiToken) : 'no';
@@ -1529,6 +1532,9 @@ function getAsciiHeader(command) {
 
 // https://github.com/SocketDev/socket-python-cli/blob/6d4fc56faee68d3a4764f1f80f84710635bdaf05/socketsecurity/socketcli.py
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$y
+} = constants;
 const config$z = {
   commandName: 'action',
   description: 'Socket action command',
@@ -1579,7 +1585,8 @@ async function run$z(argv, importMeta, {
   const githubEventBefore = String(cli.flags['githubEventBefore'] || '');
   const githubEventAfter = String(cli.flags['githubEventAfter'] || '');
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$y);
+    return;
   }
   await runAction(githubEventBefore, githubEventAfter);
 }
@@ -1597,24 +1604,26 @@ async function displayAnalytics({
   scope,
   time
 }) {
-  const spinner$1 = new spinner.Spinner({
-    text: 'Fetching analytics data'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Fetching analytics data');
   let data;
   if (scope === 'org') {
-    data = await fetchOrgAnalyticsData(time, spinner$1, apiToken);
+    data = await fetchOrgAnalyticsData(time, spinner, apiToken);
   } else if (repo) {
-    data = await fetchRepoAnalyticsData(repo, time, spinner$1, apiToken);
+    data = await fetchRepoAnalyticsData(repo, time, spinner, apiToken);
   }
   if (data) {
     if (outputJson && !filePath) {
-      console.log(data);
+      logger.logger.log(data);
     } else if (filePath) {
       try {
         await fs$1.writeFile(filePath, JSON.stringify(data), 'utf8');
-        console.log(`Data successfully written to ${filePath}`);
+        logger.logger.log(`Data successfully written to ${filePath}`);
       } catch (e) {
-        console.error(e);
+        logger.logger.error(e);
       }
     } else {
       const fdata = scope === 'org' ? formatData(data, 'org') : formatData(data, 'repo');
@@ -1663,7 +1672,7 @@ async function fetchOrgAnalyticsData(time, spinner, apiToken) {
   }
   spinner.stop();
   if (!result.data.length) {
-    console.log('No analytics data is available for this organization yet.');
+    logger.logger.log('No analytics data is available for this organization yet.');
     return undefined;
   }
   return result.data;
@@ -1677,7 +1686,7 @@ async function fetchRepoAnalyticsData(repo, time, spinner, apiToken) {
   }
   spinner.stop();
   if (!result.data.length) {
-    console.log('No analytics data is available for this organization yet.');
+    logger.logger.log('No analytics data is available for this organization yet.');
     return undefined;
   }
   return result.data;
@@ -1773,6 +1782,9 @@ function renderLineCharts(grid, screen, title, coords, data) {
   line.setData([lineData]);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$x
+} = constants;
 const config$y = {
   commandName: 'analytics',
   description: `Look up analytics data`,
@@ -1850,14 +1862,15 @@ async function run$y(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Scope must be "repo" or "org" ${badScope ? colors.red('(bad!)') : colors.green('(ok)')}\n
       - The time filter must either be 7, 30 or 90 ${badTime ? colors.red('(bad!)') : colors.green('(ok)')}\n
       - Repository name using --repo when scope is "repo" ${badRepo ? colors.red('(bad!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$x);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -1882,9 +1895,11 @@ async function getAuditLog({
   perPage,
   type
 }) {
-  const spinner$1 = new spinner.Spinner({
-    text: `Looking up audit log for ${orgSlug}\n`
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start(`Looking up audit log for ${orgSlug}`);
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getAuditLogEvents(orgSlug, {
     outputJson,
@@ -1895,10 +1910,10 @@ async function getAuditLog({
     per_page: perPage
   }), `Looking up audit log for ${orgSlug}\n`);
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getAuditLogEvents', result, spinner$1);
+    handleUnsuccessfulApiResponse('getAuditLogEvents', result, spinner);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   const data = [];
   const logDetails = {};
   for (const d of result.data.results) {
@@ -1917,13 +1932,16 @@ async function getAuditLog({
       logDetails[name] = JSON.stringify(d.payload);
     }
   }
-  console.log(logDetails[await prompts.select({
+  logger.logger.log(logDetails[await prompts.select({
     message: type ? `\n Audit log for: ${orgSlug} with type: ${type}\n` : `\n Audit log for: ${orgSlug}\n`,
     choices: data,
     pageSize: 30
   })]);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$w
+} = constants;
 const config$x = {
   commandName: 'audit-log',
   description: 'Look up the audit log for an organization',
@@ -1982,12 +2000,13 @@ async function run$x(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
     - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$w);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -2049,7 +2068,7 @@ async function runCycloneDX(yargv) {
   }
   const fullOutputPath = path.join(process$1.cwd(), yargv.output);
   if (fs.existsSync(fullOutputPath)) {
-    console.log(colors.cyanBright(`${yargv.output} created!`));
+    logger.logger.log(colors.cyanBright(`${yargv.output} created!`));
   }
 }
 function argvToArray(argv) {
@@ -2079,6 +2098,10 @@ function argvToArray(argv) {
 }
 
 // import { meowOrExit } from '../../utils/meow-with-subcommands'
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$v
+} = constants;
+
 // TODO: convert yargs to meow. Or convert all the other things to yargs.
 const toLower = arg => arg.toLowerCase();
 const arrayToLower = arg => arg.map(toLower);
@@ -2183,7 +2206,7 @@ async function run$w(argv, importMeta, {
   //
   //
   // if (cli.input.length)
-  //   console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+  //   logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
   //     - Unexpected arguments\n
   //   `)
   //   config.help(parentName, config)
@@ -2204,14 +2227,15 @@ async function run$w(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process$1.exitCode = 2;
-    console.error(`Unknown ${words.pluralize('argument', unknownLength)}: ${yargv._.join(', ')}`);
+    logger.logger.error(`Unknown ${words.pluralize('argument', unknownLength)}: ${yargv._.join(', ')}`);
     return;
   }
   if (yargv.output === undefined) {
     yargv.output = 'socket-cdx.json';
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$v);
+    return;
   }
   await runCycloneDX(yargv);
 }
@@ -2226,21 +2250,23 @@ async function findDependencies({
   if (!apiToken) {
     throw new index.AuthError('User must be authenticated to run this command. To log in, run the command `socket login` and enter your API key.');
   }
-  const spinner$1 = new spinner.Spinner({
-    text: 'Searching dependencies...'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Searching dependencies...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.searchDependencies({
     limit,
     offset
   }), 'Searching dependencies');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('searchDependencies', result, spinner$1);
+    handleUnsuccessfulApiResponse('searchDependencies', result, spinner);
     return;
   }
-  spinner$1.stop('Organization dependencies:');
+  spinner.stop('Organization dependencies:');
   if (outputJson) {
-    console.log(result.data);
+    logger.logger.log(result.data);
     return;
   }
   const options = {
@@ -2267,9 +2293,12 @@ async function findDependencies({
       name: colors.cyan('Direct')
     }]
   };
-  console.log(chalkTable(options, result.data.rows));
+  logger.logger.log(chalkTable(options, result.data.rows));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$u
+} = constants;
 const config$v = {
   commandName: 'dependencies',
   description: 'Search for any dependency that is being used in your organization',
@@ -2316,7 +2345,8 @@ async function run$v(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$u);
+    return;
   }
 
   // TODO: markdown flag is ignored
@@ -2334,40 +2364,44 @@ async function getDiffScan({
   orgSlug,
   outputJson
 }, apiToken) {
-  const spinnerText = 'Getting diff scan... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Getting diff scan...');
   const response = await queryAPI(`${orgSlug}/full-scans/diff?before=${before}&after=${after}&preview`, apiToken);
   const data = await response.json();
   if (!response.ok) {
     const err = await handleAPIError(response.status);
-    spinner$1.errorAndStop(`${colors.bgRed(colors.white(response.statusText))}: ${err}`);
+    spinner.errorAndStop(`${colors.bgRed(colors.white(response.statusText))}: ${err}`);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   if (file && !outputJson) {
     fs.writeFile(file, JSON.stringify(data), err => {
-      err ? console.error(err) : console.log(`Data successfully written to ${file}`);
+      err ? logger.logger.error(err) : logger.logger.log(`Data successfully written to ${file}`);
     });
     return;
   }
   if (outputJson) {
-    console.log(`\n Diff scan result: \n`);
-    console.log(require$$0$1.inspect(data, {
+    logger.logger.log(`\n Diff scan result: \n`);
+    logger.logger.log(require$$0$1.inspect(data, {
       showHidden: false,
       depth: null,
       colors: true
     }));
-    console.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
+    logger.logger.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
     return;
   }
-  console.log('Diff scan result:');
-  console.log(data);
-  console.log(`\n 📝 To display the detailed report in the terminal, use the --json flag \n`);
-  console.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
+  logger.logger.log('Diff scan result:');
+  logger.logger.log(data);
+  logger.logger.log(`\n 📝 To display the detailed report in the terminal, use the --json flag \n`);
+  logger.logger.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$t
+} = constants;
 const config$u = {
   commandName: 'get',
   description: 'Get a diff scan for an organization',
@@ -2433,14 +2467,15 @@ async function run$u(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Specify a before and after full scan ID ${!before && !after ? colors.red('(missing before and after!)') : !before ? colors.red('(missing before!)') : !after ? colors.red('(missing after!)') : colors.green('(ok)')}\n
           - To get full scans IDs, you can run the command "socket scan list <your org slug>".
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$t);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -2483,7 +2518,11 @@ function isTopLevel(tree, node) {
   return tree.children.get(node.name) === node;
 }
 async function runFix() {
-  const spinner$1 = new spinner.Spinner().start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start();
   const cwd = process.cwd();
   const editablePkgJson = await packages.readPackageJson(cwd, {
     editable: true
@@ -2514,9 +2553,7 @@ async function runFix() {
       const tree = arb.idealTree;
       const hasUpgrade = !!registry.getManifestData(NPM$d, name);
       if (hasUpgrade) {
-        spinner$1.stop();
-        console.log(`Skipping ${name}. Socket Optimize package exists.`);
-        spinner$1.start();
+        spinner.info(`Skipping ${name}. Socket Optimize package exists.`);
         continue;
       }
       const nodes = index.findPackageNodes(tree, name);
@@ -2542,10 +2579,10 @@ async function runFix() {
               try {
                 // eslint-disable-next-line no-await-in-loop
                 await npm.runScript('test', [], {
-                  stdio: 'pipe'
+                  spinner,
+                  stdio: 'ignore'
                 });
-                spinner$1.info(`Patched ${name} ${oldVersion} -> ${node.version}`);
-                spinner$1.start();
+                spinner.info(`Patched ${name} ${oldVersion} -> ${node.version}`);
                 if (isTopLevel(tree, node)) {
                   for (const depField of ['dependencies', 'optionalDependencies', 'peerDependencies']) {
                     const oldVersion = editablePkgJson.content[depField]?.[name];
@@ -2558,14 +2595,11 @@ async function runFix() {
                 // eslint-disable-next-line no-await-in-loop
                 await editablePkgJson.save();
               } catch {
-                spinner$1.errorAndStop(`Reverting ${name} to ${oldVersion}`);
-                spinner$1.start();
+                spinner.error(`Reverting ${name} to ${oldVersion}`);
                 arb.idealTree = revertToIdealTree;
               }
             } else {
-              spinner$1.stop();
-              console.log(`Could not patch ${name} ${oldVersion}`);
-              spinner$1.start();
+              spinner.error(`Could not patch ${name} ${oldVersion}`);
             }
           }
         }
@@ -2577,9 +2611,12 @@ async function runFix() {
   });
   arb2.idealTree = arb.idealTree;
   await arb2.reify();
-  spinner$1.stop();
+  spinner.stop();
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$s
+} = constants;
 const config$t = {
   commandName: 'fix',
   description: 'Fix "fixable" Socket alerts',
@@ -2610,7 +2647,8 @@ async function run$t(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$s);
+    return;
   }
   await runFix();
 }
@@ -2722,9 +2760,9 @@ function formatPackageInfo({
   strict
 }, spinner) {
   if (outputJson) {
-    console.log(JSON.stringify(data, undefined, 2));
+    logger.logger.log(JSON.stringify(data, undefined, 2));
   } else {
-    console.log('\nPackage report card:');
+    logger.logger.log('\nPackage report card:');
     const scoreResult = {
       'Supply Chain Risk': Math.floor(score.supplyChainRisk.score * 100),
       Maintenance: Math.floor(score.maintenance.score * 100),
@@ -2732,8 +2770,8 @@ function formatPackageInfo({
       Vulnerabilities: Math.floor(score.vulnerability.score * 100),
       License: Math.floor(score.license.score * 100)
     };
-    Object.entries(scoreResult).map(score => console.log(`- ${score[0]}: ${formatScore(score[1])}`));
-    console.log('\n');
+    Object.entries(scoreResult).map(score => logger.logger.log(`- ${score[0]}: ${formatScore(score[1])}`));
+    logger.logger.log('\n');
     if (objectSome(severityCount)) {
       spinner[strict ? 'error' : 'success'](`Package has these issues: ${formatSeverityCount(severityCount)}`);
       formatPackageIssuesDetails(data, outputMarkdown);
@@ -2742,18 +2780,18 @@ function formatPackageInfo({
     }
     const format = new index.ColorOrMarkdown(!!outputMarkdown);
     const url = index.getSocketDevPackageOverviewUrl(NPM$c, pkgName, pkgVersion);
-    console.log('\n');
+    logger.logger.log('\n');
     if (pkgVersion === 'latest') {
-      console.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName}`, url, {
+      logger.logger.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName}`, url, {
         fallbackToUrl: true
       })}`);
     } else {
-      console.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName} v${pkgVersion}`, url, {
+      logger.logger.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName} v${pkgVersion}`, url, {
         fallbackToUrl: true
       })}`);
     }
     if (!outputMarkdown) {
-      console.log(colors.dim(`\nOr rerun ${colors.italic(name)} using the ${colors.italic('--json')} flag to get full JSON output`));
+      logger.logger.log(colors.dim(`\nOr rerun ${colors.italic(name)} using the ${colors.italic('--json')} flag to get full JSON output`));
     }
   }
   if (strict && objectSome(severityCount)) {
@@ -2784,9 +2822,9 @@ function formatPackageIssuesDetails(packageData, outputMarkdown) {
       fallbackToUrl: true
     });
     if (uniqueIssues[issue]?.count === 1) {
-      console.log(`- ${issueWithLink}`);
+      logger.logger.log(`- ${issueWithLink}`);
     } else {
-      console.log(`- ${issueWithLink}: ${uniqueIssues[issue]?.count}`);
+      logger.logger.log(`- ${issueWithLink}: ${uniqueIssues[issue]?.count}`);
     }
   }
 }
@@ -2808,11 +2846,12 @@ async function getPackageInfo({
   pkgVersion,
   strict
 }) {
-  const spinnerText = pkgVersion === 'latest' ? `Looking up data for the latest version of ${pkgName}` : `Looking up data for version ${pkgVersion} of ${pkgName}`;
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
-  const packageData = await fetchPackageInfo(pkgName, pkgVersion, includeAllIssues, spinner$1);
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start(pkgVersion === 'latest' ? `Looking up data for the latest version of ${pkgName}` : `Looking up data for version ${pkgVersion} of ${pkgName}`);
+  const packageData = await fetchPackageInfo(pkgName, pkgVersion, includeAllIssues, spinner);
   if (packageData) {
     formatPackageInfo(packageData, {
       name: commandName,
@@ -2821,10 +2860,13 @@ async function getPackageInfo({
       pkgName,
       pkgVersion,
       strict
-    }, spinner$1);
+    }, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$r
+} = constants;
 const config$s = {
   commandName: 'info',
   description: 'Look up info regarding a package',
@@ -2866,7 +2908,7 @@ async function run$s(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Expecting a package name ${!rawPkgName ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Can only accept one package at a time ${cli.input.length > 1 ? colors.red('(got ' + cli.input.length + '!)') : colors.green('(ok)')}\n`);
     return;
@@ -2875,7 +2917,8 @@ async function run$s(argv, importMeta, {
   const pkgName = versionSeparator < 1 ? rawPkgName : rawPkgName.slice(0, versionSeparator);
   const pkgVersion = versionSeparator < 1 ? 'latest' : rawPkgName.slice(versionSeparator + 1);
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$r);
+    return;
   }
   await getPackageInfo({
     commandName: `${parentName} ${config$s.commandName}`,
@@ -2901,14 +2944,16 @@ const {
   SOCKET_PUBLIC_API_TOKEN
 } = constants;
 async function attemptLogin(apiBaseUrl, apiProxy) {
+  apiBaseUrl ??= index.getSetting('apiBaseUrl') ?? undefined;
+  apiProxy ??= index.getSetting('apiProxy') ?? undefined;
   const apiToken = (await prompts.password({
     message: `Enter your ${terminalLink('Socket.dev API key', 'https://docs.socket.dev/docs/api-keys')} (leave blank for a public key)`
   })) || SOCKET_PUBLIC_API_TOKEN;
-  apiBaseUrl ??= index.getSetting('apiBaseUrl') ?? undefined;
-  apiProxy ??= index.getSetting('apiProxy') ?? undefined;
-  const spinner$1 = new spinner.Spinner({
-    text: 'Verifying API key...'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Verifying API key...');
   let orgs;
   try {
     const sdk = await index.setupSdk(apiToken, apiBaseUrl, apiProxy);
@@ -2917,9 +2962,9 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
       throw new index.AuthError();
     }
     orgs = result.data;
-    spinner$1.success('API key verified');
+    spinner.success('API key verified');
   } catch {
-    spinner$1.errorAndStop('Invalid API key');
+    spinner.errorAndStop('Invalid API key');
     return;
   }
   const enforcedChoices = Object.values(orgs.organizations).filter(org => org?.plan === 'enterprise').map(org => ({
@@ -2935,6 +2980,8 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
         value: '',
         description: 'Pick "None" if this is a personal device'
       })
+    }, {
+      spinner
     });
     if (id) {
       enforcedOrgs = [id];
@@ -2943,6 +2990,8 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
     const confirmOrg = await prompts.confirm({
       message: `Should Socket enforce ${enforcedChoices[0]?.name}'s security policies system-wide?`,
       default: true
+    }, {
+      spinner
     });
     if (confirmOrg) {
       const existing = enforcedChoices[0];
@@ -2954,12 +3003,15 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
   const oldToken = index.getSetting('apiToken');
   try {
     applyLogin(apiToken, enforcedOrgs, apiBaseUrl, apiProxy);
-    spinner$1.successAndStop(`API credentials ${oldToken ? 'updated' : 'set'}`);
+    spinner.successAndStop(`API credentials ${oldToken ? 'updated' : 'set'}`);
   } catch {
-    spinner$1.errorAndStop(`API login failed`);
+    spinner.errorAndStop(`API login failed`);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$q
+} = constants;
 const config$r = {
   commandName: 'login',
   description: 'Socket API login',
@@ -3006,7 +3058,8 @@ async function run$r(argv, importMeta, {
   let apiBaseUrl = cli.flags['apiBaseUrl'];
   let apiProxy = cli.flags['apiProxy'];
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$q);
+    return;
   }
   if (!isInteractive()) {
     throw new index.InputError('Cannot prompt for credentials in a non-interactive shell');
@@ -3024,12 +3077,15 @@ function applyLogout() {
 function attemptLogout() {
   try {
     applyLogout();
-    new spinner.Spinner().success('Successfully logged out');
+    logger.logger.success('Successfully logged out');
   } catch {
-    new spinner.Spinner().success('Failed to complete logout steps');
+    logger.logger.error('Failed to complete logout steps');
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$p
+} = constants;
 const config$q = {
   commandName: 'logout',
   description: 'Socket API logout',
@@ -3059,31 +3115,31 @@ async function run$q(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$p);
+    return;
   }
   attemptLogout();
 }
 
 async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const rbin = path.resolve(bin);
   const rtarget = path.resolve(target);
-  // const rout = out === '-' ? '-' : path.resolve(out)
-
   if (verbose) {
-    console.group('gradle2maven:');
-    console.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
-    console.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
-    // console.log(`[VERBOSE] - Absolute out path: \`${rout}\``)
-    console.groupEnd();
+    logger.logger.group('gradle2maven:');
+    logger.logger.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
+    logger.logger.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
+    logger.logger.groupEnd();
   } else {
-    console.group('gradle2maven:');
-    console.log(`- executing: \`${bin}\``);
-    console.log(`- src dir: \`${target}\``);
-    // console.log(`- dst dir: \`${out}\``)
-    console.groupEnd();
-  }
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start(`Converting gradle to maven from \`${bin}\` on \`${target}\`...`);
+    logger.logger.group('gradle2maven:');
+    logger.logger.log(`- executing: \`${bin}\``);
+    logger.logger.log(`- src dir: \`${target}\``);
+    logger.logger.groupEnd();
+  }
+  spinner.start(`Converting gradle to maven from \`${bin}\` on \`${target}\`...`);
   try {
     // Run sbt with the init script we provide which should yield zero or more pom files.
     // We have to figure out where to store those pom files such that we can upload them and predict them through the GitHub API.
@@ -3093,38 +3149,37 @@ async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
     const initLocation = path.join(constants.rootDistPath, 'init.gradle');
     const commandArgs = ['--init-script', initLocation, ...gradleOpts, 'pom'];
     if (verbose) {
-      console.log('\n[VERBOSE] Executing:', bin, commandArgs);
+      spinner.log('[VERBOSE] Executing:', bin, commandArgs);
     }
     const output = await spawn(bin, commandArgs, {
       cwd: target || '.'
     });
-    spinner$1.stop();
+    spinner.stop();
     if (verbose) {
-      console.group('[VERBOSE] gradle stdout:');
-      console.log(output);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] gradle stdout:');
+      logger.logger.log(output);
+      logger.logger.groupEnd();
     }
     if (output.stderr) {
-      spinner$1.errorAndStop('There were errors while running gradle');
+      logger.logger.error('There were errors while running gradle');
       // (In verbose mode, stderr was printed above, no need to repeat it)
       if (!verbose) {
-        console.group('[VERBOSE] stderr:');
-        console.error(output.stderr);
-        console.groupEnd();
+        logger.logger.group('[VERBOSE] stderr:');
+        logger.logger.error(output.stderr);
+        logger.logger.groupEnd();
       }
       process.exit(1);
     }
-    spinner$1.start();
-    spinner$1.successAndStop('Executed gradle successfully');
-    console.log('Reported exports:');
+    logger.logger.success('Executed gradle successfully');
+    logger.logger.log('Reported exports:');
     output.stdout.replace(/^POM file copied to: (.*)/gm, (_all, fn) => {
-      console.log('- ', fn);
+      logger.logger.log('- ', fn);
       return fn;
     });
 
     // const loc = output.stdout?.match(/Wrote (.*?.pom)\n/)?.[1]?.trim()
     // if (!loc) {
-    //   spinner.errorAndStop(
+    //   logger.error(
     //     'There were no errors from sbt but could not find the location of resulting .pom file either'
     //   )
     //   process.exit(1)
@@ -3132,34 +3187,38 @@ async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
     //
     // // Move the pom file to ...? initial cwd? loc will be an absolute path, or dump to stdout
     // if (out === '-') {
-    //   spinner.start('Result:\n```').success()
-    //   console.log(await safeReadFile(loc, 'utf8'))
-    //   console.log('```')
-    //   spinner.start().success(`OK`)
+    //   spinner.start('Result:\n```')
+    //   spinner.log(await safeReadFile(loc, 'utf8'))
+    //   spinner.log('```')
+    //   spinner.successAndStop(`OK`)
     // } else {
+    //   spinner.start()
     //   if (verbose) {
-    //     spinner.start(
+    //     spinner.log(
     //       `Moving manifest file from \`${loc.replace(/^\/home\/[^/]*?\//, '~/')}\` to \`${out}\``
     //     )
     //   } else {
-    //     spinner.start('Moving output pom file')
+    //     spinner.log('Moving output pom file')
     //   }
     //   // TODO: do we prefer fs-extra? renaming can be gnarly on windows and fs-extra's version is better
     //   await renamep(loc, out)
-    //   spinner.successAndStop()
-    //   spinner.start().success(`OK. File should be available in \`${out}\``)
+    //   spinner.successAndStop(`OK. File should be available in \`${out}\``)
     // }
   } catch (e) {
-    spinner$1.errorAndStop('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
+    spinner.stop();
+    logger.logger.error('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
     if (verbose) {
-      console.group('[VERBOSE] error:');
-      console.log(e);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] error:');
+      logger.logger.log(e);
+      logger.logger.groupEnd();
     }
     process.exit(1);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$o
+} = constants;
 const config$p = {
   commandName: 'gradle',
   description: '[beta] Use Gradle to generate a manifest file (`pom.xml`) for a Gradle/Java/Kotlin/etc project',
@@ -3247,22 +3306,23 @@ async function run$p(argv, importMeta, {
   });
   const verbose = Boolean(cli.flags['verbose']);
   if (verbose) {
-    console.group('- ', parentName, config$p.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$p.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.groupEnd();
   }
   const target = cli.input[0];
 
-  // TODO: I'm not sure it's feasible to parse source file from stdin. We could try, store contents in a file in some folder, target that folder... what would the file name be?
-
+  // TODO: I'm not sure it's feasible to parse source file from stdin. We could
+  // try, store contents in a file in some folder, target that folder... what
+  // would the file name be?
   if (!target || target === '-' || cli.input.length > 1) {
     // Use exit status of 2 to indicate incorrect usage, generally invalid
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The DIR arg is required ${!target ? colors.red('(missing!)') : target === '-' ? colors.red('(stdin is not supported)') : colors.green('(ok)')}\n
       - Can only accept one DIR (make sure to escape spaces!) ${cli.input.length > 1 ? colors.red(`(received ${cli.input.length}!)`) : colors.green('(ok)')}\n`);
     return;
@@ -3281,64 +3341,66 @@ async function run$p(argv, importMeta, {
     out = '-';
   }
   if (verbose) {
-    console.group();
-    console.log('- target:', target);
-    console.log('- gradle bin:', bin);
-    console.log('- out:', out);
-    console.groupEnd();
+    logger.logger.group();
+    logger.logger.log('- target:', target);
+    logger.logger.log('- gradle bin:', bin);
+    logger.logger.log('- out:', out);
+    logger.logger.groupEnd();
   }
   let gradleOpts = [];
   if (cli.flags['gradleOpts']) {
     gradleOpts = cli.flags['gradleOpts'].split(' ').map(s => s.trim()).filter(Boolean);
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$o);
+    return;
   }
   await convertGradleToMaven(target, bin, out, verbose, gradleOpts);
 }
 
 async function convertSbtToMaven(target, bin, out, verbose, sbtOpts) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const rbin = path.resolve(bin);
   const rtarget = path.resolve(target);
-  // const rout = out === '-' ? '-' : path.resolve(out)
-
   if (verbose) {
-    console.group('sbt2maven:');
-    console.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
-    console.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
-    // console.log(`[VERBOSE] - Absolute out path: \`${rout}\``)
-    console.groupEnd();
+    logger.logger.group('sbt2maven:');
+    logger.logger.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
+    logger.logger.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
+    // logger.log(`[VERBOSE] - Absolute out path: \`${rout}\``)
+    logger.logger.groupEnd();
   } else {
-    console.group('sbt2maven:');
-    console.log(`- executing: \`${bin}\``);
-    console.log(`- src dir: \`${target}\``);
-    // console.log(`- dst dir: \`${out}\``)
-    console.groupEnd();
-  }
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start(`Converting sbt to maven from \`${bin}\` on \`${target}\`...`);
+    logger.logger.group('sbt2maven:');
+    logger.logger.log(`- executing: \`${bin}\``);
+    logger.logger.log(`- src dir: \`${target}\``);
+    // logger.log(`- dst dir: \`${out}\``)
+    logger.logger.groupEnd();
+  }
+  spinner.start(`Converting sbt to maven from \`${bin}\` on \`${target}\`...`);
   try {
-    // Run sbt with the init script we provide which should yield zero or more pom files.
-    // We have to figure out where to store those pom files such that we can upload them and predict them through the GitHub API.
-    // We could do a .socket folder. We could do a socket.pom.gz with all the poms, although I'd prefer something plain-text if it is to be committed.
-
+    // Run sbt with the init script we provide which should yield zero or more
+    // pom files. We have to figure out where to store those pom files such that
+    // we can upload them and predict them through the GitHub API. We could do a
+    // .socket folder. We could do a socket.pom.gz with all the poms, although
+    // I'd prefer something plain-text if it is to be committed.
     const output = await spawn(bin, ['makePom'].concat(sbtOpts), {
       cwd: target || '.'
     });
-    spinner$1.successAndStop();
+    spinner.stop();
     if (verbose) {
-      console.group('[VERBOSE] sbt stdout:');
-      console.log(output);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] sbt stdout:');
+      logger.logger.log(output);
+      logger.logger.groupEnd();
     }
     if (output.stderr) {
-      spinner$1.start();
-      spinner$1.errorAndStop('There were errors while running sbt');
+      logger.logger.error('There were errors while running sbt');
       // (In verbose mode, stderr was printed above, no need to repeat it)
       if (!verbose) {
-        console.group('[VERBOSE] stderr:');
-        console.error(output.stderr);
-        console.groupEnd();
+        logger.logger.group('[VERBOSE] stderr:');
+        logger.logger.error(output.stderr);
+        logger.logger.groupEnd();
       }
       process.exit(1);
     }
@@ -3348,48 +3410,51 @@ async function convertSbtToMaven(target, bin, out, verbose, sbtOpts) {
       return fn;
     });
     if (!poms.length) {
-      spinner$1.errorAndStop('There were no errors from sbt but it seems to not have generated any poms either');
+      logger.logger.error('There were no errors from sbt but it seems to not have generated any poms either');
       process.exit(1);
     }
-
     // Move the pom file to ...? initial cwd? loc will be an absolute path, or dump to stdout
     // TODO: what to do with multiple output files? Do we want to dump them to stdout? Raw or with separators or ?
     // TODO: maybe we can add an option to target a specific file to dump to stdout
     if (out === '-' && poms.length === 1) {
-      spinner$1.start('Result:\n```').success();
-      console.log(await index.safeReadFile(poms[0], 'utf8'));
-      console.log('```');
-      spinner$1.start().success(`OK`);
+      logger.logger.log('Result:\n```');
+      logger.logger.log(await index.safeReadFile(poms[0], 'utf8'));
+      logger.logger.log('```');
+      logger.logger.success(`OK`);
     } else if (out === '-') {
-      spinner$1.start().error('Requested out target was stdout but there are multiple generated files');
-      poms.forEach(fn => console.error('-', fn));
-      console.error('Exiting now...');
+      logger.logger.error('Requested out target was stdout but there are multiple generated files');
+      poms.forEach(fn => logger.logger.error('-', fn));
+      logger.logger.error('Exiting now...');
       process.exit(1);
     } else {
       // if (verbose) {
-      //   spinner.start(
+      //   logger.log(
       //     `Moving manifest file from \`${loc.replace(/^\/home\/[^/]*?\//, '~/')}\` to \`${out}\``
       //   )
       // } else {
-      //   spinner.start('Moving output pom file')
+      //   logger.log('Moving output pom file')
       // }
       // TODO: do we prefer fs-extra? renaming can be gnarly on windows and fs-extra's version is better
       // await renamep(loc, out)
-      spinner$1.start().success(`Generated ${poms.length} pom files`);
-      poms.forEach(fn => console.log('-', fn));
-      spinner$1.start().success(`OK`);
+      logger.logger.success(`Generated ${poms.length} pom files`);
+      poms.forEach(fn => logger.logger.log('-', fn));
+      logger.logger.success(`OK`);
     }
   } catch (e) {
-    spinner$1.errorAndStop('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
+    spinner.stop();
+    logger.logger.error('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
     if (verbose) {
-      console.group('[VERBOSE] error:');
-      console.log(e);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] error:');
+      logger.logger.log(e);
+      logger.logger.groupEnd();
     }
     process.exit(1);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$n
+} = constants;
 const config$o = {
   commandName: 'scala',
   description: "[beta] Generate a manifest file (`pom.xml`) from Scala's `build.sbt` file",
@@ -3467,7 +3532,6 @@ const cmdManifestScala = {
 async function run$o(argv, importMeta, {
   parentName
 }) {
-  // console.log('scala', argv, parentName)
   const cli = meowOrExit({
     argv,
     config: config$o,
@@ -3476,22 +3540,23 @@ async function run$o(argv, importMeta, {
   });
   const verbose = Boolean(cli.flags['verbose']);
   if (verbose) {
-    console.group('- ', parentName, config$o.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$o.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.groupEnd();
   }
   const target = cli.input[0];
 
-  // TODO: I'm not sure it's feasible to parse source file from stdin. We could try, store contents in a file in some folder, target that folder... what would the file name be?
-
+  // TODO: I'm not sure it's feasible to parse source file from stdin. We could
+  // try, store contents in a file in some folder, target that folder... what
+  // would the file name be?
   if (!target || target === '-' || cli.input.length > 1) {
     // Use exit status of 2 to indicate incorrect usage, generally invalid
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The DIR or FILE arg is required ${!target ? colors.red('(missing!)') : target === '-' ? colors.red('(stdin is not supported)') : colors.green('(ok)')}\n
       - Can only accept one DIR or FILE (make sure to escape spaces!) ${cli.input.length > 1 ? colors.red(`(received ${cli.input.length}!)`) : colors.green('(ok)')}\n`);
     return;
@@ -3508,22 +3573,26 @@ async function run$o(argv, importMeta, {
     out = '-';
   }
   if (verbose) {
-    console.group();
-    console.log('- target:', target);
-    console.log('- gradle bin:', bin);
-    console.log('- out:', out);
-    console.groupEnd();
+    logger.logger.group();
+    logger.logger.log('- target:', target);
+    logger.logger.log('- gradle bin:', bin);
+    logger.logger.log('- out:', out);
+    logger.logger.groupEnd();
   }
   let sbtOpts = [];
   if (cli.flags['sbtOpts']) {
     sbtOpts = cli.flags['sbtOpts'].split(' ').map(s => s.trim()).filter(Boolean);
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$n);
+    return;
   }
   await convertSbtToMaven(target, bin, out, verbose, sbtOpts);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$m
+} = constants;
 const config$n = {
   commandName: 'auto',
   description: 'Auto-detect build and attempt to generate manifest file',
@@ -3570,12 +3639,12 @@ async function run$n(argv, importMeta, {
   const verbose = !!cli.flags['verbose'];
   const cwd = cli.flags['cwd'] ?? process.cwd();
   if (verbose) {
-    console.group('- ', parentName, config$n.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.log('- cwd:', cwd);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$n.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.log('- cwd:', cwd);
+    logger.logger.groupEnd();
   }
   const subArgs = [];
   if (verbose) {
@@ -3583,13 +3652,14 @@ async function run$n(argv, importMeta, {
   }
   const dir = cwd;
   if (fs.existsSync(path.join(dir, 'build.sbt'))) {
-    console.log('Detected a Scala sbt build, running default Scala generator...');
+    logger.logger.log('Detected a Scala sbt build, running default Scala generator...');
     if (cwd) {
       subArgs.push('--cwd', cwd);
     }
     subArgs.push(dir);
     if (cli.flags['dryRun']) {
-      return console.log('[DryRun] Bailing now');
+      logger.logger.log(DRY_RUN_BAIL_TEXT$m);
+      return;
     }
     await cmdManifestScala.run(subArgs, importMeta, {
       parentName
@@ -3597,13 +3667,14 @@ async function run$n(argv, importMeta, {
     return;
   }
   if (fs.existsSync(path.join(dir, 'gradlew'))) {
-    console.log('Detected a gradle build, running default gradle generator...');
+    logger.logger.log('Detected a gradle build, running default gradle generator...');
     if (cwd) {
       // This command takes the cwd as first arg.
       subArgs.push(cwd);
     }
     if (cli.flags['dryRun']) {
-      return console.log('[DryRun] Bailing now');
+      logger.logger.log(DRY_RUN_BAIL_TEXT$m);
+      return;
     }
     await cmdManifestGradle.run(subArgs, importMeta, {
       parentName
@@ -3631,6 +3702,10 @@ async function run$n(argv, importMeta, {
   }).showHelp();
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$l
+} = constants;
+
 // TODO: we may want to dedupe some pieces for all gradle languages. I think it
 //       makes sense to have separate commands for them and I think it makes
 //       sense for the help panels to note the requested language, rather than
@@ -3723,22 +3798,23 @@ async function run$m(argv, importMeta, {
   });
   const verbose = Boolean(cli.flags['verbose']);
   if (verbose) {
-    console.group('- ', parentName, config$m.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$m.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.groupEnd();
   }
   const target = cli.input[0];
 
-  // TODO: I'm not sure it's feasible to parse source file from stdin. We could try, store contents in a file in some folder, target that folder... what would the file name be?
-
+  // TODO: I'm not sure it's feasible to parse source file from stdin. We could
+  // try, store contents in a file in some folder, target that folder... what
+  // would the file name be?
   if (!target || target === '-' || cli.input.length > 1) {
     // Use exit status of 2 to indicate incorrect usage, generally invalid
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The DIR arg is required ${!target ? colors.red('(missing!)') : target === '-' ? colors.red('(stdin is not supported)') : colors.green('(ok)')}\n
       - Can only accept one DIR (make sure to escape spaces!) ${cli.input.length > 1 ? colors.red(`(received ${cli.input.length}!)`) : colors.green('(ok)')}\n`);
     return;
@@ -3757,18 +3833,19 @@ async function run$m(argv, importMeta, {
     out = '-';
   }
   if (verbose) {
-    console.group();
-    console.log('- target:', target);
-    console.log('- gradle bin:', bin);
-    console.log('- out:', out);
-    console.groupEnd();
+    logger.logger.group();
+    logger.logger.log('- target:', target);
+    logger.logger.log('- gradle bin:', bin);
+    logger.logger.log('- out:', out);
+    logger.logger.groupEnd();
   }
   let gradleOpts = [];
   if (cli.flags['gradleOpts']) {
     gradleOpts = cli.flags['gradleOpts'].split(' ').map(s => s.trim()).filter(Boolean);
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$l);
+    return;
   }
   await convertGradleToMaven(target, bin, out, verbose, gradleOpts);
 }
@@ -3820,6 +3897,7 @@ async function wrapNpm(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$k,
   NPM: NPM$a
 } = constants;
 const config$k = {
@@ -3848,7 +3926,8 @@ async function run$k(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$k);
+    return;
   }
   await wrapNpm(argv);
 }
@@ -3864,6 +3943,7 @@ async function wrapNpx(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$j,
   NPX: NPX$1
 } = constants;
 const config$j = {
@@ -3892,11 +3972,15 @@ async function run$j(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$j);
+    return;
   }
   await wrapNpx(argv);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$i
+} = constants;
 const config$i = {
   commandName: 'oops',
   description: 'Trigger an intentional error (for development)',
@@ -3926,7 +4010,8 @@ async function run$i(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$i);
+    return;
   }
   throw new Error('This error was intentionally left blank');
 }
@@ -4637,7 +4722,7 @@ function runAgentInstall(agent, agentExecPath, options) {
     __proto__: null,
     ...options
   };
-  const isSilent = !npmPaths.isDebug();
+  const isSilent = !debug.isDebug();
   const isSpinning = spinner?.isSpinning ?? false;
   if (!isSilent) {
     spinner?.stop();
@@ -4685,7 +4770,8 @@ async function updatePackageLockJson(pkgEnvDetails, options) {
       logger?.log(`💡 Re-run ${COMMAND_TITLE$1} whenever ${pkgEnvDetails.lockName} changes.\n   This can be skipped once npm ships ${NPM_OVERRIDE_PR_URL}.`);
     }
   } catch (e) {
-    spinner?.error(`${COMMAND_TITLE$1}: ${pkgEnvDetails.agent} install failed to update ${pkgEnvDetails.lockName}`);
+    spinner?.stop();
+    logger?.error(`${COMMAND_TITLE$1}: ${pkgEnvDetails.agent} install failed to update ${pkgEnvDetails.lockName}`);
     logger?.error(e);
   }
 }
@@ -4698,44 +4784,44 @@ const {
 const COMMAND_TITLE = 'Socket Optimize';
 const manifestNpmOverrides = registry.getManifestData(NPM$1);
 async function applyOptimization(cwd, pin, prod) {
-  const logger = console;
   const pkgEnvDetails = await detectAndValidatePackageEnvironment(cwd, {
-    logger,
+    logger: logger.logger,
     prod
   });
   if (!pkgEnvDetails) {
     return;
   }
-  const spinner$1 = new spinner.Spinner({
-    text: 'Socket optimizing...'
-  });
-  spinner$1.start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Socket optimizing...');
   const state = await addOverrides(pkgEnvDetails.pkgPath, pkgEnvDetails, {
-    logger,
+    logger: logger.logger,
     pin,
     prod,
-    spinner: spinner$1
+    spinner
   });
-  spinner$1.stop();
+  spinner.stop();
   const addedCount = state.added.size;
   const updatedCount = state.updated.size;
   const pkgJsonChanged = addedCount > 0 || updatedCount > 0;
   if (pkgJsonChanged) {
     if (updatedCount > 0) {
-      logger?.log(`${createActionMessage('Updated', updatedCount, state.updatedInWorkspaces.size)}${addedCount ? '.' : '🚀'}`);
+      logger.logger?.log(`${createActionMessage('Updated', updatedCount, state.updatedInWorkspaces.size)}${addedCount ? '.' : '🚀'}`);
     }
     if (addedCount > 0) {
-      logger?.log(`${createActionMessage('Added', addedCount, state.addedInWorkspaces.size)} 🚀`);
+      logger.logger?.log(`${createActionMessage('Added', addedCount, state.addedInWorkspaces.size)} 🚀`);
     }
   } else {
-    logger?.log('Congratulations! Already Socket.dev optimized 🎉');
+    logger.logger?.log('Congratulations! Already Socket.dev optimized 🎉');
   }
   if (pkgEnvDetails.agent === NPM$1 || pkgJsonChanged) {
     // Always update package-lock.json until the npm overrides PR lands:
     // https://github.com/npm/cli/pull/8089
     await updatePackageLockJson(pkgEnvDetails, {
-      logger,
-      spinner: spinner$1
+      logger: logger.logger,
+      spinner
     });
   }
 }
@@ -4802,9 +4888,7 @@ async function addOverrides(pkgPath, pkgEnvDetails, options) {
   } else {
     overridesDataObjects.push(overridesDataByAgent.get(NPM$1)(pkgJson), overridesDataByAgent.get(YARN_CLASSIC)(pkgJson));
   }
-  if (spinner) {
-    spinner.text = `Adding overrides${workspaceName ? ` to ${workspaceName}` : ''}...`;
-  }
+  spinner?.setText(`Adding overrides${workspaceName ? ` to ${workspaceName}` : ''}...`);
   const depAliasMap = new Map();
   const nodeRange = `>=${pkgEnvDetails.minimumNodeVersion}`;
   const manifestEntries = manifestNpmOverrides.filter(({
@@ -4923,6 +5007,9 @@ async function addOverrides(pkgPath, pkgEnvDetails, options) {
   return state;
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$h
+} = constants;
 const config$h = {
   commandName: 'optimize',
   description: 'Optimize dependencies with @socketregistry overrides',
@@ -4968,7 +5055,8 @@ async function run$h(argv, importMeta, {
   });
   const cwd = process$1.cwd();
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$h);
+    return;
   }
   await applyOptimization(cwd, Boolean(cli.flags['pin']), Boolean(cli.flags['prod']));
 }
@@ -4981,22 +5069,24 @@ async function getOrganization(format = 'text') {
   await printOrganizationsFromToken(apiToken, format);
 }
 async function printOrganizationsFromToken(apiToken, format = 'text') {
-  const spinner$1 = new spinner.Spinner({
-    text: 'Fetching organizations...'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Fetching organizations...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrganizations(), 'looking up organizations');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrganizations', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrganizations', result, spinner);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   const organizations = Object.values(result.data.organizations);
   const lastFiveOfApiToken = getLastFiveOfApiToken(apiToken);
   switch (format) {
     case 'json':
       {
-        console.log(JSON.stringify(organizations.map(o => ({
+        logger.logger.log(JSON.stringify(organizations.map(o => ({
           name: o.name,
           id: o.id,
           plan: o.plan
@@ -5017,27 +5107,30 @@ async function printOrganizationsFromToken(apiToken, format = 'text') {
           mw2 = Math.max(mw2, o.id.length);
           mw3 = Math.max(mw3, o.plan.length);
         }
-        console.log('# Organizations\n');
-        console.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
-        console.log(`| Name${' '.repeat(mw1 - 4)} | ID${' '.repeat(mw2 - 2)} | Plan${' '.repeat(mw3 - 4)} |`);
-        console.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
+        logger.logger.log('# Organizations\n');
+        logger.logger.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
+        logger.logger.log(`| Name${' '.repeat(mw1 - 4)} | ID${' '.repeat(mw2 - 2)} | Plan${' '.repeat(mw3 - 4)} |`);
+        logger.logger.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
         for (const o of organizations) {
-          console.log(`| ${(o.name || '').padEnd(mw1, ' ')} | ${(o.id || '').padEnd(mw2, ' ')} | ${(o.plan || '').padEnd(mw3, ' ')} |`);
+          logger.logger.log(`| ${(o.name || '').padEnd(mw1, ' ')} | ${(o.id || '').padEnd(mw2, ' ')} | ${(o.plan || '').padEnd(mw3, ' ')} |`);
         }
-        console.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
+        logger.logger.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
         return;
       }
     default:
       {
-        console.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
+        logger.logger.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
         // Just dump
         for (const o of organizations) {
-          console.log(`- Name: ${colors.bold(o.name)}, ID: ${colors.bold(o.id)}, Plan: ${colors.bold(o.plan)}`);
+          logger.logger.log(`- Name: ${colors.bold(o.name)}, ID: ${colors.bold(o.id)}, Plan: ${colors.bold(o.plan)}`);
         }
       }
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$g
+} = constants;
 const config$g = {
   commandName: 'organizations',
   description: 'List organizations associated with the API key used',
@@ -5075,14 +5168,15 @@ async function run$g(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`
+    logger.logger.error(`
       ${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The json and markdown flags cannot be both set, pick one
     `);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$g);
+    return;
   }
   await getOrganization(json ? 'json' : markdown ? 'markdown' : 'text');
 }
@@ -5110,6 +5204,7 @@ async function runRawNpm(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$f,
   NPM
 } = constants;
 const config$f = {
@@ -5144,7 +5239,8 @@ async function run$f(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$f);
+    return;
   }
   await runRawNpm(argv);
 }
@@ -5172,6 +5268,7 @@ async function runRawNpx(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$e,
   NPX
 } = constants;
 const config$e = {
@@ -5206,18 +5303,26 @@ async function run$e(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$e);
+    return;
   }
   await runRawNpx(argv);
 }
 
+const {
+  DRY_RUN_LABEL
+} = constants;
 async function createReport(socketConfig, inputPaths, {
   cwd,
   dryRun
 }) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const socketSdk = await index.setupSdk();
   const supportedFiles = await socketSdk.getReportSupportedFiles().then(res => {
-    if (!res.success) handleUnsuccessfulApiResponse('getReportSupportedFiles', res, new spinner.Spinner());
+    if (!res.success) handleUnsuccessfulApiResponse('getReportSupportedFiles', res, spinner);
     return res.data;
   }).catch(cause => {
     throw new Error('Failed getting supported files for report', {
@@ -5225,24 +5330,27 @@ async function createReport(socketConfig, inputPaths, {
     });
   });
   const packagePaths = await npmPaths.getPackageFiles(cwd, inputPaths, socketConfig, supportedFiles);
-  npmPaths.debugLog('Uploading:', packagePaths.join(`\n${npmPaths.getLogSymbols().info} Uploading: `));
+  const {
+    length: packagePathsCount
+  } = packagePaths;
+  if (packagePathsCount && debug.isDebug()) {
+    for (const pkgPath of packagePaths) {
+      debug.debugLog(`Uploading: ${pkgPath}`);
+    }
+  }
   if (dryRun) {
-    npmPaths.debugLog('[dryRun] Skipped actual upload');
+    debug.debugLog(`${DRY_RUN_LABEL}: Skipped actual upload`);
+    return undefined;
+  }
+  spinner.start(`Creating report with ${packagePathsCount} package ${words.pluralize('file', packagePathsCount)}`);
+  const apiCall = socketSdk.createReportFromFilePaths(packagePaths, cwd, socketConfig?.issueRules);
+  const result = await handleApiCall(apiCall, 'creating report');
+  if (!result.success) {
+    handleUnsuccessfulApiResponse('createReport', result, spinner);
     return undefined;
-  } else {
-    const socketSdk = await index.setupSdk();
-    const spinner$1 = new spinner.Spinner({
-      text: `Creating report with ${packagePaths.length} package files`
-    }).start();
-    const apiCall = socketSdk.createReportFromFilePaths(packagePaths, cwd, socketConfig?.issueRules);
-    const result = await handleApiCall(apiCall, 'creating report');
-    if (!result.success) {
-      handleUnsuccessfulApiResponse('createReport', result, spinner$1);
-      return undefined;
-    }
-    spinner$1.successAndStop();
-    return result;
   }
+  spinner.successAndStop();
+  return result;
 }
 
 async function getSocketConfig(absoluteConfigPath) {
@@ -5269,10 +5377,12 @@ async function getSocketConfig(absoluteConfigPath) {
 const MAX_TIMEOUT_RETRY = 5;
 const HTTP_CODE_TIMEOUT = 524;
 async function fetchReportData(reportId, includeAllIssues, strict) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start(`Fetching report with ID ${reportId} (this could take a while)`);
   const socketSdk = await index.setupSdk();
-  const spinner$1 = new spinner.Spinner({
-    text: `Fetching report with ID ${reportId} (this could take a while)`
-  }).start();
   let result;
   for (let retry = 1; !result; ++retry) {
     try {
@@ -5280,42 +5390,43 @@ async function fetchReportData(reportId, includeAllIssues, strict) {
       result = await handleApiCall(socketSdk.getReport(reportId), 'fetching report');
     } catch (err) {
       if (retry >= MAX_TIMEOUT_RETRY || !(err instanceof Error) || err.cause?.cause?.response?.statusCode !== HTTP_CODE_TIMEOUT) {
+        spinner.stop();
         throw err;
       }
     }
   }
   if (!result.success) {
-    return handleUnsuccessfulApiResponse('getReport', result, spinner$1);
+    return handleUnsuccessfulApiResponse('getReport', result, spinner);
   }
 
-  // Conclude the status of the API call
-
+  // Conclude the status of the API call.
   if (strict) {
     if (result.data.healthy) {
-      spinner$1.successAndStop('Report result is healthy and great!');
+      spinner.success('Report result is healthy and great!');
     } else {
-      spinner$1.errorAndStop('Report result deemed unhealthy for project');
+      spinner.error('Report result deemed unhealthy for project');
     }
   } else if (!result.data.healthy) {
     const severityCount = getSeverityCount(result.data.issues, includeAllIssues ? undefined : 'high');
     const issueSummary = formatSeverityCount(severityCount);
-    spinner$1.successAndStop(`Report has these issues: ${issueSummary}`);
+    spinner.success(`Report has these issues: ${issueSummary}`);
   } else {
-    spinner$1.successAndStop('Report has no issues');
+    spinner.success('Report has no issues');
   }
+  spinner.stop();
   return result.data;
 }
 
 function formatReportDataOutput(reportId, data, commandName, outputJson, outputMarkdown, strict) {
   if (outputJson) {
-    console.log(JSON.stringify(data, undefined, 2));
+    logger.logger.log(JSON.stringify(data, undefined, 2));
   } else {
     const format = new index.ColorOrMarkdown(outputMarkdown);
-    console.log('\nDetailed info on socket.dev: ' + format.hyperlink(reportId, data.url, {
+    logger.logger.log('\nDetailed info on socket.dev: ' + format.hyperlink(reportId, data.url, {
       fallbackToUrl: true
     }));
     if (!outputMarkdown) {
-      console.log(colors.dim(`\nOr rerun ${colors.italic(commandName)} using the ${colors.italic('--json')} flag to get full JSON output`));
+      logger.logger.log(colors.dim(`\nOr rerun ${colors.italic(commandName)} using the ${colors.italic('--json')} flag to get full JSON output`));
     }
   }
   if (strict && !data.healthy) {
@@ -5336,6 +5447,9 @@ async function viewReport(reportId, {
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$d
+} = constants;
 const config$d = {
   commandName: 'create',
   description: 'Create a project report',
@@ -5406,7 +5520,8 @@ async function run$d(argv, importMeta, {
 
   // Note exiting earlier to skirt a hidden auth requirement
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$d);
+    return;
   }
   const socketConfig = await getSocketConfig(absoluteConfigPath);
   const result = await createReport(socketConfig, cli.input, {
@@ -5425,17 +5540,19 @@ async function run$d(argv, importMeta, {
         strict
       });
     } else if (json) {
-      console.log(JSON.stringify(result.data, undefined, 2));
-      return;
+      logger.logger.log(JSON.stringify(result.data, undefined, 2));
     } else {
       const format = new index.ColorOrMarkdown(markdown);
-      console.log(`New report: ${format.hyperlink(result.data.id, result.data.url, {
+      logger.logger.log(`New report: ${format.hyperlink(result.data.id, result.data.url, {
         fallbackToUrl: true
       })}`);
     }
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$c
+} = constants;
 const config$c = {
   commandName: 'view',
   description: 'View a project report',
@@ -5478,13 +5595,14 @@ async function run$c(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Need at least one report ID ${!reportId ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Can only handle a single report ID ${extraInput.length < 2 ? colors.red(`(received ${extraInput.length}!)`) : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$c);
+    return;
   }
   await viewReport(reportId, {
     all: Boolean(cli.flags['all']),
@@ -5524,10 +5642,11 @@ async function createRepo({
   repoName,
   visibility
 }) {
-  const spinnerText = 'Creating repository... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Creating repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.createOrgRepo(orgSlug, {
     outputJson,
@@ -5540,12 +5659,15 @@ async function createRepo({
     visibility
   }), 'creating repository');
   if (result.success) {
-    spinner$1.successAndStop('Repository created successfully');
+    spinner.successAndStop('Repository created successfully');
   } else {
-    handleUnsuccessfulApiResponse('createOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('createOrgRepo', result, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$b
+} = constants;
 const config$b = {
   commandName: 'create',
   description: 'Create a repository in an organization',
@@ -5616,13 +5738,14 @@ async function run$b(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repoName ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$b);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5642,19 +5765,23 @@ async function run$b(argv, importMeta, {
 }
 
 async function deleteRepo(orgSlug, repoName, apiToken) {
-  const spinnerText = 'Deleting repository... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Deleting repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.deleteOrgRepo(orgSlug, repoName), 'deleting repository');
   if (result.success) {
-    spinner$1.successAndStop('Repository deleted successfully');
+    spinner.successAndStop('Repository deleted successfully');
   } else {
-    handleUnsuccessfulApiResponse('deleteOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('deleteOrgRepo', result, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$a
+} = constants;
 const config$a = {
   commandName: 'del',
   description: 'Delete a repository in an organization',
@@ -5693,14 +5820,15 @@ async function run$a(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name as the second argument ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n
       - At least one TARGET (e.g. \`.\` or \`./package.json\`\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$a);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5720,10 +5848,11 @@ async function listRepos({
   per_page,
   sort
 }) {
-  const spinnerText = 'Listing repositories... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Listing repositories...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgRepoList(orgSlug, {
     outputJson,
@@ -5735,10 +5864,10 @@ async function listRepos({
     page
   }), 'listing repositories');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgRepoList', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgRepoList', result, spinner);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   if (outputJson) {
     const data = result.data.results.map(o => ({
       id: o.id,
@@ -5747,7 +5876,7 @@ async function listRepos({
       defaultBranch: o.default_branch,
       archived: o.archived
     }));
-    console.log(JSON.stringify(data, null, 2));
+    logger.logger.log(JSON.stringify(data, null, 2));
     return;
   }
   const options = {
@@ -5768,9 +5897,12 @@ async function listRepos({
       name: colors.magenta('Archived')
     }]
   };
-  console.log(chalkTable(options, result.data.results));
+  logger.logger.log(chalkTable(options, result.data.results));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$9
+} = constants;
 const config$9 = {
   commandName: 'list',
   description: 'List repositories in an organization',
@@ -5833,13 +5965,14 @@ async function run$9(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - At least one TARGET (e.g. \`.\` or \`./package.json\`\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$9);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5868,10 +6001,11 @@ async function updateRepo({
   repoName,
   visibility
 }) {
-  const spinnerText = 'Updating repository... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Updating repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.updateOrgRepo(orgSlug, repoName, {
     outputJson,
@@ -5884,12 +6018,15 @@ async function updateRepo({
     visibility
   }), 'updating repository');
   if (result.success) {
-    spinner$1.successAndStop('Repository updated successfully');
+    spinner.successAndStop('Repository updated successfully');
   } else {
-    handleUnsuccessfulApiResponse('updateOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('updateOrgRepo', result, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$8
+} = constants;
 const config$8 = {
   commandName: 'update',
   description: 'Update a repository in an organization',
@@ -5960,14 +6097,15 @@ async function run$8(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repoName ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n
       - At least one TARGET (e.g. \`.\` or \`./package.json\`\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$8);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5988,14 +6126,15 @@ async function run$8(argv, importMeta, {
 
 // @ts-ignore
 async function viewRepo(orgSlug, repoName, apiToken) {
-  const spinnerText = 'Fetching repository... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Fetching repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgRepo(orgSlug, repoName), 'fetching repository');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgRepo', result, spinner);
     return;
   }
   const options = {
@@ -6022,9 +6161,12 @@ async function viewRepo(orgSlug, repoName, apiToken) {
       name: colors.magenta('Created at')
     }]
   };
-  spinner$1.stop(chalkTable(options, [result.data]));
+  spinner.stop(chalkTable(options, [result.data]));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$7
+} = constants;
 const config$7 = {
   commandName: 'view',
   description: 'View repositories in an organization',
@@ -6065,13 +6207,14 @@ async function run$7(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repoName ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$7);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6200,7 +6343,7 @@ function dirNameToSlug(name) {
 async function suggestBranchSlug(repoDefaultBranch) {
   const spawnResult = childProcess.spawnSync('git', ['branch', '--show-current']);
   const currentBranch = spawnResult.stdout.toString('utf8').trim();
-  if (spawnResult.status === 0 && currentBranch) {
+  if (currentBranch && spawnResult.status === 0) {
     const proceed = await prompts.select({
       message: 'Use the current git branch as target branch name?',
       choices: [{
@@ -6258,10 +6401,14 @@ async function createFullScan({
   targets,
   tmp
 }) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const socketSdk = await index.setupSdk();
   const supportedFiles = await socketSdk.getReportSupportedFiles().then(res => {
     if (!res.success) {
-      handleUnsuccessfulApiResponse('getReportSupportedFiles', res, new spinner.Spinner());
+      handleUnsuccessfulApiResponse('getReportSupportedFiles', res, spinner);
       assert(false, 'handleUnsuccessfulApiResponse should unconditionally throw');
     }
     return res.data;
@@ -6318,7 +6465,7 @@ async function createFullScan({
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process$1.exitCode = 2;
-    console.error(`
+    logger.logger.error(`
       ${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repo ${!repoName ? colors.red('(missing!)') : colors.green('(ok)')}\n
@@ -6329,22 +6476,19 @@ async function createFullScan({
     return;
   }
   if (updatedInput) {
-    console.log('Note: You can invoke this command next time to skip the interactive questions:');
-    console.log('```');
-    console.log(`    socket scan create [other flags...] --repo ${repoName} --branch ${branchName} ${orgSlug} ${targets.join(' ')}`);
-    console.log('```');
+    logger.logger.log('Note: You can invoke this command next time to skip the interactive questions:');
+    logger.logger.log('```');
+    logger.logger.log(`    socket scan create [other flags...] --repo ${repoName} --branch ${branchName} ${orgSlug} ${targets.join(' ')}`);
+    logger.logger.log('```');
   }
   if (!apiToken) {
     throw new index.AuthError('User must be authenticated to run this command. To log in, run the command `socket login` and enter your API key.');
   }
   if (readOnly) {
-    console.log('[ReadOnly] Bailing now');
+    logger.logger.log('[ReadOnly] Bailing now');
     return;
   }
-  const spinnerText = 'Creating a scan... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  spinner.start('Creating a scan...');
   const result = await handleApiCall(socketSdk.createOrgFullScan(orgSlug, {
     repo: repoName,
     branch: branchName,
@@ -6354,12 +6498,12 @@ async function createFullScan({
     tmp
   }, packagePaths, cwd), 'Creating scan');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('CreateOrgFullScan', result, spinner$1);
+    handleUnsuccessfulApiResponse('CreateOrgFullScan', result, spinner);
     return;
   }
-  spinner$1.successAndStop('Scan created successfully');
+  spinner.successAndStop('Scan created successfully');
   const link = colors.underline(colors.cyan(`${result.data.html_report_url}`));
-  console.log(`Available at: ${link}`);
+  logger.logger.log(`Available at: ${link}`);
   const rl = readline.createInterface({
     input: process$1.stdin,
     output: process$1.stdout
@@ -6371,6 +6515,9 @@ async function createFullScan({
   rl.close();
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$6
+} = constants;
 const config$6 = {
   commandName: 'create',
   description: 'Create a scan',
@@ -6487,7 +6634,7 @@ async function run$6(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process$1.exitCode = 2;
-    console.error(`
+    logger.logger.error(`
       ${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repo ${!repoName ? colors.red('(missing!)') : colors.green('(ok)')}\n
@@ -6500,7 +6647,8 @@ async function run$6(argv, importMeta, {
 
   // Note exiting earlier to skirt a hidden auth requirement
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$6);
+    return;
   }
   await createFullScan({
     branchName: branchName,
@@ -6520,19 +6668,23 @@ async function run$6(argv, importMeta, {
 }
 
 async function deleteOrgFullScan(orgSlug, fullScanId, apiToken) {
-  const spinnerText = 'Deleting scan...';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Deleting scan...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.deleteOrgFullScan(orgSlug, fullScanId), 'Deleting scan');
-  if (result.success) {
-    spinner$1.successAndStop('Scan deleted successfully');
-  } else {
-    handleUnsuccessfulApiResponse('deleteOrgFullScan', result, spinner$1);
+  if (!result.success) {
+    handleUnsuccessfulApiResponse('deleteOrgFullScan', result, spinner);
+    return;
   }
+  spinner.successAndStop('Scan deleted successfully');
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$5
+} = constants;
 const config$5 = {
   commandName: 'del',
   description: 'Delete a scan',
@@ -6572,13 +6724,14 @@ async function run$5(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Full Scan ID to delete as second argument ${!fullScanId ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$5);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6589,14 +6742,15 @@ async function run$5(argv, importMeta, {
 
 // @ts-ignore
 async function listFullScans(orgSlug, input, apiToken) {
-  const spinnerText = 'Listing scans... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Listing scans...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgFullScanList(orgSlug, input), 'Listing scans');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgFullScanList', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgFullScanList', result, spinner);
     return;
   }
   const options = {
@@ -6626,10 +6780,13 @@ async function listFullScans(orgSlug, input, apiToken) {
       branch: d.branch
     };
   });
-  spinner$1.stop(`Listing scans for: ${orgSlug}`);
-  console.log(chalkTable(options, formattedResults));
+  spinner.stop(`Listing scans for: ${orgSlug}`);
+  logger.logger.log(chalkTable(options, formattedResults));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$4
+} = constants;
 const config$4 = {
   commandName: 'list',
   description: 'List the full scans for an organization',
@@ -6705,12 +6862,13 @@ async function run$4(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
     - Org name as the argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$4);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6732,20 +6890,24 @@ async function run$4(argv, importMeta, {
 }
 
 async function getOrgScanMetadata(orgSlug, scanId, apiToken) {
-  const spinnerText = "Getting scan's metadata... \n";
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start("Getting scan's metadata...");
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgFullScanMetadata(orgSlug, scanId), 'Listing scans');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgFullScanMetadata', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgFullScanMetadata', result, spinner);
     return;
   }
-  spinner$1.stop('Scan metadata:');
-  console.log(result.data);
+  spinner.stop('Scan metadata:');
+  logger.logger.log(result.data);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$3
+} = constants;
 const config$3 = {
   commandName: 'metadata',
   description: "Get a full scan's metadata",
@@ -6785,13 +6947,14 @@ async function run$3(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Full Scan ID to inspect as second argument ${!fullScanId ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$3);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6801,19 +6964,24 @@ async function run$3(argv, importMeta, {
 }
 
 async function getFullScan(orgSlug, fullScanId, file, apiToken) {
-  const spinner$1 = new spinner.Spinner({
-    text: 'Streaming scan...'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Streaming scan...');
   const socketSdk = await index.setupSdk(apiToken);
   const data = await handleApiCall(socketSdk.getOrgFullScan(orgSlug, fullScanId, file === '-' ? undefined : file), 'Streaming a scan');
   if (data?.success) {
-    spinner$1.stop(file ? `Full scan details written to ${file}` : '');
+    spinner.stop(file ? `Full scan details written to ${file}` : '');
   } else {
-    handleUnsuccessfulApiResponse('getOrgFullScan', data, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgFullScan', data, spinner);
   }
   return data;
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$2
+} = constants;
 const config$2 = {
   commandName: 'stream',
   description: 'Stream the output of a scan',
@@ -6855,13 +7023,14 @@ async function run$2(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Full Scan ID to fetch as second argument ${!fullScanId ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$2);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6899,9 +7068,11 @@ async function getThreatFeed({
   page,
   perPage
 }) {
-  const spinner$1 = new spinner.Spinner({
-    text: 'Looking up the threat feed'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Looking up the threat feed');
   const formattedQueryParams = formatQueryParams({
     per_page: perPage,
     page,
@@ -6910,9 +7081,9 @@ async function getThreatFeed({
   }).join('&');
   const response = await queryAPI(`threat-feed?${formattedQueryParams}`, apiToken);
   const data = await response.json();
-  spinner$1.stop();
+  spinner.stop();
   if (outputJson) {
-    console.log(data);
+    logger.logger.log(data);
     return;
   }
   const screen = new ScreenWidget();
@@ -6967,6 +7138,9 @@ function getMinDiff(start, end) {
   return Math.floor((end - start) / 60000);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$1
+} = constants;
 const config$1 = {
   commandName: 'threat-feed',
   description: 'Look up the threat feed',
@@ -7026,7 +7200,8 @@ async function run$1(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$1);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -7049,7 +7224,7 @@ function addSocketWrapper(file) {
     }
     // TODO: pretty sure you need to source the file or restart
     //       any terminal session before changes are reflected.
-    console.log(`
+    logger.logger.log(`
 The alias was added to ${file}. Running 'npm install' will now be wrapped in Socket's "safe npm" 🎉
 If you want to disable it at any time, run \`socket wrapper --disable\`
 `);
@@ -7060,7 +7235,7 @@ function checkSocketWrapperSetup(file) {
   const fileContent = fs.readFileSync(file, 'utf8');
   const linesWithSocketAlias = fileContent.split('\n').filter(l => l === 'alias npm="socket npm"' || l === 'alias npx="socket npx"');
   if (linesWithSocketAlias.length) {
-    console.log(`The Socket npm/npx wrapper is set up in your bash profile (${file}).`);
+    logger.logger.log(`The Socket npm/npx wrapper is set up in your bash profile (${file}).`);
     return true;
   }
   return false;
@@ -7082,7 +7257,7 @@ function postinstallWrapper() {
   }
 }
 function installSafeNpm(query) {
-  console.log(`
+  logger.logger.log(`
  _____         _       _
 |   __|___ ___| |_ ___| |_
 |__   | . |  _| '_| -_|  _|
@@ -7125,24 +7300,27 @@ function askQuestion(rl, query) {
 function removeSocketWrapper(file) {
   return fs.readFile(file, 'utf8', function (err, data) {
     if (err) {
-      console.error(`There was an error removing the alias: ${err}`);
+      logger.logger.error('There was an error removing the alias:');
+      logger.logger.error(err);
       return;
     }
     const linesWithoutSocketAlias = data.split('\n').filter(l => l !== 'alias npm="socket npm"' && l !== 'alias npx="socket npx"');
     const updatedFileContent = linesWithoutSocketAlias.join('\n');
     fs.writeFile(file, updatedFileContent, function (err) {
       if (err) {
-        console.log(err);
+        logger.logger.error(err);
         return;
-      } else {
-        // TODO: pretty sure you need to source the file or restart
-        //       any terminal session before changes are reflected.
-        console.log(`\nThe alias was removed from ${file}. Running 'npm install' will now run the standard npm command.\n`);
       }
+      // TODO: pretty sure you need to source the file or restart
+      //       any terminal session before changes are reflected.
+      logger.logger.log(`The alias was removed from ${file}. Running 'npm install' will now run the standard npm command.`);
     });
   });
 }
 
+const {
+  DRY_RUN_BAIL_TEXT
+} = constants;
 const config = {
   commandName: 'wrapper',
   description: 'Enable or disable the Socket npm/npx wrapper',
@@ -7199,12 +7377,13 @@ async function run(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required flags:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required flags:\n
       - Must use --enabled or --disabled\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT);
+    return;
   }
 
   // Lazily access constants.bashRcPath and constants.zshRcPath.
@@ -7228,7 +7407,7 @@ async function run(argv, importMeta, {
     }
   }
   if (!fs.existsSync(bashRcPath) && !fs.existsSync(zshRcPath)) {
-    console.error('There was an issue setting up the alias in your bash profile');
+    logger.logger.error('There was an issue setting up the alias in your bash profile');
   }
 }
 
@@ -7301,12 +7480,12 @@ void (async () => {
     } else {
       errorTitle = 'Unexpected error with no details';
     }
-    console.error(`${npmPaths.getLogSymbols().error} ${colors.bgRed(colors.white(errorTitle + ':'))} ${errorMessage}`);
+    logger.logger.error(`${colors.bgRed(colors.white(errorTitle + ':'))} ${errorMessage}`);
     if (errorBody) {
-      console.error(`\n${errorBody}`);
+      logger.logger.error(`\n${errorBody}`);
     }
     await index.captureException(e);
   }
 })();
-//# debugId=76095f49-6cee-41ed-8752-1e7608d29b7d
+//# debugId=58e6ceed-07a5-4b32-b0e9-9fef0ceef6d7
 //# sourceMappingURL=cli.js.map