@socketsecurity/cli-with-sentry 0.14.51 → 0.14.53

package/dist/require/cli.js

@@ -24,13 +24,12 @@ var fs = require('node:fs');
 var path = require('node:path');
 var ndjson = _socketInterop(require('ndjson'));
 var index = require('./index.js');
+var constants = require('./constants.js');
 var objects = require('@socketsecurity/registry/lib/objects');
 var regexps = require('@socketsecurity/registry/lib/regexps');
-var constants = require('./constants.js');
 var fs$1 = require('node:fs/promises');
 var ScreenWidget = _socketInterop(require('blessed/lib/widgets/screen'));
 var contrib = _socketInterop(require('blessed-contrib'));
-var spinner = require('@socketsecurity/registry/lib/spinner');
 var prompts = require('@socketsecurity/registry/lib/prompts');
 var yargsParse = _socketInterop(require('yargs-parser'));
 var words = require('@socketsecurity/registry/lib/words');
@@ -42,7 +41,7 @@ var packages = require('@socketsecurity/registry/lib/packages');
 var registryConstants = require('@socketsecurity/registry/lib/constants');
 var isInteractive = require('@socketregistry/is-interactive/index.cjs');
 var terminalLink = _socketInterop(require('terminal-link'));
-var spawn = _socketInterop(require('@npmcli/promise-spawn'));
+var spawn = require('@socketsecurity/registry/lib/spawn');
 var npa = _socketInterop(require('npm-package-arg'));
 var semver = _socketInterop(require('semver'));
 var tinyglobby = _socketInterop(require('tinyglobby'));
@@ -53,13 +52,12 @@ var index_cjs = require('@socketregistry/hyrious__bun.lockb/index.cjs');
 var sorts = require('@socketsecurity/registry/lib/sorts');
 var strings = require('@socketsecurity/registry/lib/strings');
 var yaml = _socketInterop(require('yaml'));
+var debug = require('@socketsecurity/registry/lib/debug');
 var npmPaths = require('./npm-paths.js');
-var npm$1 = require('./npm.js');
 var betterAjvErrors = _socketInterop(require('@apideck/better-ajv-errors'));
 var config$A = require('@socketsecurity/config');
 var assert = require('node:assert');
 var readline = require('node:readline/promises');
-var childProcess = require('node:child_process');
 var TableWidget = _socketInterop(require('blessed-contrib/lib/widget/table'));
 var readline$1 = require('node:readline');
 
@@ -264,7 +262,6 @@ class Score {
 }
 
 // https://github.com/SocketDev/socket-python-cli/blob/6d4fc56faee68d3a4764f1f80f84710635bdaf05/socketsecurity/core/__init__.py
-/* eslint-disable no-await-in-loop */
 class Core {
   securityPolicy = {};
   constructor({
@@ -559,6 +556,7 @@ class Core {
         diff.newPackages.push(purl);
         consolidated.add(basePurl);
       }
+      // eslint-disable-next-line no-await-in-loop
       newScanAlerts = await this.createIssueAlerts({
         pkg,
         alerts: newScanAlerts,
@@ -576,6 +574,7 @@ class Core {
       if (!(packageId in newPackages) && pkg.direct) {
         diff.removedPackages.push(purl);
       }
+      // eslint-disable-next-line no-await-in-loop
       headScanAlerts = await this.createIssueAlerts({
         pkg,
         alerts: headScanAlerts,
@@ -641,7 +640,7 @@ class Core {
         license: sbomArtifact.license
       });
       if (pkg.id in packages) {
-        console.log('Duplicate package?');
+        logger.logger.log('Duplicate package?');
       } else {
         pkg = this.getLicenseDetails({
           package: pkg
@@ -681,8 +680,8 @@ class Core {
           });
         }
       }
-    } catch (error) {
-      console.error(error);
+    } catch (e) {
+      logger.logger.error(e);
     }
     const newFullScan = await this.createFullScan({
       params
@@ -706,7 +705,6 @@ class Core {
 }
 
 // https://github.com/SocketDev/socket-python-cli/blob/6d4fc56faee68d3a4764f1f80f84710635bdaf05/socketsecurity/core/scm_comments.py
-
 function checkForSocketComments({
   comments
 }) {
@@ -836,9 +834,9 @@ function getIgnoreOptions({
           const data = `${name}/${version}`;
           ignoreCommands.push(data);
         }
-      } catch (error) {
-        console.error(`Unable to process ignore command for ${comment}`);
-        console.error(error);
+      } catch (e) {
+        logger.logger.error(`Unable to process ignore command for ${comment}`);
+        logger.logger.error(e);
       }
     }
   }
@@ -869,9 +867,9 @@ function removeAlerts({
       const purl = `${fullName}/${alert.pkg_version}`;
       const purlStar = `${fullName}/*`;
       if (ignoreCommands.includes(purl) || ignoreCommands.includes(purlStar)) {
-        console.log(`Alerts for ${alert.pkg_name}@${alert.pkg_version} ignored`);
+        logger.logger.log(`Alerts for ${alert.pkg_name}@${alert.pkg_version} ignored`);
       } else {
-        console.log(`Adding alert ${alert.type} for ${alert.pkg_name}@${alert.pkg_version}`);
+        logger.logger.log(`Adding alert ${alert.type} for ${alert.pkg_name}@${alert.pkg_version}`);
         alerts.push(alert);
       }
     }
@@ -909,7 +907,7 @@ class GitHub {
         if (['opened', 'synchronize'].includes(eventAction)) {
           return 'diff';
         } else {
-          console.log(`Pull request action: ${eventAction} is not supported`);
+          logger.logger.log(`Pull request action: ${eventAction} is not supported`);
           process.exit();
         }
       case 'issue_comment':
@@ -1024,30 +1022,30 @@ class GitHub {
       security: existingSecurityComment
     } = comments;
     if (newOverviewComment) {
-      console.log('New Dependency Overview comment');
+      logger.logger.log('New Dependency Overview comment');
       if (existingOverviewComment !== undefined) {
-        console.log('Previous version of Dependency Overview, updating');
+        logger.logger.log('Previous version of Dependency Overview, updating');
         await this.updateComment({
           body: overviewComment,
           id: existingOverviewComment.id
         });
       } else {
-        console.log('No previous version of Dependency Overview, posting');
+        logger.logger.log('No previous version of Dependency Overview, posting');
         await this.postComment({
           body: overviewComment
         });
       }
     }
     if (newSecurityComment) {
-      console.log('New Security Issue Comment');
+      logger.logger.log('New Security Issue Comment');
       if (existingSecurityComment !== undefined) {
-        console.log('Previous version of Security Issue comment, updating');
+        logger.logger.log('Previous version of Security Issue comment, updating');
         await this.updateComment({
           body: securityComment,
           id: existingSecurityComment.id
         });
       } else {
-        console.log('No Previous version of Security Issue comment, posting');
+        logger.logger.log('No Previous version of Security Issue comment, posting');
         await this.postComment({
           body: securityComment
         });
@@ -1226,7 +1224,7 @@ async function runAction(githubEventBefore, githubEventAfter) {
   const socket = new sdk.SocketSdk(index.getDefaultToken());
   const git = simpleGit.simpleGit();
   const changedFiles = (await git.diff(process.env['GITHUB_EVENT_NAME'] === 'pull_request' ? ['--name-only', 'HEAD^1', 'HEAD'] : ['--name-only', githubEventBefore, githubEventAfter])).split('\n');
-  console.log({
+  logger.logger.log({
     changedFiles
   });
   // supportedFiles have 3-level deep globs
@@ -1234,13 +1232,13 @@ async function runAction(githubEventBefore, githubEventAfter) {
   const files = micromatch(changedFiles, patterns);
   const scm = new GitHub();
   if (scm.checkEventType() === 'comment') {
-    console.log('Comment initiated flow');
+    logger.logger.log('Comment initiated flow');
     const comments = await scm.getCommentsForPR();
     await scm.removeCommentAlerts({
       comments
     });
   } else if (scm.checkEventType() === 'diff') {
-    console.log('Push initiated flow');
+    logger.logger.log('Push initiated flow');
     const core = new Core({
       owner: scm.owner,
       repo: scm.repo,
@@ -1262,17 +1260,17 @@ async function runAction(githubEventBefore, githubEventAfter) {
     if (diff.newAlerts.length === 0) {
       if (!updateOldSecurityComment) {
         newSecurityComment = false;
-        console.log('No new alerts or security issue comment disabled');
+        logger.logger.log('No new alerts or security issue comment disabled');
       } else {
-        console.log('Updated security comment with no new alerts');
+        logger.logger.log('Updated security comment with no new alerts');
       }
     }
     if (diff.newPackages.length === 0 && diff.removedPackages.length === 0) {
       if (!updateOldOverviewComment) {
         newOverviewComment = false;
-        console.log('No new/removed packages or Dependency Overview comment disabled');
+        logger.logger.log('No new/removed packages or Dependency Overview comment disabled');
       } else {
-        console.log('Updated overview comment with no dependencies');
+        logger.logger.log('Updated overview comment with no dependencies');
       }
     }
     await scm.addSocketComments({
@@ -1400,6 +1398,8 @@ const validationFlags = {
 };
 
 const {
+  DRY_RUN_LABEL: DRY_RUN_LABEL$1,
+  REDACTED,
   SOCKET_CLI_SHOW_BANNER
 } = constants;
 async function meowWithSubcommands(subcommands, options) {
@@ -1437,7 +1437,7 @@ async function meowWithSubcommands(subcommands, options) {
   // Temp disable until we clear the --json and --markdown usage
   // Lazily access constants.ENV[SOCKET_CLI_SHOW_BANNER].
   if (constants.ENV[SOCKET_CLI_SHOW_BANNER]) {
-    console.log(getAsciiHeader(name));
+    logger.logger.log(getAsciiHeader(name));
   }
   const cli = vendor.meow(`
     Usage
@@ -1473,7 +1473,7 @@ async function meowWithSubcommands(subcommands, options) {
     autoHelp: false // otherwise we can't exit(0)
   });
   if (!cli.flags['help'] && cli.flags['dryRun']) {
-    console.log('[DryRun]: noop, call a sub-command; ok');
+    logger.logger.log(`${DRY_RUN_LABEL$1}: No-op, call a sub-command; ok`);
     process.exitCode = 0;
   } else {
     cli.showHelp();
@@ -1495,7 +1495,7 @@ function meowOrExit({
   // Temp disable until we clear the --json and --markdown usage.
   // Lazily access constants.ENV[SOCKET_CLI_SHOW_BANNER].
   if (constants.ENV[SOCKET_CLI_SHOW_BANNER]) {
-    console.log(getAsciiHeader(command));
+    logger.logger.log(getAsciiHeader(command));
   }
 
   // This exits if .printHelp() is called either by meow itself or by us.
@@ -1515,7 +1515,7 @@ function meowOrExit({
 }
 function getAsciiHeader(command) {
   const cliVersion = // The '@rollup/plugin-replace' will replace "process.env['SOCKET_CLI_VERSION_HASH']".
-  "0.14.51:8252840:e7069cc4:pub";
+  "0.14.53:e7fcb39:b41fef49:pub";
   const nodeVersion = process.version;
   const apiToken = index.getSetting('apiToken');
   const shownToken = apiToken ? getLastFiveOfApiToken(apiToken) : 'no';
@@ -1530,6 +1530,9 @@ function getAsciiHeader(command) {
 
 // https://github.com/SocketDev/socket-python-cli/blob/6d4fc56faee68d3a4764f1f80f84710635bdaf05/socketsecurity/socketcli.py
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$y
+} = constants;
 const config$z = {
   commandName: 'action',
   description: 'Socket action command',
@@ -1580,7 +1583,8 @@ async function run$z(argv, importMeta, {
   const githubEventBefore = String(cli.flags['githubEventBefore'] || '');
   const githubEventAfter = String(cli.flags['githubEventAfter'] || '');
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$y);
+    return;
   }
   await runAction(githubEventBefore, githubEventAfter);
 }
@@ -1598,24 +1602,26 @@ async function displayAnalytics({
   scope,
   time
 }) {
-  const spinner$1 = new spinner.Spinner({
-    text: 'Fetching analytics data'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Fetching analytics data');
   let data;
   if (scope === 'org') {
-    data = await fetchOrgAnalyticsData(time, spinner$1, apiToken);
+    data = await fetchOrgAnalyticsData(time, spinner, apiToken);
   } else if (repo) {
-    data = await fetchRepoAnalyticsData(repo, time, spinner$1, apiToken);
+    data = await fetchRepoAnalyticsData(repo, time, spinner, apiToken);
   }
   if (data) {
     if (outputJson && !filePath) {
-      console.log(data);
+      logger.logger.log(data);
     } else if (filePath) {
       try {
         await fs$1.writeFile(filePath, JSON.stringify(data), 'utf8');
-        console.log(`Data successfully written to ${filePath}`);
+        logger.logger.log(`Data successfully written to ${filePath}`);
       } catch (e) {
-        console.error(e);
+        logger.logger.error(e);
       }
     } else {
       const fdata = scope === 'org' ? formatData(data, 'org') : formatData(data, 'repo');
@@ -1664,7 +1670,7 @@ async function fetchOrgAnalyticsData(time, spinner, apiToken) {
   }
   spinner.stop();
   if (!result.data.length) {
-    console.log('No analytics data is available for this organization yet.');
+    logger.logger.log('No analytics data is available for this organization yet.');
     return undefined;
   }
   return result.data;
@@ -1678,7 +1684,7 @@ async function fetchRepoAnalyticsData(repo, time, spinner, apiToken) {
   }
   spinner.stop();
   if (!result.data.length) {
-    console.log('No analytics data is available for this organization yet.');
+    logger.logger.log('No analytics data is available for this organization yet.');
     return undefined;
   }
   return result.data;
@@ -1774,6 +1780,9 @@ function renderLineCharts(grid, screen, title, coords, data) {
   line.setData([lineData]);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$x
+} = constants;
 const config$y = {
   commandName: 'analytics',
   description: `Look up analytics data`,
@@ -1851,14 +1860,15 @@ async function run$y(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Scope must be "repo" or "org" ${badScope ? colors.red('(bad!)') : colors.green('(ok)')}\n
       - The time filter must either be 7, 30 or 90 ${badTime ? colors.red('(bad!)') : colors.green('(ok)')}\n
       - Repository name using --repo when scope is "repo" ${badRepo ? colors.red('(bad!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$x);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -1883,9 +1893,11 @@ async function getAuditLog({
   perPage,
   type
 }) {
-  const spinner$1 = new spinner.Spinner({
-    text: `Looking up audit log for ${orgSlug}\n`
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start(`Looking up audit log for ${orgSlug}`);
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getAuditLogEvents(orgSlug, {
     outputJson,
@@ -1896,10 +1908,10 @@ async function getAuditLog({
     per_page: perPage
   }), `Looking up audit log for ${orgSlug}\n`);
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getAuditLogEvents', result, spinner$1);
+    handleUnsuccessfulApiResponse('getAuditLogEvents', result, spinner);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   const data = [];
   const logDetails = {};
   for (const d of result.data.results) {
@@ -1918,13 +1930,16 @@ async function getAuditLog({
       logDetails[name] = JSON.stringify(d.payload);
     }
   }
-  console.log(logDetails[await prompts.select({
+  logger.logger.log(logDetails[await prompts.select({
     message: type ? `\n Audit log for: ${orgSlug} with type: ${type}\n` : `\n Audit log for: ${orgSlug}\n`,
     choices: data,
     pageSize: 30
   })]);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$w
+} = constants;
 const config$x = {
   commandName: 'audit-log',
   description: 'Look up the audit log for an organization',
@@ -1983,12 +1998,13 @@ async function run$x(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
     - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$w);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -2050,7 +2066,7 @@ async function runCycloneDX(yargv) {
   }
   const fullOutputPath = path.join(process$1.cwd(), yargv.output);
   if (fs.existsSync(fullOutputPath)) {
-    console.log(colors.cyanBright(`${yargv.output} created!`));
+    logger.logger.log(colors.cyanBright(`${yargv.output} created!`));
   }
 }
 function argvToArray(argv) {
@@ -2080,6 +2096,10 @@ function argvToArray(argv) {
 }
 
 // import { meowOrExit } from '../../utils/meow-with-subcommands'
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$v
+} = constants;
+
 // TODO: convert yargs to meow. Or convert all the other things to yargs.
 const toLower = arg => arg.toLowerCase();
 const arrayToLower = arg => arg.map(toLower);
@@ -2184,7 +2204,7 @@ async function run$w(argv, importMeta, {
   //
   //
   // if (cli.input.length)
-  //   console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+  //   logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
   //     - Unexpected arguments\n
   //   `)
   //   config.help(parentName, config)
@@ -2205,14 +2225,15 @@ async function run$w(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process$1.exitCode = 2;
-    console.error(`Unknown ${words.pluralize('argument', unknownLength)}: ${yargv._.join(', ')}`);
+    logger.logger.error(`Unknown ${words.pluralize('argument', unknownLength)}: ${yargv._.join(', ')}`);
     return;
   }
   if (yargv.output === undefined) {
     yargv.output = 'socket-cdx.json';
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$v);
+    return;
   }
   await runCycloneDX(yargv);
 }
@@ -2227,21 +2248,23 @@ async function findDependencies({
   if (!apiToken) {
     throw new index.AuthError('User must be authenticated to run this command. To log in, run the command `socket login` and enter your API key.');
   }
-  const spinner$1 = new spinner.Spinner({
-    text: 'Searching dependencies...'
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Searching dependencies...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.searchDependencies({
     limit,
     offset
   }), 'Searching dependencies');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('searchDependencies', result, spinner$1);
+    handleUnsuccessfulApiResponse('searchDependencies', result, spinner);
     return;
   }
-  spinner$1.stop('Organization dependencies:');
+  spinner.stop('Organization dependencies:');
   if (outputJson) {
-    console.log(result.data);
+    logger.logger.log(result.data);
     return;
   }
   const options = {
@@ -2268,9 +2291,12 @@ async function findDependencies({
       name: colors.cyan('Direct')
     }]
   };
-  console.log(chalkTable(options, result.data.rows));
+  logger.logger.log(chalkTable(options, result.data.rows));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$u
+} = constants;
 const config$v = {
   commandName: 'dependencies',
   description: 'Search for any dependency that is being used in your organization',
@@ -2317,7 +2343,8 @@ async function run$v(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$u);
+    return;
   }
 
   // TODO: markdown flag is ignored
@@ -2335,38 +2362,44 @@ async function getDiffScan({
   orgSlug,
   outputJson
 }, apiToken) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Getting diff scan...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Getting diff scan...');
   const response = await queryAPI(`${orgSlug}/full-scans/diff?before=${before}&after=${after}&preview`, apiToken);
   const data = await response.json();
   if (!response.ok) {
     const err = await handleAPIError(response.status);
-    spinner$1.errorAndStop(`${colors.bgRed(colors.white(response.statusText))}: ${err}`);
+    spinner.errorAndStop(`${colors.bgRed(colors.white(response.statusText))}: ${err}`);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   if (file && !outputJson) {
     fs.writeFile(file, JSON.stringify(data), err => {
-      err ? console.error(err) : console.log(`Data successfully written to ${file}`);
+      err ? logger.logger.error(err) : logger.logger.log(`Data successfully written to ${file}`);
     });
     return;
   }
   if (outputJson) {
-    console.log(`\n Diff scan result: \n`);
-    console.log(require$$0$1.inspect(data, {
+    logger.logger.log(`\n Diff scan result: \n`);
+    logger.logger.log(require$$0$1.inspect(data, {
       showHidden: false,
       depth: null,
       colors: true
     }));
-    console.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
+    logger.logger.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
     return;
   }
-  console.log('Diff scan result:');
-  console.log(data);
-  console.log(`\n 📝 To display the detailed report in the terminal, use the --json flag \n`);
-  console.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
+  logger.logger.log('Diff scan result:');
+  logger.logger.log(data);
+  logger.logger.log(`\n 📝 To display the detailed report in the terminal, use the --json flag \n`);
+  logger.logger.log(`\n View this diff scan in the Socket dashboard: ${colors.cyan(data?.['diff_report_url'])}`);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$t
+} = constants;
 const config$u = {
   commandName: 'get',
   description: 'Get a diff scan for an organization',
@@ -2432,14 +2465,15 @@ async function run$u(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Specify a before and after full scan ID ${!before && !after ? colors.red('(missing before and after!)') : !before ? colors.red('(missing before!)') : !after ? colors.red('(missing after!)') : colors.green('(ok)')}\n
           - To get full scans IDs, you can run the command "socket scan list <your org slug>".
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$t);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -2482,7 +2516,11 @@ function isTopLevel(tree, node) {
   return tree.children.get(node.name) === node;
 }
 async function runFix() {
-  const spinner$1 = new spinner.Spinner().start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start();
   const cwd = process.cwd();
   const editablePkgJson = await packages.readPackageJson(cwd, {
     editable: true
@@ -2513,7 +2551,7 @@ async function runFix() {
       const tree = arb.idealTree;
       const hasUpgrade = !!registry.getManifestData(NPM$d, name);
       if (hasUpgrade) {
-        spinner$1.info(`Skipping ${name}. Socket Optimize package exists.`);
+        spinner.info(`Skipping ${name}. Socket Optimize package exists.`);
         continue;
       }
       const nodes = index.findPackageNodes(tree, name);
@@ -2539,10 +2577,10 @@ async function runFix() {
               try {
                 // eslint-disable-next-line no-await-in-loop
                 await npm.runScript('test', [], {
-                  spinner: spinner$1,
+                  spinner,
                   stdio: 'ignore'
                 });
-                spinner$1.info(`Patched ${name} ${oldVersion} -> ${node.version}`);
+                spinner.info(`Patched ${name} ${oldVersion} -> ${node.version}`);
                 if (isTopLevel(tree, node)) {
                   for (const depField of ['dependencies', 'optionalDependencies', 'peerDependencies']) {
                     const oldVersion = editablePkgJson.content[depField]?.[name];
@@ -2555,11 +2593,11 @@ async function runFix() {
                 // eslint-disable-next-line no-await-in-loop
                 await editablePkgJson.save();
               } catch {
-                spinner$1.error(`Reverting ${name} to ${oldVersion}`);
+                spinner.error(`Reverting ${name} to ${oldVersion}`);
                 arb.idealTree = revertToIdealTree;
               }
             } else {
-              spinner$1.error(`Could not patch ${name} ${oldVersion}`);
+              spinner.error(`Could not patch ${name} ${oldVersion}`);
             }
           }
         }
@@ -2571,9 +2609,12 @@ async function runFix() {
   });
   arb2.idealTree = arb.idealTree;
   await arb2.reify();
-  spinner$1.stop();
+  spinner.stop();
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$s
+} = constants;
 const config$t = {
   commandName: 'fix',
   description: 'Fix "fixable" Socket alerts',
@@ -2604,7 +2645,8 @@ async function run$t(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$s);
+    return;
   }
   await runFix();
 }
@@ -2716,9 +2758,9 @@ function formatPackageInfo({
   strict
 }, spinner) {
   if (outputJson) {
-    console.log(JSON.stringify(data, undefined, 2));
+    logger.logger.log(JSON.stringify(data, undefined, 2));
   } else {
-    console.log('\nPackage report card:');
+    logger.logger.log('\nPackage report card:');
     const scoreResult = {
       'Supply Chain Risk': Math.floor(score.supplyChainRisk.score * 100),
       Maintenance: Math.floor(score.maintenance.score * 100),
@@ -2726,8 +2768,8 @@ function formatPackageInfo({
       Vulnerabilities: Math.floor(score.vulnerability.score * 100),
       License: Math.floor(score.license.score * 100)
     };
-    Object.entries(scoreResult).map(score => console.log(`- ${score[0]}: ${formatScore(score[1])}`));
-    console.log('\n');
+    Object.entries(scoreResult).map(score => logger.logger.log(`- ${score[0]}: ${formatScore(score[1])}`));
+    logger.logger.log('\n');
     if (objectSome(severityCount)) {
       spinner[strict ? 'error' : 'success'](`Package has these issues: ${formatSeverityCount(severityCount)}`);
       formatPackageIssuesDetails(data, outputMarkdown);
@@ -2736,18 +2778,18 @@ function formatPackageInfo({
     }
     const format = new index.ColorOrMarkdown(!!outputMarkdown);
     const url = index.getSocketDevPackageOverviewUrl(NPM$c, pkgName, pkgVersion);
-    console.log('\n');
+    logger.logger.log('\n');
     if (pkgVersion === 'latest') {
-      console.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName}`, url, {
+      logger.logger.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName}`, url, {
         fallbackToUrl: true
       })}`);
     } else {
-      console.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName} v${pkgVersion}`, url, {
+      logger.logger.log(`Detailed info on socket.dev: ${format.hyperlink(`${pkgName} v${pkgVersion}`, url, {
         fallbackToUrl: true
       })}`);
     }
     if (!outputMarkdown) {
-      console.log(colors.dim(`\nOr rerun ${colors.italic(name)} using the ${colors.italic('--json')} flag to get full JSON output`));
+      logger.logger.log(colors.dim(`\nOr rerun ${colors.italic(name)} using the ${colors.italic('--json')} flag to get full JSON output`));
     }
   }
   if (strict && objectSome(severityCount)) {
@@ -2778,9 +2820,9 @@ function formatPackageIssuesDetails(packageData, outputMarkdown) {
       fallbackToUrl: true
     });
     if (uniqueIssues[issue]?.count === 1) {
-      console.log(`- ${issueWithLink}`);
+      logger.logger.log(`- ${issueWithLink}`);
     } else {
-      console.log(`- ${issueWithLink}: ${uniqueIssues[issue]?.count}`);
+      logger.logger.log(`- ${issueWithLink}: ${uniqueIssues[issue]?.count}`);
     }
   }
 }
@@ -2802,11 +2844,12 @@ async function getPackageInfo({
   pkgVersion,
   strict
 }) {
-  const spinnerText = pkgVersion === 'latest' ? `Looking up data for the latest version of ${pkgName}` : `Looking up data for version ${pkgVersion} of ${pkgName}`;
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
-  const packageData = await fetchPackageInfo(pkgName, pkgVersion, includeAllIssues, spinner$1);
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start(pkgVersion === 'latest' ? `Looking up data for the latest version of ${pkgName}` : `Looking up data for version ${pkgVersion} of ${pkgName}`);
+  const packageData = await fetchPackageInfo(pkgName, pkgVersion, includeAllIssues, spinner);
   if (packageData) {
     formatPackageInfo(packageData, {
       name: commandName,
@@ -2815,10 +2858,13 @@ async function getPackageInfo({
       pkgName,
       pkgVersion,
       strict
-    }, spinner$1);
+    }, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$r
+} = constants;
 const config$s = {
   commandName: 'info',
   description: 'Look up info regarding a package',
@@ -2860,7 +2906,7 @@ async function run$s(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Expecting a package name ${!rawPkgName ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Can only accept one package at a time ${cli.input.length > 1 ? colors.red('(got ' + cli.input.length + '!)') : colors.green('(ok)')}\n`);
     return;
@@ -2869,7 +2915,8 @@ async function run$s(argv, importMeta, {
   const pkgName = versionSeparator < 1 ? rawPkgName : rawPkgName.slice(0, versionSeparator);
   const pkgVersion = versionSeparator < 1 ? 'latest' : rawPkgName.slice(versionSeparator + 1);
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$r);
+    return;
   }
   await getPackageInfo({
     commandName: `${parentName} ${config$s.commandName}`,
@@ -2889,19 +2936,20 @@ function applyLogin(apiToken, enforcedOrgs, apiBaseUrl, apiProxy) {
   index.updateSetting('apiProxy', apiProxy);
 }
 
-// TODO: this type should come from a general Socket REST API type doc
-
 const {
   SOCKET_PUBLIC_API_TOKEN
 } = constants;
 async function attemptLogin(apiBaseUrl, apiProxy) {
+  apiBaseUrl ??= index.getSetting('apiBaseUrl') ?? undefined;
+  apiProxy ??= index.getSetting('apiProxy') ?? undefined;
   const apiToken = (await prompts.password({
     message: `Enter your ${terminalLink('Socket.dev API key', 'https://docs.socket.dev/docs/api-keys')} (leave blank for a public key)`
   })) || SOCKET_PUBLIC_API_TOKEN;
-  apiBaseUrl ??= index.getSetting('apiBaseUrl') ?? undefined;
-  apiProxy ??= index.getSetting('apiProxy') ?? undefined;
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Verifying API key...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Verifying API key...');
   let orgs;
   try {
     const sdk = await index.setupSdk(apiToken, apiBaseUrl, apiProxy);
@@ -2910,9 +2958,9 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
       throw new index.AuthError();
     }
     orgs = result.data;
-    spinner$1.success('API key verified');
+    spinner.success('API key verified');
   } catch {
-    spinner$1.errorAndStop('Invalid API key');
+    spinner.errorAndStop('Invalid API key');
     return;
   }
   const enforcedChoices = Object.values(orgs.organizations).filter(org => org?.plan === 'enterprise').map(org => ({
@@ -2929,7 +2977,7 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
         description: 'Pick "None" if this is a personal device'
       })
     }, {
-      spinner: spinner$1
+      spinner
     });
     if (id) {
       enforcedOrgs = [id];
@@ -2939,7 +2987,7 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
       message: `Should Socket enforce ${enforcedChoices[0]?.name}'s security policies system-wide?`,
       default: true
     }, {
-      spinner: spinner$1
+      spinner
     });
     if (confirmOrg) {
       const existing = enforcedChoices[0];
@@ -2951,12 +2999,15 @@ async function attemptLogin(apiBaseUrl, apiProxy) {
   const oldToken = index.getSetting('apiToken');
   try {
     applyLogin(apiToken, enforcedOrgs, apiBaseUrl, apiProxy);
-    spinner$1.successAndStop(`API credentials ${oldToken ? 'updated' : 'set'}`);
+    spinner.successAndStop(`API credentials ${oldToken ? 'updated' : 'set'}`);
   } catch {
-    spinner$1.errorAndStop(`API login failed`);
+    spinner.errorAndStop(`API login failed`);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$q
+} = constants;
 const config$r = {
   commandName: 'login',
   description: 'Socket API login',
@@ -3003,7 +3054,8 @@ async function run$r(argv, importMeta, {
   let apiBaseUrl = cli.flags['apiBaseUrl'];
   let apiProxy = cli.flags['apiProxy'];
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$q);
+    return;
   }
   if (!isInteractive()) {
     throw new index.InputError('Cannot prompt for credentials in a non-interactive shell');
@@ -3027,6 +3079,9 @@ function attemptLogout() {
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$p
+} = constants;
 const config$q = {
   commandName: 'logout',
   description: 'Socket API logout',
@@ -3056,31 +3111,31 @@ async function run$q(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$p);
+    return;
   }
   attemptLogout();
 }
 
 async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const rbin = path.resolve(bin);
   const rtarget = path.resolve(target);
-  // const rout = out === '-' ? '-' : path.resolve(out)
-
   if (verbose) {
-    console.group('gradle2maven:');
-    console.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
-    console.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
-    // console.log(`[VERBOSE] - Absolute out path: \`${rout}\``)
-    console.groupEnd();
+    logger.logger.group('gradle2maven:');
+    logger.logger.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
+    logger.logger.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
+    logger.logger.groupEnd();
   } else {
-    console.group('gradle2maven:');
-    console.log(`- executing: \`${bin}\``);
-    console.log(`- src dir: \`${target}\``);
-    // console.log(`- dst dir: \`${out}\``)
-    console.groupEnd();
-  }
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start(`Converting gradle to maven from \`${bin}\` on \`${target}\`...`);
+    logger.logger.group('gradle2maven:');
+    logger.logger.log(`- executing: \`${bin}\``);
+    logger.logger.log(`- src dir: \`${target}\``);
+    logger.logger.groupEnd();
+  }
+  spinner.start(`Converting gradle to maven from \`${bin}\` on \`${target}\`...`);
   try {
     // Run sbt with the init script we provide which should yield zero or more pom files.
     // We have to figure out where to store those pom files such that we can upload them and predict them through the GitHub API.
@@ -3090,36 +3145,37 @@ async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
     const initLocation = path.join(constants.rootDistPath, 'init.gradle');
     const commandArgs = ['--init-script', initLocation, ...gradleOpts, 'pom'];
     if (verbose) {
-      spinner$1.log('[VERBOSE] Executing:', bin, commandArgs);
+      spinner.log('[VERBOSE] Executing:', bin, commandArgs);
     }
-    const output = await spawn(bin, commandArgs, {
+    const output = await spawn.spawn(bin, commandArgs, {
       cwd: target || '.'
     });
+    spinner.stop();
     if (verbose) {
-      console.group('[VERBOSE] gradle stdout:');
-      console.log(output);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] gradle stdout:');
+      logger.logger.log(output);
+      logger.logger.groupEnd();
     }
     if (output.stderr) {
-      spinner$1.errorAndStop('There were errors while running gradle');
+      logger.logger.error('There were errors while running gradle');
       // (In verbose mode, stderr was printed above, no need to repeat it)
       if (!verbose) {
-        console.group('[VERBOSE] stderr:');
-        console.error(output.stderr);
-        console.groupEnd();
+        logger.logger.group('[VERBOSE] stderr:');
+        logger.logger.error(output.stderr);
+        logger.logger.groupEnd();
       }
       process.exit(1);
     }
-    spinner$1.successAndStop('Executed gradle successfully');
-    console.log('Reported exports:');
+    logger.logger.success('Executed gradle successfully');
+    logger.logger.log('Reported exports:');
     output.stdout.replace(/^POM file copied to: (.*)/gm, (_all, fn) => {
-      console.log('- ', fn);
+      logger.logger.log('- ', fn);
       return fn;
     });
 
     // const loc = output.stdout?.match(/Wrote (.*?.pom)\n/)?.[1]?.trim()
     // if (!loc) {
-    //   console.error(
+    //   logger.error(
     //     'There were no errors from sbt but could not find the location of resulting .pom file either'
     //   )
     //   process.exit(1)
@@ -3128,8 +3184,8 @@ async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
     // // Move the pom file to ...? initial cwd? loc will be an absolute path, or dump to stdout
     // if (out === '-') {
     //   spinner.start('Result:\n```')
-    //   console.log(await safeReadFile(loc, 'utf8'))
-    //   console.log('```')
+    //   spinner.log(await safeReadFile(loc, 'utf8'))
+    //   spinner.log('```')
     //   spinner.successAndStop(`OK`)
     // } else {
     //   spinner.start()
@@ -3145,16 +3201,20 @@ async function convertGradleToMaven(target, bin, _out, verbose, gradleOpts) {
     //   spinner.successAndStop(`OK. File should be available in \`${out}\``)
     // }
   } catch (e) {
-    spinner$1.errorAndStop('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
+    spinner.stop();
+    logger.logger.error('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
     if (verbose) {
-      console.group('[VERBOSE] error:');
-      console.log(e);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] error:');
+      logger.logger.log(e);
+      logger.logger.groupEnd();
     }
     process.exit(1);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$o
+} = constants;
 const config$p = {
   commandName: 'gradle',
   description: '[beta] Use Gradle to generate a manifest file (`pom.xml`) for a Gradle/Java/Kotlin/etc project',
@@ -3242,22 +3302,23 @@ async function run$p(argv, importMeta, {
   });
   const verbose = Boolean(cli.flags['verbose']);
   if (verbose) {
-    console.group('- ', parentName, config$p.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$p.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.groupEnd();
   }
   const target = cli.input[0];
 
-  // TODO: I'm not sure it's feasible to parse source file from stdin. We could try, store contents in a file in some folder, target that folder... what would the file name be?
-
+  // TODO: I'm not sure it's feasible to parse source file from stdin. We could
+  // try, store contents in a file in some folder, target that folder... what
+  // would the file name be?
   if (!target || target === '-' || cli.input.length > 1) {
     // Use exit status of 2 to indicate incorrect usage, generally invalid
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The DIR arg is required ${!target ? colors.red('(missing!)') : target === '-' ? colors.red('(stdin is not supported)') : colors.green('(ok)')}\n
       - Can only accept one DIR (make sure to escape spaces!) ${cli.input.length > 1 ? colors.red(`(received ${cli.input.length}!)`) : colors.green('(ok)')}\n`);
     return;
@@ -3276,64 +3337,66 @@ async function run$p(argv, importMeta, {
     out = '-';
   }
   if (verbose) {
-    console.group();
-    console.log('- target:', target);
-    console.log('- gradle bin:', bin);
-    console.log('- out:', out);
-    console.groupEnd();
+    logger.logger.group();
+    logger.logger.log('- target:', target);
+    logger.logger.log('- gradle bin:', bin);
+    logger.logger.log('- out:', out);
+    logger.logger.groupEnd();
   }
   let gradleOpts = [];
   if (cli.flags['gradleOpts']) {
     gradleOpts = cli.flags['gradleOpts'].split(' ').map(s => s.trim()).filter(Boolean);
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$o);
+    return;
   }
   await convertGradleToMaven(target, bin, out, verbose, gradleOpts);
 }
 
 async function convertSbtToMaven(target, bin, out, verbose, sbtOpts) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const rbin = path.resolve(bin);
   const rtarget = path.resolve(target);
-  // const rout = out === '-' ? '-' : path.resolve(out)
-
   if (verbose) {
-    console.group('sbt2maven:');
-    console.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
-    console.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
-    // console.log(`[VERBOSE] - Absolute out path: \`${rout}\``)
-    console.groupEnd();
+    logger.logger.group('sbt2maven:');
+    logger.logger.log(`[VERBOSE] - Absolute bin path: \`${rbin}\``);
+    logger.logger.log(`[VERBOSE] - Absolute target path: \`${rtarget}\``);
+    // logger.log(`[VERBOSE] - Absolute out path: \`${rout}\``)
+    logger.logger.groupEnd();
   } else {
-    console.group('sbt2maven:');
-    console.log(`- executing: \`${bin}\``);
-    console.log(`- src dir: \`${target}\``);
-    // console.log(`- dst dir: \`${out}\``)
-    console.groupEnd();
-  }
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start(`Converting sbt to maven from \`${bin}\` on \`${target}\`...`);
+    logger.logger.group('sbt2maven:');
+    logger.logger.log(`- executing: \`${bin}\``);
+    logger.logger.log(`- src dir: \`${target}\``);
+    // logger.log(`- dst dir: \`${out}\``)
+    logger.logger.groupEnd();
+  }
+  spinner.start(`Converting sbt to maven from \`${bin}\` on \`${target}\`...`);
   try {
     // Run sbt with the init script we provide which should yield zero or more
     // pom files. We have to figure out where to store those pom files such that
     // we can upload them and predict them through the GitHub API. We could do a
     // .socket folder. We could do a socket.pom.gz with all the poms, although
     // I'd prefer something plain-text if it is to be committed.
-    const output = await spawn(bin, ['makePom'].concat(sbtOpts), {
+    const output = await spawn.spawn(bin, ['makePom'].concat(sbtOpts), {
       cwd: target || '.'
     });
-    spinner$1.stop();
+    spinner.stop();
     if (verbose) {
-      console.group('[VERBOSE] sbt stdout:');
-      console.log(output);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] sbt stdout:');
+      logger.logger.log(output);
+      logger.logger.groupEnd();
     }
     if (output.stderr) {
       logger.logger.error('There were errors while running sbt');
       // (In verbose mode, stderr was printed above, no need to repeat it)
       if (!verbose) {
-        console.group('[VERBOSE] stderr:');
-        console.error(output.stderr);
-        console.groupEnd();
+        logger.logger.group('[VERBOSE] stderr:');
+        logger.logger.error(output.stderr);
+        logger.logger.groupEnd();
       }
       process.exit(1);
     }
@@ -3351,39 +3414,43 @@ async function convertSbtToMaven(target, bin, out, verbose, sbtOpts) {
     // TODO: maybe we can add an option to target a specific file to dump to stdout
     if (out === '-' && poms.length === 1) {
       logger.logger.log('Result:\n```');
-      console.log(await index.safeReadFile(poms[0], 'utf8'));
+      logger.logger.log(await index.safeReadFile(poms[0], 'utf8'));
       logger.logger.log('```');
       logger.logger.success(`OK`);
     } else if (out === '-') {
       logger.logger.error('Requested out target was stdout but there are multiple generated files');
-      poms.forEach(fn => console.error('-', fn));
-      console.error('Exiting now...');
+      poms.forEach(fn => logger.logger.error('-', fn));
+      logger.logger.error('Exiting now...');
       process.exit(1);
     } else {
       // if (verbose) {
-      //   console.log(
+      //   logger.log(
       //     `Moving manifest file from \`${loc.replace(/^\/home\/[^/]*?\//, '~/')}\` to \`${out}\``
       //   )
       // } else {
-      //   console.log('Moving output pom file')
+      //   logger.log('Moving output pom file')
       // }
       // TODO: do we prefer fs-extra? renaming can be gnarly on windows and fs-extra's version is better
       // await renamep(loc, out)
       logger.logger.success(`Generated ${poms.length} pom files`);
-      poms.forEach(fn => console.log('-', fn));
+      poms.forEach(fn => logger.logger.log('-', fn));
       logger.logger.success(`OK`);
     }
   } catch (e) {
-    spinner$1.errorAndStop('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
+    spinner.stop();
+    logger.logger.error('There was an unexpected error while running this' + (verbose ? '' : ' (use --verbose for details)'));
     if (verbose) {
-      console.group('[VERBOSE] error:');
-      console.log(e);
-      console.groupEnd();
+      logger.logger.group('[VERBOSE] error:');
+      logger.logger.log(e);
+      logger.logger.groupEnd();
     }
     process.exit(1);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$n
+} = constants;
 const config$o = {
   commandName: 'scala',
   description: "[beta] Generate a manifest file (`pom.xml`) from Scala's `build.sbt` file",
@@ -3461,7 +3528,6 @@ const cmdManifestScala = {
 async function run$o(argv, importMeta, {
   parentName
 }) {
-  // console.log('scala', argv, parentName)
   const cli = meowOrExit({
     argv,
     config: config$o,
@@ -3470,22 +3536,23 @@ async function run$o(argv, importMeta, {
   });
   const verbose = Boolean(cli.flags['verbose']);
   if (verbose) {
-    console.group('- ', parentName, config$o.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$o.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.groupEnd();
   }
   const target = cli.input[0];
 
-  // TODO: I'm not sure it's feasible to parse source file from stdin. We could try, store contents in a file in some folder, target that folder... what would the file name be?
-
+  // TODO: I'm not sure it's feasible to parse source file from stdin. We could
+  // try, store contents in a file in some folder, target that folder... what
+  // would the file name be?
   if (!target || target === '-' || cli.input.length > 1) {
     // Use exit status of 2 to indicate incorrect usage, generally invalid
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The DIR or FILE arg is required ${!target ? colors.red('(missing!)') : target === '-' ? colors.red('(stdin is not supported)') : colors.green('(ok)')}\n
       - Can only accept one DIR or FILE (make sure to escape spaces!) ${cli.input.length > 1 ? colors.red(`(received ${cli.input.length}!)`) : colors.green('(ok)')}\n`);
     return;
@@ -3502,22 +3569,26 @@ async function run$o(argv, importMeta, {
     out = '-';
   }
   if (verbose) {
-    console.group();
-    console.log('- target:', target);
-    console.log('- gradle bin:', bin);
-    console.log('- out:', out);
-    console.groupEnd();
+    logger.logger.group();
+    logger.logger.log('- target:', target);
+    logger.logger.log('- gradle bin:', bin);
+    logger.logger.log('- out:', out);
+    logger.logger.groupEnd();
   }
   let sbtOpts = [];
   if (cli.flags['sbtOpts']) {
     sbtOpts = cli.flags['sbtOpts'].split(' ').map(s => s.trim()).filter(Boolean);
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$n);
+    return;
   }
   await convertSbtToMaven(target, bin, out, verbose, sbtOpts);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$m
+} = constants;
 const config$n = {
   commandName: 'auto',
   description: 'Auto-detect build and attempt to generate manifest file',
@@ -3564,12 +3635,12 @@ async function run$n(argv, importMeta, {
   const verbose = !!cli.flags['verbose'];
   const cwd = cli.flags['cwd'] ?? process.cwd();
   if (verbose) {
-    console.group('- ', parentName, config$n.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.log('- cwd:', cwd);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$n.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.log('- cwd:', cwd);
+    logger.logger.groupEnd();
   }
   const subArgs = [];
   if (verbose) {
@@ -3577,13 +3648,14 @@ async function run$n(argv, importMeta, {
   }
   const dir = cwd;
   if (fs.existsSync(path.join(dir, 'build.sbt'))) {
-    console.log('Detected a Scala sbt build, running default Scala generator...');
+    logger.logger.log('Detected a Scala sbt build, running default Scala generator...');
     if (cwd) {
       subArgs.push('--cwd', cwd);
     }
     subArgs.push(dir);
     if (cli.flags['dryRun']) {
-      return console.log('[DryRun] Bailing now');
+      logger.logger.log(DRY_RUN_BAIL_TEXT$m);
+      return;
     }
     await cmdManifestScala.run(subArgs, importMeta, {
       parentName
@@ -3591,13 +3663,14 @@ async function run$n(argv, importMeta, {
     return;
   }
   if (fs.existsSync(path.join(dir, 'gradlew'))) {
-    console.log('Detected a gradle build, running default gradle generator...');
+    logger.logger.log('Detected a gradle build, running default gradle generator...');
     if (cwd) {
       // This command takes the cwd as first arg.
       subArgs.push(cwd);
     }
     if (cli.flags['dryRun']) {
-      return console.log('[DryRun] Bailing now');
+      logger.logger.log(DRY_RUN_BAIL_TEXT$m);
+      return;
     }
     await cmdManifestGradle.run(subArgs, importMeta, {
       parentName
@@ -3625,6 +3698,10 @@ async function run$n(argv, importMeta, {
   }).showHelp();
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$l
+} = constants;
+
 // TODO: we may want to dedupe some pieces for all gradle languages. I think it
 //       makes sense to have separate commands for them and I think it makes
 //       sense for the help panels to note the requested language, rather than
@@ -3717,22 +3794,23 @@ async function run$m(argv, importMeta, {
   });
   const verbose = Boolean(cli.flags['verbose']);
   if (verbose) {
-    console.group('- ', parentName, config$m.commandName, ':');
-    console.group('- flags:', cli.flags);
-    console.groupEnd();
-    console.log('- input:', cli.input);
-    console.groupEnd();
+    logger.logger.group('- ', parentName, config$m.commandName, ':');
+    logger.logger.group('- flags:', cli.flags);
+    logger.logger.groupEnd();
+    logger.logger.log('- input:', cli.input);
+    logger.logger.groupEnd();
   }
   const target = cli.input[0];
 
-  // TODO: I'm not sure it's feasible to parse source file from stdin. We could try, store contents in a file in some folder, target that folder... what would the file name be?
-
+  // TODO: I'm not sure it's feasible to parse source file from stdin. We could
+  // try, store contents in a file in some folder, target that folder... what
+  // would the file name be?
   if (!target || target === '-' || cli.input.length > 1) {
     // Use exit status of 2 to indicate incorrect usage, generally invalid
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The DIR arg is required ${!target ? colors.red('(missing!)') : target === '-' ? colors.red('(stdin is not supported)') : colors.green('(ok)')}\n
       - Can only accept one DIR (make sure to escape spaces!) ${cli.input.length > 1 ? colors.red(`(received ${cli.input.length}!)`) : colors.green('(ok)')}\n`);
     return;
@@ -3751,18 +3829,19 @@ async function run$m(argv, importMeta, {
     out = '-';
   }
   if (verbose) {
-    console.group();
-    console.log('- target:', target);
-    console.log('- gradle bin:', bin);
-    console.log('- out:', out);
-    console.groupEnd();
+    logger.logger.group();
+    logger.logger.log('- target:', target);
+    logger.logger.log('- gradle bin:', bin);
+    logger.logger.log('- out:', out);
+    logger.logger.groupEnd();
   }
   let gradleOpts = [];
   if (cli.flags['gradleOpts']) {
     gradleOpts = cli.flags['gradleOpts'].split(' ').map(s => s.trim()).filter(Boolean);
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$l);
+    return;
   }
   await convertGradleToMaven(target, bin, out, verbose, gradleOpts);
 }
@@ -3814,6 +3893,7 @@ async function wrapNpm(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$k,
   NPM: NPM$a
 } = constants;
 const config$k = {
@@ -3842,7 +3922,8 @@ async function run$k(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$k);
+    return;
   }
   await wrapNpm(argv);
 }
@@ -3858,6 +3939,7 @@ async function wrapNpx(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$j,
   NPX: NPX$1
 } = constants;
 const config$j = {
@@ -3886,11 +3968,15 @@ async function run$j(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$j);
+    return;
   }
   await wrapNpx(argv);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$i
+} = constants;
 const config$i = {
   commandName: 'oops',
   description: 'Trigger an intentional error (for development)',
@@ -3920,7 +4006,8 @@ async function run$i(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$i);
+    return;
   }
   throw new Error('This error was intentionally left blank');
 }
@@ -3973,7 +4060,7 @@ async function getAgentVersion(agentExecPath, cwd) {
   try {
     result = semver.coerce(
     // All package managers support the "--version" flag.
-    (await spawn(agentExecPath, ['--version'], {
+    (await spawn.spawn(agentExecPath, ['--version'], {
       cwd
     })).stdout) ?? undefined;
   } catch {}
@@ -4028,7 +4115,7 @@ const readLockFileByAgent = (() => {
         // To print a Yarn lockfile to your console without writing it to disk
         // use `bun bun.lockb`.
         // https://bun.sh/guides/install/yarnlock
-        return (await spawn(agentExecPath, [lockPath])).stdout.trim();
+        return (await spawn.spawn(agentExecPath, [lockPath])).stdout.trim();
       }
       return undefined;
     }),
@@ -4427,7 +4514,7 @@ function parseableToQueryStdout(stdout) {
 async function npmQuery(npmExecPath, cwd) {
   let stdout = '';
   try {
-    stdout = (await spawn(npmExecPath, ['query', ':not(.dev)'], {
+    stdout = (await spawn.spawn(npmExecPath, ['query', ':not(.dev)'], {
       cwd
     })).stdout;
   } catch {}
@@ -4437,7 +4524,7 @@ async function lsBun(agentExecPath, cwd) {
   try {
     // Bun does not support filtering by production packages yet.
     // https://github.com/oven-sh/bun/issues/8283
-    return (await spawn(agentExecPath, ['pm', 'ls', '--all'], {
+    return (await spawn.spawn(agentExecPath, ['pm', 'ls', '--all'], {
       cwd
     })).stdout;
   } catch {}
@@ -4456,7 +4543,7 @@ async function lsPnpm(agentExecPath, cwd, options) {
   }
   let stdout = '';
   try {
-    stdout = (await spawn(agentExecPath, ['ls', '--parseable', '--prod', '--depth', 'Infinity'], {
+    stdout = (await spawn.spawn(agentExecPath, ['ls', '--parseable', '--prod', '--depth', 'Infinity'], {
       cwd
     })).stdout;
   } catch {}
@@ -4465,7 +4552,7 @@ async function lsPnpm(agentExecPath, cwd, options) {
 async function lsVlt(agentExecPath, cwd) {
   let stdout = '';
   try {
-    stdout = (await spawn(agentExecPath, ['ls', '--view', 'human', ':not(.dev)'], {
+    stdout = (await spawn.spawn(agentExecPath, ['ls', '--view', 'human', ':not(.dev)'], {
       cwd
     })).stdout;
   } catch {}
@@ -4476,7 +4563,7 @@ async function lsYarnBerry(agentExecPath, cwd) {
     return (
       // Yarn Berry does not support filtering by production packages yet.
       // https://github.com/yarnpkg/berry/issues/5117
-      (await spawn(agentExecPath, ['info', '--recursive', '--name-only'], {
+      (await spawn.spawn(agentExecPath, ['info', '--recursive', '--name-only'], {
         cwd
       })).stdout.trim()
     );
@@ -4489,7 +4576,7 @@ async function lsYarnClassic(agentExecPath, cwd) {
     // https://github.com/yarnpkg/yarn/releases/tag/v1.0.0
     // > Fix: Excludes dev dependencies from the yarn list output when the
     //   environment is production
-    return (await spawn(agentExecPath, ['list', '--prod'], {
+    return (await spawn.spawn(agentExecPath, ['list', '--prod'], {
       cwd
     })).stdout.trim();
   } catch {}
@@ -4614,14 +4701,73 @@ function pnpmUpdatePkgJson(editablePkgJson, overrides) {
 }
 const updateManifestByAgent = new Map([[BUN, updateResolutions], [NPM$4, updateOverrides], [PNPM$1, pnpmUpdatePkgJson], [VLT, updateOverrides], [YARN_BERRY, updateResolutions], [YARN_CLASSIC$1, updateResolutions]]);
 
+const {
+  SOCKET_IPC_HANDSHAKE
+} = constants;
+function safeNpmInstall(options) {
+  const {
+    args = [],
+    ipc,
+    spinner,
+    ...spawnOptions
+  } = {
+    __proto__: null,
+    ...options
+  };
+  const terminatorPos = args.indexOf('--');
+  const npmArgs = (terminatorPos === -1 ? args : args.slice(0, terminatorPos)).filter(a => !npm.isAuditFlag(a) && !npm.isFundFlag(a) && !npm.isProgressFlag(a));
+  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos);
+  const useIpc = objects.isObject(ipc);
+  const useDebug = debug.isDebug();
+  const isSilent = !useDebug && !npmArgs.some(npm.isLoglevelFlag);
+  const spawnPromise = spawn.spawn(
+  // Lazily access constants.execPath.
+  constants.execPath, [
+  // Lazily access constants.nodeNoWarningsFlags.
+  ...constants.nodeNoWarningsFlags, '--require',
+  // Lazily access constants.npmInjectionPath.
+  constants.npmInjectionPath, npmPaths.getNpmBinPath(), 'install',
+  // Even though the '--silent' flag is passed npm will still run through
+  // code paths for 'audit' and 'fund' unless '--no-audit' and '--no-fund'
+  // flags are passed.
+  '--no-audit', '--no-fund',
+  // Add `--no-progress` and `--silent` flags to fix input being swallowed
+  // by the spinner when running the command with recent versions of npm.
+  '--no-progress',
+  // Add the '--silent' flag if a loglevel flag is not provided and the
+  // SOCKET_CLI_DEBUG environment variable is not truthy.
+  ...(isSilent ? ['--silent'] : []), ...npmArgs, ...otherArgs], {
+    spinner,
+    // Set stdio to include 'ipc'.
+    // See https://github.com/nodejs/node/blob/v23.6.0/lib/child_process.js#L161-L166
+    // and https://github.com/nodejs/node/blob/v23.6.0/lib/internal/child_process.js#L238.
+    stdio: isSilent ?
+    // 'ignore'
+    useIpc ? ['ignore', 'ignore', 'ignore', 'ipc'] : 'ignore' :
+    // 'inherit'
+    useIpc ? [0, 1, 2, 'ipc'] : 'inherit',
+    ...spawnOptions,
+    env: {
+      ...process$1.env,
+      ...spawnOptions.env
+    }
+  });
+  if (useIpc) {
+    spawnPromise.process.send({
+      [SOCKET_IPC_HANDSHAKE]: ipc
+    });
+  }
+  return spawnPromise;
+}
+
 const {
   NPM: NPM$3,
-  abortSignal: abortSignal$2
+  abortSignal
 } = constants;
 function runAgentInstall(agent, agentExecPath, options) {
   // All package managers support the "install" command.
   if (agent === NPM$3) {
-    return npm$1.safeNpmInstall(options);
+    return safeNpmInstall(options);
   }
   const {
     args = [],
@@ -4631,13 +4777,10 @@ function runAgentInstall(agent, agentExecPath, options) {
     __proto__: null,
     ...options
   };
-  const isSilent = !npmPaths.isDebug();
-  const isSpinning = spinner?.isSpinning ?? false;
-  if (!isSilent) {
-    spinner?.stop();
-  }
-  let spawnPromise = spawn(agentExecPath, ['install', ...args], {
-    signal: abortSignal$2,
+  const isSilent = !debug.isDebug();
+  return spawn.spawn(agentExecPath, ['install', ...args], {
+    signal: abortSignal,
+    spinner,
     stdio: isSilent ? 'ignore' : 'inherit',
     ...spawnOptions,
     env: {
@@ -4645,22 +4788,12 @@ function runAgentInstall(agent, agentExecPath, options) {
       ...spawnOptions.env
     }
   });
-  if (!isSilent && isSpinning) {
-    const oldSpawnPromise = spawnPromise;
-    spawnPromise = spawnPromise.finally(() => {
-      spinner?.start();
-    });
-    spawnPromise.process = oldSpawnPromise.process;
-    spawnPromise.stdin = spawnPromise.stdin;
-  }
-  return spawnPromise;
 }
 
 const {
   NPM: NPM$2
 } = constants;
 const COMMAND_TITLE$1 = 'Socket Optimize';
-const NPM_OVERRIDE_PR_URL = 'https://github.com/npm/cli/pull/8089';
 async function updatePackageLockJson(pkgEnvDetails, options) {
   const {
     logger,
@@ -4676,10 +4809,11 @@ async function updatePackageLockJson(pkgEnvDetails, options) {
     });
     spinner?.stop();
     if (pkgEnvDetails.agent === NPM$2) {
-      logger?.log(`💡 Re-run ${COMMAND_TITLE$1} whenever ${pkgEnvDetails.lockName} changes.\n   This can be skipped once npm ships ${NPM_OVERRIDE_PR_URL}.`);
+      logger?.log(`💡 Re-run ${COMMAND_TITLE$1} whenever ${pkgEnvDetails.lockName} changes.\n   This can be skipped once npm v11.2.0 is released.`);
     }
   } catch (e) {
-    spinner?.error(`${COMMAND_TITLE$1}: ${pkgEnvDetails.agent} install failed to update ${pkgEnvDetails.lockName}`);
+    spinner?.stop();
+    logger?.error(`${COMMAND_TITLE$1}: ${pkgEnvDetails.agent} install failed to update ${pkgEnvDetails.lockName}`);
     logger?.error(e);
   }
 }
@@ -4692,44 +4826,44 @@ const {
 const COMMAND_TITLE = 'Socket Optimize';
 const manifestNpmOverrides = registry.getManifestData(NPM$1);
 async function applyOptimization(cwd, pin, prod) {
-  const logger = console;
   const pkgEnvDetails = await detectAndValidatePackageEnvironment(cwd, {
-    logger,
+    logger: logger.logger,
     prod
   });
   if (!pkgEnvDetails) {
     return;
   }
-  const spinner$1 = new spinner.Spinner({
-    text: 'Socket optimizing...'
-  });
-  spinner$1.start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Socket optimizing...');
   const state = await addOverrides(pkgEnvDetails.pkgPath, pkgEnvDetails, {
-    logger,
+    logger: logger.logger,
     pin,
     prod,
-    spinner: spinner$1
+    spinner
   });
-  spinner$1.stop();
+  spinner.stop();
   const addedCount = state.added.size;
   const updatedCount = state.updated.size;
   const pkgJsonChanged = addedCount > 0 || updatedCount > 0;
   if (pkgJsonChanged) {
     if (updatedCount > 0) {
-      logger?.log(`${createActionMessage('Updated', updatedCount, state.updatedInWorkspaces.size)}${addedCount ? '.' : '🚀'}`);
+      logger.logger?.log(`${createActionMessage('Updated', updatedCount, state.updatedInWorkspaces.size)}${addedCount ? '.' : '🚀'}`);
     }
     if (addedCount > 0) {
-      logger?.log(`${createActionMessage('Added', addedCount, state.addedInWorkspaces.size)} 🚀`);
+      logger.logger?.log(`${createActionMessage('Added', addedCount, state.addedInWorkspaces.size)} 🚀`);
     }
   } else {
-    logger?.log('Congratulations! Already Socket.dev optimized 🎉');
+    logger.logger?.log('Congratulations! Already Socket.dev optimized 🎉');
   }
   if (pkgEnvDetails.agent === NPM$1 || pkgJsonChanged) {
     // Always update package-lock.json until the npm overrides PR lands:
     // https://github.com/npm/cli/pull/8089
     await updatePackageLockJson(pkgEnvDetails, {
-      logger,
-      spinner: spinner$1
+      logger: logger.logger,
+      spinner
     });
   }
 }
@@ -4915,6 +5049,9 @@ async function addOverrides(pkgPath, pkgEnvDetails, options) {
   return state;
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$h
+} = constants;
 const config$h = {
   commandName: 'optimize',
   description: 'Optimize dependencies with @socketregistry overrides',
@@ -4960,7 +5097,8 @@ async function run$h(argv, importMeta, {
   });
   const cwd = process$1.cwd();
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$h);
+    return;
   }
   await applyOptimization(cwd, Boolean(cli.flags['pin']), Boolean(cli.flags['prod']));
 }
@@ -4973,21 +5111,24 @@ async function getOrganization(format = 'text') {
   await printOrganizationsFromToken(apiToken, format);
 }
 async function printOrganizationsFromToken(apiToken, format = 'text') {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Fetching organizations...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Fetching organizations...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrganizations(), 'looking up organizations');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrganizations', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrganizations', result, spinner);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   const organizations = Object.values(result.data.organizations);
   const lastFiveOfApiToken = getLastFiveOfApiToken(apiToken);
   switch (format) {
     case 'json':
       {
-        console.log(JSON.stringify(organizations.map(o => ({
+        logger.logger.log(JSON.stringify(organizations.map(o => ({
           name: o.name,
           id: o.id,
           plan: o.plan
@@ -5008,27 +5149,30 @@ async function printOrganizationsFromToken(apiToken, format = 'text') {
           mw2 = Math.max(mw2, o.id.length);
           mw3 = Math.max(mw3, o.plan.length);
         }
-        console.log('# Organizations\n');
-        console.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
-        console.log(`| Name${' '.repeat(mw1 - 4)} | ID${' '.repeat(mw2 - 2)} | Plan${' '.repeat(mw3 - 4)} |`);
-        console.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
+        logger.logger.log('# Organizations\n');
+        logger.logger.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
+        logger.logger.log(`| Name${' '.repeat(mw1 - 4)} | ID${' '.repeat(mw2 - 2)} | Plan${' '.repeat(mw3 - 4)} |`);
+        logger.logger.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
         for (const o of organizations) {
-          console.log(`| ${(o.name || '').padEnd(mw1, ' ')} | ${(o.id || '').padEnd(mw2, ' ')} | ${(o.plan || '').padEnd(mw3, ' ')} |`);
+          logger.logger.log(`| ${(o.name || '').padEnd(mw1, ' ')} | ${(o.id || '').padEnd(mw2, ' ')} | ${(o.plan || '').padEnd(mw3, ' ')} |`);
         }
-        console.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
+        logger.logger.log(`| ${'-'.repeat(mw1)} | ${'-'.repeat(mw2)} | ${'-'.repeat(mw3)} |`);
         return;
       }
     default:
       {
-        console.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
+        logger.logger.log(`List of organizations associated with your API key, ending with: ${colors.italic(lastFiveOfApiToken)}\n`);
         // Just dump
         for (const o of organizations) {
-          console.log(`- Name: ${colors.bold(o.name)}, ID: ${colors.bold(o.id)}, Plan: ${colors.bold(o.plan)}`);
+          logger.logger.log(`- Name: ${colors.bold(o.name)}, ID: ${colors.bold(o.id)}, Plan: ${colors.bold(o.plan)}`);
         }
       }
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$g
+} = constants;
 const config$g = {
   commandName: 'organizations',
   description: 'List organizations associated with the API key used',
@@ -5066,31 +5210,25 @@ async function run$g(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`
+    logger.logger.error(`
       ${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - The json and markdown flags cannot be both set, pick one
     `);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$g);
+    return;
   }
   await getOrganization(json ? 'json' : markdown ? 'markdown' : 'text');
 }
 
-const {
-  abortSignal: abortSignal$1
-} = constants;
 async function runRawNpm(argv) {
-  const spawnPromise = spawn(npmPaths.getNpmBinPath(), argv.slice(0), {
-    signal: abortSignal$1,
+  const spawnPromise = spawn.spawn(npmPaths.getNpmBinPath(), argv, {
     stdio: 'inherit'
   });
   // See https://nodejs.org/api/all.html#all_child_process_event-exit.
   spawnPromise.process.on('exit', (code, signalName) => {
-    if (abortSignal$1.aborted) {
-      return;
-    }
     if (signalName) {
       process$1.kill(process$1.pid, signalName);
     } else if (code !== null) {
@@ -5101,6 +5239,7 @@ async function runRawNpm(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$f,
   NPM
 } = constants;
 const config$f = {
@@ -5135,24 +5274,18 @@ async function run$f(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$f);
+    return;
   }
   await runRawNpm(argv);
 }
 
-const {
-  abortSignal
-} = constants;
 async function runRawNpx(argv) {
-  const spawnPromise = spawn(npmPaths.getNpxBinPath(), argv, {
-    signal: abortSignal,
+  const spawnPromise = spawn.spawn(npmPaths.getNpxBinPath(), argv, {
     stdio: 'inherit'
   });
   // See https://nodejs.org/api/all.html#all_child_process_event-exit.
   spawnPromise.process.on('exit', (code, signalName) => {
-    if (abortSignal.aborted) {
-      return;
-    }
     if (signalName) {
       process$1.kill(process$1.pid, signalName);
     } else if (code !== null) {
@@ -5163,6 +5296,7 @@ async function runRawNpx(argv) {
 }
 
 const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$e,
   NPX
 } = constants;
 const config$e = {
@@ -5197,18 +5331,26 @@ async function run$e(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$e);
+    return;
   }
   await runRawNpx(argv);
 }
 
+const {
+  DRY_RUN_LABEL
+} = constants;
 async function createReport(socketConfig, inputPaths, {
   cwd,
   dryRun
 }) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const socketSdk = await index.setupSdk();
   const supportedFiles = await socketSdk.getReportSupportedFiles().then(res => {
-    if (!res.success) handleUnsuccessfulApiResponse('getReportSupportedFiles', res, new spinner.Spinner());
+    if (!res.success) handleUnsuccessfulApiResponse('getReportSupportedFiles', res, spinner);
     return res.data;
   }).catch(cause => {
     throw new Error('Failed getting supported files for report', {
@@ -5219,24 +5361,23 @@ async function createReport(socketConfig, inputPaths, {
   const {
     length: packagePathsCount
   } = packagePaths;
-  if (packagePathsCount && npmPaths.isDebug()) {
+  if (packagePathsCount && debug.isDebug()) {
     for (const pkgPath of packagePaths) {
-      npmPaths.debugLog(`Uploading: ${pkgPath}`);
+      debug.debugLog(`Uploading: ${pkgPath}`);
     }
   }
   if (dryRun) {
-    npmPaths.debugLog('[dryRun] Skipped actual upload');
+    debug.debugLog(`${DRY_RUN_LABEL}: Skipped actual upload`);
     return undefined;
   }
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start(`Creating report with ${packagePathsCount} package ${words.pluralize('file', packagePathsCount)}`);
+  spinner.start(`Creating report with ${packagePathsCount} package ${words.pluralize('file', packagePathsCount)}`);
   const apiCall = socketSdk.createReportFromFilePaths(packagePaths, cwd, socketConfig?.issueRules);
   const result = await handleApiCall(apiCall, 'creating report');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('createReport', result, spinner$1);
+    handleUnsuccessfulApiResponse('createReport', result, spinner);
     return undefined;
   }
-  spinner$1.successAndStop();
+  spinner.successAndStop();
   return result;
 }
 
@@ -5264,8 +5405,11 @@ async function getSocketConfig(absoluteConfigPath) {
 const MAX_TIMEOUT_RETRY = 5;
 const HTTP_CODE_TIMEOUT = 524;
 async function fetchReportData(reportId, includeAllIssues, strict) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start(`Fetching report with ID ${reportId} (this could take a while)`);
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start(`Fetching report with ID ${reportId} (this could take a while)`);
   const socketSdk = await index.setupSdk();
   let result;
   for (let retry = 1; !result; ++retry) {
@@ -5274,43 +5418,43 @@ async function fetchReportData(reportId, includeAllIssues, strict) {
       result = await handleApiCall(socketSdk.getReport(reportId), 'fetching report');
     } catch (err) {
       if (retry >= MAX_TIMEOUT_RETRY || !(err instanceof Error) || err.cause?.cause?.response?.statusCode !== HTTP_CODE_TIMEOUT) {
-        spinner$1.stop();
+        spinner.stop();
         throw err;
       }
     }
   }
   if (!result.success) {
-    return handleUnsuccessfulApiResponse('getReport', result, spinner$1);
+    return handleUnsuccessfulApiResponse('getReport', result, spinner);
   }
 
   // Conclude the status of the API call.
   if (strict) {
     if (result.data.healthy) {
-      spinner$1.success('Report result is healthy and great!');
+      spinner.success('Report result is healthy and great!');
     } else {
-      spinner$1.error('Report result deemed unhealthy for project');
+      spinner.error('Report result deemed unhealthy for project');
     }
   } else if (!result.data.healthy) {
     const severityCount = getSeverityCount(result.data.issues, includeAllIssues ? undefined : 'high');
     const issueSummary = formatSeverityCount(severityCount);
-    spinner$1.success(`Report has these issues: ${issueSummary}`);
+    spinner.success(`Report has these issues: ${issueSummary}`);
   } else {
-    spinner$1.success('Report has no issues');
+    spinner.success('Report has no issues');
   }
-  spinner$1.stop();
+  spinner.stop();
   return result.data;
 }
 
 function formatReportDataOutput(reportId, data, commandName, outputJson, outputMarkdown, strict) {
   if (outputJson) {
-    console.log(JSON.stringify(data, undefined, 2));
+    logger.logger.log(JSON.stringify(data, undefined, 2));
   } else {
     const format = new index.ColorOrMarkdown(outputMarkdown);
-    console.log('\nDetailed info on socket.dev: ' + format.hyperlink(reportId, data.url, {
+    logger.logger.log('\nDetailed info on socket.dev: ' + format.hyperlink(reportId, data.url, {
       fallbackToUrl: true
     }));
     if (!outputMarkdown) {
-      console.log(colors.dim(`\nOr rerun ${colors.italic(commandName)} using the ${colors.italic('--json')} flag to get full JSON output`));
+      logger.logger.log(colors.dim(`\nOr rerun ${colors.italic(commandName)} using the ${colors.italic('--json')} flag to get full JSON output`));
     }
   }
   if (strict && !data.healthy) {
@@ -5331,6 +5475,9 @@ async function viewReport(reportId, {
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$d
+} = constants;
 const config$d = {
   commandName: 'create',
   description: 'Create a project report',
@@ -5401,7 +5548,8 @@ async function run$d(argv, importMeta, {
 
   // Note exiting earlier to skirt a hidden auth requirement
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$d);
+    return;
   }
   const socketConfig = await getSocketConfig(absoluteConfigPath);
   const result = await createReport(socketConfig, cli.input, {
@@ -5420,17 +5568,19 @@ async function run$d(argv, importMeta, {
         strict
       });
     } else if (json) {
-      console.log(JSON.stringify(result.data, undefined, 2));
-      return;
+      logger.logger.log(JSON.stringify(result.data, undefined, 2));
     } else {
       const format = new index.ColorOrMarkdown(markdown);
-      console.log(`New report: ${format.hyperlink(result.data.id, result.data.url, {
+      logger.logger.log(`New report: ${format.hyperlink(result.data.id, result.data.url, {
         fallbackToUrl: true
       })}`);
     }
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$c
+} = constants;
 const config$c = {
   commandName: 'view',
   description: 'View a project report',
@@ -5473,13 +5623,14 @@ async function run$c(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Need at least one report ID ${!reportId ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Can only handle a single report ID ${extraInput.length < 2 ? colors.red(`(received ${extraInput.length}!)`) : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$c);
+    return;
   }
   await viewReport(reportId, {
     all: Boolean(cli.flags['all']),
@@ -5519,8 +5670,11 @@ async function createRepo({
   repoName,
   visibility
 }) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Creating repository...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Creating repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.createOrgRepo(orgSlug, {
     outputJson,
@@ -5533,12 +5687,15 @@ async function createRepo({
     visibility
   }), 'creating repository');
   if (result.success) {
-    spinner$1.successAndStop('Repository created successfully');
+    spinner.successAndStop('Repository created successfully');
   } else {
-    handleUnsuccessfulApiResponse('createOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('createOrgRepo', result, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$b
+} = constants;
 const config$b = {
   commandName: 'create',
   description: 'Create a repository in an organization',
@@ -5609,13 +5766,14 @@ async function run$b(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repoName ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$b);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5635,17 +5793,23 @@ async function run$b(argv, importMeta, {
 }
 
 async function deleteRepo(orgSlug, repoName, apiToken) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Deleting repository...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Deleting repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.deleteOrgRepo(orgSlug, repoName), 'deleting repository');
   if (result.success) {
-    spinner$1.successAndStop('Repository deleted successfully');
+    spinner.successAndStop('Repository deleted successfully');
   } else {
-    handleUnsuccessfulApiResponse('deleteOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('deleteOrgRepo', result, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$a
+} = constants;
 const config$a = {
   commandName: 'del',
   description: 'Delete a repository in an organization',
@@ -5684,14 +5848,15 @@ async function run$a(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name as the second argument ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n
       - At least one TARGET (e.g. \`.\` or \`./package.json\`\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$a);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5711,10 +5876,11 @@ async function listRepos({
   per_page,
   sort
 }) {
-  const spinnerText = 'Listing repositories... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Listing repositories...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgRepoList(orgSlug, {
     outputJson,
@@ -5726,10 +5892,10 @@ async function listRepos({
     page
   }), 'listing repositories');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgRepoList', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgRepoList', result, spinner);
     return;
   }
-  spinner$1.stop();
+  spinner.stop();
   if (outputJson) {
     const data = result.data.results.map(o => ({
       id: o.id,
@@ -5738,7 +5904,7 @@ async function listRepos({
       defaultBranch: o.default_branch,
       archived: o.archived
     }));
-    console.log(JSON.stringify(data, null, 2));
+    logger.logger.log(JSON.stringify(data, null, 2));
     return;
   }
   const options = {
@@ -5759,9 +5925,12 @@ async function listRepos({
       name: colors.magenta('Archived')
     }]
   };
-  console.log(chalkTable(options, result.data.results));
+  logger.logger.log(chalkTable(options, result.data.results));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$9
+} = constants;
 const config$9 = {
   commandName: 'list',
   description: 'List repositories in an organization',
@@ -5824,13 +5993,14 @@ async function run$9(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - At least one TARGET (e.g. \`.\` or \`./package.json\`\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$9);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5859,10 +6029,11 @@ async function updateRepo({
   repoName,
   visibility
 }) {
-  const spinnerText = 'Updating repository... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Updating repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.updateOrgRepo(orgSlug, repoName, {
     outputJson,
@@ -5875,12 +6046,15 @@ async function updateRepo({
     visibility
   }), 'updating repository');
   if (result.success) {
-    spinner$1.successAndStop('Repository updated successfully');
+    spinner.successAndStop('Repository updated successfully');
   } else {
-    handleUnsuccessfulApiResponse('updateOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('updateOrgRepo', result, spinner);
   }
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$8
+} = constants;
 const config$8 = {
   commandName: 'update',
   description: 'Update a repository in an organization',
@@ -5951,14 +6125,15 @@ async function run$8(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repoName ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n
       - At least one TARGET (e.g. \`.\` or \`./package.json\`\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$8);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -5979,14 +6154,15 @@ async function run$8(argv, importMeta, {
 
 // @ts-ignore
 async function viewRepo(orgSlug, repoName, apiToken) {
-  const spinnerText = 'Fetching repository... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Fetching repository...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgRepo(orgSlug, repoName), 'fetching repository');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgRepo', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgRepo', result, spinner);
     return;
   }
   const options = {
@@ -6013,9 +6189,12 @@ async function viewRepo(orgSlug, repoName, apiToken) {
       name: colors.magenta('Created at')
     }]
   };
-  spinner$1.stop(chalkTable(options, [result.data]));
+  spinner.stop(chalkTable(options, [result.data]));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$7
+} = constants;
 const config$7 = {
   commandName: 'view',
   description: 'View repositories in an organization',
@@ -6056,13 +6235,14 @@ async function run$7(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repoName ${!repoName ? colors.red('(missing!)') : typeof repoName !== 'string' ? colors.red('(invalid!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$7);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6189,7 +6369,7 @@ function dirNameToSlug(name) {
 }
 
 async function suggestBranchSlug(repoDefaultBranch) {
-  const spawnResult = childProcess.spawnSync('git', ['branch', '--show-current']);
+  const spawnResult = spawn.spawnSync('git', ['branch', '--show-current']);
   const currentBranch = spawnResult.stdout.toString('utf8').trim();
   if (currentBranch && spawnResult.status === 0) {
     const proceed = await prompts.select({
@@ -6249,10 +6429,14 @@ async function createFullScan({
   targets,
   tmp
 }) {
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
   const socketSdk = await index.setupSdk();
   const supportedFiles = await socketSdk.getReportSupportedFiles().then(res => {
     if (!res.success) {
-      handleUnsuccessfulApiResponse('getReportSupportedFiles', res, new spinner.Spinner());
+      handleUnsuccessfulApiResponse('getReportSupportedFiles', res, spinner);
       assert(false, 'handleUnsuccessfulApiResponse should unconditionally throw');
     }
     return res.data;
@@ -6309,7 +6493,7 @@ async function createFullScan({
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process$1.exitCode = 2;
-    console.error(`
+    logger.logger.error(`
       ${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repo ${!repoName ? colors.red('(missing!)') : colors.green('(ok)')}\n
@@ -6320,22 +6504,19 @@ async function createFullScan({
     return;
   }
   if (updatedInput) {
-    console.log('Note: You can invoke this command next time to skip the interactive questions:');
-    console.log('```');
-    console.log(`    socket scan create [other flags...] --repo ${repoName} --branch ${branchName} ${orgSlug} ${targets.join(' ')}`);
-    console.log('```');
+    logger.logger.log('Note: You can invoke this command next time to skip the interactive questions:');
+    logger.logger.log('```');
+    logger.logger.log(`    socket scan create [other flags...] --repo ${repoName} --branch ${branchName} ${orgSlug} ${targets.join(' ')}`);
+    logger.logger.log('```');
   }
   if (!apiToken) {
     throw new index.AuthError('User must be authenticated to run this command. To log in, run the command `socket login` and enter your API key.');
   }
   if (readOnly) {
-    console.log('[ReadOnly] Bailing now');
+    logger.logger.log('[ReadOnly] Bailing now');
     return;
   }
-  const spinnerText = 'Creating a scan... \n';
-  const spinner$1 = new spinner.Spinner({
-    text: spinnerText
-  }).start();
+  spinner.start('Creating a scan...');
   const result = await handleApiCall(socketSdk.createOrgFullScan(orgSlug, {
     repo: repoName,
     branch: branchName,
@@ -6345,12 +6526,12 @@ async function createFullScan({
     tmp
   }, packagePaths, cwd), 'Creating scan');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('CreateOrgFullScan', result, spinner$1);
+    handleUnsuccessfulApiResponse('CreateOrgFullScan', result, spinner);
     return;
   }
-  spinner$1.successAndStop('Scan created successfully');
+  spinner.successAndStop('Scan created successfully');
   const link = colors.underline(colors.cyan(`${result.data.html_report_url}`));
-  console.log(`Available at: ${link}`);
+  logger.logger.log(`Available at: ${link}`);
   const rl = readline.createInterface({
     input: process$1.stdin,
     output: process$1.stdout
@@ -6362,6 +6543,9 @@ async function createFullScan({
   rl.close();
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$6
+} = constants;
 const config$6 = {
   commandName: 'create',
   description: 'Create a scan',
@@ -6478,7 +6662,7 @@ async function run$6(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process$1.exitCode = 2;
-    console.error(`
+    logger.logger.error(`
       ${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Repository name using --repo ${!repoName ? colors.red('(missing!)') : colors.green('(ok)')}\n
@@ -6491,7 +6675,8 @@ async function run$6(argv, importMeta, {
 
   // Note exiting earlier to skirt a hidden auth requirement
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$6);
+    return;
   }
   await createFullScan({
     branchName: branchName,
@@ -6511,17 +6696,23 @@ async function run$6(argv, importMeta, {
 }
 
 async function deleteOrgFullScan(orgSlug, fullScanId, apiToken) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Deleting scan...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Deleting scan...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.deleteOrgFullScan(orgSlug, fullScanId), 'Deleting scan');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('deleteOrgFullScan', result, spinner$1);
+    handleUnsuccessfulApiResponse('deleteOrgFullScan', result, spinner);
     return;
   }
-  spinner$1.successAndStop('Scan deleted successfully');
+  spinner.successAndStop('Scan deleted successfully');
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$5
+} = constants;
 const config$5 = {
   commandName: 'del',
   description: 'Delete a scan',
@@ -6561,13 +6752,14 @@ async function run$5(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Full Scan ID to delete as second argument ${!fullScanId ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$5);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6578,12 +6770,15 @@ async function run$5(argv, importMeta, {
 
 // @ts-ignore
 async function listFullScans(orgSlug, input, apiToken) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Listing scans...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Listing scans...');
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgFullScanList(orgSlug, input), 'Listing scans');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgFullScanList', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgFullScanList', result, spinner);
     return;
   }
   const options = {
@@ -6613,10 +6808,13 @@ async function listFullScans(orgSlug, input, apiToken) {
       branch: d.branch
     };
   });
-  spinner$1.stop(`Listing scans for: ${orgSlug}`);
-  console.log(chalkTable(options, formattedResults));
+  spinner.stop(`Listing scans for: ${orgSlug}`);
+  logger.logger.log(chalkTable(options, formattedResults));
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$4
+} = constants;
 const config$4 = {
   commandName: 'list',
   description: 'List the full scans for an organization',
@@ -6692,12 +6890,13 @@ async function run$4(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
     - Org name as the argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$4);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6719,18 +6918,24 @@ async function run$4(argv, importMeta, {
 }
 
 async function getOrgScanMetadata(orgSlug, scanId, apiToken) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start("Getting scan's metadata...");
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start("Getting scan's metadata...");
   const socketSdk = await index.setupSdk(apiToken);
   const result = await handleApiCall(socketSdk.getOrgFullScanMetadata(orgSlug, scanId), 'Listing scans');
   if (!result.success) {
-    handleUnsuccessfulApiResponse('getOrgFullScanMetadata', result, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgFullScanMetadata', result, spinner);
     return;
   }
-  spinner$1.stop('Scan metadata:');
-  console.log(result.data);
+  spinner.stop('Scan metadata:');
+  logger.logger.log(result.data);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$3
+} = constants;
 const config$3 = {
   commandName: 'metadata',
   description: "Get a full scan's metadata",
@@ -6770,13 +6975,14 @@ async function run$3(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Full Scan ID to inspect as second argument ${!fullScanId ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$3);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6786,18 +6992,24 @@ async function run$3(argv, importMeta, {
 }
 
 async function getFullScan(orgSlug, fullScanId, file, apiToken) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Streaming scan...');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Streaming scan...');
   const socketSdk = await index.setupSdk(apiToken);
   const data = await handleApiCall(socketSdk.getOrgFullScan(orgSlug, fullScanId, file === '-' ? undefined : file), 'Streaming a scan');
   if (data?.success) {
-    spinner$1.stop(file ? `Full scan details written to ${file}` : '');
+    spinner.stop(file ? `Full scan details written to ${file}` : '');
   } else {
-    handleUnsuccessfulApiResponse('getOrgFullScan', data, spinner$1);
+    handleUnsuccessfulApiResponse('getOrgFullScan', data, spinner);
   }
   return data;
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$2
+} = constants;
 const config$2 = {
   commandName: 'stream',
   description: 'Stream the output of a scan',
@@ -6839,13 +7051,14 @@ async function run$2(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required fields:\n
       - Org name as the first argument ${!orgSlug ? colors.red('(missing!)') : colors.green('(ok)')}\n
       - Full Scan ID to fetch as second argument ${!fullScanId ? colors.red('(missing!)') : colors.green('(ok)')}\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$2);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -6883,8 +7096,11 @@ async function getThreatFeed({
   page,
   perPage
 }) {
-  const spinner$1 = new spinner.Spinner();
-  spinner$1.start('Looking up the threat feed');
+  // Lazily access constants.spinner.
+  const {
+    spinner
+  } = constants;
+  spinner.start('Looking up the threat feed');
   const formattedQueryParams = formatQueryParams({
     per_page: perPage,
     page,
@@ -6893,9 +7109,9 @@ async function getThreatFeed({
   }).join('&');
   const response = await queryAPI(`threat-feed?${formattedQueryParams}`, apiToken);
   const data = await response.json();
-  spinner$1.stop();
+  spinner.stop();
   if (outputJson) {
-    console.log(data);
+    logger.logger.log(data);
     return;
   }
   const screen = new ScreenWidget();
@@ -6950,6 +7166,9 @@ function getMinDiff(start, end) {
   return Math.floor((end - start) / 60000);
 }
 
+const {
+  DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$1
+} = constants;
 const config$1 = {
   commandName: 'threat-feed',
   description: 'Look up the threat feed',
@@ -7009,7 +7228,8 @@ async function run$1(argv, importMeta, {
     parentName
   });
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT$1);
+    return;
   }
   const apiToken = index.getDefaultToken();
   if (!apiToken) {
@@ -7032,7 +7252,7 @@ function addSocketWrapper(file) {
     }
     // TODO: pretty sure you need to source the file or restart
     //       any terminal session before changes are reflected.
-    console.log(`
+    logger.logger.log(`
 The alias was added to ${file}. Running 'npm install' will now be wrapped in Socket's "safe npm" 🎉
 If you want to disable it at any time, run \`socket wrapper --disable\`
 `);
@@ -7043,7 +7263,7 @@ function checkSocketWrapperSetup(file) {
   const fileContent = fs.readFileSync(file, 'utf8');
   const linesWithSocketAlias = fileContent.split('\n').filter(l => l === 'alias npm="socket npm"' || l === 'alias npx="socket npx"');
   if (linesWithSocketAlias.length) {
-    console.log(`The Socket npm/npx wrapper is set up in your bash profile (${file}).`);
+    logger.logger.log(`The Socket npm/npx wrapper is set up in your bash profile (${file}).`);
     return true;
   }
   return false;
@@ -7065,7 +7285,7 @@ function postinstallWrapper() {
   }
 }
 function installSafeNpm(query) {
-  console.log(`
+  logger.logger.log(`
  _____         _       _
 |   __|___ ___| |_ ___| |_
 |__   | . |  _| '_| -_|  _|
@@ -7108,24 +7328,27 @@ function askQuestion(rl, query) {
 function removeSocketWrapper(file) {
   return fs.readFile(file, 'utf8', function (err, data) {
     if (err) {
-      console.error(`There was an error removing the alias: ${err}`);
+      logger.logger.error('There was an error removing the alias:');
+      logger.logger.error(err);
       return;
     }
     const linesWithoutSocketAlias = data.split('\n').filter(l => l !== 'alias npm="socket npm"' && l !== 'alias npx="socket npx"');
     const updatedFileContent = linesWithoutSocketAlias.join('\n');
     fs.writeFile(file, updatedFileContent, function (err) {
       if (err) {
-        console.log(err);
+        logger.logger.error(err);
         return;
-      } else {
-        // TODO: pretty sure you need to source the file or restart
-        //       any terminal session before changes are reflected.
-        console.log(`\nThe alias was removed from ${file}. Running 'npm install' will now run the standard npm command.\n`);
       }
+      // TODO: pretty sure you need to source the file or restart
+      //       any terminal session before changes are reflected.
+      logger.logger.log(`The alias was removed from ${file}. Running 'npm install' will now run the standard npm command.`);
     });
   });
 }
 
+const {
+  DRY_RUN_BAIL_TEXT
+} = constants;
 const config = {
   commandName: 'wrapper',
   description: 'Enable or disable the Socket npm/npx wrapper',
@@ -7182,12 +7405,13 @@ async function run(argv, importMeta, {
     // options or missing arguments.
     // https://www.gnu.org/software/bash/manual/html_node/Exit-Status.html
     process.exitCode = 2;
-    console.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required flags:\n
+    logger.logger.error(`${colors.bgRed(colors.white('Input error'))}: Please provide the required flags:\n
       - Must use --enabled or --disabled\n`);
     return;
   }
   if (cli.flags['dryRun']) {
-    return console.log('[DryRun] Bailing now');
+    logger.logger.log(DRY_RUN_BAIL_TEXT);
+    return;
   }
 
   // Lazily access constants.bashRcPath and constants.zshRcPath.
@@ -7211,7 +7435,7 @@ async function run(argv, importMeta, {
     }
   }
   if (!fs.existsSync(bashRcPath) && !fs.existsSync(zshRcPath)) {
-    console.error('There was an issue setting up the alias in your bash profile');
+    logger.logger.error('There was an issue setting up the alias in your bash profile');
   }
 }
 
@@ -7286,10 +7510,10 @@ void (async () => {
     }
     logger.logger.error(`${colors.bgRed(colors.white(errorTitle + ':'))} ${errorMessage}`);
     if (errorBody) {
-      console.error(`\n${errorBody}`);
+      logger.logger.error(`\n${errorBody}`);
     }
     await index.captureException(e);
   }
 })();
-//# debugId=387e6564-5b13-4477-b447-bab83844129a
+//# debugId=f23df080-286e-4174-a361-db1fa42ece1
 //# sourceMappingURL=cli.js.map