@socketsecurity/cli-with-sentry 0.14.65 → 0.14.66

package/dist/module-sync/shadow-npm-inject.js

@@ -306,7 +306,7 @@ async function setupSdk(apiToken = getDefaultToken(), apiBaseUrl = getDefaultApi
       // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_NAME']".
       name: "@socketsecurity/cli",
       // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-      version: "0.14.65",
+      version: "0.14.66",
       // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_HOMEPAGE']".
       homepage: "https://github.com/SocketDev/socket-cli"
     })
@@ -1031,6 +1031,12 @@ function isArtifactAlertCve(alert) {
   return type === ALERT_TYPE_CVE || type === ALERT_TYPE_MEDIUM_CVE || type === ALERT_TYPE_MILD_CVE || type === ALERT_TYPE_CRITICAL_CVE;
 }
 
+let ALERT_FIX_TYPE = /*#__PURE__*/function (ALERT_FIX_TYPE) {
+  ALERT_FIX_TYPE["cve"] = "cve";
+  ALERT_FIX_TYPE["upgrade"] = "upgrade";
+  return ALERT_FIX_TYPE;
+}({});
+
 const ERROR_UX = {
   block: true,
   display: true
@@ -1172,23 +1178,29 @@ async function uxLookup(settings) {
         const sockSdk = await setupSdk(getPublicToken());
         const orgResult = await sockSdk.getOrganizations();
         if (!orgResult.success) {
-          throw new Error(`Failed to fetch Socket organization info: ${orgResult.error.message}`);
+          if (orgResult.status === 429) {
+            throw new Error(`API token quota exceeded: ${orgResult.error}`);
+          }
+          throw new Error(`Failed to fetch Socket organization info: ${orgResult.error}`);
         }
+        const {
+          organizations
+        } = orgResult.data;
         const orgs = [];
-        for (const org of Object.values(orgResult.data.organizations)) {
+        for (const org of Object.values(organizations)) {
           if (org) {
             orgs.push(org);
           }
         }
-        const result = await sockSdk.postSettings(orgs.map(org => ({
+        const settingsResult = await sockSdk.postSettings(orgs.map(org => ({
           organization: org.id
         })));
-        if (!result.success) {
-          throw new Error(`Failed to fetch API key settings: ${result.error.message}`);
+        if (!settingsResult.success) {
+          throw new Error(`Failed to fetch API key settings: ${settingsResult.error}`);
         }
         return {
           orgs,
-          settings: result.data
+          settings: settingsResult.data
         };
       } catch (e) {
         const cause = objects.isObject(e) && 'cause' in e ? e['cause'] : undefined;
@@ -1255,16 +1267,15 @@ function stringJoinWithSeparateFinalSeparator(list, separator = ' and ') {
   return `${values.join(', ')}${separator}${finalValue}`;
 }
 
-let SEVERITY = /*#__PURE__*/function (SEVERITY) {
-  SEVERITY["critical"] = "critical";
-  SEVERITY["high"] = "high";
-  SEVERITY["middle"] = "middle";
-  SEVERITY["low"] = "low";
-  return SEVERITY;
+let ALERT_SEVERITY = /*#__PURE__*/function (ALERT_SEVERITY) {
+  ALERT_SEVERITY["critical"] = "critical";
+  ALERT_SEVERITY["high"] = "high";
+  ALERT_SEVERITY["middle"] = "middle";
+  ALERT_SEVERITY["low"] = "low";
+  return ALERT_SEVERITY;
 }({});
-
 // Ordered from most severe to least.
-const SEVERITIES_BY_ORDER = ['critical', 'high', 'middle', 'low'];
+const SEVERITIES_BY_ORDER = Object.freeze(['critical', 'high', 'middle', 'low']);
 function getDesiredSeverities(lowestToInclude) {
   const result = [];
   for (const severity of SEVERITIES_BY_ORDER) {
@@ -1298,8 +1309,11 @@ function getSeverityCount(issues, lowestToInclude) {
     if (!value) {
       continue;
     }
-    if (severityCount[value.severity] !== undefined) {
-      severityCount[value.severity] += 1;
+    const {
+      severity
+    } = value;
+    if (severityCount[severity] !== undefined) {
+      severityCount[severity] += 1;
     }
   }
   return severityCount;
@@ -1359,8 +1373,6 @@ function getTranslations() {
 }
 
 const {
-  ALERT_FIX_TYPE_CVE,
-  ALERT_FIX_TYPE_UPGRADE,
   CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER,
   NPM: NPM$2
 } = constants;
@@ -1368,7 +1380,7 @@ const format = new ColorOrMarkdown(false);
 async function addArtifactToAlertsMap(artifact, alertsByPkgId, options) {
   // Make TypeScript happy.
   if (!artifact.name || !artifact.version || !artifact.alerts?.length) {
-    return;
+    return alertsByPkgId;
   }
   const {
     consolidate = false,
@@ -1405,10 +1417,10 @@ async function addArtifactToAlertsMap(artifact, alertsByPkgId, options) {
       }
     });
     const fixType = alert.fix?.type ?? '';
-    const critical = alert.severity === SEVERITY.critical;
+    const critical = alert.severity === ALERT_SEVERITY.critical;
     const cve = isArtifactAlertCve(alert);
-    const fixableCve = fixType === ALERT_FIX_TYPE_CVE;
-    const fixableUpgrade = fixType === ALERT_FIX_TYPE_UPGRADE;
+    const fixableCve = fixType === ALERT_FIX_TYPE.cve;
+    const fixableUpgrade = fixType === ALERT_FIX_TYPE.upgrade;
     const fixable = fixableCve || fixableUpgrade;
     const upgrade = fixableUpgrade && !objects.hasOwn(overrides, name);
     if (include.cve && cve || include.unfixable && !fixable || include.critical && critical || include.upgrade && upgrade) {
@@ -1427,7 +1439,7 @@ async function addArtifactToAlertsMap(artifact, alertsByPkgId, options) {
     }
   }
   if (!sockPkgAlerts.length) {
-    return;
+    return alertsByPkgId;
   }
   if (consolidate) {
     const highestForCve = new Map();
@@ -1436,7 +1448,7 @@ async function addArtifactToAlertsMap(artifact, alertsByPkgId, options) {
     for (const sockPkgAlert of sockPkgAlerts) {
       const alert = sockPkgAlert.raw;
       const fixType = alert.fix?.type ?? '';
-      if (fixType === ALERT_FIX_TYPE_CVE) {
+      if (fixType === ALERT_FIX_TYPE.cve) {
         const patchedVersion = alert.props[CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER];
         const patchedMajor = semver.major(patchedVersion);
         const oldHighest = highestForCve.get(patchedMajor);
@@ -1447,7 +1459,7 @@ async function addArtifactToAlertsMap(artifact, alertsByPkgId, options) {
             version: patchedVersion
           });
         }
-      } else if (fixType === ALERT_FIX_TYPE_UPGRADE) {
+      } else if (fixType === ALERT_FIX_TYPE.upgrade) {
         const oldHighest = highestForUpgrade.get(major);
         const highest = oldHighest?.version ?? '0.0.0';
         if (semver.gt(version, highest)) {
@@ -1462,11 +1474,11 @@ async function addArtifactToAlertsMap(artifact, alertsByPkgId, options) {
     }
     sockPkgAlerts = [...unfixableAlerts, ...[...highestForCve.values()].map(d => d.alert), ...[...highestForUpgrade.values()].map(d => d.alert)];
   }
-  if (!sockPkgAlerts.length) {
-    return;
+  if (sockPkgAlerts.length) {
+    sockPkgAlerts.sort((a, b) => sorts.naturalCompare(a.type, b.type));
+    alertsByPkgId.set(pkgId, sockPkgAlerts);
   }
-  sockPkgAlerts.sort((a, b) => sorts.naturalCompare(a.type, b.type));
-  alertsByPkgId.set(pkgId, sockPkgAlerts);
+  return alertsByPkgId;
 }
 function getCveInfoByAlertsMap(alertsMap, options) {
   const exclude = {
@@ -1482,7 +1494,7 @@ function getCveInfoByAlertsMap(alertsMap, options) {
     const name = packages.resolvePackageName(purlObj);
     for (const sockPkgAlert of sockPkgAlerts) {
       const alert = sockPkgAlert.raw;
-      if (alert.fix?.type !== ALERT_FIX_TYPE_CVE || exclude.upgrade && registry.getManifestData(NPM$2, name)) {
+      if (alert.fix?.type !== ALERT_FIX_TYPE.cve || exclude.upgrade && registry.getManifestData(NPM$2, name)) {
         continue;
       }
       if (!infoByPkg) {
@@ -1910,12 +1922,12 @@ function installSafeArborist() {
 
 installSafeArborist();
 
+exports.ALERT_SEVERITY = ALERT_SEVERITY;
 exports.Arborist = Arborist;
 exports.AuthError = AuthError;
 exports.ColorOrMarkdown = ColorOrMarkdown;
 exports.InputError = InputError;
 exports.SAFE_ARBORIST_REIFY_OPTIONS_OVERRIDES = SAFE_ARBORIST_REIFY_OPTIONS_OVERRIDES;
-exports.SEVERITY = SEVERITY;
 exports.SafeArborist = SafeArborist;
 exports.addArtifactToAlertsMap = addArtifactToAlertsMap;
 exports.captureException = captureException;
@@ -1937,5 +1949,5 @@ exports.safeReadFile = safeReadFile;
 exports.setupSdk = setupSdk;
 exports.updateNode = updateNode;
 exports.updateSetting = updateSetting;
-//# debugId=10ac7b59-9e2e-4a6a-88ed-ed401e2c65fd
+//# debugId=86178861-a8cc-486b-ac92-f49e627e80af
 //# sourceMappingURL=shadow-npm-inject.js.map