npm - @socketsecurity/cli-with-sentry - Versions diffs - 0.14.73 → 0.14.75 - Mend

@socketsecurity/cli-with-sentry 0.14.73 → 0.14.75

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/dist/instrument-with-sentry.js +2 -2
package/dist/instrument-with-sentry.js.map +1 -1
package/dist/module-sync/cli.js +39 -4
package/dist/module-sync/cli.js.map +1 -1
package/dist/module-sync/shadow-npm-inject.js +2 -2
package/dist/module-sync/shadow-npm-inject.js.map +1 -1
package/dist/require/cli.js +39 -4
package/dist/require/cli.js.map +1 -1
package/package.json +1 -1

package/dist/require/cli.js CHANGED Viewed

@@ -911,7 +911,7 @@ function emitBanner(name) {
   logger.logger.error(getAsciiHeader(name))
 }
 function getAsciiHeader(command) {
-  const cliVersion = '0.14.73:3036c50:ff90e036:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
+  const cliVersion = '0.14.75:48886e4:53d4dbe7:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
   const nodeVersion = process$1.version
   const apiToken = shadowNpmInject.getDefaultToken()
   const shownToken = apiToken ? getLastFiveOfApiToken(apiToken) : 'no'
@@ -3189,6 +3189,28 @@ async function commitAndPushFix(branchName, commitMsg, cwd) {
     cwd
   })
 }
+async function waitForBranchToBeReadable(octokit, owner, repo, branch) {
+  const maxRetries = 10
+  const delay = 1500
+  for (let i = 0; i < maxRetries; i++) {
+    try {
+      // eslint-disable-next-line no-await-in-loop
+      const ref = await octokit.git.getRef({
+        owner,
+        repo,
+        ref: `heads/${branch}`
+      })
+      if (ref) {
+        return
+      }
+    } catch (err) {
+      // Still not ready
+    }
+    // eslint-disable-next-line no-await-in-loop
+    await new Promise(resolve => setTimeout(resolve, delay))
+  }
+  throw new Error(`Branch "${branch}" never became visible to GitHub API`)
+}
 async function createPullRequest({
   base = 'main',
   body,
@@ -3200,7 +3222,7 @@ async function createPullRequest({
   const octokit = new vendor.Octokit({
     auth: process.env['SOCKET_AUTOFIX_PAT'] ?? process.env['GITHUB_TOKEN']
   })
-  await new Promise(resolve => setTimeout(resolve, 3000)) // 3s
+  await waitForBranchToBeReadable(octokit, owner, repo, head)
   await octokit.pulls.create({
     owner,
     repo,
@@ -3346,6 +3368,19 @@ async function pnpmFix(pkgEnvDetails, options) {
               const commitMsg = `fix: upgrade ${name} to ${targetVersion}`
               const { owner, repo } = getRepoInfo()
               // eslint-disable-next-line no-await-in-loop
+              await spawn.spawn(
+                'git',
+                [
+                  'remote',
+                  'set-url',
+                  'origin',
+                  `https://x-access-token:${process.env['SOCKET_AUTOFIX_PAT']}@github.com/${owner}/${repo}`
+                ],
+                {
+                  cwd
+                }
+              )
+              // eslint-disable-next-line no-await-in-loop
               await commitAndPushFix(branchName, commitMsg, cwd)
               // eslint-disable-next-line no-await-in-loop
               await createPullRequest({
@@ -11020,7 +11055,7 @@ void (async () => {
   await vendor.updater({
     name: SOCKET_CLI_BIN_NAME,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-    version: '0.14.73',
+    version: '0.14.75',
     ttl: 86_400_000 /* 24 hours in milliseconds */
   })
   try {
@@ -11091,5 +11126,5 @@ void (async () => {
     await shadowNpmInject.captureException(e)
   }
 })()
-//# debugId=60b0f458-6999-4928-9557-764164ce3eac
+//# debugId=cef6094c-13b4-47ea-a3bf-21b58cfc911f
 //# sourceMappingURL=cli.js.map