@socketsecurity/cli-with-sentry 0.14.78 → 0.14.80

package/dist/instrument-with-sentry.js

@@ -41,7 +41,7 @@ const relConstantsPath = './constants'
   Sentry.setTag(
     'version',
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
-    '0.14.78:559893b:39cd3a2a:pub'
+    '0.14.80:4ef7be7:e324b7e4:pub'
   )
   const constants = require(relConstantsPath)
   if (constants.ENV.SOCKET_CLI_DEBUG) {
@@ -56,5 +56,5 @@ const relConstantsPath = './constants'
   } = constants
   setSentry(Sentry)
 }
-//# debugId=841d3af6-f33a-4fa0-8575-d1f7f900ed7a
+//# debugId=13c1f3c0-9588-4aab-bec2-c189e03b21f9
 //# sourceMappingURL=instrument-with-sentry.js.map

package/dist/instrument-with-sentry.js.map

@@ -1 +1 @@
-{"version":3,"file":"instrument-with-sentry.js","sources":["../../src/instrument-with-sentry.ts"],"sourcesContent":["// This should ONLY be included in the special Sentry build!\n// Otherwise the Sentry dependency won't even be present in the manifest.\n\nimport { logger } from '@socketsecurity/registry/lib/logger'\n\n// Require constants with require(relConstantsPath) instead of require('./constants')\n// so Rollup doesn't generate a constants2.js chunk.\nconst relConstantsPath = './constants'\n// The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']\".\nif (process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']) {\n  const Sentry = require('@sentry/node')\n  Sentry.init({\n    onFatalError(error: Error) {\n      // Defer module loads until after Sentry.init is called.\n      if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n        logger.fail('[DEBUG] [Sentry onFatalError]:', error)\n      }\n    },\n    dsn: 'https://66736701db8e4ffac046bd09fa6aaced@o555220.ingest.us.sentry.io/4508846967619585',\n    enabled: true,\n    integrations: []\n  })\n  Sentry.setTag(\n    'environment',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\".\n    process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\n      ? 'pub'\n      : // The NODE_ENV convention is used by apps to define the runtime environment.\n        // https://nodejs.org/en/learn/getting-started/nodejs-the-difference-between-development-and-production\n        process.env['NODE_ENV']\n  )\n  Sentry.setTag(\n    'version',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_VERSION_HASH']\".\n    process.env['INLINED_SOCKET_CLI_VERSION_HASH']\n  )\n  const constants = require(relConstantsPath)\n  if (constants.ENV.SOCKET_CLI_DEBUG) {\n    Sentry.setTag('debugging', true)\n    logger.log('[DEBUG] Set up Sentry.')\n  } else {\n    Sentry.setTag('debugging', false)\n  }\n  const {\n    kInternalsSymbol,\n    [kInternalsSymbol as unknown as 'Symbol(kInternalsSymbol)']: { setSentry }\n  } = constants\n  setSentry(Sentry)\n} else if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n  logger.log('[DEBUG] Sentry disabled explicitly.')\n}\n"],"names":["logger","dsn","enabled","integrations","process","Sentry","setSentry"],"mappings":";;;;;;;;;;;;;AAAA;AACA;;;AAIA;AACA;AACA;AACA;AACoD;AAClD;;;AAGI;;AAEEA;AACF;;AAEFC;AACAC;AACAC;AACF;;AAGE;AACAC;;AAQA;AACAA;AAEF;AACA;AACEC;AACAL;AACF;AACEK;AACF;;;AAGE;AAA+DC;AAAU;AAC3E;;AAEF","debugId":"841d3af6-f33a-4fa0-8575-d1f7f900ed7a"}
+{"version":3,"file":"instrument-with-sentry.js","sources":["../../src/instrument-with-sentry.ts"],"sourcesContent":["// This should ONLY be included in the special Sentry build!\n// Otherwise the Sentry dependency won't even be present in the manifest.\n\nimport { logger } from '@socketsecurity/registry/lib/logger'\n\n// Require constants with require(relConstantsPath) instead of require('./constants')\n// so Rollup doesn't generate a constants2.js chunk.\nconst relConstantsPath = './constants'\n// The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']\".\nif (process.env['INLINED_SOCKET_CLI_SENTRY_BUILD']) {\n  const Sentry = require('@sentry/node')\n  Sentry.init({\n    onFatalError(error: Error) {\n      // Defer module loads until after Sentry.init is called.\n      if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n        logger.fail('[DEBUG] [Sentry onFatalError]:', error)\n      }\n    },\n    dsn: 'https://66736701db8e4ffac046bd09fa6aaced@o555220.ingest.us.sentry.io/4508846967619585',\n    enabled: true,\n    integrations: []\n  })\n  Sentry.setTag(\n    'environment',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\".\n    process.env['INLINED_SOCKET_CLI_PUBLISHED_BUILD']\n      ? 'pub'\n      : // The NODE_ENV convention is used by apps to define the runtime environment.\n        // https://nodejs.org/en/learn/getting-started/nodejs-the-difference-between-development-and-production\n        process.env['NODE_ENV']\n  )\n  Sentry.setTag(\n    'version',\n    // The '@rollup/plugin-replace' will replace \"process.env['INLINED_SOCKET_CLI_VERSION_HASH']\".\n    process.env['INLINED_SOCKET_CLI_VERSION_HASH']\n  )\n  const constants = require(relConstantsPath)\n  if (constants.ENV.SOCKET_CLI_DEBUG) {\n    Sentry.setTag('debugging', true)\n    logger.log('[DEBUG] Set up Sentry.')\n  } else {\n    Sentry.setTag('debugging', false)\n  }\n  const {\n    kInternalsSymbol,\n    [kInternalsSymbol as unknown as 'Symbol(kInternalsSymbol)']: { setSentry }\n  } = constants\n  setSentry(Sentry)\n} else if (require(relConstantsPath).ENV.SOCKET_CLI_DEBUG) {\n  logger.log('[DEBUG] Sentry disabled explicitly.')\n}\n"],"names":["logger","dsn","enabled","integrations","process","Sentry","setSentry"],"mappings":";;;;;;;;;;;;;AAAA;AACA;;;AAIA;AACA;AACA;AACA;AACoD;AAClD;;;AAGI;;AAEEA;AACF;;AAEFC;AACAC;AACAC;AACF;;AAGE;AACAC;;AAQA;AACAA;AAEF;AACA;AACEC;AACAL;AACF;AACEK;AACF;;;AAGE;AAA+DC;AAAU;AAC3E;;AAEF","debugId":"13c1f3c0-9588-4aab-bec2-c189e03b21f9"}

package/dist/module-sync/cli.js

@@ -38,6 +38,7 @@ const prompts = require('@socketsecurity/registry/lib/prompts')
 const shadowNpmPaths = require('./shadow-npm-paths.js')
 const chalkTable = _socketInterop(require('chalk-table'))
 const util = require('node:util')
+const terminalLink = _socketInterop(require('terminal-link'))
 const arrays = require('@socketsecurity/registry/lib/arrays')
 const registry = require('@socketsecurity/registry')
 const npm = require('@socketsecurity/registry/lib/npm')
@@ -55,7 +56,6 @@ const index_cjs = require('@socketregistry/hyrious__bun.lockb/index.cjs')
 const sorts = require('@socketsecurity/registry/lib/sorts')
 const registryConstants = require('@socketsecurity/registry/lib/constants')
 const isInteractive = require('@socketregistry/is-interactive/index.cjs')
-const terminalLink = _socketInterop(require('terminal-link'))
 const npa = _socketInterop(require('npm-package-arg'))
 const tinyglobby = _socketInterop(require('tinyglobby'))
 const promises = require('@socketsecurity/registry/lib/promises')
@@ -915,7 +915,7 @@ function emitBanner(name) {
   logger.logger.error(getAsciiHeader(name))
 }
 function getAsciiHeader(command) {
-  const cliVersion = '0.14.78:559893b:39cd3a2a:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
+  const cliVersion = '0.14.80:4ef7be7:e324b7e4:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
   const nodeVersion = process$1.version
   const apiToken = shadowNpmInject.getDefaultToken()
   const shownToken = apiToken ? getLastFiveOfApiToken(apiToken) : 'no'
@@ -3778,6 +3778,35 @@ function getOctokit() {
   }
   return _octokit
 }
+async function enableAutoMerge(prResponseData) {
+  const octokit = getOctokit()
+  const { node_id: prId, number: prNumber } = prResponseData
+  try {
+    await octokit.graphql(
+      `
+      mutation EnableAutoMerge($pullRequestId: ID!) {
+        enablePullRequestAutoMerge(input: {
+          pullRequestId: $pullRequestId,
+          mergeMethod: SQUASH
+        }) {
+          pullRequest {
+            number
+            autoMergeRequest {
+              enabledAt
+            }
+          }
+        }
+      }
+      `,
+      {
+        pullRequestId: prId
+      }
+    )
+    logger.logger.info(`Auto-merge enabled for PR #${prNumber}`)
+  } catch (e) {
+    logger.logger.error(`Failed to enable auto-merge for PR #${prNumber}:`, e)
+  }
+}
 async function openGitHubPullRequest(name, targetVersion, cwd = process.cwd()) {
   // Lazily access constants.ENV[GITHUB_ACTIONS].
   if (constants.ENV[GITHUB_ACTIONS]) {
@@ -3819,7 +3848,7 @@ async function openGitHubPullRequest(name, targetVersion, cwd = process.cwd()) {
       })
     }
     const octokit = getOctokit()
-    await octokit.pulls.create({
+    return await octokit.pulls.create({
       owner,
       repo,
       title: commitMsg,
@@ -3846,16 +3875,10 @@ async function install$1(idealTree, options) {
   arb2.idealTree = idealTree
   await arb2.reify()
 }
-async function npmFix(_pkgEnvDetails, options) {
-  const {
-    cwd = process.cwd(),
-    spinner,
-    test = false,
-    testScript = 'test'
-  } = {
-    __proto__: null,
-    ...options
-  }
+async function npmFix(
+  _pkgEnvDetails,
+  { autoMerge, cwd, rangeStyle, spinner, test, testScript }
+) {
   spinner?.start()
   const arb = new shadowNpmInject.SafeArborist({
     path: cwd,
@@ -3951,7 +3974,8 @@ async function npmFix(_pkgEnvDetails, options) {
             shadowNpmInject.updatePackageJsonFromNode(
               editablePkgJson,
               arb.idealTree,
-              node
+              node,
+              rangeStyle
             )
             // eslint-disable-next-line no-await-in-loop
             await editablePkgJson.save()
@@ -3975,7 +3999,15 @@ async function npmFix(_pkgEnvDetails, options) {
             // Lazily access constants.ENV[CI].
             if (constants.ENV[CI$1]) {
               // eslint-disable-next-line no-await-in-loop
-              await openGitHubPullRequest(name, targetVersion, cwd)
+              const prResponse = await openGitHubPullRequest(
+                name,
+                targetVersion,
+                cwd
+              )
+              if (autoMerge) {
+                // eslint-disable-next-line no-await-in-loop
+                await enableAutoMerge(prResponse.data)
+              }
             }
           } catch {
             spinner?.error(`Reverting ${fixSpec}`)
@@ -4210,16 +4242,10 @@ async function install(pkgEnvDetails, options) {
     stdio: 'ignore'
   })
 }
-async function pnpmFix(pkgEnvDetails, options) {
-  const {
-    cwd = process.cwd(),
-    spinner,
-    test = false,
-    testScript = 'test'
-  } = {
-    __proto__: null,
-    ...options
-  }
+async function pnpmFix(
+  pkgEnvDetails,
+  { autoMerge, cwd, rangeStyle, spinner, test, testScript }
+) {
   const lockfile = await lockfile_fs.readWantedLockfile(cwd, {
     ignoreIncompatible: false
   })
@@ -4276,7 +4302,7 @@ async function pnpmFix(pkgEnvDetails, options) {
         vulnerableVersionRange
       } of infos) {
         const node = shadowNpmInject.findPackageNode(
-          arb.idealTree,
+          arb.actualTree,
           name,
           oldVersion
         )
@@ -4349,7 +4375,8 @@ async function pnpmFix(pkgEnvDetails, options) {
             shadowNpmInject.updatePackageJsonFromNode(
               editablePkgJson,
               arb.actualTree,
-              node
+              node,
+              rangeStyle
             )
             // eslint-disable-next-line no-await-in-loop
             await editablePkgJson.save()
@@ -4374,7 +4401,15 @@ async function pnpmFix(pkgEnvDetails, options) {
             // Lazily access constants.ENV[CI].
             if (constants.ENV[CI]) {
               // eslint-disable-next-line no-await-in-loop
-              await openGitHubPullRequest(name, targetVersion, cwd)
+              const prResponse = await openGitHubPullRequest(
+                name,
+                targetVersion,
+                cwd
+              )
+              if (autoMerge) {
+                // eslint-disable-next-line no-await-in-loop
+                await enableAutoMerge(prResponse.data)
+              }
             }
           } catch {
             spinner?.error(`Reverting ${fixSpec}`)
@@ -4801,48 +4836,27 @@ async function detectAndValidatePackageEnvironment(cwd, options) {
 
 const { NPM: NPM$a, PNPM: PNPM$7 } = constants
 const CMD_NAME$2 = 'socket fix'
-async function runFix({
-  cwd = process.cwd(),
-  rangeStyle,
-  spinner,
-  test = false,
-  testScript = 'test'
-}) {
-  const pkgEnvDetails = await detectAndValidatePackageEnvironment(cwd, {
+async function runFix(options_) {
+  const options = shadowNpmInject.assignDefaultFixOptions({
+    __proto__: null,
+    ...options_
+  })
+  const pkgEnvDetails = await detectAndValidatePackageEnvironment(options.cwd, {
     cmdName: CMD_NAME$2,
     logger: logger.logger
   })
   if (!pkgEnvDetails) {
-    spinner?.stop()
     return
   }
   logger.logger.info(`Fixing packages for ${pkgEnvDetails.agent}`)
-  switch (pkgEnvDetails.agent) {
-    case NPM$a: {
-      await npmFix(pkgEnvDetails, {
-        rangeStyle,
-        spinner,
-        test,
-        testScript
-      })
-      break
-    }
-    case PNPM$7: {
-      await pnpmFix(pkgEnvDetails, {
-        rangeStyle,
-        spinner,
-        test,
-        testScript
-      })
-      break
-    }
+  const { agent } = pkgEnvDetails
+  if (agent === NPM$a) {
+    await npmFix(pkgEnvDetails, options)
+  } else if (agent === PNPM$7) {
+    await pnpmFix(pkgEnvDetails, options)
   }
-  spinner?.stop()
-  // spinner.successAndStop('Socket.dev fix successful')
 }
 
-const RangeStyles = ['caret', 'gt', 'lt', 'pin', 'preserve', 'tilde']
-
 const { DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$w } = constants
 const config$z = {
   commandName: 'fix',
@@ -4850,6 +4864,11 @@ const config$z = {
   hidden: true,
   flags: {
     ...commonFlags,
+    autoMerge: {
+      type: 'boolean',
+      default: true,
+      description: `Enable auto-merge for pull requests that Socket opens.\n                        See ${terminalLink('GitHub documentation', 'https://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/configuring-pull-request-merges/managing-auto-merge-for-pull-requests-in-your-repository')} for managing auto-merge for pull requests in your repository.`
+    },
     rangeStyle: {
       type: 'string',
       default: 'preserve',
@@ -4867,7 +4886,7 @@ const config$z = {
     test: {
       type: 'boolean',
       default: true,
-      description: 'Very the fix by running unit tests'
+      description: 'Verify the fix by running unit tests'
     },
     testScript: {
       type: 'string',
@@ -4896,8 +4915,8 @@ async function run$z(argv, importMeta, { parentName }) {
     parentName
   })
   const wasBadInput = handleBadInput({
-    test: RangeStyles.includes(cli.flags['rangeStyle']),
-    message: `Expecting range style of ${arrays.joinOr(RangeStyles)}`,
+    test: shadowNpmInject.RangeStyles.includes(cli.flags['rangeStyle']),
+    message: `Expecting range style of ${arrays.joinOr(shadowNpmInject.RangeStyles)}`,
     pass: 'ok',
     fail: 'missing'
   })
@@ -4912,6 +4931,7 @@ async function run$z(argv, importMeta, { parentName }) {
   // Lazily access constants.spinner.
   const { spinner } = constants
   await runFix({
+    autoMerge: Boolean(cli.flags['autoMerge']),
     spinner,
     rangeStyle: cli.flags['rangeStyle'] ?? undefined,
     test: Boolean(cli.flags['test']),
@@ -11285,7 +11305,7 @@ void (async () => {
   await updateNotifier({
     name: SOCKET_CLI_BIN_NAME,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-    version: '0.14.78',
+    version: '0.14.80',
     ttl: 86_400_000 /* 24 hours in milliseconds */
   })
   try {
@@ -11353,5 +11373,5 @@ void (async () => {
     await shadowNpmInject.captureException(e)
   }
 })()
-//# debugId=113140e8-e205-41ef-b024-e029f5376cbc
+//# debugId=6d52c4d0-3501-45eb-a093-4cafbc5990e3
 //# sourceMappingURL=cli.js.map