@socketsecurity/cli-with-sentry 0.15.48 → 0.15.50

package/dist/cli.js

@@ -4875,16 +4875,16 @@ async function pnpmFix(pkgEnvDetails, {
     const infoEntry = sortedInfoEntries[i];
     const partialPurlObj = utils.getPurlObject(infoEntry[0]);
     const name = packages.resolvePackageName(partialPurlObj);
-    let infos = [...infoEntry[1].values()];
+    const infos = [...infoEntry[1].values()];
+    if (!infos.length) {
+      continue infoEntriesLoop;
+    }
+    const activeBranches = [];
     if (isCi) {
       const branchFullName = getSocketBranchFullNameComponent(partialPurlObj);
       const branchPurlType = getSocketBranchPurlTypeComponent(partialPurlObj);
-      const activeBranches = [];
       for (const pr of openPrs) {
         const parsedBranch = branchParser(pr.headRefName);
-        debug.debugFn(`parse: ${pr.headRefName}\n`, parsedBranch);
-        debug.debugFn(`check: branchPurlType ${branchPurlType} === ${parsedBranch?.type}`);
-        debug.debugFn(`check: branchFullName ${branchFullName} === ${parsedBranch?.fullName}`);
         if (branchPurlType === parsedBranch?.type && branchFullName === parsedBranch?.fullName) {
           activeBranches.push(parsedBranch);
         }
@@ -4894,19 +4894,6 @@ async function pnpmFix(pkgEnvDetails, {
       } else if (openPrs.length) {
         debug.debugFn('miss: 0 active branches found');
       }
-      infos = infos.filter(info => {
-        const found = activeBranches.find(b => b.newVersion === info.firstPatchedVersionIdentifier);
-        if (found) {
-          debug.debugFn(`found: active branch for ${name}@${info.firstPatchedVersionIdentifier}`);
-          return false;
-        } else {
-          debug.debugFn(`miss: no active branch found for ${name}@${info.firstPatchedVersionIdentifier}`);
-          return true;
-        }
-      });
-    }
-    if (!infos.length) {
-      continue infoEntriesLoop;
     }
     logger.logger.log(`Processing vulns for ${name}:`);
     logger.logger.indent();
@@ -4997,12 +4984,16 @@ async function pnpmFix(pkgEnvDetails, {
         infosLoop: for (const {
           firstPatchedVersionIdentifier,
           vulnerableVersionRange
-        } of infos.values()) {
+        } of infos) {
           if (vendor.semverExports.gte(oldVersion, firstPatchedVersionIdentifier)) {
             debug.debugFn(`skip: ${oldId} is >= ${firstPatchedVersionIdentifier}`);
             continue infosLoop;
           }
           const newVersion = shadowInject.findBestPatchVersion(node, availableVersions, vulnerableVersionRange);
+          if (activeBranches.find(b => b.newVersion === newVersion)) {
+            debug.debugFn(`skip: open PR found for ${name}@${newVersion}`);
+            continue infosLoop;
+          }
           const newVersionPackument = newVersion ? packument.versions[newVersion] : undefined;
           if (!(newVersion && newVersionPackument)) {
             warningsForAfter.add(`${oldId} not updated: requires >=${firstPatchedVersionIdentifier}`);
@@ -5268,6 +5259,8 @@ async function pnpmFix(pkgEnvDetails, {
               cause: `Update failed for ${oldId} in ${workspace}${error ? '; ' + error : ''}`
             };
           }
+          debug.debugFn('name:', name);
+          debug.debugFn('increment: count', count + 1);
           if (++count >= limit) {
             logger.logger.dedent();
             spinner?.dedent();
@@ -14284,5 +14277,5 @@ void (async () => {
     await utils.captureException(e);
   }
 })();
-//# debugId=d77f850e-4116-456a-acb9-b74d5a8977aa
+//# debugId=fd15c458-8a8d-4baf-88b7-983da622adaf
 //# sourceMappingURL=cli.js.map