npm - @socketsecurity/cli-with-sentry - Versions diffs - 1.1.56 → 1.1.58 - Mend

@socketsecurity/cli-with-sentry 1.1.56 → 1.1.58

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/CHANGELOG.md +16 -0
package/dist/cli.js +29 -10
package/dist/cli.js.map +1 -1
package/dist/constants.js +4 -4
package/dist/constants.js.map +1 -1
package/dist/tsconfig.dts.tsbuildinfo +1 -1
package/dist/types/commands/ci/handle-ci.d.mts.map +1 -1
package/dist/types/commands/scan/cmd-scan-create.d.mts.map +1 -1
package/dist/types/commands/scan/cmd-scan-reach.d.mts.map +1 -1
package/dist/types/commands/scan/perform-reachability-analysis.d.mts +2 -1
package/dist/types/commands/scan/perform-reachability-analysis.d.mts.map +1 -1
package/dist/types/commands/scan/reachability-flags.d.mts.map +1 -1
package/dist/vendor.js +1617 -657
package/package.json +4 -4

package/CHANGELOG.md CHANGED Viewed

@@ -4,6 +4,22 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
+## [1.1.58](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.58) - 2026-01-14
+### Changed
+- Analysis splitting is now disabled by default for reachability scans.
+- Added `--reach-enable-analysis-splitting` flag to opt-in to multiple analysis runs per workspace when needed.
+- Deprecated `--reach-disable-analysis-splitting` flag (now a no-op for backwards compatibility).
+- Updated the Coana CLI to v `14.12.154`.
+## [1.1.57](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.57) - 2026-01-10
+### Changed
+- Updated `@socketsecurity/socket-patch` to v1.2.0, which includes:
+  - Progress spinner for scan command
+  - Improved test coverage
 ## [1.1.56](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.56) - 2026-01-10
 ### Fixed

package/dist/cli.js CHANGED Viewed

@@ -1648,7 +1648,7 @@ async function performReachabilityAnalysis(options) {
   spinner?.infoAndStop('Running reachability analysis with Coana...');
   const outputFilePath = outputPath || constants.default.DOT_SOCKET_DOT_FACTS_JSON;
   // Build Coana arguments.
-  const coanaArgs = ['run', analysisTarget, '--output-dir', path.dirname(outputFilePath), '--socket-mode', outputFilePath, '--disable-report-submission', ...(reachabilityOptions.reachAnalysisTimeout ? ['--analysis-timeout', `${reachabilityOptions.reachAnalysisTimeout}`] : []), ...(reachabilityOptions.reachAnalysisMemoryLimit ? ['--memory-limit', `${reachabilityOptions.reachAnalysisMemoryLimit}`] : []), ...(reachabilityOptions.reachConcurrency ? ['--concurrency', `${reachabilityOptions.reachConcurrency}`] : []), ...(reachabilityOptions.reachDebug ? ['--debug'] : []), ...(reachabilityOptions.reachDisableAnalytics ? ['--disable-analytics-sharing'] : []), ...(reachabilityOptions.reachDisableAnalysisSplitting ? ['--disable-analysis-splitting'] : []), ...(tarHash ? ['--run-without-docker', '--manifests-tar-hash', tarHash] : []),
+  const coanaArgs = ['run', analysisTarget, '--output-dir', path.dirname(outputFilePath), '--socket-mode', outputFilePath, '--disable-report-submission', ...(reachabilityOptions.reachAnalysisTimeout ? ['--analysis-timeout', `${reachabilityOptions.reachAnalysisTimeout}`] : []), ...(reachabilityOptions.reachAnalysisMemoryLimit ? ['--memory-limit', `${reachabilityOptions.reachAnalysisMemoryLimit}`] : []), ...(reachabilityOptions.reachConcurrency ? ['--concurrency', `${reachabilityOptions.reachConcurrency}`] : []), ...(reachabilityOptions.reachDebug ? ['--debug'] : []), ...(reachabilityOptions.reachDetailedAnalysisLogFile ? ['--print-analysis-log-file'] : []), ...(reachabilityOptions.reachDisableAnalytics ? ['--disable-analytics-sharing'] : []), ...(reachabilityOptions.reachEnableAnalysisSplitting ? [] : ['--disable-analysis-splitting']), ...(tarHash ? ['--run-without-docker', '--manifests-tar-hash', tarHash] : []),
   // Empty reachEcosystems implies scanning all ecosystems.
   ...(reachabilityOptions.reachEcosystems.length ? ['--purl-types', ...reachabilityOptions.reachEcosystems] : []), ...(reachabilityOptions.reachExcludePaths.length ? ['--exclude-dirs', ...reachabilityOptions.reachExcludePaths] : []), ...(reachabilityOptions.reachLazyMode ? ['--lazy-mode'] : []), ...(reachabilityOptions.reachSkipCache ? ['--skip-cache-usage'] : []), ...(reachabilityOptions.reachUseOnlyPregeneratedSboms ? ['--use-only-pregenerated-sboms'] : [])];
@@ -2423,9 +2423,10 @@ async function handleCi(autoManifest) {
       reachAnalysisTimeout: 0,
       reachConcurrency: 1,
       reachDebug: false,
-      reachDisableAnalysisSplitting: false,
+      reachDetailedAnalysisLogFile: false,
       reachDisableAnalytics: false,
       reachEcosystems: [],
+      reachEnableAnalysisSplitting: false,
       reachExcludePaths: [],
       reachLazyMode: false,
       reachSkipCache: false,
@@ -10876,6 +10877,11 @@ const reachabilityFlags = {
     default: false,
     description: 'Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI.'
   },
+  reachDetailedAnalysisLogFile: {
+    type: 'boolean',
+    default: false,
+    description: 'A log file with detailed analysis logs is written to root of each analyzed workspace.'
+  },
   reachDisableAnalytics: {
     type: 'boolean',
     default: false,
@@ -10884,7 +10890,13 @@ const reachabilityFlags = {
   reachDisableAnalysisSplitting: {
     type: 'boolean',
     default: false,
-    description: 'Limits Coana to at most 1 reachability analysis run per workspace.'
+    hidden: true,
+    description: 'Deprecated: Analysis splitting is now disabled by default. This flag is a no-op.'
+  },
+  reachEnableAnalysisSplitting: {
+    type: 'boolean',
+    default: false,
+    description: 'Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default.'
   },
   reachEcosystems: {
     type: 'string',
@@ -11152,8 +11164,10 @@ async function run$d(argv, importMeta, {
     reachAnalysisTimeout,
     reachConcurrency,
     reachDebug,
-    reachDisableAnalysisSplitting,
+    reachDetailedAnalysisLogFile,
+    reachDisableAnalysisSplitting: _reachDisableAnalysisSplitting,
     reachDisableAnalytics,
+    reachEnableAnalysisSplitting,
     reachLazyMode,
     reachSkipCache,
     reachUseOnlyPregeneratedSboms,
@@ -11286,7 +11300,7 @@ async function run$d(argv, importMeta, {
   const isUsingNonDefaultConcurrency = reachConcurrency !== reachabilityFlags['reachConcurrency']?.default;
   const isUsingNonDefaultAnalytics = reachDisableAnalytics !== reachabilityFlags['reachDisableAnalytics']?.default;
   const isUsingNonDefaultVersion = reachVersion !== reachabilityFlags['reachVersion']?.default;
-  const isUsingAnyReachabilityFlags = hasReachEcosystems || hasReachExcludePaths || isUsingNonDefaultAnalytics || isUsingNonDefaultConcurrency || isUsingNonDefaultMemoryLimit || isUsingNonDefaultTimeout || isUsingNonDefaultVersion || reachDisableAnalysisSplitting || reachLazyMode || reachSkipCache || reachUseOnlyPregeneratedSboms;
+  const isUsingAnyReachabilityFlags = hasReachEcosystems || hasReachExcludePaths || isUsingNonDefaultAnalytics || isUsingNonDefaultConcurrency || isUsingNonDefaultMemoryLimit || isUsingNonDefaultTimeout || isUsingNonDefaultVersion || reachEnableAnalysisSplitting || reachLazyMode || reachSkipCache || reachUseOnlyPregeneratedSboms;
   // Validate target constraints when --reach is enabled.
   const reachTargetValidation = reach ? await validateReachabilityTarget(targets, cwd) : {
@@ -11375,9 +11389,10 @@ async function run$d(argv, importMeta, {
       reachAnalysisTimeout: Number(reachAnalysisTimeout),
       reachConcurrency: Number(reachConcurrency),
       reachDebug: Boolean(reachDebug),
-      reachDisableAnalysisSplitting: Boolean(reachDisableAnalysisSplitting),
+      reachDetailedAnalysisLogFile: Boolean(reachDetailedAnalysisLogFile),
       reachDisableAnalytics: Boolean(reachDisableAnalytics),
       reachEcosystems,
+      reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting),
       reachExcludePaths,
       reachLazyMode: Boolean(reachLazyMode),
       reachSkipCache: Boolean(reachSkipCache),
@@ -12026,9 +12041,10 @@ async function scanOneRepo(repoSlug, {
       reachAnalysisTimeout: 0,
       reachConcurrency: 1,
       reachDebug: false,
-      reachDisableAnalysisSplitting: false,
+      reachDetailedAnalysisLogFile: false,
       reachDisableAnalytics: false,
       reachEcosystems: [],
+      reachEnableAnalysisSplitting: false,
       reachExcludePaths: [],
       reachLazyMode: false,
       reachSkipCache: false,
@@ -13318,8 +13334,10 @@ async function run$7(argv, importMeta, {
     reachAnalysisTimeout,
     reachConcurrency,
     reachDebug,
-    reachDisableAnalysisSplitting,
+    reachDetailedAnalysisLogFile,
+    reachDisableAnalysisSplitting: _reachDisableAnalysisSplitting,
     reachDisableAnalytics,
+    reachEnableAnalysisSplitting,
     reachLazyMode,
     reachSkipCache,
     reachUseOnlyPregeneratedSboms,
@@ -13417,9 +13435,10 @@ async function run$7(argv, importMeta, {
       reachAnalysisTimeout: Number(reachAnalysisTimeout),
       reachConcurrency: Number(reachConcurrency),
       reachDebug: Boolean(reachDebug),
-      reachDisableAnalysisSplitting: Boolean(reachDisableAnalysisSplitting),
+      reachDetailedAnalysisLogFile: Boolean(reachDetailedAnalysisLogFile),
       reachDisableAnalytics: Boolean(reachDisableAnalytics),
       reachEcosystems,
+      reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting),
       reachExcludePaths,
       reachLazyMode: Boolean(reachLazyMode),
       reachSkipCache: Boolean(reachSkipCache),
@@ -15336,5 +15355,5 @@ process.on('unhandledRejection', async (reason, promise) => {
   // eslint-disable-next-line n/no-process-exit
   process.exit(1);
 });
-//# debugId=a0ac0175-4e40-434b-ada6-1188cb4b4d1
+//# debugId=3f1876f7-94f9-4026-a706-9269d8e0d179
 //# sourceMappingURL=cli.js.map