@socketsecurity/cli-with-sentry 1.1.7 → 1.1.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (35) hide show
  1. package/CHANGELOG.md +13 -0
  2. package/README.md +3 -3
  3. package/dist/cli.js +96 -51
  4. package/dist/cli.js.map +1 -1
  5. package/dist/constants.js +8 -5
  6. package/dist/constants.js.map +1 -1
  7. package/dist/shadow-npm-inject.js +6 -8
  8. package/dist/shadow-npm-inject.js.map +1 -1
  9. package/dist/tsconfig.dts.tsbuildinfo +1 -1
  10. package/dist/types/commands/fix/cmd-fix.d.mts.map +1 -1
  11. package/dist/types/commands/fix/handle-fix.d.mts +5 -0
  12. package/dist/types/commands/fix/handle-fix.d.mts.map +1 -1
  13. package/dist/types/commands/package/output-purls-shallow-score.d.mts.map +1 -1
  14. package/dist/types/commands/patch/handle-patch.d.mts.map +1 -1
  15. package/dist/types/constants.d.mts +3 -1
  16. package/dist/types/constants.d.mts.map +1 -1
  17. package/dist/types/shadow/npm/arborist-helpers.d.mts.map +1 -1
  18. package/dist/types/utils/api.d.mts +22 -1
  19. package/dist/types/utils/api.d.mts.map +1 -1
  20. package/dist/types/utils/cve-to-ghsa.d.mts +6 -0
  21. package/dist/types/utils/cve-to-ghsa.d.mts.map +1 -0
  22. package/dist/types/utils/github.d.mts.map +1 -1
  23. package/dist/types/utils/output-formatting.d.mts.map +1 -1
  24. package/dist/types/utils/purl-to-ghsa.d.mts +6 -0
  25. package/dist/types/utils/purl-to-ghsa.d.mts.map +1 -0
  26. package/dist/types/utils/requirements.d.mts +4 -0
  27. package/dist/types/utils/requirements.d.mts.map +1 -1
  28. package/dist/types/utils/semver.d.mts +1 -2
  29. package/dist/types/utils/semver.d.mts.map +1 -1
  30. package/dist/utils.js +248 -54
  31. package/dist/utils.js.map +1 -1
  32. package/dist/vendor.js +15 -18
  33. package/external/@socketsecurity/registry/lib/url.js +13 -12
  34. package/package.json +7 -7
  35. package/requirements.json +2 -2
package/dist/vendor.js CHANGED
@@ -27813,7 +27813,7 @@ var isInteractiveExports = /*@__PURE__*/ requireIsInteractive();
27813
27813
  var dist$e = {};
27814
27814
 
27815
27815
  var name$2 = "@socketsecurity/sdk";
27816
- var version$6 = "1.4.89";
27816
+ var version$6 = "1.4.92";
27817
27817
  var license = "MIT";
27818
27818
  var description = "SDK for the Socket API client";
27819
27819
  var author = {
@@ -27898,7 +27898,7 @@ var scripts = {
27898
27898
  "update:deps": "npx --yes npm-check-updates"
27899
27899
  };
27900
27900
  var dependencies = {
27901
- "@socketsecurity/registry": "1.1.7"
27901
+ "@socketsecurity/registry": "1.1.8"
27902
27902
  };
27903
27903
  var devDependencies = {
27904
27904
  "@biomejs/biome": "2.2.4",
@@ -28002,6 +28002,8 @@ function requireDist$e () {
28002
28002
  const objects_1 = require$$11;
28003
28003
  const promises_1 = require$$12;
28004
28004
  const url_1 = require$$13;
28005
+ // Import attributes are only supported when the '--module' option is set to
28006
+ // 'esnext', 'node18', 'node20', 'nodenext', or 'preserve'.
28005
28007
  // @ts-ignore: Avoid TS import attributes error.
28006
28008
  const package_json_1 = __importDefault(require$$14);
28007
28009
  const DEFAULT_USER_AGENT = createUserAgentFromPkgJson(package_json_1.default);
@@ -28208,12 +28210,7 @@ function requireDist$e () {
28208
28210
  // Send headers early to prompt server validation (auth, URL, quota, etc.).
28209
28211
  req.flushHeaders();
28210
28212
  // Concurrently wait for response while we stream body.
28211
- getResponse(req).then(pass, async (err) => {
28212
- if (err.response && !isResponseOk(err.response)) {
28213
- fail(new ResponseError(err.response, `${err.method} request failed`));
28214
- }
28215
- fail(err);
28216
- });
28213
+ getResponse(req).then(pass, fail);
28217
28214
  let aborted = false;
28218
28215
  req.on('error', () => (aborted = true));
28219
28216
  req.on('close', () => (aborted = true));
@@ -28309,9 +28306,9 @@ function requireDist$e () {
28309
28306
  response.on('error', onError);
28310
28307
  });
28311
28308
  }
28312
- function getHttpModule(baseUrl) {
28313
- const { protocol } = new URL(baseUrl);
28314
- return protocol === 'https:' ? node_https_1.default : node_http_1.default;
28309
+ function getHttpModule(url) {
28310
+ const urlObj = (0, url_1.parseUrl)(url);
28311
+ return urlObj?.protocol === 'http:' ? node_http_1.default : node_https_1.default;
28315
28312
  }
28316
28313
  async function getResponse(req) {
28317
28314
  const res = await new Promise((resolve, reject) => {
@@ -28532,7 +28529,7 @@ function requireDist$e () {
28532
28529
  });
28533
28530
  }
28534
28531
  const { statusCode } = error.response;
28535
- if (statusCode >= 500) {
28532
+ if (statusCode && statusCode >= 500) {
28536
28533
  throw new Error(`Socket API server error (${statusCode})`, {
28537
28534
  cause: error
28538
28535
  });
@@ -28554,8 +28551,8 @@ function requireDist$e () {
28554
28551
  }
28555
28552
  return {
28556
28553
  success: false,
28557
- status: statusCode,
28558
- error: error.message ?? '',
28554
+ status: statusCode ?? 0,
28555
+ error: error.message ?? 'Unknown error',
28559
28556
  cause: body
28560
28557
  };
28561
28558
  }
@@ -61041,7 +61038,7 @@ class Doc {
61041
61038
  const version$5 = {
61042
61039
  major: 4,
61043
61040
  minor: 1,
61044
- patch: 7
61041
+ patch: 8
61045
61042
  };
61046
61043
 
61047
61044
  const $ZodType = /*@__PURE__*/$constructor("$ZodType", (inst, def) => {
@@ -62278,7 +62275,7 @@ function handleRefineResult(result, payload, input, inst) {
62278
62275
 
62279
62276
  class $ZodRegistry {
62280
62277
  constructor() {
62281
- this._map = new Map();
62278
+ this._map = new WeakMap();
62282
62279
  this._idmap = new Map();
62283
62280
  }
62284
62281
  add(schema, ..._meta) {
@@ -62293,7 +62290,7 @@ class $ZodRegistry {
62293
62290
  return this;
62294
62291
  }
62295
62292
  clear() {
62296
- this._map = new Map();
62293
+ this._map = new WeakMap();
62297
62294
  this._idmap = new Map();
62298
62295
  return this;
62299
62296
  }
@@ -167040,5 +167037,5 @@ exports.terminalLinkExports = terminalLinkExports;
167040
167037
  exports.updater = updater$1;
167041
167038
  exports.yargsParser = yargsParser;
167042
167039
  exports.yoctocolorsCjsExports = yoctocolorsCjsExports;
167043
- //# debugId=7cdee0ff-2846-4c7d-86b3-4ddfdc8b899d
167040
+ //# debugId=b2711fc2-09ad-4f27-98a7-5a7529643c12
167044
167041
  //# sourceMappingURL=vendor.js.map
package/external/@socketsecurity/registry/lib/url.js CHANGED
@@ -1,23 +1,23 @@
1
1
  'use strict'
2
2
 
3
3
  const BooleanCtor = Boolean
4
+ const UrlCtor = URL
4
5
 
5
6
  /*@__NO_SIDE_EFFECTS__*/
6
7
  function isUrl(value) {
7
- const isStr = typeof value === 'string'
8
- if (isStr && value === '') {
9
- return false
10
- }
11
- const isObj = !isStr && value !== null && typeof value === 'object'
12
- if (!isStr && !isObj) {
13
- return false
14
- }
8
+ return (
9
+ ((typeof value === 'string' && value !== '') ||
10
+ (value !== null && typeof value === 'object')) &&
11
+ !!parseUrl(value)
12
+ )
13
+ }
14
+
15
+ /*@__NO_SIDE_EFFECTS__*/
16
+ function parseUrl(value) {
15
17
  try {
16
- // eslint-disable-next-line no-new
17
- new URL(value)
18
- return true
18
+ return new UrlCtor(value)
19
19
  } catch {}
20
- return false
20
+ return null
21
21
  }
22
22
 
23
23
  /*@__NO_SIDE_EFFECTS__*/
@@ -41,6 +41,7 @@ function urlSearchParamAsBoolean(value, defaultValue = false) {
41
41
 
42
42
  module.exports = {
43
43
  isUrl,
44
+ parseUrl,
44
45
  urlSearchParamAsArray,
45
46
  urlSearchParamAsBoolean
46
47
  }
package/package.json CHANGED
@@ -1,9 +1,9 @@
1
1
  {
2
2
  "name": "@socketsecurity/cli-with-sentry",
3
- "version": "1.1.7",
3
+ "version": "1.1.9",
4
4
  "description": "CLI for Socket.dev, includes Sentry error handling, otherwise identical to the regular `socket` package",
5
5
  "homepage": "https://github.com/SocketDev/socket-cli",
6
- "license": "MIT",
6
+ "license": "MIT AND OFL-1.1",
7
7
  "repository": {
8
8
  "type": "git",
9
9
  "url": "git+https://github.com/SocketDev/socket-cli.git"
@@ -41,7 +41,7 @@
41
41
  "coverage:test": "run-s test:prepare test:unit:coverage",
42
42
  "coverage:type": "dotenvx -q run -f .env.local -- type-coverage --detail",
43
43
  "clean": "run-p -c --aggregate-output clean:*",
44
- "clean:cache": "del-cli '.cache'",
44
+ "clean:cache": "del-cli '**/.cache'",
45
45
  "clean:dist": "del-cli 'dist'",
46
46
  "clean:dist:types": "del-cli 'dist/types'",
47
47
  "clean:external": "del-cli 'external'",
@@ -86,7 +86,7 @@
86
86
  "@babel/preset-typescript": "7.27.1",
87
87
  "@babel/runtime": "7.28.4",
88
88
  "@biomejs/biome": "2.2.4",
89
- "@coana-tech/cli": "14.12.25",
89
+ "@coana-tech/cli": "14.12.27",
90
90
  "@cyclonedx/cdxgen": "11.7.0",
91
91
  "@dotenvx/dotenvx": "1.49.0",
92
92
  "@eslint/compat": "1.3.2",
@@ -113,8 +113,8 @@
113
113
  "@socketregistry/is-interactive": "1.0.6",
114
114
  "@socketregistry/packageurl-js": "1.0.9",
115
115
  "@socketsecurity/config": "3.0.1",
116
- "@socketsecurity/registry": "1.1.7",
117
- "@socketsecurity/sdk": "1.4.89",
116
+ "@socketsecurity/registry": "1.1.8",
117
+ "@socketsecurity/sdk": "1.4.92",
118
118
  "@types/blessed": "0.1.25",
119
119
  "@types/cmd-shim": "5.0.2",
120
120
  "@types/js-yaml": "4.0.9",
@@ -178,7 +178,7 @@
178
178
  "yaml": "2.8.1",
179
179
  "yargs-parser": "22.0.0",
180
180
  "yoctocolors-cjs": "2.1.3",
181
- "zod": "4.1.7"
181
+ "zod": "4.1.8"
182
182
  },
183
183
  "overrides": {
184
184
  "@octokit/graphql": "$@octokit/graphql",
package/requirements.json CHANGED
@@ -9,8 +9,8 @@
9
9
  "permissions": ["audit-log:list"]
10
10
  },
11
11
  "fix": {
12
- "quota": 100,
13
- "permissions": ["packages:list"]
12
+ "quota": 101,
13
+ "permissions": ["full-scans:create", "packages:list"]
14
14
  },
15
15
  "login": {
16
16
  "quota": 1,