@socketsecurity/cli 0.14.148 → 0.14.150

package/dist/shadow-npm-inject.js

@@ -2,9 +2,9 @@
 
 const shadowNpmPaths = require('./shadow-npm-paths.js')
 const process$1 = require('node:process')
-const vendor = require('./vendor.js')
 const logger = require('../external/@socketsecurity/registry/lib/logger')
 const constants = require('./constants.js')
+const vendor = require('./vendor.js')
 const arrays = require('../external/@socketsecurity/registry/lib/arrays')
 const packages = require('../external/@socketsecurity/registry/lib/packages')
 const registry = require('../external/@socketsecurity/registry')
@@ -332,7 +332,8 @@ const supportedConfigKeys = new Map([
   [
     'enforcedOrgs',
     'Orgs in this list have their security policies enforced on this machine'
-  ]
+  ],
+  ['isTestingV1', 'For development of testing the next major bump']
 ])
 const sensitiveConfigKeys = new Set(['apiToken'])
 let _cachedConfig
@@ -349,6 +350,9 @@ function overrideCachedConfig(jsonConfig) {
       throw new Error()
     }
   } catch {
+    // Force set an empty config to prevent accidentally using system settings
+    _cachedConfig = {}
+    _readOnlyConfig = true
     return {
       ok: false,
       message:
@@ -524,6 +528,9 @@ function updateConfigValue(key, value) {
     })
   }
 }
+function isTestingV1() {
+  return !!getConfigValue('isTestingV1')
+}
 
 const {
   kInternalsSymbol: kInternalsSymbol$1,
@@ -623,7 +630,7 @@ async function setupSdk(
       // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_NAME']".
       name: 'socket',
       // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-      version: '0.14.148',
+      version: '0.14.150',
       // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_HOMEPAGE']".
       homepage: 'https://github.com/SocketDev/socket-cli'
     })
@@ -2506,8 +2513,6 @@ class SafeArborist extends Arborist {
     )
     // Lazily access constants.ENV[SOCKET_CLI_ACCEPT_RISKS].
     const acceptRisks = constants.ENV[SOCKET_CLI_ACCEPT_RISKS]
-    // Lazily access constants.ENV[SOCKET_CLI_VIEW_ALL_RISKS].
-    const viewAllRisks = constants.ENV[SOCKET_CLI_VIEW_ALL_RISKS]
     const progress = ipc[SOCKET_CLI_SAFE_PROGRESS]
     const spinner =
       options['silent'] || !progress
@@ -2535,13 +2540,17 @@ class SafeArborist extends Arborist {
     })
     if (alertsMap.size) {
       process$1.exitCode = 1
+      // Lazily access constants.ENV[SOCKET_CLI_VIEW_ALL_RISKS].
+      const viewAllRisks = constants.ENV[SOCKET_CLI_VIEW_ALL_RISKS]
       logAlertsMap(alertsMap, {
         hideAt: viewAllRisks ? 'none' : 'middle',
         output: process$1.stderr
       })
-      throw new Error(vendor.html`
+      throw new Error(
+        `
           Socket ${binName} exiting due to risks.${viewAllRisks ? '' : `\nView all risks - Rerun with environment variable ${SOCKET_CLI_VIEW_ALL_RISKS}=1.`}${acceptRisks ? '' : `\nAccept risks - Rerun with environment variable ${SOCKET_CLI_ACCEPT_RISKS}=1.`}
-        `)
+        `.trim()
+      )
     } else if (!options['silent']) {
       logger.logger.success(
         `Socket ${binName} ${acceptRisks ? 'accepted' : 'found no'} risks`
@@ -2604,6 +2613,7 @@ exports.getSocketDevPackageOverviewUrl = getSocketDevPackageOverviewUrl
 exports.globWithGitIgnore = globWithGitIgnore
 exports.globWorkspace = globWorkspace
 exports.isReadOnlyConfig = isReadOnlyConfig
+exports.isTestingV1 = isTestingV1
 exports.overrideCachedConfig = overrideCachedConfig
 exports.overrideConfigApiToken = overrideConfigApiToken
 exports.pathsToGlobPatterns = pathsToGlobPatterns
@@ -2617,5 +2627,5 @@ exports.supportedConfigKeys = supportedConfigKeys
 exports.updateConfigValue = updateConfigValue
 exports.updateNode = updateNode
 exports.updatePackageJsonFromNode = updatePackageJsonFromNode
-//# debugId=f1c3f366-efc5-4887-9cf4-864da46a3e05
+//# debugId=56755885-2916-4fe9-96b2-af8a5873bf20
 //# sourceMappingURL=shadow-npm-inject.js.map