@socketsecurity/cli 0.14.33 → 0.14.34

package/dist/module-sync/constants.d.ts

@@ -1,21 +1,94 @@
-declare const SUPPORTS_SYNC_ESM: boolean;
-declare const API_V0_URL = "https://api.socket.dev/v0";
-declare const DIST_TYPE: string;
-declare const LOOP_SENTINEL = 1000000;
-declare const NPM_REGISTRY_URL = "https://registry.npmjs.org";
-declare const SOCKET_PUBLIC_API_KEY = "sktsec_t_--RAN5U4ivauy4w37-6aoKyYPDt5ZbaT5JBVMqiwKo_api";
-declare const SOCKET_CLI_ISSUES_URL = "https://github.com/SocketDev/socket-cli/issues";
-declare const UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE = "UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE";
 declare const ENV: Readonly<{
     UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE: boolean;
+    CI: boolean;
+    NODE_AUTH_TOKEN: string;
+    PRE_COMMIT: boolean;
 }>;
-declare const rootPath: string;
-declare const rootDistPath: string;
-declare const rootBinPath: string;
-declare const rootPkgJsonPath: string;
-declare const nmBinPath: string;
-declare const cdxgenBinPath: string;
-declare const distPath: string;
-declare const shadowBinPath: string;
-declare const synpBinPath: string;
-export { SUPPORTS_SYNC_ESM, API_V0_URL, DIST_TYPE, LOOP_SENTINEL, NPM_REGISTRY_URL, SOCKET_PUBLIC_API_KEY, SOCKET_CLI_ISSUES_URL, UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE, ENV, rootPath, rootDistPath, rootBinPath, rootPkgJsonPath, nmBinPath, cdxgenBinPath, distPath, shadowBinPath, synpBinPath };
+declare const constants: {
+    readonly API_V0_URL: 'https://api.socket.dev/v0';
+    readonly ENV: typeof ENV;
+    readonly DIST_TYPE: 'module-sync' | 'require';
+    readonly NPM_REGISTRY_URL: 'https://registry.npmjs.org';
+    readonly SOCKET_CLI_ISSUES_URL: 'https://github.com/SocketDev/socket-cli/issues';
+    readonly UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE: 'UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE';
+    readonly cdxgenBinPath: string;
+    readonly distPath: string;
+    readonly nmBinPath: string;
+    readonly rootBinPath: string;
+    readonly rootDistPath: string;
+    readonly rootPath: string;
+    readonly rootPkgJsonPath: string;
+    readonly shadowBinPath: string;
+    readonly synpBinPath: string;
+} & {
+    readonly 'Symbol(kInternalsSymbol)': Internals;
+    readonly COLUMN_LIMIT: 80;
+    readonly EMPTY_FILE: "/* empty */\n";
+    readonly ENV: ENV;
+    readonly ESLINT_CONFIG_JS: "eslint.config.js";
+    readonly ESNEXT: "esnext";
+    readonly GIT_IGNORE: ".gitignore";
+    readonly LATEST: "latest";
+    readonly LICENSE: "LICENSE";
+    readonly LICENSE_GLOB: "LICEN[CS]E{[.-]*,}";
+    readonly LICENSE_GLOB_RECURSIVE: "**/LICEN[CS]E{[.-]*,}";
+    readonly LICENSE_ORIGINAL: "LICENSE.original";
+    readonly LICENSE_ORIGINAL_GLOB: "*.original{.*,}";
+    readonly LICENSE_ORIGINAL_GLOB_RECURSIVE: "**/*.original{.*,}";
+    readonly LOOP_SENTINEL: 1000000;
+    readonly MANIFEST_JSON: "manifest.json";
+    readonly MIT: "MIT";
+    readonly NODE_MODULES: "node_modules";
+    readonly NODE_MODULES_GLOB_RECURSIVE: "**/node_modules";
+    readonly NODE_WORKSPACES: "node_workspaces";
+    readonly NODE_VERSION: string;
+    readonly NPM_ORG: "socketregistry";
+    readonly OVERRIDES: "overrides";
+    readonly PACKAGE_DEFAULT_SOCKET_CATEGORIES: readonly ["cleanup"];
+    readonly PACKAGE_DEFAULT_NODE_RANGE: string;
+    readonly PACKAGE_DEFAULT_VERSION: "1.0.0";
+    readonly PACKAGE_JSON: "package.json";
+    readonly PACKAGE_LOCK: "package-lock.json";
+    readonly PACKAGE_SCOPE: "@socketregistry";
+    readonly PRETTIER_IGNORE: ".prettierignore";
+    readonly PRETTIER_RC: ".prettierrc";
+    readonly README_GLOB: "README{.*,}";
+    readonly README_GLOB_RECURSIVE: "**/README{.*,}";
+    readonly README_MD: "README.md";
+    readonly REGISTRY_SCOPE_DELIMITER: "__";
+    readonly REGISTRY_WORKSPACE: "registry";
+    readonly SOCKET_PUBLIC_API_KEY: "sktsec_t_--RAN5U4ivauy4w37-6aoKyYPDt5ZbaT5JBVMqiwKo_api";
+    readonly SOCKET_REPO_ORG: "SocketDev";
+    readonly SOCKET_REGISTRY_REPO_NAME: "socket-registry";
+    readonly SUPPORTS_NODE_DISABLE_WARNING_FLAG: boolean;
+    readonly SUPPORTS_NODE_REQUIRE_MODULE: boolean;
+    readonly SUPPORTS_NODE_RUN: boolean;
+    readonly TEMPLATE_CJS: "cjs";
+    readonly TEMPLATE_CJS_BROWSER: "cjs-browser";
+    readonly TEMPLATE_CJS_ESM: "cjs-esm";
+    readonly TEMPLATE_ES_SHIM_CONSTRUCTOR: "es-shim-constructor";
+    readonly TEMPLATE_ES_SHIM_PROTOTYPE_METHOD: "es-shim-prototype-method";
+    readonly TEMPLATE_ES_SHIM_STATIC_METHOD: "es-shim-static-method";
+    readonly TSCONFIG_JSON: "tsconfig.json";
+    readonly UNLICENCED: "UNLICENCED";
+    readonly UNLICENSED: "UNLICENSED";
+    readonly WIN32: boolean;
+    readonly copyLeftLicenses: ReadonlySet<string>;
+    readonly execPath: string;
+    readonly ignoreGlobs: readonly string[];
+    readonly kInternalsSymbol: unique symbol;
+    readonly lifecycleScriptNames: ReadonlySet<string>;
+    readonly maintainedNodeVersions: MaintainedNodeVersions;
+    readonly nodeNoWarningsFlags: readonly string[];
+    readonly npmExecPath: string;
+    readonly packageExtensions: readonly [string, object][];
+    readonly packumentCache: Map<unknown, unknown>;
+    readonly pacoteCachePath: string;
+    readonly parseArgsConfig: ParseArgsConfig;
+    readonly skipTestsByEcosystem: Readonly<Record<string, ReadonlySet<string>>>;
+    readonly tsLibsAvailable: ReadonlySet<string>;
+    readonly tsTypesAvailable: ReadonlySet<string>;
+    readonly win32EnsureTestsByEcosystem: Readonly<Record<string, ReadonlySet<string>>>;
+    readonly [kInternalsSymbol]: Internals;
+};
+export { constants as default };

package/dist/module-sync/constants.js

@@ -1,80 +1,3 @@
-'use strict';
+'use strict'
 
-function _interop(e) {
-  let d
-  if (e) {
-    let c = 0
-    for (const k in e) {
-      d = c++ === 0 && k === 'default' ? e[k] : void 0
-      if (!d) break
-    }
-  }
-  return d ?? e
-}
-
-var require$$0 = _interop(require('node:fs'));
-var require$$1 = _interop(require('node:path'));
-var require$$2 = _interop(require('@socketsecurity/registry/lib/env'));
-var require$$3 = _interop(require('@socketsecurity/registry/lib/constants'));
-var require$$4 = _interop(require('semver'));
-
-var constants = {};
-
-Object.defineProperty(constants, "__esModule", {
-  value: true
-});
-constants.synpBinPath = constants.shadowBinPath = constants.rootPkgJsonPath = constants.rootPath = constants.rootDistPath = constants.rootBinPath = constants.nmBinPath = constants.distPath = constants.cdxgenBinPath = constants.UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE = constants.SUPPORTS_SYNC_ESM = constants.SOCKET_PUBLIC_API_KEY = constants.SOCKET_CLI_ISSUES_URL = constants.NPM_REGISTRY_URL = constants.LOOP_SENTINEL = constants.ENV = constants.DIST_TYPE = constants.API_V0_URL = void 0;
-var _nodeFs = require$$0;
-var _nodePath = require$$1;
-var _env = require$$2;
-var _constants = require$$3;
-var _semver = require$$4;
-const {
-  PACKAGE_JSON
-} = _constants;
-const SUPPORTS_SYNC_ESM = constants.SUPPORTS_SYNC_ESM = _semver.satisfies(process.versions.node, '>=22.12');
-constants.API_V0_URL = 'https://api.socket.dev/v0';
-const DIST_TYPE = constants.DIST_TYPE = SUPPORTS_SYNC_ESM ? 'module-sync' : 'require';
-constants.LOOP_SENTINEL = 1_000_000;
-constants.NPM_REGISTRY_URL = 'https://registry.npmjs.org';
-constants.SOCKET_PUBLIC_API_KEY = 'sktsec_t_--RAN5U4ivauy4w37-6aoKyYPDt5ZbaT5JBVMqiwKo_api';
-const SOCKET_CLI_ISSUES_URL = constants.SOCKET_CLI_ISSUES_URL = 'https://github.com/SocketDev/socket-cli/issues';
-const UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE = constants.UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE = 'UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE';
-constants.ENV = Object.freeze({
-  // Flag set by the optimize command to bypass the packagesHaveRiskyIssues check.
-  [UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE]: (0, _env.envAsBoolean)(process.env[UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE])
-});
-
-// Dynamically detect the rootPath so constants.ts can be used in tests.
-const rootPath = constants.rootPath = (() => {
-  let oldPath;
-  let currPath = (0, _nodeFs.realpathSync)(__dirname);
-  // Dirname stops when at the filepath root, e.g. '/' for posix and 'C:\\' for win32,
-  // so `currPath` equal `oldPath`.
-  while (currPath !== oldPath) {
-    const pkgJsonPath = _nodePath.join(currPath, PACKAGE_JSON);
-    if ((0, _nodeFs.existsSync)(pkgJsonPath)) {
-      try {
-        // Content matching @socketsecurity/cli is replaced by
-        // the @rollup/plugin-replace plugin used in .config/rollup.base.config.mjs
-        // with either 'socket' or '@socketsecurity/cli'.
-        if (require(pkgJsonPath)?.name === '@socketsecurity/cli') {
-          return currPath;
-        }
-      } catch {}
-    }
-    oldPath = currPath;
-    currPath = _nodePath.dirname(currPath);
-  }
-  throw new TypeError(`Socket CLI initialization error: rootPath cannot be resolved.\n\nPlease report to ${SOCKET_CLI_ISSUES_URL}.`);
-})();
-const rootDistPath = constants.rootDistPath = _nodePath.join(rootPath, 'dist');
-constants.rootBinPath = _nodePath.join(rootPath, 'bin');
-constants.rootPkgJsonPath = _nodePath.join(rootPath, PACKAGE_JSON);
-const nmBinPath = constants.nmBinPath = _nodePath.join(rootPath, 'node_modules/.bin');
-constants.cdxgenBinPath = _nodePath.join(nmBinPath, 'cdxgen');
-constants.distPath = _nodePath.join(rootDistPath, DIST_TYPE);
-constants.shadowBinPath = _nodePath.join(rootPath, 'shadow', DIST_TYPE);
-constants.synpBinPath = _nodePath.join(nmBinPath, 'synp');
-
-exports.constants = constants;
+module.exports = require('../constants.js')

package/dist/module-sync/link.js

@@ -1,20 +1,17 @@
 'use strict';
 
-function _interop(e) {
-  let d
-  if (e) {
-    let c = 0
-    for (const k in e) {
-      d = c++ === 0 && k === 'default' ? e[k] : void 0
-      if (!d) break
-    }
+function _socketInterop(e) {
+  let c = 0
+  for (const k in e ?? {}) {
+    c = c === 0 && k === 'default' ? 1 : 0
+    if (!c) break
   }
-  return d ?? e
+  return c ? e.default : e
 }
 
-var require$$0 = _interop(require('node:fs'));
-var require$$1 = _interop(require('node:path'));
-var require$$4 = _interop(require('which'));
+var require$$0 = require('node:fs');
+var require$$1 = require('node:path');
+var require$$4 = _socketInterop(require('which'));
 
 var link = {};
 

package/dist/module-sync/npm-cli.js

@@ -1,25 +1,22 @@
 #!/usr/bin/env node
 'use strict';
 
-function _interop(e) {
-  let d
-  if (e) {
-    let c = 0
-    for (const k in e) {
-      d = c++ === 0 && k === 'default' ? e[k] : void 0
-      if (!d) break
-    }
+function _socketInterop(e) {
+  let c = 0
+  for (const k in e ?? {}) {
+    c = c === 0 && k === 'default' ? 1 : 0
+    if (!c) break
   }
-  return d ?? e
+  return c ? e.default : e
 }
 
-var vendor = _interop(require('./vendor.js'));
-var require$$0 = _interop(require('node:fs'));
-var require$$1 = _interop(require('node:path'));
-var require$$1$1 = _interop(require('@npmcli/promise-spawn'));
-var constants = _interop(require('./constants.js'));
-var link = _interop(require('./link.js'));
-var pathResolve = _interop(require('./path-resolve.js'));
+var vendor = require('./vendor.js');
+var require$$0 = require('node:fs');
+var require$$1 = require('node:path');
+var require$$1$1 = _socketInterop(require('@npmcli/promise-spawn'));
+var constants = require('./constants.js');
+var link = require('./link.js');
+var pathResolve = require('./path-resolve.js');
 
 var npmCli$2 = {};
 
@@ -31,8 +28,13 @@ var _promiseSpawn = require$$1$1;
 var _constants = constants.constants;
 var _link = link.link;
 var _pathResolve = pathResolve.pathResolve;
-const npmPath = (0, _link.installLinks)(_constants.shadowBinPath, 'npm');
-const injectionPath = _nodePath.join(_constants.distPath, 'npm-injection.js');
+const {
+  distPath,
+  execPath,
+  shadowBinPath
+} = _constants;
+const npmPath = (0, _link.installLinks)(shadowBinPath, 'npm');
+const injectionPath = _nodePath.join(distPath, 'npm-injection.js');
 
 // Adding the `--quiet` and `--no-progress` flags when the `proc-log` module
 // is found to fix a UX issue when running the command with recent versions of
@@ -54,7 +56,9 @@ if (npmArgs.includes('install') && !npmArgs.includes('--no-progress') && !npmArg
   }
 }
 process.exitCode = 1;
-const spawnPromise = _promiseSpawn(process.execPath, ['--disable-warning', 'ExperimentalWarning', '--require', injectionPath, npmPath, ...npmArgs], {
+const spawnPromise = _promiseSpawn(execPath, [
+// Lazily access constants.nodeNoWarningsFlags.
+..._constants.nodeNoWarningsFlags, '--require', injectionPath, npmPath, ...npmArgs], {
   stdio: 'inherit'
 });
 spawnPromise.process.on('exit', (code, signal) => {