@socketsecurity/cli 0.14.33 → 0.14.35

package/dist/require/npm-injection.js

@@ -1,308 +1,47 @@
 'use strict';
 
-function _interop(e) {
-  let d
-  if (e) {
-    let c = 0
-    for (const k in e) {
-      d = c++ === 0 && k === 'default' ? e[k] : void 0
-      if (!d) break
-    }
+function _socketInterop(e) {
+  let c = 0
+  for (const k in e ?? {}) {
+    c = c === 0 && k === 'default' ? 1 : 0
+    if (!c && k !== '__esModule') break
   }
-  return d ?? e
+  return c ? e.default : e
 }
 
-var vendor = _interop(require('./vendor.js'));
-var constants = _interop(require('./constants.js'));
-var require$$1$4 = _interop(require('node:events'));
-var require$$0 = _interop(require('node:fs'));
-var require$$3$2 = _interop(require('node:https'));
-var require$$1$1 = _interop(require('node:path'));
-var require$$3 = _interop(require('node:readline'));
-var require$$6$2 = _interop(require('node:timers/promises'));
-var require$$1$3 = _interop(require('@inquirer/confirm'));
-var require$$3$1 = _interop(require('@socketregistry/yocto-spinner'));
-var require$$5$1 = _interop(require('npm-package-arg'));
-var require$$4 = _interop(require('semver'));
-var require$$6$1 = _interop(require('@socketsecurity/config'));
-var require$$7 = _interop(require('@socketsecurity/registry/lib/objects'));
-var require$$1$2 = _interop(require('node:net'));
-var require$$1 = _interop(require('node:os'));
-var require$$5 = _interop(require('node:stream'));
-var sdk = _interop(require('./sdk.js'));
-var pathResolve = _interop(require('./path-resolve.js'));
-var link = _interop(require('./link.js'));
-
-var npmInjection$2 = {};
-
-var npmInjection$1 = {};
+var events = require('node:events');
+var fs = require('node:fs');
+var https = require('node:https');
+var path = require('node:path');
+var readline = require('node:readline');
+var promises = require('node:timers/promises');
+var prompts = require('@socketsecurity/registry/lib/prompts');
+var yoctoSpinner = require('@socketregistry/yocto-spinner');
+var vendor = require('./vendor.js');
+var npa = _socketInterop(require('npm-package-arg'));
+var semver = _socketInterop(require('semver'));
+var config = require('@socketsecurity/config');
+var objects = require('@socketsecurity/registry/lib/objects');
+var packages = require('@socketsecurity/registry/lib/packages');
+var net = require('node:net');
+var os = require('node:os');
+var node_stream = require('node:stream');
+var sdk = require('./sdk.js');
+var constants = require('./constants.js');
+var pathResolve = require('./path-resolve.js');
 
-var arborist = {};
-
-var ttyServer$1 = {};
-
-var name = "@socketsecurity/cli";
-var version = "0.14.33";
-var description = "CLI tool for Socket.dev";
-var homepage = "http://github.com/SocketDev/socket-cli";
-var license = "MIT";
-var repository = {
-	type: "git",
-	url: "git+https://github.com/SocketDev/socket-cli.git"
-};
-var author = {
-	name: "Socket Inc",
-	email: "eng@socket.dev",
-	url: "https://socket.dev"
-};
-var bin = {
-	cli: "./bin/cli.js",
-	socket: "./bin/cli.js",
-	"socket-npm": "./bin/npm-cli.js",
-	"socket-npx": "./bin/npx-cli.js"
-};
-var exports$1 = {
-	"./bin/cli.js": {
-		"module-sync": {
-			types: "./dist/module-sync/cli.d.ts",
-			"default": "./dist/module-sync/cli.js"
-		},
-		require: {
-			types: "./dist/require/cli.d.ts",
-			"default": "./dist/require/cli.js"
-		}
-	},
-	"./bin/npm-cli.js": {
-		"module-sync": {
-			types: "./dist/module-sync/npm-cli.d.ts",
-			"default": "./dist/module-sync/npm-cli.js"
-		},
-		require: {
-			types: "./dist/require/npm-cli.d.ts",
-			"default": "./dist/require/npm-cli.js"
-		}
-	},
-	"./bin/npx-cli.js": {
-		"module-sync": {
-			types: "./dist/module-sync/npx-cli.d.ts",
-			"default": "./dist/module-sync/npx-cli.js"
-		},
-		require: {
-			types: "./dist/require/npx-cli.d.ts",
-			"default": "./dist/require/npx-cli.js"
-		}
-	},
-	"./package.json": "./package.json",
-	"./translations.json": "./translations.json"
-};
-var scripts = {
-	build: "run-s build:*",
-	"build:dist": "rollup -c .config/rollup.dist.config.mjs",
-	"build:test": "rollup -c .config/rollup.test.config.mjs",
-	check: "run-p -c --aggregate-output check:*",
-	"check:lint": "eslint --report-unused-disable-directives .",
-	"check:tsc": "tsc",
-	"check:type-coverage": "type-coverage --detail --strict --at-least 95 --ignore-files 'test/*'",
-	"knip:dependencies": "knip --dependencies",
-	"knip:exports": "knip --include exports,duplicates",
-	lint: "oxlint -c=./.oxlintrc.json --ignore-path=./.prettierignore --tsconfig=./tsconfig.json .",
-	"lint:fix": "npm run lint -- --fix && npm run lint:fix:fast",
-	"lint:fix:fast": "prettier --cache --log-level warn --write .",
-	prepare: "husky && custompatch",
-	test: "run-s check build:* test:*",
-	"test:c8": "c8 --reporter=none node --test 'test/socket-npm.test.cjs'",
-	"test-ci": "run-s build:* test:*",
-	"test:unit": "tap-run",
-	"test:coverage": "cp -r .tap/coverage/*.json coverage/tmp && c8 --reporter=lcov --reporter=text --include 'dist/{module-sync,require}/*.js' --exclude 'dist/require/vendor.js' report"
-};
-var dependencies = {
-	"@apideck/better-ajv-errors": "^0.3.6",
-	"@cyclonedx/cdxgen": "^11.0.5",
-	"@inquirer/confirm": "^5.0.2",
-	"@inquirer/password": "^4.0.3",
-	"@inquirer/select": "^4.0.3",
-	"@npmcli/promise-spawn": "^8.0.2",
-	"@socketregistry/hyrious__bun.lockb": "1.0.5",
-	"@socketregistry/yocto-spinner": "^1.0.1",
-	"@socketsecurity/config": "^2.1.3",
-	"@socketsecurity/registry": "^1.0.35",
-	"@socketsecurity/sdk": "^1.3.0",
-	blessed: "^0.1.81",
-	"blessed-contrib": "^4.11.0",
-	browserslist: "4.24.2",
-	"chalk-table": "^1.0.2",
-	"has-flag": "^4.0.0",
-	hpagent: "^1.2.0",
-	ignore: "^6.0.2",
-	micromatch: "^4.0.8",
-	"npm-package-arg": "^12.0.0",
-	"pony-cause": "^2.1.11",
-	semver: "^7.6.3",
-	synp: "^1.9.14",
-	tinyglobby: "^0.2.10",
-	which: "^5.0.0",
-	yaml: "^2.6.1",
-	"yargs-parser": "^21.1.1",
-	"yoctocolors-cjs": "^2.1.2"
-};
-var devDependencies = {
-	"@babel/core": "^7.26.0",
-	"@babel/plugin-proposal-export-default-from": "^7.25.9",
-	"@babel/plugin-syntax-dynamic-import": "^7.8.3",
-	"@babel/plugin-transform-export-namespace-from": "^7.25.9",
-	"@babel/plugin-transform-modules-commonjs": "^7.26.3",
-	"@babel/plugin-transform-runtime": "^7.25.9",
-	"@babel/preset-env": "^7.26.0",
-	"@babel/preset-typescript": "^7.26.0",
-	"@babel/runtime": "^7.26.0",
-	"@eslint/compat": "^1.2.4",
-	"@eslint/js": "^9.16.0",
-	"@rollup/plugin-commonjs": "^28.0.1",
-	"@rollup/plugin-json": "^6.1.0",
-	"@rollup/plugin-node-resolve": "^15.3.0",
-	"@rollup/plugin-replace": "^6.0.1",
-	"@rollup/pluginutils": "^5.1.3",
-	"@tapjs/run": "^4.0.1",
-	"@types/blessed": "^0.1.25",
-	"@types/micromatch": "^4.0.9",
-	"@types/mocha": "^10.0.10",
-	"@types/mock-fs": "^4.13.4",
-	"@types/node": "^22.10.1",
-	"@types/npmcli__arborist": "^5.6.11",
-	"@types/npmcli__promise-spawn": "^6.0.3",
-	"@types/proc-log": "^3.0.4",
-	"@types/semver": "^7.5.8",
-	"@types/update-notifier": "^6.0.8",
-	"@types/which": "^3.0.4",
-	"@types/yargs-parser": "^21.0.3",
-	"@typescript-eslint/eslint-plugin": "^8.17.0",
-	"@typescript-eslint/parser": "^8.17.0",
-	c8: "^10.1.2",
-	custompatch: "^1.0.28",
-	eslint: "^9.16.0",
-	"eslint-import-resolver-oxc": "^0.6.0",
-	"eslint-plugin-depend": "^0.12.0",
-	"eslint-plugin-import-x": "^4.5.0",
-	"eslint-plugin-n": "^17.14.0",
-	"eslint-plugin-sort-destructure-keys": "^2.0.0",
-	"eslint-plugin-unicorn": "^56.0.1",
-	husky: "^9.1.7",
-	"is-interactive": "^2.0.0",
-	"is-unicode-supported": "^2.1.0",
-	knip: "^5.39.2",
-	"magic-string": "^0.30.14",
-	meow: "^13.2.0",
-	"mock-fs": "^5.4.1",
-	nock: "^13.5.6",
-	"npm-run-all2": "^7.0.1",
-	open: "^10.1.0",
-	oxlint: "0.14.1",
-	prettier: "3.4.2",
-	"read-package-up": "^11.0.0",
-	rollup: "4.28.1",
-	"rollup-plugin-ts": "^3.4.5",
-	"terminal-link": "^3.0.0",
-	"tiny-updater": "^3.5.2",
-	"type-coverage": "^2.29.7",
-	typescript: "5.4.5",
-	"typescript-eslint": "^8.17.0",
-	"unplugin-purge-polyfills": "^0.0.7"
-};
-var overrides = {
-	"aggregate-error": "npm:@socketregistry/aggregate-error@^1",
-	"es-define-property": "npm:@socketregistry/es-define-property@^1",
-	"function-bind": "npm:@socketregistry/function-bind@^1",
-	globalthis: "npm:@socketregistry/globalthis@^1",
-	gopd: "npm:@socketregistry/gopd@^1",
-	"has-property-descriptors": "npm:@socketregistry/has-property-descriptors@^1",
-	"has-proto": "npm:@socketregistry/has-proto@^1",
-	"has-symbols": "npm:@socketregistry/has-symbols@^1",
-	hasown: "npm:@socketregistry/hasown@^1",
-	"indent-string": "npm:@socketregistry/indent-string@^1",
-	"is-core-module": "npm:@socketregistry/is-core-module@^1",
-	isarray: "npm:@socketregistry/isarray@^1",
-	"npm-package-arg": "$npm-package-arg",
-	"packageurl-js": "npm:@socketregistry/packageurl-js@^1",
-	"path-parse": "npm:@socketregistry/path-parse@^1",
-	"safe-buffer": "npm:@socketregistry/safe-buffer@^1",
-	"safer-buffer": "npm:@socketregistry/safer-buffer@^1",
-	semver: "$semver",
-	"set-function-length": "npm:@socketregistry/set-function-length@^1",
-	"side-channel": "npm:@socketregistry/side-channel@^1",
-	yaml: "$yaml"
-};
-var resolutions = {
-	"aggregate-error": "npm:@socketregistry/aggregate-error@^1",
-	"es-define-property": "npm:@socketregistry/es-define-property@^1",
-	"function-bind": "npm:@socketregistry/function-bind@^1",
-	globalthis: "npm:@socketregistry/globalthis@^1",
-	gopd: "npm:@socketregistry/gopd@^1",
-	"has-property-descriptors": "npm:@socketregistry/has-property-descriptors@^1",
-	"has-proto": "npm:@socketregistry/has-proto@^1",
-	"has-symbols": "npm:@socketregistry/has-symbols@^1",
-	hasown: "npm:@socketregistry/hasown@^1",
-	"indent-string": "npm:@socketregistry/indent-string@^1",
-	"is-core-module": "npm:@socketregistry/is-core-module@^1",
-	isarray: "npm:@socketregistry/isarray@^1",
-	"npm-package-arg": "^12.0.0",
-	"packageurl-js": "npm:@socketregistry/packageurl-js@^1",
-	"path-parse": "npm:@socketregistry/path-parse@^1",
-	"safe-buffer": "npm:@socketregistry/safe-buffer@^1",
-	"safer-buffer": "npm:@socketregistry/safer-buffer@^1",
-	semver: "^7.6.3",
-	"set-function-length": "npm:@socketregistry/set-function-length@^1",
-	"side-channel": "npm:@socketregistry/side-channel@^1",
-	yaml: "^2.6.0"
-};
-var engines = {
-	node: "^18.20.4 || ^20.9.0 || >=22.0.0"
-};
-var files = [
-	"bin/**",
-	"dist/**",
-	"translations.json"
-];
-var require$$6 = {
-	name: name,
-	version: version,
-	description: description,
-	homepage: homepage,
-	license: license,
-	repository: repository,
-	author: author,
-	bin: bin,
-	exports: exports$1,
-	scripts: scripts,
-	dependencies: dependencies,
-	devDependencies: devDependencies,
-	overrides: overrides,
-	resolutions: resolutions,
-	engines: engines,
-	files: files
-};
+var version = "0.14.35";
 
-Object.defineProperty(ttyServer$1, "__esModule", {
-  value: true
-});
-ttyServer$1.createTTYServer = createTTYServer;
-var _nodeFs$1 = require$$0;
-var _nodeNet = require$$1$2;
-var _nodeOs = require$$1;
-var _nodePath$1 = require$$1$1;
-var _nodeReadline$1 = require$$3;
-var _nodeStream = require$$5;
-var _package = require$$6;
-var _misc$1 = sdk.misc;
 const NEWLINE_CHAR_CODE = 10; /*'\n'*/
 
 const TTY_IPC = process.env['SOCKET_SECURITY_TTY_IPC'];
-const sock = _nodePath$1.join(_nodeOs.tmpdir(), `socket-security-tty-${process.pid}.sock`);
+const sock = path.join(os.tmpdir(), `socket-security-tty-${process.pid}.sock`);
 process.env['SOCKET_SECURITY_TTY_IPC'] = sock;
 function createNonStandardTTYServer() {
   return {
     async captureTTY(mutexFn) {
       return await new Promise((resolve, reject) => {
-        const conn = _nodeNet.createConnection({
+        const conn = net.createConnection({
           path: TTY_IPC
         }).on('error', reject);
         let captured = false;
@@ -322,26 +61,26 @@ function createNonStandardTTYServer() {
                   output: hasOutput
                 },
                 ipc_version: remote_ipc_version
-              } = JSON.parse(lineBuff.subarray(0, eolIndex).toString('utf-8'));
+              } = JSON.parse(lineBuff.subarray(0, eolIndex).toString('utf8'));
               lineBuff = null;
               captured = true;
-              if (remote_ipc_version !== _package.version) {
+              if (remote_ipc_version !== version) {
                 throw new Error('Mismatched STDIO tunnel IPC version, ensure you only have 1 version of socket CLI being called.');
               }
-              const input = hasInput ? new _nodeStream.PassThrough() : null;
+              const input = hasInput ? new node_stream.PassThrough() : null;
               input?.pause();
               if (input) conn.pipe(input);
-              const output = hasOutput ? new _nodeStream.PassThrough() : null;
+              const output = hasOutput ? new node_stream.PassThrough() : null;
               if (output) {
                 output.pipe(conn)
                 // Make ora happy
                 ;
                 output.isTTY = true;
                 output.cursorTo = function cursorTo(x, y, callback) {
-                  _nodeReadline$1.cursorTo(this, x, y, callback);
+                  readline.cursorTo(this, x, y, callback);
                 };
                 output.clearLine = function clearLine(dir, callback) {
-                  _nodeReadline$1.clearLine(this, dir, callback);
+                  readline.clearLine(this, dir, callback);
                 };
               }
               mutexFn(hasInput ? input : undefined, hasOutput ? output : undefined).then(resolve, reject).finally(() => {
@@ -364,7 +103,7 @@ function createIPCServer(captureState, npmlog) {
   const input = process.stdin;
   const output = process.stderr;
   return new Promise((resolve, reject) => {
-    const server = _nodeNet
+    const server = net
     // eslint-disable-next-line @typescript-eslint/no-misused-promises
     .createServer(async conn => {
       if (captureState.captured) {
@@ -384,7 +123,7 @@ function createIPCServer(captureState, npmlog) {
         npmlog.disableProgress();
       }
       conn.write(`${JSON.stringify({
-        ipc_version: _package.version,
+        ipc_version: version,
         capabilities: {
           input: Boolean(input),
           output: true
@@ -469,9 +208,9 @@ function createStandardTTYServer(isInteractive, npmlog) {
 }
 function tryUnlinkSync(filepath) {
   try {
-    (0, _nodeFs$1.unlinkSync)(filepath);
+    fs.unlinkSync(filepath);
   } catch (e) {
-    if ((0, _misc$1.isErrnoException)(e) && e.code !== 'ENOENT') {
+    if (sdk.isErrnoException(e) && e.code !== 'ENOENT') {
       throw e;
     }
   }
@@ -480,12 +219,6 @@ function createTTYServer(isInteractive, npmlog) {
   return !isInteractive && TTY_IPC ? createNonStandardTTYServer() : createStandardTTYServer(isInteractive, npmlog);
 }
 
-var issueRules = {};
-
-Object.defineProperty(issueRules, "__esModule", {
-  value: true
-});
-issueRules.createAlertUXLookup = createAlertUXLookup;
 //#region UX Constants
 
 const IGNORE_UX = {
@@ -508,7 +241,7 @@ const ERROR_UX = {
  * all issue rules and finds the first defined value that does not defer otherwise
  * uses the defaultValue. Takes the value and converts into a UX workflow
  */
-function resolveIssueRuleUX(entriesOrderedIssueRules, defaultValue) {
+function resolveAlertRuleUX(orderedRulesCollection, defaultValue) {
   if (defaultValue === true || defaultValue == null) {
     defaultValue = {
       action: 'error'
@@ -521,9 +254,9 @@ function resolveIssueRuleUX(entriesOrderedIssueRules, defaultValue) {
   let block = false;
   let display = false;
   let needDefault = true;
-  iterate_entries: for (const issueRuleArr of entriesOrderedIssueRules) {
-    for (const rule of issueRuleArr) {
-      if (issueRuleValueDoesNotDefer(rule)) {
+  iterate_entries: for (const rules of orderedRulesCollection) {
+    for (const rule of rules) {
+      if (ruleValueDoesNotDefer(rule)) {
         needDefault = false;
         const narrowingFilter = uxForDefinedNonDeferValue(rule);
         block = block || narrowingFilter.block;
@@ -549,13 +282,13 @@ function resolveIssueRuleUX(entriesOrderedIssueRules, defaultValue) {
 /**
  * Negative form because it is narrowing the type
  */
-function issueRuleValueDoesNotDefer(issueRule) {
-  if (issueRule === undefined) {
+function ruleValueDoesNotDefer(rule) {
+  if (rule === undefined) {
     return false;
-  } else if (issueRule !== null && typeof issueRule === 'object') {
+  } else if (rule !== null && typeof rule === 'object') {
     const {
       action
-    } = issueRule;
+    } = rule;
     if (action === undefined || action === 'defer') {
       return false;
     }
@@ -566,13 +299,13 @@ function issueRuleValueDoesNotDefer(issueRule) {
 /**
  * Handles booleans for backwards compatibility
  */
-function uxForDefinedNonDeferValue(issueRuleValue) {
-  if (typeof issueRuleValue === 'boolean') {
-    return issueRuleValue ? ERROR_UX : IGNORE_UX;
+function uxForDefinedNonDeferValue(ruleValue) {
+  if (typeof ruleValue === 'boolean') {
+    return ruleValue ? ERROR_UX : IGNORE_UX;
   }
   const {
     action
-  } = issueRuleValue;
+  } = ruleValue;
   if (action === 'warn') {
     return WARN_UX;
   } else if (action === 'ignore') {
@@ -594,9 +327,9 @@ function createAlertUXLookup(settings) {
     if (ux) {
       return ux;
     }
-    const entriesOrderedIssueRules = [];
+    const orderedRulesCollection = [];
     for (const settingsEntry of settings.entries) {
-      const orderedIssueRules = [];
+      const orderedRules = [];
       let target = settingsEntry.start;
       while (target !== null) {
         const resolvedTarget = settingsEntry.settings[target];
@@ -605,11 +338,11 @@ function createAlertUXLookup(settings) {
         }
         const issueRuleValue = resolvedTarget.issueRules?.[type];
         if (typeof issueRuleValue !== 'undefined') {
-          orderedIssueRules.push(issueRuleValue);
+          orderedRules.push(issueRuleValue);
         }
         target = resolvedTarget.deferTo ?? null;
       }
-      entriesOrderedIssueRules.push(orderedIssueRules);
+      orderedRulesCollection.push(orderedRules);
     }
     const defaultValue = settings.defaults.issueRules[type];
     let resolvedDefaultValue = {
@@ -624,42 +357,27 @@ function createAlertUXLookup(settings) {
         action: defaultValue.action ?? 'error'
       };
     }
-    ux = resolveIssueRuleUX(entriesOrderedIssueRules, resolvedDefaultValue);
+    ux = resolveAlertRuleUX(orderedRulesCollection, resolvedDefaultValue);
     cachedUX.set(type, ux);
     return ux;
   };
 }
+//#endregion
 
-var _interopRequireDefault = vendor.interopRequireDefault.default;
-Object.defineProperty(arborist, "__esModule", {
-  value: true
-});
-arborist.SafeArborist = void 0;
-arborist.installSafeArborist = installSafeArborist;
-var _nodeEvents = require$$1$4;
-var _nodeFs = require$$0;
-var _nodeHttps = require$$3$2;
-var _nodePath = require$$1$1;
-var _nodeReadline = require$$3;
-var _promises = require$$6$2;
-var _confirm = require$$1$3;
-var _yoctoSpinner = require$$3$1;
-var _isInteractive = _interopRequireDefault(vendor.isInteractive);
-var _npmPackageArg = require$$5$1;
-var _semver = require$$4;
-var _config = require$$6$1;
-var _objects = require$$7;
-var _ttyServer = ttyServer$1;
-var _constants$1 = constants.constants;
-var _colorOrMarkdown = sdk.colorOrMarkdown;
-var _issueRules = issueRules;
-var _misc = sdk.misc;
-var _pathResolve = pathResolve.pathResolve;
-var _sdk = sdk.sdk;
-var _settings = sdk.settings;
-const POTENTIAL_BUG_ERROR_MESSAGE = `This is may be a bug with socket-npm related to changes to the npm CLI.\nPlease report to ${_constants$1.SOCKET_CLI_ISSUES_URL}.`;
-const npmEntrypoint = (0, _nodeFs.realpathSync)(process.argv[1]);
-const npmRootPath = (0, _pathResolve.findRoot)(_nodePath.dirname(npmEntrypoint));
+const {
+  API_V0_URL,
+  ENV,
+  LOOP_SENTINEL,
+  NPM_REGISTRY_URL,
+  SOCKET_CLI_ISSUES_URL,
+  SOCKET_PUBLIC_API_KEY,
+  UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE,
+  abortSignal,
+  rootPath
+} = constants;
+const POTENTIAL_BUG_ERROR_MESSAGE = `This is may be a bug with socket-npm related to changes to the npm CLI.\nPlease report to ${SOCKET_CLI_ISSUES_URL}.`;
+const npmEntrypoint = fs.realpathSync(process.argv[1]);
+const npmRootPath = pathResolve.findRoot(path.dirname(npmEntrypoint));
 function tryRequire(...ids) {
   for (const data of ids) {
     let id;
@@ -684,32 +402,32 @@ function tryRequire(...ids) {
 }
 if (npmRootPath === undefined) {
   console.error(`Unable to find npm CLI install directory.\nSearched parent directories of ${npmEntrypoint}.\n\n${POTENTIAL_BUG_ERROR_MESSAGE}`);
+  // The exit code 127 indicates that the command or binary being executed
+  // could not be found.
   process.exit(127);
 }
-const npmNmPath = _nodePath.join(npmRootPath, 'node_modules');
-const arboristPkgPath = _nodePath.join(npmNmPath, '@npmcli/arborist');
-const arboristClassPath = _nodePath.join(arboristPkgPath, 'lib/arborist/index.js');
-const arboristDepValidPath = _nodePath.join(arboristPkgPath, 'lib/dep-valid.js');
-const arboristEdgeClassPath = _nodePath.join(arboristPkgPath, 'lib/edge.js');
-const arboristNodeClassPath = _nodePath.join(arboristPkgPath, 'lib/node.js');
-const arboristOverrideSetClassPatch = _nodePath.join(arboristPkgPath, 'lib/override-set.js');
-const log = tryRequire([_nodePath.join(npmNmPath, 'proc-log/lib/index.js'),
+const npmNmPath = path.join(npmRootPath, 'node_modules');
+const arboristPkgPath = path.join(npmNmPath, '@npmcli/arborist');
+const arboristClassPath = path.join(arboristPkgPath, 'lib/arborist/index.js');
+const arboristDepValidPath = path.join(arboristPkgPath, 'lib/dep-valid.js');
+const arboristEdgeClassPath = path.join(arboristPkgPath, 'lib/edge.js');
+const arboristNodeClassPath = path.join(arboristPkgPath, 'lib/node.js');
+const arboristOverrideSetClassPatch = path.join(arboristPkgPath, 'lib/override-set.js');
+const log = tryRequire([path.join(npmNmPath, 'proc-log/lib/index.js'),
 // The proc-log DefinitelyTyped definition is incorrect. The type definition
 // is really that of its export log.
-mod => mod.log], _nodePath.join(npmNmPath, 'npmlog/lib/log.js'));
+mod => mod.log], path.join(npmNmPath, 'npmlog/lib/log.js'));
 if (log === undefined) {
   console.error(`Unable to integrate with npm CLI logging infrastructure.\n\n${POTENTIAL_BUG_ERROR_MESSAGE}.`);
+  // The exit code 127 indicates that the command or binary being executed
+  // could not be found.
   process.exit(127);
 }
-const pacote = tryRequire(_nodePath.join(npmNmPath, 'pacote'), 'pacote');
+const pacote = tryRequire(path.join(npmNmPath, 'pacote'), 'pacote');
 const {
   tarball
 } = pacote;
-const translations = require(_nodePath.join(_constants$1.rootPath, 'translations.json'));
-const abortController = new AbortController();
-const {
-  signal: abortSignal
-} = abortController;
+const translations = require(path.join(rootPath, 'translations.json'));
 const Arborist = require(arboristClassPath);
 const depValid = require(arboristDepValidPath);
 const Edge = require(arboristEdgeClassPath);
@@ -717,23 +435,23 @@ const Node = require(arboristNodeClassPath);
 const OverrideSet = require(arboristOverrideSetClassPatch);
 const kCtorArgs = Symbol('ctorArgs');
 const kRiskyReify = Symbol('riskyReify');
-const formatter = new _colorOrMarkdown.ColorOrMarkdown(false);
-const pubToken = (0, _sdk.getDefaultKey)() ?? _constants$1.SOCKET_PUBLIC_API_KEY;
-const ttyServer = (0, _ttyServer.createTTYServer)((0, _isInteractive.default)({
+const formatter = new sdk.ColorOrMarkdown(false);
+const pubToken = sdk.getDefaultKey() ?? SOCKET_PUBLIC_API_KEY;
+const ttyServer = createTTYServer(vendor.isInteractive({
   stream: process.stdin
 }), log);
 let _uxLookup;
 async function uxLookup(settings) {
   while (_uxLookup === undefined) {
     // eslint-disable-next-line no-await-in-loop
-    await (0, _promises.setTimeout)(1, {
+    await promises.setTimeout(1, {
       signal: abortSignal
     });
   }
   return _uxLookup(settings);
 }
 async function* batchScan(pkgIds) {
-  const req = _nodeHttps.request(`${_constants$1.API_V0_URL}/purl?alerts=true`, {
+  const req = https.request(`${API_V0_URL}/purl?alerts=true`, {
     method: 'POST',
     headers: {
       Authorization: `Basic ${Buffer.from(`${pubToken}:`).toString('base64url')}`
@@ -746,12 +464,12 @@ async function* batchScan(pkgIds) {
   }));
   const {
     0: res
-  } = await _nodeEvents.once(req, 'response');
+  } = await events.once(req, 'response');
   const ok = res.statusCode >= 200 && res.statusCode <= 299;
   if (!ok) {
     throw new Error(`Socket API Error: ${res.statusCode}`);
   }
-  const rli = _nodeReadline.createInterface(res);
+  const rli = readline.createInterface(res);
   for await (const line of rli) {
     yield JSON.parse(line);
   }
@@ -769,24 +487,24 @@ function findSocketYmlSync() {
   let prevDir = null;
   let dir = process.cwd();
   while (dir !== prevDir) {
-    let ymlPath = _nodePath.join(dir, 'socket.yml');
+    let ymlPath = path.join(dir, 'socket.yml');
     let yml = maybeReadfileSync(ymlPath);
     if (yml === undefined) {
-      ymlPath = _nodePath.join(dir, 'socket.yaml');
+      ymlPath = path.join(dir, 'socket.yaml');
       yml = maybeReadfileSync(ymlPath);
     }
     if (typeof yml === 'string') {
       try {
         return {
           path: ymlPath,
-          parsed: _config.parseSocketConfig(yml)
+          parsed: config.parseSocketConfig(yml)
         };
       } catch {
         throw new Error(`Found file but was unable to parse ${ymlPath}`);
       }
     }
     prevDir = dir;
-    dir = _nodePath.join(dir, '..');
+    dir = path.join(dir, '..');
   }
   return null;
 }
@@ -823,12 +541,12 @@ function isAlertFixable(alert) {
 }
 function maybeReadfileSync(filepath) {
   try {
-    return (0, _nodeFs.readFileSync)(filepath, 'utf8');
+    return fs.readFileSync(filepath, 'utf8');
   } catch {}
   return undefined;
 }
 async function getPackagesAlerts(safeArb, _registry, pkgs, output) {
-  const spinner = _yoctoSpinner({
+  const spinner = yoctoSpinner({
     stream: output
   });
   let {
@@ -849,7 +567,7 @@ async function getPackagesAlerts(safeArb, _registry, pkgs, output) {
       const {
         version
       } = artifact;
-      const name = `${artifact.namespace ? `${artifact.namespace}/` : ''}${artifact.name}`;
+      const name = packages.resolvePackageName(artifact);
       const id = `${name}@${artifact.version}`;
       let blocked = false;
       let displayWarning = false;
@@ -947,7 +665,7 @@ function walk(diff_, needInfoOn = []) {
     length: queueLength
   } = queue;
   while (pos < queueLength) {
-    if (pos === _constants$1.LOOP_SENTINEL) {
+    if (pos === LOOP_SENTINEL) {
       throw new Error('Detected infinite loop while walking Arborist diff');
     }
     const diff = queue[pos++];
@@ -1286,12 +1004,12 @@ class SafeNode extends Node {
     // is based on https://github.com/npm/cli/pull/7025.
     //
     // If we prefer dedupe, or if the version is equal, take the other.
-    if (preferDedupe || _semver.eq(other.version, this.version)) {
+    if (preferDedupe || semver.eq(other.version, this.version)) {
       return true;
     }
     // If our current version isn't the result of an override, then prefer to
     // take the greater version.
-    if (!this.overridden && _semver.gt(other.version, this.version)) {
+    if (!this.overridden && semver.gt(other.version, this.version)) {
       return true;
     }
     return false;
@@ -1527,7 +1245,7 @@ class SafeOverrideSet extends OverrideSet {
       length: queueLength
     } = queue;
     while (pos < queueLength) {
-      if (pos === _constants$1.LOOP_SENTINEL) {
+      if (pos === LOOP_SENTINEL) {
         throw new Error('Detected infinite loop while comparing override sets');
       }
       const {
@@ -1572,18 +1290,18 @@ class SafeOverrideSet extends OverrideSet {
       //
       // We need to use the rawSpec here, because the spec has the overrides
       // applied to it already.
-      let spec = _npmPackageArg(`${edge.name}@${edge.rawSpec}`);
+      let spec = npa(`${edge.name}@${edge.rawSpec}`);
       if (spec.type === 'alias') {
         spec = spec.subSpec;
       }
       if (spec.type === 'git') {
-        if (spec.gitRange && rule.keySpec && _semver.intersects(spec.gitRange, rule.keySpec)) {
+        if (spec.gitRange && rule.keySpec && semver.intersects(spec.gitRange, rule.keySpec)) {
           return rule;
         }
         continue;
       }
       if (spec.type === 'range' || spec.type === 'version') {
-        if (rule.keySpec && _semver.intersects(spec.fetchSpec, rule.keySpec)) {
+        if (rule.keySpec && semver.intersects(spec.fetchSpec, rule.keySpec)) {
           return rule;
         }
         continue;
@@ -1669,10 +1387,10 @@ class SafeArborist extends Arborist {
     options['save'] = old.save;
     options['saveBundle'] = old.saveBundle;
     // Nothing to check, mmm already installed or all private?
-    if (diff.findIndex(c => c.repository_url === _constants$1.NPM_REGISTRY_URL) === -1) {
+    if (diff.findIndex(c => c.repository_url === NPM_REGISTRY_URL) === -1) {
       return await this[kRiskyReify](...args);
     }
-    let proceed = _constants$1.ENV[_constants$1.UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE];
+    let proceed = ENV[UPDATE_SOCKET_OVERRIDES_IN_PACKAGE_LOCK_FILE];
     if (!proceed) {
       proceed = await ttyServer.captureTTY(async (input, output) => {
         if (input && output) {
@@ -1680,7 +1398,7 @@ class SafeArborist extends Arborist {
           if (!alerts.length) {
             return true;
           }
-          return await _confirm({
+          return await prompts.confirm({
             message: 'Accept risks of installing these packages?',
             default: false
           }, {
@@ -1701,7 +1419,6 @@ class SafeArborist extends Arborist {
     }
   }
 }
-arborist.SafeArborist = SafeArborist;
 function installSafeArborist() {
   const cache = require.cache;
   cache[arboristClassPath] = {
@@ -1720,7 +1437,7 @@ function installSafeArborist() {
 void (async () => {
   const remoteSettings = await (async () => {
     try {
-      const socketSdk = await (0, _sdk.setupSdk)(pubToken);
+      const socketSdk = await sdk.setupSdk(pubToken);
       const orgResult = await socketSdk.getOrganizations();
       if (!orgResult.success) {
         throw new Error(`Failed to fetch Socket organization info: ${orgResult.error.message}`);
@@ -1742,11 +1459,11 @@ void (async () => {
         settings: result.data
       };
     } catch (e) {
-      if ((0, _objects.isObject)(e) && 'cause' in e) {
+      if (objects.isObject(e) && 'cause' in e) {
         const {
           cause
         } = e;
-        if ((0, _misc.isErrnoException)(cause)) {
+        if (sdk.isErrnoException(cause)) {
           if (cause.code === 'ENOTFOUND' || cause.code === 'ECONNREFUSED') {
             throw new Error('Unable to connect to socket.dev, ensure internet connectivity before retrying', {
               cause: e
@@ -1761,7 +1478,7 @@ void (async () => {
     orgs,
     settings
   } = remoteSettings;
-  const enforcedOrgs = (0, _settings.getSetting)('enforcedOrgs') ?? [];
+  const enforcedOrgs = sdk.getSetting('enforcedOrgs') ?? [];
 
   // Remove any organizations not being enforced.
   for (const {
@@ -1789,43 +1506,7 @@ void (async () => {
       }
     });
   }
-  _uxLookup = (0, _issueRules.createAlertUXLookup)(settings);
+  _uxLookup = createAlertUXLookup(settings);
 })();
 
-var _constants = constants.constants;
-var _arborist = arborist;
-var _link = link.link;
-// Shadow `npm` and `npx` to mitigate subshells.
-(0, _link.installLinks)(_constants.shadowBinPath, 'npm');
-(0, _arborist.installSafeArborist)();
-
-(function (exports) {
-
-	var _interopRequireWildcard = vendor.interopRequireWildcard.default;
-	Object.defineProperty(exports, "__esModule", {
-	  value: true
-	});
-	var _exportNames = {};
-	Object.defineProperty(exports, "default", {
-	  enumerable: true,
-	  get: function () {
-	    return _npmInjection.default;
-	  }
-	});
-	var _npmInjection = _interopRequireWildcard(npmInjection$1, true);
-	Object.keys(_npmInjection).forEach(function (key) {
-	  if (key === "default" || key === "__esModule") return;
-	  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
-	  if (key in exports && exports[key] === _npmInjection[key]) return;
-	  Object.defineProperty(exports, key, {
-	    enumerable: true,
-	    get: function () {
-	      return _npmInjection[key];
-	    }
-	  });
-	}); 
-} (npmInjection$2));
-
-var npmInjection = /*@__PURE__*/vendor.getDefaultExportFromCjs(npmInjection$2);
-
-module.exports = npmInjection;
+installSafeArborist();