@socketsecurity/cli 0.14.85 → 0.14.87

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. package/dist/module-sync/cli.js +139 -97
  2. package/dist/module-sync/cli.js.map +1 -1
  3. package/dist/module-sync/shadow-npm-inject.js +14 -7
  4. package/dist/module-sync/shadow-npm-inject.js.map +1 -1
  5. package/dist/require/cli.js +139 -97
  6. package/dist/require/cli.js.map +1 -1
  7. package/package.json +1 -1
package/dist/require/cli.js CHANGED
@@ -912,7 +912,7 @@ function emitBanner(name) {
912
912
  logger.logger.error(getAsciiHeader(name))
913
913
  }
914
914
  function getAsciiHeader(command) {
915
- const cliVersion = '0.14.85:f285d45:b535f5e3:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
915
+ const cliVersion = '0.14.87:0330c30:ab4a8e5e:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
916
916
  const nodeVersion = process$1.version
917
917
  const apiToken = shadowNpmInject.getDefaultToken()
918
918
  const shownToken = apiToken ? getLastFiveOfApiToken(apiToken) : 'no'
@@ -3900,7 +3900,6 @@ async function npmFix(
3900
3900
  const editablePkgJson = await packages.readPackageJson(cwd, {
3901
3901
  editable: true
3902
3902
  })
3903
- const { content: pkgJson } = editablePkgJson
3904
3903
  await arb.buildIdealTree()
3905
3904
  for (const { 0: name, 1: infos } of infoByPkg) {
3906
3905
  const hasUpgrade = !!registry.getManifestData(NPM$f, name)
@@ -3942,36 +3941,40 @@ async function npmFix(
3942
3941
  continue
3943
3942
  }
3944
3943
  const oldSpec = `${name}@${oldVersion}`
3944
+ let targetVersion
3945
+ let failed = false
3946
+ let installed = false
3947
+ let saved = false
3945
3948
  if (
3946
3949
  shadowNpmInject.updateNode(node, packument, vulnerableVersionRange)
3947
3950
  ) {
3948
- const targetVersion = node.package.version
3951
+ targetVersion = node.package.version
3949
3952
  const fixSpec = `${name}@^${targetVersion}`
3950
3953
  const revertData = {
3951
- ...(pkgJson.dependencies
3954
+ ...(editablePkgJson.content.dependencies
3952
3955
  ? {
3953
- dependencies: pkgJson.dependencies
3956
+ dependencies: editablePkgJson.content.dependencies
3954
3957
  }
3955
3958
  : undefined),
3956
- ...(pkgJson.optionalDependencies
3959
+ ...(editablePkgJson.content.optionalDependencies
3957
3960
  ? {
3958
- optionalDependencies: pkgJson.optionalDependencies
3961
+ optionalDependencies:
3962
+ editablePkgJson.content.optionalDependencies
3959
3963
  }
3960
3964
  : undefined),
3961
- ...(pkgJson.peerDependencies
3965
+ ...(editablePkgJson.content.peerDependencies
3962
3966
  ? {
3963
- peerDependencies: pkgJson.peerDependencies
3967
+ peerDependencies: editablePkgJson.content.peerDependencies
3964
3968
  }
3965
3969
  : undefined)
3966
3970
  }
3967
3971
  spinner?.info(`Installing ${fixSpec}`)
3968
- let saved = false
3969
- let installed = false
3970
3972
  try {
3971
3973
  shadowNpmInject.updatePackageJsonFromNode(
3972
3974
  editablePkgJson,
3973
3975
  arb.idealTree,
3974
3976
  node,
3977
+ targetVersion,
3975
3978
  rangeStyle
3976
3979
  )
3977
3980
  // eslint-disable-next-line no-await-in-loop
@@ -3993,20 +3996,8 @@ async function npmFix(
3993
3996
  }
3994
3997
  spinner?.successAndStop(`Fixed ${name}`)
3995
3998
  spinner?.start()
3996
- // Lazily access constants.ENV[CI].
3997
- if (constants.ENV[CI$1]) {
3998
- // eslint-disable-next-line no-await-in-loop
3999
- const prResponse = await openGitHubPullRequest(
4000
- name,
4001
- targetVersion,
4002
- cwd
4003
- )
4004
- if (autoMerge) {
4005
- // eslint-disable-next-line no-await-in-loop
4006
- await enableAutoMerge(prResponse.data)
4007
- }
4008
- }
4009
3999
  } catch {
4000
+ failed = true
4010
4001
  spinner?.error(`Reverting ${fixSpec}`)
4011
4002
  if (saved) {
4012
4003
  editablePkgJson.update(revertData)
@@ -4022,8 +4013,35 @@ async function npmFix(
4022
4013
  spinner?.failAndStop(`Failed to fix ${oldSpec}`)
4023
4014
  }
4024
4015
  } else {
4016
+ failed = true
4025
4017
  spinner?.failAndStop(`Could not patch ${oldSpec}`)
4026
4018
  }
4019
+ if (
4020
+ !failed &&
4021
+ // Check targetVersion to make TypeScript happy.
4022
+ targetVersion &&
4023
+ // Lazily access constants.ENV[CI].
4024
+ constants.ENV[CI$1]
4025
+ ) {
4026
+ let prResponse
4027
+ try {
4028
+ // eslint-disable-next-line no-await-in-loop
4029
+ prResponse = await openGitHubPullRequest(name, targetVersion, cwd)
4030
+ } catch (e) {
4031
+ logger.logger.error('Failed to open pull request', e)
4032
+ }
4033
+ if (prResponse && autoMerge) {
4034
+ try {
4035
+ // eslint-disable-next-line no-await-in-loop
4036
+ await enableAutoMerge(prResponse.data)
4037
+ } catch (e) {
4038
+ logger.logger.error(
4039
+ 'Failed to enable auto-merge in pull request',
4040
+ e
4041
+ )
4042
+ }
4043
+ }
4044
+ }
4027
4045
  }
4028
4046
  }
4029
4047
  }
@@ -4207,7 +4225,7 @@ function runAgentInstall(pkgEnvDetails, options) {
4207
4225
  ...options
4208
4226
  }
4209
4227
  const skipNodeHardenFlags =
4210
- pkgEnvDetails.agent === PNPM$a && pkgEnvDetails.agentVersion.major < 11
4228
+ agent === PNPM$a && pkgEnvDetails.agentVersion.major < 11
4211
4229
  return spawn.spawn(agentExecPath, ['install', ...args], {
4212
4230
  spinner,
4213
4231
  stdio: 'inherit',
@@ -4228,8 +4246,15 @@ function runAgentInstall(pkgEnvDetails, options) {
4228
4246
  }
4229
4247
 
4230
4248
  const { CI, NPM: NPM$c, OVERRIDES: OVERRIDES$2, PNPM: PNPM$9 } = constants
4231
- async function install(pkgEnvDetails, arb, options) {
4232
- const { spinner } = {
4249
+ async function getActualTree(cwd = process.cwd()) {
4250
+ const arb = new shadowNpmInject.SafeArborist({
4251
+ path: cwd,
4252
+ ...shadowNpmInject.SAFE_ARBORIST_REIFY_OPTIONS_OVERRIDES
4253
+ })
4254
+ return await arb.loadActual()
4255
+ }
4256
+ async function install(pkgEnvDetails, options) {
4257
+ const { cwd, spinner } = {
4233
4258
  __proto__: null,
4234
4259
  ...options
4235
4260
  }
@@ -4238,8 +4263,7 @@ async function install(pkgEnvDetails, arb, options) {
4238
4263
  spinner,
4239
4264
  stdio: debug.isDebug() ? 'inherit' : 'ignore'
4240
4265
  })
4241
- arb.actualTree = null
4242
- await arb.loadActual()
4266
+ return await getActualTree(cwd)
4243
4267
  }
4244
4268
  async function pnpmFix(
4245
4269
  pkgEnvDetails,
@@ -4268,12 +4292,7 @@ async function pnpmFix(
4268
4292
  const editablePkgJson = await packages.readPackageJson(cwd, {
4269
4293
  editable: true
4270
4294
  })
4271
- const { content: pkgJson } = editablePkgJson
4272
- const arb = new shadowNpmInject.SafeArborist({
4273
- path: cwd,
4274
- ...shadowNpmInject.SAFE_ARBORIST_REIFY_OPTIONS_OVERRIDES
4275
- })
4276
- await arb.loadActual()
4295
+ let actualTree = await getActualTree(cwd)
4277
4296
  for (const { 0: name, 1: infos } of infoByPkg) {
4278
4297
  if (registry.getManifestData(NPM$c, name)) {
4279
4298
  spinner?.info(`Skipping ${name}. Socket Optimize package exists.`)
@@ -4281,7 +4300,7 @@ async function pnpmFix(
4281
4300
  }
4282
4301
  const specs = arrays.arrayUnique(
4283
4302
  shadowNpmInject
4284
- .findPackageNodes(arb.actualTree, name)
4303
+ .findPackageNodes(actualTree, name)
4285
4304
  .map(n => `${n.name}@${n.version}`)
4286
4305
  )
4287
4306
  const packument =
@@ -4301,7 +4320,7 @@ async function pnpmFix(
4301
4320
  vulnerableVersionRange
4302
4321
  } of infos) {
4303
4322
  const node = shadowNpmInject.findPackageNode(
4304
- arb.actualTree,
4323
+ actualTree,
4305
4324
  name,
4306
4325
  oldVersion
4307
4326
  )
@@ -4318,15 +4337,22 @@ async function pnpmFix(
4318
4337
  const targetPackument = targetVersion
4319
4338
  ? packument.versions[targetVersion]
4320
4339
  : undefined
4340
+ let failed = false
4341
+ let installed = false
4342
+ let saved = false
4321
4343
  if (targetVersion && targetPackument) {
4322
- const oldPnpm = pkgJson[PNPM$9]
4323
- const pnpmKeyCount = oldPnpm ? Object.keys(oldPnpm).length : 0
4344
+ const oldPnpm = editablePkgJson.content[PNPM$9]
4345
+ const oldPnpmKeyCount = oldPnpm ? Object.keys(oldPnpm).length : 0
4324
4346
  const oldOverrides = oldPnpm?.[OVERRIDES$2]
4325
- const overridesCount = oldOverrides
4347
+ const oldOverridesCount = oldOverrides
4326
4348
  ? Object.keys(oldOverrides).length
4327
4349
  : 0
4328
4350
  const overrideKey = `${node.name}@${vulnerableVersionRange}`
4329
- const overrideRange = `^${targetVersion}`
4351
+ const overrideRange = shadowNpmInject.applyRange(
4352
+ oldOverrides?.[overrideKey] ?? targetVersion,
4353
+ targetVersion,
4354
+ rangeStyle
4355
+ )
4330
4356
  const fixSpec = `${name}@${overrideRange}`
4331
4357
  const updateData = {
4332
4358
  [PNPM$9]: {
@@ -4338,11 +4364,11 @@ async function pnpmFix(
4338
4364
  }
4339
4365
  }
4340
4366
  const revertData = {
4341
- [PNPM$9]: pnpmKeyCount
4367
+ [PNPM$9]: oldPnpmKeyCount
4342
4368
  ? {
4343
4369
  ...oldPnpm,
4344
4370
  [OVERRIDES$2]:
4345
- overridesCount === 1
4371
+ oldOverridesCount === 1
4346
4372
  ? undefined
4347
4373
  : {
4348
4374
  [overrideKey]: undefined,
@@ -4350,31 +4376,31 @@ async function pnpmFix(
4350
4376
  }
4351
4377
  }
4352
4378
  : undefined,
4353
- ...(pkgJson.dependencies
4379
+ ...(editablePkgJson.content.dependencies
4354
4380
  ? {
4355
- dependencies: pkgJson.dependencies
4381
+ dependencies: editablePkgJson.content.dependencies
4356
4382
  }
4357
4383
  : undefined),
4358
- ...(pkgJson.optionalDependencies
4384
+ ...(editablePkgJson.content.optionalDependencies
4359
4385
  ? {
4360
- optionalDependencies: pkgJson.optionalDependencies
4386
+ optionalDependencies:
4387
+ editablePkgJson.content.optionalDependencies
4361
4388
  }
4362
4389
  : undefined),
4363
- ...(pkgJson.peerDependencies
4390
+ ...(editablePkgJson.content.peerDependencies
4364
4391
  ? {
4365
- peerDependencies: pkgJson.peerDependencies
4392
+ peerDependencies: editablePkgJson.content.peerDependencies
4366
4393
  }
4367
4394
  : undefined)
4368
4395
  }
4369
4396
  spinner?.info(`Installing ${fixSpec}`)
4370
- let saved = false
4371
- let installed = false
4372
4397
  try {
4373
4398
  editablePkgJson.update(updateData)
4374
4399
  shadowNpmInject.updatePackageJsonFromNode(
4375
4400
  editablePkgJson,
4376
- arb.actualTree,
4401
+ actualTree,
4377
4402
  node,
4403
+ targetVersion,
4378
4404
  rangeStyle
4379
4405
  )
4380
4406
  // eslint-disable-next-line no-await-in-loop
@@ -4382,7 +4408,7 @@ async function pnpmFix(
4382
4408
  saved = true
4383
4409
 
4384
4410
  // eslint-disable-next-line no-await-in-loop
4385
- await install(pkgEnvDetails, arb, {
4411
+ actualTree = await install(pkgEnvDetails, {
4386
4412
  spinner
4387
4413
  })
4388
4414
  installed = true
@@ -4396,21 +4422,8 @@ async function pnpmFix(
4396
4422
  }
4397
4423
  spinner?.successAndStop(`Fixed ${name}`)
4398
4424
  spinner?.start()
4399
-
4400
- // Lazily access constants.ENV[CI].
4401
- if (constants.ENV[CI]) {
4402
- // eslint-disable-next-line no-await-in-loop
4403
- const prResponse = await openGitHubPullRequest(
4404
- name,
4405
- targetVersion,
4406
- cwd
4407
- )
4408
- if (autoMerge) {
4409
- // eslint-disable-next-line no-await-in-loop
4410
- await enableAutoMerge(prResponse.data)
4411
- }
4412
- }
4413
4425
  } catch (e) {
4426
+ failed = true
4414
4427
  spinner?.error(`Reverting ${fixSpec}`, e)
4415
4428
  if (saved) {
4416
4429
  editablePkgJson.update(revertData)
@@ -4419,15 +4432,42 @@ async function pnpmFix(
4419
4432
  }
4420
4433
  if (installed) {
4421
4434
  // eslint-disable-next-line no-await-in-loop
4422
- await install(pkgEnvDetails, arb, {
4435
+ actualTree = await install(pkgEnvDetails, {
4423
4436
  spinner
4424
4437
  })
4425
4438
  }
4426
4439
  spinner?.failAndStop(`Failed to fix ${oldSpec}`)
4427
4440
  }
4428
4441
  } else {
4442
+ failed = true
4429
4443
  spinner?.failAndStop(`Could not patch ${oldSpec}`)
4430
4444
  }
4445
+ if (
4446
+ !failed &&
4447
+ // Check targetVersion to make TypeScript happy.
4448
+ targetVersion &&
4449
+ // Lazily access constants.ENV[CI].
4450
+ constants.ENV[CI]
4451
+ ) {
4452
+ let prResponse
4453
+ try {
4454
+ // eslint-disable-next-line no-await-in-loop
4455
+ prResponse = await openGitHubPullRequest(name, targetVersion, cwd)
4456
+ } catch (e) {
4457
+ logger.logger.error('Failed to open pull request', e)
4458
+ }
4459
+ if (prResponse && autoMerge) {
4460
+ try {
4461
+ // eslint-disable-next-line no-await-in-loop
4462
+ await enableAutoMerge(prResponse.data)
4463
+ } catch (e) {
4464
+ logger.logger.error(
4465
+ 'Failed to enable auto-merge in pull request',
4466
+ e
4467
+ )
4468
+ }
4469
+ }
4470
+ }
4431
4471
  }
4432
4472
  }
4433
4473
  }
@@ -6361,13 +6401,13 @@ const depsIncludesByAgent = new Map([
6361
6401
  [YARN_CLASSIC$5, matchLsCmdViewHumanStdout]
6362
6402
  ])
6363
6403
 
6364
- function getDependencyEntries(pkgJson) {
6404
+ function getDependencyEntries(editablePkgJson) {
6365
6405
  const {
6366
6406
  dependencies,
6367
6407
  devDependencies,
6368
6408
  optionalDependencies,
6369
6409
  peerDependencies
6370
- } = pkgJson
6410
+ } = editablePkgJson.content
6371
6411
  return [
6372
6412
  [
6373
6413
  'dependencies',
@@ -6418,8 +6458,8 @@ const {
6418
6458
  YARN_BERRY: YARN_BERRY$3,
6419
6459
  YARN_CLASSIC: YARN_CLASSIC$4
6420
6460
  } = constants
6421
- function getOverridesDataBun(pkgJson) {
6422
- const overrides = pkgJson?.[RESOLUTIONS$1] ?? {}
6461
+ function getOverridesDataBun(editablePkgJson) {
6462
+ const overrides = editablePkgJson.content?.[RESOLUTIONS$1] ?? {}
6423
6463
  return {
6424
6464
  type: YARN_BERRY$3,
6425
6465
  overrides
@@ -6428,8 +6468,8 @@ function getOverridesDataBun(pkgJson) {
6428
6468
 
6429
6469
  // npm overrides documentation:
6430
6470
  // https://docs.npmjs.com/cli/v10/configuring-npm/package-json#overrides
6431
- function getOverridesDataNpm(pkgJson) {
6432
- const overrides = pkgJson?.[OVERRIDES$1] ?? {}
6471
+ function getOverridesDataNpm(editablePkgJson) {
6472
+ const overrides = editablePkgJson.content?.[OVERRIDES$1] ?? {}
6433
6473
  return {
6434
6474
  type: NPM$5,
6435
6475
  overrides
@@ -6438,15 +6478,15 @@ function getOverridesDataNpm(pkgJson) {
6438
6478
 
6439
6479
  // pnpm overrides documentation:
6440
6480
  // https://pnpm.io/package_json#pnpmoverrides
6441
- function getOverridesDataPnpm(pkgJson) {
6442
- const overrides = pkgJson?.pnpm?.[OVERRIDES$1] ?? {}
6481
+ function getOverridesDataPnpm(editablePkgJson) {
6482
+ const overrides = editablePkgJson.content?.[PNPM$5]?.[OVERRIDES$1] ?? {}
6443
6483
  return {
6444
6484
  type: PNPM$5,
6445
6485
  overrides
6446
6486
  }
6447
6487
  }
6448
- function getOverridesDataVlt(pkgJson) {
6449
- const overrides = pkgJson?.[OVERRIDES$1] ?? {}
6488
+ function getOverridesDataVlt(editablePkgJson) {
6489
+ const overrides = editablePkgJson.content?.[OVERRIDES$1] ?? {}
6450
6490
  return {
6451
6491
  type: VLT$3,
6452
6492
  overrides
@@ -6455,8 +6495,8 @@ function getOverridesDataVlt(pkgJson) {
6455
6495
 
6456
6496
  // Yarn resolutions documentation:
6457
6497
  // https://yarnpkg.com/configuration/manifest#resolutions
6458
- function getOverridesDataYarn(pkgJson) {
6459
- const overrides = pkgJson?.[RESOLUTIONS$1] ?? {}
6498
+ function getOverridesDataYarn(editablePkgJson) {
6499
+ const overrides = editablePkgJson.content?.[RESOLUTIONS$1] ?? {}
6460
6500
  return {
6461
6501
  type: YARN_BERRY$3,
6462
6502
  overrides
@@ -6465,8 +6505,8 @@ function getOverridesDataYarn(pkgJson) {
6465
6505
 
6466
6506
  // Yarn resolutions documentation:
6467
6507
  // https://classic.yarnpkg.com/en/docs/selective-version-resolutions
6468
- function getOverridesDataClassic(pkgJson) {
6469
- const overrides = pkgJson?.[RESOLUTIONS$1] ?? {}
6508
+ function getOverridesDataYarnClassic(editablePkgJson) {
6509
+ const overrides = editablePkgJson.content?.[RESOLUTIONS$1] ?? {}
6470
6510
  return {
6471
6511
  type: YARN_CLASSIC$4,
6472
6512
  overrides
@@ -6478,12 +6518,12 @@ const overridesDataByAgent = new Map([
6478
6518
  [PNPM$5, getOverridesDataPnpm],
6479
6519
  [VLT$3, getOverridesDataVlt],
6480
6520
  [YARN_BERRY$3, getOverridesDataYarn],
6481
- [YARN_CLASSIC$4, getOverridesDataClassic]
6521
+ [YARN_CLASSIC$4, getOverridesDataYarnClassic]
6482
6522
  ])
6483
6523
 
6484
6524
  const { PNPM: PNPM$4 } = constants
6485
6525
  const PNPM_WORKSPACE = `${PNPM$4}-workspace`
6486
- async function getWorkspaceGlobs(agent, pkgPath, pkgJson) {
6526
+ async function getWorkspaceGlobs(agent, pkgPath, editablePkgJson) {
6487
6527
  let workspacePatterns
6488
6528
  if (agent === PNPM$4) {
6489
6529
  for (const workspacePath of [
@@ -6502,7 +6542,7 @@ async function getWorkspaceGlobs(agent, pkgPath, pkgJson) {
6502
6542
  }
6503
6543
  }
6504
6544
  } else {
6505
- workspacePatterns = pkgJson['workspaces']
6545
+ workspacePatterns = editablePkgJson.content['workspaces']
6506
6546
  }
6507
6547
  return Array.isArray(workspacePatterns)
6508
6548
  ? workspacePatterns
@@ -6775,8 +6815,7 @@ function getHighestEntryIndex(entries, keys) {
6775
6815
  return getEntryIndexes(entries, keys).at(-1) ?? -1
6776
6816
  }
6777
6817
  function updatePkgJsonField(editablePkgJson, field, value) {
6778
- const { content: pkgJson } = editablePkgJson
6779
- const oldValue = pkgJson[field]
6818
+ const oldValue = editablePkgJson.content[field]
6780
6819
  if (oldValue) {
6781
6820
  // The field already exists so we simply update the field value.
6782
6821
  if (field === PNPM$1) {
@@ -6827,7 +6866,7 @@ function updatePkgJsonField(editablePkgJson, field, value) {
6827
6866
  // Since the field doesn't exist we want to insert it into the package.json
6828
6867
  // in a place that makes sense, e.g. close to the "dependencies" field. If
6829
6868
  // we can't find a place to insert the field we'll add it to the bottom.
6830
- const entries = Object.entries(pkgJson)
6869
+ const entries = Object.entries(editablePkgJson.content)
6831
6870
  let insertIndex = -1
6832
6871
  let isPlacingHigher = false
6833
6872
  if (field === OVERRIDES) {
@@ -6926,9 +6965,12 @@ async function addOverrides(pkgPath, pkgEnvDetails, options) {
6926
6965
  editable: true
6927
6966
  })
6928
6967
  }
6929
- const { content: pkgJson } = editablePkgJson
6930
6968
  const workspaceName = path$1.relative(rootPath, pkgPath)
6931
- const workspaceGlobs = await getWorkspaceGlobs(agent, pkgPath, pkgJson)
6969
+ const workspaceGlobs = await getWorkspaceGlobs(
6970
+ agent,
6971
+ pkgPath,
6972
+ editablePkgJson
6973
+ )
6932
6974
  const isRoot = pkgPath === rootPath
6933
6975
  const isLockScanned = isRoot && !prod
6934
6976
  const isWorkspace = !!workspaceGlobs
@@ -6948,19 +6990,19 @@ async function addOverrides(pkgPath, pkgEnvDetails, options) {
6948
6990
  )
6949
6991
  }
6950
6992
  const overridesDataObjects = []
6951
- if (pkgJson['private'] || isWorkspace) {
6952
- overridesDataObjects.push(overridesDataByAgent.get(agent)(pkgJson))
6993
+ if (editablePkgJson.content['private'] || isWorkspace) {
6994
+ overridesDataObjects.push(overridesDataByAgent.get(agent)(editablePkgJson))
6953
6995
  } else {
6954
6996
  overridesDataObjects.push(
6955
- overridesDataByAgent.get(NPM$1)(pkgJson),
6956
- overridesDataByAgent.get(YARN_CLASSIC)(pkgJson)
6997
+ overridesDataByAgent.get(NPM$1)(editablePkgJson),
6998
+ overridesDataByAgent.get(YARN_CLASSIC)(editablePkgJson)
6957
6999
  )
6958
7000
  }
6959
7001
  spinner?.setText(
6960
7002
  `Adding overrides${workspaceName ? ` to ${workspaceName}` : ''}...`
6961
7003
  )
6962
7004
  const depAliasMap = new Map()
6963
- const depEntries = getDependencyEntries(pkgJson)
7005
+ const depEntries = getDependencyEntries(editablePkgJson)
6964
7006
  const manifestEntries = manifestNpmOverrides.filter(({ 1: data }) =>
6965
7007
  semver.satisfies(
6966
7008
  // Roughly check Node range as semver.coerce will strip leading
@@ -11303,7 +11345,7 @@ void (async () => {
11303
11345
  await vendor.updater({
11304
11346
  name: SOCKET_CLI_BIN_NAME,
11305
11347
  // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
11306
- version: '0.14.85',
11348
+ version: '0.14.87',
11307
11349
  ttl: 86_400_000 /* 24 hours in milliseconds */
11308
11350
  })
11309
11351
  try {
@@ -11371,5 +11413,5 @@ void (async () => {
11371
11413
  await shadowNpmInject.captureException(e)
11372
11414
  }
11373
11415
  })()
11374
- //# debugId=1e430ef2-95c3-4150-868c-284dc60ae3f4
11416
+ //# debugId=edc81af1-3c95-4c28-8036-f282cefb6b5d
11375
11417
  //# sourceMappingURL=cli.js.map