npm - @socketsecurity/cli - Versions diffs - 0.7.1 → 0.7.2 - Mend

@socketsecurity/cli 0.7.1 → 0.7.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md +3 -2
package/lib/commands/report/create.js +3 -5
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -26,9 +26,10 @@ socket report view QXU8PmK7LfH608RAwfIKdbcHgwEd_ZeWJ9QEGv05FJUQ
 * `socket report create <path(s)-to-folder-or-file>` - creates a report on [socket.dev](https://socket.dev/)
-  Uploads the specified `package.json` and lock files and, if any folder is specified, the ones found in there. Also includes the complementary `package.json` and lock file to any specified. Currently `package-lock.json` and `yarn.lock` are supported.
+  Uploads the specified `package.json` and lock files for JavaScript and Python dependency manifests.
+  If any folder is specified, the ones found in there recursively are uploaded.
-  Supports globbing such as `**/package.json`.
+  Supports globbing such as `**/package.json`, `**/requirements.txt`, and `**/pyproject.toml`.
   Ignores any file specified in your project's `.gitignore`, the `projectIgnorePaths` in your project's [`socket.yml`](https://docs.socket.dev/docs/socket-yml) and on top of that has a sensible set of [default ignores](https://www.npmjs.com/package/ignore-by-default)

package/lib/commands/report/create.js CHANGED Viewed

@@ -107,12 +107,10 @@ async function setupCommand (name, description, argv, importMeta) {
     Usage
       $ ${name} <paths-to-package-folders-and-files>
-    Uploads the specified "package.json" and lock files and, if any folder is
-    specified, the ones found in there. Also includes the complementary
-    "package.json" and lock file to any specified. Currently "package-lock.json"
-    and "yarn.lock" are supported.
+    Uploads the specified "package.json" and lock files for JavaScript and Python dependency manifests.
+    If any folder is specified, the ones found in there recursively are uploaded.
-    Supports globbing such as "**/package.json".
+    Supports globbing such as "**/package.json", "**/requirements.txt", and "**/pyproject.toml".
     Ignores any file specified in your project's ".gitignore", your project's
     "socket.yml" file's "projectIgnorePaths" and also has a sensible set of

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/cli",
-  "version": "0.7.1",
+  "version": "0.7.2",
   "description": "CLI tool for Socket.dev",
   "homepage": "http://github.com/SocketDev/socket-cli-js",
   "repository": {