@socketsecurity/cli 1.1.28 → 1.1.29
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +5 -0
- package/dist/cli.js +26 -3
- package/dist/cli.js.map +1 -1
- package/dist/constants.js +3 -3
- package/dist/constants.js.map +1 -1
- package/dist/tsconfig.dts.tsbuildinfo +1 -1
- package/dist/types/commands/ci/handle-ci.d.mts.map +1 -1
- package/dist/types/commands/scan/cmd-scan-create.d.mts.map +1 -1
- package/dist/types/commands/scan/cmd-scan-reach.d.mts.map +1 -1
- package/dist/types/commands/scan/perform-reachability-analysis.d.mts +2 -0
- package/dist/types/commands/scan/perform-reachability-analysis.d.mts.map +1 -1
- package/dist/types/commands/scan/reachability-flags.d.mts.map +1 -1
- package/dist/types/utils/dlx.d.mts.map +1 -1
- package/dist/utils.js +7 -5
- package/dist/utils.js.map +1 -1
- package/package.json +1 -1
- package/shadow-bin/npm +1 -1
- package/shadow-bin/npx +2 -2
package/CHANGELOG.md
CHANGED
|
@@ -4,6 +4,11 @@ All notable changes to this project will be documented in this file.
|
|
|
4
4
|
|
|
5
5
|
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
|
|
6
6
|
|
|
7
|
+
## [1.1.29](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.29) - 2025-11-16
|
|
8
|
+
|
|
9
|
+
### Added
|
|
10
|
+
- Added options `--reach-concurrency <number>` and `--reach-disable-analysis-splitting` for `socket scan create --reach`
|
|
11
|
+
|
|
7
12
|
## [1.1.28](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.28) - 2025-11-13
|
|
8
13
|
|
|
9
14
|
### Added
|
package/dist/cli.js
CHANGED
|
@@ -1631,7 +1631,7 @@ async function performReachabilityAnalysis(options) {
|
|
|
1631
1631
|
spinner?.infoAndStop('Running reachability analysis with Coana...');
|
|
1632
1632
|
|
|
1633
1633
|
// Build Coana arguments.
|
|
1634
|
-
const coanaArgs = ['run', cwd, '--output-dir', cwd, '--socket-mode', constants.default.DOT_SOCKET_DOT_FACTS_JSON, '--disable-report-submission', ...(reachabilityOptions.reachAnalysisTimeout ? ['--analysis-timeout', `${reachabilityOptions.reachAnalysisTimeout}`] : []), ...(reachabilityOptions.reachAnalysisMemoryLimit ? ['--memory-limit', `${reachabilityOptions.reachAnalysisMemoryLimit}`] : []), ...(reachabilityOptions.reachDisableAnalytics ? ['--disable-analytics-sharing'] : []), ...(tarHash ? ['--run-without-docker', '--manifests-tar-hash', tarHash] : []),
|
|
1634
|
+
const coanaArgs = ['run', cwd, '--output-dir', cwd, '--socket-mode', constants.default.DOT_SOCKET_DOT_FACTS_JSON, '--disable-report-submission', ...(reachabilityOptions.reachAnalysisTimeout ? ['--analysis-timeout', `${reachabilityOptions.reachAnalysisTimeout}`] : []), ...(reachabilityOptions.reachAnalysisMemoryLimit ? ['--memory-limit', `${reachabilityOptions.reachAnalysisMemoryLimit}`] : []), ...(reachabilityOptions.reachConcurrency ? ['--concurrency', `${reachabilityOptions.reachConcurrency}`] : []), ...(reachabilityOptions.reachDisableAnalytics ? ['--disable-analytics-sharing'] : []), ...(reachabilityOptions.reachDisableAnalysisSplitting ? ['--disable-analysis-splitting'] : []), ...(tarHash ? ['--run-without-docker', '--manifests-tar-hash', tarHash] : []),
|
|
1635
1635
|
// Empty reachEcosystems implies scanning all ecosystems.
|
|
1636
1636
|
...(reachabilityOptions.reachEcosystems.length ? ['--purl-types', ...reachabilityOptions.reachEcosystems] : []), ...(reachabilityOptions.reachExcludePaths.length ? ['--exclude-dirs', ...reachabilityOptions.reachExcludePaths] : []), ...(reachabilityOptions.reachSkipCache ? ['--skip-cache-usage'] : [])];
|
|
1637
1637
|
|
|
@@ -2371,7 +2371,9 @@ async function handleCi(autoManifest) {
|
|
|
2371
2371
|
reach: {
|
|
2372
2372
|
reachAnalysisTimeout: 0,
|
|
2373
2373
|
reachAnalysisMemoryLimit: 0,
|
|
2374
|
+
reachConcurrency: 1,
|
|
2374
2375
|
reachDisableAnalytics: false,
|
|
2376
|
+
reachDisableAnalysisSplitting: false,
|
|
2375
2377
|
reachEcosystems: [],
|
|
2376
2378
|
reachExcludePaths: [],
|
|
2377
2379
|
reachSkipCache: false,
|
|
@@ -10858,11 +10860,21 @@ const reachabilityFlags = {
|
|
|
10858
10860
|
default: 0,
|
|
10859
10861
|
description: 'Set timeout for the reachability analysis. Split analysis runs may cause the total scan time to exceed this timeout significantly.'
|
|
10860
10862
|
},
|
|
10863
|
+
reachConcurrency: {
|
|
10864
|
+
type: 'number',
|
|
10865
|
+
default: 1,
|
|
10866
|
+
description: 'Set the maximum number of concurrent reachability analysis runs. It is recommended to choose a concurrency level that ensures each analysis run has at least the --reach-analysis-memory-limit amount of memory available. NPM reachability analysis does not support concurrent execution, so the concurrency level is ignored for NPM.'
|
|
10867
|
+
},
|
|
10861
10868
|
reachDisableAnalytics: {
|
|
10862
10869
|
type: 'boolean',
|
|
10863
10870
|
default: false,
|
|
10864
10871
|
description: 'Disable reachability analytics sharing with Socket. Also disables caching-based optimizations.'
|
|
10865
10872
|
},
|
|
10873
|
+
reachDisableAnalysisSplitting: {
|
|
10874
|
+
type: 'boolean',
|
|
10875
|
+
default: false,
|
|
10876
|
+
description: 'Limits Coana to at most 1 reachability analysis run per workspace.'
|
|
10877
|
+
},
|
|
10866
10878
|
reachEcosystems: {
|
|
10867
10879
|
type: 'string',
|
|
10868
10880
|
isMultiple: true,
|
|
@@ -11081,6 +11093,8 @@ async function run$d(argv, importMeta, {
|
|
|
11081
11093
|
reach,
|
|
11082
11094
|
reachAnalysisMemoryLimit,
|
|
11083
11095
|
reachAnalysisTimeout,
|
|
11096
|
+
reachConcurrency,
|
|
11097
|
+
reachDisableAnalysisSplitting,
|
|
11084
11098
|
reachDisableAnalytics,
|
|
11085
11099
|
reachSkipCache,
|
|
11086
11100
|
readOnly,
|
|
@@ -11208,8 +11222,9 @@ async function run$d(argv, importMeta, {
|
|
|
11208
11222
|
const hasReachExcludePaths = reachExcludePaths.length > 0;
|
|
11209
11223
|
const isUsingNonDefaultMemoryLimit = reachAnalysisMemoryLimit !== reachabilityFlags['reachAnalysisMemoryLimit']?.default;
|
|
11210
11224
|
const isUsingNonDefaultTimeout = reachAnalysisTimeout !== reachabilityFlags['reachAnalysisTimeout']?.default;
|
|
11225
|
+
const isUsingNonDefaultConcurrency = reachConcurrency !== reachabilityFlags['reachConcurrency']?.default;
|
|
11211
11226
|
const isUsingNonDefaultAnalytics = reachDisableAnalytics !== reachabilityFlags['reachDisableAnalytics']?.default;
|
|
11212
|
-
const isUsingAnyReachabilityFlags = isUsingNonDefaultMemoryLimit || isUsingNonDefaultTimeout || isUsingNonDefaultAnalytics || hasReachEcosystems || hasReachExcludePaths || reachSkipCache;
|
|
11227
|
+
const isUsingAnyReachabilityFlags = isUsingNonDefaultMemoryLimit || isUsingNonDefaultTimeout || isUsingNonDefaultConcurrency || isUsingNonDefaultAnalytics || hasReachEcosystems || hasReachExcludePaths || reachSkipCache || reachDisableAnalysisSplitting;
|
|
11213
11228
|
const wasValidInput = utils.checkCommandInput(outputKind, {
|
|
11214
11229
|
nook: true,
|
|
11215
11230
|
test: !!orgSlug,
|
|
@@ -11270,6 +11285,8 @@ async function run$d(argv, importMeta, {
|
|
|
11270
11285
|
reachDisableAnalytics: Boolean(reachDisableAnalytics),
|
|
11271
11286
|
reachAnalysisTimeout: Number(reachAnalysisTimeout),
|
|
11272
11287
|
reachAnalysisMemoryLimit: Number(reachAnalysisMemoryLimit),
|
|
11288
|
+
reachConcurrency: Number(reachConcurrency),
|
|
11289
|
+
reachDisableAnalysisSplitting: Boolean(reachDisableAnalysisSplitting),
|
|
11273
11290
|
reachEcosystems,
|
|
11274
11291
|
reachExcludePaths,
|
|
11275
11292
|
reachSkipCache: Boolean(reachSkipCache)
|
|
@@ -11915,6 +11932,8 @@ async function scanOneRepo(repoSlug, {
|
|
|
11915
11932
|
reachDisableAnalytics: false,
|
|
11916
11933
|
reachAnalysisTimeout: 0,
|
|
11917
11934
|
reachAnalysisMemoryLimit: 0,
|
|
11935
|
+
reachConcurrency: 1,
|
|
11936
|
+
reachDisableAnalysisSplitting: false,
|
|
11918
11937
|
reachEcosystems: [],
|
|
11919
11938
|
reachExcludePaths: [],
|
|
11920
11939
|
reachSkipCache: false
|
|
@@ -13185,6 +13204,8 @@ async function run$7(argv, importMeta, {
|
|
|
13185
13204
|
org: orgFlag,
|
|
13186
13205
|
reachAnalysisMemoryLimit,
|
|
13187
13206
|
reachAnalysisTimeout,
|
|
13207
|
+
reachConcurrency,
|
|
13208
|
+
reachDisableAnalysisSplitting,
|
|
13188
13209
|
reachDisableAnalytics,
|
|
13189
13210
|
reachSkipCache
|
|
13190
13211
|
} = cli.flags;
|
|
@@ -13250,7 +13271,9 @@ async function run$7(argv, importMeta, {
|
|
|
13250
13271
|
reachabilityOptions: {
|
|
13251
13272
|
reachAnalysisTimeout: Number(reachAnalysisTimeout),
|
|
13252
13273
|
reachAnalysisMemoryLimit: Number(reachAnalysisMemoryLimit),
|
|
13274
|
+
reachConcurrency: Number(reachConcurrency),
|
|
13253
13275
|
reachDisableAnalytics: Boolean(reachDisableAnalytics),
|
|
13276
|
+
reachDisableAnalysisSplitting: Boolean(reachDisableAnalysisSplitting),
|
|
13254
13277
|
reachEcosystems,
|
|
13255
13278
|
reachExcludePaths,
|
|
13256
13279
|
reachSkipCache: Boolean(reachSkipCache)
|
|
@@ -15091,5 +15114,5 @@ void (async () => {
|
|
|
15091
15114
|
await utils.captureException(e);
|
|
15092
15115
|
}
|
|
15093
15116
|
})();
|
|
15094
|
-
//# debugId=
|
|
15117
|
+
//# debugId=af14f2c8-7f1a-4f12-bd1a-322165537e4f
|
|
15095
15118
|
//# sourceMappingURL=cli.js.map
|