@socketsecurity/lib 0.0.0 → 1.0.1

package/dist/agent.js

@@ -0,0 +1,288 @@
+/* Socket Lib - Built with esbuild */
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var agent_exports = {};
+__export(agent_exports, {
+  execNpm: () => execNpm,
+  execPnpm: () => execPnpm,
+  execScript: () => execScript,
+  execYarn: () => execYarn,
+  isNpmAuditFlag: () => isNpmAuditFlag,
+  isNpmFundFlag: () => isNpmFundFlag,
+  isNpmLoglevelFlag: () => isNpmLoglevelFlag,
+  isNpmNodeOptionsFlag: () => isNpmNodeOptionsFlag,
+  isNpmProgressFlag: () => isNpmProgressFlag,
+  isPnpmFrozenLockfileFlag: () => isPnpmFrozenLockfileFlag,
+  isPnpmIgnoreScriptsFlag: () => isPnpmIgnoreScriptsFlag,
+  isPnpmInstallCommand: () => isPnpmInstallCommand,
+  isPnpmLoglevelFlag: () => isPnpmLoglevelFlag
+});
+module.exports = __toCommonJS(agent_exports);
+var import_ci = require("#env/ci");
+var import_bin = require("./bin");
+var import_debug = require("./debug");
+var import_fs = require("./fs");
+var import_objects = require("./objects");
+var import_spawn = require("./spawn");
+const pnpmIgnoreScriptsFlags = /* @__PURE__ */ new Set([
+  "--ignore-scripts",
+  "--no-ignore-scripts"
+]);
+const pnpmFrozenLockfileFlags = /* @__PURE__ */ new Set([
+  "--frozen-lockfile",
+  "--no-frozen-lockfile"
+]);
+const pnpmInstallCommands = /* @__PURE__ */ new Set(["install", "i"]);
+const pnpmInstallLikeCommands = /* @__PURE__ */ new Set([
+  "install",
+  "i",
+  "add",
+  "update",
+  "up",
+  "remove",
+  "rm",
+  "link",
+  "ln",
+  "unlink",
+  "import",
+  "rebuild",
+  "rb"
+]);
+const yarnInstallLikeCommands = /* @__PURE__ */ new Set([
+  "install",
+  "add",
+  "upgrade",
+  "remove",
+  "link",
+  "unlink",
+  "import"
+]);
+// @__NO_SIDE_EFFECTS__
+function execNpm(args, options) {
+  const useDebug = (0, import_debug.isDebug)();
+  const terminatorPos = args.indexOf("--");
+  const npmArgs = (terminatorPos === -1 ? args : args.slice(0, terminatorPos)).filter(
+    (a) => !/* @__PURE__ */ isNpmAuditFlag(a) && !/* @__PURE__ */ isNpmFundFlag(a) && !/* @__PURE__ */ isNpmProgressFlag(a)
+  );
+  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos);
+  const logLevelArgs = (
+    // The default value of loglevel is "notice". We default to "warn" which is
+    // one level quieter.
+    useDebug || npmArgs.some(isNpmLoglevelFlag) ? [] : ["--loglevel", "warn"]
+  );
+  const npmBin = require("./constants/agents").NPM_BIN_PATH;
+  return (0, import_spawn.spawn)(
+    npmBin,
+    [
+      // Even though '--loglevel=error' is passed npm will still run through
+      // code paths for 'audit' and 'fund' unless '--no-audit' and '--no-fund'
+      // flags are passed.
+      "--no-audit",
+      "--no-fund",
+      // Add `--no-progress` and `--silent` flags to fix input being swallowed
+      // by the spinner when running the command with recent versions of npm.
+      "--no-progress",
+      // Add '--loglevel=error' if a loglevel flag is not provided and the
+      // SOCKET_DEBUG environment variable is not truthy.
+      ...logLevelArgs,
+      ...npmArgs,
+      ...otherArgs
+    ],
+    {
+      __proto__: null,
+      ...options
+    }
+  );
+}
+// @__NO_SIDE_EFFECTS__
+function execPnpm(args, options) {
+  const { allowLockfileUpdate, ...extBinOpts } = {
+    __proto__: null,
+    ...options
+  };
+  const useDebug = (0, import_debug.isDebug)();
+  const terminatorPos = args.indexOf("--");
+  const pnpmArgs = (terminatorPos === -1 ? args : args.slice(0, terminatorPos)).filter((a) => !/* @__PURE__ */ isNpmProgressFlag(a));
+  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos);
+  const firstArg = pnpmArgs[0];
+  const supportsIgnoreScripts = firstArg ? pnpmInstallLikeCommands.has(firstArg) : false;
+  const logLevelArgs = useDebug || pnpmArgs.some(isPnpmLoglevelFlag) ? [] : ["--loglevel", "warn"];
+  const hasIgnoreScriptsFlag = pnpmArgs.some(isPnpmIgnoreScriptsFlag);
+  const ignoreScriptsArgs = !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ["--ignore-scripts"];
+  const frozenLockfileArgs = [];
+  if (import_ci.CI && allowLockfileUpdate && firstArg && /* @__PURE__ */ isPnpmInstallCommand(firstArg) && !pnpmArgs.some(isPnpmFrozenLockfileFlag)) {
+    frozenLockfileArgs.push("--no-frozen-lockfile");
+  }
+  return (0, import_bin.execBin)(
+    "pnpm",
+    [
+      // Add '--loglevel=warn' if a loglevel flag is not provided and debug is off.
+      ...logLevelArgs,
+      // Add '--ignore-scripts' by default for security (only for installation commands).
+      ...ignoreScriptsArgs,
+      // Add '--no-frozen-lockfile' in CI when lockfile updates are needed.
+      ...frozenLockfileArgs,
+      ...pnpmArgs,
+      ...otherArgs
+    ],
+    extBinOpts
+  );
+}
+// @__NO_SIDE_EFFECTS__
+function execYarn(args, options) {
+  const useDebug = (0, import_debug.isDebug)();
+  const terminatorPos = args.indexOf("--");
+  const yarnArgs = (terminatorPos === -1 ? args : args.slice(0, terminatorPos)).filter((a) => !/* @__PURE__ */ isNpmProgressFlag(a));
+  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos);
+  const firstArg = yarnArgs[0];
+  const supportsIgnoreScripts = firstArg ? yarnInstallLikeCommands.has(firstArg) : false;
+  const logLevelArgs = useDebug || yarnArgs.some(isNpmLoglevelFlag) ? [] : ["--silent"];
+  const hasIgnoreScriptsFlag = yarnArgs.some(isPnpmIgnoreScriptsFlag);
+  const ignoreScriptsArgs = !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ["--ignore-scripts"];
+  return (0, import_bin.execBin)(
+    "yarn",
+    [
+      // Add '--silent' if a loglevel flag is not provided and debug is off.
+      ...logLevelArgs,
+      // Add '--ignore-scripts' by default for security (only for installation commands).
+      ...ignoreScriptsArgs,
+      ...yarnArgs,
+      ...otherArgs
+    ],
+    {
+      __proto__: null,
+      ...options
+    }
+  );
+}
+// @__NO_SIDE_EFFECTS__
+function isNpmAuditFlag(cmdArg) {
+  return /^--(no-)?audit(=.*)?$/.test(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isNpmFundFlag(cmdArg) {
+  return /^--(no-)?fund(=.*)?$/.test(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isNpmLoglevelFlag(cmdArg) {
+  if (/^--loglevel(=.*)?$/.test(cmdArg)) {
+    return true;
+  }
+  if (/^--(silent|verbose|info|warn|error|quiet)$/.test(cmdArg)) {
+    return true;
+  }
+  return /^-(s|q|d|dd|ddd|v)$/.test(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isNpmNodeOptionsFlag(cmdArg) {
+  return /^--node-options(=.*)?$/.test(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isNpmProgressFlag(cmdArg) {
+  return /^--(no-)?progress(=.*)?$/.test(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isPnpmIgnoreScriptsFlag(cmdArg) {
+  return pnpmIgnoreScriptsFlags.has(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isPnpmFrozenLockfileFlag(cmdArg) {
+  return pnpmFrozenLockfileFlags.has(cmdArg);
+}
+// @__NO_SIDE_EFFECTS__
+function isPnpmInstallCommand(cmdArg) {
+  return pnpmInstallCommands.has(cmdArg);
+}
+const isPnpmLoglevelFlag = isNpmLoglevelFlag;
+// @__NO_SIDE_EFFECTS__
+function execScript(scriptName, args, options) {
+  let resolvedOptions;
+  let resolvedArgs;
+  if (!Array.isArray(args) && args !== null && typeof args === "object") {
+    resolvedOptions = args;
+    resolvedArgs = [];
+  } else {
+    resolvedOptions = options;
+    resolvedArgs = args || [];
+  }
+  const { prepost, ...spawnOptions } = {
+    __proto__: null,
+    ...resolvedOptions
+  };
+  if (spawnOptions.shell === true) {
+    return (0, import_spawn.spawn)(scriptName, resolvedArgs, spawnOptions);
+  }
+  const useNodeRun = !prepost && require("./constants/node").SUPPORTS_NODE_RUN;
+  const cwd = (0, import_objects.getOwn)(spawnOptions, "cwd") ?? process.cwd();
+  const pnpmLockPath = (0, import_fs.findUpSync)(
+    /*@__INLINE__*/
+    require("./constants/agents").PNPM_LOCK_YAML,
+    { cwd }
+  );
+  if (pnpmLockPath) {
+    return /* @__PURE__ */ execPnpm(["run", scriptName, ...resolvedArgs], spawnOptions);
+  }
+  const packageLockPath = (0, import_fs.findUpSync)(
+    /*@__INLINE__*/
+    require("./constants/agents").PACKAGE_LOCK_JSON,
+    { cwd }
+  );
+  if (packageLockPath) {
+    return /* @__PURE__ */ execNpm(["run", scriptName, ...resolvedArgs], spawnOptions);
+  }
+  const yarnLockPath = (0, import_fs.findUpSync)(
+    /*@__INLINE__*/
+    require("./constants/agents").YARN_LOCK,
+    { cwd }
+  );
+  if (yarnLockPath) {
+    return /* @__PURE__ */ execYarn(["run", scriptName, ...resolvedArgs], spawnOptions);
+  }
+  return (0, import_spawn.spawn)(
+    /* @__PURE__ */ require("./constants/node").getExecPath(),
+    [
+      .../* @__PURE__ */ require("./constants/node").getNodeNoWarningsFlags(),
+      ...useNodeRun ? ["--run"] : [
+        require("./constants/agents").NPM_REAL_EXEC_PATH,
+        "run"
+      ],
+      scriptName,
+      ...resolvedArgs
+    ],
+    {
+      ...spawnOptions
+    }
+  );
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  execNpm,
+  execPnpm,
+  execScript,
+  execYarn,
+  isNpmAuditFlag,
+  isNpmFundFlag,
+  isNpmLoglevelFlag,
+  isNpmNodeOptionsFlag,
+  isNpmProgressFlag,
+  isPnpmFrozenLockfileFlag,
+  isPnpmIgnoreScriptsFlag,
+  isPnpmInstallCommand,
+  isPnpmLoglevelFlag
+});
+//# sourceMappingURL=agent.js.map

package/dist/agent.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../src/agent.ts"],
+  "sourcesContent": ["/**\n * @fileoverview Package manager agent for executing npm, pnpm, and yarn commands.\n * Provides cross-platform utilities with optimized flags and security defaults.\n *\n * SECURITY: Array-Based Arguments Prevent Command Injection\n *\n * All functions in this module (execNpm, execPnpm, execYarn) use array-based\n * arguments when calling spawn(). This is the PRIMARY DEFENSE against command\n * injection attacks.\n *\n * When arguments are passed as an array:\n *   spawn(cmd, ['install', packageName, '--flag'], options)\n *\n * Node.js handles escaping automatically. Each argument is passed directly to\n * the OS without shell interpretation. Shell metacharacters like ; | & $ ( )\n * are treated as LITERAL STRINGS, not as commands.\n *\n * Example: If packageName = \"lodash; rm -rf /\", the package manager will try to\n * install a package literally named \"lodash; rm -rf /\" (which doesn't exist),\n * rather than executing the malicious command.\n *\n * This approach is secure even when shell: true is used on Windows for .cmd\n * file resolution, because Node.js properly escapes each array element.\n */\n\nimport { CI } from '#env/ci'\n\nimport { execBin } from './bin'\nimport { isDebug } from './debug'\nimport { findUpSync } from './fs'\nimport { getOwn } from './objects'\nimport type { SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\n// Note: npm flag checking is done with regex patterns in the is*Flag functions below.\n\nconst pnpmIgnoreScriptsFlags = new Set([\n  '--ignore-scripts',\n  '--no-ignore-scripts',\n])\n\nconst pnpmFrozenLockfileFlags = new Set([\n  '--frozen-lockfile',\n  '--no-frozen-lockfile',\n])\n\nconst pnpmInstallCommands = new Set(['install', 'i'])\n\n// Commands that support --ignore-scripts flag in pnpm:\n// Installation-related: install, add, update, remove, link, unlink, import, rebuild.\nconst pnpmInstallLikeCommands = new Set([\n  'install',\n  'i',\n  'add',\n  'update',\n  'up',\n  'remove',\n  'rm',\n  'link',\n  'ln',\n  'unlink',\n  'import',\n  'rebuild',\n  'rb',\n])\n\n// Commands that support --ignore-scripts flag in yarn:\n// Similar to npm/pnpm: installation-related commands.\nconst yarnInstallLikeCommands = new Set([\n  'install',\n  'add',\n  'upgrade',\n  'remove',\n  'link',\n  'unlink',\n  'import',\n])\n\n/**\n * Execute npm commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to spawn().\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function execNpm(args: string[], options?: SpawnOptions | undefined) {\n  const useDebug = isDebug()\n  const terminatorPos = args.indexOf('--')\n  const npmArgs = (\n    terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n  ).filter(\n    (a: string) =>\n      !isNpmAuditFlag(a) && !isNpmFundFlag(a) && !isNpmProgressFlag(a),\n  )\n  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n  const logLevelArgs =\n    // The default value of loglevel is \"notice\". We default to \"warn\" which is\n    // one level quieter.\n    useDebug || npmArgs.some(isNpmLoglevelFlag) ? [] : ['--loglevel', 'warn']\n  // SECURITY: Array-based arguments prevent command injection. Each element is\n  // passed directly to the OS without shell interpretation.\n  //\n  // NOTE: We don't apply hardening flags to npm because:\n  // 1. npm is a trusted system tool installed with Node.js\n  // 2. npm requires full system access (filesystem, network, child processes)\n  // 3. Hardening flags would prevent npm from functioning (even with --allow-* grants)\n  // 4. The permission model is intended for untrusted user code, not package managers\n  //\n  // We also use the npm binary wrapper instead of calling cli.js directly because\n  // cli.js exports a function that needs to be invoked with process as an argument.\n  const npmBin = /*@__PURE__*/ require('../constants/agents').NPM_BIN_PATH\n  return spawn(\n    npmBin,\n    [\n      // Even though '--loglevel=error' is passed npm will still run through\n      // code paths for 'audit' and 'fund' unless '--no-audit' and '--no-fund'\n      // flags are passed.\n      '--no-audit',\n      '--no-fund',\n      // Add `--no-progress` and `--silent` flags to fix input being swallowed\n      // by the spinner when running the command with recent versions of npm.\n      '--no-progress',\n      // Add '--loglevel=error' if a loglevel flag is not provided and the\n      // SOCKET_DEBUG environment variable is not truthy.\n      ...logLevelArgs,\n      ...npmArgs,\n      ...otherArgs,\n    ],\n    {\n      __proto__: null,\n      ...options,\n    } as SpawnOptions,\n  )\n}\n\nexport interface PnpmOptions extends SpawnOptions {\n  allowLockfileUpdate?: boolean\n}\n\n/**\n * Execute pnpm commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to execBin().\n */\n/*@__NO_SIDE_EFFECTS__*/\n\nexport function execPnpm(args: string[], options?: PnpmOptions | undefined) {\n  const { allowLockfileUpdate, ...extBinOpts } = {\n    __proto__: null,\n    ...options,\n  } as PnpmOptions\n  const useDebug = isDebug()\n  const terminatorPos = args.indexOf('--')\n  const pnpmArgs = (\n    terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n  ).filter((a: string) => !isNpmProgressFlag(a))\n  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n\n  const firstArg = pnpmArgs[0]\n  const supportsIgnoreScripts = firstArg\n    ? pnpmInstallLikeCommands.has(firstArg)\n    : false\n\n  // pnpm uses --loglevel for all commands.\n  const logLevelArgs =\n    useDebug || pnpmArgs.some(isPnpmLoglevelFlag) ? [] : ['--loglevel', 'warn']\n\n  // Only add --ignore-scripts for commands that support it.\n  const hasIgnoreScriptsFlag = pnpmArgs.some(isPnpmIgnoreScriptsFlag)\n  const ignoreScriptsArgs =\n    !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ['--ignore-scripts']\n\n  // In CI environments, pnpm uses --frozen-lockfile by default which prevents lockfile updates.\n  // For commands that need to update the lockfile (like install with new packages/overrides),\n  // we need to explicitly add --no-frozen-lockfile in CI mode if not already present.\n  const frozenLockfileArgs = []\n  if (\n    CI &&\n    allowLockfileUpdate &&\n    firstArg &&\n    isPnpmInstallCommand(firstArg) &&\n    !pnpmArgs.some(isPnpmFrozenLockfileFlag)\n  ) {\n    frozenLockfileArgs.push('--no-frozen-lockfile')\n  }\n\n  // Note: pnpm doesn't have a --no-progress flag. It uses --reporter instead.\n  // We removed --no-progress as it causes \"Unknown option\" errors with pnpm.\n\n  // SECURITY: Array-based arguments prevent command injection. Each element is\n  // passed directly to the OS without shell interpretation.\n  return execBin(\n    'pnpm',\n    [\n      // Add '--loglevel=warn' if a loglevel flag is not provided and debug is off.\n      ...logLevelArgs,\n      // Add '--ignore-scripts' by default for security (only for installation commands).\n      ...ignoreScriptsArgs,\n      // Add '--no-frozen-lockfile' in CI when lockfile updates are needed.\n      ...frozenLockfileArgs,\n      ...pnpmArgs,\n      ...otherArgs,\n    ],\n    extBinOpts,\n  )\n}\n\n/**\n * Execute yarn commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to execBin().\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function execYarn(\n  args: string[],\n  options?: import('./spawn').SpawnOptions,\n) {\n  const useDebug = isDebug()\n  const terminatorPos = args.indexOf('--')\n  const yarnArgs = (\n    terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n  ).filter((a: string) => !isNpmProgressFlag(a))\n  const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n\n  const firstArg = yarnArgs[0]\n  const supportsIgnoreScripts = firstArg\n    ? yarnInstallLikeCommands.has(firstArg)\n    : false\n\n  // Yarn uses --silent flag for quieter output.\n  const logLevelArgs =\n    useDebug || yarnArgs.some(isNpmLoglevelFlag) ? [] : ['--silent']\n\n  // Only add --ignore-scripts for commands that support it.\n  const hasIgnoreScriptsFlag = yarnArgs.some(isPnpmIgnoreScriptsFlag)\n  const ignoreScriptsArgs =\n    !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ['--ignore-scripts']\n\n  // SECURITY: Array-based arguments prevent command injection. Each element is\n  // passed directly to the OS without shell interpretation.\n  return execBin(\n    'yarn',\n    [\n      // Add '--silent' if a loglevel flag is not provided and debug is off.\n      ...logLevelArgs,\n      // Add '--ignore-scripts' by default for security (only for installation commands).\n      ...ignoreScriptsArgs,\n      ...yarnArgs,\n      ...otherArgs,\n    ],\n    {\n      __proto__: null,\n      ...options,\n    } as SpawnOptions,\n  )\n}\n\n/**\n * Check if a command argument is an npm audit flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmAuditFlag(cmdArg: string): boolean {\n  return /^--(no-)?audit(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm fund flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmFundFlag(cmdArg: string): boolean {\n  return /^--(no-)?fund(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm loglevel flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmLoglevelFlag(cmdArg: string): boolean {\n  // https://docs.npmjs.com/cli/v11/using-npm/logging#setting-log-levels\n  if (/^--loglevel(=.*)?$/.test(cmdArg)) {\n    return true\n  }\n  // Check for long form flags\n  if (/^--(silent|verbose|info|warn|error|quiet)$/.test(cmdArg)) {\n    return true\n  }\n  // Check for shorthand flags\n  return /^-(s|q|d|dd|ddd|v)$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm node-options flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmNodeOptionsFlag(cmdArg: string): boolean {\n  // https://docs.npmjs.com/cli/v9/using-npm/config#node-options\n  return /^--node-options(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm progress flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmProgressFlag(cmdArg: string): boolean {\n  return /^--(no-)?progress(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm ignore-scripts flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmIgnoreScriptsFlag(cmdArg: string): boolean {\n  return pnpmIgnoreScriptsFlags.has(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm frozen-lockfile flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmFrozenLockfileFlag(cmdArg: string): boolean {\n  return pnpmFrozenLockfileFlags.has(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm install command.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmInstallCommand(cmdArg: string): boolean {\n  return pnpmInstallCommands.has(cmdArg)\n}\n\n/**\n * Alias for isNpmLoglevelFlag for pnpm usage.\n */\nexport const isPnpmLoglevelFlag = isNpmLoglevelFlag\n\n/**\n * Execute a package.json script using the appropriate package manager.\n * Automatically detects pnpm, yarn, or npm based on lockfiles.\n */\nexport interface ExecScriptOptions extends SpawnOptions {\n  prepost?: boolean | undefined\n}\n\n/*@__NO_SIDE_EFFECTS__*/\nexport function execScript(\n  scriptName: string,\n  args?: string[] | readonly string[] | ExecScriptOptions | undefined,\n  options?: ExecScriptOptions | undefined,\n) {\n  // Handle overloaded signatures: execScript(name, options) or execScript(name, args, options).\n  let resolvedOptions: ExecScriptOptions | undefined\n  let resolvedArgs: string[]\n  if (!Array.isArray(args) && args !== null && typeof args === 'object') {\n    resolvedOptions = args as ExecScriptOptions\n    resolvedArgs = []\n  } else {\n    resolvedOptions = options\n    resolvedArgs = (args || []) as string[]\n  }\n  const { prepost, ...spawnOptions } = {\n    __proto__: null,\n    ...resolvedOptions,\n  } as ExecScriptOptions\n\n  // If shell: true is passed, run the command directly as a shell command.\n  if (spawnOptions.shell === true) {\n    return spawn(scriptName, resolvedArgs, spawnOptions)\n  }\n\n  const useNodeRun =\n    !prepost && /*@__PURE__*/ require('../constants/node').SUPPORTS_NODE_RUN\n\n  // Detect package manager based on lockfile by traversing up from current directory.\n  const cwd =\n    (getOwn(spawnOptions, 'cwd') as string | undefined) ?? process.cwd()\n\n  // Check for pnpm-lock.yaml.\n  const pnpmLockPath = findUpSync(\n    /*@__INLINE__*/ require('../constants/agents').PNPM_LOCK_YAML,\n    { cwd },\n  ) as string | undefined\n  if (pnpmLockPath) {\n    return execPnpm(['run', scriptName, ...resolvedArgs], spawnOptions)\n  }\n\n  // Check for package-lock.json.\n  // When in an npm workspace, use npm run to ensure workspace binaries are available.\n  const packageLockPath = findUpSync(\n    /*@__INLINE__*/ require('../constants/agents').PACKAGE_LOCK_JSON,\n    { cwd },\n  ) as string | undefined\n  if (packageLockPath) {\n    return execNpm(['run', scriptName, ...resolvedArgs], spawnOptions)\n  }\n\n  // Check for yarn.lock.\n  const yarnLockPath = findUpSync(\n    /*@__INLINE__*/ require('../constants/agents').YARN_LOCK,\n    { cwd },\n  ) as string | undefined\n  if (yarnLockPath) {\n    return execYarn(['run', scriptName, ...resolvedArgs], spawnOptions)\n  }\n\n  return spawn(\n    /*@__PURE__*/ require('../constants/node').getExecPath(),\n    [\n      .../*@__PURE__*/ require('../constants/node').getNodeNoWarningsFlags(),\n      ...(useNodeRun\n        ? ['--run']\n        : [\n            /*@__PURE__*/ require('../constants/agents').NPM_REAL_EXEC_PATH,\n            'run',\n          ]),\n      scriptName,\n      ...resolvedArgs,\n    ],\n    {\n      ...spawnOptions,\n    },\n  )\n}\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAyBA,gBAAmB;AAEnB,iBAAwB;AACxB,mBAAwB;AACxB,gBAA2B;AAC3B,qBAAuB;AAEvB,mBAAsB;AAItB,MAAM,yBAAyB,oBAAI,IAAI;AAAA,EACrC;AAAA,EACA;AACF,CAAC;AAED,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AACF,CAAC;AAED,MAAM,sBAAsB,oBAAI,IAAI,CAAC,WAAW,GAAG,CAAC;AAIpD,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAID,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAAA;AASM,SAAS,QAAQ,MAAgB,SAAoC;AAC1E,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,WACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD;AAAA,IACA,CAAC,MACC,CAAC,+BAAe,CAAC,KAAK,CAAC,8BAAc,CAAC,KAAK,CAAC,kCAAkB,CAAC;AAAA,EACnE;AACA,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AACtE,QAAM;AAAA;AAAA;AAAA,IAGJ,YAAY,QAAQ,KAAK,iBAAiB,IAAI,CAAC,IAAI,CAAC,cAAc,MAAM;AAAA;AAY1E,QAAM,SAAuB,QAAQ,qBAAqB,EAAE;AAC5D,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA;AAAA;AAAA,MAIE;AAAA,MACA;AAAA;AAAA;AAAA,MAGA;AAAA;AAAA;AAAA,MAGA,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,WAAW;AAAA,MACX,GAAG;AAAA,IACL;AAAA,EACF;AACF;AAAA;AAcO,SAAS,SAAS,MAAgB,SAAmC;AAC1E,QAAM,EAAE,qBAAqB,GAAG,WAAW,IAAI;AAAA,IAC7C,WAAW;AAAA,IACX,GAAG;AAAA,EACL;AACA,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,YACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD,OAAO,CAAC,MAAc,CAAC,kCAAkB,CAAC,CAAC;AAC7C,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AAEtE,QAAM,WAAW,SAAS,CAAC;AAC3B,QAAM,wBAAwB,WAC1B,wBAAwB,IAAI,QAAQ,IACpC;AAGJ,QAAM,eACJ,YAAY,SAAS,KAAK,kBAAkB,IAAI,CAAC,IAAI,CAAC,cAAc,MAAM;AAG5E,QAAM,uBAAuB,SAAS,KAAK,uBAAuB;AAClE,QAAM,oBACJ,CAAC,yBAAyB,uBAAuB,CAAC,IAAI,CAAC,kBAAkB;AAK3E,QAAM,qBAAqB,CAAC;AAC5B,MACE,gBACA,uBACA,YACA,qCAAqB,QAAQ,KAC7B,CAAC,SAAS,KAAK,wBAAwB,GACvC;AACA,uBAAmB,KAAK,sBAAsB;AAAA,EAChD;AAOA,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA,MAEE,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,EACF;AACF;AAAA;AASO,SAAS,SACd,MACA,SACA;AACA,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,YACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD,OAAO,CAAC,MAAc,CAAC,kCAAkB,CAAC,CAAC;AAC7C,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AAEtE,QAAM,WAAW,SAAS,CAAC;AAC3B,QAAM,wBAAwB,WAC1B,wBAAwB,IAAI,QAAQ,IACpC;AAGJ,QAAM,eACJ,YAAY,SAAS,KAAK,iBAAiB,IAAI,CAAC,IAAI,CAAC,UAAU;AAGjE,QAAM,uBAAuB,SAAS,KAAK,uBAAuB;AAClE,QAAM,oBACJ,CAAC,yBAAyB,uBAAuB,CAAC,IAAI,CAAC,kBAAkB;AAI3E,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA,MAEE,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,WAAW;AAAA,MACX,GAAG;AAAA,IACL;AAAA,EACF;AACF;AAAA;AAMO,SAAS,eAAe,QAAyB;AACtD,SAAO,wBAAwB,KAAK,MAAM;AAC5C;AAAA;AAMO,SAAS,cAAc,QAAyB;AACrD,SAAO,uBAAuB,KAAK,MAAM;AAC3C;AAAA;AAMO,SAAS,kBAAkB,QAAyB;AAEzD,MAAI,qBAAqB,KAAK,MAAM,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,MAAI,6CAA6C,KAAK,MAAM,GAAG;AAC7D,WAAO;AAAA,EACT;AAEA,SAAO,sBAAsB,KAAK,MAAM;AAC1C;AAAA;AAMO,SAAS,qBAAqB,QAAyB;AAE5D,SAAO,yBAAyB,KAAK,MAAM;AAC7C;AAAA;AAMO,SAAS,kBAAkB,QAAyB;AACzD,SAAO,2BAA2B,KAAK,MAAM;AAC/C;AAAA;AAMO,SAAS,wBAAwB,QAAyB;AAC/D,SAAO,uBAAuB,IAAI,MAAM;AAC1C;AAAA;AAMO,SAAS,yBAAyB,QAAyB;AAChE,SAAO,wBAAwB,IAAI,MAAM;AAC3C;AAAA;AAMO,SAAS,qBAAqB,QAAyB;AAC5D,SAAO,oBAAoB,IAAI,MAAM;AACvC;AAKO,MAAM,qBAAqB;AAAA;AAW3B,SAAS,WACd,YACA,MACA,SACA;AAEA,MAAI;AACJ,MAAI;AACJ,MAAI,CAAC,MAAM,QAAQ,IAAI,KAAK,SAAS,QAAQ,OAAO,SAAS,UAAU;AACrE,sBAAkB;AAClB,mBAAe,CAAC;AAAA,EAClB,OAAO;AACL,sBAAkB;AAClB,mBAAgB,QAAQ,CAAC;AAAA,EAC3B;AACA,QAAM,EAAE,SAAS,GAAG,aAAa,IAAI;AAAA,IACnC,WAAW;AAAA,IACX,GAAG;AAAA,EACL;AAGA,MAAI,aAAa,UAAU,MAAM;AAC/B,eAAO,oBAAM,YAAY,cAAc,YAAY;AAAA,EACrD;AAEA,QAAM,aACJ,CAAC,WAAyB,QAAQ,mBAAmB,EAAE;AAGzD,QAAM,UACH,uBAAO,cAAc,KAAK,KAA4B,QAAQ,IAAI;AAGrE,QAAM,mBAAe;AAAA;AAAA,IACH,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,cAAc;AAChB,WAAO,yBAAS,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACpE;AAIA,QAAM,sBAAkB;AAAA;AAAA,IACN,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,iBAAiB;AACnB,WAAO,wBAAQ,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACnE;AAGA,QAAM,mBAAe;AAAA;AAAA,IACH,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,cAAc;AAChB,WAAO,yBAAS,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACpE;AAEA,aAAO;AAAA,IACS,wBAAQ,mBAAmB,EAAE,YAAY;AAAA,IACvD;AAAA,MACE,GAAiB,wBAAQ,mBAAmB,EAAE,uBAAuB;AAAA,MACrE,GAAI,aACA,CAAC,OAAO,IACR;AAAA,QACgB,QAAQ,qBAAqB,EAAE;AAAA,QAC7C;AAAA,MACF;AAAA,MACJ;AAAA,MACA,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,GAAG;AAAA,IACL;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/ansi.d.ts

@@ -0,0 +1,29 @@
+/**
+ * @fileoverview ANSI escape code utilities.
+ * Provides constants and helpers for terminal formatting.
+ */
+// ANSI escape codes - commonly used sequences.
+export declare const ANSI_RESET = "\u001B[0m";
+export declare const ANSI_BOLD = "\u001B[1m";
+export declare const ANSI_DIM = "\u001B[2m";
+export declare const ANSI_ITALIC = "\u001B[3m";
+export declare const ANSI_UNDERLINE = "\u001B[4m";
+export declare const ANSI_STRIKETHROUGH = "\u001B[9m";
+/**
+ * Create a regular expression for matching ANSI escape codes.
+ *
+ * Inlined ansi-regex:
+ * https://socket.dev/npm/package/ansi-regexp/overview/6.2.2
+ * MIT License
+ * Copyright (c) Sindre Sorhus <sindresorhus@gmail.com> (https://sindresorhus.com)
+ */
+/*@__NO_SIDE_EFFECTS__*/
+export declare function ansiRegex(options?: {
+    onlyFirst?: boolean;
+}): RegExp;
+/**
+ * Strip ANSI escape codes from text.
+ * Uses the inlined ansi-regex for matching.
+ */
+/*@__NO_SIDE_EFFECTS__*/
+export declare function stripAnsi(text: string): string;

package/dist/ansi.js

@@ -0,0 +1,62 @@
+/* Socket Lib - Built with esbuild */
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var ansi_exports = {};
+__export(ansi_exports, {
+  ANSI_BOLD: () => ANSI_BOLD,
+  ANSI_DIM: () => ANSI_DIM,
+  ANSI_ITALIC: () => ANSI_ITALIC,
+  ANSI_RESET: () => ANSI_RESET,
+  ANSI_STRIKETHROUGH: () => ANSI_STRIKETHROUGH,
+  ANSI_UNDERLINE: () => ANSI_UNDERLINE,
+  ansiRegex: () => ansiRegex,
+  stripAnsi: () => stripAnsi
+});
+module.exports = __toCommonJS(ansi_exports);
+const ANSI_RESET = "\x1B[0m";
+const ANSI_BOLD = "\x1B[1m";
+const ANSI_DIM = "\x1B[2m";
+const ANSI_ITALIC = "\x1B[3m";
+const ANSI_UNDERLINE = "\x1B[4m";
+const ANSI_STRIKETHROUGH = "\x1B[9m";
+const ANSI_REGEX = /\x1b\[[0-9;]*m/g;
+// @__NO_SIDE_EFFECTS__
+function ansiRegex(options) {
+  const { onlyFirst } = options ?? {};
+  const ST = "(?:\\u0007\\u001B\\u005C|\\u009C)";
+  const osc = `(?:\\u001B\\][\\s\\S]*?${ST})`;
+  const csi = "[\\u001B\\u009B][[\\]()#;?]*(?:\\d{1,4}(?:[;:]\\d{0,4})*)?[\\dA-PR-TZcf-nq-uy=><~]";
+  const pattern = `${osc}|${csi}`;
+  return new RegExp(pattern, onlyFirst ? void 0 : "g");
+}
+// @__NO_SIDE_EFFECTS__
+function stripAnsi(text) {
+  return text.replace(ANSI_REGEX, "");
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  ANSI_BOLD,
+  ANSI_DIM,
+  ANSI_ITALIC,
+  ANSI_RESET,
+  ANSI_STRIKETHROUGH,
+  ANSI_UNDERLINE,
+  ansiRegex,
+  stripAnsi
+});
+//# sourceMappingURL=ansi.js.map

package/dist/ansi.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../src/ansi.ts"],
+  "sourcesContent": ["/**\n * @fileoverview ANSI escape code utilities.\n * Provides constants and helpers for terminal formatting.\n */\n\n// ANSI escape codes - commonly used sequences.\nexport const ANSI_RESET = '\\x1b[0m'\nexport const ANSI_BOLD = '\\x1b[1m'\nexport const ANSI_DIM = '\\x1b[2m'\nexport const ANSI_ITALIC = '\\x1b[3m'\nexport const ANSI_UNDERLINE = '\\x1b[4m'\nexport const ANSI_STRIKETHROUGH = '\\x1b[9m'\n\n// ANSI escape code regex to strip colors/formatting.\n// biome-ignore lint/suspicious/noControlCharactersInRegex: ANSI escape sequences use control characters.\nconst ANSI_REGEX = /\\x1b\\[[0-9;]*m/g\n\n/**\n * Create a regular expression for matching ANSI escape codes.\n *\n * Inlined ansi-regex:\n * https://socket.dev/npm/package/ansi-regexp/overview/6.2.2\n * MIT License\n * Copyright (c) Sindre Sorhus <sindresorhus@gmail.com> (https://sindresorhus.com)\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function ansiRegex(options?: { onlyFirst?: boolean }): RegExp {\n  const { onlyFirst } = options ?? {}\n  // Valid string terminator sequences are BEL, ESC\\, and 0x9c.\n  const ST = '(?:\\\\u0007\\\\u001B\\\\u005C|\\\\u009C)'\n  // OSC sequences only: ESC ] ... ST (non-greedy until the first ST).\n  const osc = `(?:\\\\u001B\\\\][\\\\s\\\\S]*?${ST})`\n  // CSI and related: ESC/C1, optional intermediates, optional params (supports ; and :) then final byte.\n  const csi =\n    '[\\\\u001B\\\\u009B][[\\\\]()#;?]*(?:\\\\d{1,4}(?:[;:]\\\\d{0,4})*)?[\\\\dA-PR-TZcf-nq-uy=><~]'\n  const pattern = `${osc}|${csi}`\n  return new RegExp(pattern, onlyFirst ? undefined : 'g')\n}\n\n/**\n * Strip ANSI escape codes from text.\n * Uses the inlined ansi-regex for matching.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function stripAnsi(text: string): string {\n  return text.replace(ANSI_REGEX, '')\n}\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAMO,MAAM,aAAa;AACnB,MAAM,YAAY;AAClB,MAAM,WAAW;AACjB,MAAM,cAAc;AACpB,MAAM,iBAAiB;AACvB,MAAM,qBAAqB;AAIlC,MAAM,aAAa;AAAA;AAWZ,SAAS,UAAU,SAA2C;AACnE,QAAM,EAAE,UAAU,IAAI,WAAW,CAAC;AAElC,QAAM,KAAK;AAEX,QAAM,MAAM,0BAA0B,EAAE;AAExC,QAAM,MACJ;AACF,QAAM,UAAU,GAAG,GAAG,IAAI,GAAG;AAC7B,SAAO,IAAI,OAAO,SAAS,YAAY,SAAY,GAAG;AACxD;AAAA;AAOO,SAAS,UAAU,MAAsB;AAC9C,SAAO,KAAK,QAAQ,YAAY,EAAE;AACpC;",
+  "names": []
+}

package/dist/argv/flags.d.ts

@@ -0,0 +1,199 @@
+/**
+ * Common flag utilities for Socket CLI applications.
+ * Provides consistent flag checking across all Socket projects.
+ */
+/**
+ * Flag values object from parsed arguments.
+ */
+export interface FlagValues {
+    [key: string]: unknown;
+    quiet?: boolean;
+    silent?: boolean;
+    verbose?: boolean;
+    help?: boolean;
+    all?: boolean;
+    fix?: boolean;
+    force?: boolean;
+    'dry-run'?: boolean;
+    json?: boolean;
+    debug?: boolean;
+    watch?: boolean;
+    coverage?: boolean;
+    cover?: boolean;
+    update?: boolean;
+    staged?: boolean;
+    changed?: boolean;
+}
+/**
+ * Accepted input types for flag checking functions.
+ * Can be parsed flag values, process.argv array, or undefined (uses process.argv).
+ */
+export type FlagInput = FlagValues | string[] | readonly string[] | undefined;
+/**
+ * Get the appropriate log level based on flags.
+ * Returns 'silent', 'error', 'warn', 'info', 'verbose', or 'debug'.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function getLogLevel(input?: FlagInput): string;
+/**
+ * Check if all flag is set.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isAll(input?: FlagInput): boolean;
+/**
+ * Check if changed files mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isChanged(input?: FlagInput): boolean;
+/**
+ * Check if coverage mode is enabled.
+ * Checks both 'coverage' and 'cover' flags.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isCoverage(input?: FlagInput): boolean;
+/**
+ * Check if debug mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isDebug(input?: FlagInput): boolean;
+/**
+ * Check if dry-run mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isDryRun(input?: FlagInput): boolean;
+/**
+ * Check if fix/autofix mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isFix(input?: FlagInput): boolean;
+/**
+ * Check if force mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isForce(input?: FlagInput): boolean;
+/**
+ * Check if help flag is set.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isHelp(input?: FlagInput): boolean;
+/**
+ * Check if JSON output is requested.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isJson(input?: FlagInput): boolean;
+/**
+ * Check if quiet/silent mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isQuiet(input?: FlagInput): boolean;
+/**
+ * Check if staged files mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isStaged(input?: FlagInput): boolean;
+/**
+ * Check if update mode is enabled (for snapshots, dependencies, etc).
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isUpdate(input?: FlagInput): boolean;
+/**
+ * Check if verbose mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isVerbose(input?: FlagInput): boolean;
+/**
+ * Check if watch mode is enabled.
+ * Accepts FlagValues object, process.argv array, or undefined (uses process.argv).
+ */
+export declare function isWatch(input?: FlagInput): boolean;
+/**
+ * Common flag definitions for parseArgs configuration.
+ * Can be spread into parseArgs options for consistency.
+ */
+export declare const COMMON_FLAGS: {
+    all: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    changed: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    coverage: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    cover: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    debug: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    "dry-run": {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    fix: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    force: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    help: {
+        type: "boolean";
+        default: boolean;
+        short: string;
+        description: string;
+    };
+    json: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    quiet: {
+        type: "boolean";
+        default: boolean;
+        short: string;
+        description: string;
+    };
+    silent: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    staged: {
+        type: "boolean";
+        default: boolean;
+        description: string;
+    };
+    update: {
+        type: "boolean";
+        default: boolean;
+        short: string;
+        description: string;
+    };
+    verbose: {
+        type: "boolean";
+        default: boolean;
+        short: string;
+        description: string;
+    };
+    watch: {
+        type: "boolean";
+        default: boolean;
+        short: string;
+        description: string;
+    };
+};