@socketsecurity/lib 1.1.2 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (23) hide show
  1. package/CHANGELOG.md +28 -0
  2. package/dist/agent.js +3 -0
  3. package/dist/agent.js.map +2 -2
  4. package/dist/bin.js +7 -5
  5. package/dist/bin.js.map +2 -2
  6. package/dist/dlx-binary.d.ts +1 -0
  7. package/dist/dlx-binary.js +1 -1
  8. package/dist/dlx-binary.js.map +2 -2
  9. package/dist/dlx-package.d.ts +35 -0
  10. package/dist/dlx-package.js +151 -0
  11. package/dist/dlx-package.js.map +7 -0
  12. package/dist/external/libnpmpack.js +70 -72
  13. package/dist/fs.d.ts +48 -0
  14. package/dist/fs.js +18 -0
  15. package/dist/fs.js.map +2 -2
  16. package/dist/git.js +3 -2
  17. package/dist/git.js.map +2 -2
  18. package/dist/path.js +11 -3
  19. package/dist/path.js.map +2 -2
  20. package/dist/paths.js.map +2 -2
  21. package/dist/temporary-executor.js +2 -1
  22. package/dist/temporary-executor.js.map +2 -2
  23. package/package.json +5 -1
package/CHANGELOG.md CHANGED
@@ -5,6 +5,34 @@ All notable changes to this project will be documented in this file.
5
5
  The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
6
6
  and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
7
7
 
8
+ ## [1.3.0](https://github.com/SocketDev/socket-lib/releases/tag/v1.3.0) - 2025-10-23
9
+
10
+ ### Added
11
+
12
+ - Added `validateFiles()` utility function to `fs` module for defensive file access validation
13
+ - Returns `ValidateFilesResult` with `validPaths` and `invalidPaths` arrays
14
+ - Filters out unreadable files before processing (common with Yarn Berry PnP virtual filesystem, pnpm symlinks)
15
+ - Prevents ENOENT errors when files exist in glob results but are not accessible
16
+ - Comprehensive test coverage for all validation scenarios
17
+
18
+ ## [1.2.0](https://github.com/SocketDev/socket-lib/releases/tag/v1.2.0) - 2025-10-23
19
+
20
+ ### Added
21
+
22
+ - Added `dlx-package` module for installing and executing npm packages directly
23
+ - Content-addressed caching using SHA256 hash (like npm's _npx)
24
+ - Auto-force for version ranges (^, ~, >, <) to get latest within range
25
+ - Cross-platform support with comprehensive tests (30 tests)
26
+ - Parses scoped and unscoped package specs correctly
27
+ - Resolves binaries from package.json bin field
28
+
29
+ ### Changed
30
+
31
+ - Unified DLX storage under `~/.socket/_dlx/` directory
32
+ - Binary downloads now use `~/.socket/_dlx/` instead of non-existent cache path
33
+ - Both npm packages and binaries share parent directory with content-addressed hashing
34
+ - Updated paths.ts documentation to clarify unified directory structure
35
+
8
36
  ## [1.1.2] - 2025-10-23
9
37
 
10
38
  ### Fixed
package/dist/agent.js CHANGED
@@ -34,6 +34,7 @@ __export(agent_exports, {
34
34
  });
35
35
  module.exports = __toCommonJS(agent_exports);
36
36
  var import_ci = require("#env/ci");
37
+ var import_platform = require("#constants/platform");
37
38
  var import_bin = require("./bin");
38
39
  var import_debug = require("./debug");
39
40
  var import_fs = require("./fs");
@@ -105,6 +106,8 @@ function execNpm(args, options) {
105
106
  ],
106
107
  {
107
108
  __proto__: null,
109
+ // On Windows, npm is a .cmd file that requires shell to execute.
110
+ shell: import_platform.WIN32,
108
111
  ...options
109
112
  }
110
113
  );
package/dist/agent.js.map CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "version": 3,
3
3
  "sources": ["../src/agent.ts"],
4
- "sourcesContent": ["/**\n * @fileoverview Package manager agent for executing npm, pnpm, and yarn commands.\n * Provides cross-platform utilities with optimized flags and security defaults.\n *\n * SECURITY: Array-Based Arguments Prevent Command Injection\n *\n * All functions in this module (execNpm, execPnpm, execYarn) use array-based\n * arguments when calling spawn(). This is the PRIMARY DEFENSE against command\n * injection attacks.\n *\n * When arguments are passed as an array:\n * spawn(cmd, ['install', packageName, '--flag'], options)\n *\n * Node.js handles escaping automatically. Each argument is passed directly to\n * the OS without shell interpretation. Shell metacharacters like ; | & $ ( )\n * are treated as LITERAL STRINGS, not as commands.\n *\n * Example: If packageName = \"lodash; rm -rf /\", the package manager will try to\n * install a package literally named \"lodash; rm -rf /\" (which doesn't exist),\n * rather than executing the malicious command.\n *\n * This approach is secure even when shell: true is used on Windows for .cmd\n * file resolution, because Node.js properly escapes each array element.\n */\n\nimport { CI } from '#env/ci'\n\nimport { execBin } from './bin'\nimport { isDebug } from './debug'\nimport { findUpSync } from './fs'\nimport { getOwn } from './objects'\nimport type { SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\n// Note: npm flag checking is done with regex patterns in the is*Flag functions below.\n\nconst pnpmIgnoreScriptsFlags = new Set([\n '--ignore-scripts',\n '--no-ignore-scripts',\n])\n\nconst pnpmFrozenLockfileFlags = new Set([\n '--frozen-lockfile',\n '--no-frozen-lockfile',\n])\n\nconst pnpmInstallCommands = new Set(['install', 'i'])\n\n// Commands that support --ignore-scripts flag in pnpm:\n// Installation-related: install, add, update, remove, link, unlink, import, rebuild.\nconst pnpmInstallLikeCommands = new Set([\n 'install',\n 'i',\n 'add',\n 'update',\n 'up',\n 'remove',\n 'rm',\n 'link',\n 'ln',\n 'unlink',\n 'import',\n 'rebuild',\n 'rb',\n])\n\n// Commands that support --ignore-scripts flag in yarn:\n// Similar to npm/pnpm: installation-related commands.\nconst yarnInstallLikeCommands = new Set([\n 'install',\n 'add',\n 'upgrade',\n 'remove',\n 'link',\n 'unlink',\n 'import',\n])\n\n/**\n * Execute npm commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to spawn().\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function execNpm(args: string[], options?: SpawnOptions | undefined) {\n const useDebug = isDebug()\n const terminatorPos = args.indexOf('--')\n const npmArgs = (\n terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n ).filter(\n (a: string) =>\n !isNpmAuditFlag(a) && !isNpmFundFlag(a) && !isNpmProgressFlag(a),\n )\n const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n const logLevelArgs =\n // The default value of loglevel is \"notice\". We default to \"warn\" which is\n // one level quieter.\n useDebug || npmArgs.some(isNpmLoglevelFlag) ? [] : ['--loglevel', 'warn']\n // SECURITY: Array-based arguments prevent command injection. Each element is\n // passed directly to the OS without shell interpretation.\n //\n // NOTE: We don't apply hardening flags to npm because:\n // 1. npm is a trusted system tool installed with Node.js\n // 2. npm requires full system access (filesystem, network, child processes)\n // 3. Hardening flags would prevent npm from functioning (even with --allow-* grants)\n // 4. The permission model is intended for untrusted user code, not package managers\n //\n // We also use the npm binary wrapper instead of calling cli.js directly because\n // cli.js exports a function that needs to be invoked with process as an argument.\n const npmBin = /*@__PURE__*/ require('../constants/agents').NPM_BIN_PATH\n return spawn(\n npmBin,\n [\n // Even though '--loglevel=error' is passed npm will still run through\n // code paths for 'audit' and 'fund' unless '--no-audit' and '--no-fund'\n // flags are passed.\n '--no-audit',\n '--no-fund',\n // Add `--no-progress` and `--silent` flags to fix input being swallowed\n // by the spinner when running the command with recent versions of npm.\n '--no-progress',\n // Add '--loglevel=error' if a loglevel flag is not provided and the\n // SOCKET_DEBUG environment variable is not truthy.\n ...logLevelArgs,\n ...npmArgs,\n ...otherArgs,\n ],\n {\n __proto__: null,\n ...options,\n } as SpawnOptions,\n )\n}\n\nexport interface PnpmOptions extends SpawnOptions {\n allowLockfileUpdate?: boolean\n}\n\n/**\n * Execute pnpm commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to execBin().\n */\n/*@__NO_SIDE_EFFECTS__*/\n\nexport function execPnpm(args: string[], options?: PnpmOptions | undefined) {\n const { allowLockfileUpdate, ...extBinOpts } = {\n __proto__: null,\n ...options,\n } as PnpmOptions\n const useDebug = isDebug()\n const terminatorPos = args.indexOf('--')\n const pnpmArgs = (\n terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n ).filter((a: string) => !isNpmProgressFlag(a))\n const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n\n const firstArg = pnpmArgs[0]\n const supportsIgnoreScripts = firstArg\n ? pnpmInstallLikeCommands.has(firstArg)\n : false\n\n // pnpm uses --loglevel for all commands.\n const logLevelArgs =\n useDebug || pnpmArgs.some(isPnpmLoglevelFlag) ? [] : ['--loglevel', 'warn']\n\n // Only add --ignore-scripts for commands that support it.\n const hasIgnoreScriptsFlag = pnpmArgs.some(isPnpmIgnoreScriptsFlag)\n const ignoreScriptsArgs =\n !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ['--ignore-scripts']\n\n // In CI environments, pnpm uses --frozen-lockfile by default which prevents lockfile updates.\n // For commands that need to update the lockfile (like install with new packages/overrides),\n // we need to explicitly add --no-frozen-lockfile in CI mode if not already present.\n const frozenLockfileArgs = []\n if (\n CI &&\n allowLockfileUpdate &&\n firstArg &&\n isPnpmInstallCommand(firstArg) &&\n !pnpmArgs.some(isPnpmFrozenLockfileFlag)\n ) {\n frozenLockfileArgs.push('--no-frozen-lockfile')\n }\n\n // Note: pnpm doesn't have a --no-progress flag. It uses --reporter instead.\n // We removed --no-progress as it causes \"Unknown option\" errors with pnpm.\n\n // SECURITY: Array-based arguments prevent command injection. Each element is\n // passed directly to the OS without shell interpretation.\n return execBin(\n 'pnpm',\n [\n // Add '--loglevel=warn' if a loglevel flag is not provided and debug is off.\n ...logLevelArgs,\n // Add '--ignore-scripts' by default for security (only for installation commands).\n ...ignoreScriptsArgs,\n // Add '--no-frozen-lockfile' in CI when lockfile updates are needed.\n ...frozenLockfileArgs,\n ...pnpmArgs,\n ...otherArgs,\n ],\n extBinOpts,\n )\n}\n\n/**\n * Execute yarn commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to execBin().\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function execYarn(\n args: string[],\n options?: import('./spawn').SpawnOptions,\n) {\n const useDebug = isDebug()\n const terminatorPos = args.indexOf('--')\n const yarnArgs = (\n terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n ).filter((a: string) => !isNpmProgressFlag(a))\n const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n\n const firstArg = yarnArgs[0]\n const supportsIgnoreScripts = firstArg\n ? yarnInstallLikeCommands.has(firstArg)\n : false\n\n // Yarn uses --silent flag for quieter output.\n const logLevelArgs =\n useDebug || yarnArgs.some(isNpmLoglevelFlag) ? [] : ['--silent']\n\n // Only add --ignore-scripts for commands that support it.\n const hasIgnoreScriptsFlag = yarnArgs.some(isPnpmIgnoreScriptsFlag)\n const ignoreScriptsArgs =\n !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ['--ignore-scripts']\n\n // SECURITY: Array-based arguments prevent command injection. Each element is\n // passed directly to the OS without shell interpretation.\n return execBin(\n 'yarn',\n [\n // Add '--silent' if a loglevel flag is not provided and debug is off.\n ...logLevelArgs,\n // Add '--ignore-scripts' by default for security (only for installation commands).\n ...ignoreScriptsArgs,\n ...yarnArgs,\n ...otherArgs,\n ],\n {\n __proto__: null,\n ...options,\n } as SpawnOptions,\n )\n}\n\n/**\n * Check if a command argument is an npm audit flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmAuditFlag(cmdArg: string): boolean {\n return /^--(no-)?audit(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm fund flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmFundFlag(cmdArg: string): boolean {\n return /^--(no-)?fund(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm loglevel flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmLoglevelFlag(cmdArg: string): boolean {\n // https://docs.npmjs.com/cli/v11/using-npm/logging#setting-log-levels\n if (/^--loglevel(=.*)?$/.test(cmdArg)) {\n return true\n }\n // Check for long form flags\n if (/^--(silent|verbose|info|warn|error|quiet)$/.test(cmdArg)) {\n return true\n }\n // Check for shorthand flags\n return /^-(s|q|d|dd|ddd|v)$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm node-options flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmNodeOptionsFlag(cmdArg: string): boolean {\n // https://docs.npmjs.com/cli/v9/using-npm/config#node-options\n return /^--node-options(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm progress flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmProgressFlag(cmdArg: string): boolean {\n return /^--(no-)?progress(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm ignore-scripts flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmIgnoreScriptsFlag(cmdArg: string): boolean {\n return pnpmIgnoreScriptsFlags.has(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm frozen-lockfile flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmFrozenLockfileFlag(cmdArg: string): boolean {\n return pnpmFrozenLockfileFlags.has(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm install command.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmInstallCommand(cmdArg: string): boolean {\n return pnpmInstallCommands.has(cmdArg)\n}\n\n/**\n * Alias for isNpmLoglevelFlag for pnpm usage.\n */\nexport const isPnpmLoglevelFlag = isNpmLoglevelFlag\n\n/**\n * Execute a package.json script using the appropriate package manager.\n * Automatically detects pnpm, yarn, or npm based on lockfiles.\n */\nexport interface ExecScriptOptions extends SpawnOptions {\n prepost?: boolean | undefined\n}\n\n/*@__NO_SIDE_EFFECTS__*/\nexport function execScript(\n scriptName: string,\n args?: string[] | readonly string[] | ExecScriptOptions | undefined,\n options?: ExecScriptOptions | undefined,\n) {\n // Handle overloaded signatures: execScript(name, options) or execScript(name, args, options).\n let resolvedOptions: ExecScriptOptions | undefined\n let resolvedArgs: string[]\n if (!Array.isArray(args) && args !== null && typeof args === 'object') {\n resolvedOptions = args as ExecScriptOptions\n resolvedArgs = []\n } else {\n resolvedOptions = options\n resolvedArgs = (args || []) as string[]\n }\n const { prepost, ...spawnOptions } = {\n __proto__: null,\n ...resolvedOptions,\n } as ExecScriptOptions\n\n // If shell: true is passed, run the command directly as a shell command.\n if (spawnOptions.shell === true) {\n return spawn(scriptName, resolvedArgs, spawnOptions)\n }\n\n const useNodeRun =\n !prepost && /*@__PURE__*/ require('../constants/node').SUPPORTS_NODE_RUN\n\n // Detect package manager based on lockfile by traversing up from current directory.\n const cwd =\n (getOwn(spawnOptions, 'cwd') as string | undefined) ?? process.cwd()\n\n // Check for pnpm-lock.yaml.\n const pnpmLockPath = findUpSync(\n /*@__INLINE__*/ require('../constants/agents').PNPM_LOCK_YAML,\n { cwd },\n ) as string | undefined\n if (pnpmLockPath) {\n return execPnpm(['run', scriptName, ...resolvedArgs], spawnOptions)\n }\n\n // Check for package-lock.json.\n // When in an npm workspace, use npm run to ensure workspace binaries are available.\n const packageLockPath = findUpSync(\n /*@__INLINE__*/ require('../constants/agents').PACKAGE_LOCK_JSON,\n { cwd },\n ) as string | undefined\n if (packageLockPath) {\n return execNpm(['run', scriptName, ...resolvedArgs], spawnOptions)\n }\n\n // Check for yarn.lock.\n const yarnLockPath = findUpSync(\n /*@__INLINE__*/ require('../constants/agents').YARN_LOCK,\n { cwd },\n ) as string | undefined\n if (yarnLockPath) {\n return execYarn(['run', scriptName, ...resolvedArgs], spawnOptions)\n }\n\n return spawn(\n /*@__PURE__*/ require('../constants/node').getExecPath(),\n [\n .../*@__PURE__*/ require('../constants/node').getNodeNoWarningsFlags(),\n ...(useNodeRun\n ? ['--run']\n : [\n /*@__PURE__*/ require('../constants/agents').NPM_REAL_EXEC_PATH,\n 'run',\n ]),\n scriptName,\n ...resolvedArgs,\n ],\n {\n ...spawnOptions,\n },\n )\n}\n"],
5
- "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAyBA,gBAAmB;AAEnB,iBAAwB;AACxB,mBAAwB;AACxB,gBAA2B;AAC3B,qBAAuB;AAEvB,mBAAsB;AAItB,MAAM,yBAAyB,oBAAI,IAAI;AAAA,EACrC;AAAA,EACA;AACF,CAAC;AAED,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AACF,CAAC;AAED,MAAM,sBAAsB,oBAAI,IAAI,CAAC,WAAW,GAAG,CAAC;AAIpD,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAID,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAAA;AASM,SAAS,QAAQ,MAAgB,SAAoC;AAC1E,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,WACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD;AAAA,IACA,CAAC,MACC,CAAC,+BAAe,CAAC,KAAK,CAAC,8BAAc,CAAC,KAAK,CAAC,kCAAkB,CAAC;AAAA,EACnE;AACA,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AACtE,QAAM;AAAA;AAAA;AAAA,IAGJ,YAAY,QAAQ,KAAK,iBAAiB,IAAI,CAAC,IAAI,CAAC,cAAc,MAAM;AAAA;AAY1E,QAAM,SAAuB,QAAQ,qBAAqB,EAAE;AAC5D,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA;AAAA;AAAA,MAIE;AAAA,MACA;AAAA;AAAA;AAAA,MAGA;AAAA;AAAA;AAAA,MAGA,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,WAAW;AAAA,MACX,GAAG;AAAA,IACL;AAAA,EACF;AACF;AAAA;AAcO,SAAS,SAAS,MAAgB,SAAmC;AAC1E,QAAM,EAAE,qBAAqB,GAAG,WAAW,IAAI;AAAA,IAC7C,WAAW;AAAA,IACX,GAAG;AAAA,EACL;AACA,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,YACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD,OAAO,CAAC,MAAc,CAAC,kCAAkB,CAAC,CAAC;AAC7C,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AAEtE,QAAM,WAAW,SAAS,CAAC;AAC3B,QAAM,wBAAwB,WAC1B,wBAAwB,IAAI,QAAQ,IACpC;AAGJ,QAAM,eACJ,YAAY,SAAS,KAAK,kBAAkB,IAAI,CAAC,IAAI,CAAC,cAAc,MAAM;AAG5E,QAAM,uBAAuB,SAAS,KAAK,uBAAuB;AAClE,QAAM,oBACJ,CAAC,yBAAyB,uBAAuB,CAAC,IAAI,CAAC,kBAAkB;AAK3E,QAAM,qBAAqB,CAAC;AAC5B,MACE,gBACA,uBACA,YACA,qCAAqB,QAAQ,KAC7B,CAAC,SAAS,KAAK,wBAAwB,GACvC;AACA,uBAAmB,KAAK,sBAAsB;AAAA,EAChD;AAOA,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA,MAEE,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,EACF;AACF;AAAA;AASO,SAAS,SACd,MACA,SACA;AACA,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,YACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD,OAAO,CAAC,MAAc,CAAC,kCAAkB,CAAC,CAAC;AAC7C,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AAEtE,QAAM,WAAW,SAAS,CAAC;AAC3B,QAAM,wBAAwB,WAC1B,wBAAwB,IAAI,QAAQ,IACpC;AAGJ,QAAM,eACJ,YAAY,SAAS,KAAK,iBAAiB,IAAI,CAAC,IAAI,CAAC,UAAU;AAGjE,QAAM,uBAAuB,SAAS,KAAK,uBAAuB;AAClE,QAAM,oBACJ,CAAC,yBAAyB,uBAAuB,CAAC,IAAI,CAAC,kBAAkB;AAI3E,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA,MAEE,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,WAAW;AAAA,MACX,GAAG;AAAA,IACL;AAAA,EACF;AACF;AAAA;AAMO,SAAS,eAAe,QAAyB;AACtD,SAAO,wBAAwB,KAAK,MAAM;AAC5C;AAAA;AAMO,SAAS,cAAc,QAAyB;AACrD,SAAO,uBAAuB,KAAK,MAAM;AAC3C;AAAA;AAMO,SAAS,kBAAkB,QAAyB;AAEzD,MAAI,qBAAqB,KAAK,MAAM,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,MAAI,6CAA6C,KAAK,MAAM,GAAG;AAC7D,WAAO;AAAA,EACT;AAEA,SAAO,sBAAsB,KAAK,MAAM;AAC1C;AAAA;AAMO,SAAS,qBAAqB,QAAyB;AAE5D,SAAO,yBAAyB,KAAK,MAAM;AAC7C;AAAA;AAMO,SAAS,kBAAkB,QAAyB;AACzD,SAAO,2BAA2B,KAAK,MAAM;AAC/C;AAAA;AAMO,SAAS,wBAAwB,QAAyB;AAC/D,SAAO,uBAAuB,IAAI,MAAM;AAC1C;AAAA;AAMO,SAAS,yBAAyB,QAAyB;AAChE,SAAO,wBAAwB,IAAI,MAAM;AAC3C;AAAA;AAMO,SAAS,qBAAqB,QAAyB;AAC5D,SAAO,oBAAoB,IAAI,MAAM;AACvC;AAKO,MAAM,qBAAqB;AAAA;AAW3B,SAAS,WACd,YACA,MACA,SACA;AAEA,MAAI;AACJ,MAAI;AACJ,MAAI,CAAC,MAAM,QAAQ,IAAI,KAAK,SAAS,QAAQ,OAAO,SAAS,UAAU;AACrE,sBAAkB;AAClB,mBAAe,CAAC;AAAA,EAClB,OAAO;AACL,sBAAkB;AAClB,mBAAgB,QAAQ,CAAC;AAAA,EAC3B;AACA,QAAM,EAAE,SAAS,GAAG,aAAa,IAAI;AAAA,IACnC,WAAW;AAAA,IACX,GAAG;AAAA,EACL;AAGA,MAAI,aAAa,UAAU,MAAM;AAC/B,eAAO,oBAAM,YAAY,cAAc,YAAY;AAAA,EACrD;AAEA,QAAM,aACJ,CAAC,WAAyB,QAAQ,mBAAmB,EAAE;AAGzD,QAAM,UACH,uBAAO,cAAc,KAAK,KAA4B,QAAQ,IAAI;AAGrE,QAAM,mBAAe;AAAA;AAAA,IACH,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,cAAc;AAChB,WAAO,yBAAS,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACpE;AAIA,QAAM,sBAAkB;AAAA;AAAA,IACN,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,iBAAiB;AACnB,WAAO,wBAAQ,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACnE;AAGA,QAAM,mBAAe;AAAA;AAAA,IACH,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,cAAc;AAChB,WAAO,yBAAS,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACpE;AAEA,aAAO;AAAA,IACS,wBAAQ,mBAAmB,EAAE,YAAY;AAAA,IACvD;AAAA,MACE,GAAiB,wBAAQ,mBAAmB,EAAE,uBAAuB;AAAA,MACrE,GAAI,aACA,CAAC,OAAO,IACR;AAAA,QACgB,QAAQ,qBAAqB,EAAE;AAAA,QAC7C;AAAA,MACF;AAAA,MACJ;AAAA,MACA,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,GAAG;AAAA,IACL;AAAA,EACF;AACF;",
4
+ "sourcesContent": ["/**\n * @fileoverview Package manager agent for executing npm, pnpm, and yarn commands.\n * Provides cross-platform utilities with optimized flags and security defaults.\n *\n * SECURITY: Array-Based Arguments Prevent Command Injection\n *\n * All functions in this module (execNpm, execPnpm, execYarn) use array-based\n * arguments when calling spawn(). This is the PRIMARY DEFENSE against command\n * injection attacks.\n *\n * When arguments are passed as an array:\n * spawn(cmd, ['install', packageName, '--flag'], options)\n *\n * Node.js handles escaping automatically. Each argument is passed directly to\n * the OS without shell interpretation. Shell metacharacters like ; | & $ ( )\n * are treated as LITERAL STRINGS, not as commands.\n *\n * Example: If packageName = \"lodash; rm -rf /\", the package manager will try to\n * install a package literally named \"lodash; rm -rf /\" (which doesn't exist),\n * rather than executing the malicious command.\n *\n * This approach is secure even when shell: true is used on Windows for .cmd\n * file resolution, because Node.js properly escapes each array element.\n */\n\nimport { CI } from '#env/ci'\n\nimport { WIN32 } from '#constants/platform'\nimport { execBin } from './bin'\nimport { isDebug } from './debug'\nimport { findUpSync } from './fs'\nimport { getOwn } from './objects'\nimport type { SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\n// Note: npm flag checking is done with regex patterns in the is*Flag functions below.\n\nconst pnpmIgnoreScriptsFlags = new Set([\n '--ignore-scripts',\n '--no-ignore-scripts',\n])\n\nconst pnpmFrozenLockfileFlags = new Set([\n '--frozen-lockfile',\n '--no-frozen-lockfile',\n])\n\nconst pnpmInstallCommands = new Set(['install', 'i'])\n\n// Commands that support --ignore-scripts flag in pnpm:\n// Installation-related: install, add, update, remove, link, unlink, import, rebuild.\nconst pnpmInstallLikeCommands = new Set([\n 'install',\n 'i',\n 'add',\n 'update',\n 'up',\n 'remove',\n 'rm',\n 'link',\n 'ln',\n 'unlink',\n 'import',\n 'rebuild',\n 'rb',\n])\n\n// Commands that support --ignore-scripts flag in yarn:\n// Similar to npm/pnpm: installation-related commands.\nconst yarnInstallLikeCommands = new Set([\n 'install',\n 'add',\n 'upgrade',\n 'remove',\n 'link',\n 'unlink',\n 'import',\n])\n\n/**\n * Execute npm commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to spawn().\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function execNpm(args: string[], options?: SpawnOptions | undefined) {\n const useDebug = isDebug()\n const terminatorPos = args.indexOf('--')\n const npmArgs = (\n terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n ).filter(\n (a: string) =>\n !isNpmAuditFlag(a) && !isNpmFundFlag(a) && !isNpmProgressFlag(a),\n )\n const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n const logLevelArgs =\n // The default value of loglevel is \"notice\". We default to \"warn\" which is\n // one level quieter.\n useDebug || npmArgs.some(isNpmLoglevelFlag) ? [] : ['--loglevel', 'warn']\n // SECURITY: Array-based arguments prevent command injection. Each element is\n // passed directly to the OS without shell interpretation.\n //\n // NOTE: We don't apply hardening flags to npm because:\n // 1. npm is a trusted system tool installed with Node.js\n // 2. npm requires full system access (filesystem, network, child processes)\n // 3. Hardening flags would prevent npm from functioning (even with --allow-* grants)\n // 4. The permission model is intended for untrusted user code, not package managers\n //\n // We also use the npm binary wrapper instead of calling cli.js directly because\n // cli.js exports a function that needs to be invoked with process as an argument.\n const npmBin = /*@__PURE__*/ require('../constants/agents').NPM_BIN_PATH\n return spawn(\n npmBin,\n [\n // Even though '--loglevel=error' is passed npm will still run through\n // code paths for 'audit' and 'fund' unless '--no-audit' and '--no-fund'\n // flags are passed.\n '--no-audit',\n '--no-fund',\n // Add `--no-progress` and `--silent` flags to fix input being swallowed\n // by the spinner when running the command with recent versions of npm.\n '--no-progress',\n // Add '--loglevel=error' if a loglevel flag is not provided and the\n // SOCKET_DEBUG environment variable is not truthy.\n ...logLevelArgs,\n ...npmArgs,\n ...otherArgs,\n ],\n {\n __proto__: null,\n // On Windows, npm is a .cmd file that requires shell to execute.\n shell: WIN32,\n ...options,\n } as SpawnOptions,\n )\n}\n\nexport interface PnpmOptions extends SpawnOptions {\n allowLockfileUpdate?: boolean\n}\n\n/**\n * Execute pnpm commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to execBin().\n */\n/*@__NO_SIDE_EFFECTS__*/\n\nexport function execPnpm(args: string[], options?: PnpmOptions | undefined) {\n const { allowLockfileUpdate, ...extBinOpts } = {\n __proto__: null,\n ...options,\n } as PnpmOptions\n const useDebug = isDebug()\n const terminatorPos = args.indexOf('--')\n const pnpmArgs = (\n terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n ).filter((a: string) => !isNpmProgressFlag(a))\n const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n\n const firstArg = pnpmArgs[0]\n const supportsIgnoreScripts = firstArg\n ? pnpmInstallLikeCommands.has(firstArg)\n : false\n\n // pnpm uses --loglevel for all commands.\n const logLevelArgs =\n useDebug || pnpmArgs.some(isPnpmLoglevelFlag) ? [] : ['--loglevel', 'warn']\n\n // Only add --ignore-scripts for commands that support it.\n const hasIgnoreScriptsFlag = pnpmArgs.some(isPnpmIgnoreScriptsFlag)\n const ignoreScriptsArgs =\n !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ['--ignore-scripts']\n\n // In CI environments, pnpm uses --frozen-lockfile by default which prevents lockfile updates.\n // For commands that need to update the lockfile (like install with new packages/overrides),\n // we need to explicitly add --no-frozen-lockfile in CI mode if not already present.\n const frozenLockfileArgs = []\n if (\n CI &&\n allowLockfileUpdate &&\n firstArg &&\n isPnpmInstallCommand(firstArg) &&\n !pnpmArgs.some(isPnpmFrozenLockfileFlag)\n ) {\n frozenLockfileArgs.push('--no-frozen-lockfile')\n }\n\n // Note: pnpm doesn't have a --no-progress flag. It uses --reporter instead.\n // We removed --no-progress as it causes \"Unknown option\" errors with pnpm.\n\n // SECURITY: Array-based arguments prevent command injection. Each element is\n // passed directly to the OS without shell interpretation.\n return execBin(\n 'pnpm',\n [\n // Add '--loglevel=warn' if a loglevel flag is not provided and debug is off.\n ...logLevelArgs,\n // Add '--ignore-scripts' by default for security (only for installation commands).\n ...ignoreScriptsArgs,\n // Add '--no-frozen-lockfile' in CI when lockfile updates are needed.\n ...frozenLockfileArgs,\n ...pnpmArgs,\n ...otherArgs,\n ],\n extBinOpts,\n )\n}\n\n/**\n * Execute yarn commands with optimized flags and settings.\n *\n * SECURITY: Uses array-based arguments to prevent command injection. All elements\n * in the args array are properly escaped by Node.js when passed to execBin().\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function execYarn(\n args: string[],\n options?: import('./spawn').SpawnOptions,\n) {\n const useDebug = isDebug()\n const terminatorPos = args.indexOf('--')\n const yarnArgs = (\n terminatorPos === -1 ? args : args.slice(0, terminatorPos)\n ).filter((a: string) => !isNpmProgressFlag(a))\n const otherArgs = terminatorPos === -1 ? [] : args.slice(terminatorPos)\n\n const firstArg = yarnArgs[0]\n const supportsIgnoreScripts = firstArg\n ? yarnInstallLikeCommands.has(firstArg)\n : false\n\n // Yarn uses --silent flag for quieter output.\n const logLevelArgs =\n useDebug || yarnArgs.some(isNpmLoglevelFlag) ? [] : ['--silent']\n\n // Only add --ignore-scripts for commands that support it.\n const hasIgnoreScriptsFlag = yarnArgs.some(isPnpmIgnoreScriptsFlag)\n const ignoreScriptsArgs =\n !supportsIgnoreScripts || hasIgnoreScriptsFlag ? [] : ['--ignore-scripts']\n\n // SECURITY: Array-based arguments prevent command injection. Each element is\n // passed directly to the OS without shell interpretation.\n return execBin(\n 'yarn',\n [\n // Add '--silent' if a loglevel flag is not provided and debug is off.\n ...logLevelArgs,\n // Add '--ignore-scripts' by default for security (only for installation commands).\n ...ignoreScriptsArgs,\n ...yarnArgs,\n ...otherArgs,\n ],\n {\n __proto__: null,\n ...options,\n } as SpawnOptions,\n )\n}\n\n/**\n * Check if a command argument is an npm audit flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmAuditFlag(cmdArg: string): boolean {\n return /^--(no-)?audit(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm fund flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmFundFlag(cmdArg: string): boolean {\n return /^--(no-)?fund(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm loglevel flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmLoglevelFlag(cmdArg: string): boolean {\n // https://docs.npmjs.com/cli/v11/using-npm/logging#setting-log-levels\n if (/^--loglevel(=.*)?$/.test(cmdArg)) {\n return true\n }\n // Check for long form flags\n if (/^--(silent|verbose|info|warn|error|quiet)$/.test(cmdArg)) {\n return true\n }\n // Check for shorthand flags\n return /^-(s|q|d|dd|ddd|v)$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm node-options flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmNodeOptionsFlag(cmdArg: string): boolean {\n // https://docs.npmjs.com/cli/v9/using-npm/config#node-options\n return /^--node-options(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is an npm progress flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isNpmProgressFlag(cmdArg: string): boolean {\n return /^--(no-)?progress(=.*)?$/.test(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm ignore-scripts flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmIgnoreScriptsFlag(cmdArg: string): boolean {\n return pnpmIgnoreScriptsFlags.has(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm frozen-lockfile flag.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmFrozenLockfileFlag(cmdArg: string): boolean {\n return pnpmFrozenLockfileFlags.has(cmdArg)\n}\n\n/**\n * Check if a command argument is a pnpm install command.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport function isPnpmInstallCommand(cmdArg: string): boolean {\n return pnpmInstallCommands.has(cmdArg)\n}\n\n/**\n * Alias for isNpmLoglevelFlag for pnpm usage.\n */\nexport const isPnpmLoglevelFlag = isNpmLoglevelFlag\n\n/**\n * Execute a package.json script using the appropriate package manager.\n * Automatically detects pnpm, yarn, or npm based on lockfiles.\n */\nexport interface ExecScriptOptions extends SpawnOptions {\n prepost?: boolean | undefined\n}\n\n/*@__NO_SIDE_EFFECTS__*/\nexport function execScript(\n scriptName: string,\n args?: string[] | readonly string[] | ExecScriptOptions | undefined,\n options?: ExecScriptOptions | undefined,\n) {\n // Handle overloaded signatures: execScript(name, options) or execScript(name, args, options).\n let resolvedOptions: ExecScriptOptions | undefined\n let resolvedArgs: string[]\n if (!Array.isArray(args) && args !== null && typeof args === 'object') {\n resolvedOptions = args as ExecScriptOptions\n resolvedArgs = []\n } else {\n resolvedOptions = options\n resolvedArgs = (args || []) as string[]\n }\n const { prepost, ...spawnOptions } = {\n __proto__: null,\n ...resolvedOptions,\n } as ExecScriptOptions\n\n // If shell: true is passed, run the command directly as a shell command.\n if (spawnOptions.shell === true) {\n return spawn(scriptName, resolvedArgs, spawnOptions)\n }\n\n const useNodeRun =\n !prepost && /*@__PURE__*/ require('../constants/node').SUPPORTS_NODE_RUN\n\n // Detect package manager based on lockfile by traversing up from current directory.\n const cwd =\n (getOwn(spawnOptions, 'cwd') as string | undefined) ?? process.cwd()\n\n // Check for pnpm-lock.yaml.\n const pnpmLockPath = findUpSync(\n /*@__INLINE__*/ require('../constants/agents').PNPM_LOCK_YAML,\n { cwd },\n ) as string | undefined\n if (pnpmLockPath) {\n return execPnpm(['run', scriptName, ...resolvedArgs], spawnOptions)\n }\n\n // Check for package-lock.json.\n // When in an npm workspace, use npm run to ensure workspace binaries are available.\n const packageLockPath = findUpSync(\n /*@__INLINE__*/ require('../constants/agents').PACKAGE_LOCK_JSON,\n { cwd },\n ) as string | undefined\n if (packageLockPath) {\n return execNpm(['run', scriptName, ...resolvedArgs], spawnOptions)\n }\n\n // Check for yarn.lock.\n const yarnLockPath = findUpSync(\n /*@__INLINE__*/ require('../constants/agents').YARN_LOCK,\n { cwd },\n ) as string | undefined\n if (yarnLockPath) {\n return execYarn(['run', scriptName, ...resolvedArgs], spawnOptions)\n }\n\n return spawn(\n /*@__PURE__*/ require('../constants/node').getExecPath(),\n [\n .../*@__PURE__*/ require('../constants/node').getNodeNoWarningsFlags(),\n ...(useNodeRun\n ? ['--run']\n : [\n /*@__PURE__*/ require('../constants/agents').NPM_REAL_EXEC_PATH,\n 'run',\n ]),\n scriptName,\n ...resolvedArgs,\n ],\n {\n ...spawnOptions,\n },\n )\n}\n"],
5
+ "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAyBA,gBAAmB;AAEnB,sBAAsB;AACtB,iBAAwB;AACxB,mBAAwB;AACxB,gBAA2B;AAC3B,qBAAuB;AAEvB,mBAAsB;AAItB,MAAM,yBAAyB,oBAAI,IAAI;AAAA,EACrC;AAAA,EACA;AACF,CAAC;AAED,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AACF,CAAC;AAED,MAAM,sBAAsB,oBAAI,IAAI,CAAC,WAAW,GAAG,CAAC;AAIpD,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAID,MAAM,0BAA0B,oBAAI,IAAI;AAAA,EACtC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAAA;AASM,SAAS,QAAQ,MAAgB,SAAoC;AAC1E,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,WACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD;AAAA,IACA,CAAC,MACC,CAAC,+BAAe,CAAC,KAAK,CAAC,8BAAc,CAAC,KAAK,CAAC,kCAAkB,CAAC;AAAA,EACnE;AACA,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AACtE,QAAM;AAAA;AAAA;AAAA,IAGJ,YAAY,QAAQ,KAAK,iBAAiB,IAAI,CAAC,IAAI,CAAC,cAAc,MAAM;AAAA;AAY1E,QAAM,SAAuB,QAAQ,qBAAqB,EAAE;AAC5D,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA;AAAA;AAAA,MAIE;AAAA,MACA;AAAA;AAAA;AAAA,MAGA;AAAA;AAAA;AAAA,MAGA,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,WAAW;AAAA;AAAA,MAEX,OAAO;AAAA,MACP,GAAG;AAAA,IACL;AAAA,EACF;AACF;AAAA;AAcO,SAAS,SAAS,MAAgB,SAAmC;AAC1E,QAAM,EAAE,qBAAqB,GAAG,WAAW,IAAI;AAAA,IAC7C,WAAW;AAAA,IACX,GAAG;AAAA,EACL;AACA,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,YACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD,OAAO,CAAC,MAAc,CAAC,kCAAkB,CAAC,CAAC;AAC7C,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AAEtE,QAAM,WAAW,SAAS,CAAC;AAC3B,QAAM,wBAAwB,WAC1B,wBAAwB,IAAI,QAAQ,IACpC;AAGJ,QAAM,eACJ,YAAY,SAAS,KAAK,kBAAkB,IAAI,CAAC,IAAI,CAAC,cAAc,MAAM;AAG5E,QAAM,uBAAuB,SAAS,KAAK,uBAAuB;AAClE,QAAM,oBACJ,CAAC,yBAAyB,uBAAuB,CAAC,IAAI,CAAC,kBAAkB;AAK3E,QAAM,qBAAqB,CAAC;AAC5B,MACE,gBACA,uBACA,YACA,qCAAqB,QAAQ,KAC7B,CAAC,SAAS,KAAK,wBAAwB,GACvC;AACA,uBAAmB,KAAK,sBAAsB;AAAA,EAChD;AAOA,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA,MAEE,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,EACF;AACF;AAAA;AASO,SAAS,SACd,MACA,SACA;AACA,QAAM,eAAW,sBAAQ;AACzB,QAAM,gBAAgB,KAAK,QAAQ,IAAI;AACvC,QAAM,YACJ,kBAAkB,KAAK,OAAO,KAAK,MAAM,GAAG,aAAa,GACzD,OAAO,CAAC,MAAc,CAAC,kCAAkB,CAAC,CAAC;AAC7C,QAAM,YAAY,kBAAkB,KAAK,CAAC,IAAI,KAAK,MAAM,aAAa;AAEtE,QAAM,WAAW,SAAS,CAAC;AAC3B,QAAM,wBAAwB,WAC1B,wBAAwB,IAAI,QAAQ,IACpC;AAGJ,QAAM,eACJ,YAAY,SAAS,KAAK,iBAAiB,IAAI,CAAC,IAAI,CAAC,UAAU;AAGjE,QAAM,uBAAuB,SAAS,KAAK,uBAAuB;AAClE,QAAM,oBACJ,CAAC,yBAAyB,uBAAuB,CAAC,IAAI,CAAC,kBAAkB;AAI3E,aAAO;AAAA,IACL;AAAA,IACA;AAAA;AAAA,MAEE,GAAG;AAAA;AAAA,MAEH,GAAG;AAAA,MACH,GAAG;AAAA,MACH,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,WAAW;AAAA,MACX,GAAG;AAAA,IACL;AAAA,EACF;AACF;AAAA;AAMO,SAAS,eAAe,QAAyB;AACtD,SAAO,wBAAwB,KAAK,MAAM;AAC5C;AAAA;AAMO,SAAS,cAAc,QAAyB;AACrD,SAAO,uBAAuB,KAAK,MAAM;AAC3C;AAAA;AAMO,SAAS,kBAAkB,QAAyB;AAEzD,MAAI,qBAAqB,KAAK,MAAM,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,MAAI,6CAA6C,KAAK,MAAM,GAAG;AAC7D,WAAO;AAAA,EACT;AAEA,SAAO,sBAAsB,KAAK,MAAM;AAC1C;AAAA;AAMO,SAAS,qBAAqB,QAAyB;AAE5D,SAAO,yBAAyB,KAAK,MAAM;AAC7C;AAAA;AAMO,SAAS,kBAAkB,QAAyB;AACzD,SAAO,2BAA2B,KAAK,MAAM;AAC/C;AAAA;AAMO,SAAS,wBAAwB,QAAyB;AAC/D,SAAO,uBAAuB,IAAI,MAAM;AAC1C;AAAA;AAMO,SAAS,yBAAyB,QAAyB;AAChE,SAAO,wBAAwB,IAAI,MAAM;AAC3C;AAAA;AAMO,SAAS,qBAAqB,QAAyB;AAC5D,SAAO,oBAAoB,IAAI,MAAM;AACvC;AAKO,MAAM,qBAAqB;AAAA;AAW3B,SAAS,WACd,YACA,MACA,SACA;AAEA,MAAI;AACJ,MAAI;AACJ,MAAI,CAAC,MAAM,QAAQ,IAAI,KAAK,SAAS,QAAQ,OAAO,SAAS,UAAU;AACrE,sBAAkB;AAClB,mBAAe,CAAC;AAAA,EAClB,OAAO;AACL,sBAAkB;AAClB,mBAAgB,QAAQ,CAAC;AAAA,EAC3B;AACA,QAAM,EAAE,SAAS,GAAG,aAAa,IAAI;AAAA,IACnC,WAAW;AAAA,IACX,GAAG;AAAA,EACL;AAGA,MAAI,aAAa,UAAU,MAAM;AAC/B,eAAO,oBAAM,YAAY,cAAc,YAAY;AAAA,EACrD;AAEA,QAAM,aACJ,CAAC,WAAyB,QAAQ,mBAAmB,EAAE;AAGzD,QAAM,UACH,uBAAO,cAAc,KAAK,KAA4B,QAAQ,IAAI;AAGrE,QAAM,mBAAe;AAAA;AAAA,IACH,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,cAAc;AAChB,WAAO,yBAAS,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACpE;AAIA,QAAM,sBAAkB;AAAA;AAAA,IACN,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,iBAAiB;AACnB,WAAO,wBAAQ,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACnE;AAGA,QAAM,mBAAe;AAAA;AAAA,IACH,QAAQ,qBAAqB,EAAE;AAAA,IAC/C,EAAE,IAAI;AAAA,EACR;AACA,MAAI,cAAc;AAChB,WAAO,yBAAS,CAAC,OAAO,YAAY,GAAG,YAAY,GAAG,YAAY;AAAA,EACpE;AAEA,aAAO;AAAA,IACS,wBAAQ,mBAAmB,EAAE,YAAY;AAAA,IACvD;AAAA,MACE,GAAiB,wBAAQ,mBAAmB,EAAE,uBAAuB;AAAA,MACrE,GAAI,aACA,CAAC,OAAO,IACR;AAAA,QACgB,QAAQ,qBAAqB,EAAE;AAAA,QAC7C;AAAA,MACF;AAAA,MACJ;AAAA,MACA,GAAG;AAAA,IACL;AAAA,IACA;AAAA,MACE,GAAG;AAAA,IACL;AAAA,EACF;AACF;",
6
6
  "names": []
7
7
  }
package/dist/bin.js CHANGED
@@ -33,6 +33,7 @@ var import_appdata = require("#env/appdata");
33
33
  var import_home = require("#env/home");
34
34
  var import_localappdata = require("#env/localappdata");
35
35
  var import_xdg_data_home = require("#env/xdg-data-home");
36
+ var import_platform = require("#constants/platform");
36
37
  var import_fs = require("./fs");
37
38
  var import_objects = require("./objects");
38
39
  var import_path = require("./path");
@@ -70,7 +71,10 @@ async function execBin(binPath, args, options) {
70
71
  throw error;
71
72
  }
72
73
  const binCommand = Array.isArray(resolvedPath) ? resolvedPath[0] : resolvedPath;
73
- return await (0, import_spawn.spawn)(binCommand, args ?? [], options);
74
+ return await (0, import_spawn.spawn)(binCommand, args ?? [], {
75
+ shell: import_platform.WIN32,
76
+ ...options
77
+ });
74
78
  }
75
79
  async function whichBin(binName, options) {
76
80
  const which = /* @__PURE__ */ getWhich();
@@ -150,9 +154,8 @@ function findRealNpm() {
150
154
  return "npm";
151
155
  }
152
156
  function findRealPnpm() {
153
- const WIN32 = require("./constants/platform").WIN32;
154
157
  const path = /* @__PURE__ */ getPath();
155
- const commonPaths = WIN32 ? [
158
+ const commonPaths = import_platform.WIN32 ? [
156
159
  // Windows common paths.
157
160
  path?.join(import_appdata.APPDATA, "npm", "pnpm.cmd"),
158
161
  path?.join(import_appdata.APPDATA, "npm", "pnpm"),
@@ -260,8 +263,7 @@ function resolveBinPathSync(binPath) {
260
263
  return voltaBinPath;
261
264
  }
262
265
  }
263
- const WIN32 = require("./constants/platform").WIN32;
264
- if (WIN32) {
266
+ if (import_platform.WIN32) {
265
267
  const hasKnownExt = extLowered === "" || extLowered === ".cmd" || extLowered === ".exe" || extLowered === ".ps1";
266
268
  const isNpmOrNpx = basename === "npm" || basename === "npx";
267
269
  const isPnpmOrYarn = basename === "pnpm" || basename === "yarn";
package/dist/bin.js.map CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "version": 3,
3
3
  "sources": ["../src/bin.ts"],
4
- "sourcesContent": ["/**\n * @fileoverview Binary path resolution and execution utilities for package managers.\n * Provides cross-platform bin path lookup, command execution, and path normalization.\n */\n\nimport { APPDATA } from '#env/appdata'\nimport { HOME } from '#env/home'\nimport { LOCALAPPDATA } from '#env/localappdata'\nimport { XDG_DATA_HOME } from '#env/xdg-data-home'\n\nimport { readJsonSync } from './fs'\nimport { getOwn } from './objects'\nimport { isPath, normalizePath } from './path'\nimport { spawn } from './spawn'\n\nlet _fs: typeof import('node:fs') | undefined\n/**\n * Lazily load the fs module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getFs() {\n if (_fs === undefined) {\n // Use non-'node:' prefixed require to avoid Webpack errors.\n\n _fs = /*@__PURE__*/ require('node:fs')\n }\n return _fs!\n}\n\nlet _path: typeof import('node:path') | undefined\n/**\n * Lazily load the path module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getPath() {\n if (_path === undefined) {\n // Use non-'node:' prefixed require to avoid Webpack errors.\n\n _path = /*@__PURE__*/ require('node:path')\n }\n return _path!\n}\n\nlet _which: typeof import('which') | undefined\n/**\n * Lazily load the which module for finding executables.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getWhich() {\n if (_which === undefined) {\n _which = /*@__PURE__*/ require('./external/which')\n }\n return _which!\n}\n\n/**\n * Execute a binary with the given arguments.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport async function execBin(\n binPath: string,\n args?: string[],\n options?: import('./spawn').SpawnOptions,\n) {\n // Resolve the binary path.\n const resolvedPath = isPath(binPath)\n ? resolveBinPathSync(binPath)\n : await whichBin(binPath)\n\n if (!resolvedPath) {\n const error = new Error(`Binary not found: ${binPath}`) as Error & {\n code: string\n }\n error.code = 'ENOENT'\n throw error\n }\n\n // Execute the binary directly.\n const binCommand = Array.isArray(resolvedPath)\n ? resolvedPath[0]!\n : resolvedPath\n return await spawn(binCommand, args ?? [], options)\n}\n\n/**\n * Find and resolve a binary in the system PATH asynchronously.\n * @template {import('which').Options} T\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport async function whichBin(\n binName: string,\n options?: import('which').Options,\n): Promise<string | string[] | undefined> {\n const which = getWhich()\n // Default to nothrow: true if not specified to return undefined instead of throwing\n const opts = { nothrow: true, ...options }\n // Depending on options `which` may throw if `binName` is not found.\n // With nothrow: true, it returns null when `binName` is not found.\n const result = await which?.(binName, opts)\n\n // When 'all: true' is specified, ensure we always return an array.\n if (options?.all) {\n const paths = Array.isArray(result)\n ? result\n : typeof result === 'string'\n ? [result]\n : undefined\n // If all is true and we have paths, resolve each one.\n return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n }\n\n // If result is undefined (binary not found), return undefined\n if (!result) {\n return undefined\n }\n\n return resolveBinPathSync(result)\n}\n\n/**\n * Find and resolve a binary in the system PATH synchronously.\n * @template {import('which').Options} T\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport function whichBinSync(\n binName: string,\n options?: import('which').Options,\n): string | string[] | undefined {\n // Default to nothrow: true if not specified to return undefined instead of throwing\n const opts = { nothrow: true, ...options }\n // Depending on options `which` may throw if `binName` is not found.\n // With nothrow: true, it returns null when `binName` is not found.\n const result = getWhich()?.sync(binName, opts)\n\n // When 'all: true' is specified, ensure we always return an array.\n if (getOwn(options, 'all')) {\n const paths = Array.isArray(result)\n ? result\n : typeof result === 'string'\n ? [result]\n : undefined\n // If all is true and we have paths, resolve each one.\n return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n }\n\n // If result is undefined (binary not found), return undefined\n if (!result) {\n return undefined\n }\n\n return resolveBinPathSync(result)\n}\n\n/**\n * Check if a directory path contains any shadow bin patterns.\n */\nexport function isShadowBinPath(dirPath: string | undefined): boolean {\n if (!dirPath) {\n return false\n }\n // Check for node_modules/.bin pattern (Unix and Windows)\n const normalized = dirPath.replace(/\\\\/g, '/')\n return normalized.includes('node_modules/.bin')\n}\n\n/**\n * Find the real executable for a binary, bypassing shadow bins.\n */\nexport function findRealBin(\n binName: string,\n commonPaths: string[] = [],\n): string | undefined {\n const fs = getFs()\n const path = getPath()\n const which = getWhich()\n\n // Try common locations first.\n for (const binPath of commonPaths) {\n if (fs?.existsSync(binPath)) {\n return binPath\n }\n }\n\n // Fall back to which.sync if no direct path found.\n const binPath = which?.sync(binName, { nothrow: true })\n if (binPath) {\n const binDir = path?.dirname(binPath)\n\n if (isShadowBinPath(binDir)) {\n // This is likely a shadowed binary, try to find the real one.\n const allPaths = which?.sync(binName, { all: true, nothrow: true }) || []\n // Ensure allPaths is an array.\n const pathsArray = Array.isArray(allPaths)\n ? allPaths\n : typeof allPaths === 'string'\n ? [allPaths]\n : []\n\n for (const altPath of pathsArray) {\n const altDir = path?.dirname(altPath)\n if (!isShadowBinPath(altDir)) {\n return altPath\n }\n }\n }\n return binPath\n }\n // If all else fails, return undefined to indicate binary not found.\n return undefined\n}\n\n/**\n * Find the real npm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealNpm(): string {\n const fs = getFs()\n const path = getPath()\n\n // Try to find npm in the same directory as the node executable.\n const nodeDir = path?.dirname(process.execPath)\n const npmInNodeDir = path?.join(nodeDir, 'npm')\n\n if (fs?.existsSync(npmInNodeDir)) {\n return npmInNodeDir\n }\n\n // Try common npm locations.\n const commonPaths = ['/usr/local/bin/npm', '/usr/bin/npm']\n const result = findRealBin('npm', commonPaths)\n\n // If we found a valid path, return it.\n if (result && fs?.existsSync(result)) {\n return result\n }\n\n // As a last resort, try to use whichBinSync to find npm.\n // This handles cases where npm is installed in non-standard locations.\n const npmPath = whichBinSync('npm', { nothrow: true })\n if (npmPath && typeof npmPath === 'string' && fs?.existsSync(npmPath)) {\n return npmPath\n }\n\n // Return the basic 'npm' and let the system resolve it.\n return 'npm'\n}\n\n/**\n * Find the real pnpm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealPnpm(): string {\n const WIN32 = require('../constants/platform').WIN32\n const path = getPath()\n\n // Try common pnpm locations.\n const commonPaths = WIN32\n ? [\n // Windows common paths.\n path?.join(APPDATA as string, 'npm', 'pnpm.cmd'),\n path?.join(APPDATA as string, 'npm', 'pnpm'),\n path?.join(LOCALAPPDATA as string, 'pnpm', 'pnpm.cmd'),\n path?.join(LOCALAPPDATA as string, 'pnpm', 'pnpm'),\n 'C:\\\\Program Files\\\\nodejs\\\\pnpm.cmd',\n 'C:\\\\Program Files\\\\nodejs\\\\pnpm',\n ].filter(Boolean)\n : [\n // Unix common paths.\n '/usr/local/bin/pnpm',\n '/usr/bin/pnpm',\n path?.join(\n (XDG_DATA_HOME as string) || `${HOME as string}/.local/share`,\n 'pnpm/pnpm',\n ),\n path?.join(HOME as string, '.pnpm/pnpm'),\n ].filter(Boolean)\n\n return findRealBin('pnpm', commonPaths) ?? ''\n}\n\n/**\n * Find the real yarn executable, bypassing any aliases and shadow bins.\n */\nexport function findRealYarn(): string {\n const path = getPath()\n\n // Try common yarn locations.\n const commonPaths = [\n '/usr/local/bin/yarn',\n '/usr/bin/yarn',\n path?.join(HOME as string, '.yarn/bin/yarn'),\n path?.join(HOME as string, '.config/yarn/global/node_modules/.bin/yarn'),\n ].filter(Boolean)\n\n return findRealBin('yarn', commonPaths) ?? ''\n}\n\n/*@__NO_SIDE_EFFECTS__*/\n/**\n * Resolve a binary path to its actual executable file.\n * Handles Windows .cmd wrappers and Unix shell scripts.\n */\nexport function resolveBinPathSync(binPath: string): string {\n const fs = getFs()\n const path = getPath()\n\n // If it's not an absolute path, try to find it in PATH first\n if (!path?.isAbsolute(binPath)) {\n try {\n const resolved = whichBinSync(binPath)\n if (resolved) {\n binPath = resolved as string\n }\n } catch {}\n }\n\n // Normalize the path once for consistent pattern matching.\n binPath = normalizePath(binPath)\n\n // Handle empty string that normalized to '.' (current directory)\n if (binPath === '.') {\n return binPath\n }\n\n const ext = path?.extname(binPath)\n const extLowered = ext.toLowerCase()\n const basename = path?.basename(binPath, ext)\n const voltaIndex =\n basename === 'node' ? -1 : (/(?<=\\/)\\.volta\\//i.exec(binPath)?.index ?? -1)\n if (voltaIndex !== -1) {\n const voltaPath = binPath.slice(0, voltaIndex)\n const voltaToolsPath = path?.join(voltaPath, 'tools')\n const voltaImagePath = path?.join(voltaToolsPath, 'image')\n const voltaUserPath = path?.join(voltaToolsPath, 'user')\n const voltaPlatform = readJsonSync(\n path?.join(voltaUserPath, 'platform.json'),\n { throws: false },\n ) as any\n const voltaNodeVersion = voltaPlatform?.node?.runtime\n const voltaNpmVersion = voltaPlatform?.node?.npm\n let voltaBinPath = ''\n if (basename === 'npm' || basename === 'npx') {\n if (voltaNpmVersion) {\n const relCliPath = `bin/${basename}-cli.js`\n voltaBinPath = path?.join(\n voltaImagePath,\n `npm/${voltaNpmVersion}/${relCliPath}`,\n )\n if (voltaNodeVersion && !fs?.existsSync(voltaBinPath)) {\n voltaBinPath = path?.join(\n voltaImagePath,\n `node/${voltaNodeVersion}/lib/node_modules/npm/${relCliPath}`,\n )\n if (!fs?.existsSync(voltaBinPath)) {\n voltaBinPath = ''\n }\n }\n }\n } else {\n const voltaUserBinPath = path?.join(voltaUserPath, 'bin')\n const binInfo = readJsonSync(\n path?.join(voltaUserBinPath, `${basename}.json`),\n { throws: false },\n ) as any\n const binPackage = binInfo?.package\n if (binPackage) {\n voltaBinPath = path?.join(\n voltaImagePath,\n `packages/${binPackage}/bin/${basename}`,\n )\n if (!fs?.existsSync(voltaBinPath)) {\n voltaBinPath = `${voltaBinPath}.cmd`\n if (!fs?.existsSync(voltaBinPath)) {\n voltaBinPath = ''\n }\n }\n }\n }\n if (voltaBinPath) {\n try {\n return normalizePath(fs?.realpathSync.native(voltaBinPath))\n } catch {}\n return voltaBinPath\n }\n }\n const WIN32 = require('../constants/platform').WIN32\n if (WIN32) {\n const hasKnownExt =\n extLowered === '' ||\n extLowered === '.cmd' ||\n extLowered === '.exe' ||\n extLowered === '.ps1'\n const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n if (hasKnownExt && isNpmOrNpx) {\n // The quick route assumes a bin path like: C:\\Program Files\\nodejs\\npm.cmd\n const quickPath = path?.join(\n path?.dirname(binPath),\n `node_modules/npm/bin/${basename}-cli.js`,\n )\n if (fs?.existsSync(quickPath)) {\n try {\n return fs?.realpathSync.native(quickPath)\n } catch {}\n return quickPath\n }\n }\n let relPath = ''\n if (\n hasKnownExt &&\n // Only parse shell scripts and batch files, not actual executables.\n // .exe files are already executables and don't need path resolution from wrapper scripts.\n extLowered !== '.exe' &&\n // Check if file exists before attempting to read it to avoid ENOENT errors.\n fs?.existsSync(binPath)\n ) {\n const source = fs?.readFileSync(binPath, 'utf8')\n if (isNpmOrNpx) {\n if (extLowered === '.cmd') {\n // \"npm.cmd\" and \"npx.cmd\" defined by\n // https://github.com/npm/cli/blob/v11.4.2/bin/npm.cmd\n // https://github.com/npm/cli/blob/v11.4.2/bin/npx.cmd\n relPath =\n basename === 'npm'\n ? /(?<=\"NPM_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n : /(?<=\"NPX_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n } else if (extLowered === '') {\n // Extensionless \"npm\" and \"npx\" defined by\n // https://github.com/npm/cli/blob/v11.4.2/bin/npm\n // https://github.com/npm/cli/blob/v11.4.2/bin/npx\n relPath =\n basename === 'npm'\n ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n ''\n : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n ''\n } else if (extLowered === '.ps1') {\n // \"npm.ps1\" and \"npx.ps1\" defined by\n // https://github.com/npm/cli/blob/v11.4.2/bin/npm.ps1\n // https://github.com/npm/cli/blob/v11.4.2/bin/npx.ps1\n relPath =\n basename === 'npm'\n ? /(?<=\\$NPM_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n source,\n )?.[0] || ''\n : /(?<=\\$NPX_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n source,\n )?.[0] || ''\n }\n } else if (isPnpmOrYarn) {\n if (extLowered === '.cmd') {\n // pnpm.cmd and yarn.cmd can have different formats depending on installation method\n // Common formats include:\n // 1. Setup-pnpm action format: node \"%~dp0\\..\\pnpm\\bin\\pnpm.cjs\" %*\n // 2. npm install -g pnpm format: similar to cmd-shim\n // 3. Standalone installer format: various patterns\n\n // Try setup-pnpm/setup-yarn action format first\n relPath =\n /(?<=node\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(source)?.[1] || ''\n\n // Try alternative format: \"%~dp0\\node.exe\" \"%~dp0\\..\\package\\bin\\binary.js\" %*\n if (!relPath) {\n relPath =\n /(?<=\"%~dp0\\\\[^\"]*node[^\"]*\"\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(\n source,\n )?.[1] || ''\n }\n\n // Try cmd-shim format as fallback\n if (!relPath) {\n relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n }\n } else if (extLowered === '') {\n // Extensionless pnpm/yarn - try common shebang formats\n // Handle pnpm installed via standalone installer or global install\n // Format: exec \"$basedir/node\" \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n // Note: may have multiple spaces between arguments\n relPath =\n /(?<=\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n source,\n )?.[0] || ''\n if (!relPath) {\n // Also try: exec node \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n relPath =\n /(?<=exec\\s+node\\s+\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n source,\n )?.[0] || ''\n }\n if (!relPath) {\n // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n relPath = /(?<=\"\\$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n }\n } else if (extLowered === '.ps1') {\n // PowerShell format\n relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n }\n } else if (extLowered === '.cmd') {\n // \"bin.CMD\" generated by\n // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L98:\n //\n // @ECHO off\n // GOTO start\n // :find_dp0\n // SET dp0=%~dp0\n // EXIT /b\n // :start\n // SETLOCAL\n // CALL :find_dp0\n //\n // IF EXIST \"%dp0%\\node.exe\" (\n // SET \"_prog=%dp0%\\node.exe\"\n // ) ELSE (\n // SET \"_prog=node\"\n // SET PATHEXT=%PATHEXT:;.JS;=;%\n // )\n //\n // endLocal & goto #_undefined_# 2>NUL || title %COMSPEC% & \"%_prog%\" \"%dp0%\\..\\<PACKAGE_NAME>\\path\\to\\bin.js\" %*\n relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n } else if (extLowered === '') {\n // Extensionless \"bin\" generated by\n // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L138:\n //\n // #!/bin/sh\n // basedir=$(dirname \"$(echo \"$0\" | sed -e 's,\\\\,/,g')\")\n //\n // case `uname` in\n // *CYGWIN*|*MINGW*|*MSYS*)\n // if command -v cygpath > /dev/null 2>&1; then\n // basedir=`cygpath -w \"$basedir\"`\n // fi\n // ;;\n // esac\n //\n // if [ -x \"$basedir/node\" ]; then\n // exec \"$basedir/node\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n // else\n // exec node \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n // fi\n relPath = /(?<=\"$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n } else if (extLowered === '.ps1') {\n // \"bin.PS1\" generated by\n // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L192:\n //\n // #!/usr/bin/env pwsh\n // $basedir=Split-Path $MyInvocation.MyCommand.Definition -Parent\n //\n // $exe=\"\"\n // if ($PSVersionTable.PSVersion -lt \"6.0\" -or $IsWindows) {\n // # Fix case when both the Windows and Linux builds of Node\n // # are installed in the same directory\n // $exe=\".exe\"\n // }\n // $ret=0\n // if (Test-Path \"$basedir/node$exe\") {\n // # Support pipeline input\n // if ($MyInvocation.ExpectingInput) {\n // $input | & \"$basedir/node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // } else {\n // & \"$basedir/node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // }\n // $ret=$LASTEXITCODE\n // } else {\n // # Support pipeline input\n // if ($MyInvocation.ExpectingInput) {\n // $input | & \"node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // } else {\n // & \"node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // }\n // $ret=$LASTEXITCODE\n // }\n // exit $ret\n relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n }\n if (relPath) {\n binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n }\n }\n } else {\n // Handle Unix shell scripts (non-Windows platforms)\n let hasNoExt = extLowered === ''\n const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n\n // Handle special case where pnpm path in CI has extra segments.\n // In setup-pnpm GitHub Action, the path might be malformed like:\n // /home/runner/setup-pnpm/node_modules/.bin/pnpm/bin/pnpm.cjs\n // This happens when the shell script contains a relative path that\n // when resolved, creates an invalid nested structure.\n if (isPnpmOrYarn && binPath.includes('/.bin/pnpm/bin/')) {\n // Extract the correct pnpm bin path.\n const binIndex = binPath.indexOf('/.bin/pnpm')\n if (binIndex !== -1) {\n // Get the base path up to /.bin/pnpm.\n const baseBinPath = binPath.slice(0, binIndex + '/.bin/pnpm'.length)\n // Check if the original shell script exists.\n try {\n const stats = fs?.statSync(baseBinPath)\n // Only use this path if it's a file (the shell script).\n if (stats.isFile()) {\n binPath = normalizePath(baseBinPath)\n // Recompute hasNoExt since we changed the path.\n hasNoExt = !path?.extname(binPath)\n }\n } catch {\n // If stat fails, continue with the original path.\n }\n }\n }\n\n if (\n hasNoExt &&\n (isPnpmOrYarn || isNpmOrNpx) &&\n // For extensionless files (Unix shell scripts), verify existence before reading.\n // This prevents ENOENT errors when the bin path doesn't exist.\n fs?.existsSync(binPath)\n ) {\n const source = fs?.readFileSync(binPath, 'utf8')\n let relPath = ''\n\n if (isPnpmOrYarn) {\n // Handle pnpm/yarn Unix shell scripts.\n // Format: exec \"$basedir/node\" \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n // or: exec node \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n relPath =\n /(?<=\"\\$basedir\\/)\\.tools\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n if (!relPath) {\n // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n // Example: exec node \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n // ^^^^^^^^^^^^^^^^^^^^^ captures this part\n // This regex needs to be more careful to not match \"$@\" at the end.\n relPath =\n /(?<=\"\\$basedir\\/)[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n }\n // Special case for setup-pnpm GitHub Action which may use a different format.\n // The setup-pnpm action creates a shell script that references ../pnpm/bin/pnpm.cjs\n if (!relPath) {\n // Try to match: exec node \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n const match = /exec\\s+node\\s+\"?\\$basedir\\/([^\"]+)\"?\\s+\"\\$@\"/.exec(\n source,\n )\n if (match) {\n relPath = match[1] || ''\n }\n }\n // Check if the extracted path looks wrong (e.g., pnpm/bin/pnpm.cjs without ../).\n // This happens with setup-pnpm action when it creates a malformed shell script.\n if (relPath && basename === 'pnpm' && relPath.startsWith('pnpm/')) {\n // The path should be ../pnpm/... not pnpm/...\n // Prepend ../ to fix the relative path.\n relPath = `../${relPath}`\n }\n } else if (isNpmOrNpx) {\n // Handle npm/npx Unix shell scripts\n relPath =\n basename === 'npm'\n ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n }\n\n if (relPath) {\n // Resolve the relative path to handle .. segments properly.\n binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n }\n }\n }\n try {\n const realPath = fs?.realpathSync.native(binPath)\n return normalizePath(realPath)\n } catch {}\n // Return normalized path even if realpath fails.\n return normalizePath(binPath)\n}\n"],
5
- "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAKA,qBAAwB;AACxB,kBAAqB;AACrB,0BAA6B;AAC7B,2BAA8B;AAE9B,gBAA6B;AAC7B,qBAAuB;AACvB,kBAAsC;AACtC,mBAAsB;AAEtB,IAAI;AAAA;AAKJ,SAAS,QAAQ;AACf,MAAI,QAAQ,QAAW;AAGrB,UAAoB,QAAQ,SAAS;AAAA,EACvC;AACA,SAAO;AACT;AAEA,IAAI;AAAA;AAKJ,SAAS,UAAU;AACjB,MAAI,UAAU,QAAW;AAGvB,YAAsB,QAAQ,WAAW;AAAA,EAC3C;AACA,SAAO;AACT;AAEA,IAAI;AAAA;AAKJ,SAAS,WAAW;AAClB,MAAI,WAAW,QAAW;AACxB,aAAuB,QAAQ,kBAAkB;AAAA,EACnD;AACA,SAAO;AACT;AAAA;AAMA,eAAsB,QACpB,SACA,MACA,SACA;AAEA,QAAM,mBAAe,oBAAO,OAAO,IAC/B,mCAAmB,OAAO,IAC1B,MAAM,SAAS,OAAO;AAE1B,MAAI,CAAC,cAAc;AACjB,UAAM,QAAQ,IAAI,MAAM,qBAAqB,OAAO,EAAE;AAGtD,UAAM,OAAO;AACb,UAAM;AAAA,EACR;AAGA,QAAM,aAAa,MAAM,QAAQ,YAAY,IACzC,aAAa,CAAC,IACd;AACJ,SAAO,UAAM,oBAAM,YAAY,QAAQ,CAAC,GAAG,OAAO;AACpD;AAOA,eAAsB,SACpB,SACA,SACwC;AACxC,QAAM,QAAQ,yBAAS;AAEvB,QAAM,OAAO,EAAE,SAAS,MAAM,GAAG,QAAQ;AAGzC,QAAM,SAAS,MAAM,QAAQ,SAAS,IAAI;AAG1C,MAAI,SAAS,KAAK;AAChB,UAAM,QAAQ,MAAM,QAAQ,MAAM,IAC9B,SACA,OAAO,WAAW,WAChB,CAAC,MAAM,IACP;AAEN,WAAO,OAAO,SAAS,MAAM,IAAI,OAAK,mCAAmB,CAAC,CAAC,IAAI;AAAA,EACjE;AAGA,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,SAAO,mCAAmB,MAAM;AAClC;AAOO,SAAS,aACd,SACA,SAC+B;AAE/B,QAAM,OAAO,EAAE,SAAS,MAAM,GAAG,QAAQ;AAGzC,QAAM,UAAS,yBAAS,IAAG,KAAK,SAAS,IAAI;AAG7C,UAAI,uBAAO,SAAS,KAAK,GAAG;AAC1B,UAAM,QAAQ,MAAM,QAAQ,MAAM,IAC9B,SACA,OAAO,WAAW,WAChB,CAAC,MAAM,IACP;AAEN,WAAO,OAAO,SAAS,MAAM,IAAI,OAAK,mCAAmB,CAAC,CAAC,IAAI;AAAA,EACjE;AAGA,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,SAAO,mCAAmB,MAAM;AAClC;AAKO,SAAS,gBAAgB,SAAsC;AACpE,MAAI,CAAC,SAAS;AACZ,WAAO;AAAA,EACT;AAEA,QAAM,aAAa,QAAQ,QAAQ,OAAO,GAAG;AAC7C,SAAO,WAAW,SAAS,mBAAmB;AAChD;AAKO,SAAS,YACd,SACA,cAAwB,CAAC,GACL;AACpB,QAAM,KAAK,sBAAM;AACjB,QAAM,OAAO,wBAAQ;AACrB,QAAM,QAAQ,yBAAS;AAGvB,aAAWA,YAAW,aAAa;AACjC,QAAI,IAAI,WAAWA,QAAO,GAAG;AAC3B,aAAOA;AAAA,IACT;AAAA,EACF;AAGA,QAAM,UAAU,OAAO,KAAK,SAAS,EAAE,SAAS,KAAK,CAAC;AACtD,MAAI,SAAS;AACX,UAAM,SAAS,MAAM,QAAQ,OAAO;AAEpC,QAAI,gBAAgB,MAAM,GAAG;AAE3B,YAAM,WAAW,OAAO,KAAK,SAAS,EAAE,KAAK,MAAM,SAAS,KAAK,CAAC,KAAK,CAAC;AAExE,YAAM,aAAa,MAAM,QAAQ,QAAQ,IACrC,WACA,OAAO,aAAa,WAClB,CAAC,QAAQ,IACT,CAAC;AAEP,iBAAW,WAAW,YAAY;AAChC,cAAM,SAAS,MAAM,QAAQ,OAAO;AACpC,YAAI,CAAC,gBAAgB,MAAM,GAAG;AAC5B,iBAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,EACT;AAEA,SAAO;AACT;AAKO,SAAS,cAAsB;AACpC,QAAM,KAAK,sBAAM;AACjB,QAAM,OAAO,wBAAQ;AAGrB,QAAM,UAAU,MAAM,QAAQ,QAAQ,QAAQ;AAC9C,QAAM,eAAe,MAAM,KAAK,SAAS,KAAK;AAE9C,MAAI,IAAI,WAAW,YAAY,GAAG;AAChC,WAAO;AAAA,EACT;AAGA,QAAM,cAAc,CAAC,sBAAsB,cAAc;AACzD,QAAM,SAAS,YAAY,OAAO,WAAW;AAG7C,MAAI,UAAU,IAAI,WAAW,MAAM,GAAG;AACpC,WAAO;AAAA,EACT;AAIA,QAAM,UAAU,aAAa,OAAO,EAAE,SAAS,KAAK,CAAC;AACrD,MAAI,WAAW,OAAO,YAAY,YAAY,IAAI,WAAW,OAAO,GAAG;AACrE,WAAO;AAAA,EACT;AAGA,SAAO;AACT;AAKO,SAAS,eAAuB;AACrC,QAAM,QAAQ,QAAQ,uBAAuB,EAAE;AAC/C,QAAM,OAAO,wBAAQ;AAGrB,QAAM,cAAc,QAChB;AAAA;AAAA,IAEE,MAAM,KAAK,wBAAmB,OAAO,UAAU;AAAA,IAC/C,MAAM,KAAK,wBAAmB,OAAO,MAAM;AAAA,IAC3C,MAAM,KAAK,kCAAwB,QAAQ,UAAU;AAAA,IACrD,MAAM,KAAK,kCAAwB,QAAQ,MAAM;AAAA,IACjD;AAAA,IACA;AAAA,EACF,EAAE,OAAO,OAAO,IAChB;AAAA;AAAA,IAEE;AAAA,IACA;AAAA,IACA,MAAM;AAAA,MACH,sCAA4B,GAAG,gBAAc;AAAA,MAC9C;AAAA,IACF;AAAA,IACA,MAAM,KAAK,kBAAgB,YAAY;AAAA,EACzC,EAAE,OAAO,OAAO;AAEpB,SAAO,YAAY,QAAQ,WAAW,KAAK;AAC7C;AAKO,SAAS,eAAuB;AACrC,QAAM,OAAO,wBAAQ;AAGrB,QAAM,cAAc;AAAA,IAClB;AAAA,IACA;AAAA,IACA,MAAM,KAAK,kBAAgB,gBAAgB;AAAA,IAC3C,MAAM,KAAK,kBAAgB,4CAA4C;AAAA,EACzE,EAAE,OAAO,OAAO;AAEhB,SAAO,YAAY,QAAQ,WAAW,KAAK;AAC7C;AAAA;AAOO,SAAS,mBAAmB,SAAyB;AAC1D,QAAM,KAAK,sBAAM;AACjB,QAAM,OAAO,wBAAQ;AAGrB,MAAI,CAAC,MAAM,WAAW,OAAO,GAAG;AAC9B,QAAI;AACF,YAAM,WAAW,aAAa,OAAO;AACrC,UAAI,UAAU;AACZ,kBAAU;AAAA,MACZ;AAAA,IACF,QAAQ;AAAA,IAAC;AAAA,EACX;AAGA,gBAAU,2BAAc,OAAO;AAG/B,MAAI,YAAY,KAAK;AACnB,WAAO;AAAA,EACT;AAEA,QAAM,MAAM,MAAM,QAAQ,OAAO;AACjC,QAAM,aAAa,IAAI,YAAY;AACnC,QAAM,WAAW,MAAM,SAAS,SAAS,GAAG;AAC5C,QAAM,aACJ,aAAa,SAAS,KAAM,oBAAoB,KAAK,OAAO,GAAG,SAAS;AAC1E,MAAI,eAAe,IAAI;AACrB,UAAM,YAAY,QAAQ,MAAM,GAAG,UAAU;AAC7C,UAAM,iBAAiB,MAAM,KAAK,WAAW,OAAO;AACpD,UAAM,iBAAiB,MAAM,KAAK,gBAAgB,OAAO;AACzD,UAAM,gBAAgB,MAAM,KAAK,gBAAgB,MAAM;AACvD,UAAM,oBAAgB;AAAA,MACpB,MAAM,KAAK,eAAe,eAAe;AAAA,MACzC,EAAE,QAAQ,MAAM;AAAA,IAClB;AACA,UAAM,mBAAmB,eAAe,MAAM;AAC9C,UAAM,kBAAkB,eAAe,MAAM;AAC7C,QAAI,eAAe;AACnB,QAAI,aAAa,SAAS,aAAa,OAAO;AAC5C,UAAI,iBAAiB;AACnB,cAAM,aAAa,OAAO,QAAQ;AAClC,uBAAe,MAAM;AAAA,UACnB;AAAA,UACA,OAAO,eAAe,IAAI,UAAU;AAAA,QACtC;AACA,YAAI,oBAAoB,CAAC,IAAI,WAAW,YAAY,GAAG;AACrD,yBAAe,MAAM;AAAA,YACnB;AAAA,YACA,QAAQ,gBAAgB,yBAAyB,UAAU;AAAA,UAC7D;AACA,cAAI,CAAC,IAAI,WAAW,YAAY,GAAG;AACjC,2BAAe;AAAA,UACjB;AAAA,QACF;AAAA,MACF;AAAA,IACF,OAAO;AACL,YAAM,mBAAmB,MAAM,KAAK,eAAe,KAAK;AACxD,YAAM,cAAU;AAAA,QACd,MAAM,KAAK,kBAAkB,GAAG,QAAQ,OAAO;AAAA,QAC/C,EAAE,QAAQ,MAAM;AAAA,MAClB;AACA,YAAM,aAAa,SAAS;AAC5B,UAAI,YAAY;AACd,uBAAe,MAAM;AAAA,UACnB;AAAA,UACA,YAAY,UAAU,QAAQ,QAAQ;AAAA,QACxC;AACA,YAAI,CAAC,IAAI,WAAW,YAAY,GAAG;AACjC,yBAAe,GAAG,YAAY;AAC9B,cAAI,CAAC,IAAI,WAAW,YAAY,GAAG;AACjC,2BAAe;AAAA,UACjB;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,QAAI,cAAc;AAChB,UAAI;AACF,mBAAO,2BAAc,IAAI,aAAa,OAAO,YAAY,CAAC;AAAA,MAC5D,QAAQ;AAAA,MAAC;AACT,aAAO;AAAA,IACT;AAAA,EACF;AACA,QAAM,QAAQ,QAAQ,uBAAuB,EAAE;AAC/C,MAAI,OAAO;AACT,UAAM,cACJ,eAAe,MACf,eAAe,UACf,eAAe,UACf,eAAe;AACjB,UAAM,aAAa,aAAa,SAAS,aAAa;AACtD,UAAM,eAAe,aAAa,UAAU,aAAa;AACzD,QAAI,eAAe,YAAY;AAE7B,YAAM,YAAY,MAAM;AAAA,QACtB,MAAM,QAAQ,OAAO;AAAA,QACrB,wBAAwB,QAAQ;AAAA,MAClC;AACA,UAAI,IAAI,WAAW,SAAS,GAAG;AAC7B,YAAI;AACF,iBAAO,IAAI,aAAa,OAAO,SAAS;AAAA,QAC1C,QAAQ;AAAA,QAAC;AACT,eAAO;AAAA,MACT;AAAA,IACF;AACA,QAAI,UAAU;AACd,QACE;AAAA;AAAA,IAGA,eAAe;AAAA,IAEf,IAAI,WAAW,OAAO,GACtB;AACA,YAAM,SAAS,IAAI,aAAa,SAAS,MAAM;AAC/C,UAAI,YAAY;AACd,YAAI,eAAe,QAAQ;AAIzB,oBACE,aAAa,QACT,kCAAkC,KAAK,MAAM,IAAI,CAAC,KAAK,KACvD,kCAAkC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,QAC/D,WAAW,eAAe,IAAI;AAI5B,oBACE,aAAa,QACT,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAC1D,KACA,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAC1D;AAAA,QACR,WAAW,eAAe,QAAQ;AAIhC,oBACE,aAAa,QACT,6CAA6C;AAAA,YAC3C;AAAA,UACF,IAAI,CAAC,KAAK,KACV,6CAA6C;AAAA,YAC3C;AAAA,UACF,IAAI,CAAC,KAAK;AAAA,QAClB;AAAA,MACF,WAAW,cAAc;AACvB,YAAI,eAAe,QAAQ;AAQzB,oBACE,yCAAyC,KAAK,MAAM,IAAI,CAAC,KAAK;AAGhE,cAAI,CAAC,SAAS;AACZ,sBACE,4DAA4D;AAAA,cAC1D;AAAA,YACF,IAAI,CAAC,KAAK;AAAA,UACd;AAGA,cAAI,CAAC,SAAS;AACZ,sBAAU,+BAA+B,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,UAChE;AAAA,QACF,WAAW,eAAe,IAAI;AAK5B,oBACE,qDAAqD;AAAA,YACnD;AAAA,UACF,IAAI,CAAC,KAAK;AACZ,cAAI,CAAC,SAAS;AAEZ,sBACE,mEAAmE;AAAA,cACjE;AAAA,YACF,IAAI,CAAC,KAAK;AAAA,UACd;AACA,cAAI,CAAC,SAAS;AAEZ,sBAAU,mCAAmC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,UACpE;AAAA,QACF,WAAW,eAAe,QAAQ;AAEhC,oBAAU,mCAAmC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,QACpE;AAAA,MACF,WAAW,eAAe,QAAQ;AAqBhC,kBAAU,+BAA+B,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MAChE,WAAW,eAAe,IAAI;AAoB5B,kBAAU,kCAAkC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MACnE,WAAW,eAAe,QAAQ;AAgChC,kBAAU,mCAAmC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MACpE;AACA,UAAI,SAAS;AACX,sBAAU,2BAAc,MAAM,QAAQ,MAAM,QAAQ,OAAO,GAAG,OAAO,CAAC;AAAA,MACxE;AAAA,IACF;AAAA,EACF,OAAO;AAEL,QAAI,WAAW,eAAe;AAC9B,UAAM,eAAe,aAAa,UAAU,aAAa;AACzD,UAAM,aAAa,aAAa,SAAS,aAAa;AAOtD,QAAI,gBAAgB,QAAQ,SAAS,iBAAiB,GAAG;AAEvD,YAAM,WAAW,QAAQ,QAAQ,YAAY;AAC7C,UAAI,aAAa,IAAI;AAEnB,cAAM,cAAc,QAAQ,MAAM,GAAG,WAAW,aAAa,MAAM;AAEnE,YAAI;AACF,gBAAM,QAAQ,IAAI,SAAS,WAAW;AAEtC,cAAI,MAAM,OAAO,GAAG;AAClB,0BAAU,2BAAc,WAAW;AAEnC,uBAAW,CAAC,MAAM,QAAQ,OAAO;AAAA,UACnC;AAAA,QACF,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAEA,QACE,aACC,gBAAgB;AAAA;AAAA,IAGjB,IAAI,WAAW,OAAO,GACtB;AACA,YAAM,SAAS,IAAI,aAAa,SAAS,MAAM;AAC/C,UAAI,UAAU;AAEd,UAAI,cAAc;AAIhB,kBACE,+CAA+C,KAAK,MAAM,IAAI,CAAC,KAAK;AACtE,YAAI,CAAC,SAAS;AAKZ,oBACE,sCAAsC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,QAC/D;AAGA,YAAI,CAAC,SAAS;AAEZ,gBAAM,QAAQ,+CAA+C;AAAA,YAC3D;AAAA,UACF;AACA,cAAI,OAAO;AACT,sBAAU,MAAM,CAAC,KAAK;AAAA,UACxB;AAAA,QACF;AAGA,YAAI,WAAW,aAAa,UAAU,QAAQ,WAAW,OAAO,GAAG;AAGjE,oBAAU,MAAM,OAAO;AAAA,QACzB;AAAA,MACF,WAAW,YAAY;AAErB,kBACE,aAAa,QACT,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAAK,KAC/D,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MACvE;AAEA,UAAI,SAAS;AAEX,sBAAU,2BAAc,MAAM,QAAQ,MAAM,QAAQ,OAAO,GAAG,OAAO,CAAC;AAAA,MACxE;AAAA,IACF;AAAA,EACF;AACA,MAAI;AACF,UAAM,WAAW,IAAI,aAAa,OAAO,OAAO;AAChD,eAAO,2BAAc,QAAQ;AAAA,EAC/B,QAAQ;AAAA,EAAC;AAET,aAAO,2BAAc,OAAO;AAC9B;",
4
+ "sourcesContent": ["/**\n * @fileoverview Binary path resolution and execution utilities for package managers.\n * Provides cross-platform bin path lookup, command execution, and path normalization.\n */\n\nimport { APPDATA } from '#env/appdata'\nimport { HOME } from '#env/home'\nimport { LOCALAPPDATA } from '#env/localappdata'\nimport { XDG_DATA_HOME } from '#env/xdg-data-home'\n\nimport { WIN32 } from '#constants/platform'\nimport { readJsonSync } from './fs'\nimport { getOwn } from './objects'\nimport { isPath, normalizePath } from './path'\nimport { spawn } from './spawn'\n\nlet _fs: typeof import('node:fs') | undefined\n/**\n * Lazily load the fs module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getFs() {\n if (_fs === undefined) {\n // Use non-'node:' prefixed require to avoid Webpack errors.\n\n _fs = /*@__PURE__*/ require('node:fs')\n }\n return _fs!\n}\n\nlet _path: typeof import('node:path') | undefined\n/**\n * Lazily load the path module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getPath() {\n if (_path === undefined) {\n // Use non-'node:' prefixed require to avoid Webpack errors.\n\n _path = /*@__PURE__*/ require('node:path')\n }\n return _path!\n}\n\nlet _which: typeof import('which') | undefined\n/**\n * Lazily load the which module for finding executables.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getWhich() {\n if (_which === undefined) {\n _which = /*@__PURE__*/ require('./external/which')\n }\n return _which!\n}\n\n/**\n * Execute a binary with the given arguments.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport async function execBin(\n binPath: string,\n args?: string[],\n options?: import('./spawn').SpawnOptions,\n) {\n // Resolve the binary path.\n const resolvedPath = isPath(binPath)\n ? resolveBinPathSync(binPath)\n : await whichBin(binPath)\n\n if (!resolvedPath) {\n const error = new Error(`Binary not found: ${binPath}`) as Error & {\n code: string\n }\n error.code = 'ENOENT'\n throw error\n }\n\n // Execute the binary directly.\n const binCommand = Array.isArray(resolvedPath)\n ? resolvedPath[0]!\n : resolvedPath\n // On Windows, binaries are often .cmd files that require shell to execute.\n return await spawn(binCommand, args ?? [], {\n shell: WIN32,\n ...options,\n })\n}\n\n/**\n * Find and resolve a binary in the system PATH asynchronously.\n * @template {import('which').Options} T\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport async function whichBin(\n binName: string,\n options?: import('which').Options,\n): Promise<string | string[] | undefined> {\n const which = getWhich()\n // Default to nothrow: true if not specified to return undefined instead of throwing\n const opts = { nothrow: true, ...options }\n // Depending on options `which` may throw if `binName` is not found.\n // With nothrow: true, it returns null when `binName` is not found.\n const result = await which?.(binName, opts)\n\n // When 'all: true' is specified, ensure we always return an array.\n if (options?.all) {\n const paths = Array.isArray(result)\n ? result\n : typeof result === 'string'\n ? [result]\n : undefined\n // If all is true and we have paths, resolve each one.\n return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n }\n\n // If result is undefined (binary not found), return undefined\n if (!result) {\n return undefined\n }\n\n return resolveBinPathSync(result)\n}\n\n/**\n * Find and resolve a binary in the system PATH synchronously.\n * @template {import('which').Options} T\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport function whichBinSync(\n binName: string,\n options?: import('which').Options,\n): string | string[] | undefined {\n // Default to nothrow: true if not specified to return undefined instead of throwing\n const opts = { nothrow: true, ...options }\n // Depending on options `which` may throw if `binName` is not found.\n // With nothrow: true, it returns null when `binName` is not found.\n const result = getWhich()?.sync(binName, opts)\n\n // When 'all: true' is specified, ensure we always return an array.\n if (getOwn(options, 'all')) {\n const paths = Array.isArray(result)\n ? result\n : typeof result === 'string'\n ? [result]\n : undefined\n // If all is true and we have paths, resolve each one.\n return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n }\n\n // If result is undefined (binary not found), return undefined\n if (!result) {\n return undefined\n }\n\n return resolveBinPathSync(result)\n}\n\n/**\n * Check if a directory path contains any shadow bin patterns.\n */\nexport function isShadowBinPath(dirPath: string | undefined): boolean {\n if (!dirPath) {\n return false\n }\n // Check for node_modules/.bin pattern (Unix and Windows)\n const normalized = dirPath.replace(/\\\\/g, '/')\n return normalized.includes('node_modules/.bin')\n}\n\n/**\n * Find the real executable for a binary, bypassing shadow bins.\n */\nexport function findRealBin(\n binName: string,\n commonPaths: string[] = [],\n): string | undefined {\n const fs = getFs()\n const path = getPath()\n const which = getWhich()\n\n // Try common locations first.\n for (const binPath of commonPaths) {\n if (fs?.existsSync(binPath)) {\n return binPath\n }\n }\n\n // Fall back to which.sync if no direct path found.\n const binPath = which?.sync(binName, { nothrow: true })\n if (binPath) {\n const binDir = path?.dirname(binPath)\n\n if (isShadowBinPath(binDir)) {\n // This is likely a shadowed binary, try to find the real one.\n const allPaths = which?.sync(binName, { all: true, nothrow: true }) || []\n // Ensure allPaths is an array.\n const pathsArray = Array.isArray(allPaths)\n ? allPaths\n : typeof allPaths === 'string'\n ? [allPaths]\n : []\n\n for (const altPath of pathsArray) {\n const altDir = path?.dirname(altPath)\n if (!isShadowBinPath(altDir)) {\n return altPath\n }\n }\n }\n return binPath\n }\n // If all else fails, return undefined to indicate binary not found.\n return undefined\n}\n\n/**\n * Find the real npm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealNpm(): string {\n const fs = getFs()\n const path = getPath()\n\n // Try to find npm in the same directory as the node executable.\n const nodeDir = path?.dirname(process.execPath)\n const npmInNodeDir = path?.join(nodeDir, 'npm')\n\n if (fs?.existsSync(npmInNodeDir)) {\n return npmInNodeDir\n }\n\n // Try common npm locations.\n const commonPaths = ['/usr/local/bin/npm', '/usr/bin/npm']\n const result = findRealBin('npm', commonPaths)\n\n // If we found a valid path, return it.\n if (result && fs?.existsSync(result)) {\n return result\n }\n\n // As a last resort, try to use whichBinSync to find npm.\n // This handles cases where npm is installed in non-standard locations.\n const npmPath = whichBinSync('npm', { nothrow: true })\n if (npmPath && typeof npmPath === 'string' && fs?.existsSync(npmPath)) {\n return npmPath\n }\n\n // Return the basic 'npm' and let the system resolve it.\n return 'npm'\n}\n\n/**\n * Find the real pnpm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealPnpm(): string {\n const path = getPath()\n\n // Try common pnpm locations.\n const commonPaths = WIN32\n ? [\n // Windows common paths.\n path?.join(APPDATA as string, 'npm', 'pnpm.cmd'),\n path?.join(APPDATA as string, 'npm', 'pnpm'),\n path?.join(LOCALAPPDATA as string, 'pnpm', 'pnpm.cmd'),\n path?.join(LOCALAPPDATA as string, 'pnpm', 'pnpm'),\n 'C:\\\\Program Files\\\\nodejs\\\\pnpm.cmd',\n 'C:\\\\Program Files\\\\nodejs\\\\pnpm',\n ].filter(Boolean)\n : [\n // Unix common paths.\n '/usr/local/bin/pnpm',\n '/usr/bin/pnpm',\n path?.join(\n (XDG_DATA_HOME as string) || `${HOME as string}/.local/share`,\n 'pnpm/pnpm',\n ),\n path?.join(HOME as string, '.pnpm/pnpm'),\n ].filter(Boolean)\n\n return findRealBin('pnpm', commonPaths) ?? ''\n}\n\n/**\n * Find the real yarn executable, bypassing any aliases and shadow bins.\n */\nexport function findRealYarn(): string {\n const path = getPath()\n\n // Try common yarn locations.\n const commonPaths = [\n '/usr/local/bin/yarn',\n '/usr/bin/yarn',\n path?.join(HOME as string, '.yarn/bin/yarn'),\n path?.join(HOME as string, '.config/yarn/global/node_modules/.bin/yarn'),\n ].filter(Boolean)\n\n return findRealBin('yarn', commonPaths) ?? ''\n}\n\n/*@__NO_SIDE_EFFECTS__*/\n/**\n * Resolve a binary path to its actual executable file.\n * Handles Windows .cmd wrappers and Unix shell scripts.\n */\nexport function resolveBinPathSync(binPath: string): string {\n const fs = getFs()\n const path = getPath()\n\n // If it's not an absolute path, try to find it in PATH first\n if (!path?.isAbsolute(binPath)) {\n try {\n const resolved = whichBinSync(binPath)\n if (resolved) {\n binPath = resolved as string\n }\n } catch {}\n }\n\n // Normalize the path once for consistent pattern matching.\n binPath = normalizePath(binPath)\n\n // Handle empty string that normalized to '.' (current directory)\n if (binPath === '.') {\n return binPath\n }\n\n const ext = path?.extname(binPath)\n const extLowered = ext.toLowerCase()\n const basename = path?.basename(binPath, ext)\n const voltaIndex =\n basename === 'node' ? -1 : (/(?<=\\/)\\.volta\\//i.exec(binPath)?.index ?? -1)\n if (voltaIndex !== -1) {\n const voltaPath = binPath.slice(0, voltaIndex)\n const voltaToolsPath = path?.join(voltaPath, 'tools')\n const voltaImagePath = path?.join(voltaToolsPath, 'image')\n const voltaUserPath = path?.join(voltaToolsPath, 'user')\n const voltaPlatform = readJsonSync(\n path?.join(voltaUserPath, 'platform.json'),\n { throws: false },\n ) as any\n const voltaNodeVersion = voltaPlatform?.node?.runtime\n const voltaNpmVersion = voltaPlatform?.node?.npm\n let voltaBinPath = ''\n if (basename === 'npm' || basename === 'npx') {\n if (voltaNpmVersion) {\n const relCliPath = `bin/${basename}-cli.js`\n voltaBinPath = path?.join(\n voltaImagePath,\n `npm/${voltaNpmVersion}/${relCliPath}`,\n )\n if (voltaNodeVersion && !fs?.existsSync(voltaBinPath)) {\n voltaBinPath = path?.join(\n voltaImagePath,\n `node/${voltaNodeVersion}/lib/node_modules/npm/${relCliPath}`,\n )\n if (!fs?.existsSync(voltaBinPath)) {\n voltaBinPath = ''\n }\n }\n }\n } else {\n const voltaUserBinPath = path?.join(voltaUserPath, 'bin')\n const binInfo = readJsonSync(\n path?.join(voltaUserBinPath, `${basename}.json`),\n { throws: false },\n ) as any\n const binPackage = binInfo?.package\n if (binPackage) {\n voltaBinPath = path?.join(\n voltaImagePath,\n `packages/${binPackage}/bin/${basename}`,\n )\n if (!fs?.existsSync(voltaBinPath)) {\n voltaBinPath = `${voltaBinPath}.cmd`\n if (!fs?.existsSync(voltaBinPath)) {\n voltaBinPath = ''\n }\n }\n }\n }\n if (voltaBinPath) {\n try {\n return normalizePath(fs?.realpathSync.native(voltaBinPath))\n } catch {}\n return voltaBinPath\n }\n }\n if (WIN32) {\n const hasKnownExt =\n extLowered === '' ||\n extLowered === '.cmd' ||\n extLowered === '.exe' ||\n extLowered === '.ps1'\n const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n if (hasKnownExt && isNpmOrNpx) {\n // The quick route assumes a bin path like: C:\\Program Files\\nodejs\\npm.cmd\n const quickPath = path?.join(\n path?.dirname(binPath),\n `node_modules/npm/bin/${basename}-cli.js`,\n )\n if (fs?.existsSync(quickPath)) {\n try {\n return fs?.realpathSync.native(quickPath)\n } catch {}\n return quickPath\n }\n }\n let relPath = ''\n if (\n hasKnownExt &&\n // Only parse shell scripts and batch files, not actual executables.\n // .exe files are already executables and don't need path resolution from wrapper scripts.\n extLowered !== '.exe' &&\n // Check if file exists before attempting to read it to avoid ENOENT errors.\n fs?.existsSync(binPath)\n ) {\n const source = fs?.readFileSync(binPath, 'utf8')\n if (isNpmOrNpx) {\n if (extLowered === '.cmd') {\n // \"npm.cmd\" and \"npx.cmd\" defined by\n // https://github.com/npm/cli/blob/v11.4.2/bin/npm.cmd\n // https://github.com/npm/cli/blob/v11.4.2/bin/npx.cmd\n relPath =\n basename === 'npm'\n ? /(?<=\"NPM_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n : /(?<=\"NPX_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n } else if (extLowered === '') {\n // Extensionless \"npm\" and \"npx\" defined by\n // https://github.com/npm/cli/blob/v11.4.2/bin/npm\n // https://github.com/npm/cli/blob/v11.4.2/bin/npx\n relPath =\n basename === 'npm'\n ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n ''\n : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n ''\n } else if (extLowered === '.ps1') {\n // \"npm.ps1\" and \"npx.ps1\" defined by\n // https://github.com/npm/cli/blob/v11.4.2/bin/npm.ps1\n // https://github.com/npm/cli/blob/v11.4.2/bin/npx.ps1\n relPath =\n basename === 'npm'\n ? /(?<=\\$NPM_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n source,\n )?.[0] || ''\n : /(?<=\\$NPX_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n source,\n )?.[0] || ''\n }\n } else if (isPnpmOrYarn) {\n if (extLowered === '.cmd') {\n // pnpm.cmd and yarn.cmd can have different formats depending on installation method\n // Common formats include:\n // 1. Setup-pnpm action format: node \"%~dp0\\..\\pnpm\\bin\\pnpm.cjs\" %*\n // 2. npm install -g pnpm format: similar to cmd-shim\n // 3. Standalone installer format: various patterns\n\n // Try setup-pnpm/setup-yarn action format first\n relPath =\n /(?<=node\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(source)?.[1] || ''\n\n // Try alternative format: \"%~dp0\\node.exe\" \"%~dp0\\..\\package\\bin\\binary.js\" %*\n if (!relPath) {\n relPath =\n /(?<=\"%~dp0\\\\[^\"]*node[^\"]*\"\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(\n source,\n )?.[1] || ''\n }\n\n // Try cmd-shim format as fallback\n if (!relPath) {\n relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n }\n } else if (extLowered === '') {\n // Extensionless pnpm/yarn - try common shebang formats\n // Handle pnpm installed via standalone installer or global install\n // Format: exec \"$basedir/node\" \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n // Note: may have multiple spaces between arguments\n relPath =\n /(?<=\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n source,\n )?.[0] || ''\n if (!relPath) {\n // Also try: exec node \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n relPath =\n /(?<=exec\\s+node\\s+\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n source,\n )?.[0] || ''\n }\n if (!relPath) {\n // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n relPath = /(?<=\"\\$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n }\n } else if (extLowered === '.ps1') {\n // PowerShell format\n relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n }\n } else if (extLowered === '.cmd') {\n // \"bin.CMD\" generated by\n // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L98:\n //\n // @ECHO off\n // GOTO start\n // :find_dp0\n // SET dp0=%~dp0\n // EXIT /b\n // :start\n // SETLOCAL\n // CALL :find_dp0\n //\n // IF EXIST \"%dp0%\\node.exe\" (\n // SET \"_prog=%dp0%\\node.exe\"\n // ) ELSE (\n // SET \"_prog=node\"\n // SET PATHEXT=%PATHEXT:;.JS;=;%\n // )\n //\n // endLocal & goto #_undefined_# 2>NUL || title %COMSPEC% & \"%_prog%\" \"%dp0%\\..\\<PACKAGE_NAME>\\path\\to\\bin.js\" %*\n relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n } else if (extLowered === '') {\n // Extensionless \"bin\" generated by\n // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L138:\n //\n // #!/bin/sh\n // basedir=$(dirname \"$(echo \"$0\" | sed -e 's,\\\\,/,g')\")\n //\n // case `uname` in\n // *CYGWIN*|*MINGW*|*MSYS*)\n // if command -v cygpath > /dev/null 2>&1; then\n // basedir=`cygpath -w \"$basedir\"`\n // fi\n // ;;\n // esac\n //\n // if [ -x \"$basedir/node\" ]; then\n // exec \"$basedir/node\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n // else\n // exec node \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n // fi\n relPath = /(?<=\"$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n } else if (extLowered === '.ps1') {\n // \"bin.PS1\" generated by\n // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L192:\n //\n // #!/usr/bin/env pwsh\n // $basedir=Split-Path $MyInvocation.MyCommand.Definition -Parent\n //\n // $exe=\"\"\n // if ($PSVersionTable.PSVersion -lt \"6.0\" -or $IsWindows) {\n // # Fix case when both the Windows and Linux builds of Node\n // # are installed in the same directory\n // $exe=\".exe\"\n // }\n // $ret=0\n // if (Test-Path \"$basedir/node$exe\") {\n // # Support pipeline input\n // if ($MyInvocation.ExpectingInput) {\n // $input | & \"$basedir/node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // } else {\n // & \"$basedir/node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // }\n // $ret=$LASTEXITCODE\n // } else {\n // # Support pipeline input\n // if ($MyInvocation.ExpectingInput) {\n // $input | & \"node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // } else {\n // & \"node$exe\" \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n // }\n // $ret=$LASTEXITCODE\n // }\n // exit $ret\n relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n }\n if (relPath) {\n binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n }\n }\n } else {\n // Handle Unix shell scripts (non-Windows platforms)\n let hasNoExt = extLowered === ''\n const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n\n // Handle special case where pnpm path in CI has extra segments.\n // In setup-pnpm GitHub Action, the path might be malformed like:\n // /home/runner/setup-pnpm/node_modules/.bin/pnpm/bin/pnpm.cjs\n // This happens when the shell script contains a relative path that\n // when resolved, creates an invalid nested structure.\n if (isPnpmOrYarn && binPath.includes('/.bin/pnpm/bin/')) {\n // Extract the correct pnpm bin path.\n const binIndex = binPath.indexOf('/.bin/pnpm')\n if (binIndex !== -1) {\n // Get the base path up to /.bin/pnpm.\n const baseBinPath = binPath.slice(0, binIndex + '/.bin/pnpm'.length)\n // Check if the original shell script exists.\n try {\n const stats = fs?.statSync(baseBinPath)\n // Only use this path if it's a file (the shell script).\n if (stats.isFile()) {\n binPath = normalizePath(baseBinPath)\n // Recompute hasNoExt since we changed the path.\n hasNoExt = !path?.extname(binPath)\n }\n } catch {\n // If stat fails, continue with the original path.\n }\n }\n }\n\n if (\n hasNoExt &&\n (isPnpmOrYarn || isNpmOrNpx) &&\n // For extensionless files (Unix shell scripts), verify existence before reading.\n // This prevents ENOENT errors when the bin path doesn't exist.\n fs?.existsSync(binPath)\n ) {\n const source = fs?.readFileSync(binPath, 'utf8')\n let relPath = ''\n\n if (isPnpmOrYarn) {\n // Handle pnpm/yarn Unix shell scripts.\n // Format: exec \"$basedir/node\" \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n // or: exec node \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n relPath =\n /(?<=\"\\$basedir\\/)\\.tools\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n if (!relPath) {\n // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n // Example: exec node \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n // ^^^^^^^^^^^^^^^^^^^^^ captures this part\n // This regex needs to be more careful to not match \"$@\" at the end.\n relPath =\n /(?<=\"\\$basedir\\/)[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n }\n // Special case for setup-pnpm GitHub Action which may use a different format.\n // The setup-pnpm action creates a shell script that references ../pnpm/bin/pnpm.cjs\n if (!relPath) {\n // Try to match: exec node \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n const match = /exec\\s+node\\s+\"?\\$basedir\\/([^\"]+)\"?\\s+\"\\$@\"/.exec(\n source,\n )\n if (match) {\n relPath = match[1] || ''\n }\n }\n // Check if the extracted path looks wrong (e.g., pnpm/bin/pnpm.cjs without ../).\n // This happens with setup-pnpm action when it creates a malformed shell script.\n if (relPath && basename === 'pnpm' && relPath.startsWith('pnpm/')) {\n // The path should be ../pnpm/... not pnpm/...\n // Prepend ../ to fix the relative path.\n relPath = `../${relPath}`\n }\n } else if (isNpmOrNpx) {\n // Handle npm/npx Unix shell scripts\n relPath =\n basename === 'npm'\n ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n }\n\n if (relPath) {\n // Resolve the relative path to handle .. segments properly.\n binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n }\n }\n }\n try {\n const realPath = fs?.realpathSync.native(binPath)\n return normalizePath(realPath)\n } catch {}\n // Return normalized path even if realpath fails.\n return normalizePath(binPath)\n}\n"],
5
+ "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAKA,qBAAwB;AACxB,kBAAqB;AACrB,0BAA6B;AAC7B,2BAA8B;AAE9B,sBAAsB;AACtB,gBAA6B;AAC7B,qBAAuB;AACvB,kBAAsC;AACtC,mBAAsB;AAEtB,IAAI;AAAA;AAKJ,SAAS,QAAQ;AACf,MAAI,QAAQ,QAAW;AAGrB,UAAoB,QAAQ,SAAS;AAAA,EACvC;AACA,SAAO;AACT;AAEA,IAAI;AAAA;AAKJ,SAAS,UAAU;AACjB,MAAI,UAAU,QAAW;AAGvB,YAAsB,QAAQ,WAAW;AAAA,EAC3C;AACA,SAAO;AACT;AAEA,IAAI;AAAA;AAKJ,SAAS,WAAW;AAClB,MAAI,WAAW,QAAW;AACxB,aAAuB,QAAQ,kBAAkB;AAAA,EACnD;AACA,SAAO;AACT;AAAA;AAMA,eAAsB,QACpB,SACA,MACA,SACA;AAEA,QAAM,mBAAe,oBAAO,OAAO,IAC/B,mCAAmB,OAAO,IAC1B,MAAM,SAAS,OAAO;AAE1B,MAAI,CAAC,cAAc;AACjB,UAAM,QAAQ,IAAI,MAAM,qBAAqB,OAAO,EAAE;AAGtD,UAAM,OAAO;AACb,UAAM;AAAA,EACR;AAGA,QAAM,aAAa,MAAM,QAAQ,YAAY,IACzC,aAAa,CAAC,IACd;AAEJ,SAAO,UAAM,oBAAM,YAAY,QAAQ,CAAC,GAAG;AAAA,IACzC,OAAO;AAAA,IACP,GAAG;AAAA,EACL,CAAC;AACH;AAOA,eAAsB,SACpB,SACA,SACwC;AACxC,QAAM,QAAQ,yBAAS;AAEvB,QAAM,OAAO,EAAE,SAAS,MAAM,GAAG,QAAQ;AAGzC,QAAM,SAAS,MAAM,QAAQ,SAAS,IAAI;AAG1C,MAAI,SAAS,KAAK;AAChB,UAAM,QAAQ,MAAM,QAAQ,MAAM,IAC9B,SACA,OAAO,WAAW,WAChB,CAAC,MAAM,IACP;AAEN,WAAO,OAAO,SAAS,MAAM,IAAI,OAAK,mCAAmB,CAAC,CAAC,IAAI;AAAA,EACjE;AAGA,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,SAAO,mCAAmB,MAAM;AAClC;AAOO,SAAS,aACd,SACA,SAC+B;AAE/B,QAAM,OAAO,EAAE,SAAS,MAAM,GAAG,QAAQ;AAGzC,QAAM,UAAS,yBAAS,IAAG,KAAK,SAAS,IAAI;AAG7C,UAAI,uBAAO,SAAS,KAAK,GAAG;AAC1B,UAAM,QAAQ,MAAM,QAAQ,MAAM,IAC9B,SACA,OAAO,WAAW,WAChB,CAAC,MAAM,IACP;AAEN,WAAO,OAAO,SAAS,MAAM,IAAI,OAAK,mCAAmB,CAAC,CAAC,IAAI;AAAA,EACjE;AAGA,MAAI,CAAC,QAAQ;AACX,WAAO;AAAA,EACT;AAEA,SAAO,mCAAmB,MAAM;AAClC;AAKO,SAAS,gBAAgB,SAAsC;AACpE,MAAI,CAAC,SAAS;AACZ,WAAO;AAAA,EACT;AAEA,QAAM,aAAa,QAAQ,QAAQ,OAAO,GAAG;AAC7C,SAAO,WAAW,SAAS,mBAAmB;AAChD;AAKO,SAAS,YACd,SACA,cAAwB,CAAC,GACL;AACpB,QAAM,KAAK,sBAAM;AACjB,QAAM,OAAO,wBAAQ;AACrB,QAAM,QAAQ,yBAAS;AAGvB,aAAWA,YAAW,aAAa;AACjC,QAAI,IAAI,WAAWA,QAAO,GAAG;AAC3B,aAAOA;AAAA,IACT;AAAA,EACF;AAGA,QAAM,UAAU,OAAO,KAAK,SAAS,EAAE,SAAS,KAAK,CAAC;AACtD,MAAI,SAAS;AACX,UAAM,SAAS,MAAM,QAAQ,OAAO;AAEpC,QAAI,gBAAgB,MAAM,GAAG;AAE3B,YAAM,WAAW,OAAO,KAAK,SAAS,EAAE,KAAK,MAAM,SAAS,KAAK,CAAC,KAAK,CAAC;AAExE,YAAM,aAAa,MAAM,QAAQ,QAAQ,IACrC,WACA,OAAO,aAAa,WAClB,CAAC,QAAQ,IACT,CAAC;AAEP,iBAAW,WAAW,YAAY;AAChC,cAAM,SAAS,MAAM,QAAQ,OAAO;AACpC,YAAI,CAAC,gBAAgB,MAAM,GAAG;AAC5B,iBAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AACA,WAAO;AAAA,EACT;AAEA,SAAO;AACT;AAKO,SAAS,cAAsB;AACpC,QAAM,KAAK,sBAAM;AACjB,QAAM,OAAO,wBAAQ;AAGrB,QAAM,UAAU,MAAM,QAAQ,QAAQ,QAAQ;AAC9C,QAAM,eAAe,MAAM,KAAK,SAAS,KAAK;AAE9C,MAAI,IAAI,WAAW,YAAY,GAAG;AAChC,WAAO;AAAA,EACT;AAGA,QAAM,cAAc,CAAC,sBAAsB,cAAc;AACzD,QAAM,SAAS,YAAY,OAAO,WAAW;AAG7C,MAAI,UAAU,IAAI,WAAW,MAAM,GAAG;AACpC,WAAO;AAAA,EACT;AAIA,QAAM,UAAU,aAAa,OAAO,EAAE,SAAS,KAAK,CAAC;AACrD,MAAI,WAAW,OAAO,YAAY,YAAY,IAAI,WAAW,OAAO,GAAG;AACrE,WAAO;AAAA,EACT;AAGA,SAAO;AACT;AAKO,SAAS,eAAuB;AACrC,QAAM,OAAO,wBAAQ;AAGrB,QAAM,cAAc,wBAChB;AAAA;AAAA,IAEE,MAAM,KAAK,wBAAmB,OAAO,UAAU;AAAA,IAC/C,MAAM,KAAK,wBAAmB,OAAO,MAAM;AAAA,IAC3C,MAAM,KAAK,kCAAwB,QAAQ,UAAU;AAAA,IACrD,MAAM,KAAK,kCAAwB,QAAQ,MAAM;AAAA,IACjD;AAAA,IACA;AAAA,EACF,EAAE,OAAO,OAAO,IAChB;AAAA;AAAA,IAEE;AAAA,IACA;AAAA,IACA,MAAM;AAAA,MACH,sCAA4B,GAAG,gBAAc;AAAA,MAC9C;AAAA,IACF;AAAA,IACA,MAAM,KAAK,kBAAgB,YAAY;AAAA,EACzC,EAAE,OAAO,OAAO;AAEpB,SAAO,YAAY,QAAQ,WAAW,KAAK;AAC7C;AAKO,SAAS,eAAuB;AACrC,QAAM,OAAO,wBAAQ;AAGrB,QAAM,cAAc;AAAA,IAClB;AAAA,IACA;AAAA,IACA,MAAM,KAAK,kBAAgB,gBAAgB;AAAA,IAC3C,MAAM,KAAK,kBAAgB,4CAA4C;AAAA,EACzE,EAAE,OAAO,OAAO;AAEhB,SAAO,YAAY,QAAQ,WAAW,KAAK;AAC7C;AAAA;AAOO,SAAS,mBAAmB,SAAyB;AAC1D,QAAM,KAAK,sBAAM;AACjB,QAAM,OAAO,wBAAQ;AAGrB,MAAI,CAAC,MAAM,WAAW,OAAO,GAAG;AAC9B,QAAI;AACF,YAAM,WAAW,aAAa,OAAO;AACrC,UAAI,UAAU;AACZ,kBAAU;AAAA,MACZ;AAAA,IACF,QAAQ;AAAA,IAAC;AAAA,EACX;AAGA,gBAAU,2BAAc,OAAO;AAG/B,MAAI,YAAY,KAAK;AACnB,WAAO;AAAA,EACT;AAEA,QAAM,MAAM,MAAM,QAAQ,OAAO;AACjC,QAAM,aAAa,IAAI,YAAY;AACnC,QAAM,WAAW,MAAM,SAAS,SAAS,GAAG;AAC5C,QAAM,aACJ,aAAa,SAAS,KAAM,oBAAoB,KAAK,OAAO,GAAG,SAAS;AAC1E,MAAI,eAAe,IAAI;AACrB,UAAM,YAAY,QAAQ,MAAM,GAAG,UAAU;AAC7C,UAAM,iBAAiB,MAAM,KAAK,WAAW,OAAO;AACpD,UAAM,iBAAiB,MAAM,KAAK,gBAAgB,OAAO;AACzD,UAAM,gBAAgB,MAAM,KAAK,gBAAgB,MAAM;AACvD,UAAM,oBAAgB;AAAA,MACpB,MAAM,KAAK,eAAe,eAAe;AAAA,MACzC,EAAE,QAAQ,MAAM;AAAA,IAClB;AACA,UAAM,mBAAmB,eAAe,MAAM;AAC9C,UAAM,kBAAkB,eAAe,MAAM;AAC7C,QAAI,eAAe;AACnB,QAAI,aAAa,SAAS,aAAa,OAAO;AAC5C,UAAI,iBAAiB;AACnB,cAAM,aAAa,OAAO,QAAQ;AAClC,uBAAe,MAAM;AAAA,UACnB;AAAA,UACA,OAAO,eAAe,IAAI,UAAU;AAAA,QACtC;AACA,YAAI,oBAAoB,CAAC,IAAI,WAAW,YAAY,GAAG;AACrD,yBAAe,MAAM;AAAA,YACnB;AAAA,YACA,QAAQ,gBAAgB,yBAAyB,UAAU;AAAA,UAC7D;AACA,cAAI,CAAC,IAAI,WAAW,YAAY,GAAG;AACjC,2BAAe;AAAA,UACjB;AAAA,QACF;AAAA,MACF;AAAA,IACF,OAAO;AACL,YAAM,mBAAmB,MAAM,KAAK,eAAe,KAAK;AACxD,YAAM,cAAU;AAAA,QACd,MAAM,KAAK,kBAAkB,GAAG,QAAQ,OAAO;AAAA,QAC/C,EAAE,QAAQ,MAAM;AAAA,MAClB;AACA,YAAM,aAAa,SAAS;AAC5B,UAAI,YAAY;AACd,uBAAe,MAAM;AAAA,UACnB;AAAA,UACA,YAAY,UAAU,QAAQ,QAAQ;AAAA,QACxC;AACA,YAAI,CAAC,IAAI,WAAW,YAAY,GAAG;AACjC,yBAAe,GAAG,YAAY;AAC9B,cAAI,CAAC,IAAI,WAAW,YAAY,GAAG;AACjC,2BAAe;AAAA,UACjB;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,QAAI,cAAc;AAChB,UAAI;AACF,mBAAO,2BAAc,IAAI,aAAa,OAAO,YAAY,CAAC;AAAA,MAC5D,QAAQ;AAAA,MAAC;AACT,aAAO;AAAA,IACT;AAAA,EACF;AACA,MAAI,uBAAO;AACT,UAAM,cACJ,eAAe,MACf,eAAe,UACf,eAAe,UACf,eAAe;AACjB,UAAM,aAAa,aAAa,SAAS,aAAa;AACtD,UAAM,eAAe,aAAa,UAAU,aAAa;AACzD,QAAI,eAAe,YAAY;AAE7B,YAAM,YAAY,MAAM;AAAA,QACtB,MAAM,QAAQ,OAAO;AAAA,QACrB,wBAAwB,QAAQ;AAAA,MAClC;AACA,UAAI,IAAI,WAAW,SAAS,GAAG;AAC7B,YAAI;AACF,iBAAO,IAAI,aAAa,OAAO,SAAS;AAAA,QAC1C,QAAQ;AAAA,QAAC;AACT,eAAO;AAAA,MACT;AAAA,IACF;AACA,QAAI,UAAU;AACd,QACE;AAAA;AAAA,IAGA,eAAe;AAAA,IAEf,IAAI,WAAW,OAAO,GACtB;AACA,YAAM,SAAS,IAAI,aAAa,SAAS,MAAM;AAC/C,UAAI,YAAY;AACd,YAAI,eAAe,QAAQ;AAIzB,oBACE,aAAa,QACT,kCAAkC,KAAK,MAAM,IAAI,CAAC,KAAK,KACvD,kCAAkC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,QAC/D,WAAW,eAAe,IAAI;AAI5B,oBACE,aAAa,QACT,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAC1D,KACA,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAC1D;AAAA,QACR,WAAW,eAAe,QAAQ;AAIhC,oBACE,aAAa,QACT,6CAA6C;AAAA,YAC3C;AAAA,UACF,IAAI,CAAC,KAAK,KACV,6CAA6C;AAAA,YAC3C;AAAA,UACF,IAAI,CAAC,KAAK;AAAA,QAClB;AAAA,MACF,WAAW,cAAc;AACvB,YAAI,eAAe,QAAQ;AAQzB,oBACE,yCAAyC,KAAK,MAAM,IAAI,CAAC,KAAK;AAGhE,cAAI,CAAC,SAAS;AACZ,sBACE,4DAA4D;AAAA,cAC1D;AAAA,YACF,IAAI,CAAC,KAAK;AAAA,UACd;AAGA,cAAI,CAAC,SAAS;AACZ,sBAAU,+BAA+B,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,UAChE;AAAA,QACF,WAAW,eAAe,IAAI;AAK5B,oBACE,qDAAqD;AAAA,YACnD;AAAA,UACF,IAAI,CAAC,KAAK;AACZ,cAAI,CAAC,SAAS;AAEZ,sBACE,mEAAmE;AAAA,cACjE;AAAA,YACF,IAAI,CAAC,KAAK;AAAA,UACd;AACA,cAAI,CAAC,SAAS;AAEZ,sBAAU,mCAAmC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,UACpE;AAAA,QACF,WAAW,eAAe,QAAQ;AAEhC,oBAAU,mCAAmC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,QACpE;AAAA,MACF,WAAW,eAAe,QAAQ;AAqBhC,kBAAU,+BAA+B,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MAChE,WAAW,eAAe,IAAI;AAoB5B,kBAAU,kCAAkC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MACnE,WAAW,eAAe,QAAQ;AAgChC,kBAAU,mCAAmC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MACpE;AACA,UAAI,SAAS;AACX,sBAAU,2BAAc,MAAM,QAAQ,MAAM,QAAQ,OAAO,GAAG,OAAO,CAAC;AAAA,MACxE;AAAA,IACF;AAAA,EACF,OAAO;AAEL,QAAI,WAAW,eAAe;AAC9B,UAAM,eAAe,aAAa,UAAU,aAAa;AACzD,UAAM,aAAa,aAAa,SAAS,aAAa;AAOtD,QAAI,gBAAgB,QAAQ,SAAS,iBAAiB,GAAG;AAEvD,YAAM,WAAW,QAAQ,QAAQ,YAAY;AAC7C,UAAI,aAAa,IAAI;AAEnB,cAAM,cAAc,QAAQ,MAAM,GAAG,WAAW,aAAa,MAAM;AAEnE,YAAI;AACF,gBAAM,QAAQ,IAAI,SAAS,WAAW;AAEtC,cAAI,MAAM,OAAO,GAAG;AAClB,0BAAU,2BAAc,WAAW;AAEnC,uBAAW,CAAC,MAAM,QAAQ,OAAO;AAAA,UACnC;AAAA,QACF,QAAQ;AAAA,QAER;AAAA,MACF;AAAA,IACF;AAEA,QACE,aACC,gBAAgB;AAAA;AAAA,IAGjB,IAAI,WAAW,OAAO,GACtB;AACA,YAAM,SAAS,IAAI,aAAa,SAAS,MAAM;AAC/C,UAAI,UAAU;AAEd,UAAI,cAAc;AAIhB,kBACE,+CAA+C,KAAK,MAAM,IAAI,CAAC,KAAK;AACtE,YAAI,CAAC,SAAS;AAKZ,oBACE,sCAAsC,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,QAC/D;AAGA,YAAI,CAAC,SAAS;AAEZ,gBAAM,QAAQ,+CAA+C;AAAA,YAC3D;AAAA,UACF;AACA,cAAI,OAAO;AACT,sBAAU,MAAM,CAAC,KAAK;AAAA,UACxB;AAAA,QACF;AAGA,YAAI,WAAW,aAAa,UAAU,QAAQ,WAAW,OAAO,GAAG;AAGjE,oBAAU,MAAM,OAAO;AAAA,QACzB;AAAA,MACF,WAAW,YAAY;AAErB,kBACE,aAAa,QACT,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAAK,KAC/D,0CAA0C,KAAK,MAAM,IAAI,CAAC,KAAK;AAAA,MACvE;AAEA,UAAI,SAAS;AAEX,sBAAU,2BAAc,MAAM,QAAQ,MAAM,QAAQ,OAAO,GAAG,OAAO,CAAC;AAAA,MACxE;AAAA,IACF;AAAA,EACF;AACA,MAAI;AACF,UAAM,WAAW,IAAI,aAAa,OAAO,OAAO;AAChD,eAAO,2BAAc,QAAQ;AAAA,EAC/B,QAAQ;AAAA,EAAC;AAET,aAAO,2BAAc,OAAO;AAC9B;",
6
6
  "names": ["binPath"]
7
7
  }
package/dist/dlx-binary.d.ts CHANGED
@@ -33,6 +33,7 @@ export declare function dlxBinary(args: readonly string[] | string[], options?:
33
33
  /**
34
34
  * Get the DLX binary cache directory path.
35
35
  * Returns normalized path for cross-platform compatibility.
36
+ * Uses same directory as dlx-package for unified DLX storage.
36
37
  */
37
38
  export declare function getDlxCachePath(): string;
38
39
  /**
package/dist/dlx-binary.js CHANGED
@@ -209,7 +209,7 @@ async function dlxBinary(args, options, spawnExtra) {
209
209
  };
210
210
  }
211
211
  function getDlxCachePath() {
212
- return (0, import_path.normalizePath)(import_node_path.default.join((0, import_paths.getSocketHomePath)(), "cache", "dlx"));
212
+ return (0, import_paths.getSocketDlxDir)();
213
213
  }
214
214
  async function listDlxCache() {
215
215
  const cacheDir = getDlxCachePath();
package/dist/dlx-binary.js.map CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "version": 3,
3
3
  "sources": ["../src/dlx-binary.ts"],
4
- "sourcesContent": ["/** @fileoverview DLX binary execution utilities for Socket ecosystem. */\n\nimport { createHash } from 'node:crypto'\nimport { existsSync, promises as fs } from 'node:fs'\nimport os from 'node:os'\nimport path from 'node:path'\n\nimport { WIN32 } from '#constants/platform'\n\nimport { isDir, readJson, safeDelete } from './fs'\nimport { httpRequest } from './http-request'\nimport { isObjectObject } from './objects'\nimport { normalizePath } from './path'\nimport { getSocketHomePath } from './paths'\nimport type { SpawnExtra, SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\nexport interface DlxBinaryOptions {\n /** URL to download the binary from. */\n url: string\n /** Optional name for the cached binary (defaults to URL hash). */\n name?: string | undefined\n /** Expected checksum (sha256) for verification. */\n checksum?: string | undefined\n /** Cache TTL in milliseconds (default: 7 days). */\n cacheTtl?: number | undefined\n /** Force re-download even if cached. */\n force?: boolean | undefined\n /** Additional spawn options. */\n spawnOptions?: SpawnOptions | undefined\n}\n\nexport interface DlxBinaryResult {\n /** Path to the cached binary. */\n binaryPath: string\n /** Whether the binary was newly downloaded. */\n downloaded: boolean\n /** The spawn promise for the running process. */\n spawnPromise: ReturnType<typeof spawn>\n}\n\n/**\n * Generate a cache directory name from URL, similar to pnpm/npx.\n * Uses SHA256 hash to create content-addressed storage.\n */\nfunction generateCacheKey(url: string): string {\n return createHash('sha256').update(url).digest('hex')\n}\n\n/**\n * Get metadata file path for a cached binary.\n */\nfunction getMetadataPath(cacheEntryPath: string): string {\n return path.join(cacheEntryPath, '.dlx-metadata.json')\n}\n\n/**\n * Check if a cached binary is still valid.\n */\nasync function isCacheValid(\n cacheEntryPath: string,\n cacheTtl: number,\n): Promise<boolean> {\n try {\n const metaPath = getMetadataPath(cacheEntryPath)\n if (!existsSync(metaPath)) {\n return false\n }\n\n const metadata = await readJson(metaPath, { throws: false })\n if (!isObjectObject(metadata)) {\n return false\n }\n const now = Date.now()\n const age =\n now -\n (((metadata as Record<string, unknown>)['timestamp'] as number) || 0)\n\n return age < cacheTtl\n } catch {\n return false\n }\n}\n\n/**\n * Download a file from a URL with integrity checking.\n */\nasync function downloadBinary(\n url: string,\n destPath: string,\n checksum?: string | undefined,\n): Promise<string> {\n const response = await httpRequest(url)\n if (!response.ok) {\n throw new Error(\n `Failed to download binary: ${response.status} ${response.statusText}`,\n )\n }\n\n // Create a temporary file first.\n const tempPath = `${destPath}.download`\n const hasher = createHash('sha256')\n\n try {\n // Ensure directory exists.\n await fs.mkdir(path.dirname(destPath), { recursive: true })\n\n // Get the response as a buffer and compute hash.\n const buffer = response.body\n\n // Compute hash.\n hasher.update(buffer)\n const actualChecksum = hasher.digest('hex')\n\n // Verify checksum if provided.\n if (checksum && actualChecksum !== checksum) {\n throw new Error(\n `Checksum mismatch: expected ${checksum}, got ${actualChecksum}`,\n )\n }\n\n // Write to temp file.\n await fs.writeFile(tempPath, buffer)\n\n // Make executable on POSIX systems.\n if (!WIN32) {\n await fs.chmod(tempPath, 0o755)\n }\n\n // Move temp file to final location.\n await fs.rename(tempPath, destPath)\n\n return actualChecksum\n } catch (e) {\n // Clean up temp file on error.\n try {\n await safeDelete(tempPath)\n } catch {\n // Ignore cleanup errors.\n }\n throw e\n }\n}\n\n/**\n * Write metadata for a cached binary.\n */\nasync function writeMetadata(\n cacheEntryPath: string,\n url: string,\n checksum: string,\n): Promise<void> {\n const metaPath = getMetadataPath(cacheEntryPath)\n const metadata = {\n arch: os.arch(),\n checksum,\n platform: os.platform(),\n timestamp: Date.now(),\n url,\n version: '1.0.0',\n }\n await fs.writeFile(metaPath, JSON.stringify(metadata, null, 2))\n}\n\n/**\n * Clean expired entries from the DLX cache.\n */\nexport async function cleanDlxCache(\n maxAge: number = /*@__INLINE__*/ require('../constants/time').DLX_BINARY_CACHE_TTL,\n): Promise<number> {\n const cacheDir = getDlxCachePath()\n\n if (!existsSync(cacheDir)) {\n return 0\n }\n\n let cleaned = 0\n const now = Date.now()\n const entries = await fs.readdir(cacheDir)\n\n for (const entry of entries) {\n const entryPath = path.join(cacheDir, entry)\n const metaPath = getMetadataPath(entryPath)\n\n try {\n // eslint-disable-next-line no-await-in-loop\n if (!(await isDir(entryPath))) {\n continue\n }\n\n // eslint-disable-next-line no-await-in-loop\n const metadata = await readJson(metaPath, { throws: false })\n if (\n !metadata ||\n typeof metadata !== 'object' ||\n Array.isArray(metadata)\n ) {\n continue\n }\n const age =\n now -\n (((metadata as Record<string, unknown>)['timestamp'] as number) || 0)\n\n if (age > maxAge) {\n // Remove entire cache entry directory.\n // eslint-disable-next-line no-await-in-loop\n await safeDelete(entryPath, { force: true, recursive: true })\n cleaned += 1\n }\n } catch {\n // If we can't read metadata, check if directory is empty or corrupted.\n try {\n // eslint-disable-next-line no-await-in-loop\n const contents = await fs.readdir(entryPath)\n if (!contents.length) {\n // Remove empty directory.\n // eslint-disable-next-line no-await-in-loop\n await safeDelete(entryPath)\n cleaned += 1\n }\n } catch {}\n }\n }\n\n return cleaned\n}\n\n/**\n * Download and execute a binary from a URL with caching.\n */\nexport async function dlxBinary(\n args: readonly string[] | string[],\n options?: DlxBinaryOptions | undefined,\n spawnExtra?: SpawnExtra | undefined,\n): Promise<DlxBinaryResult> {\n const {\n cacheTtl = /*@__INLINE__*/ require('../constants/time').DLX_BINARY_CACHE_TTL,\n checksum,\n force = false,\n name,\n spawnOptions,\n url,\n } = { __proto__: null, ...options } as DlxBinaryOptions\n\n // Generate cache paths similar to pnpm/npx structure.\n const cacheDir = getDlxCachePath()\n const cacheKey = generateCacheKey(url)\n const cacheEntryDir = path.join(cacheDir, cacheKey)\n const binaryName = name || `binary-${process.platform}-${os.arch()}`\n const binaryPath = normalizePath(path.join(cacheEntryDir, binaryName))\n\n let downloaded = false\n let computedChecksum = checksum\n\n // Check if we need to download.\n if (\n !force &&\n existsSync(cacheEntryDir) &&\n (await isCacheValid(cacheEntryDir, cacheTtl))\n ) {\n // Binary is cached and valid, read the checksum from metadata.\n try {\n const metaPath = getMetadataPath(cacheEntryDir)\n const metadata = await readJson(metaPath, { throws: false })\n if (\n metadata &&\n typeof metadata === 'object' &&\n !Array.isArray(metadata) &&\n typeof (metadata as Record<string, unknown>)['checksum'] === 'string'\n ) {\n computedChecksum = (metadata as Record<string, unknown>)[\n 'checksum'\n ] as string\n } else {\n // If metadata is invalid, re-download.\n downloaded = true\n }\n } catch {\n // If we can't read metadata, re-download.\n downloaded = true\n }\n } else {\n downloaded = true\n }\n\n if (downloaded) {\n // Ensure cache directory exists.\n await fs.mkdir(cacheEntryDir, { recursive: true })\n\n // Download the binary.\n computedChecksum = await downloadBinary(url, binaryPath, checksum)\n await writeMetadata(cacheEntryDir, url, computedChecksum || '')\n }\n\n // Execute the binary.\n // On Windows, script files (.bat, .cmd, .ps1) require shell: true because\n // they are not executable on their own and must be run through cmd.exe.\n // Note: .exe files are actual binaries and don't need shell mode.\n const needsShell = WIN32 && /\\.(?:bat|cmd|ps1)$/i.test(binaryPath)\n // Windows cmd.exe PATH resolution behavior:\n // When shell: true on Windows with .cmd/.bat/.ps1 files, spawn will automatically\n // strip the full path down to just the basename without extension (e.g.,\n // C:\\cache\\test.cmd becomes just \"test\"). Windows cmd.exe then searches for \"test\"\n // in directories listed in PATH, trying each extension from PATHEXT environment\n // variable (.COM, .EXE, .BAT, .CMD, etc.) until it finds a match.\n //\n // Since our binaries are downloaded to a custom cache directory that's not in PATH\n // (unlike system package managers like npm/pnpm/yarn which are already in PATH),\n // we must prepend the cache directory to PATH so cmd.exe can locate the binary.\n //\n // This approach is consistent with how other tools handle Windows command execution:\n // - npm's promise-spawn: uses which.sync() to find commands in PATH\n // - cross-spawn: spawns cmd.exe with escaped arguments\n // - Node.js spawn with shell: true: delegates to cmd.exe which uses PATH\n const finalSpawnOptions = needsShell\n ? {\n ...spawnOptions,\n env: {\n ...spawnOptions?.env,\n PATH: `${cacheEntryDir}${path.delimiter}${process.env['PATH'] || ''}`,\n },\n shell: true,\n }\n : spawnOptions\n const spawnPromise = spawn(binaryPath, args, finalSpawnOptions, spawnExtra)\n\n return {\n binaryPath,\n downloaded,\n spawnPromise,\n }\n}\n\n/**\n * Get the DLX binary cache directory path.\n * Returns normalized path for cross-platform compatibility.\n */\nexport function getDlxCachePath(): string {\n return normalizePath(path.join(getSocketHomePath(), 'cache', 'dlx'))\n}\n\n/**\n * Get information about cached binaries.\n */\nexport async function listDlxCache(): Promise<\n Array<{\n age: number\n arch: string\n checksum: string\n name: string\n platform: string\n size: number\n url: string\n }>\n> {\n const cacheDir = getDlxCachePath()\n\n if (!existsSync(cacheDir)) {\n return []\n }\n\n const results = []\n const now = Date.now()\n const entries = await fs.readdir(cacheDir)\n\n for (const entry of entries) {\n const entryPath = path.join(cacheDir, entry)\n try {\n // eslint-disable-next-line no-await-in-loop\n if (!(await isDir(entryPath))) {\n continue\n }\n\n const metaPath = getMetadataPath(entryPath)\n // eslint-disable-next-line no-await-in-loop\n const metadata = await readJson(metaPath, { throws: false })\n if (\n !metadata ||\n typeof metadata !== 'object' ||\n Array.isArray(metadata)\n ) {\n continue\n }\n\n // Find the binary file in the directory.\n // eslint-disable-next-line no-await-in-loop\n const files = await fs.readdir(entryPath)\n const binaryFile = files.find(f => !f.startsWith('.'))\n\n if (binaryFile) {\n const binaryPath = path.join(entryPath, binaryFile)\n // eslint-disable-next-line no-await-in-loop\n const binaryStats = await fs.stat(binaryPath)\n\n const metaObj = metadata as Record<string, unknown>\n results.push({\n age: now - ((metaObj['timestamp'] as number) || 0),\n arch: (metaObj['arch'] as string) || 'unknown',\n checksum: (metaObj['checksum'] as string) || '',\n name: binaryFile,\n platform: (metaObj['platform'] as string) || 'unknown',\n size: binaryStats.size,\n url: (metaObj['url'] as string) || '',\n })\n }\n } catch {}\n }\n\n return results\n}\n"],
5
- "mappings": ";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAEA,yBAA2B;AAC3B,qBAA2C;AAC3C,qBAAe;AACf,uBAAiB;AAEjB,sBAAsB;AAEtB,gBAA4C;AAC5C,0BAA4B;AAC5B,qBAA+B;AAC/B,kBAA8B;AAC9B,mBAAkC;AAElC,mBAAsB;AA8BtB,SAAS,iBAAiB,KAAqB;AAC7C,aAAO,+BAAW,QAAQ,EAAE,OAAO,GAAG,EAAE,OAAO,KAAK;AACtD;AAKA,SAAS,gBAAgB,gBAAgC;AACvD,SAAO,iBAAAA,QAAK,KAAK,gBAAgB,oBAAoB;AACvD;AAKA,eAAe,aACb,gBACA,UACkB;AAClB,MAAI;AACF,UAAM,WAAW,gBAAgB,cAAc;AAC/C,QAAI,KAAC,2BAAW,QAAQ,GAAG;AACzB,aAAO;AAAA,IACT;AAEA,UAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,QAAI,KAAC,+BAAe,QAAQ,GAAG;AAC7B,aAAO;AAAA,IACT;AACA,UAAM,MAAM,KAAK,IAAI;AACrB,UAAM,MACJ,OACG,SAAqC,WAAW,KAAgB;AAErE,WAAO,MAAM;AAAA,EACf,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAKA,eAAe,eACb,KACA,UACA,UACiB;AACjB,QAAM,WAAW,UAAM,iCAAY,GAAG;AACtC,MAAI,CAAC,SAAS,IAAI;AAChB,UAAM,IAAI;AAAA,MACR,8BAA8B,SAAS,MAAM,IAAI,SAAS,UAAU;AAAA,IACtE;AAAA,EACF;AAGA,QAAM,WAAW,GAAG,QAAQ;AAC5B,QAAM,aAAS,+BAAW,QAAQ;AAElC,MAAI;AAEF,UAAM,eAAAC,SAAG,MAAM,iBAAAD,QAAK,QAAQ,QAAQ,GAAG,EAAE,WAAW,KAAK,CAAC;AAG1D,UAAM,SAAS,SAAS;AAGxB,WAAO,OAAO,MAAM;AACpB,UAAM,iBAAiB,OAAO,OAAO,KAAK;AAG1C,QAAI,YAAY,mBAAmB,UAAU;AAC3C,YAAM,IAAI;AAAA,QACR,+BAA+B,QAAQ,SAAS,cAAc;AAAA,MAChE;AAAA,IACF;AAGA,UAAM,eAAAC,SAAG,UAAU,UAAU,MAAM;AAGnC,QAAI,CAAC,uBAAO;AACV,YAAM,eAAAA,SAAG,MAAM,UAAU,GAAK;AAAA,IAChC;AAGA,UAAM,eAAAA,SAAG,OAAO,UAAU,QAAQ;AAElC,WAAO;AAAA,EACT,SAAS,GAAG;AAEV,QAAI;AACF,gBAAM,sBAAW,QAAQ;AAAA,IAC3B,QAAQ;AAAA,IAER;AACA,UAAM;AAAA,EACR;AACF;AAKA,eAAe,cACb,gBACA,KACA,UACe;AACf,QAAM,WAAW,gBAAgB,cAAc;AAC/C,QAAM,WAAW;AAAA,IACf,MAAM,eAAAC,QAAG,KAAK;AAAA,IACd;AAAA,IACA,UAAU,eAAAA,QAAG,SAAS;AAAA,IACtB,WAAW,KAAK,IAAI;AAAA,IACpB;AAAA,IACA,SAAS;AAAA,EACX;AACA,QAAM,eAAAD,SAAG,UAAU,UAAU,KAAK,UAAU,UAAU,MAAM,CAAC,CAAC;AAChE;AAKA,eAAsB,cACpB;AAAA;AAAA,EAAiC,QAAQ,mBAAmB,EAAE;AAAA,GAC7C;AACjB,QAAM,WAAW,gBAAgB;AAEjC,MAAI,KAAC,2BAAW,QAAQ,GAAG;AACzB,WAAO;AAAA,EACT;AAEA,MAAI,UAAU;AACd,QAAM,MAAM,KAAK,IAAI;AACrB,QAAM,UAAU,MAAM,eAAAA,SAAG,QAAQ,QAAQ;AAEzC,aAAW,SAAS,SAAS;AAC3B,UAAM,YAAY,iBAAAD,QAAK,KAAK,UAAU,KAAK;AAC3C,UAAM,WAAW,gBAAgB,SAAS;AAE1C,QAAI;AAEF,UAAI,CAAE,UAAM,iBAAM,SAAS,GAAI;AAC7B;AAAA,MACF;AAGA,YAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,UACE,CAAC,YACD,OAAO,aAAa,YACpB,MAAM,QAAQ,QAAQ,GACtB;AACA;AAAA,MACF;AACA,YAAM,MACJ,OACG,SAAqC,WAAW,KAAgB;AAErE,UAAI,MAAM,QAAQ;AAGhB,kBAAM,sBAAW,WAAW,EAAE,OAAO,MAAM,WAAW,KAAK,CAAC;AAC5D,mBAAW;AAAA,MACb;AAAA,IACF,QAAQ;AAEN,UAAI;AAEF,cAAM,WAAW,MAAM,eAAAC,SAAG,QAAQ,SAAS;AAC3C,YAAI,CAAC,SAAS,QAAQ;AAGpB,oBAAM,sBAAW,SAAS;AAC1B,qBAAW;AAAA,QACb;AAAA,MACF,QAAQ;AAAA,MAAC;AAAA,IACX;AAAA,EACF;AAEA,SAAO;AACT;AAKA,eAAsB,UACpB,MACA,SACA,YAC0B;AAC1B,QAAM;AAAA,IACJ;AAAA;AAAA,MAA2B,QAAQ,mBAAmB,EAAE;AAAA;AAAA,IACxD;AAAA,IACA,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,EACF,IAAI,EAAE,WAAW,MAAM,GAAG,QAAQ;AAGlC,QAAM,WAAW,gBAAgB;AACjC,QAAM,WAAW,iBAAiB,GAAG;AACrC,QAAM,gBAAgB,iBAAAD,QAAK,KAAK,UAAU,QAAQ;AAClD,QAAM,aAAa,QAAQ,UAAU,QAAQ,QAAQ,IAAI,eAAAE,QAAG,KAAK,CAAC;AAClE,QAAM,iBAAa,2BAAc,iBAAAF,QAAK,KAAK,eAAe,UAAU,CAAC;AAErE,MAAI,aAAa;AACjB,MAAI,mBAAmB;AAGvB,MACE,CAAC,aACD,2BAAW,aAAa,KACvB,MAAM,aAAa,eAAe,QAAQ,GAC3C;AAEA,QAAI;AACF,YAAM,WAAW,gBAAgB,aAAa;AAC9C,YAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,UACE,YACA,OAAO,aAAa,YACpB,CAAC,MAAM,QAAQ,QAAQ,KACvB,OAAQ,SAAqC,UAAU,MAAM,UAC7D;AACA,2BAAoB,SAClB,UACF;AAAA,MACF,OAAO;AAEL,qBAAa;AAAA,MACf;AAAA,IACF,QAAQ;AAEN,mBAAa;AAAA,IACf;AAAA,EACF,OAAO;AACL,iBAAa;AAAA,EACf;AAEA,MAAI,YAAY;AAEd,UAAM,eAAAC,SAAG,MAAM,eAAe,EAAE,WAAW,KAAK,CAAC;AAGjD,uBAAmB,MAAM,eAAe,KAAK,YAAY,QAAQ;AACjE,UAAM,cAAc,eAAe,KAAK,oBAAoB,EAAE;AAAA,EAChE;AAMA,QAAM,aAAa,yBAAS,sBAAsB,KAAK,UAAU;AAgBjE,QAAM,oBAAoB,aACtB;AAAA,IACE,GAAG;AAAA,IACH,KAAK;AAAA,MACH,GAAG,cAAc;AAAA,MACjB,MAAM,GAAG,aAAa,GAAG,iBAAAD,QAAK,SAAS,GAAG,QAAQ,IAAI,MAAM,KAAK,EAAE;AAAA,IACrE;AAAA,IACA,OAAO;AAAA,EACT,IACA;AACJ,QAAM,mBAAe,oBAAM,YAAY,MAAM,mBAAmB,UAAU;AAE1E,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;AAMO,SAAS,kBAA0B;AACxC,aAAO,2BAAc,iBAAAA,QAAK,SAAK,gCAAkB,GAAG,SAAS,KAAK,CAAC;AACrE;AAKA,eAAsB,eAUpB;AACA,QAAM,WAAW,gBAAgB;AAEjC,MAAI,KAAC,2BAAW,QAAQ,GAAG;AACzB,WAAO,CAAC;AAAA,EACV;AAEA,QAAM,UAAU,CAAC;AACjB,QAAM,MAAM,KAAK,IAAI;AACrB,QAAM,UAAU,MAAM,eAAAC,SAAG,QAAQ,QAAQ;AAEzC,aAAW,SAAS,SAAS;AAC3B,UAAM,YAAY,iBAAAD,QAAK,KAAK,UAAU,KAAK;AAC3C,QAAI;AAEF,UAAI,CAAE,UAAM,iBAAM,SAAS,GAAI;AAC7B;AAAA,MACF;AAEA,YAAM,WAAW,gBAAgB,SAAS;AAE1C,YAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,UACE,CAAC,YACD,OAAO,aAAa,YACpB,MAAM,QAAQ,QAAQ,GACtB;AACA;AAAA,MACF;AAIA,YAAM,QAAQ,MAAM,eAAAC,SAAG,QAAQ,SAAS;AACxC,YAAM,aAAa,MAAM,KAAK,OAAK,CAAC,EAAE,WAAW,GAAG,CAAC;AAErD,UAAI,YAAY;AACd,cAAM,aAAa,iBAAAD,QAAK,KAAK,WAAW,UAAU;AAElD,cAAM,cAAc,MAAM,eAAAC,SAAG,KAAK,UAAU;AAE5C,cAAM,UAAU;AAChB,gBAAQ,KAAK;AAAA,UACX,KAAK,OAAQ,QAAQ,WAAW,KAAgB;AAAA,UAChD,MAAO,QAAQ,MAAM,KAAgB;AAAA,UACrC,UAAW,QAAQ,UAAU,KAAgB;AAAA,UAC7C,MAAM;AAAA,UACN,UAAW,QAAQ,UAAU,KAAgB;AAAA,UAC7C,MAAM,YAAY;AAAA,UAClB,KAAM,QAAQ,KAAK,KAAgB;AAAA,QACrC,CAAC;AAAA,MACH;AAAA,IACF,QAAQ;AAAA,IAAC;AAAA,EACX;AAEA,SAAO;AACT;",
4
+ "sourcesContent": ["/** @fileoverview DLX binary execution utilities for Socket ecosystem. */\n\nimport { createHash } from 'node:crypto'\nimport { existsSync, promises as fs } from 'node:fs'\nimport os from 'node:os'\nimport path from 'node:path'\n\nimport { WIN32 } from '#constants/platform'\n\nimport { isDir, readJson, safeDelete } from './fs'\nimport { httpRequest } from './http-request'\nimport { isObjectObject } from './objects'\nimport { normalizePath } from './path'\nimport { getSocketDlxDir } from './paths'\nimport type { SpawnExtra, SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\nexport interface DlxBinaryOptions {\n /** URL to download the binary from. */\n url: string\n /** Optional name for the cached binary (defaults to URL hash). */\n name?: string | undefined\n /** Expected checksum (sha256) for verification. */\n checksum?: string | undefined\n /** Cache TTL in milliseconds (default: 7 days). */\n cacheTtl?: number | undefined\n /** Force re-download even if cached. */\n force?: boolean | undefined\n /** Additional spawn options. */\n spawnOptions?: SpawnOptions | undefined\n}\n\nexport interface DlxBinaryResult {\n /** Path to the cached binary. */\n binaryPath: string\n /** Whether the binary was newly downloaded. */\n downloaded: boolean\n /** The spawn promise for the running process. */\n spawnPromise: ReturnType<typeof spawn>\n}\n\n/**\n * Generate a cache directory name from URL, similar to pnpm/npx.\n * Uses SHA256 hash to create content-addressed storage.\n */\nfunction generateCacheKey(url: string): string {\n return createHash('sha256').update(url).digest('hex')\n}\n\n/**\n * Get metadata file path for a cached binary.\n */\nfunction getMetadataPath(cacheEntryPath: string): string {\n return path.join(cacheEntryPath, '.dlx-metadata.json')\n}\n\n/**\n * Check if a cached binary is still valid.\n */\nasync function isCacheValid(\n cacheEntryPath: string,\n cacheTtl: number,\n): Promise<boolean> {\n try {\n const metaPath = getMetadataPath(cacheEntryPath)\n if (!existsSync(metaPath)) {\n return false\n }\n\n const metadata = await readJson(metaPath, { throws: false })\n if (!isObjectObject(metadata)) {\n return false\n }\n const now = Date.now()\n const age =\n now -\n (((metadata as Record<string, unknown>)['timestamp'] as number) || 0)\n\n return age < cacheTtl\n } catch {\n return false\n }\n}\n\n/**\n * Download a file from a URL with integrity checking.\n */\nasync function downloadBinary(\n url: string,\n destPath: string,\n checksum?: string | undefined,\n): Promise<string> {\n const response = await httpRequest(url)\n if (!response.ok) {\n throw new Error(\n `Failed to download binary: ${response.status} ${response.statusText}`,\n )\n }\n\n // Create a temporary file first.\n const tempPath = `${destPath}.download`\n const hasher = createHash('sha256')\n\n try {\n // Ensure directory exists.\n await fs.mkdir(path.dirname(destPath), { recursive: true })\n\n // Get the response as a buffer and compute hash.\n const buffer = response.body\n\n // Compute hash.\n hasher.update(buffer)\n const actualChecksum = hasher.digest('hex')\n\n // Verify checksum if provided.\n if (checksum && actualChecksum !== checksum) {\n throw new Error(\n `Checksum mismatch: expected ${checksum}, got ${actualChecksum}`,\n )\n }\n\n // Write to temp file.\n await fs.writeFile(tempPath, buffer)\n\n // Make executable on POSIX systems.\n if (!WIN32) {\n await fs.chmod(tempPath, 0o755)\n }\n\n // Move temp file to final location.\n await fs.rename(tempPath, destPath)\n\n return actualChecksum\n } catch (e) {\n // Clean up temp file on error.\n try {\n await safeDelete(tempPath)\n } catch {\n // Ignore cleanup errors.\n }\n throw e\n }\n}\n\n/**\n * Write metadata for a cached binary.\n */\nasync function writeMetadata(\n cacheEntryPath: string,\n url: string,\n checksum: string,\n): Promise<void> {\n const metaPath = getMetadataPath(cacheEntryPath)\n const metadata = {\n arch: os.arch(),\n checksum,\n platform: os.platform(),\n timestamp: Date.now(),\n url,\n version: '1.0.0',\n }\n await fs.writeFile(metaPath, JSON.stringify(metadata, null, 2))\n}\n\n/**\n * Clean expired entries from the DLX cache.\n */\nexport async function cleanDlxCache(\n maxAge: number = /*@__INLINE__*/ require('../constants/time').DLX_BINARY_CACHE_TTL,\n): Promise<number> {\n const cacheDir = getDlxCachePath()\n\n if (!existsSync(cacheDir)) {\n return 0\n }\n\n let cleaned = 0\n const now = Date.now()\n const entries = await fs.readdir(cacheDir)\n\n for (const entry of entries) {\n const entryPath = path.join(cacheDir, entry)\n const metaPath = getMetadataPath(entryPath)\n\n try {\n // eslint-disable-next-line no-await-in-loop\n if (!(await isDir(entryPath))) {\n continue\n }\n\n // eslint-disable-next-line no-await-in-loop\n const metadata = await readJson(metaPath, { throws: false })\n if (\n !metadata ||\n typeof metadata !== 'object' ||\n Array.isArray(metadata)\n ) {\n continue\n }\n const age =\n now -\n (((metadata as Record<string, unknown>)['timestamp'] as number) || 0)\n\n if (age > maxAge) {\n // Remove entire cache entry directory.\n // eslint-disable-next-line no-await-in-loop\n await safeDelete(entryPath, { force: true, recursive: true })\n cleaned += 1\n }\n } catch {\n // If we can't read metadata, check if directory is empty or corrupted.\n try {\n // eslint-disable-next-line no-await-in-loop\n const contents = await fs.readdir(entryPath)\n if (!contents.length) {\n // Remove empty directory.\n // eslint-disable-next-line no-await-in-loop\n await safeDelete(entryPath)\n cleaned += 1\n }\n } catch {}\n }\n }\n\n return cleaned\n}\n\n/**\n * Download and execute a binary from a URL with caching.\n */\nexport async function dlxBinary(\n args: readonly string[] | string[],\n options?: DlxBinaryOptions | undefined,\n spawnExtra?: SpawnExtra | undefined,\n): Promise<DlxBinaryResult> {\n const {\n cacheTtl = /*@__INLINE__*/ require('../constants/time').DLX_BINARY_CACHE_TTL,\n checksum,\n force = false,\n name,\n spawnOptions,\n url,\n } = { __proto__: null, ...options } as DlxBinaryOptions\n\n // Generate cache paths similar to pnpm/npx structure.\n const cacheDir = getDlxCachePath()\n const cacheKey = generateCacheKey(url)\n const cacheEntryDir = path.join(cacheDir, cacheKey)\n const binaryName = name || `binary-${process.platform}-${os.arch()}`\n const binaryPath = normalizePath(path.join(cacheEntryDir, binaryName))\n\n let downloaded = false\n let computedChecksum = checksum\n\n // Check if we need to download.\n if (\n !force &&\n existsSync(cacheEntryDir) &&\n (await isCacheValid(cacheEntryDir, cacheTtl))\n ) {\n // Binary is cached and valid, read the checksum from metadata.\n try {\n const metaPath = getMetadataPath(cacheEntryDir)\n const metadata = await readJson(metaPath, { throws: false })\n if (\n metadata &&\n typeof metadata === 'object' &&\n !Array.isArray(metadata) &&\n typeof (metadata as Record<string, unknown>)['checksum'] === 'string'\n ) {\n computedChecksum = (metadata as Record<string, unknown>)[\n 'checksum'\n ] as string\n } else {\n // If metadata is invalid, re-download.\n downloaded = true\n }\n } catch {\n // If we can't read metadata, re-download.\n downloaded = true\n }\n } else {\n downloaded = true\n }\n\n if (downloaded) {\n // Ensure cache directory exists.\n await fs.mkdir(cacheEntryDir, { recursive: true })\n\n // Download the binary.\n computedChecksum = await downloadBinary(url, binaryPath, checksum)\n await writeMetadata(cacheEntryDir, url, computedChecksum || '')\n }\n\n // Execute the binary.\n // On Windows, script files (.bat, .cmd, .ps1) require shell: true because\n // they are not executable on their own and must be run through cmd.exe.\n // Note: .exe files are actual binaries and don't need shell mode.\n const needsShell = WIN32 && /\\.(?:bat|cmd|ps1)$/i.test(binaryPath)\n // Windows cmd.exe PATH resolution behavior:\n // When shell: true on Windows with .cmd/.bat/.ps1 files, spawn will automatically\n // strip the full path down to just the basename without extension (e.g.,\n // C:\\cache\\test.cmd becomes just \"test\"). Windows cmd.exe then searches for \"test\"\n // in directories listed in PATH, trying each extension from PATHEXT environment\n // variable (.COM, .EXE, .BAT, .CMD, etc.) until it finds a match.\n //\n // Since our binaries are downloaded to a custom cache directory that's not in PATH\n // (unlike system package managers like npm/pnpm/yarn which are already in PATH),\n // we must prepend the cache directory to PATH so cmd.exe can locate the binary.\n //\n // This approach is consistent with how other tools handle Windows command execution:\n // - npm's promise-spawn: uses which.sync() to find commands in PATH\n // - cross-spawn: spawns cmd.exe with escaped arguments\n // - Node.js spawn with shell: true: delegates to cmd.exe which uses PATH\n const finalSpawnOptions = needsShell\n ? {\n ...spawnOptions,\n env: {\n ...spawnOptions?.env,\n PATH: `${cacheEntryDir}${path.delimiter}${process.env['PATH'] || ''}`,\n },\n shell: true,\n }\n : spawnOptions\n const spawnPromise = spawn(binaryPath, args, finalSpawnOptions, spawnExtra)\n\n return {\n binaryPath,\n downloaded,\n spawnPromise,\n }\n}\n\n/**\n * Get the DLX binary cache directory path.\n * Returns normalized path for cross-platform compatibility.\n * Uses same directory as dlx-package for unified DLX storage.\n */\nexport function getDlxCachePath(): string {\n return getSocketDlxDir()\n}\n\n/**\n * Get information about cached binaries.\n */\nexport async function listDlxCache(): Promise<\n Array<{\n age: number\n arch: string\n checksum: string\n name: string\n platform: string\n size: number\n url: string\n }>\n> {\n const cacheDir = getDlxCachePath()\n\n if (!existsSync(cacheDir)) {\n return []\n }\n\n const results = []\n const now = Date.now()\n const entries = await fs.readdir(cacheDir)\n\n for (const entry of entries) {\n const entryPath = path.join(cacheDir, entry)\n try {\n // eslint-disable-next-line no-await-in-loop\n if (!(await isDir(entryPath))) {\n continue\n }\n\n const metaPath = getMetadataPath(entryPath)\n // eslint-disable-next-line no-await-in-loop\n const metadata = await readJson(metaPath, { throws: false })\n if (\n !metadata ||\n typeof metadata !== 'object' ||\n Array.isArray(metadata)\n ) {\n continue\n }\n\n // Find the binary file in the directory.\n // eslint-disable-next-line no-await-in-loop\n const files = await fs.readdir(entryPath)\n const binaryFile = files.find(f => !f.startsWith('.'))\n\n if (binaryFile) {\n const binaryPath = path.join(entryPath, binaryFile)\n // eslint-disable-next-line no-await-in-loop\n const binaryStats = await fs.stat(binaryPath)\n\n const metaObj = metadata as Record<string, unknown>\n results.push({\n age: now - ((metaObj['timestamp'] as number) || 0),\n arch: (metaObj['arch'] as string) || 'unknown',\n checksum: (metaObj['checksum'] as string) || '',\n name: binaryFile,\n platform: (metaObj['platform'] as string) || 'unknown',\n size: binaryStats.size,\n url: (metaObj['url'] as string) || '',\n })\n }\n } catch {}\n }\n\n return results\n}\n"],
5
+ "mappings": ";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAEA,yBAA2B;AAC3B,qBAA2C;AAC3C,qBAAe;AACf,uBAAiB;AAEjB,sBAAsB;AAEtB,gBAA4C;AAC5C,0BAA4B;AAC5B,qBAA+B;AAC/B,kBAA8B;AAC9B,mBAAgC;AAEhC,mBAAsB;AA8BtB,SAAS,iBAAiB,KAAqB;AAC7C,aAAO,+BAAW,QAAQ,EAAE,OAAO,GAAG,EAAE,OAAO,KAAK;AACtD;AAKA,SAAS,gBAAgB,gBAAgC;AACvD,SAAO,iBAAAA,QAAK,KAAK,gBAAgB,oBAAoB;AACvD;AAKA,eAAe,aACb,gBACA,UACkB;AAClB,MAAI;AACF,UAAM,WAAW,gBAAgB,cAAc;AAC/C,QAAI,KAAC,2BAAW,QAAQ,GAAG;AACzB,aAAO;AAAA,IACT;AAEA,UAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,QAAI,KAAC,+BAAe,QAAQ,GAAG;AAC7B,aAAO;AAAA,IACT;AACA,UAAM,MAAM,KAAK,IAAI;AACrB,UAAM,MACJ,OACG,SAAqC,WAAW,KAAgB;AAErE,WAAO,MAAM;AAAA,EACf,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAKA,eAAe,eACb,KACA,UACA,UACiB;AACjB,QAAM,WAAW,UAAM,iCAAY,GAAG;AACtC,MAAI,CAAC,SAAS,IAAI;AAChB,UAAM,IAAI;AAAA,MACR,8BAA8B,SAAS,MAAM,IAAI,SAAS,UAAU;AAAA,IACtE;AAAA,EACF;AAGA,QAAM,WAAW,GAAG,QAAQ;AAC5B,QAAM,aAAS,+BAAW,QAAQ;AAElC,MAAI;AAEF,UAAM,eAAAC,SAAG,MAAM,iBAAAD,QAAK,QAAQ,QAAQ,GAAG,EAAE,WAAW,KAAK,CAAC;AAG1D,UAAM,SAAS,SAAS;AAGxB,WAAO,OAAO,MAAM;AACpB,UAAM,iBAAiB,OAAO,OAAO,KAAK;AAG1C,QAAI,YAAY,mBAAmB,UAAU;AAC3C,YAAM,IAAI;AAAA,QACR,+BAA+B,QAAQ,SAAS,cAAc;AAAA,MAChE;AAAA,IACF;AAGA,UAAM,eAAAC,SAAG,UAAU,UAAU,MAAM;AAGnC,QAAI,CAAC,uBAAO;AACV,YAAM,eAAAA,SAAG,MAAM,UAAU,GAAK;AAAA,IAChC;AAGA,UAAM,eAAAA,SAAG,OAAO,UAAU,QAAQ;AAElC,WAAO;AAAA,EACT,SAAS,GAAG;AAEV,QAAI;AACF,gBAAM,sBAAW,QAAQ;AAAA,IAC3B,QAAQ;AAAA,IAER;AACA,UAAM;AAAA,EACR;AACF;AAKA,eAAe,cACb,gBACA,KACA,UACe;AACf,QAAM,WAAW,gBAAgB,cAAc;AAC/C,QAAM,WAAW;AAAA,IACf,MAAM,eAAAC,QAAG,KAAK;AAAA,IACd;AAAA,IACA,UAAU,eAAAA,QAAG,SAAS;AAAA,IACtB,WAAW,KAAK,IAAI;AAAA,IACpB;AAAA,IACA,SAAS;AAAA,EACX;AACA,QAAM,eAAAD,SAAG,UAAU,UAAU,KAAK,UAAU,UAAU,MAAM,CAAC,CAAC;AAChE;AAKA,eAAsB,cACpB;AAAA;AAAA,EAAiC,QAAQ,mBAAmB,EAAE;AAAA,GAC7C;AACjB,QAAM,WAAW,gBAAgB;AAEjC,MAAI,KAAC,2BAAW,QAAQ,GAAG;AACzB,WAAO;AAAA,EACT;AAEA,MAAI,UAAU;AACd,QAAM,MAAM,KAAK,IAAI;AACrB,QAAM,UAAU,MAAM,eAAAA,SAAG,QAAQ,QAAQ;AAEzC,aAAW,SAAS,SAAS;AAC3B,UAAM,YAAY,iBAAAD,QAAK,KAAK,UAAU,KAAK;AAC3C,UAAM,WAAW,gBAAgB,SAAS;AAE1C,QAAI;AAEF,UAAI,CAAE,UAAM,iBAAM,SAAS,GAAI;AAC7B;AAAA,MACF;AAGA,YAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,UACE,CAAC,YACD,OAAO,aAAa,YACpB,MAAM,QAAQ,QAAQ,GACtB;AACA;AAAA,MACF;AACA,YAAM,MACJ,OACG,SAAqC,WAAW,KAAgB;AAErE,UAAI,MAAM,QAAQ;AAGhB,kBAAM,sBAAW,WAAW,EAAE,OAAO,MAAM,WAAW,KAAK,CAAC;AAC5D,mBAAW;AAAA,MACb;AAAA,IACF,QAAQ;AAEN,UAAI;AAEF,cAAM,WAAW,MAAM,eAAAC,SAAG,QAAQ,SAAS;AAC3C,YAAI,CAAC,SAAS,QAAQ;AAGpB,oBAAM,sBAAW,SAAS;AAC1B,qBAAW;AAAA,QACb;AAAA,MACF,QAAQ;AAAA,MAAC;AAAA,IACX;AAAA,EACF;AAEA,SAAO;AACT;AAKA,eAAsB,UACpB,MACA,SACA,YAC0B;AAC1B,QAAM;AAAA,IACJ;AAAA;AAAA,MAA2B,QAAQ,mBAAmB,EAAE;AAAA;AAAA,IACxD;AAAA,IACA,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,EACF,IAAI,EAAE,WAAW,MAAM,GAAG,QAAQ;AAGlC,QAAM,WAAW,gBAAgB;AACjC,QAAM,WAAW,iBAAiB,GAAG;AACrC,QAAM,gBAAgB,iBAAAD,QAAK,KAAK,UAAU,QAAQ;AAClD,QAAM,aAAa,QAAQ,UAAU,QAAQ,QAAQ,IAAI,eAAAE,QAAG,KAAK,CAAC;AAClE,QAAM,iBAAa,2BAAc,iBAAAF,QAAK,KAAK,eAAe,UAAU,CAAC;AAErE,MAAI,aAAa;AACjB,MAAI,mBAAmB;AAGvB,MACE,CAAC,aACD,2BAAW,aAAa,KACvB,MAAM,aAAa,eAAe,QAAQ,GAC3C;AAEA,QAAI;AACF,YAAM,WAAW,gBAAgB,aAAa;AAC9C,YAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,UACE,YACA,OAAO,aAAa,YACpB,CAAC,MAAM,QAAQ,QAAQ,KACvB,OAAQ,SAAqC,UAAU,MAAM,UAC7D;AACA,2BAAoB,SAClB,UACF;AAAA,MACF,OAAO;AAEL,qBAAa;AAAA,MACf;AAAA,IACF,QAAQ;AAEN,mBAAa;AAAA,IACf;AAAA,EACF,OAAO;AACL,iBAAa;AAAA,EACf;AAEA,MAAI,YAAY;AAEd,UAAM,eAAAC,SAAG,MAAM,eAAe,EAAE,WAAW,KAAK,CAAC;AAGjD,uBAAmB,MAAM,eAAe,KAAK,YAAY,QAAQ;AACjE,UAAM,cAAc,eAAe,KAAK,oBAAoB,EAAE;AAAA,EAChE;AAMA,QAAM,aAAa,yBAAS,sBAAsB,KAAK,UAAU;AAgBjE,QAAM,oBAAoB,aACtB;AAAA,IACE,GAAG;AAAA,IACH,KAAK;AAAA,MACH,GAAG,cAAc;AAAA,MACjB,MAAM,GAAG,aAAa,GAAG,iBAAAD,QAAK,SAAS,GAAG,QAAQ,IAAI,MAAM,KAAK,EAAE;AAAA,IACrE;AAAA,IACA,OAAO;AAAA,EACT,IACA;AACJ,QAAM,mBAAe,oBAAM,YAAY,MAAM,mBAAmB,UAAU;AAE1E,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;AAOO,SAAS,kBAA0B;AACxC,aAAO,8BAAgB;AACzB;AAKA,eAAsB,eAUpB;AACA,QAAM,WAAW,gBAAgB;AAEjC,MAAI,KAAC,2BAAW,QAAQ,GAAG;AACzB,WAAO,CAAC;AAAA,EACV;AAEA,QAAM,UAAU,CAAC;AACjB,QAAM,MAAM,KAAK,IAAI;AACrB,QAAM,UAAU,MAAM,eAAAC,SAAG,QAAQ,QAAQ;AAEzC,aAAW,SAAS,SAAS;AAC3B,UAAM,YAAY,iBAAAD,QAAK,KAAK,UAAU,KAAK;AAC3C,QAAI;AAEF,UAAI,CAAE,UAAM,iBAAM,SAAS,GAAI;AAC7B;AAAA,MACF;AAEA,YAAM,WAAW,gBAAgB,SAAS;AAE1C,YAAM,WAAW,UAAM,oBAAS,UAAU,EAAE,QAAQ,MAAM,CAAC;AAC3D,UACE,CAAC,YACD,OAAO,aAAa,YACpB,MAAM,QAAQ,QAAQ,GACtB;AACA;AAAA,MACF;AAIA,YAAM,QAAQ,MAAM,eAAAC,SAAG,QAAQ,SAAS;AACxC,YAAM,aAAa,MAAM,KAAK,OAAK,CAAC,EAAE,WAAW,GAAG,CAAC;AAErD,UAAI,YAAY;AACd,cAAM,aAAa,iBAAAD,QAAK,KAAK,WAAW,UAAU;AAElD,cAAM,cAAc,MAAM,eAAAC,SAAG,KAAK,UAAU;AAE5C,cAAM,UAAU;AAChB,gBAAQ,KAAK;AAAA,UACX,KAAK,OAAQ,QAAQ,WAAW,KAAgB;AAAA,UAChD,MAAO,QAAQ,MAAM,KAAgB;AAAA,UACrC,UAAW,QAAQ,UAAU,KAAgB;AAAA,UAC7C,MAAM;AAAA,UACN,UAAW,QAAQ,UAAU,KAAgB;AAAA,UAC7C,MAAM,YAAY;AAAA,UAClB,KAAM,QAAQ,KAAK,KAAgB;AAAA,QACrC,CAAC;AAAA,MACH;AAAA,IACF,QAAQ;AAAA,IAAC;AAAA,EACX;AAEA,SAAO;AACT;",
6
6
  "names": ["path", "fs", "os"]
7
7
  }
package/dist/dlx-package.d.ts ADDED
@@ -0,0 +1,35 @@
1
+ import type { SpawnExtra, SpawnOptions } from './spawn';
2
+ import { spawn } from './spawn';
3
+ export interface DlxPackageOptions {
4
+ /**
5
+ * Package to install (e.g., '@cyclonedx/cdxgen@10.0.0').
6
+ */
7
+ package: string;
8
+ /**
9
+ * Force reinstallation even if package exists.
10
+ */
11
+ force?: boolean | undefined;
12
+ /**
13
+ * Additional spawn options for the execution.
14
+ */
15
+ spawnOptions?: SpawnOptions | undefined;
16
+ }
17
+ export interface DlxPackageResult {
18
+ /** Path to the installed package directory. */
19
+ packageDir: string;
20
+ /** Path to the binary that was executed. */
21
+ binaryPath: string;
22
+ /** Whether the package was newly installed. */
23
+ installed: boolean;
24
+ /** The spawn promise for the running process. */
25
+ spawnPromise: ReturnType<typeof spawn>;
26
+ }
27
+ /**
28
+ * Execute a package via DLX - install if needed and run its binary.
29
+ *
30
+ * This is the Socket equivalent of npx/pnpm dlx/yarn dlx, but using
31
+ * our own cache directory (~/.socket/_dlx) and installation logic.
32
+ *
33
+ * Auto-forces reinstall for version ranges to get latest within range.
34
+ */
35
+ export declare function dlxPackage(args: readonly string[] | string[], options?: DlxPackageOptions | undefined, spawnExtra?: SpawnExtra | undefined): Promise<DlxPackageResult>;