npm - @socketsecurity/lib - Versions diffs - 2.7.0 → 2.8.0 - Mend

@socketsecurity/lib 2.7.0 → 2.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -5,6 +5,18 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+## [2.8.0](https://github.com/SocketDev/socket-lib/releases/tag/v2.8.0) - 2025-10-29
+### Changed
+- **Enhanced DLX cache key generation with npm/npx compatibility**: Updated cache key strategy to align with npm/npx ecosystem patterns
+  - Changed from SHA-256 (64 chars) to SHA-512 truncated to 16 chars (matching npm/npx)
+  - Optimized for Windows MAX_PATH compatibility (260 character limit)
+  - Accepts collision risk for shorter paths (~1 in 18 quintillion with 1000 entries)
+  - Added support for PURL-style package specifications (e.g., `npm:prettier@3.0.0`, `pypi:requests@2.31.0`)
+  - Documented Socket's shorthand format (without `pkg:` prefix) handled by `@socketregistry/packageurl-js`
+  - References npm/cli v11.6.2 implementation for consistency
 ## [2.7.0](https://github.com/SocketDev/socket-lib/releases/tag/v2.7.0) - 2025-10-28
 ### Added

package/dist/bin.d.ts CHANGED Viewed

@@ -29,12 +29,16 @@ export interface WhichOptions {
  * Find an executable in the system PATH asynchronously.
  * Wrapper around the which package for lazy loading.
  */
+/* c8 ignore start */
 export declare function which(binName: string, options?: WhichOptions): Promise<string | string[] | undefined>;
+/* c8 ignore stop */
 /**
  * Find an executable in the system PATH synchronously.
  * Wrapper around the which package for lazy loading.
  */
+/* c8 ignore start */
 export declare function whichSync(binName: string, options?: WhichOptions): string | string[] | undefined;
+/* c8 ignore stop */
 /**
  * Find and resolve a binary in the system PATH asynchronously.
  * @throws {Error} If the binary is not found and nothrow is false.

package/dist/bin.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../src/bin.ts"],
-  "sourcesContent": ["/**\n * @fileoverview Binary path resolution and execution utilities for package managers.\n * Provides cross-platform bin path lookup, command execution, and path normalization.\n */\n\nimport { getHome } from '#env/home'\nimport { getAppdata, getLocalappdata } from '#env/windows'\nimport { getXdgDataHome } from '#env/xdg'\n\nimport { WIN32 } from '#constants/platform'\nimport { readJsonSync } from './fs'\nimport { isPath, normalizePath } from './path'\nimport { spawn } from './spawn'\n\nlet _fs: typeof import('node:fs') | undefined\n/**\n * Lazily load the fs module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getFs() {\n  if (_fs === undefined) {\n    // Use non-'node:' prefixed require to avoid Webpack errors.\n\n    _fs = /*@__PURE__*/ require('node:fs')\n  }\n  return _fs!\n}\n\nlet _path: typeof import('node:path') | undefined\n/**\n * Lazily load the path module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getPath() {\n  if (_path === undefined) {\n    // Use non-'node:' prefixed require to avoid Webpack errors.\n\n    _path = /*@__PURE__*/ require('node:path')\n  }\n  return _path!\n}\n\nlet _which: typeof import('which') | undefined\n/**\n * Lazily load the which module for finding executables.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getWhich() {\n  if (_which === undefined) {\n    _which = /*@__PURE__*/ require('./external/which')\n  }\n  return _which!\n}\n\n/**\n * Execute a binary with the given arguments.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport async function execBin(\n  binPath: string,\n  args?: string[],\n  options?: import('./spawn').SpawnOptions,\n) {\n  // Resolve the binary path.\n  const resolvedPath = isPath(binPath)\n    ? resolveBinPathSync(binPath)\n    : await whichBin(binPath)\n\n  if (!resolvedPath) {\n    const error = new Error(`Binary not found: ${binPath}`) as Error & {\n      code: string\n    }\n    error.code = 'ENOENT'\n    throw error\n  }\n\n  // Execute the binary directly.\n  const binCommand = Array.isArray(resolvedPath)\n    ? resolvedPath[0]!\n    : resolvedPath\n  // On Windows, binaries are often .cmd files that require shell to execute.\n  return await spawn(binCommand, args ?? [], {\n    shell: WIN32,\n    ...options,\n  })\n}\n\n/**\n * Options for the which function.\n */\nexport interface WhichOptions {\n  /** If true, return all matches instead of just the first one. */\n  all?: boolean | undefined\n  /** If true, return null instead of throwing when no match is found. */\n  nothrow?: boolean | undefined\n  /** Path to search in. */\n  path?: string | undefined\n  /** Path separator character. */\n  pathExt?: string | undefined\n  /** Environment variables to use. */\n  env?: Record<string, string | undefined> | undefined\n}\n\n/**\n * Find an executable in the system PATH asynchronously.\n * Wrapper around the which package for lazy loading.\n */\nexport async function which(\n  binName: string,\n  options?: WhichOptions,\n): Promise<string | string[] | undefined> {\n  return await getWhich()(binName, options)\n}\n\n/**\n * Find an executable in the system PATH synchronously.\n * Wrapper around the which package for lazy loading.\n */\nexport function whichSync(\n  binName: string,\n  options?: WhichOptions,\n): string | string[] | undefined {\n  return getWhich().sync(binName, options)\n}\n\n/**\n * Find and resolve a binary in the system PATH asynchronously.\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport async function whichBin(\n  binName: string,\n  options?: WhichOptions,\n): Promise<string | string[] | undefined> {\n  const which = getWhich()\n  // Default to nothrow: true if not specified to return undefined instead of throwing\n  const opts = { nothrow: true, ...options }\n  // Depending on options `which` may throw if `binName` is not found.\n  // With nothrow: true, it returns null when `binName` is not found.\n  const result = await which(binName, opts)\n\n  // When 'all: true' is specified, ensure we always return an array.\n  if (opts?.all) {\n    const paths = Array.isArray(result)\n      ? result\n      : typeof result === 'string'\n        ? [result]\n        : undefined\n    // If all is true and we have paths, resolve each one.\n    return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n  }\n\n  // If result is undefined (binary not found), return undefined\n  if (!result) {\n    return undefined\n  }\n\n  return resolveBinPathSync(result)\n}\n\n/**\n * Find and resolve a binary in the system PATH synchronously.\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport function whichBinSync(\n  binName: string,\n  options?: WhichOptions,\n): string | string[] | undefined {\n  // Default to nothrow: true if not specified to return undefined instead of throwing\n  const opts = { nothrow: true, ...options }\n  // Depending on options `which` may throw if `binName` is not found.\n  // With nothrow: true, it returns null when `binName` is not found.\n  const result = whichSync(binName, opts)\n\n  // When 'all: true' is specified, ensure we always return an array.\n  if (opts.all) {\n    const paths = Array.isArray(result)\n      ? result\n      : typeof result === 'string'\n        ? [result]\n        : undefined\n    // If all is true and we have paths, resolve each one.\n    return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n  }\n\n  // If result is undefined (binary not found), return undefined\n  if (!result) {\n    return undefined\n  }\n\n  return resolveBinPathSync(result as string)\n}\n\n/**\n * Check if a directory path contains any shadow bin patterns.\n */\nexport function isShadowBinPath(dirPath: string | undefined): boolean {\n  if (!dirPath) {\n    return false\n  }\n  // Check for node_modules/.bin pattern (Unix and Windows)\n  const normalized = dirPath.replace(/\\\\/g, '/')\n  return normalized.includes('node_modules/.bin')\n}\n\n/**\n * Find the real executable for a binary, bypassing shadow bins.\n */\nexport function findRealBin(\n  binName: string,\n  commonPaths: string[] = [],\n): string | undefined {\n  const fs = getFs()\n  const path = getPath()\n  const which = getWhich()\n\n  // Try common locations first.\n  for (const binPath of commonPaths) {\n    if (fs?.existsSync(binPath)) {\n      return binPath\n    }\n  }\n\n  // Fall back to which.sync if no direct path found.\n  const binPath = which?.sync(binName, { nothrow: true })\n  if (binPath) {\n    const binDir = path?.dirname(binPath)\n\n    if (isShadowBinPath(binDir)) {\n      // This is likely a shadowed binary, try to find the real one.\n      const allPaths = which?.sync(binName, { all: true, nothrow: true }) || []\n      // Ensure allPaths is an array.\n      const pathsArray = Array.isArray(allPaths)\n        ? allPaths\n        : typeof allPaths === 'string'\n          ? [allPaths]\n          : []\n\n      for (const altPath of pathsArray) {\n        const altDir = path?.dirname(altPath)\n        if (!isShadowBinPath(altDir)) {\n          return altPath\n        }\n      }\n    }\n    return binPath\n  }\n  // If all else fails, return undefined to indicate binary not found.\n  return undefined\n}\n\n/**\n * Find the real npm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealNpm(): string {\n  const fs = getFs()\n  const path = getPath()\n\n  // Try to find npm in the same directory as the node executable.\n  const nodeDir = path?.dirname(process.execPath)\n  const npmInNodeDir = path?.join(nodeDir, 'npm')\n\n  if (fs?.existsSync(npmInNodeDir)) {\n    return npmInNodeDir\n  }\n\n  // Try common npm locations.\n  const commonPaths = ['/usr/local/bin/npm', '/usr/bin/npm']\n  const result = findRealBin('npm', commonPaths)\n\n  // If we found a valid path, return it.\n  if (result && fs?.existsSync(result)) {\n    return result\n  }\n\n  // As a last resort, try to use whichBinSync to find npm.\n  // This handles cases where npm is installed in non-standard locations.\n  const npmPath = whichBinSync('npm', { nothrow: true })\n  if (npmPath && typeof npmPath === 'string' && fs?.existsSync(npmPath)) {\n    return npmPath\n  }\n\n  // Return the basic 'npm' and let the system resolve it.\n  return 'npm'\n}\n\n/**\n * Find the real pnpm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealPnpm(): string {\n  const path = getPath()\n\n  // Try common pnpm locations.\n  const commonPaths = WIN32\n    ? [\n        // Windows common paths.\n        path?.join(getAppdata() as string, 'npm', 'pnpm.cmd'),\n        path?.join(getAppdata() as string, 'npm', 'pnpm'),\n        path?.join(getLocalappdata() as string, 'pnpm', 'pnpm.cmd'),\n        path?.join(getLocalappdata() as string, 'pnpm', 'pnpm'),\n        'C:\\\\Program Files\\\\nodejs\\\\pnpm.cmd',\n        'C:\\\\Program Files\\\\nodejs\\\\pnpm',\n      ].filter(Boolean)\n    : [\n        // Unix common paths.\n        '/usr/local/bin/pnpm',\n        '/usr/bin/pnpm',\n        path?.join(\n          (getXdgDataHome() as string) || `${getHome() as string}/.local/share`,\n          'pnpm/pnpm',\n        ),\n        path?.join(getHome() as string, '.pnpm/pnpm'),\n      ].filter(Boolean)\n\n  return findRealBin('pnpm', commonPaths) ?? ''\n}\n\n/**\n * Find the real yarn executable, bypassing any aliases and shadow bins.\n */\nexport function findRealYarn(): string {\n  const path = getPath()\n\n  // Try common yarn locations.\n  const commonPaths = [\n    '/usr/local/bin/yarn',\n    '/usr/bin/yarn',\n    path?.join(getHome() as string, '.yarn/bin/yarn'),\n    path?.join(\n      getHome() as string,\n      '.config/yarn/global/node_modules/.bin/yarn',\n    ),\n  ].filter(Boolean)\n\n  return findRealBin('yarn', commonPaths) ?? ''\n}\n\n/*@__NO_SIDE_EFFECTS__*/\n/**\n * Resolve a binary path to its actual executable file.\n * Handles Windows .cmd wrappers and Unix shell scripts.\n */\nexport function resolveBinPathSync(binPath: string): string {\n  const fs = getFs()\n  const path = getPath()\n\n  // If it's not an absolute path, try to find it in PATH first\n  if (!path?.isAbsolute(binPath)) {\n    try {\n      const resolved = whichBinSync(binPath)\n      if (resolved) {\n        binPath = resolved as string\n      }\n    } catch {}\n  }\n\n  // Normalize the path once for consistent pattern matching.\n  binPath = normalizePath(binPath)\n\n  // Handle empty string that normalized to '.' (current directory)\n  if (binPath === '.') {\n    return binPath\n  }\n\n  const ext = path?.extname(binPath)\n  const extLowered = ext.toLowerCase()\n  const basename = path?.basename(binPath, ext)\n  const voltaIndex =\n    basename === 'node' ? -1 : (/(?<=\\/)\\.volta\\//i.exec(binPath)?.index ?? -1)\n  if (voltaIndex !== -1) {\n    const voltaPath = binPath.slice(0, voltaIndex)\n    const voltaToolsPath = path?.join(voltaPath, 'tools')\n    const voltaImagePath = path?.join(voltaToolsPath, 'image')\n    const voltaUserPath = path?.join(voltaToolsPath, 'user')\n    const voltaPlatform = readJsonSync(\n      path?.join(voltaUserPath, 'platform.json'),\n      { throws: false },\n    ) as any\n    const voltaNodeVersion = voltaPlatform?.node?.runtime\n    const voltaNpmVersion = voltaPlatform?.node?.npm\n    let voltaBinPath = ''\n    if (basename === 'npm' || basename === 'npx') {\n      if (voltaNpmVersion) {\n        const relCliPath = `bin/${basename}-cli.js`\n        voltaBinPath = path?.join(\n          voltaImagePath,\n          `npm/${voltaNpmVersion}/${relCliPath}`,\n        )\n        if (voltaNodeVersion && !fs?.existsSync(voltaBinPath)) {\n          voltaBinPath = path?.join(\n            voltaImagePath,\n            `node/${voltaNodeVersion}/lib/node_modules/npm/${relCliPath}`,\n          )\n          if (!fs?.existsSync(voltaBinPath)) {\n            voltaBinPath = ''\n          }\n        }\n      }\n    } else {\n      const voltaUserBinPath = path?.join(voltaUserPath, 'bin')\n      const binInfo = readJsonSync(\n        path?.join(voltaUserBinPath, `${basename}.json`),\n        { throws: false },\n      ) as any\n      const binPackage = binInfo?.package\n      if (binPackage) {\n        voltaBinPath = path?.join(\n          voltaImagePath,\n          `packages/${binPackage}/bin/${basename}`,\n        )\n        if (!fs?.existsSync(voltaBinPath)) {\n          voltaBinPath = `${voltaBinPath}.cmd`\n          if (!fs?.existsSync(voltaBinPath)) {\n            voltaBinPath = ''\n          }\n        }\n      }\n    }\n    if (voltaBinPath) {\n      try {\n        return normalizePath(fs?.realpathSync.native(voltaBinPath))\n      } catch {}\n      return voltaBinPath\n    }\n  }\n  if (WIN32) {\n    const hasKnownExt =\n      extLowered === '' ||\n      extLowered === '.cmd' ||\n      extLowered === '.exe' ||\n      extLowered === '.ps1'\n    const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n    const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n    if (hasKnownExt && isNpmOrNpx) {\n      // The quick route assumes a bin path like: C:\\Program Files\\nodejs\\npm.cmd\n      const quickPath = path?.join(\n        path?.dirname(binPath),\n        `node_modules/npm/bin/${basename}-cli.js`,\n      )\n      if (fs?.existsSync(quickPath)) {\n        try {\n          return fs?.realpathSync.native(quickPath)\n        } catch {}\n        return quickPath\n      }\n    }\n    let relPath = ''\n    if (\n      hasKnownExt &&\n      // Only parse shell scripts and batch files, not actual executables.\n      // .exe files are already executables and don't need path resolution from wrapper scripts.\n      extLowered !== '.exe' &&\n      // Check if file exists before attempting to read it to avoid ENOENT errors.\n      fs?.existsSync(binPath)\n    ) {\n      const source = fs?.readFileSync(binPath, 'utf8')\n      if (isNpmOrNpx) {\n        if (extLowered === '.cmd') {\n          // \"npm.cmd\" and \"npx.cmd\" defined by\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npm.cmd\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npx.cmd\n          relPath =\n            basename === 'npm'\n              ? /(?<=\"NPM_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n              : /(?<=\"NPX_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n        } else if (extLowered === '') {\n          // Extensionless \"npm\" and \"npx\" defined by\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npm\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npx\n          relPath =\n            basename === 'npm'\n              ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n                ''\n              : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n                ''\n        } else if (extLowered === '.ps1') {\n          // \"npm.ps1\" and \"npx.ps1\" defined by\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npm.ps1\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npx.ps1\n          relPath =\n            basename === 'npm'\n              ? /(?<=\\$NPM_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n                  source,\n                )?.[0] || ''\n              : /(?<=\\$NPX_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n                  source,\n                )?.[0] || ''\n        }\n      } else if (isPnpmOrYarn) {\n        if (extLowered === '.cmd') {\n          // pnpm.cmd and yarn.cmd can have different formats depending on installation method\n          // Common formats include:\n          // 1. Setup-pnpm action format: node \"%~dp0\\..\\pnpm\\bin\\pnpm.cjs\" %*\n          // 2. npm install -g pnpm format: similar to cmd-shim\n          // 3. Standalone installer format: various patterns\n\n          // Try setup-pnpm/setup-yarn action format first\n          relPath =\n            /(?<=node\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(source)?.[1] || ''\n\n          // Try alternative format: \"%~dp0\\node.exe\" \"%~dp0\\..\\package\\bin\\binary.js\" %*\n          if (!relPath) {\n            relPath =\n              /(?<=\"%~dp0\\\\[^\"]*node[^\"]*\"\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(\n                source,\n              )?.[1] || ''\n          }\n\n          // Try cmd-shim format as fallback\n          if (!relPath) {\n            relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n          }\n        } else if (extLowered === '') {\n          // Extensionless pnpm/yarn - try common shebang formats\n          // Handle pnpm installed via standalone installer or global install\n          // Format: exec \"$basedir/node\"  \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n          // Note: may have multiple spaces between arguments\n          relPath =\n            /(?<=\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n              source,\n            )?.[0] || ''\n          if (!relPath) {\n            // Also try: exec node  \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n            relPath =\n              /(?<=exec\\s+node\\s+\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n                source,\n              )?.[0] || ''\n          }\n          if (!relPath) {\n            // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n            relPath = /(?<=\"\\$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n          }\n        } else if (extLowered === '.ps1') {\n          // PowerShell format\n          relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n        }\n      } else if (extLowered === '.cmd') {\n        // \"bin.CMD\" generated by\n        // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L98:\n        //\n        // @ECHO off\n        // GOTO start\n        // :find_dp0\n        // SET dp0=%~dp0\n        // EXIT /b\n        // :start\n        // SETLOCAL\n        // CALL :find_dp0\n        //\n        // IF EXIST \"%dp0%\\node.exe\" (\n        //   SET \"_prog=%dp0%\\node.exe\"\n        // ) ELSE (\n        //   SET \"_prog=node\"\n        //   SET PATHEXT=%PATHEXT:;.JS;=;%\n        // )\n        //\n        // endLocal & goto #_undefined_# 2>NUL || title %COMSPEC% & \"%_prog%\"  \"%dp0%\\..\\<PACKAGE_NAME>\\path\\to\\bin.js\" %*\n        relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n      } else if (extLowered === '') {\n        // Extensionless \"bin\" generated by\n        // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L138:\n        //\n        // #!/bin/sh\n        // basedir=$(dirname \"$(echo \"$0\" | sed -e 's,\\\\,/,g')\")\n        //\n        // case `uname` in\n        //     *CYGWIN*|*MINGW*|*MSYS*)\n        //         if command -v cygpath > /dev/null 2>&1; then\n        //             basedir=`cygpath -w \"$basedir\"`\n        //         fi\n        //     ;;\n        // esac\n        //\n        // if [ -x \"$basedir/node\" ]; then\n        //   exec \"$basedir/node\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n        // else\n        //   exec node  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n        // fi\n        relPath = /(?<=\"$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n      } else if (extLowered === '.ps1') {\n        // \"bin.PS1\" generated by\n        // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L192:\n        //\n        // #!/usr/bin/env pwsh\n        // $basedir=Split-Path $MyInvocation.MyCommand.Definition -Parent\n        //\n        // $exe=\"\"\n        // if ($PSVersionTable.PSVersion -lt \"6.0\" -or $IsWindows) {\n        //   # Fix case when both the Windows and Linux builds of Node\n        //   # are installed in the same directory\n        //   $exe=\".exe\"\n        // }\n        // $ret=0\n        // if (Test-Path \"$basedir/node$exe\") {\n        //   # Support pipeline input\n        //   if ($MyInvocation.ExpectingInput) {\n        //     $input | & \"$basedir/node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   } else {\n        //     & \"$basedir/node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   }\n        //   $ret=$LASTEXITCODE\n        // } else {\n        //   # Support pipeline input\n        //   if ($MyInvocation.ExpectingInput) {\n        //     $input | & \"node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   } else {\n        //     & \"node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   }\n        //   $ret=$LASTEXITCODE\n        // }\n        // exit $ret\n        relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n      }\n      if (relPath) {\n        binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n      }\n    }\n  } else {\n    // Handle Unix shell scripts (non-Windows platforms)\n    let hasNoExt = extLowered === ''\n    const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n    const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n\n    // Handle special case where pnpm path in CI has extra segments.\n    // In setup-pnpm GitHub Action, the path might be malformed like:\n    // /home/user/setup-pnpm/node_modules/.bin/pnpm/bin/pnpm.cjs\n    // This happens when the shell script contains a relative path that\n    // when resolved, creates an invalid nested structure.\n    if (isPnpmOrYarn && binPath.includes('/.bin/pnpm/bin/')) {\n      // Extract the correct pnpm bin path.\n      const binIndex = binPath.indexOf('/.bin/pnpm')\n      if (binIndex !== -1) {\n        // Get the base path up to /.bin/pnpm.\n        const baseBinPath = binPath.slice(0, binIndex + '/.bin/pnpm'.length)\n        // Check if the original shell script exists.\n        try {\n          const stats = fs?.statSync(baseBinPath)\n          // Only use this path if it's a file (the shell script).\n          if (stats.isFile()) {\n            binPath = normalizePath(baseBinPath)\n            // Recompute hasNoExt since we changed the path.\n            hasNoExt = !path?.extname(binPath)\n          }\n        } catch {\n          // If stat fails, continue with the original path.\n        }\n      }\n    }\n\n    if (\n      hasNoExt &&\n      (isPnpmOrYarn || isNpmOrNpx) &&\n      // For extensionless files (Unix shell scripts), verify existence before reading.\n      // This prevents ENOENT errors when the bin path doesn't exist.\n      fs?.existsSync(binPath)\n    ) {\n      const source = fs?.readFileSync(binPath, 'utf8')\n      let relPath = ''\n\n      if (isPnpmOrYarn) {\n        // Handle pnpm/yarn Unix shell scripts.\n        // Format: exec \"$basedir/node\" \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n        // or: exec node \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n        relPath =\n          /(?<=\"\\$basedir\\/)\\.tools\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n        if (!relPath) {\n          // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n          // Example: exec node  \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n          //                              ^^^^^^^^^^^^^^^^^^^^^ captures this part\n          // This regex needs to be more careful to not match \"$@\" at the end.\n          relPath =\n            /(?<=\"\\$basedir\\/)[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n        }\n        // Special case for setup-pnpm GitHub Action which may use a different format.\n        // The setup-pnpm action creates a shell script that references ../pnpm/bin/pnpm.cjs\n        if (!relPath) {\n          // Try to match: exec node  \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n          const match = /exec\\s+node\\s+\"?\\$basedir\\/([^\"]+)\"?\\s+\"\\$@\"/.exec(\n            source,\n          )\n          if (match) {\n            relPath = match[1] || ''\n          }\n        }\n        // Check if the extracted path looks wrong (e.g., pnpm/bin/pnpm.cjs without ../).\n        // This happens with setup-pnpm action when it creates a malformed shell script.\n        if (relPath && basename === 'pnpm' && relPath.startsWith('pnpm/')) {\n          // The path should be ../pnpm/... not pnpm/...\n          // Prepend ../ to fix the relative path.\n          relPath = `../${relPath}`\n        }\n      } else if (isNpmOrNpx) {\n        // Handle npm/npx Unix shell scripts\n        relPath =\n          basename === 'npm'\n            ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n            : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n      }\n\n      if (relPath) {\n        // Resolve the relative path to handle .. segments properly.\n        binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n      }\n    }\n  }\n  try {\n    const realPath = fs?.realpathSync.native(binPath)\n    return normalizePath(realPath)\n  } catch {}\n  // Return normalized path even if realpath fails.\n  return normalizePath(binPath)\n}\n"],
-  "mappings": ";4ZAAA,IAAAA,EAAA,GAAAC,EAAAD,EAAA,aAAAE,EAAA,gBAAAC,EAAA,gBAAAC,EAAA,iBAAAC,EAAA,iBAAAC,EAAA,oBAAAC,EAAA,uBAAAC,EAAA,UAAAC,EAAA,aAAAC,EAAA,iBAAAC,EAAA,cAAAC,IAAA,eAAAC,EAAAb,GAKA,IAAAc,EAAwB,qBACxBC,EAA4C,wBAC5CC,EAA+B,oBAE/BC,EAAsB,+BACtBC,EAA6B,gBAC7BC,EAAsC,kBACtCC,EAAsB,mBAEtB,IAAIC,EAKJ,SAASC,GAAQ,CACf,OAAID,IAAQ,SAGVA,EAAoB,QAAQ,SAAS,GAEhCA,CACT,CAEA,IAAIE,EAKJ,SAASC,GAAU,CACjB,OAAID,IAAU,SAGZA,EAAsB,QAAQ,WAAW,GAEpCA,CACT,CAEA,IAAIE,EAKJ,SAASC,GAAW,CAClB,OAAID,IAAW,SACbA,EAAuB,QAAQ,kBAAkB,GAE5CA,CACT,CAMA,eAAsBvB,EACpByB,EACAC,EACAC,EACA,CAEA,MAAMC,KAAe,UAAOH,CAAO,EAC/BnB,EAAmBmB,CAAO,EAC1B,MAAMjB,EAASiB,CAAO,EAE1B,GAAI,CAACG,EAAc,CACjB,MAAMC,EAAQ,IAAI,MAAM,qBAAqBJ,CAAO,EAAE,EAGtD,MAAAI,EAAM,KAAO,SACPA,CACR,CAGA,MAAMC,EAAa,MAAM,QAAQF,CAAY,EACzCA,EAAa,CAAC,EACdA,EAEJ,OAAO,QAAM,SAAME,EAAYJ,GAAQ,CAAC,EAAG,CACzC,MAAO,QACP,GAAGC,CACL,CAAC,CACH,CAsBA,eAAsBpB,EACpBwB,EACAJ,EACwC,CACxC,OAAO,MAAMH,EAAS,EAAEO,EAASJ,CAAO,CAC1C,CAMO,SAASjB,EACdqB,EACAJ,EAC+B,CAC/B,OAAOH,EAAS,EAAE,KAAKO,EAASJ,CAAO,CACzC,CAMA,eAAsBnB,EACpBuB,EACAJ,EACwC,CACxC,MAAMpB,EAAQiB,EAAS,EAEjBQ,EAAO,CAAE,QAAS,GAAM,GAAGL,CAAQ,EAGnCM,EAAS,MAAM1B,EAAMwB,EAASC,CAAI,EAGxC,GAAIA,GAAM,IAAK,CACb,MAAME,EAAQ,MAAM,QAAQD,CAAM,EAC9BA,EACA,OAAOA,GAAW,SAChB,CAACA,CAAM,EACP,OAEN,OAAOC,GAAO,OAASA,EAAM,IAAI,GAAK5B,EAAmB,CAAC,CAAC,EAAI4B,CACjE,CAGA,GAAKD,EAIL,OAAO3B,EAAmB2B,CAAM,CAClC,CAMO,SAASxB,EACdsB,EACAJ,EAC+B,CAE/B,MAAMK,EAAO,CAAE,QAAS,GAAM,GAAGL,CAAQ,EAGnCM,EAASvB,EAAUqB,EAASC,CAAI,EAGtC,GAAIA,EAAK,IAAK,CACZ,MAAME,EAAQ,MAAM,QAAQD,CAAM,EAC9BA,EACA,OAAOA,GAAW,SAChB,CAACA,CAAM,EACP,OAEN,OAAOC,GAAO,OAASA,EAAM,IAAIC,GAAK7B,EAAmB6B,CAAC,CAAC,EAAID,CACjE,CAGA,GAAKD,EAIL,OAAO3B,EAAmB2B,CAAgB,CAC5C,CAKO,SAAS5B,EAAgB+B,EAAsC,CACpE,OAAKA,EAIcA,EAAQ,QAAQ,MAAO,GAAG,EAC3B,SAAS,mBAAmB,EAJrC,EAKX,CAKO,SAASnC,EACd8B,EACAM,EAAwB,CAAC,EACL,CACpB,MAAMC,EAAKlB,EAAM,EACXmB,EAAOjB,EAAQ,EACff,EAAQiB,EAAS,EAGvB,UAAWC,KAAWY,EACpB,GAAIC,GAAI,WAAWb,CAAO,EACxB,OAAOA,EAKX,MAAMA,EAAUlB,GAAO,KAAKwB,EAAS,CAAE,QAAS,EAAK,CAAC,EACtD,GAAIN,EAAS,CACX,MAAMe,EAASD,GAAM,QAAQd,CAAO,EAEpC,GAAIpB,EAAgBmC,CAAM,EAAG,CAE3B,MAAMC,EAAWlC,GAAO,KAAKwB,EAAS,CAAE,IAAK,GAAM,QAAS,EAAK,CAAC,GAAK,CAAC,EAElEW,EAAa,MAAM,QAAQD,CAAQ,EACrCA,EACA,OAAOA,GAAa,SAClB,CAACA,CAAQ,EACT,CAAC,EAEP,UAAWE,KAAWD,EAAY,CAChC,MAAME,EAASL,GAAM,QAAQI,CAAO,EACpC,GAAI,CAACtC,EAAgBuC,CAAM,EACzB,OAAOD,CAEX,CACF,CACA,OAAOlB,CACT,CAGF,CAKO,SAASvB,GAAsB,CACpC,MAAMoC,EAAKlB,EAAM,EACXmB,EAAOjB,EAAQ,EAGfuB,EAAUN,GAAM,QAAQ,QAAQ,QAAQ,EACxCO,EAAeP,GAAM,KAAKM,EAAS,KAAK,EAE9C,GAAIP,GAAI,WAAWQ,CAAY,EAC7B,OAAOA,EAKT,MAAMb,EAAShC,EAAY,MADP,CAAC,qBAAsB,cAAc,CACZ,EAG7C,GAAIgC,GAAUK,GAAI,WAAWL,CAAM,EACjC,OAAOA,EAKT,MAAMc,EAAUtC,EAAa,MAAO,CAAE,QAAS,EAAK,CAAC,EACrD,OAAIsC,GAAW,OAAOA,GAAY,UAAYT,GAAI,WAAWS,CAAO,EAC3DA,EAIF,KACT,CAKO,SAAS5C,GAAuB,CACrC,MAAMoC,EAAOjB,EAAQ,EAGfe,EAAc,QAChB,CAEEE,GAAM,QAAK,cAAW,EAAa,MAAO,UAAU,EACpDA,GAAM,QAAK,cAAW,EAAa,MAAO,MAAM,EAChDA,GAAM,QAAK,mBAAgB,EAAa,OAAQ,UAAU,EAC1DA,GAAM,QAAK,mBAAgB,EAAa,OAAQ,MAAM,EACtD,sCACA,iCACF,EAAE,OAAO,OAAO,EAChB,CAEE,sBACA,gBACAA,GAAM,QACH,kBAAe,GAAgB,MAAG,WAAQ,CAAW,gBACtD,WACF,EACAA,GAAM,QAAK,WAAQ,EAAa,YAAY,CAC9C,EAAE,OAAO,OAAO,EAEpB,OAAOtC,EAAY,OAAQoC,CAAW,GAAK,EAC7C,CAKO,SAASjC,GAAuB,CACrC,MAAMmC,EAAOjB,EAAQ,EAGfe,EAAc,CAClB,sBACA,gBACAE,GAAM,QAAK,WAAQ,EAAa,gBAAgB,EAChDA,GAAM,QACJ,WAAQ,EACR,4CACF,CACF,EAAE,OAAO,OAAO,EAEhB,OAAOtC,EAAY,OAAQoC,CAAW,GAAK,EAC7C,CAOO,SAAS/B,EAAmBmB,EAAyB,CAC1D,MAAMa,EAAKlB,EAAM,EACXmB,EAAOjB,EAAQ,EAGrB,GAAI,CAACiB,GAAM,WAAWd,CAAO,EAC3B,GAAI,CACF,MAAMuB,EAAWvC,EAAagB,CAAO,EACjCuB,IACFvB,EAAUuB,EAEd,MAAQ,CAAC,CAOX,GAHAvB,KAAU,iBAAcA,CAAO,EAG3BA,IAAY,IACd,OAAOA,EAGT,MAAMwB,EAAMV,GAAM,QAAQd,CAAO,EAC3ByB,EAAaD,EAAI,YAAY,EAC7BE,EAAWZ,GAAM,SAASd,EAASwB,CAAG,EACtCG,EACJD,IAAa,OAAS,GAAM,oBAAoB,KAAK1B,CAAO,GAAG,OAAS,GAC1E,GAAI2B,IAAe,GAAI,CACrB,MAAMC,EAAY5B,EAAQ,MAAM,EAAG2B,CAAU,EACvCE,EAAiBf,GAAM,KAAKc,EAAW,OAAO,EAC9CE,EAAiBhB,GAAM,KAAKe,EAAgB,OAAO,EACnDE,EAAgBjB,GAAM,KAAKe,EAAgB,MAAM,EACjDG,KAAgB,gBACpBlB,GAAM,KAAKiB,EAAe,eAAe,EACzC,CAAE,OAAQ,EAAM,CAClB,EACME,EAAmBD,GAAe,MAAM,QACxCE,EAAkBF,GAAe,MAAM,IAC7C,IAAIG,EAAe,GACnB,GAAIT,IAAa,OAASA,IAAa,OACrC,GAAIQ,EAAiB,CACnB,MAAME,EAAa,OAAOV,CAAQ,UAClCS,EAAerB,GAAM,KACnBgB,EACA,OAAOI,CAAe,IAAIE,CAAU,EACtC,EACIH,GAAoB,CAACpB,GAAI,WAAWsB,CAAY,IAClDA,EAAerB,GAAM,KACnBgB,EACA,QAAQG,CAAgB,yBAAyBG,CAAU,EAC7D,EACKvB,GAAI,WAAWsB,CAAY,IAC9BA,EAAe,IAGrB,MACK,CACL,MAAME,EAAmBvB,GAAM,KAAKiB,EAAe,KAAK,EAKlDO,KAJU,gBACdxB,GAAM,KAAKuB,EAAkB,GAAGX,CAAQ,OAAO,EAC/C,CAAE,OAAQ,EAAM,CAClB,GAC4B,QACxBY,IACFH,EAAerB,GAAM,KACnBgB,EACA,YAAYQ,CAAU,QAAQZ,CAAQ,EACxC,EACKb,GAAI,WAAWsB,CAAY,IAC9BA,EAAe,GAAGA,CAAY,OACzBtB,GAAI,WAAWsB,CAAY,IAC9BA,EAAe,KAIvB,CACA,GAAIA,EAAc,CAChB,GAAI,CACF,SAAO,iBAActB,GAAI,aAAa,OAAOsB,CAAY,CAAC,CAC5D,MAAQ,CAAC,CACT,OAAOA,CACT,CACF,CACA,GAAI,QAAO,CACT,MAAMI,EACJd,IAAe,IACfA,IAAe,QACfA,IAAe,QACfA,IAAe,OACXe,EAAad,IAAa,OAASA,IAAa,MAChDe,EAAef,IAAa,QAAUA,IAAa,OACzD,GAAIa,GAAeC,EAAY,CAE7B,MAAME,EAAY5B,GAAM,KACtBA,GAAM,QAAQd,CAAO,EACrB,wBAAwB0B,CAAQ,SAClC,EACA,GAAIb,GAAI,WAAW6B,CAAS,EAAG,CAC7B,GAAI,CACF,OAAO7B,GAAI,aAAa,OAAO6B,CAAS,CAC1C,MAAQ,CAAC,CACT,OAAOA,CACT,CACF,CACA,IAAIC,EAAU,GACd,GACEJ,GAGAd,IAAe,QAEfZ,GAAI,WAAWb,CAAO,EACtB,CACA,MAAM4C,EAAS/B,GAAI,aAAab,EAAS,MAAM,EAC3CwC,EACEf,IAAe,OAIjBkB,EACEjB,IAAa,MACT,kCAAkC,KAAKkB,CAAM,IAAI,CAAC,GAAK,GACvD,kCAAkC,KAAKA,CAAM,IAAI,CAAC,GAAK,GACpDnB,IAAe,GAIxBkB,EACEjB,IAAa,MACT,0CAA0C,KAAKkB,CAAM,IAAI,CAAC,GAC1D,GACA,0CAA0C,KAAKA,CAAM,IAAI,CAAC,GAC1D,GACGnB,IAAe,SAIxBkB,EACEjB,IAAa,MACT,6CAA6C,KAC3CkB,CACF,IAAI,CAAC,GAAK,GACV,6CAA6C,KAC3CA,CACF,IAAI,CAAC,GAAK,IAETH,EACLhB,IAAe,QAQjBkB,EACE,yCAAyC,KAAKC,CAAM,IAAI,CAAC,GAAK,GAG3DD,IACHA,EACE,4DAA4D,KAC1DC,CACF,IAAI,CAAC,GAAK,IAITD,IACHA,EAAU,+BAA+B,KAAKC,CAAM,IAAI,CAAC,GAAK,KAEvDnB,IAAe,IAKxBkB,EACE,qDAAqD,KACnDC,CACF,IAAI,CAAC,GAAK,GACPD,IAEHA,EACE,mEAAmE,KACjEC,CACF,IAAI,CAAC,GAAK,IAETD,IAEHA,EAAU,mCAAmC,KAAKC,CAAM,IAAI,CAAC,GAAK,KAE3DnB,IAAe,SAExBkB,EAAU,mCAAmC,KAAKC,CAAM,IAAI,CAAC,GAAK,IAE3DnB,IAAe,OAqBxBkB,EAAU,+BAA+B,KAAKC,CAAM,IAAI,CAAC,GAAK,GACrDnB,IAAe,GAoBxBkB,EAAU,kCAAkC,KAAKC,CAAM,IAAI,CAAC,GAAK,GACxDnB,IAAe,SAgCxBkB,EAAU,mCAAmC,KAAKC,CAAM,IAAI,CAAC,GAAK,IAEhED,IACF3C,KAAU,iBAAcc,GAAM,QAAQA,GAAM,QAAQd,CAAO,EAAG2C,CAAO,CAAC,EAE1E,CACF,KAAO,CAEL,IAAIE,EAAWpB,IAAe,GAC9B,MAAMgB,EAAef,IAAa,QAAUA,IAAa,OACnDc,EAAad,IAAa,OAASA,IAAa,MAOtD,GAAIe,GAAgBzC,EAAQ,SAAS,iBAAiB,EAAG,CAEvD,MAAM8C,EAAW9C,EAAQ,QAAQ,YAAY,EAC7C,GAAI8C,IAAa,GAAI,CAEnB,MAAMC,EAAc/C,EAAQ,MAAM,EAAG8C,EAAW,EAAmB,EAEnE,GAAI,EACYjC,GAAI,SAASkC,CAAW,GAE5B,OAAO,IACf/C,KAAU,iBAAc+C,CAAW,EAEnCF,EAAW,CAAC/B,GAAM,QAAQd,CAAO,EAErC,MAAQ,CAER,CACF,CACF,CAEA,GACE6C,IACCJ,GAAgBD,IAGjB3B,GAAI,WAAWb,CAAO,EACtB,CACA,MAAM4C,EAAS/B,GAAI,aAAab,EAAS,MAAM,EAC/C,IAAI2C,EAAU,GAEd,GAAIF,EAAc,CAgBhB,GAZAE,EACE,+CAA+C,KAAKC,CAAM,IAAI,CAAC,GAAK,GACjED,IAKHA,EACE,sCAAsC,KAAKC,CAAM,IAAI,CAAC,GAAK,IAI3D,CAACD,EAAS,CAEZ,MAAMK,EAAQ,+CAA+C,KAC3DJ,CACF,EACII,IACFL,EAAUK,EAAM,CAAC,GAAK,GAE1B,CAGIL,GAAWjB,IAAa,QAAUiB,EAAQ,WAAW,OAAO,IAG9DA,EAAU,MAAMA,CAAO,GAE3B,MAAWH,IAETG,EACEjB,IAAa,MACT,0CAA0C,KAAKkB,CAAM,IAAI,CAAC,GAAK,GAC/D,0CAA0C,KAAKA,CAAM,IAAI,CAAC,GAAK,IAGnED,IAEF3C,KAAU,iBAAcc,GAAM,QAAQA,GAAM,QAAQd,CAAO,EAAG2C,CAAO,CAAC,EAE1E,CACF,CACA,GAAI,CACF,MAAMM,EAAWpC,GAAI,aAAa,OAAOb,CAAO,EAChD,SAAO,iBAAciD,CAAQ,CAC/B,MAAQ,CAAC,CAET,SAAO,iBAAcjD,CAAO,CAC9B",
+  "sourcesContent": ["/**\n * @fileoverview Binary path resolution and execution utilities for package managers.\n * Provides cross-platform bin path lookup, command execution, and path normalization.\n */\n\nimport { getHome } from '#env/home'\nimport { getAppdata, getLocalappdata } from '#env/windows'\nimport { getXdgDataHome } from '#env/xdg'\n\nimport { WIN32 } from '#constants/platform'\nimport { readJsonSync } from './fs'\nimport { isPath, normalizePath } from './path'\nimport { spawn } from './spawn'\n\nlet _fs: typeof import('node:fs') | undefined\n/**\n * Lazily load the fs module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getFs() {\n  if (_fs === undefined) {\n    // Use non-'node:' prefixed require to avoid Webpack errors.\n\n    _fs = /*@__PURE__*/ require('node:fs')\n  }\n  return _fs!\n}\n\nlet _path: typeof import('node:path') | undefined\n/**\n * Lazily load the path module to avoid Webpack errors.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getPath() {\n  if (_path === undefined) {\n    // Use non-'node:' prefixed require to avoid Webpack errors.\n\n    _path = /*@__PURE__*/ require('node:path')\n  }\n  return _path!\n}\n\nlet _which: typeof import('which') | undefined\n/**\n * Lazily load the which module for finding executables.\n */\n/*@__NO_SIDE_EFFECTS__*/\nfunction getWhich() {\n  if (_which === undefined) {\n    _which = /*@__PURE__*/ require('./external/which')\n  }\n  return _which!\n}\n\n/**\n * Execute a binary with the given arguments.\n */\n/*@__NO_SIDE_EFFECTS__*/\nexport async function execBin(\n  binPath: string,\n  args?: string[],\n  options?: import('./spawn').SpawnOptions,\n) {\n  // Resolve the binary path.\n  const resolvedPath = isPath(binPath)\n    ? resolveBinPathSync(binPath)\n    : await whichBin(binPath)\n\n  if (!resolvedPath) {\n    const error = new Error(`Binary not found: ${binPath}`) as Error & {\n      code: string\n    }\n    error.code = 'ENOENT'\n    throw error\n  }\n\n  // Execute the binary directly.\n  const binCommand = Array.isArray(resolvedPath)\n    ? resolvedPath[0]!\n    : resolvedPath\n  // On Windows, binaries are often .cmd files that require shell to execute.\n  return await spawn(binCommand, args ?? [], {\n    shell: WIN32,\n    ...options,\n  })\n}\n\n/**\n * Options for the which function.\n */\nexport interface WhichOptions {\n  /** If true, return all matches instead of just the first one. */\n  all?: boolean | undefined\n  /** If true, return null instead of throwing when no match is found. */\n  nothrow?: boolean | undefined\n  /** Path to search in. */\n  path?: string | undefined\n  /** Path separator character. */\n  pathExt?: string | undefined\n  /** Environment variables to use. */\n  env?: Record<string, string | undefined> | undefined\n}\n\n/**\n * Find an executable in the system PATH asynchronously.\n * Wrapper around the which package for lazy loading.\n */\n/* c8 ignore start */\nexport async function which(\n  binName: string,\n  options?: WhichOptions,\n): Promise<string | string[] | undefined> {\n  return await getWhich()(binName, options)\n}\n/* c8 ignore stop */\n\n/**\n * Find an executable in the system PATH synchronously.\n * Wrapper around the which package for lazy loading.\n */\n/* c8 ignore start */\nexport function whichSync(\n  binName: string,\n  options?: WhichOptions,\n): string | string[] | undefined {\n  return getWhich().sync(binName, options)\n}\n/* c8 ignore stop */\n\n/**\n * Find and resolve a binary in the system PATH asynchronously.\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport async function whichBin(\n  binName: string,\n  options?: WhichOptions,\n): Promise<string | string[] | undefined> {\n  const which = getWhich()\n  // Default to nothrow: true if not specified to return undefined instead of throwing\n  const opts = { nothrow: true, ...options }\n  // Depending on options `which` may throw if `binName` is not found.\n  // With nothrow: true, it returns null when `binName` is not found.\n  const result = await which(binName, opts)\n\n  // When 'all: true' is specified, ensure we always return an array.\n  if (opts?.all) {\n    const paths = Array.isArray(result)\n      ? result\n      : typeof result === 'string'\n        ? [result]\n        : undefined\n    // If all is true and we have paths, resolve each one.\n    return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n  }\n\n  // If result is undefined (binary not found), return undefined\n  if (!result) {\n    return undefined\n  }\n\n  return resolveBinPathSync(result)\n}\n\n/**\n * Find and resolve a binary in the system PATH synchronously.\n * @throws {Error} If the binary is not found and nothrow is false.\n */\nexport function whichBinSync(\n  binName: string,\n  options?: WhichOptions,\n): string | string[] | undefined {\n  // Default to nothrow: true if not specified to return undefined instead of throwing\n  const opts = { nothrow: true, ...options }\n  // Depending on options `which` may throw if `binName` is not found.\n  // With nothrow: true, it returns null when `binName` is not found.\n  const result = whichSync(binName, opts)\n\n  // When 'all: true' is specified, ensure we always return an array.\n  if (opts.all) {\n    const paths = Array.isArray(result)\n      ? result\n      : typeof result === 'string'\n        ? [result]\n        : undefined\n    // If all is true and we have paths, resolve each one.\n    return paths?.length ? paths.map(p => resolveBinPathSync(p)) : paths\n  }\n\n  // If result is undefined (binary not found), return undefined\n  if (!result) {\n    return undefined\n  }\n\n  return resolveBinPathSync(result as string)\n}\n\n/**\n * Check if a directory path contains any shadow bin patterns.\n */\nexport function isShadowBinPath(dirPath: string | undefined): boolean {\n  if (!dirPath) {\n    return false\n  }\n  // Check for node_modules/.bin pattern (Unix and Windows)\n  const normalized = dirPath.replace(/\\\\/g, '/')\n  return normalized.includes('node_modules/.bin')\n}\n\n/**\n * Find the real executable for a binary, bypassing shadow bins.\n */\nexport function findRealBin(\n  binName: string,\n  commonPaths: string[] = [],\n): string | undefined {\n  const fs = getFs()\n  const path = getPath()\n  const which = getWhich()\n\n  // Try common locations first.\n  for (const binPath of commonPaths) {\n    if (fs?.existsSync(binPath)) {\n      return binPath\n    }\n  }\n\n  // Fall back to which.sync if no direct path found.\n  const binPath = which?.sync(binName, { nothrow: true })\n  if (binPath) {\n    const binDir = path?.dirname(binPath)\n\n    if (isShadowBinPath(binDir)) {\n      // This is likely a shadowed binary, try to find the real one.\n      const allPaths = which?.sync(binName, { all: true, nothrow: true }) || []\n      // Ensure allPaths is an array.\n      const pathsArray = Array.isArray(allPaths)\n        ? allPaths\n        : typeof allPaths === 'string'\n          ? [allPaths]\n          : []\n\n      for (const altPath of pathsArray) {\n        const altDir = path?.dirname(altPath)\n        if (!isShadowBinPath(altDir)) {\n          return altPath\n        }\n      }\n    }\n    return binPath\n  }\n  // If all else fails, return undefined to indicate binary not found.\n  return undefined\n}\n\n/**\n * Find the real npm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealNpm(): string {\n  const fs = getFs()\n  const path = getPath()\n\n  // Try to find npm in the same directory as the node executable.\n  const nodeDir = path?.dirname(process.execPath)\n  const npmInNodeDir = path?.join(nodeDir, 'npm')\n\n  if (fs?.existsSync(npmInNodeDir)) {\n    return npmInNodeDir\n  }\n\n  // Try common npm locations.\n  const commonPaths = ['/usr/local/bin/npm', '/usr/bin/npm']\n  const result = findRealBin('npm', commonPaths)\n\n  // If we found a valid path, return it.\n  if (result && fs?.existsSync(result)) {\n    return result\n  }\n\n  // As a last resort, try to use whichBinSync to find npm.\n  // This handles cases where npm is installed in non-standard locations.\n  const npmPath = whichBinSync('npm', { nothrow: true })\n  if (npmPath && typeof npmPath === 'string' && fs?.existsSync(npmPath)) {\n    return npmPath\n  }\n\n  // Return the basic 'npm' and let the system resolve it.\n  return 'npm'\n}\n\n/**\n * Find the real pnpm executable, bypassing any aliases and shadow bins.\n */\nexport function findRealPnpm(): string {\n  const path = getPath()\n\n  // Try common pnpm locations.\n  const commonPaths = WIN32\n    ? [\n        // Windows common paths.\n        path?.join(getAppdata() as string, 'npm', 'pnpm.cmd'),\n        path?.join(getAppdata() as string, 'npm', 'pnpm'),\n        path?.join(getLocalappdata() as string, 'pnpm', 'pnpm.cmd'),\n        path?.join(getLocalappdata() as string, 'pnpm', 'pnpm'),\n        'C:\\\\Program Files\\\\nodejs\\\\pnpm.cmd',\n        'C:\\\\Program Files\\\\nodejs\\\\pnpm',\n      ].filter(Boolean)\n    : [\n        // Unix common paths.\n        '/usr/local/bin/pnpm',\n        '/usr/bin/pnpm',\n        path?.join(\n          (getXdgDataHome() as string) || `${getHome() as string}/.local/share`,\n          'pnpm/pnpm',\n        ),\n        path?.join(getHome() as string, '.pnpm/pnpm'),\n      ].filter(Boolean)\n\n  return findRealBin('pnpm', commonPaths) ?? ''\n}\n\n/**\n * Find the real yarn executable, bypassing any aliases and shadow bins.\n */\nexport function findRealYarn(): string {\n  const path = getPath()\n\n  // Try common yarn locations.\n  const commonPaths = [\n    '/usr/local/bin/yarn',\n    '/usr/bin/yarn',\n    path?.join(getHome() as string, '.yarn/bin/yarn'),\n    path?.join(\n      getHome() as string,\n      '.config/yarn/global/node_modules/.bin/yarn',\n    ),\n  ].filter(Boolean)\n\n  return findRealBin('yarn', commonPaths) ?? ''\n}\n\n/*@__NO_SIDE_EFFECTS__*/\n/**\n * Resolve a binary path to its actual executable file.\n * Handles Windows .cmd wrappers and Unix shell scripts.\n */\nexport function resolveBinPathSync(binPath: string): string {\n  const fs = getFs()\n  const path = getPath()\n\n  // If it's not an absolute path, try to find it in PATH first\n  if (!path?.isAbsolute(binPath)) {\n    try {\n      const resolved = whichBinSync(binPath)\n      if (resolved) {\n        binPath = resolved as string\n      }\n    } catch {}\n  }\n\n  // Normalize the path once for consistent pattern matching.\n  binPath = normalizePath(binPath)\n\n  // Handle empty string that normalized to '.' (current directory)\n  if (binPath === '.') {\n    return binPath\n  }\n\n  const ext = path?.extname(binPath)\n  const extLowered = ext.toLowerCase()\n  const basename = path?.basename(binPath, ext)\n  const voltaIndex =\n    basename === 'node' ? -1 : (/(?<=\\/)\\.volta\\//i.exec(binPath)?.index ?? -1)\n  if (voltaIndex !== -1) {\n    const voltaPath = binPath.slice(0, voltaIndex)\n    const voltaToolsPath = path?.join(voltaPath, 'tools')\n    const voltaImagePath = path?.join(voltaToolsPath, 'image')\n    const voltaUserPath = path?.join(voltaToolsPath, 'user')\n    const voltaPlatform = readJsonSync(\n      path?.join(voltaUserPath, 'platform.json'),\n      { throws: false },\n    ) as any\n    const voltaNodeVersion = voltaPlatform?.node?.runtime\n    const voltaNpmVersion = voltaPlatform?.node?.npm\n    let voltaBinPath = ''\n    if (basename === 'npm' || basename === 'npx') {\n      if (voltaNpmVersion) {\n        const relCliPath = `bin/${basename}-cli.js`\n        voltaBinPath = path?.join(\n          voltaImagePath,\n          `npm/${voltaNpmVersion}/${relCliPath}`,\n        )\n        if (voltaNodeVersion && !fs?.existsSync(voltaBinPath)) {\n          voltaBinPath = path?.join(\n            voltaImagePath,\n            `node/${voltaNodeVersion}/lib/node_modules/npm/${relCliPath}`,\n          )\n          if (!fs?.existsSync(voltaBinPath)) {\n            voltaBinPath = ''\n          }\n        }\n      }\n    } else {\n      const voltaUserBinPath = path?.join(voltaUserPath, 'bin')\n      const binInfo = readJsonSync(\n        path?.join(voltaUserBinPath, `${basename}.json`),\n        { throws: false },\n      ) as any\n      const binPackage = binInfo?.package\n      if (binPackage) {\n        voltaBinPath = path?.join(\n          voltaImagePath,\n          `packages/${binPackage}/bin/${basename}`,\n        )\n        if (!fs?.existsSync(voltaBinPath)) {\n          voltaBinPath = `${voltaBinPath}.cmd`\n          if (!fs?.existsSync(voltaBinPath)) {\n            voltaBinPath = ''\n          }\n        }\n      }\n    }\n    if (voltaBinPath) {\n      try {\n        return normalizePath(fs?.realpathSync.native(voltaBinPath))\n      } catch {}\n      return voltaBinPath\n    }\n  }\n  if (WIN32) {\n    const hasKnownExt =\n      extLowered === '' ||\n      extLowered === '.cmd' ||\n      extLowered === '.exe' ||\n      extLowered === '.ps1'\n    const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n    const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n    if (hasKnownExt && isNpmOrNpx) {\n      // The quick route assumes a bin path like: C:\\Program Files\\nodejs\\npm.cmd\n      const quickPath = path?.join(\n        path?.dirname(binPath),\n        `node_modules/npm/bin/${basename}-cli.js`,\n      )\n      if (fs?.existsSync(quickPath)) {\n        try {\n          return fs?.realpathSync.native(quickPath)\n        } catch {}\n        return quickPath\n      }\n    }\n    let relPath = ''\n    if (\n      hasKnownExt &&\n      // Only parse shell scripts and batch files, not actual executables.\n      // .exe files are already executables and don't need path resolution from wrapper scripts.\n      extLowered !== '.exe' &&\n      // Check if file exists before attempting to read it to avoid ENOENT errors.\n      fs?.existsSync(binPath)\n    ) {\n      const source = fs?.readFileSync(binPath, 'utf8')\n      if (isNpmOrNpx) {\n        if (extLowered === '.cmd') {\n          // \"npm.cmd\" and \"npx.cmd\" defined by\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npm.cmd\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npx.cmd\n          relPath =\n            basename === 'npm'\n              ? /(?<=\"NPM_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n              : /(?<=\"NPX_CLI_JS=%~dp0\\\\).*(?=\")/.exec(source)?.[0] || ''\n        } else if (extLowered === '') {\n          // Extensionless \"npm\" and \"npx\" defined by\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npm\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npx\n          relPath =\n            basename === 'npm'\n              ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n                ''\n              : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] ||\n                ''\n        } else if (extLowered === '.ps1') {\n          // \"npm.ps1\" and \"npx.ps1\" defined by\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npm.ps1\n          // https://github.com/npm/cli/blob/v11.4.2/bin/npx.ps1\n          relPath =\n            basename === 'npm'\n              ? /(?<=\\$NPM_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n                  source,\n                )?.[0] || ''\n              : /(?<=\\$NPX_CLI_JS=\"\\$PSScriptRoot\\/).*(?=\")/.exec(\n                  source,\n                )?.[0] || ''\n        }\n      } else if (isPnpmOrYarn) {\n        if (extLowered === '.cmd') {\n          // pnpm.cmd and yarn.cmd can have different formats depending on installation method\n          // Common formats include:\n          // 1. Setup-pnpm action format: node \"%~dp0\\..\\pnpm\\bin\\pnpm.cjs\" %*\n          // 2. npm install -g pnpm format: similar to cmd-shim\n          // 3. Standalone installer format: various patterns\n\n          // Try setup-pnpm/setup-yarn action format first\n          relPath =\n            /(?<=node\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(source)?.[1] || ''\n\n          // Try alternative format: \"%~dp0\\node.exe\" \"%~dp0\\..\\package\\bin\\binary.js\" %*\n          if (!relPath) {\n            relPath =\n              /(?<=\"%~dp0\\\\[^\"]*node[^\"]*\"\\s+\")%~dp0\\\\([^\"]+)(?=\"\\s+%\\*)/.exec(\n                source,\n              )?.[1] || ''\n          }\n\n          // Try cmd-shim format as fallback\n          if (!relPath) {\n            relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n          }\n        } else if (extLowered === '') {\n          // Extensionless pnpm/yarn - try common shebang formats\n          // Handle pnpm installed via standalone installer or global install\n          // Format: exec \"$basedir/node\"  \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n          // Note: may have multiple spaces between arguments\n          relPath =\n            /(?<=\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n              source,\n            )?.[0] || ''\n          if (!relPath) {\n            // Also try: exec node  \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n            relPath =\n              /(?<=exec\\s+node\\s+\"\\$basedir\\/)\\.tools\\/pnpm\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(\n                source,\n              )?.[0] || ''\n          }\n          if (!relPath) {\n            // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n            relPath = /(?<=\"\\$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n          }\n        } else if (extLowered === '.ps1') {\n          // PowerShell format\n          relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n        }\n      } else if (extLowered === '.cmd') {\n        // \"bin.CMD\" generated by\n        // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L98:\n        //\n        // @ECHO off\n        // GOTO start\n        // :find_dp0\n        // SET dp0=%~dp0\n        // EXIT /b\n        // :start\n        // SETLOCAL\n        // CALL :find_dp0\n        //\n        // IF EXIST \"%dp0%\\node.exe\" (\n        //   SET \"_prog=%dp0%\\node.exe\"\n        // ) ELSE (\n        //   SET \"_prog=node\"\n        //   SET PATHEXT=%PATHEXT:;.JS;=;%\n        // )\n        //\n        // endLocal & goto #_undefined_# 2>NUL || title %COMSPEC% & \"%_prog%\"  \"%dp0%\\..\\<PACKAGE_NAME>\\path\\to\\bin.js\" %*\n        relPath = /(?<=\"%dp0%\\\\).*(?=\" %\\*\\r\\n)/.exec(source)?.[0] || ''\n      } else if (extLowered === '') {\n        // Extensionless \"bin\" generated by\n        // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L138:\n        //\n        // #!/bin/sh\n        // basedir=$(dirname \"$(echo \"$0\" | sed -e 's,\\\\,/,g')\")\n        //\n        // case `uname` in\n        //     *CYGWIN*|*MINGW*|*MSYS*)\n        //         if command -v cygpath > /dev/null 2>&1; then\n        //             basedir=`cygpath -w \"$basedir\"`\n        //         fi\n        //     ;;\n        // esac\n        //\n        // if [ -x \"$basedir/node\" ]; then\n        //   exec \"$basedir/node\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n        // else\n        //   exec node  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" \"$@\"\n        // fi\n        relPath = /(?<=\"$basedir\\/).*(?=\" \"\\$@\"\\n)/.exec(source)?.[0] || ''\n      } else if (extLowered === '.ps1') {\n        // \"bin.PS1\" generated by\n        // https://github.com/npm/cmd-shim/blob/v7.0.0/lib/index.js#L192:\n        //\n        // #!/usr/bin/env pwsh\n        // $basedir=Split-Path $MyInvocation.MyCommand.Definition -Parent\n        //\n        // $exe=\"\"\n        // if ($PSVersionTable.PSVersion -lt \"6.0\" -or $IsWindows) {\n        //   # Fix case when both the Windows and Linux builds of Node\n        //   # are installed in the same directory\n        //   $exe=\".exe\"\n        // }\n        // $ret=0\n        // if (Test-Path \"$basedir/node$exe\") {\n        //   # Support pipeline input\n        //   if ($MyInvocation.ExpectingInput) {\n        //     $input | & \"$basedir/node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   } else {\n        //     & \"$basedir/node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   }\n        //   $ret=$LASTEXITCODE\n        // } else {\n        //   # Support pipeline input\n        //   if ($MyInvocation.ExpectingInput) {\n        //     $input | & \"node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   } else {\n        //     & \"node$exe\"  \"$basedir/../<PACKAGE_NAME>/path/to/bin.js\" $args\n        //   }\n        //   $ret=$LASTEXITCODE\n        // }\n        // exit $ret\n        relPath = /(?<=\"\\$basedir\\/).*(?=\" $args\\n)/.exec(source)?.[0] || ''\n      }\n      if (relPath) {\n        binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n      }\n    }\n  } else {\n    // Handle Unix shell scripts (non-Windows platforms)\n    let hasNoExt = extLowered === ''\n    const isPnpmOrYarn = basename === 'pnpm' || basename === 'yarn'\n    const isNpmOrNpx = basename === 'npm' || basename === 'npx'\n\n    // Handle special case where pnpm path in CI has extra segments.\n    // In setup-pnpm GitHub Action, the path might be malformed like:\n    // /home/user/setup-pnpm/node_modules/.bin/pnpm/bin/pnpm.cjs\n    // This happens when the shell script contains a relative path that\n    // when resolved, creates an invalid nested structure.\n    if (isPnpmOrYarn && binPath.includes('/.bin/pnpm/bin/')) {\n      // Extract the correct pnpm bin path.\n      const binIndex = binPath.indexOf('/.bin/pnpm')\n      if (binIndex !== -1) {\n        // Get the base path up to /.bin/pnpm.\n        const baseBinPath = binPath.slice(0, binIndex + '/.bin/pnpm'.length)\n        // Check if the original shell script exists.\n        try {\n          const stats = fs?.statSync(baseBinPath)\n          // Only use this path if it's a file (the shell script).\n          if (stats.isFile()) {\n            binPath = normalizePath(baseBinPath)\n            // Recompute hasNoExt since we changed the path.\n            hasNoExt = !path?.extname(binPath)\n          }\n        } catch {\n          // If stat fails, continue with the original path.\n        }\n      }\n    }\n\n    if (\n      hasNoExt &&\n      (isPnpmOrYarn || isNpmOrNpx) &&\n      // For extensionless files (Unix shell scripts), verify existence before reading.\n      // This prevents ENOENT errors when the bin path doesn't exist.\n      fs?.existsSync(binPath)\n    ) {\n      const source = fs?.readFileSync(binPath, 'utf8')\n      let relPath = ''\n\n      if (isPnpmOrYarn) {\n        // Handle pnpm/yarn Unix shell scripts.\n        // Format: exec \"$basedir/node\" \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n        // or: exec node \"$basedir/.tools/pnpm/VERSION/...\" \"$@\"\n        relPath =\n          /(?<=\"\\$basedir\\/)\\.tools\\/[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n        if (!relPath) {\n          // Try standard cmd-shim format: exec node \"$basedir/../package/bin/binary.js\" \"$@\"\n          // Example: exec node  \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n          //                              ^^^^^^^^^^^^^^^^^^^^^ captures this part\n          // This regex needs to be more careful to not match \"$@\" at the end.\n          relPath =\n            /(?<=\"\\$basedir\\/)[^\"]+(?=\"\\s+\"\\$@\")/.exec(source)?.[0] || ''\n        }\n        // Special case for setup-pnpm GitHub Action which may use a different format.\n        // The setup-pnpm action creates a shell script that references ../pnpm/bin/pnpm.cjs\n        if (!relPath) {\n          // Try to match: exec node  \"$basedir/../pnpm/bin/pnpm.cjs\" \"$@\"\n          const match = /exec\\s+node\\s+\"?\\$basedir\\/([^\"]+)\"?\\s+\"\\$@\"/.exec(\n            source,\n          )\n          if (match) {\n            relPath = match[1] || ''\n          }\n        }\n        // Check if the extracted path looks wrong (e.g., pnpm/bin/pnpm.cjs without ../).\n        // This happens with setup-pnpm action when it creates a malformed shell script.\n        if (relPath && basename === 'pnpm' && relPath.startsWith('pnpm/')) {\n          // The path should be ../pnpm/... not pnpm/...\n          // Prepend ../ to fix the relative path.\n          relPath = `../${relPath}`\n        }\n      } else if (isNpmOrNpx) {\n        // Handle npm/npx Unix shell scripts\n        relPath =\n          basename === 'npm'\n            ? /(?<=NPM_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n            : /(?<=NPX_CLI_JS=\"\\$CLI_BASEDIR\\/).*(?=\")/.exec(source)?.[0] || ''\n      }\n\n      if (relPath) {\n        // Resolve the relative path to handle .. segments properly.\n        binPath = normalizePath(path?.resolve(path?.dirname(binPath), relPath))\n      }\n    }\n  }\n  try {\n    const realPath = fs?.realpathSync.native(binPath)\n    return normalizePath(realPath)\n  } catch {}\n  // Return normalized path even if realpath fails.\n  return normalizePath(binPath)\n}\n"],
+  "mappings": ";4ZAAA,IAAAA,EAAA,GAAAC,EAAAD,EAAA,aAAAE,EAAA,gBAAAC,EAAA,gBAAAC,EAAA,iBAAAC,EAAA,iBAAAC,EAAA,oBAAAC,EAAA,uBAAAC,EAAA,UAAAC,EAAA,aAAAC,EAAA,iBAAAC,EAAA,cAAAC,IAAA,eAAAC,EAAAb,GAKA,IAAAc,EAAwB,qBACxBC,EAA4C,wBAC5CC,EAA+B,oBAE/BC,EAAsB,+BACtBC,EAA6B,gBAC7BC,EAAsC,kBACtCC,EAAsB,mBAEtB,IAAIC,EAKJ,SAASC,GAAQ,CACf,OAAID,IAAQ,SAGVA,EAAoB,QAAQ,SAAS,GAEhCA,CACT,CAEA,IAAIE,EAKJ,SAASC,GAAU,CACjB,OAAID,IAAU,SAGZA,EAAsB,QAAQ,WAAW,GAEpCA,CACT,CAEA,IAAIE,EAKJ,SAASC,GAAW,CAClB,OAAID,IAAW,SACbA,EAAuB,QAAQ,kBAAkB,GAE5CA,CACT,CAMA,eAAsBvB,EACpByB,EACAC,EACAC,EACA,CAEA,MAAMC,KAAe,UAAOH,CAAO,EAC/BnB,EAAmBmB,CAAO,EAC1B,MAAMjB,EAASiB,CAAO,EAE1B,GAAI,CAACG,EAAc,CACjB,MAAMC,EAAQ,IAAI,MAAM,qBAAqBJ,CAAO,EAAE,EAGtD,MAAAI,EAAM,KAAO,SACPA,CACR,CAGA,MAAMC,EAAa,MAAM,QAAQF,CAAY,EACzCA,EAAa,CAAC,EACdA,EAEJ,OAAO,QAAM,SAAME,EAAYJ,GAAQ,CAAC,EAAG,CACzC,MAAO,QACP,GAAGC,CACL,CAAC,CACH,CAuBA,eAAsBpB,EACpBwB,EACAJ,EACwC,CACxC,OAAO,MAAMH,EAAS,EAAEO,EAASJ,CAAO,CAC1C,CAQO,SAASjB,EACdqB,EACAJ,EAC+B,CAC/B,OAAOH,EAAS,EAAE,KAAKO,EAASJ,CAAO,CACzC,CAOA,eAAsBnB,EACpBuB,EACAJ,EACwC,CACxC,MAAMpB,EAAQiB,EAAS,EAEjBQ,EAAO,CAAE,QAAS,GAAM,GAAGL,CAAQ,EAGnCM,EAAS,MAAM1B,EAAMwB,EAASC,CAAI,EAGxC,GAAIA,GAAM,IAAK,CACb,MAAME,EAAQ,MAAM,QAAQD,CAAM,EAC9BA,EACA,OAAOA,GAAW,SAChB,CAACA,CAAM,EACP,OAEN,OAAOC,GAAO,OAASA,EAAM,IAAI,GAAK5B,EAAmB,CAAC,CAAC,EAAI4B,CACjE,CAGA,GAAKD,EAIL,OAAO3B,EAAmB2B,CAAM,CAClC,CAMO,SAASxB,EACdsB,EACAJ,EAC+B,CAE/B,MAAMK,EAAO,CAAE,QAAS,GAAM,GAAGL,CAAQ,EAGnCM,EAASvB,EAAUqB,EAASC,CAAI,EAGtC,GAAIA,EAAK,IAAK,CACZ,MAAME,EAAQ,MAAM,QAAQD,CAAM,EAC9BA,EACA,OAAOA,GAAW,SAChB,CAACA,CAAM,EACP,OAEN,OAAOC,GAAO,OAASA,EAAM,IAAIC,GAAK7B,EAAmB6B,CAAC,CAAC,EAAID,CACjE,CAGA,GAAKD,EAIL,OAAO3B,EAAmB2B,CAAgB,CAC5C,CAKO,SAAS5B,EAAgB+B,EAAsC,CACpE,OAAKA,EAIcA,EAAQ,QAAQ,MAAO,GAAG,EAC3B,SAAS,mBAAmB,EAJrC,EAKX,CAKO,SAASnC,EACd8B,EACAM,EAAwB,CAAC,EACL,CACpB,MAAMC,EAAKlB,EAAM,EACXmB,EAAOjB,EAAQ,EACff,EAAQiB,EAAS,EAGvB,UAAWC,KAAWY,EACpB,GAAIC,GAAI,WAAWb,CAAO,EACxB,OAAOA,EAKX,MAAMA,EAAUlB,GAAO,KAAKwB,EAAS,CAAE,QAAS,EAAK,CAAC,EACtD,GAAIN,EAAS,CACX,MAAMe,EAASD,GAAM,QAAQd,CAAO,EAEpC,GAAIpB,EAAgBmC,CAAM,EAAG,CAE3B,MAAMC,EAAWlC,GAAO,KAAKwB,EAAS,CAAE,IAAK,GAAM,QAAS,EAAK,CAAC,GAAK,CAAC,EAElEW,EAAa,MAAM,QAAQD,CAAQ,EACrCA,EACA,OAAOA,GAAa,SAClB,CAACA,CAAQ,EACT,CAAC,EAEP,UAAWE,KAAWD,EAAY,CAChC,MAAME,EAASL,GAAM,QAAQI,CAAO,EACpC,GAAI,CAACtC,EAAgBuC,CAAM,EACzB,OAAOD,CAEX,CACF,CACA,OAAOlB,CACT,CAGF,CAKO,SAASvB,GAAsB,CACpC,MAAMoC,EAAKlB,EAAM,EACXmB,EAAOjB,EAAQ,EAGfuB,EAAUN,GAAM,QAAQ,QAAQ,QAAQ,EACxCO,EAAeP,GAAM,KAAKM,EAAS,KAAK,EAE9C,GAAIP,GAAI,WAAWQ,CAAY,EAC7B,OAAOA,EAKT,MAAMb,EAAShC,EAAY,MADP,CAAC,qBAAsB,cAAc,CACZ,EAG7C,GAAIgC,GAAUK,GAAI,WAAWL,CAAM,EACjC,OAAOA,EAKT,MAAMc,EAAUtC,EAAa,MAAO,CAAE,QAAS,EAAK,CAAC,EACrD,OAAIsC,GAAW,OAAOA,GAAY,UAAYT,GAAI,WAAWS,CAAO,EAC3DA,EAIF,KACT,CAKO,SAAS5C,GAAuB,CACrC,MAAMoC,EAAOjB,EAAQ,EAGfe,EAAc,QAChB,CAEEE,GAAM,QAAK,cAAW,EAAa,MAAO,UAAU,EACpDA,GAAM,QAAK,cAAW,EAAa,MAAO,MAAM,EAChDA,GAAM,QAAK,mBAAgB,EAAa,OAAQ,UAAU,EAC1DA,GAAM,QAAK,mBAAgB,EAAa,OAAQ,MAAM,EACtD,sCACA,iCACF,EAAE,OAAO,OAAO,EAChB,CAEE,sBACA,gBACAA,GAAM,QACH,kBAAe,GAAgB,MAAG,WAAQ,CAAW,gBACtD,WACF,EACAA,GAAM,QAAK,WAAQ,EAAa,YAAY,CAC9C,EAAE,OAAO,OAAO,EAEpB,OAAOtC,EAAY,OAAQoC,CAAW,GAAK,EAC7C,CAKO,SAASjC,GAAuB,CACrC,MAAMmC,EAAOjB,EAAQ,EAGfe,EAAc,CAClB,sBACA,gBACAE,GAAM,QAAK,WAAQ,EAAa,gBAAgB,EAChDA,GAAM,QACJ,WAAQ,EACR,4CACF,CACF,EAAE,OAAO,OAAO,EAEhB,OAAOtC,EAAY,OAAQoC,CAAW,GAAK,EAC7C,CAOO,SAAS/B,EAAmBmB,EAAyB,CAC1D,MAAMa,EAAKlB,EAAM,EACXmB,EAAOjB,EAAQ,EAGrB,GAAI,CAACiB,GAAM,WAAWd,CAAO,EAC3B,GAAI,CACF,MAAMuB,EAAWvC,EAAagB,CAAO,EACjCuB,IACFvB,EAAUuB,EAEd,MAAQ,CAAC,CAOX,GAHAvB,KAAU,iBAAcA,CAAO,EAG3BA,IAAY,IACd,OAAOA,EAGT,MAAMwB,EAAMV,GAAM,QAAQd,CAAO,EAC3ByB,EAAaD,EAAI,YAAY,EAC7BE,EAAWZ,GAAM,SAASd,EAASwB,CAAG,EACtCG,EACJD,IAAa,OAAS,GAAM,oBAAoB,KAAK1B,CAAO,GAAG,OAAS,GAC1E,GAAI2B,IAAe,GAAI,CACrB,MAAMC,EAAY5B,EAAQ,MAAM,EAAG2B,CAAU,EACvCE,EAAiBf,GAAM,KAAKc,EAAW,OAAO,EAC9CE,EAAiBhB,GAAM,KAAKe,EAAgB,OAAO,EACnDE,EAAgBjB,GAAM,KAAKe,EAAgB,MAAM,EACjDG,KAAgB,gBACpBlB,GAAM,KAAKiB,EAAe,eAAe,EACzC,CAAE,OAAQ,EAAM,CAClB,EACME,EAAmBD,GAAe,MAAM,QACxCE,EAAkBF,GAAe,MAAM,IAC7C,IAAIG,EAAe,GACnB,GAAIT,IAAa,OAASA,IAAa,OACrC,GAAIQ,EAAiB,CACnB,MAAME,EAAa,OAAOV,CAAQ,UAClCS,EAAerB,GAAM,KACnBgB,EACA,OAAOI,CAAe,IAAIE,CAAU,EACtC,EACIH,GAAoB,CAACpB,GAAI,WAAWsB,CAAY,IAClDA,EAAerB,GAAM,KACnBgB,EACA,QAAQG,CAAgB,yBAAyBG,CAAU,EAC7D,EACKvB,GAAI,WAAWsB,CAAY,IAC9BA,EAAe,IAGrB,MACK,CACL,MAAME,EAAmBvB,GAAM,KAAKiB,EAAe,KAAK,EAKlDO,KAJU,gBACdxB,GAAM,KAAKuB,EAAkB,GAAGX,CAAQ,OAAO,EAC/C,CAAE,OAAQ,EAAM,CAClB,GAC4B,QACxBY,IACFH,EAAerB,GAAM,KACnBgB,EACA,YAAYQ,CAAU,QAAQZ,CAAQ,EACxC,EACKb,GAAI,WAAWsB,CAAY,IAC9BA,EAAe,GAAGA,CAAY,OACzBtB,GAAI,WAAWsB,CAAY,IAC9BA,EAAe,KAIvB,CACA,GAAIA,EAAc,CAChB,GAAI,CACF,SAAO,iBAActB,GAAI,aAAa,OAAOsB,CAAY,CAAC,CAC5D,MAAQ,CAAC,CACT,OAAOA,CACT,CACF,CACA,GAAI,QAAO,CACT,MAAMI,EACJd,IAAe,IACfA,IAAe,QACfA,IAAe,QACfA,IAAe,OACXe,EAAad,IAAa,OAASA,IAAa,MAChDe,EAAef,IAAa,QAAUA,IAAa,OACzD,GAAIa,GAAeC,EAAY,CAE7B,MAAME,EAAY5B,GAAM,KACtBA,GAAM,QAAQd,CAAO,EACrB,wBAAwB0B,CAAQ,SAClC,EACA,GAAIb,GAAI,WAAW6B,CAAS,EAAG,CAC7B,GAAI,CACF,OAAO7B,GAAI,aAAa,OAAO6B,CAAS,CAC1C,MAAQ,CAAC,CACT,OAAOA,CACT,CACF,CACA,IAAIC,EAAU,GACd,GACEJ,GAGAd,IAAe,QAEfZ,GAAI,WAAWb,CAAO,EACtB,CACA,MAAM4C,EAAS/B,GAAI,aAAab,EAAS,MAAM,EAC3CwC,EACEf,IAAe,OAIjBkB,EACEjB,IAAa,MACT,kCAAkC,KAAKkB,CAAM,IAAI,CAAC,GAAK,GACvD,kCAAkC,KAAKA,CAAM,IAAI,CAAC,GAAK,GACpDnB,IAAe,GAIxBkB,EACEjB,IAAa,MACT,0CAA0C,KAAKkB,CAAM,IAAI,CAAC,GAC1D,GACA,0CAA0C,KAAKA,CAAM,IAAI,CAAC,GAC1D,GACGnB,IAAe,SAIxBkB,EACEjB,IAAa,MACT,6CAA6C,KAC3CkB,CACF,IAAI,CAAC,GAAK,GACV,6CAA6C,KAC3CA,CACF,IAAI,CAAC,GAAK,IAETH,EACLhB,IAAe,QAQjBkB,EACE,yCAAyC,KAAKC,CAAM,IAAI,CAAC,GAAK,GAG3DD,IACHA,EACE,4DAA4D,KAC1DC,CACF,IAAI,CAAC,GAAK,IAITD,IACHA,EAAU,+BAA+B,KAAKC,CAAM,IAAI,CAAC,GAAK,KAEvDnB,IAAe,IAKxBkB,EACE,qDAAqD,KACnDC,CACF,IAAI,CAAC,GAAK,GACPD,IAEHA,EACE,mEAAmE,KACjEC,CACF,IAAI,CAAC,GAAK,IAETD,IAEHA,EAAU,mCAAmC,KAAKC,CAAM,IAAI,CAAC,GAAK,KAE3DnB,IAAe,SAExBkB,EAAU,mCAAmC,KAAKC,CAAM,IAAI,CAAC,GAAK,IAE3DnB,IAAe,OAqBxBkB,EAAU,+BAA+B,KAAKC,CAAM,IAAI,CAAC,GAAK,GACrDnB,IAAe,GAoBxBkB,EAAU,kCAAkC,KAAKC,CAAM,IAAI,CAAC,GAAK,GACxDnB,IAAe,SAgCxBkB,EAAU,mCAAmC,KAAKC,CAAM,IAAI,CAAC,GAAK,IAEhED,IACF3C,KAAU,iBAAcc,GAAM,QAAQA,GAAM,QAAQd,CAAO,EAAG2C,CAAO,CAAC,EAE1E,CACF,KAAO,CAEL,IAAIE,EAAWpB,IAAe,GAC9B,MAAMgB,EAAef,IAAa,QAAUA,IAAa,OACnDc,EAAad,IAAa,OAASA,IAAa,MAOtD,GAAIe,GAAgBzC,EAAQ,SAAS,iBAAiB,EAAG,CAEvD,MAAM8C,EAAW9C,EAAQ,QAAQ,YAAY,EAC7C,GAAI8C,IAAa,GAAI,CAEnB,MAAMC,EAAc/C,EAAQ,MAAM,EAAG8C,EAAW,EAAmB,EAEnE,GAAI,EACYjC,GAAI,SAASkC,CAAW,GAE5B,OAAO,IACf/C,KAAU,iBAAc+C,CAAW,EAEnCF,EAAW,CAAC/B,GAAM,QAAQd,CAAO,EAErC,MAAQ,CAER,CACF,CACF,CAEA,GACE6C,IACCJ,GAAgBD,IAGjB3B,GAAI,WAAWb,CAAO,EACtB,CACA,MAAM4C,EAAS/B,GAAI,aAAab,EAAS,MAAM,EAC/C,IAAI2C,EAAU,GAEd,GAAIF,EAAc,CAgBhB,GAZAE,EACE,+CAA+C,KAAKC,CAAM,IAAI,CAAC,GAAK,GACjED,IAKHA,EACE,sCAAsC,KAAKC,CAAM,IAAI,CAAC,GAAK,IAI3D,CAACD,EAAS,CAEZ,MAAMK,EAAQ,+CAA+C,KAC3DJ,CACF,EACII,IACFL,EAAUK,EAAM,CAAC,GAAK,GAE1B,CAGIL,GAAWjB,IAAa,QAAUiB,EAAQ,WAAW,OAAO,IAG9DA,EAAU,MAAMA,CAAO,GAE3B,MAAWH,IAETG,EACEjB,IAAa,MACT,0CAA0C,KAAKkB,CAAM,IAAI,CAAC,GAAK,GAC/D,0CAA0C,KAAKA,CAAM,IAAI,CAAC,GAAK,IAGnED,IAEF3C,KAAU,iBAAcc,GAAM,QAAQA,GAAM,QAAQd,CAAO,EAAG2C,CAAO,CAAC,EAE1E,CACF,CACA,GAAI,CACF,MAAMM,EAAWpC,GAAI,aAAa,OAAOb,CAAO,EAChD,SAAO,iBAAciD,CAAQ,CAC/B,MAAQ,CAAC,CAET,SAAO,iBAAcjD,CAAO,CAC9B",
   "names": ["bin_exports", "__export", "execBin", "findRealBin", "findRealNpm", "findRealPnpm", "findRealYarn", "isShadowBinPath", "resolveBinPathSync", "which", "whichBin", "whichBinSync", "whichSync", "__toCommonJS", "import_home", "import_windows", "import_xdg", "import_platform", "import_fs", "import_path", "import_spawn", "_fs", "getFs", "_path", "getPath", "_which", "getWhich", "binPath", "args", "options", "resolvedPath", "error", "binCommand", "binName", "opts", "result", "paths", "p", "dirPath", "commonPaths", "fs", "path", "binDir", "allPaths", "pathsArray", "altPath", "altDir", "nodeDir", "npmInNodeDir", "npmPath", "resolved", "ext", "extLowered", "basename", "voltaIndex", "voltaPath", "voltaToolsPath", "voltaImagePath", "voltaUserPath", "voltaPlatform", "voltaNodeVersion", "voltaNpmVersion", "voltaBinPath", "relCliPath", "voltaUserBinPath", "binPackage", "hasKnownExt", "isNpmOrNpx", "isPnpmOrYarn", "quickPath", "relPath", "source", "hasNoExt", "binIndex", "baseBinPath", "match", "realPath"]
 }

package/dist/dlx-binary.js CHANGED Viewed

@@ -1,3 +1,3 @@
 /* Socket Lib - Built with esbuild */
-var v=Object.create;var b=Object.defineProperty;var E=Object.getOwnPropertyDescriptor;var H=Object.getOwnPropertyNames;var L=Object.getPrototypeOf,z=Object.prototype.hasOwnProperty;var F=(t,n)=>{for(var e in n)b(t,e,{get:n[e],enumerable:!0})},O=(t,n,e,i)=>{if(n&&typeof n=="object"||typeof n=="function")for(let r of H(n))!z.call(t,r)&&r!==e&&b(t,r,{get:()=>n[r],enumerable:!(i=E(n,r))||i.enumerable});return t};var T=(t,n,e)=>(e=t!=null?v(L(t)):{},O(n||!t||!t.__esModule?b(e,"default",{value:t,enumerable:!0}):e,t)),W=t=>O(b({},"__esModule",{value:!0}),t);var G={};F(G,{cleanDlxCache:()=>M,dlxBinary:()=>V,getDlxCachePath:()=>D,listDlxCache:()=>X});module.exports=W(G);var j=require("node:crypto"),s=require("node:fs"),x=T(require("node:os")),p=T(require("node:path")),A=require("#constants/platform"),_=require("./download-lock"),c=require("./fs"),C=require("./objects"),S=require("./path"),B=require("./paths"),R=require("./spawn");function Y(t,n){return(0,j.createHash)("sha256").update(`${t}:${n}`).digest("hex")}function g(t){return p.default.join(t,".dlx-metadata.json")}async function q(t,n){try{const e=g(t);if(!(0,s.existsSync)(e))return!1;const i=await(0,c.readJson)(e,{throws:!1});if(!(0,C.isObjectObject)(i))return!1;const r=Date.now(),a=i.timestamp;return typeof a!="number"||a<=0?!1:r-a<n}catch{return!1}}async function J(t,n,e){await(0,_.downloadWithLock)(t,n,{staleTimeout:1e4,lockTimeout:12e4});const i=await s.promises.readFile(n),r=(0,j.createHash)("sha256");r.update(i);const a=r.digest("hex");if(e&&a!==e)throw await(0,c.safeDelete)(n),new Error(`Checksum mismatch: expected ${e}, got ${a}`);return A.WIN32||await s.promises.chmod(n,493),a}async function K(t,n,e){const i=g(t),r={arch:x.default.arch(),checksum:e,platform:x.default.platform(),timestamp:Date.now(),url:n,version:"1.0.0"};await s.promises.writeFile(i,JSON.stringify(r,null,2))}async function M(t=require("#constants/time").DLX_BINARY_CACHE_TTL){const n=D();if(!(0,s.existsSync)(n))return 0;let e=0;const i=Date.now(),r=await s.promises.readdir(n);for(const a of r){const m=p.default.join(n,a),u=g(m);try{if(!await(0,c.isDir)(m))continue;const f=await(0,c.readJson)(u,{throws:!1});if(!f||typeof f!="object"||Array.isArray(f))continue;const l=f.timestamp;(typeof l=="number"&&l>0?i-l:Number.POSITIVE_INFINITY)>t&&(await(0,c.safeDelete)(m,{force:!0,recursive:!0}),e+=1)}catch{try{(await s.promises.readdir(m)).length||(await(0,c.safeDelete)(m),e+=1)}catch{}}}return e}async function V(t,n,e){const{cacheTtl:i=require("#constants/time").DLX_BINARY_CACHE_TTL,checksum:r,force:a=!1,name:m,spawnOptions:u,url:f}={__proto__:null,...n},l=D(),d=m||`binary-${process.platform}-${x.default.arch()}`,P=Y(f,d),o=p.default.join(l,P),y=(0,S.normalizePath)(p.default.join(o,d));let h=!1,k=r;if(!a&&(0,s.existsSync)(o)&&await q(o,i))try{const N=g(o),w=await(0,c.readJson)(N,{throws:!1});w&&typeof w=="object"&&!Array.isArray(w)&&typeof w.checksum=="string"?k=w.checksum:h=!0}catch{h=!0}else h=!0;h&&(await s.promises.mkdir(o,{recursive:!0}),k=await J(f,y,r),await K(o,f,k||""));const $=A.WIN32&&/\.(?:bat|cmd|ps1)$/i.test(y)?{...u,env:{...u?.env,PATH:`${o}${p.default.delimiter}${process.env.PATH||""}`},shell:!0}:u,I=(0,R.spawn)(y,t,$,e);return{binaryPath:y,downloaded:h,spawnPromise:I}}function D(){return(0,B.getSocketDlxDir)()}async function X(){const t=D();if(!(0,s.existsSync)(t))return[];const n=[],e=Date.now(),i=await s.promises.readdir(t);for(const r of i){const a=p.default.join(t,r);try{if(!await(0,c.isDir)(a))continue;const m=g(a),u=await(0,c.readJson)(m,{throws:!1});if(!u||typeof u!="object"||Array.isArray(u))continue;const l=(await s.promises.readdir(a)).find(d=>!d.startsWith("."));if(l){const d=p.default.join(a,l),P=await s.promises.stat(d),o=u;n.push({age:e-(o.timestamp||0),arch:o.arch||"unknown",checksum:o.checksum||"",name:l,platform:o.platform||"unknown",size:P.size,url:o.url||""})}}catch{}}return n}0&&(module.exports={cleanDlxCache,dlxBinary,getDlxCachePath,listDlxCache});
+var E=Object.create;var x=Object.defineProperty;var H=Object.getOwnPropertyDescriptor;var L=Object.getOwnPropertyNames;var z=Object.getPrototypeOf,F=Object.prototype.hasOwnProperty;var W=(t,n)=>{for(var e in n)x(t,e,{get:n[e],enumerable:!0})},T=(t,n,e,i)=>{if(n&&typeof n=="object"||typeof n=="function")for(let r of L(n))!F.call(t,r)&&r!==e&&x(t,r,{get:()=>n[r],enumerable:!(i=H(n,r))||i.enumerable});return t};var _=(t,n,e)=>(e=t!=null?E(z(t)):{},T(n||!t||!t.__esModule?x(e,"default",{value:t,enumerable:!0}):e,t)),Y=t=>T(x({},"__esModule",{value:!0}),t);var Q={};W(Q,{cleanDlxCache:()=>V,dlxBinary:()=>X,getDlxCachePath:()=>P,listDlxCache:()=>G});module.exports=Y(Q);var A=require("node:crypto"),s=require("node:fs"),D=_(require("node:os")),l=_(require("node:path")),O=require("#constants/platform"),C=require("./download-lock"),o=require("./fs"),S=require("./objects"),B=require("./path"),R=require("./paths"),$=require("./spawn");function q(t){return(0,A.createHash)("sha512").update(t).digest("hex").substring(0,16)}function y(t){return l.default.join(t,".dlx-metadata.json")}async function J(t,n){try{const e=y(t);if(!(0,s.existsSync)(e))return!1;const i=await(0,o.readJson)(e,{throws:!1});if(!(0,S.isObjectObject)(i))return!1;const r=Date.now(),a=i.timestamp;return typeof a!="number"||a<=0?!1:r-a<n}catch{return!1}}async function K(t,n,e){await(0,C.downloadWithLock)(t,n,{staleTimeout:1e4,lockTimeout:12e4});const i=await s.promises.readFile(n),r=(0,A.createHash)("sha256");r.update(i);const a=r.digest("hex");if(e&&a!==e)throw await(0,o.safeDelete)(n),new Error(`Checksum mismatch: expected ${e}, got ${a}`);return O.WIN32||await s.promises.chmod(n,493),a}async function M(t,n,e){const i=y(t),r={arch:D.default.arch(),checksum:e,platform:D.default.platform(),timestamp:Date.now(),url:n,version:"1.0.0"};await s.promises.writeFile(i,JSON.stringify(r,null,2))}async function V(t=require("#constants/time").DLX_BINARY_CACHE_TTL){const n=P();if(!(0,s.existsSync)(n))return 0;let e=0;const i=Date.now(),r=await s.promises.readdir(n);for(const a of r){const c=l.default.join(n,a),m=y(c);try{if(!await(0,o.isDir)(c))continue;const u=await(0,o.readJson)(m,{throws:!1});if(!u||typeof u!="object"||Array.isArray(u))continue;const f=u.timestamp;(typeof f=="number"&&f>0?i-f:Number.POSITIVE_INFINITY)>t&&(await(0,o.safeDelete)(c,{force:!0,recursive:!0}),e+=1)}catch{try{(await s.promises.readdir(c)).length||(await(0,o.safeDelete)(c),e+=1)}catch{}}}return e}async function X(t,n,e){const{cacheTtl:i=require("#constants/time").DLX_BINARY_CACHE_TTL,checksum:r,force:a=!1,name:c,spawnOptions:m,url:u}={__proto__:null,...n},f=P(),p=c||`binary-${process.platform}-${D.default.arch()}`,k=`${u}:${p}`,d=q(k),h=l.default.join(f,d),b=(0,B.normalizePath)(l.default.join(h,p));let w=!1,j=r;if(!a&&(0,s.existsSync)(h)&&await J(h,i))try{const v=y(h),g=await(0,o.readJson)(v,{throws:!1});g&&typeof g=="object"&&!Array.isArray(g)&&typeof g.checksum=="string"?j=g.checksum:w=!0}catch{w=!0}else w=!0;w&&(await s.promises.mkdir(h,{recursive:!0}),j=await K(u,b,r),await M(h,u,j||""));const I=O.WIN32&&/\.(?:bat|cmd|ps1)$/i.test(b)?{...m,env:{...m?.env,PATH:`${h}${l.default.delimiter}${process.env.PATH||""}`},shell:!0}:m,N=(0,$.spawn)(b,t,I,e);return{binaryPath:b,downloaded:w,spawnPromise:N}}function P(){return(0,R.getSocketDlxDir)()}async function G(){const t=P();if(!(0,s.existsSync)(t))return[];const n=[],e=Date.now(),i=await s.promises.readdir(t);for(const r of i){const a=l.default.join(t,r);try{if(!await(0,o.isDir)(a))continue;const c=y(a),m=await(0,o.readJson)(c,{throws:!1});if(!m||typeof m!="object"||Array.isArray(m))continue;const f=(await s.promises.readdir(a)).find(p=>!p.startsWith("."));if(f){const p=l.default.join(a,f),k=await s.promises.stat(p),d=m;n.push({age:e-(d.timestamp||0),arch:d.arch||"unknown",checksum:d.checksum||"",name:f,platform:d.platform||"unknown",size:k.size,url:d.url||""})}}catch{}}return n}0&&(module.exports={cleanDlxCache,dlxBinary,getDlxCachePath,listDlxCache});
 //# sourceMappingURL=dlx-binary.js.map

package/dist/dlx-binary.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../src/dlx-binary.ts"],
-  "sourcesContent": ["/** @fileoverview DLX binary execution utilities for Socket ecosystem. */\n\nimport { createHash } from 'node:crypto'\nimport { existsSync, promises as fs } from 'node:fs'\nimport os from 'node:os'\nimport path from 'node:path'\n\nimport { WIN32 } from '#constants/platform'\n\nimport { downloadWithLock } from './download-lock'\nimport { isDir, readJson, safeDelete } from './fs'\nimport { isObjectObject } from './objects'\nimport { normalizePath } from './path'\nimport { getSocketDlxDir } from './paths'\nimport type { SpawnExtra, SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\nexport interface DlxBinaryOptions {\n  /** URL to download the binary from. */\n  url: string\n  /** Optional name for the cached binary (defaults to URL hash). */\n  name?: string | undefined\n  /** Expected checksum (sha256) for verification. */\n  checksum?: string | undefined\n  /** Cache TTL in milliseconds (default: 7 days). */\n  cacheTtl?: number | undefined\n  /** Force re-download even if cached. */\n  force?: boolean | undefined\n  /** Additional spawn options. */\n  spawnOptions?: SpawnOptions | undefined\n}\n\nexport interface DlxBinaryResult {\n  /** Path to the cached binary. */\n  binaryPath: string\n  /** Whether the binary was newly downloaded. */\n  downloaded: boolean\n  /** The spawn promise for the running process. */\n  spawnPromise: ReturnType<typeof spawn>\n}\n\n/**\n * Generate a cache directory name from URL and binary name.\n * Uses SHA256 hash to create content-addressed storage.\n * Includes binary name to prevent collisions when multiple binaries\n * are downloaded from the same URL with different names.\n */\nfunction generateCacheKey(url: string, name: string): string {\n  return createHash('sha256').update(`${url}:${name}`).digest('hex')\n}\n\n/**\n * Get metadata file path for a cached binary.\n */\nfunction getMetadataPath(cacheEntryPath: string): string {\n  return path.join(cacheEntryPath, '.dlx-metadata.json')\n}\n\n/**\n * Check if a cached binary is still valid.\n */\nasync function isCacheValid(\n  cacheEntryPath: string,\n  cacheTtl: number,\n): Promise<boolean> {\n  try {\n    const metaPath = getMetadataPath(cacheEntryPath)\n    if (!existsSync(metaPath)) {\n      return false\n    }\n\n    const metadata = await readJson(metaPath, { throws: false })\n    if (!isObjectObject(metadata)) {\n      return false\n    }\n    const now = Date.now()\n    const timestamp = (metadata as Record<string, unknown>)['timestamp']\n    // If timestamp is missing or invalid, cache is invalid\n    if (typeof timestamp !== 'number' || timestamp <= 0) {\n      return false\n    }\n    const age = now - timestamp\n\n    return age < cacheTtl\n  } catch {\n    return false\n  }\n}\n\n/**\n * Download a file from a URL with integrity checking and concurrent download protection.\n * Uses downloadWithLock to prevent multiple processes from downloading the same binary simultaneously.\n */\nasync function downloadBinary(\n  url: string,\n  destPath: string,\n  checksum?: string | undefined,\n): Promise<string> {\n  // Use downloadWithLock to handle concurrent download protection.\n  // This prevents corruption when multiple processes try to download the same binary.\n  await downloadWithLock(url, destPath, {\n    // Align with npm's npx locking strategy.\n    staleTimeout: 10_000,\n    // Allow up to 2 minutes for large binary downloads.\n    lockTimeout: 120_000,\n  })\n\n  // Compute checksum of downloaded file.\n  const fileBuffer = await fs.readFile(destPath)\n  const hasher = createHash('sha256')\n  hasher.update(fileBuffer)\n  const actualChecksum = hasher.digest('hex')\n\n  // Verify checksum if provided.\n  if (checksum && actualChecksum !== checksum) {\n    // Clean up invalid file.\n    await safeDelete(destPath)\n    throw new Error(\n      `Checksum mismatch: expected ${checksum}, got ${actualChecksum}`,\n    )\n  }\n\n  // Make executable on POSIX systems.\n  if (!WIN32) {\n    await fs.chmod(destPath, 0o755)\n  }\n\n  return actualChecksum\n}\n\n/**\n * Write metadata for a cached binary.\n */\nasync function writeMetadata(\n  cacheEntryPath: string,\n  url: string,\n  checksum: string,\n): Promise<void> {\n  const metaPath = getMetadataPath(cacheEntryPath)\n  const metadata = {\n    arch: os.arch(),\n    checksum,\n    platform: os.platform(),\n    timestamp: Date.now(),\n    url,\n    version: '1.0.0',\n  }\n  await fs.writeFile(metaPath, JSON.stringify(metadata, null, 2))\n}\n\n/**\n * Clean expired entries from the DLX cache.\n */\nexport async function cleanDlxCache(\n  maxAge: number = /*@__INLINE__*/ require('#constants/time').DLX_BINARY_CACHE_TTL,\n): Promise<number> {\n  const cacheDir = getDlxCachePath()\n\n  if (!existsSync(cacheDir)) {\n    return 0\n  }\n\n  let cleaned = 0\n  const now = Date.now()\n  const entries = await fs.readdir(cacheDir)\n\n  for (const entry of entries) {\n    const entryPath = path.join(cacheDir, entry)\n    const metaPath = getMetadataPath(entryPath)\n\n    try {\n      // eslint-disable-next-line no-await-in-loop\n      if (!(await isDir(entryPath))) {\n        continue\n      }\n\n      // eslint-disable-next-line no-await-in-loop\n      const metadata = await readJson(metaPath, { throws: false })\n      if (\n        !metadata ||\n        typeof metadata !== 'object' ||\n        Array.isArray(metadata)\n      ) {\n        continue\n      }\n      const timestamp = (metadata as Record<string, unknown>)['timestamp']\n      // If timestamp is missing or invalid, treat as expired (age = infinity)\n      const age =\n        typeof timestamp === 'number' && timestamp > 0\n          ? now - timestamp\n          : Number.POSITIVE_INFINITY\n\n      if (age > maxAge) {\n        // Remove entire cache entry directory.\n        // eslint-disable-next-line no-await-in-loop\n        await safeDelete(entryPath, { force: true, recursive: true })\n        cleaned += 1\n      }\n    } catch {\n      // If we can't read metadata, check if directory is empty or corrupted.\n      try {\n        // eslint-disable-next-line no-await-in-loop\n        const contents = await fs.readdir(entryPath)\n        if (!contents.length) {\n          // Remove empty directory.\n          // eslint-disable-next-line no-await-in-loop\n          await safeDelete(entryPath)\n          cleaned += 1\n        }\n      } catch {}\n    }\n  }\n\n  return cleaned\n}\n\n/**\n * Download and execute a binary from a URL with caching.\n */\nexport async function dlxBinary(\n  args: readonly string[] | string[],\n  options?: DlxBinaryOptions | undefined,\n  spawnExtra?: SpawnExtra | undefined,\n): Promise<DlxBinaryResult> {\n  const {\n    cacheTtl = /*@__INLINE__*/ require('#constants/time').DLX_BINARY_CACHE_TTL,\n    checksum,\n    force = false,\n    name,\n    spawnOptions,\n    url,\n  } = { __proto__: null, ...options } as DlxBinaryOptions\n\n  // Generate cache paths similar to pnpm/npx structure.\n  const cacheDir = getDlxCachePath()\n  const binaryName = name || `binary-${process.platform}-${os.arch()}`\n  const cacheKey = generateCacheKey(url, binaryName)\n  const cacheEntryDir = path.join(cacheDir, cacheKey)\n  const binaryPath = normalizePath(path.join(cacheEntryDir, binaryName))\n\n  let downloaded = false\n  let computedChecksum = checksum\n\n  // Check if we need to download.\n  if (\n    !force &&\n    existsSync(cacheEntryDir) &&\n    (await isCacheValid(cacheEntryDir, cacheTtl))\n  ) {\n    // Binary is cached and valid, read the checksum from metadata.\n    try {\n      const metaPath = getMetadataPath(cacheEntryDir)\n      const metadata = await readJson(metaPath, { throws: false })\n      if (\n        metadata &&\n        typeof metadata === 'object' &&\n        !Array.isArray(metadata) &&\n        typeof (metadata as Record<string, unknown>)['checksum'] === 'string'\n      ) {\n        computedChecksum = (metadata as Record<string, unknown>)[\n          'checksum'\n        ] as string\n      } else {\n        // If metadata is invalid, re-download.\n        downloaded = true\n      }\n    } catch {\n      // If we can't read metadata, re-download.\n      downloaded = true\n    }\n  } else {\n    downloaded = true\n  }\n\n  if (downloaded) {\n    // Ensure cache directory exists.\n    await fs.mkdir(cacheEntryDir, { recursive: true })\n\n    // Download the binary.\n    computedChecksum = await downloadBinary(url, binaryPath, checksum)\n    await writeMetadata(cacheEntryDir, url, computedChecksum || '')\n  }\n\n  // Execute the binary.\n  // On Windows, script files (.bat, .cmd, .ps1) require shell: true because\n  // they are not executable on their own and must be run through cmd.exe.\n  // Note: .exe files are actual binaries and don't need shell mode.\n  const needsShell = WIN32 && /\\.(?:bat|cmd|ps1)$/i.test(binaryPath)\n  // Windows cmd.exe PATH resolution behavior:\n  // When shell: true on Windows with .cmd/.bat/.ps1 files, spawn will automatically\n  // strip the full path down to just the basename without extension (e.g.,\n  // C:\\cache\\test.cmd becomes just \"test\"). Windows cmd.exe then searches for \"test\"\n  // in directories listed in PATH, trying each extension from PATHEXT environment\n  // variable (.COM, .EXE, .BAT, .CMD, etc.) until it finds a match.\n  //\n  // Since our binaries are downloaded to a custom cache directory that's not in PATH\n  // (unlike system package managers like npm/pnpm/yarn which are already in PATH),\n  // we must prepend the cache directory to PATH so cmd.exe can locate the binary.\n  //\n  // This approach is consistent with how other tools handle Windows command execution:\n  // - npm's promise-spawn: uses which.sync() to find commands in PATH\n  // - cross-spawn: spawns cmd.exe with escaped arguments\n  // - Node.js spawn with shell: true: delegates to cmd.exe which uses PATH\n  const finalSpawnOptions = needsShell\n    ? {\n        ...spawnOptions,\n        env: {\n          ...spawnOptions?.env,\n          PATH: `${cacheEntryDir}${path.delimiter}${process.env['PATH'] || ''}`,\n        },\n        shell: true,\n      }\n    : spawnOptions\n  const spawnPromise = spawn(binaryPath, args, finalSpawnOptions, spawnExtra)\n\n  return {\n    binaryPath,\n    downloaded,\n    spawnPromise,\n  }\n}\n\n/**\n * Get the DLX binary cache directory path.\n * Returns normalized path for cross-platform compatibility.\n * Uses same directory as dlx-package for unified DLX storage.\n */\nexport function getDlxCachePath(): string {\n  return getSocketDlxDir()\n}\n\n/**\n * Get information about cached binaries.\n */\nexport async function listDlxCache(): Promise<\n  Array<{\n    age: number\n    arch: string\n    checksum: string\n    name: string\n    platform: string\n    size: number\n    url: string\n  }>\n> {\n  const cacheDir = getDlxCachePath()\n\n  if (!existsSync(cacheDir)) {\n    return []\n  }\n\n  const results = []\n  const now = Date.now()\n  const entries = await fs.readdir(cacheDir)\n\n  for (const entry of entries) {\n    const entryPath = path.join(cacheDir, entry)\n    try {\n      // eslint-disable-next-line no-await-in-loop\n      if (!(await isDir(entryPath))) {\n        continue\n      }\n\n      const metaPath = getMetadataPath(entryPath)\n      // eslint-disable-next-line no-await-in-loop\n      const metadata = await readJson(metaPath, { throws: false })\n      if (\n        !metadata ||\n        typeof metadata !== 'object' ||\n        Array.isArray(metadata)\n      ) {\n        continue\n      }\n\n      // Find the binary file in the directory.\n      // eslint-disable-next-line no-await-in-loop\n      const files = await fs.readdir(entryPath)\n      const binaryFile = files.find(f => !f.startsWith('.'))\n\n      if (binaryFile) {\n        const binaryPath = path.join(entryPath, binaryFile)\n        // eslint-disable-next-line no-await-in-loop\n        const binaryStats = await fs.stat(binaryPath)\n\n        const metaObj = metadata as Record<string, unknown>\n        results.push({\n          age: now - ((metaObj['timestamp'] as number) || 0),\n          arch: (metaObj['arch'] as string) || 'unknown',\n          checksum: (metaObj['checksum'] as string) || '',\n          name: binaryFile,\n          platform: (metaObj['platform'] as string) || 'unknown',\n          size: binaryStats.size,\n          url: (metaObj['url'] as string) || '',\n        })\n      }\n    } catch {}\n  }\n\n  return results\n}\n"],
-  "mappings": ";6iBAAA,IAAAA,EAAA,GAAAC,EAAAD,EAAA,mBAAAE,EAAA,cAAAC,EAAA,oBAAAC,EAAA,iBAAAC,IAAA,eAAAC,EAAAN,GAEA,IAAAO,EAA2B,uBAC3BC,EAA2C,mBAC3CC,EAAe,sBACfC,EAAiB,wBAEjBC,EAAsB,+BAEtBC,EAAiC,2BACjCC,EAA4C,gBAC5CC,EAA+B,qBAC/BC,EAA8B,kBAC9BC,EAAgC,mBAEhCC,EAAsB,mBAgCtB,SAASC,EAAiBC,EAAaC,EAAsB,CAC3D,SAAO,cAAW,QAAQ,EAAE,OAAO,GAAGD,CAAG,IAAIC,CAAI,EAAE,EAAE,OAAO,KAAK,CACnE,CAKA,SAASC,EAAgBC,EAAgC,CACvD,OAAO,EAAAC,QAAK,KAAKD,EAAgB,oBAAoB,CACvD,CAKA,eAAeE,EACbF,EACAG,EACkB,CAClB,GAAI,CACF,MAAMC,EAAWL,EAAgBC,CAAc,EAC/C,GAAI,IAAC,cAAWI,CAAQ,EACtB,MAAO,GAGT,MAAMC,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAC3D,GAAI,IAAC,kBAAeC,CAAQ,EAC1B,MAAO,GAET,MAAMC,EAAM,KAAK,IAAI,EACfC,EAAaF,EAAqC,UAExD,OAAI,OAAOE,GAAc,UAAYA,GAAa,EACzC,GAEGD,EAAMC,EAELJ,CACf,MAAQ,CACN,MAAO,EACT,CACF,CAMA,eAAeK,EACbX,EACAY,EACAC,EACiB,CAGjB,QAAM,oBAAiBb,EAAKY,EAAU,CAEpC,aAAc,IAEd,YAAa,IACf,CAAC,EAGD,MAAME,EAAa,MAAM,EAAAC,SAAG,SAASH,CAAQ,EACvCI,KAAS,cAAW,QAAQ,EAClCA,EAAO,OAAOF,CAAU,EACxB,MAAMG,EAAiBD,EAAO,OAAO,KAAK,EAG1C,GAAIH,GAAYI,IAAmBJ,EAEjC,cAAM,cAAWD,CAAQ,EACnB,IAAI,MACR,+BAA+BC,CAAQ,SAASI,CAAc,EAChE,EAIF,OAAK,SACH,MAAM,EAAAF,SAAG,MAAMH,EAAU,GAAK,EAGzBK,CACT,CAKA,eAAeC,EACbf,EACAH,EACAa,EACe,CACf,MAAMN,EAAWL,EAAgBC,CAAc,EACzCK,EAAW,CACf,KAAM,EAAAW,QAAG,KAAK,EACd,SAAAN,EACA,SAAU,EAAAM,QAAG,SAAS,EACtB,UAAW,KAAK,IAAI,EACpB,IAAAnB,EACA,QAAS,OACX,EACA,MAAM,EAAAe,SAAG,UAAUR,EAAU,KAAK,UAAUC,EAAU,KAAM,CAAC,CAAC,CAChE,CAKA,eAAsBzB,EACpBqC,EAAiC,QAAQ,iBAAiB,EAAE,qBAC3C,CACjB,MAAMC,EAAWpC,EAAgB,EAEjC,GAAI,IAAC,cAAWoC,CAAQ,EACtB,MAAO,GAGT,IAAIC,EAAU,EACd,MAAMb,EAAM,KAAK,IAAI,EACfc,EAAU,MAAM,EAAAR,SAAG,QAAQM,CAAQ,EAEzC,UAAWG,KAASD,EAAS,CAC3B,MAAME,EAAY,EAAArB,QAAK,KAAKiB,EAAUG,CAAK,EACrCjB,EAAWL,EAAgBuB,CAAS,EAE1C,GAAI,CAEF,GAAI,CAAE,QAAM,SAAMA,CAAS,EACzB,SAIF,MAAMjB,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAC3D,GACE,CAACC,GACD,OAAOA,GAAa,UACpB,MAAM,QAAQA,CAAQ,EAEtB,SAEF,MAAME,EAAaF,EAAqC,WAGtD,OAAOE,GAAc,UAAYA,EAAY,EACzCD,EAAMC,EACN,OAAO,mBAEHU,IAGR,QAAM,cAAWK,EAAW,CAAE,MAAO,GAAM,UAAW,EAAK,CAAC,EAC5DH,GAAW,EAEf,MAAQ,CAEN,GAAI,EAEe,MAAM,EAAAP,SAAG,QAAQU,CAAS,GAC7B,SAGZ,QAAM,cAAWA,CAAS,EAC1BH,GAAW,EAEf,MAAQ,CAAC,CACX,CACF,CAEA,OAAOA,CACT,CAKA,eAAsBtC,EACpB0C,EACAC,EACAC,EAC0B,CAC1B,KAAM,CACJ,SAAAtB,EAA2B,QAAQ,iBAAiB,EAAE,qBACtD,SAAAO,EACA,MAAAgB,EAAQ,GACR,KAAA5B,EACA,aAAA6B,EACA,IAAA9B,CACF,EAAI,CAAE,UAAW,KAAM,GAAG2B,CAAQ,EAG5BN,EAAWpC,EAAgB,EAC3B8C,EAAa9B,GAAQ,UAAU,QAAQ,QAAQ,IAAI,EAAAkB,QAAG,KAAK,CAAC,GAC5Da,EAAWjC,EAAiBC,EAAK+B,CAAU,EAC3CE,EAAgB,EAAA7B,QAAK,KAAKiB,EAAUW,CAAQ,EAC5CE,KAAa,iBAAc,EAAA9B,QAAK,KAAK6B,EAAeF,CAAU,CAAC,EAErE,IAAII,EAAa,GACbC,EAAmBvB,EAGvB,GACE,CAACgB,MACD,cAAWI,CAAa,GACvB,MAAM5B,EAAa4B,EAAe3B,CAAQ,EAG3C,GAAI,CACF,MAAMC,EAAWL,EAAgB+B,CAAa,EACxCzB,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAEzDC,GACA,OAAOA,GAAa,UACpB,CAAC,MAAM,QAAQA,CAAQ,GACvB,OAAQA,EAAqC,UAAgB,SAE7D4B,EAAoB5B,EAClB,SAIF2B,EAAa,EAEjB,MAAQ,CAENA,EAAa,EACf,MAEAA,EAAa,GAGXA,IAEF,MAAM,EAAApB,SAAG,MAAMkB,EAAe,CAAE,UAAW,EAAK,CAAC,EAGjDG,EAAmB,MAAMzB,EAAeX,EAAKkC,EAAYrB,CAAQ,EACjE,MAAMK,EAAce,EAAejC,EAAKoC,GAAoB,EAAE,GAuBhE,MAAMC,EAhBa,SAAS,sBAAsB,KAAKH,CAAU,EAiB7D,CACE,GAAGJ,EACH,IAAK,CACH,GAAGA,GAAc,IACjB,KAAM,GAAGG,CAAa,GAAG,EAAA7B,QAAK,SAAS,GAAG,QAAQ,IAAI,MAAW,EAAE,EACrE,EACA,MAAO,EACT,EACA0B,EACEQ,KAAe,SAAMJ,EAAYR,EAAMW,EAAmBT,CAAU,EAE1E,MAAO,CACL,WAAAM,EACA,WAAAC,EACA,aAAAG,CACF,CACF,CAOO,SAASrD,GAA0B,CACxC,SAAO,mBAAgB,CACzB,CAKA,eAAsBC,GAUpB,CACA,MAAMmC,EAAWpC,EAAgB,EAEjC,GAAI,IAAC,cAAWoC,CAAQ,EACtB,MAAO,CAAC,EAGV,MAAMkB,EAAU,CAAC,EACX9B,EAAM,KAAK,IAAI,EACfc,EAAU,MAAM,EAAAR,SAAG,QAAQM,CAAQ,EAEzC,UAAWG,KAASD,EAAS,CAC3B,MAAME,EAAY,EAAArB,QAAK,KAAKiB,EAAUG,CAAK,EAC3C,GAAI,CAEF,GAAI,CAAE,QAAM,SAAMC,CAAS,EACzB,SAGF,MAAMlB,EAAWL,EAAgBuB,CAAS,EAEpCjB,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAC3D,GACE,CAACC,GACD,OAAOA,GAAa,UACpB,MAAM,QAAQA,CAAQ,EAEtB,SAMF,MAAMgC,GADQ,MAAM,EAAAzB,SAAG,QAAQU,CAAS,GACf,KAAKgB,GAAK,CAACA,EAAE,WAAW,GAAG,CAAC,EAErD,GAAID,EAAY,CACd,MAAMN,EAAa,EAAA9B,QAAK,KAAKqB,EAAWe,CAAU,EAE5CE,EAAc,MAAM,EAAA3B,SAAG,KAAKmB,CAAU,EAEtCS,EAAUnC,EAChB+B,EAAQ,KAAK,CACX,IAAK9B,GAAQkC,EAAQ,WAA2B,GAChD,KAAOA,EAAQ,MAAsB,UACrC,SAAWA,EAAQ,UAA0B,GAC7C,KAAMH,EACN,SAAWG,EAAQ,UAA0B,UAC7C,KAAMD,EAAY,KAClB,IAAMC,EAAQ,KAAqB,EACrC,CAAC,CACH,CACF,MAAQ,CAAC,CACX,CAEA,OAAOJ,CACT",
-  "names": ["dlx_binary_exports", "__export", "cleanDlxCache", "dlxBinary", "getDlxCachePath", "listDlxCache", "__toCommonJS", "import_node_crypto", "import_node_fs", "import_node_os", "import_node_path", "import_platform", "import_download_lock", "import_fs", "import_objects", "import_path", "import_paths", "import_spawn", "generateCacheKey", "url", "name", "getMetadataPath", "cacheEntryPath", "path", "isCacheValid", "cacheTtl", "metaPath", "metadata", "now", "timestamp", "downloadBinary", "destPath", "checksum", "fileBuffer", "fs", "hasher", "actualChecksum", "writeMetadata", "os", "maxAge", "cacheDir", "cleaned", "entries", "entry", "entryPath", "args", "options", "spawnExtra", "force", "spawnOptions", "binaryName", "cacheKey", "cacheEntryDir", "binaryPath", "downloaded", "computedChecksum", "finalSpawnOptions", "spawnPromise", "results", "binaryFile", "f", "binaryStats", "metaObj"]
+  "sourcesContent": ["/** @fileoverview DLX binary execution utilities for Socket ecosystem. */\n\nimport { createHash } from 'node:crypto'\nimport { existsSync, promises as fs } from 'node:fs'\nimport os from 'node:os'\nimport path from 'node:path'\n\nimport { WIN32 } from '#constants/platform'\n\nimport { downloadWithLock } from './download-lock'\nimport { isDir, readJson, safeDelete } from './fs'\nimport { isObjectObject } from './objects'\nimport { normalizePath } from './path'\nimport { getSocketDlxDir } from './paths'\nimport type { SpawnExtra, SpawnOptions } from './spawn'\nimport { spawn } from './spawn'\n\nexport interface DlxBinaryOptions {\n  /** URL to download the binary from. */\n  url: string\n  /** Optional name for the cached binary (defaults to URL hash). */\n  name?: string | undefined\n  /** Expected checksum (sha256) for verification. */\n  checksum?: string | undefined\n  /** Cache TTL in milliseconds (default: 7 days). */\n  cacheTtl?: number | undefined\n  /** Force re-download even if cached. */\n  force?: boolean | undefined\n  /** Additional spawn options. */\n  spawnOptions?: SpawnOptions | undefined\n}\n\nexport interface DlxBinaryResult {\n  /** Path to the cached binary. */\n  binaryPath: string\n  /** Whether the binary was newly downloaded. */\n  downloaded: boolean\n  /** The spawn promise for the running process. */\n  spawnPromise: ReturnType<typeof spawn>\n}\n\n/**\n * Generate a cache directory name using npm/npx approach.\n * Uses first 16 characters of SHA-512 hash (like npm/npx).\n *\n * Rationale for SHA-512 truncated (vs full SHA-256):\n * - Matches npm/npx ecosystem behavior\n * - Shorter paths for Windows MAX_PATH compatibility (260 chars)\n * - 16 hex chars = 64 bits = acceptable collision risk for local cache\n * - Collision probability ~1 in 18 quintillion with 1000 entries\n *\n * Input strategy (aligned with npx):\n * - npx uses package spec strings (e.g., '@scope/pkg@1.0.0', 'prettier@3.0.0')\n * - Caller provides complete spec string with version for accurate cache keying\n * - For package installs: Use PURL-style spec with version\n *   Examples: 'npm:prettier@3.0.0', 'pypi:requests@2.31.0', 'gem:rails@7.0.0'\n *   Note: Socket uses shorthand format without 'pkg:' prefix\n *   (handled by @socketregistry/packageurl-js)\n * - For binary downloads: Use URL for uniqueness\n *\n * Reference: npm/cli v11.6.2 libnpmexec/lib/index.js#L233-L244\n * https://github.com/npm/cli/blob/v11.6.2/workspaces/libnpmexec/lib/index.js#L233-L244\n * Implementation: packages.map().sort().join('\\n') \u2192 SHA-512 \u2192 slice(0,16)\n * npx hashes the package spec (name@version), not just name\n */\nfunction generateCacheKey(spec: string): string {\n  return createHash('sha512').update(spec).digest('hex').substring(0, 16)\n}\n\n/**\n * Get metadata file path for a cached binary.\n */\nfunction getMetadataPath(cacheEntryPath: string): string {\n  return path.join(cacheEntryPath, '.dlx-metadata.json')\n}\n\n/**\n * Check if a cached binary is still valid.\n */\nasync function isCacheValid(\n  cacheEntryPath: string,\n  cacheTtl: number,\n): Promise<boolean> {\n  try {\n    const metaPath = getMetadataPath(cacheEntryPath)\n    if (!existsSync(metaPath)) {\n      return false\n    }\n\n    const metadata = await readJson(metaPath, { throws: false })\n    if (!isObjectObject(metadata)) {\n      return false\n    }\n    const now = Date.now()\n    const timestamp = (metadata as Record<string, unknown>)['timestamp']\n    // If timestamp is missing or invalid, cache is invalid\n    if (typeof timestamp !== 'number' || timestamp <= 0) {\n      return false\n    }\n    const age = now - timestamp\n\n    return age < cacheTtl\n  } catch {\n    return false\n  }\n}\n\n/**\n * Download a file from a URL with integrity checking and concurrent download protection.\n * Uses downloadWithLock to prevent multiple processes from downloading the same binary simultaneously.\n */\nasync function downloadBinary(\n  url: string,\n  destPath: string,\n  checksum?: string | undefined,\n): Promise<string> {\n  // Use downloadWithLock to handle concurrent download protection.\n  // This prevents corruption when multiple processes try to download the same binary.\n  await downloadWithLock(url, destPath, {\n    // Align with npm's npx locking strategy.\n    staleTimeout: 10_000,\n    // Allow up to 2 minutes for large binary downloads.\n    lockTimeout: 120_000,\n  })\n\n  // Compute checksum of downloaded file.\n  const fileBuffer = await fs.readFile(destPath)\n  const hasher = createHash('sha256')\n  hasher.update(fileBuffer)\n  const actualChecksum = hasher.digest('hex')\n\n  // Verify checksum if provided.\n  if (checksum && actualChecksum !== checksum) {\n    // Clean up invalid file.\n    await safeDelete(destPath)\n    throw new Error(\n      `Checksum mismatch: expected ${checksum}, got ${actualChecksum}`,\n    )\n  }\n\n  // Make executable on POSIX systems.\n  if (!WIN32) {\n    await fs.chmod(destPath, 0o755)\n  }\n\n  return actualChecksum\n}\n\n/**\n * Write metadata for a cached binary.\n */\nasync function writeMetadata(\n  cacheEntryPath: string,\n  url: string,\n  checksum: string,\n): Promise<void> {\n  const metaPath = getMetadataPath(cacheEntryPath)\n  const metadata = {\n    arch: os.arch(),\n    checksum,\n    platform: os.platform(),\n    timestamp: Date.now(),\n    url,\n    version: '1.0.0',\n  }\n  await fs.writeFile(metaPath, JSON.stringify(metadata, null, 2))\n}\n\n/**\n * Clean expired entries from the DLX cache.\n */\nexport async function cleanDlxCache(\n  maxAge: number = /*@__INLINE__*/ require('#constants/time').DLX_BINARY_CACHE_TTL,\n): Promise<number> {\n  const cacheDir = getDlxCachePath()\n\n  if (!existsSync(cacheDir)) {\n    return 0\n  }\n\n  let cleaned = 0\n  const now = Date.now()\n  const entries = await fs.readdir(cacheDir)\n\n  for (const entry of entries) {\n    const entryPath = path.join(cacheDir, entry)\n    const metaPath = getMetadataPath(entryPath)\n\n    try {\n      // eslint-disable-next-line no-await-in-loop\n      if (!(await isDir(entryPath))) {\n        continue\n      }\n\n      // eslint-disable-next-line no-await-in-loop\n      const metadata = await readJson(metaPath, { throws: false })\n      if (\n        !metadata ||\n        typeof metadata !== 'object' ||\n        Array.isArray(metadata)\n      ) {\n        continue\n      }\n      const timestamp = (metadata as Record<string, unknown>)['timestamp']\n      // If timestamp is missing or invalid, treat as expired (age = infinity)\n      const age =\n        typeof timestamp === 'number' && timestamp > 0\n          ? now - timestamp\n          : Number.POSITIVE_INFINITY\n\n      if (age > maxAge) {\n        // Remove entire cache entry directory.\n        // eslint-disable-next-line no-await-in-loop\n        await safeDelete(entryPath, { force: true, recursive: true })\n        cleaned += 1\n      }\n    } catch {\n      // If we can't read metadata, check if directory is empty or corrupted.\n      try {\n        // eslint-disable-next-line no-await-in-loop\n        const contents = await fs.readdir(entryPath)\n        if (!contents.length) {\n          // Remove empty directory.\n          // eslint-disable-next-line no-await-in-loop\n          await safeDelete(entryPath)\n          cleaned += 1\n        }\n      } catch {}\n    }\n  }\n\n  return cleaned\n}\n\n/**\n * Download and execute a binary from a URL with caching.\n */\nexport async function dlxBinary(\n  args: readonly string[] | string[],\n  options?: DlxBinaryOptions | undefined,\n  spawnExtra?: SpawnExtra | undefined,\n): Promise<DlxBinaryResult> {\n  const {\n    cacheTtl = /*@__INLINE__*/ require('#constants/time').DLX_BINARY_CACHE_TTL,\n    checksum,\n    force = false,\n    name,\n    spawnOptions,\n    url,\n  } = { __proto__: null, ...options } as DlxBinaryOptions\n\n  // Generate cache paths similar to pnpm/npx structure.\n  const cacheDir = getDlxCachePath()\n  const binaryName = name || `binary-${process.platform}-${os.arch()}`\n  // Create spec from URL and binary name for unique cache identity.\n  const spec = `${url}:${binaryName}`\n  const cacheKey = generateCacheKey(spec)\n  const cacheEntryDir = path.join(cacheDir, cacheKey)\n  const binaryPath = normalizePath(path.join(cacheEntryDir, binaryName))\n\n  let downloaded = false\n  let computedChecksum = checksum\n\n  // Check if we need to download.\n  if (\n    !force &&\n    existsSync(cacheEntryDir) &&\n    (await isCacheValid(cacheEntryDir, cacheTtl))\n  ) {\n    // Binary is cached and valid, read the checksum from metadata.\n    try {\n      const metaPath = getMetadataPath(cacheEntryDir)\n      const metadata = await readJson(metaPath, { throws: false })\n      if (\n        metadata &&\n        typeof metadata === 'object' &&\n        !Array.isArray(metadata) &&\n        typeof (metadata as Record<string, unknown>)['checksum'] === 'string'\n      ) {\n        computedChecksum = (metadata as Record<string, unknown>)[\n          'checksum'\n        ] as string\n      } else {\n        // If metadata is invalid, re-download.\n        downloaded = true\n      }\n    } catch {\n      // If we can't read metadata, re-download.\n      downloaded = true\n    }\n  } else {\n    downloaded = true\n  }\n\n  if (downloaded) {\n    // Ensure cache directory exists.\n    await fs.mkdir(cacheEntryDir, { recursive: true })\n\n    // Download the binary.\n    computedChecksum = await downloadBinary(url, binaryPath, checksum)\n    await writeMetadata(cacheEntryDir, url, computedChecksum || '')\n  }\n\n  // Execute the binary.\n  // On Windows, script files (.bat, .cmd, .ps1) require shell: true because\n  // they are not executable on their own and must be run through cmd.exe.\n  // Note: .exe files are actual binaries and don't need shell mode.\n  const needsShell = WIN32 && /\\.(?:bat|cmd|ps1)$/i.test(binaryPath)\n  // Windows cmd.exe PATH resolution behavior:\n  // When shell: true on Windows with .cmd/.bat/.ps1 files, spawn will automatically\n  // strip the full path down to just the basename without extension (e.g.,\n  // C:\\cache\\test.cmd becomes just \"test\"). Windows cmd.exe then searches for \"test\"\n  // in directories listed in PATH, trying each extension from PATHEXT environment\n  // variable (.COM, .EXE, .BAT, .CMD, etc.) until it finds a match.\n  //\n  // Since our binaries are downloaded to a custom cache directory that's not in PATH\n  // (unlike system package managers like npm/pnpm/yarn which are already in PATH),\n  // we must prepend the cache directory to PATH so cmd.exe can locate the binary.\n  //\n  // This approach is consistent with how other tools handle Windows command execution:\n  // - npm's promise-spawn: uses which.sync() to find commands in PATH\n  // - cross-spawn: spawns cmd.exe with escaped arguments\n  // - Node.js spawn with shell: true: delegates to cmd.exe which uses PATH\n  const finalSpawnOptions = needsShell\n    ? {\n        ...spawnOptions,\n        env: {\n          ...spawnOptions?.env,\n          PATH: `${cacheEntryDir}${path.delimiter}${process.env['PATH'] || ''}`,\n        },\n        shell: true,\n      }\n    : spawnOptions\n  const spawnPromise = spawn(binaryPath, args, finalSpawnOptions, spawnExtra)\n\n  return {\n    binaryPath,\n    downloaded,\n    spawnPromise,\n  }\n}\n\n/**\n * Get the DLX binary cache directory path.\n * Returns normalized path for cross-platform compatibility.\n * Uses same directory as dlx-package for unified DLX storage.\n */\nexport function getDlxCachePath(): string {\n  return getSocketDlxDir()\n}\n\n/**\n * Get information about cached binaries.\n */\nexport async function listDlxCache(): Promise<\n  Array<{\n    age: number\n    arch: string\n    checksum: string\n    name: string\n    platform: string\n    size: number\n    url: string\n  }>\n> {\n  const cacheDir = getDlxCachePath()\n\n  if (!existsSync(cacheDir)) {\n    return []\n  }\n\n  const results = []\n  const now = Date.now()\n  const entries = await fs.readdir(cacheDir)\n\n  for (const entry of entries) {\n    const entryPath = path.join(cacheDir, entry)\n    try {\n      // eslint-disable-next-line no-await-in-loop\n      if (!(await isDir(entryPath))) {\n        continue\n      }\n\n      const metaPath = getMetadataPath(entryPath)\n      // eslint-disable-next-line no-await-in-loop\n      const metadata = await readJson(metaPath, { throws: false })\n      if (\n        !metadata ||\n        typeof metadata !== 'object' ||\n        Array.isArray(metadata)\n      ) {\n        continue\n      }\n\n      // Find the binary file in the directory.\n      // eslint-disable-next-line no-await-in-loop\n      const files = await fs.readdir(entryPath)\n      const binaryFile = files.find(f => !f.startsWith('.'))\n\n      if (binaryFile) {\n        const binaryPath = path.join(entryPath, binaryFile)\n        // eslint-disable-next-line no-await-in-loop\n        const binaryStats = await fs.stat(binaryPath)\n\n        const metaObj = metadata as Record<string, unknown>\n        results.push({\n          age: now - ((metaObj['timestamp'] as number) || 0),\n          arch: (metaObj['arch'] as string) || 'unknown',\n          checksum: (metaObj['checksum'] as string) || '',\n          name: binaryFile,\n          platform: (metaObj['platform'] as string) || 'unknown',\n          size: binaryStats.size,\n          url: (metaObj['url'] as string) || '',\n        })\n      }\n    } catch {}\n  }\n\n  return results\n}\n"],
+  "mappings": ";6iBAAA,IAAAA,EAAA,GAAAC,EAAAD,EAAA,mBAAAE,EAAA,cAAAC,EAAA,oBAAAC,EAAA,iBAAAC,IAAA,eAAAC,EAAAN,GAEA,IAAAO,EAA2B,uBAC3BC,EAA2C,mBAC3CC,EAAe,sBACfC,EAAiB,wBAEjBC,EAAsB,+BAEtBC,EAAiC,2BACjCC,EAA4C,gBAC5CC,EAA+B,qBAC/BC,EAA8B,kBAC9BC,EAAgC,mBAEhCC,EAAsB,mBAkDtB,SAASC,EAAiBC,EAAsB,CAC9C,SAAO,cAAW,QAAQ,EAAE,OAAOA,CAAI,EAAE,OAAO,KAAK,EAAE,UAAU,EAAG,EAAE,CACxE,CAKA,SAASC,EAAgBC,EAAgC,CACvD,OAAO,EAAAC,QAAK,KAAKD,EAAgB,oBAAoB,CACvD,CAKA,eAAeE,EACbF,EACAG,EACkB,CAClB,GAAI,CACF,MAAMC,EAAWL,EAAgBC,CAAc,EAC/C,GAAI,IAAC,cAAWI,CAAQ,EACtB,MAAO,GAGT,MAAMC,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAC3D,GAAI,IAAC,kBAAeC,CAAQ,EAC1B,MAAO,GAET,MAAMC,EAAM,KAAK,IAAI,EACfC,EAAaF,EAAqC,UAExD,OAAI,OAAOE,GAAc,UAAYA,GAAa,EACzC,GAEGD,EAAMC,EAELJ,CACf,MAAQ,CACN,MAAO,EACT,CACF,CAMA,eAAeK,EACbC,EACAC,EACAC,EACiB,CAGjB,QAAM,oBAAiBF,EAAKC,EAAU,CAEpC,aAAc,IAEd,YAAa,IACf,CAAC,EAGD,MAAME,EAAa,MAAM,EAAAC,SAAG,SAASH,CAAQ,EACvCI,KAAS,cAAW,QAAQ,EAClCA,EAAO,OAAOF,CAAU,EACxB,MAAMG,EAAiBD,EAAO,OAAO,KAAK,EAG1C,GAAIH,GAAYI,IAAmBJ,EAEjC,cAAM,cAAWD,CAAQ,EACnB,IAAI,MACR,+BAA+BC,CAAQ,SAASI,CAAc,EAChE,EAIF,OAAK,SACH,MAAM,EAAAF,SAAG,MAAMH,EAAU,GAAK,EAGzBK,CACT,CAKA,eAAeC,EACbhB,EACAS,EACAE,EACe,CACf,MAAMP,EAAWL,EAAgBC,CAAc,EACzCK,EAAW,CACf,KAAM,EAAAY,QAAG,KAAK,EACd,SAAAN,EACA,SAAU,EAAAM,QAAG,SAAS,EACtB,UAAW,KAAK,IAAI,EACpB,IAAAR,EACA,QAAS,OACX,EACA,MAAM,EAAAI,SAAG,UAAUT,EAAU,KAAK,UAAUC,EAAU,KAAM,CAAC,CAAC,CAChE,CAKA,eAAsBxB,EACpBqC,EAAiC,QAAQ,iBAAiB,EAAE,qBAC3C,CACjB,MAAMC,EAAWpC,EAAgB,EAEjC,GAAI,IAAC,cAAWoC,CAAQ,EACtB,MAAO,GAGT,IAAIC,EAAU,EACd,MAAMd,EAAM,KAAK,IAAI,EACfe,EAAU,MAAM,EAAAR,SAAG,QAAQM,CAAQ,EAEzC,UAAWG,KAASD,EAAS,CAC3B,MAAME,EAAY,EAAAtB,QAAK,KAAKkB,EAAUG,CAAK,EACrClB,EAAWL,EAAgBwB,CAAS,EAE1C,GAAI,CAEF,GAAI,CAAE,QAAM,SAAMA,CAAS,EACzB,SAIF,MAAMlB,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAC3D,GACE,CAACC,GACD,OAAOA,GAAa,UACpB,MAAM,QAAQA,CAAQ,EAEtB,SAEF,MAAME,EAAaF,EAAqC,WAGtD,OAAOE,GAAc,UAAYA,EAAY,EACzCD,EAAMC,EACN,OAAO,mBAEHW,IAGR,QAAM,cAAWK,EAAW,CAAE,MAAO,GAAM,UAAW,EAAK,CAAC,EAC5DH,GAAW,EAEf,MAAQ,CAEN,GAAI,EAEe,MAAM,EAAAP,SAAG,QAAQU,CAAS,GAC7B,SAGZ,QAAM,cAAWA,CAAS,EAC1BH,GAAW,EAEf,MAAQ,CAAC,CACX,CACF,CAEA,OAAOA,CACT,CAKA,eAAsBtC,EACpB0C,EACAC,EACAC,EAC0B,CAC1B,KAAM,CACJ,SAAAvB,EAA2B,QAAQ,iBAAiB,EAAE,qBACtD,SAAAQ,EACA,MAAAgB,EAAQ,GACR,KAAAC,EACA,aAAAC,EACA,IAAApB,CACF,EAAI,CAAE,UAAW,KAAM,GAAGgB,CAAQ,EAG5BN,EAAWpC,EAAgB,EAC3B+C,EAAaF,GAAQ,UAAU,QAAQ,QAAQ,IAAI,EAAAX,QAAG,KAAK,CAAC,GAE5DnB,EAAO,GAAGW,CAAG,IAAIqB,CAAU,GAC3BC,EAAWlC,EAAiBC,CAAI,EAChCkC,EAAgB,EAAA/B,QAAK,KAAKkB,EAAUY,CAAQ,EAC5CE,KAAa,iBAAc,EAAAhC,QAAK,KAAK+B,EAAeF,CAAU,CAAC,EAErE,IAAII,EAAa,GACbC,EAAmBxB,EAGvB,GACE,CAACgB,MACD,cAAWK,CAAa,GACvB,MAAM9B,EAAa8B,EAAe7B,CAAQ,EAG3C,GAAI,CACF,MAAMC,EAAWL,EAAgBiC,CAAa,EACxC3B,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAEzDC,GACA,OAAOA,GAAa,UACpB,CAAC,MAAM,QAAQA,CAAQ,GACvB,OAAQA,EAAqC,UAAgB,SAE7D8B,EAAoB9B,EAClB,SAIF6B,EAAa,EAEjB,MAAQ,CAENA,EAAa,EACf,MAEAA,EAAa,GAGXA,IAEF,MAAM,EAAArB,SAAG,MAAMmB,EAAe,CAAE,UAAW,EAAK,CAAC,EAGjDG,EAAmB,MAAM3B,EAAeC,EAAKwB,EAAYtB,CAAQ,EACjE,MAAMK,EAAcgB,EAAevB,EAAK0B,GAAoB,EAAE,GAuBhE,MAAMC,EAhBa,SAAS,sBAAsB,KAAKH,CAAU,EAiB7D,CACE,GAAGJ,EACH,IAAK,CACH,GAAGA,GAAc,IACjB,KAAM,GAAGG,CAAa,GAAG,EAAA/B,QAAK,SAAS,GAAG,QAAQ,IAAI,MAAW,EAAE,EACrE,EACA,MAAO,EACT,EACA4B,EACEQ,KAAe,SAAMJ,EAAYT,EAAMY,EAAmBV,CAAU,EAE1E,MAAO,CACL,WAAAO,EACA,WAAAC,EACA,aAAAG,CACF,CACF,CAOO,SAAStD,GAA0B,CACxC,SAAO,mBAAgB,CACzB,CAKA,eAAsBC,GAUpB,CACA,MAAMmC,EAAWpC,EAAgB,EAEjC,GAAI,IAAC,cAAWoC,CAAQ,EACtB,MAAO,CAAC,EAGV,MAAMmB,EAAU,CAAC,EACXhC,EAAM,KAAK,IAAI,EACfe,EAAU,MAAM,EAAAR,SAAG,QAAQM,CAAQ,EAEzC,UAAWG,KAASD,EAAS,CAC3B,MAAME,EAAY,EAAAtB,QAAK,KAAKkB,EAAUG,CAAK,EAC3C,GAAI,CAEF,GAAI,CAAE,QAAM,SAAMC,CAAS,EACzB,SAGF,MAAMnB,EAAWL,EAAgBwB,CAAS,EAEpClB,EAAW,QAAM,YAASD,EAAU,CAAE,OAAQ,EAAM,CAAC,EAC3D,GACE,CAACC,GACD,OAAOA,GAAa,UACpB,MAAM,QAAQA,CAAQ,EAEtB,SAMF,MAAMkC,GADQ,MAAM,EAAA1B,SAAG,QAAQU,CAAS,GACf,KAAKiB,GAAK,CAACA,EAAE,WAAW,GAAG,CAAC,EAErD,GAAID,EAAY,CACd,MAAMN,EAAa,EAAAhC,QAAK,KAAKsB,EAAWgB,CAAU,EAE5CE,EAAc,MAAM,EAAA5B,SAAG,KAAKoB,CAAU,EAEtCS,EAAUrC,EAChBiC,EAAQ,KAAK,CACX,IAAKhC,GAAQoC,EAAQ,WAA2B,GAChD,KAAOA,EAAQ,MAAsB,UACrC,SAAWA,EAAQ,UAA0B,GAC7C,KAAMH,EACN,SAAWG,EAAQ,UAA0B,UAC7C,KAAMD,EAAY,KAClB,IAAMC,EAAQ,KAAqB,EACrC,CAAC,CACH,CACF,MAAQ,CAAC,CACX,CAEA,OAAOJ,CACT",
+  "names": ["dlx_binary_exports", "__export", "cleanDlxCache", "dlxBinary", "getDlxCachePath", "listDlxCache", "__toCommonJS", "import_node_crypto", "import_node_fs", "import_node_os", "import_node_path", "import_platform", "import_download_lock", "import_fs", "import_objects", "import_path", "import_paths", "import_spawn", "generateCacheKey", "spec", "getMetadataPath", "cacheEntryPath", "path", "isCacheValid", "cacheTtl", "metaPath", "metadata", "now", "timestamp", "downloadBinary", "url", "destPath", "checksum", "fileBuffer", "fs", "hasher", "actualChecksum", "writeMetadata", "os", "maxAge", "cacheDir", "cleaned", "entries", "entry", "entryPath", "args", "options", "spawnExtra", "force", "name", "spawnOptions", "binaryName", "cacheKey", "cacheEntryDir", "binaryPath", "downloaded", "computedChecksum", "finalSpawnOptions", "spawnPromise", "results", "binaryFile", "f", "binaryStats", "metaObj"]
 }

package/dist/versions.js CHANGED Viewed

@@ -1,3 +1,3 @@
 /* Socket Lib - Built with esbuild */
-var a=Object.create;var s=Object.defineProperty;var p=Object.getOwnPropertyDescriptor;var d=Object.getOwnPropertyNames;var f=Object.getPrototypeOf,c=Object.prototype.hasOwnProperty;var g=(r,n)=>{for(var t in n)s(r,t,{get:n[t],enumerable:!0})},u=(r,n,t,o)=>{if(n&&typeof n=="object"||typeof n=="function")for(let i of d(n))!c.call(r,i)&&i!==t&&s(r,i,{get:()=>n[i],enumerable:!(o=p(n,i))||o.enumerable});return r};var m=(r,n,t)=>(t=r!=null?a(f(r)):{},u(n||!r||!r.__esModule?s(t,"default",{value:r,enumerable:!0}):t,r)),l=r=>u(s({},"__esModule",{value:!0}),r);var w={};g(w,{coerceVersion:()=>x,compareVersions:()=>b,filterVersions:()=>V,getMajorVersion:()=>h,getMinorVersion:()=>j,getPatchVersion:()=>y,incrementVersion:()=>q,isEqual:()=>v,isGreaterThan:()=>T,isGreaterThanOrEqual:()=>E,isLessThan:()=>D,isLessThanOrEqual:()=>G,isValidVersion:()=>L,maxVersion:()=>M,minVersion:()=>O,parseVersion:()=>S,satisfiesVersion:()=>A,sortVersions:()=>P,sortVersionsDesc:()=>R,versionDiff:()=>k});module.exports=l(w);var e=m(require("./external/semver"));function x(r){return e.default.coerce(r)?.version}function b(r,n){try{return e.default.compare(r,n)}catch{return}}function V(r,n){return r.filter(t=>e.default.satisfies(t,n))}function h(r){return e.default.parse(r)?.major}function j(r){return e.default.parse(r)?.minor}function y(r){return e.default.parse(r)?.patch}function q(r,n,t){return e.default.inc(r,n,t)||void 0}function v(r,n){return e.default.eq(r,n)}function T(r,n){return e.default.gt(r,n)}function E(r,n){return e.default.gte(r,n)}function D(r,n){return e.default.lt(r,n)}function G(r,n){return e.default.lte(r,n)}function L(r){return e.default.valid(r)!==null}function M(r){return e.default.maxSatisfying(r,"*")||void 0}function O(r){return e.default.minSatisfying(r,"*")||void 0}function S(r){const n=e.default.parse(r);if(n)return{major:n.major,minor:n.minor,patch:n.patch,prerelease:n.prerelease,build:n.build}}function A(r,n){return e.default.satisfies(r,n)}function P(r){return e.default.sort([...r])}function R(r){return e.default.rsort([...r])}function k(r,n){return e.default.diff(r,n)||void 0}0&&(module.exports={coerceVersion,compareVersions,filterVersions,getMajorVersion,getMinorVersion,getPatchVersion,incrementVersion,isEqual,isGreaterThan,isGreaterThanOrEqual,isLessThan,isLessThanOrEqual,isValidVersion,maxVersion,minVersion,parseVersion,satisfiesVersion,sortVersions,sortVersionsDesc,versionDiff});
+var a=Object.create;var s=Object.defineProperty;var p=Object.getOwnPropertyDescriptor;var d=Object.getOwnPropertyNames;var c=Object.getPrototypeOf,f=Object.prototype.hasOwnProperty;var g=(r,n)=>{for(var t in n)s(r,t,{get:n[t],enumerable:!0})},u=(r,n,t,o)=>{if(n&&typeof n=="object"||typeof n=="function")for(let i of d(n))!f.call(r,i)&&i!==t&&s(r,i,{get:()=>n[i],enumerable:!(o=p(n,i))||o.enumerable});return r};var m=(r,n,t)=>(t=r!=null?a(c(r)):{},u(n||!r||!r.__esModule?s(t,"default",{value:r,enumerable:!0}):t,r)),l=r=>u(s({},"__esModule",{value:!0}),r);var w={};g(w,{coerceVersion:()=>x,compareVersions:()=>b,filterVersions:()=>h,getMajorVersion:()=>V,getMinorVersion:()=>j,getPatchVersion:()=>y,incrementVersion:()=>q,isEqual:()=>v,isGreaterThan:()=>T,isGreaterThanOrEqual:()=>E,isLessThan:()=>D,isLessThanOrEqual:()=>G,isValidVersion:()=>L,maxVersion:()=>M,minVersion:()=>O,parseVersion:()=>S,satisfiesVersion:()=>A,sortVersions:()=>P,sortVersionsDesc:()=>R,versionDiff:()=>k});module.exports=l(w);var e=m(require("./external/semver"));function x(r){return e.default.coerce(r)?.version}function b(r,n){try{return e.default.compare(r,n)}catch{return}}function h(r,n){return r.filter(t=>e.default.satisfies(t,n))}function V(r){return e.default.parse(r)?.major}function j(r){return e.default.parse(r)?.minor}function y(r){return e.default.parse(r)?.patch}function q(r,n,t){return e.default.inc(r,n,t)||void 0}function v(r,n){return e.default.eq(r,n)}function T(r,n){return e.default.gt(r,n)}function E(r,n){return e.default.gte(r,n)}function D(r,n){return e.default.lt(r,n)}function G(r,n){return e.default.lte(r,n)}function L(r){return e.default.valid(r)!==null}function M(r){return e.default.maxSatisfying(r,"*")||void 0}function O(r){return e.default.minSatisfying(r,"*")||void 0}function S(r){const n=e.default.parse(r);if(n)return{major:n.major,minor:n.minor,patch:n.patch,prerelease:n.prerelease,build:n.build}}function A(r,n){return e.default.satisfies(r,n)}function P(r){return e.default.sort([...r])}function R(r){return e.default.rsort([...r])}function k(r,n){try{return e.default.diff(r,n)||void 0}catch{return}}0&&(module.exports={coerceVersion,compareVersions,filterVersions,getMajorVersion,getMinorVersion,getPatchVersion,incrementVersion,isEqual,isGreaterThan,isGreaterThanOrEqual,isLessThan,isLessThanOrEqual,isValidVersion,maxVersion,minVersion,parseVersion,satisfiesVersion,sortVersions,sortVersionsDesc,versionDiff});
 //# sourceMappingURL=versions.js.map

package/dist/versions.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../src/versions.ts"],
-  "sourcesContent": ["/** @fileoverview Version comparison and validation utilities for Socket ecosystem. */\n\nimport semver from './external/semver'\n\n/**\n * Coerce a version string to valid semver format.\n */\nexport function coerceVersion(version: string): string | undefined {\n  const coerced = semver.coerce(version)\n  return coerced?.version\n}\n\n/**\n * Compare two semantic version strings.\n * @returns -1 if v1 < v2, 0 if v1 === v2, 1 if v1 > v2, or undefined if invalid.\n */\nexport function compareVersions(\n  v1: string,\n  v2: string,\n): -1 | 0 | 1 | undefined {\n  try {\n    return semver.compare(v1, v2)\n  } catch {\n    return undefined\n  }\n}\n\n/**\n * Get all versions from an array that satisfy a semver range.\n */\nexport function filterVersions(versions: string[], range: string): string[] {\n  return versions.filter(v => semver.satisfies(v, range))\n}\n\n/**\n * Get the major version number from a version string.\n */\nexport function getMajorVersion(version: string): number | undefined {\n  const parsed = semver.parse(version)\n  return parsed?.major\n}\n\n/**\n * Get the minor version number from a version string.\n */\nexport function getMinorVersion(version: string): number | undefined {\n  const parsed = semver.parse(version)\n  return parsed?.minor\n}\n\n/**\n * Get the patch version number from a version string.\n */\nexport function getPatchVersion(version: string): number | undefined {\n  const parsed = semver.parse(version)\n  return parsed?.patch\n}\n\n/**\n * Increment a version by the specified release type.\n */\nexport function incrementVersion(\n  version: string,\n  release:\n    | 'major'\n    | 'minor'\n    | 'patch'\n    | 'premajor'\n    | 'preminor'\n    | 'prepatch'\n    | 'prerelease',\n  identifier?: string | undefined,\n): string | undefined {\n  return semver.inc(version, release, identifier) || undefined\n}\n\n/**\n * Check if version1 equals version2.\n */\nexport function isEqual(version1: string, version2: string): boolean {\n  return semver.eq(version1, version2)\n}\n\n/**\n * Check if version1 is greater than version2.\n */\nexport function isGreaterThan(version1: string, version2: string): boolean {\n  return semver.gt(version1, version2)\n}\n\n/**\n * Check if version1 is greater than or equal to version2.\n */\nexport function isGreaterThanOrEqual(\n  version1: string,\n  version2: string,\n): boolean {\n  return semver.gte(version1, version2)\n}\n\n/**\n * Check if version1 is less than version2.\n */\nexport function isLessThan(version1: string, version2: string): boolean {\n  return semver.lt(version1, version2)\n}\n\n/**\n * Check if version1 is less than or equal to version2.\n */\nexport function isLessThanOrEqual(version1: string, version2: string): boolean {\n  return semver.lte(version1, version2)\n}\n\n/**\n * Validate if a string is a valid semantic version.\n */\nexport function isValidVersion(version: string): boolean {\n  return semver.valid(version) !== null\n}\n\n/**\n * Get the highest version from an array of versions.\n */\nexport function maxVersion(versions: string[]): string | undefined {\n  return semver.maxSatisfying(versions, '*') || undefined\n}\n\n/**\n * Get the lowest version from an array of versions.\n */\nexport function minVersion(versions: string[]): string | undefined {\n  return semver.minSatisfying(versions, '*') || undefined\n}\n\n/**\n * Parse a version string and return major, minor, patch components.\n */\nexport function parseVersion(version: string):\n  | {\n      major: number\n      minor: number\n      patch: number\n      prerelease: ReadonlyArray<string | number>\n      build: readonly string[]\n    }\n  | undefined {\n  const parsed = semver.parse(version)\n  if (!parsed) {\n    return undefined\n  }\n  return {\n    major: parsed.major,\n    minor: parsed.minor,\n    patch: parsed.patch,\n    prerelease: parsed.prerelease,\n    build: parsed.build,\n  }\n}\n\n/**\n * Check if a version satisfies a semver range.\n */\nexport function satisfiesVersion(version: string, range: string): boolean {\n  return semver.satisfies(version, range)\n}\n\n/**\n * Sort versions in ascending order.\n */\nexport function sortVersions(versions: string[]): string[] {\n  return semver.sort([...versions])\n}\n\n/**\n * Sort versions in descending order.\n */\nexport function sortVersionsDesc(versions: string[]): string[] {\n  return semver.rsort([...versions])\n}\n\n/**\n * Get the difference between two versions.\n */\nexport function versionDiff(\n  version1: string,\n  version2: string,\n):\n  | 'major'\n  | 'premajor'\n  | 'minor'\n  | 'preminor'\n  | 'patch'\n  | 'prepatch'\n  | 'prerelease'\n  | undefined {\n  return semver.diff(version1, version2) || undefined\n}\n"],
-  "mappings": ";6iBAAA,IAAAA,EAAA,GAAAC,EAAAD,EAAA,mBAAAE,EAAA,oBAAAC,EAAA,mBAAAC,EAAA,oBAAAC,EAAA,oBAAAC,EAAA,oBAAAC,EAAA,qBAAAC,EAAA,YAAAC,EAAA,kBAAAC,EAAA,yBAAAC,EAAA,eAAAC,EAAA,sBAAAC,EAAA,mBAAAC,EAAA,eAAAC,EAAA,eAAAC,EAAA,iBAAAC,EAAA,qBAAAC,EAAA,iBAAAC,EAAA,qBAAAC,EAAA,gBAAAC,IAAA,eAAAC,EAAAtB,GAEA,IAAAuB,EAAmB,gCAKZ,SAASrB,EAAcsB,EAAqC,CAEjE,OADgB,EAAAC,QAAO,OAAOD,CAAO,GACrB,OAClB,CAMO,SAASrB,EACduB,EACAC,EACwB,CACxB,GAAI,CACF,OAAO,EAAAF,QAAO,QAAQC,EAAIC,CAAE,CAC9B,MAAQ,CACN,MACF,CACF,CAKO,SAASvB,EAAewB,EAAoBC,EAAyB,CAC1E,OAAOD,EAAS,OAAOE,GAAK,EAAAL,QAAO,UAAUK,EAAGD,CAAK,CAAC,CACxD,CAKO,SAASxB,EAAgBmB,EAAqC,CAEnE,OADe,EAAAC,QAAO,MAAMD,CAAO,GACpB,KACjB,CAKO,SAASlB,EAAgBkB,EAAqC,CAEnE,OADe,EAAAC,QAAO,MAAMD,CAAO,GACpB,KACjB,CAKO,SAASjB,EAAgBiB,EAAqC,CAEnE,OADe,EAAAC,QAAO,MAAMD,CAAO,GACpB,KACjB,CAKO,SAAShB,EACdgB,EACAO,EAQAC,EACoB,CACpB,OAAO,EAAAP,QAAO,IAAID,EAASO,EAASC,CAAU,GAAK,MACrD,CAKO,SAASvB,EAAQwB,EAAkBC,EAA2B,CACnE,OAAO,EAAAT,QAAO,GAAGQ,EAAUC,CAAQ,CACrC,CAKO,SAASxB,EAAcuB,EAAkBC,EAA2B,CACzE,OAAO,EAAAT,QAAO,GAAGQ,EAAUC,CAAQ,CACrC,CAKO,SAASvB,EACdsB,EACAC,EACS,CACT,OAAO,EAAAT,QAAO,IAAIQ,EAAUC,CAAQ,CACtC,CAKO,SAAStB,EAAWqB,EAAkBC,EAA2B,CACtE,OAAO,EAAAT,QAAO,GAAGQ,EAAUC,CAAQ,CACrC,CAKO,SAASrB,EAAkBoB,EAAkBC,EAA2B,CAC7E,OAAO,EAAAT,QAAO,IAAIQ,EAAUC,CAAQ,CACtC,CAKO,SAASpB,EAAeU,EAA0B,CACvD,OAAO,EAAAC,QAAO,MAAMD,CAAO,IAAM,IACnC,CAKO,SAAST,EAAWa,EAAwC,CACjE,OAAO,EAAAH,QAAO,cAAcG,EAAU,GAAG,GAAK,MAChD,CAKO,SAASZ,EAAWY,EAAwC,CACjE,OAAO,EAAAH,QAAO,cAAcG,EAAU,GAAG,GAAK,MAChD,CAKO,SAASX,EAAaO,EAQf,CACZ,MAAMW,EAAS,EAAAV,QAAO,MAAMD,CAAO,EACnC,GAAKW,EAGL,MAAO,CACL,MAAOA,EAAO,MACd,MAAOA,EAAO,MACd,MAAOA,EAAO,MACd,WAAYA,EAAO,WACnB,MAAOA,EAAO,KAChB,CACF,CAKO,SAASjB,EAAiBM,EAAiBK,EAAwB,CACxE,OAAO,EAAAJ,QAAO,UAAUD,EAASK,CAAK,CACxC,CAKO,SAASV,EAAaS,EAA8B,CACzD,OAAO,EAAAH,QAAO,KAAK,CAAC,GAAGG,CAAQ,CAAC,CAClC,CAKO,SAASR,EAAiBQ,EAA8B,CAC7D,OAAO,EAAAH,QAAO,MAAM,CAAC,GAAGG,CAAQ,CAAC,CACnC,CAKO,SAASP,EACdY,EACAC,EASY,CACZ,OAAO,EAAAT,QAAO,KAAKQ,EAAUC,CAAQ,GAAK,MAC5C",
+  "sourcesContent": ["/** @fileoverview Version comparison and validation utilities for Socket ecosystem. */\n\nimport semver from './external/semver'\n\n/**\n * Coerce a version string to valid semver format.\n */\nexport function coerceVersion(version: string): string | undefined {\n  const coerced = semver.coerce(version)\n  return coerced?.version\n}\n\n/**\n * Compare two semantic version strings.\n * @returns -1 if v1 < v2, 0 if v1 === v2, 1 if v1 > v2, or undefined if invalid.\n */\nexport function compareVersions(\n  v1: string,\n  v2: string,\n): -1 | 0 | 1 | undefined {\n  try {\n    return semver.compare(v1, v2)\n  } catch {\n    return undefined\n  }\n}\n\n/**\n * Get all versions from an array that satisfy a semver range.\n */\nexport function filterVersions(versions: string[], range: string): string[] {\n  return versions.filter(v => semver.satisfies(v, range))\n}\n\n/**\n * Get the major version number from a version string.\n */\nexport function getMajorVersion(version: string): number | undefined {\n  const parsed = semver.parse(version)\n  return parsed?.major\n}\n\n/**\n * Get the minor version number from a version string.\n */\nexport function getMinorVersion(version: string): number | undefined {\n  const parsed = semver.parse(version)\n  return parsed?.minor\n}\n\n/**\n * Get the patch version number from a version string.\n */\nexport function getPatchVersion(version: string): number | undefined {\n  const parsed = semver.parse(version)\n  return parsed?.patch\n}\n\n/**\n * Increment a version by the specified release type.\n */\nexport function incrementVersion(\n  version: string,\n  release:\n    | 'major'\n    | 'minor'\n    | 'patch'\n    | 'premajor'\n    | 'preminor'\n    | 'prepatch'\n    | 'prerelease',\n  identifier?: string | undefined,\n): string | undefined {\n  return semver.inc(version, release, identifier) || undefined\n}\n\n/**\n * Check if version1 equals version2.\n */\nexport function isEqual(version1: string, version2: string): boolean {\n  return semver.eq(version1, version2)\n}\n\n/**\n * Check if version1 is greater than version2.\n */\nexport function isGreaterThan(version1: string, version2: string): boolean {\n  return semver.gt(version1, version2)\n}\n\n/**\n * Check if version1 is greater than or equal to version2.\n */\nexport function isGreaterThanOrEqual(\n  version1: string,\n  version2: string,\n): boolean {\n  return semver.gte(version1, version2)\n}\n\n/**\n * Check if version1 is less than version2.\n */\nexport function isLessThan(version1: string, version2: string): boolean {\n  return semver.lt(version1, version2)\n}\n\n/**\n * Check if version1 is less than or equal to version2.\n */\nexport function isLessThanOrEqual(version1: string, version2: string): boolean {\n  return semver.lte(version1, version2)\n}\n\n/**\n * Validate if a string is a valid semantic version.\n */\nexport function isValidVersion(version: string): boolean {\n  return semver.valid(version) !== null\n}\n\n/**\n * Get the highest version from an array of versions.\n */\nexport function maxVersion(versions: string[]): string | undefined {\n  return semver.maxSatisfying(versions, '*') || undefined\n}\n\n/**\n * Get the lowest version from an array of versions.\n */\nexport function minVersion(versions: string[]): string | undefined {\n  return semver.minSatisfying(versions, '*') || undefined\n}\n\n/**\n * Parse a version string and return major, minor, patch components.\n */\nexport function parseVersion(version: string):\n  | {\n      major: number\n      minor: number\n      patch: number\n      prerelease: ReadonlyArray<string | number>\n      build: readonly string[]\n    }\n  | undefined {\n  const parsed = semver.parse(version)\n  if (!parsed) {\n    return undefined\n  }\n  return {\n    major: parsed.major,\n    minor: parsed.minor,\n    patch: parsed.patch,\n    prerelease: parsed.prerelease,\n    build: parsed.build,\n  }\n}\n\n/**\n * Check if a version satisfies a semver range.\n */\nexport function satisfiesVersion(version: string, range: string): boolean {\n  return semver.satisfies(version, range)\n}\n\n/**\n * Sort versions in ascending order.\n */\nexport function sortVersions(versions: string[]): string[] {\n  return semver.sort([...versions])\n}\n\n/**\n * Sort versions in descending order.\n */\nexport function sortVersionsDesc(versions: string[]): string[] {\n  return semver.rsort([...versions])\n}\n\n/**\n * Get the difference between two versions.\n */\nexport function versionDiff(\n  version1: string,\n  version2: string,\n):\n  | 'major'\n  | 'premajor'\n  | 'minor'\n  | 'preminor'\n  | 'patch'\n  | 'prepatch'\n  | 'prerelease'\n  | undefined {\n  try {\n    return semver.diff(version1, version2) || undefined\n  } catch {\n    return undefined\n  }\n}\n"],
+  "mappings": ";6iBAAA,IAAAA,EAAA,GAAAC,EAAAD,EAAA,mBAAAE,EAAA,oBAAAC,EAAA,mBAAAC,EAAA,oBAAAC,EAAA,oBAAAC,EAAA,oBAAAC,EAAA,qBAAAC,EAAA,YAAAC,EAAA,kBAAAC,EAAA,yBAAAC,EAAA,eAAAC,EAAA,sBAAAC,EAAA,mBAAAC,EAAA,eAAAC,EAAA,eAAAC,EAAA,iBAAAC,EAAA,qBAAAC,EAAA,iBAAAC,EAAA,qBAAAC,EAAA,gBAAAC,IAAA,eAAAC,EAAAtB,GAEA,IAAAuB,EAAmB,gCAKZ,SAASrB,EAAcsB,EAAqC,CAEjE,OADgB,EAAAC,QAAO,OAAOD,CAAO,GACrB,OAClB,CAMO,SAASrB,EACduB,EACAC,EACwB,CACxB,GAAI,CACF,OAAO,EAAAF,QAAO,QAAQC,EAAIC,CAAE,CAC9B,MAAQ,CACN,MACF,CACF,CAKO,SAASvB,EAAewB,EAAoBC,EAAyB,CAC1E,OAAOD,EAAS,OAAOE,GAAK,EAAAL,QAAO,UAAUK,EAAGD,CAAK,CAAC,CACxD,CAKO,SAASxB,EAAgBmB,EAAqC,CAEnE,OADe,EAAAC,QAAO,MAAMD,CAAO,GACpB,KACjB,CAKO,SAASlB,EAAgBkB,EAAqC,CAEnE,OADe,EAAAC,QAAO,MAAMD,CAAO,GACpB,KACjB,CAKO,SAASjB,EAAgBiB,EAAqC,CAEnE,OADe,EAAAC,QAAO,MAAMD,CAAO,GACpB,KACjB,CAKO,SAAShB,EACdgB,EACAO,EAQAC,EACoB,CACpB,OAAO,EAAAP,QAAO,IAAID,EAASO,EAASC,CAAU,GAAK,MACrD,CAKO,SAASvB,EAAQwB,EAAkBC,EAA2B,CACnE,OAAO,EAAAT,QAAO,GAAGQ,EAAUC,CAAQ,CACrC,CAKO,SAASxB,EAAcuB,EAAkBC,EAA2B,CACzE,OAAO,EAAAT,QAAO,GAAGQ,EAAUC,CAAQ,CACrC,CAKO,SAASvB,EACdsB,EACAC,EACS,CACT,OAAO,EAAAT,QAAO,IAAIQ,EAAUC,CAAQ,CACtC,CAKO,SAAStB,EAAWqB,EAAkBC,EAA2B,CACtE,OAAO,EAAAT,QAAO,GAAGQ,EAAUC,CAAQ,CACrC,CAKO,SAASrB,EAAkBoB,EAAkBC,EAA2B,CAC7E,OAAO,EAAAT,QAAO,IAAIQ,EAAUC,CAAQ,CACtC,CAKO,SAASpB,EAAeU,EAA0B,CACvD,OAAO,EAAAC,QAAO,MAAMD,CAAO,IAAM,IACnC,CAKO,SAAST,EAAWa,EAAwC,CACjE,OAAO,EAAAH,QAAO,cAAcG,EAAU,GAAG,GAAK,MAChD,CAKO,SAASZ,EAAWY,EAAwC,CACjE,OAAO,EAAAH,QAAO,cAAcG,EAAU,GAAG,GAAK,MAChD,CAKO,SAASX,EAAaO,EAQf,CACZ,MAAMW,EAAS,EAAAV,QAAO,MAAMD,CAAO,EACnC,GAAKW,EAGL,MAAO,CACL,MAAOA,EAAO,MACd,MAAOA,EAAO,MACd,MAAOA,EAAO,MACd,WAAYA,EAAO,WACnB,MAAOA,EAAO,KAChB,CACF,CAKO,SAASjB,EAAiBM,EAAiBK,EAAwB,CACxE,OAAO,EAAAJ,QAAO,UAAUD,EAASK,CAAK,CACxC,CAKO,SAASV,EAAaS,EAA8B,CACzD,OAAO,EAAAH,QAAO,KAAK,CAAC,GAAGG,CAAQ,CAAC,CAClC,CAKO,SAASR,EAAiBQ,EAA8B,CAC7D,OAAO,EAAAH,QAAO,MAAM,CAAC,GAAGG,CAAQ,CAAC,CACnC,CAKO,SAASP,EACdY,EACAC,EASY,CACZ,GAAI,CACF,OAAO,EAAAT,QAAO,KAAKQ,EAAUC,CAAQ,GAAK,MAC5C,MAAQ,CACN,MACF,CACF",
   "names": ["versions_exports", "__export", "coerceVersion", "compareVersions", "filterVersions", "getMajorVersion", "getMinorVersion", "getPatchVersion", "incrementVersion", "isEqual", "isGreaterThan", "isGreaterThanOrEqual", "isLessThan", "isLessThanOrEqual", "isValidVersion", "maxVersion", "minVersion", "parseVersion", "satisfiesVersion", "sortVersions", "sortVersionsDesc", "versionDiff", "__toCommonJS", "import_semver", "version", "semver", "v1", "v2", "versions", "range", "v", "release", "identifier", "version1", "version2", "parsed"]
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/lib",
-  "version": "2.7.0",
+  "version": "2.8.0",
   "license": "MIT",
   "description": "Core utilities and infrastructure for Socket.dev security tools",
   "keywords": [