@socketsecurity/lib 5.0.0 → 5.0.2

package/CHANGELOG.md

@@ -5,6 +5,24 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [5.0.2](https://github.com/SocketDev/socket-lib/releases/tag/v5.0.2) - 2025-12-15
+
+### Changed
+
+- **signal-exit**: `signals()` now auto-initializes its internal state
+  - Commit: [`8cb0576`](https://github.com/SocketDev/socket-lib/commit/8cb0576)
+
+## [5.0.1](https://github.com/SocketDev/socket-lib/releases/tag/v5.0.1) - 2025-12-11
+
+### Added
+
+- **http-request**: Enhanced `httpDownload()` with automatic progress logging via Logger integration
+  - New `logger` option: Pass a Logger instance for automatic progress tracking
+  - New `progressInterval` option: Configure progress reporting frequency (default: 10%)
+  - Progress format: `Progress: XX% (Y.Y MB / Z.Z MB)`
+  - `onProgress` callback takes precedence over `logger` when both are provided
+  - Commit: [`91e5db5`](https://github.com/SocketDev/socket-lib/commit/91e5db5)
+
 ## [5.0.0](https://github.com/SocketDev/socket-lib/releases/tag/v5.0.0) - 2025-12-04
 
 ### Added

package/README.md

@@ -2,7 +2,7 @@
 
 [![Socket Badge](https://socket.dev/api/badge/npm/package/@socketsecurity/lib)](https://socket.dev/npm/package/@socketsecurity/lib)
 [![CI](https://github.com/SocketDev/socket-lib/actions/workflows/ci.yml/badge.svg)](https://github.com/SocketDev/socket-lib/actions/workflows/ci.yml)
-![Coverage](https://img.shields.io/badge/coverage-83.78%25-brightgreen)
+![Coverage](https://img.shields.io/badge/coverage-84.10%25-brightgreen)
 
 [![Follow @SocketSecurity](https://img.shields.io/twitter/follow/SocketSecurity?style=social)](https://twitter.com/SocketSecurity)
 [![Follow @socket.dev on Bluesky](https://img.shields.io/badge/Follow-@socket.dev-1DA1F2?style=social&logo=bluesky)](https://bsky.app/profile/socket.dev)

package/dist/external/libnpmexec.js

@@ -11,9 +11,9 @@ var __commonJS = (cb, mod) => function __require() {
   return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
 };
 
-// node_modules/.pnpm/libnpmexec@10.1.8/node_modules/libnpmexec/lib/get-bin-from-manifest.js
+// node_modules/.pnpm/libnpmexec@10.1.11/node_modules/libnpmexec/lib/get-bin-from-manifest.js
 var require_get_bin_from_manifest = __commonJS({
-  "node_modules/.pnpm/libnpmexec@10.1.8/node_modules/libnpmexec/lib/get-bin-from-manifest.js"(exports2, module2) {
+  "node_modules/.pnpm/libnpmexec@10.1.11/node_modules/libnpmexec/lib/get-bin-from-manifest.js"(exports2, module2) {
     var getBinFromManifest2 = /* @__PURE__ */ __name((mani) => {
       const bin = mani.bin || {};
       if (new Set(Object.values(bin)).size === 1) {

package/dist/external/npm-pack.js

@@ -51565,33 +51565,6 @@ var require_vuln = __commonJS({
   }
 });
 
-// node_modules/.pnpm/pacote@21.0.1/node_modules/pacote/lib/index.js
-var require_lib36 = __commonJS({
-  "node_modules/.pnpm/pacote@21.0.1/node_modules/pacote/lib/index.js"(exports2, module2) {
-    var { get } = require_fetcher2();
-    var GitFetcher = require_git();
-    var RegistryFetcher = require_registry();
-    var FileFetcher = require_file();
-    var DirFetcher = require_dir();
-    var RemoteFetcher = require_remote2();
-    var tarball = /* @__PURE__ */ __name((spec, opts) => get(spec, opts).tarball(), "tarball");
-    tarball.stream = (spec, handler, opts) => get(spec, opts).tarballStream(handler);
-    tarball.file = (spec, dest, opts) => get(spec, opts).tarballFile(dest);
-    module2.exports = {
-      GitFetcher,
-      RegistryFetcher,
-      FileFetcher,
-      DirFetcher,
-      RemoteFetcher,
-      resolve: /* @__PURE__ */ __name((spec, opts) => get(spec, opts).resolve(), "resolve"),
-      extract: /* @__PURE__ */ __name((spec, dest, opts) => get(spec, opts).extract(dest), "extract"),
-      manifest: /* @__PURE__ */ __name((spec, opts) => get(spec, opts).manifest(), "manifest"),
-      packument: /* @__PURE__ */ __name((spec, opts) => get(spec, opts).packument(), "packument"),
-      tarball
-    };
-  }
-});
-
 // node_modules/.pnpm/@npmcli+metavuln-calculator@9.0.2/node_modules/@npmcli/metavuln-calculator/lib/hash.js
 var require_hash = __commonJS({
   "node_modules/.pnpm/@npmcli+metavuln-calculator@9.0.2/node_modules/@npmcli/metavuln-calculator/lib/hash.js"(exports2, module2) {
@@ -51918,9 +51891,9 @@ var require_advisory = __commonJS({
 });
 
 // node_modules/.pnpm/@npmcli+metavuln-calculator@9.0.2/node_modules/@npmcli/metavuln-calculator/lib/index.js
-var require_lib37 = __commonJS({
+var require_lib36 = __commonJS({
   "node_modules/.pnpm/@npmcli+metavuln-calculator@9.0.2/node_modules/@npmcli/metavuln-calculator/lib/index.js"(exports2, module2) {
-    var pacote2 = require_lib36();
+    var pacote2 = require_lib32();
     var cacache2 = require_lib18();
     var { time } = require_lib2();
     var Advisory = require_advisory();
@@ -52037,7 +52010,7 @@ var require_audit_report = __commonJS({
     var npa = require_npa2();
     var pickManifest = require_lib30();
     var Vuln = require_vuln();
-    var Calculator = require_lib37();
+    var Calculator = require_lib36();
     var { log, time } = require_lib2();
     var npmFetch = require_lib28();
     var AuditReport = class _AuditReport extends Map {
@@ -52535,7 +52508,7 @@ var require_tracker = __commonJS({
 });
 
 // node_modules/.pnpm/proggy@3.0.0/node_modules/proggy/lib/index.js
-var require_lib38 = __commonJS({
+var require_lib37 = __commonJS({
   "node_modules/.pnpm/proggy@3.0.0/node_modules/proggy/lib/index.js"(exports2) {
     exports2.Client = require_client4();
     exports2.Tracker = require_tracker();
@@ -52557,7 +52530,7 @@ var require_lib38 = __commonJS({
 // node_modules/.pnpm/@npmcli+arborist@9.1.6/node_modules/@npmcli/arborist/lib/tracker.js
 var require_tracker2 = __commonJS({
   "node_modules/.pnpm/@npmcli+arborist@9.1.6/node_modules/@npmcli/arborist/lib/tracker.js"(exports2, module2) {
-    var proggy = require_lib38();
+    var proggy = require_lib37();
     module2.exports = (cls) => class Tracker extends cls {
       static {
         __name(this, "Tracker");
@@ -53381,7 +53354,7 @@ var require_to_batch_syntax = __commonJS({
 });
 
 // node_modules/.pnpm/cmd-shim@7.0.0/node_modules/cmd-shim/lib/index.js
-var require_lib39 = __commonJS({
+var require_lib38 = __commonJS({
   "node_modules/.pnpm/cmd-shim@7.0.0/node_modules/cmd-shim/lib/index.js"(exports2, module2) {
     var {
       chmod,
@@ -53538,7 +53511,7 @@ exit $LASTEXITCODE
 });
 
 // node_modules/.pnpm/read-cmd-shim@5.0.0/node_modules/read-cmd-shim/lib/index.js
-var require_lib40 = __commonJS({
+var require_lib39 = __commonJS({
   "node_modules/.pnpm/read-cmd-shim@5.0.0/node_modules/read-cmd-shim/lib/index.js"(exports2, module2) {
     var fs = require("fs");
     var { promisify } = require("util");
@@ -53885,7 +53858,7 @@ var require_cjs2 = __commonJS({
 });
 
 // node_modules/.pnpm/write-file-atomic@6.0.0/node_modules/write-file-atomic/lib/index.js
-var require_lib41 = __commonJS({
+var require_lib40 = __commonJS({
   "node_modules/.pnpm/write-file-atomic@6.0.0/node_modules/write-file-atomic/lib/index.js"(exports2, module2) {
     "use strict";
     module2.exports = writeFile;
@@ -54124,7 +54097,7 @@ var require_fix_bin = __commonJS({
       readFile
     } = require("fs/promises");
     var execMode = 511 & ~process.umask();
-    var writeFileAtomic = require_lib41();
+    var writeFileAtomic = require_lib40();
     var isWindowsHashBang = /* @__PURE__ */ __name((buf) => buf[0] === "#".charCodeAt(0) && buf[1] === "!".charCodeAt(0) && /^#![^\n]+\r\n/.test(buf.toString()), "isWindowsHashBang");
     var isWindowsHashbangFile = /* @__PURE__ */ __name((file) => {
       const FALSE = /* @__PURE__ */ __name(() => false, "FALSE");
@@ -54156,8 +54129,8 @@ var require_shim_bin = __commonJS({
         throw er;
       }
     }, "throwNonEnoent");
-    var cmdShim = require_lib39();
-    var readCmdShim = require_lib40();
+    var cmdShim = require_lib38();
+    var readCmdShim = require_lib39();
     var fixBin = require_fix_bin();
     var seen = /* @__PURE__ */ new Set();
     var failEEXIST = /* @__PURE__ */ __name(({ to, from }) => Promise.reject(Object.assign(new Error("EEXIST: file already exists"), {
@@ -54389,7 +54362,7 @@ var require_check_bin = __commonJS({
     var isWindows = require_is_windows();
     var binTarget = require_bin_target();
     var { resolve, dirname } = require("path");
-    var readCmdShim = require_lib40();
+    var readCmdShim = require_lib39();
     var { readlink } = require("fs/promises");
     var checkBin = /* @__PURE__ */ __name(async ({ bin, path, top, global: global2, force }) => {
       if (force || !global2 || !top) {
@@ -54496,7 +54469,7 @@ var require_get_paths = __commonJS({
 });
 
 // node_modules/.pnpm/bin-links@5.0.0/node_modules/bin-links/lib/index.js
-var require_lib42 = __commonJS({
+var require_lib41 = __commonJS({
   "node_modules/.pnpm/bin-links@5.0.0/node_modules/bin-links/lib/index.js"(exports2, module2) {
     var linkBins = require_link_bins();
     var linkMans = require_link_mans();
@@ -59258,7 +59231,7 @@ var require_dist14 = __commonJS({
 });
 
 // node_modules/.pnpm/@npmcli+query@4.0.1/node_modules/@npmcli/query/lib/index.js
-var require_lib43 = __commonJS({
+var require_lib42 = __commonJS({
   "node_modules/.pnpm/@npmcli+query@4.0.1/node_modules/@npmcli/query/lib/index.js"(exports2, module2) {
     "use strict";
     var parser = require_dist14();
@@ -59457,7 +59430,7 @@ var require_query_selector_all = __commonJS({
   "node_modules/.pnpm/@npmcli+arborist@9.1.6/node_modules/@npmcli/arborist/lib/query-selector-all.js"(exports2, module2) {
     "use strict";
     var { resolve } = require("node:path");
-    var { parser, arrayDelimiter } = require_lib43();
+    var { parser, arrayDelimiter } = require_lib42();
     var localeCompare = require_string_locale_compare()("en");
     var { log } = require_lib2();
     var { minimatch } = require_commonjs4();
@@ -60197,7 +60170,7 @@ var require_node4 = __commonJS({
     var npa = require_npa2();
     var semver = require_semver2();
     var util = require("node:util");
-    var { getPaths: getBinPaths } = require_lib42();
+    var { getPaths: getBinPaths } = require_lib41();
     var { log } = require_lib2();
     var { resolve, relative, dirname, basename } = require("node:path");
     var { walkUp } = require_commonjs15();
@@ -62511,7 +62484,7 @@ var require_just_diff_apply = __commonJS({
 });
 
 // node_modules/.pnpm/parse-conflict-json@4.0.0/node_modules/parse-conflict-json/lib/index.js
-var require_lib44 = __commonJS({
+var require_lib43 = __commonJS({
   "node_modules/.pnpm/parse-conflict-json@4.0.0/node_modules/parse-conflict-json/lib/index.js"(exports2, module2) {
     var parseJSON = require_lib();
     var { diff } = require_just_diff();
@@ -62658,7 +62631,7 @@ var require_shrinkwrap = __commonJS({
     var versionFromTgz = require_version_from_tgz();
     var npa = require_npa2();
     var pkgJson = require_lib12();
-    var parseJSON = require_lib44();
+    var parseJSON = require_lib43();
     var nameFromFolder = require_lib34();
     var stringify = require_json_stringify_nice();
     var swKeyOrder = [
@@ -65236,7 +65209,7 @@ var require_promise_all_reject_late = __commonJS({
 var require_rebuild = __commonJS({
   "node_modules/.pnpm/@npmcli+arborist@9.1.6/node_modules/@npmcli/arborist/lib/arborist/rebuild.js"(exports2, module2) {
     var PackageJson = require_lib12();
-    var binLinks = require_lib42();
+    var binLinks = require_lib41();
     var localeCompare = require_string_locale_compare()("en");
     var promiseAllRejectLate = require_promise_all_reject_late();
     var runScript = require_run_script();
@@ -67540,7 +67513,7 @@ var require_arborist = __commonJS({
 });
 
 // node_modules/.pnpm/@npmcli+arborist@9.1.6/node_modules/@npmcli/arborist/lib/index.js
-var require_lib45 = __commonJS({
+var require_lib44 = __commonJS({
   "node_modules/.pnpm/@npmcli+arborist@9.1.6/node_modules/@npmcli/arborist/lib/index.js"(exports2, module2) {
     module2.exports = require_arborist();
     module2.exports.Arborist = module2.exports;
@@ -67552,14 +67525,14 @@ var require_lib45 = __commonJS({
 });
 
 // node_modules/.pnpm/libnpmpack@9.0.9/node_modules/libnpmpack/lib/index.js
-var require_lib46 = __commonJS({
+var require_lib45 = __commonJS({
   "node_modules/.pnpm/libnpmpack@9.0.9/node_modules/libnpmpack/lib/index.js"(exports2, module2) {
     "use strict";
     var pacote2 = require_lib32();
     var npa = require_npa2();
     var runScript = require_run_script();
     var path = require("node:path");
-    var Arborist2 = require_lib45();
+    var Arborist2 = require_lib44();
     var { writeFile } = require("node:fs/promises");
     module2.exports = pack;
     async function pack(spec = "file:.", opts = {}) {
@@ -67607,7 +67580,7 @@ var require_lib46 = __commonJS({
 
 // src/external/npm-pack.js
 var { get: pacoteFetcherGet } = require_fetcher2();
-var libnpmpack = require_lib46();
+var libnpmpack = require_lib45();
 var cacacheGet = require_get();
 var cacachePut = require_put();
 var cacacheRm = require_rm2();

package/dist/fs.d.ts

@@ -578,51 +578,63 @@ export declare function readJson(filepath: PathLike, options?: ReadJsonOptions |
 export declare function readJsonSync(filepath: PathLike, options?: ReadJsonOptions | string | undefined): import("./json/types").JsonValue;
 /**
  * Safely delete a file or directory asynchronously with built-in protections.
- * Uses `del` for safer deletion that prevents removing cwd and above by default.
- * Automatically uses force: true for temp directory, cacache, and ~/.socket subdirectories.
+ *
+ * Uses [`del`](https://socket.dev/npm/package/del/overview/8.0.1) for safer deletion with these safety features:
+ * - By default, prevents deleting the current working directory (cwd) and above
+ * - Allows deleting within cwd (descendant paths) without force option
+ * - Automatically uses force: true for temp directory, cacache, and ~/.socket subdirectories
+ * - Protects against accidental deletion of parent directories via `../` paths
  *
  * @param filepath - Path or array of paths to delete (supports glob patterns)
  * @param options - Deletion options including force, retries, and recursion
+ * @param options.force - Set to true to allow deleting cwd and above (use with caution)
  * @throws {Error} When attempting to delete protected paths without force option
  *
  * @example
  * ```ts
- * // Delete a single file
- * await safeDelete('./temp-file.txt')
- *
- * // Delete a directory recursively
- * await safeDelete('./build', { recursive: true })
+ * // Delete files within cwd (safe by default)
+ * await safeDelete('./build')
+ * await safeDelete('./dist')
  *
- * // Delete multiple paths
- * await safeDelete(['./dist', './coverage'])
+ * // Delete with glob patterns
+ * await safeDelete(['./temp/**', '!./temp/keep.txt'])
  *
  * // Delete with custom retry settings
  * await safeDelete('./flaky-dir', { maxRetries: 5, retryDelay: 500 })
+ *
+ * // Force delete cwd or above (requires explicit force: true)
+ * await safeDelete('../parent-dir', { force: true })
  * ```
  */
 export declare function safeDelete(filepath: PathLike | PathLike[], options?: RemoveOptions | undefined): Promise<void>;
 /**
  * Safely delete a file or directory synchronously with built-in protections.
- * Uses `del` for safer deletion that prevents removing cwd and above by default.
- * Automatically uses force: true for temp directory, cacache, and ~/.socket subdirectories.
+ *
+ * Uses [`del`](https://socket.dev/npm/package/del/overview/8.0.1) for safer deletion with these safety features:
+ * - By default, prevents deleting the current working directory (cwd) and above
+ * - Allows deleting within cwd (descendant paths) without force option
+ * - Automatically uses force: true for temp directory, cacache, and ~/.socket subdirectories
+ * - Protects against accidental deletion of parent directories via `../` paths
  *
  * @param filepath - Path or array of paths to delete (supports glob patterns)
  * @param options - Deletion options including force, retries, and recursion
+ * @param options.force - Set to true to allow deleting cwd and above (use with caution)
  * @throws {Error} When attempting to delete protected paths without force option
  *
  * @example
  * ```ts
- * // Delete a single file
- * safeDeleteSync('./temp-file.txt')
+ * // Delete files within cwd (safe by default)
+ * safeDeleteSync('./build')
+ * safeDeleteSync('./dist')
  *
- * // Delete a directory recursively
- * safeDeleteSync('./build', { recursive: true })
+ * // Delete with glob patterns
+ * safeDeleteSync(['./temp/**', '!./temp/keep.txt'])
  *
- * // Delete multiple paths with globs
- * safeDeleteSync(['./dist/**', './coverage/**'])
+ * // Delete multiple paths
+ * safeDeleteSync(['./coverage', './reports'])
  *
- * // Force delete a protected path (use with caution)
- * safeDeleteSync('./important', { force: true })
+ * // Force delete cwd or above (requires explicit force: true)
+ * safeDeleteSync('../parent-dir', { force: true })
  * ```
  */
 export declare function safeDeleteSync(filepath: PathLike | PathLike[], options?: RemoveOptions | undefined): void;

package/dist/http-request.d.ts

@@ -1,3 +1,4 @@
+import type { Logger } from './logger.js';
 /**
  * Configuration options for HTTP/HTTPS requests.
  */
@@ -270,9 +271,31 @@ export interface HttpDownloadOptions {
      * ```
      */
     headers?: Record<string, string> | undefined;
+    /**
+     * Logger instance for automatic progress logging.
+     * When provided with `progressInterval`, will automatically log download progress.
+     * If both `onProgress` and `logger` are provided, `onProgress` takes precedence.
+     *
+     * @example
+     * ```ts
+     * import { getDefaultLogger } from '@socketsecurity/lib/logger'
+     *
+     * const logger = getDefaultLogger()
+     * await httpDownload('https://example.com/file.zip', '/tmp/file.zip', {
+     *   logger,
+     *   progressInterval: 10  // Log every 10%
+     * })
+     * // Output:
+     * //   Progress: 10% (5.2 MB / 52.0 MB)
+     * //   Progress: 20% (10.4 MB / 52.0 MB)
+     * //   ...
+     * ```
+     */
+    logger?: Logger | undefined;
     /**
      * Callback for tracking download progress.
      * Called periodically as data is received.
+     * Takes precedence over `logger` if both are provided.
      *
      * @param downloaded - Number of bytes downloaded so far
      * @param total - Total file size in bytes (from Content-Length header)
@@ -288,6 +311,29 @@ export interface HttpDownloadOptions {
      * ```
      */
     onProgress?: ((downloaded: number, total: number) => void) | undefined;
+    /**
+     * Progress reporting interval as a percentage (0-100).
+     * Only used when `logger` is provided.
+     * Progress will be logged each time the download advances by this percentage.
+     *
+     * @default 10
+     *
+     * @example
+     * ```ts
+     * // Log every 10%
+     * await httpDownload('https://example.com/file.zip', '/tmp/file.zip', {
+     *   logger: getDefaultLogger(),
+     *   progressInterval: 10
+     * })
+     *
+     * // Log every 25%
+     * await httpDownload('https://example.com/file.zip', '/tmp/file.zip', {
+     *   logger: getDefaultLogger(),
+     *   progressInterval: 25
+     * })
+     * ```
+     */
+    progressInterval?: number | undefined;
     /**
      * Number of retry attempts for failed downloads.
      * Uses exponential backoff: delay = `retryDelay` * 2^attempt.

package/dist/http-request.js

@@ -184,17 +184,34 @@ async function httpRequestAttempt(url, options) {
 async function httpDownload(url, destPath, options) {
   const {
     headers = {},
+    logger,
     onProgress,
+    progressInterval = 10,
     retries = 0,
     retryDelay = 1e3,
     timeout = 12e4
   } = { __proto__: null, ...options };
+  let progressCallback;
+  if (onProgress) {
+    progressCallback = onProgress;
+  } else if (logger) {
+    let lastPercent = 0;
+    progressCallback = (downloaded, total) => {
+      const percent = Math.floor(downloaded / total * 100);
+      if (percent >= lastPercent + progressInterval) {
+        logger.log(
+          `  Progress: ${percent}% (${(downloaded / 1024 / 1024).toFixed(1)} MB / ${(total / 1024 / 1024).toFixed(1)} MB)`
+        );
+        lastPercent = percent;
+      }
+    };
+  }
   let lastError;
   for (let attempt = 0; attempt <= retries; attempt++) {
     try {
       return await httpDownloadAttempt(url, destPath, {
         headers,
-        onProgress,
+        onProgress: progressCallback,
         timeout
       });
     } catch (e) {

package/dist/json/edit.js

@@ -22,6 +22,7 @@ __export(edit_exports, {
   getEditableJsonClass: () => getEditableJsonClass
 });
 module.exports = __toCommonJS(edit_exports);
+var import_promises = require("node:timers/promises");
 var import_format = require("./format");
 const identSymbol = import_format.INDENT_SYMBOL;
 const newlineSymbol = import_format.NEWLINE_SYMBOL;
@@ -40,15 +41,31 @@ async function retryWrite(filepath, content, retries = 3, baseDelay = 10) {
   for (let attempt = 0; attempt <= retries; attempt++) {
     try {
       await fsPromises.writeFile(filepath, content);
+      if (process.platform === "win32") {
+        await (0, import_promises.setTimeout)(50);
+        let accessRetries = 0;
+        const maxAccessRetries = 5;
+        while (accessRetries < maxAccessRetries) {
+          try {
+            await fsPromises.access(filepath);
+            await (0, import_promises.setTimeout)(10);
+            break;
+          } catch {
+            const delay = 20 * (accessRetries + 1);
+            await (0, import_promises.setTimeout)(delay);
+            accessRetries++;
+          }
+        }
+      }
       return;
     } catch (err) {
       const isLastAttempt = attempt === retries;
-      const isEperm = err instanceof Error && "code" in err && (err.code === "EPERM" || err.code === "EBUSY");
-      if (!isEperm || isLastAttempt) {
+      const isRetriableError = err instanceof Error && "code" in err && (err.code === "EPERM" || err.code === "EBUSY" || err.code === "ENOENT");
+      if (!isRetriableError || isLastAttempt) {
         throw err;
       }
       const delay = baseDelay * 2 ** attempt;
-      await new Promise((resolve) => setTimeout(resolve, delay));
+      await (0, import_promises.setTimeout)(delay);
     }
   }
 }
@@ -57,7 +74,21 @@ function parseJson(content) {
 }
 async function readFile(filepath) {
   const { promises: fsPromises } = /* @__PURE__ */ getFs();
-  return await fsPromises.readFile(filepath, "utf8");
+  const maxRetries = process.platform === "win32" ? 5 : 1;
+  for (let attempt = 0; attempt <= maxRetries; attempt++) {
+    try {
+      return await fsPromises.readFile(filepath, "utf8");
+    } catch (err) {
+      const isLastAttempt = attempt === maxRetries;
+      const isEnoent = err instanceof Error && "code" in err && err.code === "ENOENT";
+      if (!isEnoent || isLastAttempt) {
+        throw err;
+      }
+      const delay = process.platform === "win32" ? 50 * (attempt + 1) : 20;
+      await (0, import_promises.setTimeout)(delay);
+    }
+  }
+  throw new Error("Unreachable code");
 }
 // @__NO_SIDE_EFFECTS__
 function getEditableJsonClass() {

package/dist/signal-exit.d.ts

@@ -15,7 +15,7 @@ export declare function onExit(cb: (code: number | null, signal: string | null)
  * Get the list of signals that are currently being monitored.
  */
 /*@__NO_SIDE_EFFECTS__*/
-export declare function signals(): string[] | undefined;
+export declare function signals(): string[];
 /**
  * Unload signal handlers and restore original process behavior.
  */

package/dist/signal-exit.js

@@ -64,7 +64,7 @@ function getSignalListeners() {
   if (_sigListeners === void 0) {
     _sigListeners = { __proto__: null };
     const emitter = /* @__PURE__ */ getEmitter();
-    const sigs = /* @__PURE__ */ getSignals();
+    const sigs = /* @__PURE__ */ signals();
     for (const sig of sigs) {
       _sigListeners[sig] = function listener() {
         const listeners = globalProcess?.listeners(sig) || [];
@@ -80,32 +80,6 @@ function getSignalListeners() {
   }
   return _sigListeners;
 }
-let _signals;
-// @__NO_SIDE_EFFECTS__
-function getSignals() {
-  if (_signals === void 0) {
-    _signals = ["SIGABRT", "SIGALRM", "SIGHUP", "SIGINT", "SIGTERM"];
-    if (!WIN32) {
-      _signals.push(
-        "SIGVTALRM",
-        "SIGXCPU",
-        "SIGXFSZ",
-        "SIGUSR2",
-        "SIGTRAP",
-        "SIGSYS",
-        "SIGQUIT",
-        "SIGIOT"
-        // should detect profiler and enable/disable accordingly.
-        // see #21
-        // 'SIGPROF'
-      );
-    }
-    if (platform === "linux") {
-      _signals.push("SIGIO", "SIGPOLL", "SIGPWR", "SIGSTKFLT", "SIGUNUSED");
-    }
-  }
-  return _signals;
-}
 // @__NO_SIDE_EFFECTS__
 function emit(event, code, signal) {
   const emitter = /* @__PURE__ */ getEmitter();
@@ -128,7 +102,7 @@ function load() {
   if (emitter.count !== void 0) {
     emitter.count += 1;
   }
-  const sigs = /* @__PURE__ */ getSignals();
+  const sigs = /* @__PURE__ */ signals();
   const sigListeners = /* @__PURE__ */ getSignalListeners();
   _signals = sigs.filter((sig) => {
     try {
@@ -211,8 +185,30 @@ function onExit(cb, options) {
     }
   };
 }
+let _signals;
 // @__NO_SIDE_EFFECTS__
 function signals() {
+  if (_signals === void 0) {
+    _signals = ["SIGABRT", "SIGALRM", "SIGHUP", "SIGINT", "SIGTERM"];
+    if (!WIN32) {
+      _signals.push(
+        "SIGVTALRM",
+        "SIGXCPU",
+        "SIGXFSZ",
+        "SIGUSR2",
+        "SIGTRAP",
+        "SIGSYS",
+        "SIGQUIT",
+        "SIGIOT"
+        // should detect profiler and enable/disable accordingly.
+        // see #21
+        // 'SIGPROF'
+      );
+    }
+    if (platform === "linux") {
+      _signals.push("SIGIO", "SIGPOLL", "SIGPWR", "SIGSTKFLT", "SIGUNUSED");
+    }
+  }
   return _signals;
 }
 // @__NO_SIDE_EFFECTS__
@@ -221,7 +217,7 @@ function unload() {
     return;
   }
   loaded = false;
-  const sigs = /* @__PURE__ */ getSignals();
+  const sigs = /* @__PURE__ */ signals();
   const sigListeners = /* @__PURE__ */ getSignalListeners();
   for (const sig of sigs) {
     try {

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@socketsecurity/lib",
-  "version": "5.0.0",
-  "packageManager": "pnpm@10.22.0",
+  "version": "5.0.2",
+  "packageManager": "pnpm@10.26.0",
   "license": "MIT",
   "description": "Core utilities and infrastructure for Socket.dev security tools",
   "keywords": [
@@ -677,7 +677,7 @@
   ],
   "engines": {
     "node": ">=22",
-    "pnpm": ">=10.22.0"
+    "pnpm": ">=10.25.0"
   },
   "sideEffects": false,
   "scripts": {
@@ -714,7 +714,7 @@
     "@socketregistry/is-unicode-supported": "1.0.5",
     "@socketregistry/packageurl-js": "1.3.5",
     "@socketregistry/yocto-spinner": "1.0.25",
-    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@4.3.0",
+    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.0.1",
     "@types/node": "24.9.2",
     "@typescript/native-preview": "7.0.0-dev.20250920.1",
     "@vitest/coverage-v8": "4.0.3",
@@ -737,11 +737,12 @@
     "get-east-asian-width": "1.3.0",
     "globals": "16.4.0",
     "husky": "9.1.7",
-    "libnpmexec": "^10.1.8",
+    "libnpmexec": "^10.1.11",
     "libnpmpack": "9.0.9",
     "lint-staged": "15.2.11",
     "magic-string": "0.30.17",
     "make-fetch-happen": "15.0.2",
+    "nock": "14.0.10",
     "normalize-package-data": "8.0.0",
     "npm-package-arg": "13.0.0",
     "pacote": "21.0.1",
@@ -750,7 +751,7 @@
     "spdx-correct": "3.2.0",
     "spdx-expression-parse": "4.0.0",
     "streaming-iterables": "8.0.1",
-    "taze": "19.6.0",
+    "taze": "19.9.2",
     "trash": "10.0.0",
     "type-coverage": "2.29.7",
     "typescript": "5.9.2",
@@ -775,12 +776,12 @@
     "overrides": {
       "@npmcli/arborist": "9.1.6",
       "@npmcli/run-script": "10.0.0",
-      "semver": "7.7.2",
       "ansi-regex": "6.2.2",
-      "strip-ansi": "7.1.2",
+      "lru-cache": "11.2.2",
+      "semver": "7.7.2",
       "string-width": "8.1.0",
-      "wrap-ansi": "9.0.2",
-      "lru-cache": "11.2.2"
+      "strip-ansi": "7.1.2",
+      "wrap-ansi": "9.0.2"
     },
     "patchedDependencies": {
       "@npmcli/run-script@10.0.0": "patches/@npmcli__run-script@10.0.0.patch",