npm - @socketsecurity/lib - Versions diffs - 5.0.2 → 5.1.1 - Mend

@socketsecurity/lib 5.0.2 → 5.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -5,6 +5,30 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+## [5.1.1](https://github.com/SocketDev/socket-lib/releases/tag/v5.1.1) - 2025-12-28
+### Added
+- **paths**: Added `SOCKET_HOME` environment variable support to customize Socket base directory
+  - `getSocketUserDir()` now checks `SOCKET_HOME` before defaulting to `~/.socket`
+  - `getSocketDlxDir()` inherits `SOCKET_HOME` support (priority: `SOCKET_DLX_DIR` > `SOCKET_HOME/_dlx` > `~/.socket/_dlx`)
+  - Enables flexible directory configuration for restricted or custom environments
+### Changed
+- **paths**: Enhanced directory resolution with temporary directory fallback
+  - `getUserHomeDir()` now falls back to `os.tmpdir()` when home directory is unavailable
+  - Improves resilience in containerized and restricted environments
+  - Priority order: `HOME` > `USERPROFILE` > `os.homedir()` > `os.tmpdir()`
+## [5.1.0](https://github.com/SocketDev/socket-lib/releases/tag/v5.1.0) - 2025-12-17
+### Added
+- **types**: Added `ALPM` and `VSCODE` to `PURL_Type` enum
+  - `ALPM`: Arch Linux Package Manager ecosystem
+  - `VSCODE`: Visual Studio Code extensions ecosystem
 ## [5.0.2](https://github.com/SocketDev/socket-lib/releases/tag/v5.0.2) - 2025-12-15
 ### Changed

package/dist/paths/socket.d.ts CHANGED Viewed

@@ -15,7 +15,14 @@ export declare function getOsTmpDir(): string;
 export declare function getSocketHomePath(): string;
 /**
  * Get the Socket user directory (~/.socket).
- * Result is memoized for performance.
+ * Can be overridden with SOCKET_HOME environment variable or via setPath() for testing.
+ * Result is cached via getPathValue for performance.
+ *
+ * Priority order:
+ *   1. Test override via setPath('socket-user-dir', ...)
+ *   2. SOCKET_HOME - Base directory override
+ *   3. Default: $HOME/.socket
+ *   4. Fallback: /tmp/.socket (Unix) or %TEMP%\.socket (Windows)
  */
 export declare function getSocketUserDir(): string;
 /**
@@ -24,13 +31,24 @@ export declare function getSocketUserDir(): string;
 export declare function getSocketAppDir(appName: string): string;
 /**
  * Get the Socket cacache directory (~/.socket/_cacache).
- * Can be overridden with SOCKET_CACACHE_DIR environment variable for testing.
- * Result is memoized for performance.
+ * Can be overridden with SOCKET_CACACHE_DIR environment variable or via setPath() for testing.
+ * Result is cached via getPathValue for performance.
+ *
+ * Priority order:
+ *   1. Test override via setPath('socket-cacache-dir', ...)
+ *   2. SOCKET_CACACHE_DIR - Full override of cacache directory
+ *   3. Default: $SOCKET_HOME/_cacache or $HOME/.socket/_cacache
  */
 export declare function getSocketCacacheDir(): string;
 /**
  * Get the Socket DLX directory (~/.socket/_dlx).
- * Can be overridden with SOCKET_DLX_DIR environment variable for testing.
+ * Can be overridden with environment variables.
+ *
+ * Priority order:
+ *   1. SOCKET_DLX_DIR - Full override of DLX cache directory
+ *   2. SOCKET_HOME/_dlx - Base directory override (inherits from getSocketUserDir)
+ *   3. Default: $HOME/.socket/_dlx
+ *   4. Fallback: /tmp/.socket/_dlx (Unix) or %TEMP%\.socket\_dlx (Windows)
  */
 export declare function getSocketDlxDir(): string;
 /**
@@ -56,13 +74,12 @@ export declare function getSocketRegistryGithubCacheDir(): string;
 /**
  * Get the user's home directory.
  * Uses environment variables directly to support test mocking.
- * Falls back to os.homedir() if env vars not set.
- */
-export declare function getUserHomeDir(): string;
-/**
- * Invalidate all cached path values.
- * Called automatically by the paths/rewire module when setPath/clearPath/resetPaths are used.
+ * Falls back to temporary directory if home is not available.
  *
- * @internal Used for test rewiring
+ * Priority order:
+ *   1. HOME environment variable (Unix)
+ *   2. USERPROFILE environment variable (Windows)
+ *   3. os.homedir()
+ *   4. Fallback: os.tmpdir() (rarely used, for restricted environments)
  */
-export declare function invalidateCache(): void;
+export declare function getUserHomeDir(): string;

package/dist/paths/socket.js CHANGED Viewed

@@ -41,8 +41,7 @@ __export(socket_exports, {
   getSocketRegistryDir: () => getSocketRegistryDir,
   getSocketRegistryGithubCacheDir: () => getSocketRegistryGithubCacheDir,
   getSocketUserDir: () => getSocketUserDir,
-  getUserHomeDir: () => getUserHomeDir,
-  invalidateCache: () => invalidateCache
+  getUserHomeDir: () => getUserHomeDir
 });
 module.exports = __toCommonJS(socket_exports);
 var os = __toESM(require("os"));
@@ -64,34 +63,29 @@ function getOsTmpDir() {
 function getSocketHomePath() {
   return getSocketUserDir();
 }
-let _cachedSocketUserDir;
 function getSocketUserDir() {
-  if (_cachedSocketUserDir === void 0) {
-    _cachedSocketUserDir = (0, import_normalize.normalizePath)(
-      path.join(getUserHomeDir(), import_dirnames.DOT_SOCKET_DIR)
-    );
-  }
-  return _cachedSocketUserDir;
+  return (0, import_rewire.getPathValue)("socket-user-dir", () => {
+    const socketHome = (0, import_socket2.getSocketHome)();
+    if (socketHome) {
+      return (0, import_normalize.normalizePath)(socketHome);
+    }
+    return (0, import_normalize.normalizePath)(path.join(getUserHomeDir(), import_dirnames.DOT_SOCKET_DIR));
+  });
 }
 function getSocketAppDir(appName) {
   return (0, import_normalize.normalizePath)(
     path.join(getSocketUserDir(), `${import_socket.SOCKET_APP_PREFIX}${appName}`)
   );
 }
-let _cachedSocketCacacheDir;
 function getSocketCacacheDir() {
-  if (_cachedSocketCacacheDir === void 0) {
+  return (0, import_rewire.getPathValue)("socket-cacache-dir", () => {
     if ((0, import_socket2.getSocketCacacheDir)()) {
-      _cachedSocketCacacheDir = (0, import_normalize.normalizePath)(
-        (0, import_socket2.getSocketCacacheDir)()
-      );
-    } else {
-      _cachedSocketCacacheDir = (0, import_normalize.normalizePath)(
-        path.join(getSocketUserDir(), `${import_socket.SOCKET_APP_PREFIX}cacache`)
-      );
+      return (0, import_normalize.normalizePath)((0, import_socket2.getSocketCacacheDir)());
     }
-  }
-  return _cachedSocketCacacheDir;
+    return (0, import_normalize.normalizePath)(
+      path.join(getSocketUserDir(), `${import_socket.SOCKET_APP_PREFIX}cacache`)
+    );
+  });
 }
 function getSocketDlxDir() {
   if ((0, import_socket2.getSocketDlxDirEnv)()) {
@@ -130,13 +124,15 @@ function getUserHomeDir() {
   if (userProfile) {
     return userProfile;
   }
-  return getOsHomeDir();
-}
-function invalidateCache() {
-  _cachedSocketUserDir = void 0;
-  _cachedSocketCacacheDir = void 0;
+  try {
+    const osHome = getOsHomeDir();
+    if (osHome) {
+      return osHome;
+    }
+  } catch {
+  }
+  return getOsTmpDir();
 }
-(0, import_rewire.registerCacheInvalidation)(invalidateCache);
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   getOsHomeDir,
@@ -151,6 +147,5 @@ function invalidateCache() {
   getSocketRegistryDir,
   getSocketRegistryGithubCacheDir,
   getSocketUserDir,
-  getUserHomeDir,
-  invalidateCache
+  getUserHomeDir
 });

package/dist/types.d.ts CHANGED Viewed

@@ -17,6 +17,7 @@ declare enum Interop {
 export type InteropString = `${Interop}`;
 // Based on SocketPURL_Type from socket-sdk-js
 export declare enum PURL_Type {
+    ALPM = "alpm",
     APK = "apk",
     BITBUCKET = "bitbucket",
     COCOAPODS = "cocoapods",
@@ -46,7 +47,8 @@ export declare enum PURL_Type {
     RPM = "rpm",
     SWID = "swid",
     SWIFT = "swift",
-    VCS = "vcs"
+    VCS = "vcs",
+    VSCODE = "vscode"
 }
 export type PURLString = `${PURL_Type}`;
 // Alias for backward compatibility and semantic clarity

package/dist/types.js CHANGED Viewed

@@ -23,6 +23,7 @@ __export(types_exports, {
 });
 module.exports = __toCommonJS(types_exports);
 var PURL_Type = /* @__PURE__ */ ((PURL_Type2) => {
+  PURL_Type2["ALPM"] = "alpm";
   PURL_Type2["APK"] = "apk";
   PURL_Type2["BITBUCKET"] = "bitbucket";
   PURL_Type2["COCOAPODS"] = "cocoapods";
@@ -53,6 +54,7 @@ var PURL_Type = /* @__PURE__ */ ((PURL_Type2) => {
   PURL_Type2["SWID"] = "swid";
   PURL_Type2["SWIFT"] = "swift";
   PURL_Type2["VCS"] = "vcs";
+  PURL_Type2["VSCODE"] = "vscode";
   return PURL_Type2;
 })(PURL_Type || {});
 // Annotate the CommonJS export names for ESM import in node:

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@socketsecurity/lib",
-  "version": "5.0.2",
-  "packageManager": "pnpm@10.26.0",
+  "version": "5.1.1",
+  "packageManager": "pnpm@10.26.2",
   "license": "MIT",
   "description": "Core utilities and infrastructure for Socket.dev security tools",
   "keywords": [
@@ -714,7 +714,7 @@
     "@socketregistry/is-unicode-supported": "1.0.5",
     "@socketregistry/packageurl-js": "1.3.5",
     "@socketregistry/yocto-spinner": "1.0.25",
-    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.0.1",
+    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.1.0",
     "@types/node": "24.9.2",
     "@typescript/native-preview": "7.0.0-dev.20250920.1",
     "@vitest/coverage-v8": "4.0.3",