@socketsecurity/lib 5.11.3 → 5.12.0

package/dist/fs.js

@@ -63,7 +63,6 @@ module.exports = __toCommonJS(fs_exports);
 var import_node_process = __toESM(require("node:process"));
 var import_process = require("./constants/process");
 var import_arrays = require("./arrays");
-var import_del = require("./external/del");
 var import_promises = require("./promises");
 var import_globs = require("./globs");
 var import_parse = require("./json/parse");
@@ -72,6 +71,14 @@ var import_normalize = require("./paths/normalize");
 var import_rewire = require("./paths/rewire");
 var import_socket = require("./paths/socket");
 var import_sorts = require("./sorts");
+let _del;
+// @__NO_SIDE_EFFECTS__
+function getDel() {
+  if (_del === void 0) {
+    _del = require("./external/del");
+  }
+  return _del;
+}
 const abortSignal = (0, import_process.getAbortSignal)();
 const defaultRemoveOptions = (0, import_objects.objectFreeze)({
   __proto__: null,
@@ -541,9 +548,10 @@ async function safeDelete(filepath, options) {
   }
   const maxRetries = opts.maxRetries ?? defaultRemoveOptions.maxRetries;
   const retryDelay = opts.retryDelay ?? defaultRemoveOptions.retryDelay;
+  const del = /* @__PURE__ */ getDel();
   await (0, import_promises.pRetry)(
     async () => {
-      await (0, import_del.deleteAsync)(patterns, {
+      await del.deleteAsync(patterns, {
         dryRun: false,
         force: shouldForce,
         onlyFiles: false
@@ -582,11 +590,12 @@ function safeDeleteSync(filepath, options) {
   }
   const maxRetries = opts.maxRetries ?? defaultRemoveOptions.maxRetries;
   const retryDelay = opts.retryDelay ?? defaultRemoveOptions.retryDelay;
+  const del = /* @__PURE__ */ getDel();
   let lastError;
   let delay = retryDelay;
   for (let attempt = 0; attempt <= maxRetries; attempt++) {
     try {
-      (0, import_del.deleteSync)(patterns, {
+      del.deleteSync(patterns, {
         dryRun: false,
         force: shouldForce,
         onlyFiles: false

package/dist/globs.js

@@ -1,10 +1,8 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
-var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __export = (target, all) => {
   for (var name in all)
@@ -18,14 +16,6 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var globs_exports = {};
 __export(globs_exports, {
@@ -36,10 +26,24 @@ __export(globs_exports, {
   globSync: () => globSync
 });
 module.exports = __toCommonJS(globs_exports);
-var fastGlob = __toESM(require("./external/fast-glob.js"));
-var import_picomatch = __toESM(require("./external/picomatch.js"));
 var import_objects = require("./objects");
 var import_globs = require("./paths/globs");
+let _fastGlob;
+// @__NO_SIDE_EFFECTS__
+function getFastGlob() {
+  if (_fastGlob === void 0) {
+    _fastGlob = require("./external/fast-glob.js");
+  }
+  return _fastGlob;
+}
+let _picomatch;
+// @__NO_SIDE_EFFECTS__
+function getPicomatch() {
+  if (_picomatch === void 0) {
+    _picomatch = require("./external/picomatch.js");
+  }
+  return _picomatch;
+}
 const defaultIgnore = (0, import_objects.objectFreeze)([
   // Most of these ignored files can be included specifically if included in the
   // files globs. Exceptions to this are:
@@ -95,6 +99,7 @@ function globStreamLicenses(dirname, options) {
   if (ignoreOriginals) {
     ignore.push(import_globs.LICENSE_ORIGINAL_GLOB_RECURSIVE);
   }
+  const fastGlob = /* @__PURE__ */ getFastGlob();
   return fastGlob.globStream(
     [recursive ? import_globs.LICENSE_GLOB_RECURSIVE : import_globs.LICENSE_GLOB],
     {
@@ -142,7 +147,8 @@ function getGlobMatcher(glob2, options) {
     ...options,
     ...negativePatterns.length > 0 ? { ignore: negativePatterns } : {}
   };
-  matcher = (0, import_picomatch.default)(
+  const picomatch = /* @__PURE__ */ getPicomatch();
+  matcher = picomatch(
     positivePatterns.length > 0 ? positivePatterns : patterns,
     matchOptions
   );
@@ -152,10 +158,12 @@ function getGlobMatcher(glob2, options) {
 }
 // @__NO_SIDE_EFFECTS__
 function glob(patterns, options) {
+  const fastGlob = /* @__PURE__ */ getFastGlob();
   return fastGlob.glob(patterns, options);
 }
 // @__NO_SIDE_EFFECTS__
 function globSync(patterns, options) {
+  const fastGlob = /* @__PURE__ */ getFastGlob();
   return fastGlob.globSync(patterns, options);
 }
 // Annotate the CommonJS export names for ESM import in node:

package/dist/http-request.d.ts

@@ -1,4 +1,34 @@
+import type { IncomingHttpHeaders, IncomingMessage } from 'http';
 import type { Logger } from './logger.js';
+/**
+ * Information passed to the onRequest hook before each request attempt.
+ */
+export interface HttpHookRequestInfo {
+    headers: Record<string, string>;
+    method: string;
+    timeout: number;
+    url: string;
+}
+/**
+ * Information passed to the onResponse hook after each request attempt.
+ */
+export interface HttpHookResponseInfo {
+    duration: number;
+    error?: Error | undefined;
+    headers?: IncomingHttpHeaders | undefined;
+    method: string;
+    status?: number | undefined;
+    statusText?: string | undefined;
+    url: string;
+}
+/**
+ * Lifecycle hooks for observing HTTP request/response events.
+ * Hooks fire per-attempt (retries produce multiple hook calls).
+ */
+export interface HttpHooks {
+    onRequest?: ((info: HttpHookRequestInfo) => void) | undefined;
+    onResponse?: ((info: HttpHookResponseInfo) => void) | undefined;
+}
 /**
  * Configuration options for HTTP/HTTPS requests.
  */
@@ -61,6 +91,11 @@ export interface HttpRequestOptions {
      * ```
      */
     followRedirects?: boolean | undefined;
+    /**
+     * Lifecycle hooks for observing request/response events.
+     * Hooks fire per-attempt — retries and redirects each trigger separate hook calls.
+     */
+    hooks?: HttpHooks | undefined;
     /**
      * HTTP headers to send with the request.
      * A `User-Agent` header is automatically added if not provided.
@@ -92,6 +127,14 @@ export interface HttpRequestOptions {
      * ```
      */
     maxRedirects?: number | undefined;
+    /**
+     * Maximum response body size in bytes. Responses exceeding this limit
+     * will be rejected with an error. Prevents memory exhaustion from
+     * unexpectedly large responses.
+     *
+     * @default undefined (no limit)
+     */
+    maxResponseSize?: number | undefined;
     /**
      * HTTP method to use for the request.
      *
@@ -205,7 +248,7 @@ export interface HttpResponse {
      * console.log(response.headers['set-cookie']) // May be string[]
      * ```
      */
-    headers: Record<string, string | string[] | undefined>;
+    headers: IncomingHttpHeaders;
     /**
      * Parse response body as JSON.
      * Type parameter `T` allows specifying the expected JSON structure.
@@ -270,6 +313,12 @@ export interface HttpResponse {
      * ```
      */
     text(): string;
+    /**
+     * The underlying Node.js IncomingMessage for advanced use cases
+     * (e.g., streaming, custom header inspection). Only available when
+     * the response was not consumed by the convenience methods.
+     */
+    rawResponse?: IncomingMessage | undefined;
 }
 /**
  * Configuration options for file downloads.
@@ -567,6 +616,11 @@ export interface FetchChecksumsOptions {
  * ```
  */
 export declare function fetchChecksums(url: string, options?: FetchChecksumsOptions | undefined): Promise<Checksums>;
+/**
+ * Build an enriched error message based on the error code.
+ * Generic guidance (no product-specific branding).
+ */
+export declare function enrichErrorMessage(url: string, method: string, error: NodeJS.ErrnoException): string;
 /**
  * Download a file from a URL to a local path with redirect support, retry logic, and progress callbacks.
  * Uses streaming to avoid loading entire file in memory.

package/dist/http-request.js

@@ -19,6 +19,7 @@ var __copyProps = (to, from, except, desc) => {
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var http_request_exports = {};
 __export(http_request_exports, {
+  enrichErrorMessage: () => enrichErrorMessage,
   fetchChecksums: () => fetchChecksums,
   httpDownload: () => httpDownload,
   httpJson: () => httpJson,
@@ -147,6 +148,15 @@ async function httpDownloadAttempt(url, destPath, options) {
             return;
           }
           const redirectUrl = res.headers.location.startsWith("http") ? res.headers.location : new URL(res.headers.location, url).toString();
+          const redirectParsed = new URL(redirectUrl);
+          if (isHttps && redirectParsed.protocol !== "https:") {
+            reject(
+              new Error(
+                `Redirect from HTTPS to HTTP is not allowed: ${redirectUrl}`
+              )
+            );
+            return;
+          }
           resolve(
             httpDownloadAttempt(redirectUrl, destPath, {
               ca,
@@ -229,25 +239,51 @@ async function httpDownloadAttempt(url, destPath, options) {
     request.end();
   });
 }
+function enrichErrorMessage(url, method, error) {
+  const code = error.code;
+  let message = `${method} request failed: ${url}`;
+  if (code === "ECONNREFUSED") {
+    message += "\n\u2192 Connection refused. Server is unreachable.\n\u2192 Check: Network connectivity and firewall settings.";
+  } else if (code === "ENOTFOUND") {
+    message += "\n\u2192 DNS lookup failed. Cannot resolve hostname.\n\u2192 Check: Internet connection and DNS settings.";
+  } else if (code === "ETIMEDOUT") {
+    message += "\n\u2192 Connection timed out. Network or server issue.\n\u2192 Try: Check network connectivity and retry.";
+  } else if (code === "ECONNRESET") {
+    message += "\n\u2192 Connection reset by server. Possible network interruption.\n\u2192 Try: Retry the request.";
+  } else if (code === "EPIPE") {
+    message += "\n\u2192 Broken pipe. Server closed connection unexpectedly.\n\u2192 Check: Authentication credentials and permissions.";
+  } else if (code === "CERT_HAS_EXPIRED" || code === "UNABLE_TO_VERIFY_LEAF_SIGNATURE") {
+    message += "\n\u2192 SSL/TLS certificate error.\n\u2192 Check: System time and date are correct.\n\u2192 Try: Update CA certificates on your system.";
+  } else if (code) {
+    message += `
+\u2192 Error code: ${code}`;
+  }
+  return message;
+}
 async function httpRequestAttempt(url, options) {
   const {
     body,
     ca,
     followRedirects = true,
     headers = {},
+    hooks,
     maxRedirects = 5,
+    maxResponseSize,
     method = "GET",
     timeout = 3e4
   } = { __proto__: null, ...options };
+  const startTime = Date.now();
+  const mergedHeaders = {
+    "User-Agent": "socket-registry/1.0",
+    ...headers
+  };
+  hooks?.onRequest?.({ method, url, headers: mergedHeaders, timeout });
   return await new Promise((resolve, reject) => {
     const parsedUrl = new URL(url);
     const isHttps = parsedUrl.protocol === "https:";
     const httpModule = isHttps ? /* @__PURE__ */ getHttps() : /* @__PURE__ */ getHttp();
     const requestOptions = {
-      headers: {
-        "User-Agent": "socket-registry/1.0",
-        ...headers
-      },
+      headers: mergedHeaders,
       hostname: parsedUrl.hostname,
       method,
       path: parsedUrl.pathname + parsedUrl.search,
@@ -257,10 +293,23 @@ async function httpRequestAttempt(url, options) {
     if (ca && isHttps) {
       requestOptions["ca"] = ca;
     }
+    const emitResponse = (info) => {
+      hooks?.onResponse?.({
+        duration: Date.now() - startTime,
+        method,
+        url,
+        ...info
+      });
+    };
     const request = httpModule.request(
       requestOptions,
       (res) => {
         if (followRedirects && res.statusCode && res.statusCode >= 300 && res.statusCode < 400 && res.headers.location) {
+          emitResponse({
+            headers: res.headers,
+            status: res.statusCode,
+            statusText: res.statusMessage
+          });
           if (maxRedirects <= 0) {
             reject(
               new Error(
@@ -270,13 +319,24 @@ async function httpRequestAttempt(url, options) {
             return;
           }
           const redirectUrl = res.headers.location.startsWith("http") ? res.headers.location : new URL(res.headers.location, url).toString();
+          const redirectParsed = new URL(redirectUrl);
+          if (isHttps && redirectParsed.protocol !== "https:") {
+            reject(
+              new Error(
+                `Redirect from HTTPS to HTTP is not allowed: ${redirectUrl}`
+              )
+            );
+            return;
+          }
           resolve(
             httpRequestAttempt(redirectUrl, {
               body,
               ca,
               followRedirects,
               headers,
+              hooks,
               maxRedirects: maxRedirects - 1,
+              maxResponseSize,
               method,
               timeout
             })
@@ -284,7 +344,20 @@ async function httpRequestAttempt(url, options) {
           return;
         }
         const chunks = [];
+        let totalBytes = 0;
         res.on("data", (chunk) => {
+          totalBytes += chunk.length;
+          if (maxResponseSize && totalBytes > maxResponseSize) {
+            res.destroy();
+            const sizeMB = (totalBytes / (1024 * 1024)).toFixed(2);
+            const maxMB = (maxResponseSize / (1024 * 1024)).toFixed(2);
+            const err = new Error(
+              `Response exceeds maximum size limit (${sizeMB}MB > ${maxMB}MB)`
+            );
+            emitResponse({ error: err });
+            reject(err);
+            return;
+          }
           chunks.push(chunk);
         });
         res.on("end", () => {
@@ -303,39 +376,45 @@ async function httpRequestAttempt(url, options) {
               return JSON.parse(responseBody.toString("utf8"));
             },
             ok,
+            rawResponse: res,
             status: res.statusCode || 0,
             statusText: res.statusMessage || "",
             text() {
               return responseBody.toString("utf8");
             }
           };
+          emitResponse({
+            headers: res.headers,
+            status: res.statusCode,
+            statusText: res.statusMessage
+          });
           resolve(response);
         });
         res.on("error", (error) => {
+          emitResponse({ error });
           reject(error);
         });
       }
     );
     request.on("error", (error) => {
-      const code = error.code;
-      let message = `HTTP request failed for ${url}: ${error.message}
-`;
-      if (code === "ENOTFOUND") {
-        message += "DNS lookup failed. Check the hostname and your network connection.";
-      } else if (code === "ECONNREFUSED") {
-        message += "Connection refused. Verify the server is running and accessible.";
-      } else if (code === "ETIMEDOUT") {
-        message += "Request timed out. Check your network or increase the timeout value.";
-      } else if (code === "ECONNRESET") {
-        message += "Connection reset. The server may have closed the connection unexpectedly.";
-      } else {
-        message += "Check your network connection and verify the URL is correct.";
-      }
-      reject(new Error(message, { cause: error }));
+      const message = enrichErrorMessage(
+        url,
+        method,
+        error
+      );
+      const enhanced = new Error(message, { cause: error });
+      emitResponse({ error: enhanced });
+      reject(enhanced);
     });
     request.on("timeout", () => {
       request.destroy();
-      reject(new Error(`Request timed out after ${timeout}ms`));
+      const err = new Error(
+        `${method} request timed out after ${timeout}ms: ${url}
+\u2192 Server did not respond in time.
+\u2192 Try: Increase timeout or check network connectivity.`
+      );
+      emitResponse({ error: err });
+      reject(err);
     });
     if (body) {
       request.write(body);
@@ -372,8 +451,10 @@ async function httpDownload(url, destPath, options) {
       }
     };
   }
+  const crypto = /* @__PURE__ */ getCrypto();
   const fs = /* @__PURE__ */ getFs();
-  const tempPath = `${destPath}.download`;
+  const tempSuffix = crypto.randomBytes(6).toString("hex");
+  const tempPath = `${destPath}.${tempSuffix}.download`;
   if (fs.existsSync(tempPath)) {
     await (0, import_fs.safeDelete)(tempPath);
   }
@@ -389,14 +470,17 @@ async function httpDownload(url, destPath, options) {
         timeout
       });
       if (sha256) {
-        const crypto = /* @__PURE__ */ getCrypto();
         const fileContent = await fs.promises.readFile(tempPath);
         const computedHash = crypto.createHash("sha256").update(fileContent).digest("hex");
-        if (computedHash !== sha256.toLowerCase()) {
+        const expectedHash = sha256.toLowerCase();
+        if (computedHash.length !== expectedHash.length || !crypto.timingSafeEqual(
+          Buffer.from(computedHash),
+          Buffer.from(expectedHash)
+        )) {
           await (0, import_fs.safeDelete)(tempPath);
           throw new Error(
             `Checksum verification failed for ${url}
-Expected: ${sha256.toLowerCase()}
+Expected: ${expectedHash}
 Computed: ${computedHash}`
           );
         }
@@ -459,7 +543,9 @@ async function httpRequest(url, options) {
     ca,
     followRedirects = true,
     headers = {},
+    hooks,
     maxRedirects = 5,
+    maxResponseSize,
     method = "GET",
     retries = 0,
     retryDelay = 1e3,
@@ -473,7 +559,9 @@ async function httpRequest(url, options) {
         ca,
         followRedirects,
         headers,
+        hooks,
         maxRedirects,
+        maxResponseSize,
         method,
         timeout
       });
@@ -519,6 +607,7 @@ async function httpText(url, options) {
 }
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
+  enrichErrorMessage,
   fetchChecksums,
   httpDownload,
   httpJson,

package/dist/ipc.js

@@ -116,7 +116,7 @@ async function ensureIpcDirectory(filePath) {
   const fs = /* @__PURE__ */ getFs();
   const path = /* @__PURE__ */ getPath();
   const dir = path.dirname(filePath);
-  await fs.promises.mkdir(dir, { recursive: true });
+  await fs.promises.mkdir(dir, { recursive: true, mode: 448 });
 }
 async function writeIpcStub(appName, data) {
   const stubPath = getIpcStubPath(appName);
@@ -128,11 +128,10 @@ async function writeIpcStub(appName, data) {
   };
   const validated = IpcStubSchema.parse(ipcData);
   const fs = /* @__PURE__ */ getFs();
-  await fs.promises.writeFile(
-    stubPath,
-    JSON.stringify(validated, null, 2),
-    "utf8"
-  );
+  await fs.promises.writeFile(stubPath, JSON.stringify(validated, null, 2), {
+    encoding: "utf8",
+    mode: 384
+  });
   return stubPath;
 }
 async function readIpcStub(stubPath) {
@@ -179,6 +178,7 @@ async function cleanupIpcStubs(appName) {
               const contentAge = now - validated.timestamp;
               isStale = isStale || contentAge > maxAgeMs;
             } catch {
+              isStale = true;
             }
             if (isStale) {
               (0, import_fs.safeDeleteSync)(filePath, { force: true });

package/dist/sorts.js

@@ -1,10 +1,8 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
-var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __export = (target, all) => {
   for (var name in all)
@@ -18,14 +16,6 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var sorts_exports = {};
 __export(sorts_exports, {
@@ -36,10 +26,23 @@ __export(sorts_exports, {
   naturalSorter: () => naturalSorter
 });
 module.exports = __toCommonJS(sorts_exports);
-var fastSort = __toESM(require("./external/fast-sort.js"));
-var semver = __toESM(require("./external/semver.js"));
+let _semver;
+function getSemver() {
+  if (_semver === void 0) {
+    _semver = require("./external/semver.js");
+  }
+  return _semver;
+}
+let _fastSort;
+function getFastSort() {
+  if (_fastSort === void 0) {
+    _fastSort = require("./external/fast-sort.js");
+  }
+  return _fastSort;
+}
 // @__NO_SIDE_EFFECTS__
 function compareSemver(a, b) {
+  const semver = getSemver();
   const validA = semver.valid(a);
   const validB = semver.valid(b);
   if (!validA && !validB) {
@@ -90,6 +93,7 @@ let _naturalSorter;
 // @__NO_SIDE_EFFECTS__
 function naturalSorter(arrayToSort) {
   if (_naturalSorter === void 0) {
+    const fastSort = getFastSort();
     _naturalSorter = fastSort.createNewSortInstance({
       comparer: naturalCompare
     });

package/dist/spawn.js

@@ -39,13 +39,20 @@ module.exports = __toCommonJS(spawn_exports);
 var import_node_process = __toESM(require("node:process"));
 var import_process = require("./constants/process");
 var import_errors = require("./errors");
-var import_promise_spawn = __toESM(require("./external/@npmcli/promise-spawn"));
 var import_arrays = require("./arrays");
 var import_bin = require("./bin");
 var import_normalize = require("./paths/normalize");
 var import_objects = require("./objects");
 var import_spinner = require("./spinner");
 var import_strings = require("./strings");
+let _npmCliPromiseSpawn;
+// @__NO_SIDE_EFFECTS__
+function getNpmCliPromiseSpawn() {
+  if (_npmCliPromiseSpawn === void 0) {
+    _npmCliPromiseSpawn = require("./external/@npmcli/promise-spawn");
+  }
+  return _npmCliPromiseSpawn;
+}
 let _path;
 // @__NO_SIDE_EFFECTS__
 function getPath() {
@@ -235,7 +242,8 @@ function spawn(cmd, args, options, extra) {
     uid: spawnOptions.uid,
     gid: spawnOptions.gid
   };
-  const spawnPromise = (0, import_promise_spawn.default)(
+  const npmCliPromiseSpawn = /* @__PURE__ */ getNpmCliPromiseSpawn();
+  const spawnPromise = npmCliPromiseSpawn(
     actualCmd,
     args ? [...args] : [],
     promiseSpawnOpts,

package/dist/strings.js

@@ -37,7 +37,14 @@ __export(strings_exports, {
 });
 module.exports = __toCommonJS(strings_exports);
 var import_ansi = require("./ansi");
-var import_get_east_asian_width = require("./external/get-east-asian-width");
+let _eastAsianWidth;
+// @__NO_SIDE_EFFECTS__
+function getEastAsianWidth() {
+  if (_eastAsianWidth === void 0) {
+    _eastAsianWidth = require("./external/get-east-asian-width").eastAsianWidth;
+  }
+  return _eastAsianWidth;
+}
 const fromCharCode = String.fromCharCode;
 // @__NO_SIDE_EFFECTS__
 function applyLinePrefix(str, options) {
@@ -164,6 +171,7 @@ function stringWidth(text) {
   }
   let width = 0;
   const eastAsianWidthOptions = { ambiguousAsWide: false };
+  const eastAsianWidth = /* @__PURE__ */ getEastAsianWidth();
   for (const { segment } of segmenter.segment(plainText)) {
     if (zeroWidthClusterRegex.test(segment)) {
       continue;
@@ -177,14 +185,14 @@ function stringWidth(text) {
     if (codePoint === void 0) {
       continue;
     }
-    width += (0, import_get_east_asian_width.eastAsianWidth)(codePoint, eastAsianWidthOptions);
+    width += eastAsianWidth(codePoint, eastAsianWidthOptions);
     if (segment.length > 1) {
       for (const char of segment.slice(1)) {
         const charCode = char.charCodeAt(0);
         if (charCode >= 65280 && charCode <= 65519) {
           const trailingCodePoint = char.codePointAt(0);
           if (trailingCodePoint !== void 0) {
-            width += (0, import_get_east_asian_width.eastAsianWidth)(trailingCodePoint, eastAsianWidthOptions);
+            width += eastAsianWidth(trailingCodePoint, eastAsianWidthOptions);
           }
         }
       }