@socketsecurity/lib 5.18.1 → 5.19.0

package/dist/constants/lifecycle-script-names.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;

package/dist/constants/maintained-node-versions.d.ts

@@ -1,3 +1,6 @@
+/**
+ * @fileoverview Maintained Node.js versions without external dependencies.
+ */
 declare const maintainedNodeVersions: readonly string[] & {
     current: string;
     last: string;

package/dist/constants/maintained-node-versions.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;

package/dist/constants/node.d.ts

@@ -1,30 +1,139 @@
-// Version detection.
-export declare function getNodeVersion(): string;
-export declare function getNodeMajorVersion(): number;
-export declare function getNodeMinorVersion(): number;
-export declare function getNodePatchVersion(): number;
-// Maintained Node.js versions.
+/**
+ * @fileoverview Node.js runtime version and capability helpers.
+ * Provides getters for the current Node version (major/minor/patch), the
+ * maintained-versions list, and feature-detection flags for APIs that vary
+ * across Node releases.
+ */
+/**
+ * Get the absolute path to the currently running Node.js binary.
+ *
+ * @returns The value of `process.execPath`.
+ */
+export declare function getExecPath(): string;
+/**
+ * Get the list of Node.js major versions currently under long-term support.
+ *
+ * @returns The static `maintainedNodeVersions` array shared across the library.
+ */
 export declare function getMaintainedNodeVersions(): readonly string[] & {
     current: string;
     last: string;
     next: string;
     previous: string;
 };
-// Feature detection.
+/**
+ * Get the flags used to block Node.js debugger attachment via SIGUSR1.
+ * Returns `['--disable-sigusr1']` on runtimes that support it and falls back
+ * to `['--no-inspect']` on older versions.
+ *
+ * @returns A non-empty array of CLI flags suitable for passing to `node`.
+ */
+export declare function getNodeDisableSigusr1Flags(): string[];
+/**
+ * Get the hardening flags Socket applies when spawning Node.js subprocesses.
+ * Always includes `--disable-proto=delete`. Also adds `--permission` plus the
+ * grants from {@link getNodePermissionFlags} on Node 24+,
+ * `--experimental-permission` on Node 20-23, and
+ * `--force-node-api-uncaught-exceptions-policy` on Node 22+.
+ *
+ * @returns A non-empty array of CLI flags suitable for passing to `node`.
+ */
+export declare function getNodeHardenFlags(): string[];
+/**
+ * Get the major component of the current Node.js version.
+ *
+ * @returns The major version number, or `0` if it cannot be parsed.
+ */
+export declare function getNodeMajorVersion(): number;
+/**
+ * Get the minor component of the current Node.js version.
+ *
+ * @returns The minor version number, or `0` if it cannot be parsed.
+ */
+export declare function getNodeMinorVersion(): number;
+/**
+ * Get the flags that silence Node.js runtime warnings and deprecation notices.
+ * Always returns `['--no-warnings', '--no-deprecation']` across all versions.
+ *
+ * @returns A non-empty array of CLI flags suitable for passing to `node`.
+ */
+export declare function getNodeNoWarningsFlags(): string[];
+/**
+ * Get the patch component of the current Node.js version.
+ *
+ * @returns The patch version number, or `0` if it cannot be parsed.
+ */
+export declare function getNodePatchVersion(): number;
+/**
+ * Get the permission-grant flags needed to run npm under Node.js 24+'s
+ * `--permission` model. The array is non-empty only on Node.js 24+ and
+ * includes `--allow-fs-read=*`, `--allow-fs-write=*`, and
+ * `--allow-child-process`. Older versions return an empty array.
+ *
+ * @returns The permission flag list (possibly empty) for the current runtime.
+ */
+export declare function getNodePermissionFlags(): string[];
+/**
+ * Get the full Node.js version string from `process.version`.
+ *
+ * @returns The runtime version, including the leading `v` (e.g. `v22.11.0`).
+ */
+export declare function getNodeVersion(): string;
+/**
+ * Check whether the current runtime exposes the `module.enableCompileCache()` API.
+ * The API is available on Node.js 24+.
+ *
+ * @returns `true` when the current runtime is Node.js 24 or newer.
+ */
 export declare function supportsNodeCompileCacheApi(): boolean;
+/**
+ * Check whether the current runtime honors the `NODE_COMPILE_CACHE` env var.
+ * Env-var-based compile caching is available on Node.js 22+.
+ *
+ * @returns `true` when the current runtime is Node.js 22 or newer.
+ */
 export declare function supportsNodeCompileCacheEnvVar(): boolean;
+/**
+ * Check whether the current runtime supports the `--disable-sigusr1` CLI flag.
+ * Flag landed in v22.14.0 and v23.7.0 and was stabilized in v22.20.0 / v24.8.0.
+ *
+ * @returns `true` when the runtime exposes `--disable-sigusr1`.
+ */
+export declare function supportsNodeDisableSigusr1Flag(): boolean;
+/**
+ * Check whether the current runtime supports the `--disable-warning` CLI flag.
+ * The flag is available on Node.js 21+.
+ *
+ * @returns `true` when the current runtime is Node.js 21 or newer.
+ */
 export declare function supportsNodeDisableWarningFlag(): boolean;
+/**
+ * Check whether the current runtime supports the permission model CLI flags
+ * (`--experimental-permission` on Node 20-23, `--permission` on Node 24+).
+ *
+ * @returns `true` when the current runtime is Node.js 20 or newer.
+ */
 export declare function supportsNodePermissionFlag(): boolean;
+/**
+ * Check whether `require()` can synchronously load ESM modules.
+ * Requires Node.js 22.12+ or Node.js 23+.
+ *
+ * @returns `true` when the runtime supports `require()`-ing ES modules.
+ */
 export declare function supportsNodeRequireModule(): boolean;
+/**
+ * Check whether the current runtime supports `node --run <script>`.
+ * Requires Node.js 22.11+ or Node.js 23+.
+ *
+ * @returns `true` when the runtime can execute package.json scripts via `--run`.
+ */
 export declare function supportsNodeRun(): boolean;
-export declare function supportsNodeDisableSigusr1Flag(): boolean;
-export declare function getNodeDisableSigusr1Flags(): string[];
+/**
+ * Check whether this process was spawned with an IPC channel.
+ * When `true`, `process.send()` is callable to message the parent process.
+ *
+ * @returns `true` when the current process has an IPC channel to its parent.
+ */
 export declare function supportsProcessSend(): boolean;
-export declare function getNodePermissionFlags(): string[];
-export declare function getNodeHardenFlags(): string[];
-export declare function getNodeNoWarningsFlags(): string[];
-// Execution path.
-export declare function getExecPath(): string;
-// Node.js constants.
-export declare const NODE_SEA_FUSE = "NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2";
 export declare const ESNEXT = "esnext";
+export declare const NODE_SEA_FUSE = "NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2";

package/dist/constants/node.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
@@ -54,8 +55,38 @@ module.exports = __toCommonJS(node_exports);
 var import_node_process = __toESM(require("node:process"));
 var import_maintained_node_versions = require("./maintained-node-versions");
 const NODE_VERSION = import_node_process.default.version;
-function getNodeVersion() {
-  return NODE_VERSION;
+let _nodeDisableSigusr1Flags;
+let _nodeHardenFlags;
+let _nodeNoWarningsFlags;
+let _nodePermissionFlags;
+function getExecPath() {
+  return import_node_process.default.execPath;
+}
+function getMaintainedNodeVersions() {
+  return import_maintained_node_versions.maintainedNodeVersions;
+}
+function getNodeDisableSigusr1Flags() {
+  if (_nodeDisableSigusr1Flags === void 0) {
+    _nodeDisableSigusr1Flags = supportsNodeDisableSigusr1Flag() ? ["--disable-sigusr1"] : ["--no-inspect"];
+  }
+  return _nodeDisableSigusr1Flags;
+}
+function getNodeHardenFlags() {
+  if (_nodeHardenFlags === void 0) {
+    const major = getNodeMajorVersion();
+    const flags = ["--disable-proto=delete"];
+    if (major >= 24) {
+      flags.push("--permission");
+      flags.push(...getNodePermissionFlags());
+    } else if (major >= 20) {
+      flags.push("--experimental-permission");
+    }
+    if (major >= 22) {
+      flags.push("--force-node-api-uncaught-exceptions-policy");
+    }
+    _nodeHardenFlags = flags;
+  }
+  return _nodeHardenFlags;
 }
 function getNodeMajorVersion() {
   const major = NODE_VERSION.slice(1).split(".")[0] ?? "0";
@@ -64,11 +95,35 @@ function getNodeMajorVersion() {
 function getNodeMinorVersion() {
   return Number.parseInt(NODE_VERSION.split(".")[1] ?? "0", 10);
 }
+function getNodeNoWarningsFlags() {
+  if (_nodeNoWarningsFlags === void 0) {
+    _nodeNoWarningsFlags = ["--no-warnings", "--no-deprecation"];
+  }
+  return _nodeNoWarningsFlags;
+}
 function getNodePatchVersion() {
   return Number.parseInt(NODE_VERSION.split(".")[2] ?? "0", 10);
 }
-function getMaintainedNodeVersions() {
-  return import_maintained_node_versions.maintainedNodeVersions;
+function getNodePermissionFlags() {
+  if (_nodePermissionFlags === void 0) {
+    const major = getNodeMajorVersion();
+    if (major >= 24) {
+      _nodePermissionFlags = [
+        // Allow reading from the entire filesystem (npm needs to read package.json, node_modules, etc.).
+        "--allow-fs-read=*",
+        // Allow writing to the entire filesystem (npm needs to write to node_modules, cache, etc.).
+        "--allow-fs-write=*",
+        // Allow spawning child processes (npm needs to run lifecycle scripts, git, etc.).
+        "--allow-child-process"
+      ];
+    } else {
+      _nodePermissionFlags = [];
+    }
+  }
+  return _nodePermissionFlags;
+}
+function getNodeVersion() {
+  return NODE_VERSION;
 }
 function supportsNodeCompileCacheApi() {
   const major = getNodeMajorVersion();
@@ -78,22 +133,6 @@ function supportsNodeCompileCacheEnvVar() {
   const major = getNodeMajorVersion();
   return major >= 22;
 }
-function supportsNodeDisableWarningFlag() {
-  const major = getNodeMajorVersion();
-  return major >= 21;
-}
-function supportsNodePermissionFlag() {
-  const major = getNodeMajorVersion();
-  return major >= 20;
-}
-function supportsNodeRequireModule() {
-  const major = getNodeMajorVersion();
-  return major >= 23 || major === 22 && getNodeMinorVersion() >= 12;
-}
-function supportsNodeRun() {
-  const major = getNodeMajorVersion();
-  return major >= 23 || major === 22 && getNodeMinorVersion() >= 11;
-}
 function supportsNodeDisableSigusr1Flag() {
   const major = getNodeMajorVersion();
   const minor = getNodeMinorVersion();
@@ -108,65 +147,27 @@ function supportsNodeDisableSigusr1Flag() {
   }
   return false;
 }
-let _nodeDisableSigusr1Flags;
-function getNodeDisableSigusr1Flags() {
-  if (_nodeDisableSigusr1Flags === void 0) {
-    _nodeDisableSigusr1Flags = supportsNodeDisableSigusr1Flag() ? ["--disable-sigusr1"] : ["--no-inspect"];
-  }
-  return _nodeDisableSigusr1Flags;
-}
-function supportsProcessSend() {
-  return typeof import_node_process.default.send === "function";
+function supportsNodeDisableWarningFlag() {
+  const major = getNodeMajorVersion();
+  return major >= 21;
 }
-let _nodeHardenFlags;
-let _nodePermissionFlags;
-function getNodePermissionFlags() {
-  if (_nodePermissionFlags === void 0) {
-    const major = getNodeMajorVersion();
-    if (major >= 24) {
-      _nodePermissionFlags = [
-        // Allow reading from the entire filesystem (npm needs to read package.json, node_modules, etc.).
-        "--allow-fs-read=*",
-        // Allow writing to the entire filesystem (npm needs to write to node_modules, cache, etc.).
-        "--allow-fs-write=*",
-        // Allow spawning child processes (npm needs to run lifecycle scripts, git, etc.).
-        "--allow-child-process"
-      ];
-    } else {
-      _nodePermissionFlags = [];
-    }
-  }
-  return _nodePermissionFlags;
+function supportsNodePermissionFlag() {
+  const major = getNodeMajorVersion();
+  return major >= 20;
 }
-function getNodeHardenFlags() {
-  if (_nodeHardenFlags === void 0) {
-    const major = getNodeMajorVersion();
-    const flags = ["--disable-proto=delete"];
-    if (major >= 24) {
-      flags.push("--permission");
-      flags.push(...getNodePermissionFlags());
-    } else if (major >= 20) {
-      flags.push("--experimental-permission");
-    }
-    if (major >= 22) {
-      flags.push("--force-node-api-uncaught-exceptions-policy");
-    }
-    _nodeHardenFlags = flags;
-  }
-  return _nodeHardenFlags;
+function supportsNodeRequireModule() {
+  const major = getNodeMajorVersion();
+  return major >= 23 || major === 22 && getNodeMinorVersion() >= 12;
 }
-let _nodeNoWarningsFlags;
-function getNodeNoWarningsFlags() {
-  if (_nodeNoWarningsFlags === void 0) {
-    _nodeNoWarningsFlags = ["--no-warnings", "--no-deprecation"];
-  }
-  return _nodeNoWarningsFlags;
+function supportsNodeRun() {
+  const major = getNodeMajorVersion();
+  return major >= 23 || major === 22 && getNodeMinorVersion() >= 11;
 }
-function getExecPath() {
-  return import_node_process.default.execPath;
+function supportsProcessSend() {
+  return typeof import_node_process.default.send === "function";
 }
-const NODE_SEA_FUSE = "NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2";
 const ESNEXT = "esnext";
+const NODE_SEA_FUSE = "NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2";
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   ESNEXT,

package/dist/constants/package-default-node-range.d.ts

@@ -1,3 +1,5 @@
-/* c8 ignore next - External semver call */
+/**
+ * @fileoverview Default Node.js version range for packages.
+ */
 declare const packageDefaultNodeRange: string;
 export { packageDefaultNodeRange };

package/dist/constants/package-default-node-range.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
@@ -33,7 +34,7 @@ __export(package_default_node_range_exports, {
 });
 module.exports = __toCommonJS(package_default_node_range_exports);
 var import_maintained_node_versions = require("./maintained-node-versions");
-var semver = __toESM(require("../external/semver.js"));
+var semver = __toESM(require("../external/semver"));
 const packageDefaultNodeRange = `>=${semver.parse(import_maintained_node_versions.maintainedNodeVersions.last).major}`;
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {

package/dist/constants/package-default-socket-categories.d.ts

@@ -1,6 +1,5 @@
 /**
  * @fileoverview Default Socket security categories for packages.
  */
-// Default category for new packages
 declare const packageDefaultSocketCategories: readonly string[];
 export { packageDefaultSocketCategories };

package/dist/constants/package-default-socket-categories.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;

package/dist/constants/packages.d.ts

@@ -1,26 +1,21 @@
-// Package constants.
+/**
+ * @fileoverview Package metadata, defaults, extensions, and lifecycle helpers.
+ * Exposes lazily-memoized accessors for package defaults (Node range, Socket
+ * categories), the pacote cache path, lifecycle script names, and known
+ * package extensions used during manifest processing.
+ */
 export declare const PACKAGE = "package";
 export declare const AT_LATEST = "@latest";
 export declare const LATEST = "latest";
 export declare const PACKAGE_DEFAULT_VERSION = "1.0.0";
-// Package default Node range.
-/*@__NO_SIDE_EFFECTS__*/
+/**
+ * Clear the packument cache. Useful for long-running processes that want to
+ * force a re-fetch of registry metadata.
+ */
+export declare function clearPackumentCache(): void;
+export declare function getLifecycleScriptNames(): string[];
 export declare function getPackageDefaultNodeRange(): string | undefined;
-// Package default Socket categories.
-/*@__NO_SIDE_EFFECTS__*/
 export declare function getPackageDefaultSocketCategories(): readonly string[];
-// Package extensions.
-/*@__NO_SIDE_EFFECTS__*/
 export declare function getPackageExtensions(): Iterable<[string, unknown]>;
-// NPM lifecycle event.
-/*@__NO_SIDE_EFFECTS__*/
-export declare function getNpmLifecycleEvent(): string | undefined;
-// Lifecycle script names.
-/*@__NO_SIDE_EFFECTS__*/
-export declare function getLifecycleScriptNames(): string[];
-// Packument cache.
-/*@__NO_SIDE_EFFECTS__*/
 export declare function getPackumentCache(): Map<string, unknown>;
-// Pacote cache path.
-/*@__NO_SIDE_EFFECTS__*/
 export declare function getPacoteCachePath(): string;

package/dist/constants/packages.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
@@ -33,8 +34,8 @@ __export(packages_exports, {
   LATEST: () => LATEST,
   PACKAGE: () => PACKAGE,
   PACKAGE_DEFAULT_VERSION: () => PACKAGE_DEFAULT_VERSION,
+  clearPackumentCache: () => clearPackumentCache,
   getLifecycleScriptNames: () => getLifecycleScriptNames,
-  getNpmLifecycleEvent: () => getNpmLifecycleEvent,
   getPackageDefaultNodeRange: () => getPackageDefaultNodeRange,
   getPackageDefaultSocketCategories: () => getPackageDefaultSocketCategories,
   getPackageExtensions: () => getPackageExtensions,
@@ -42,13 +43,12 @@ __export(packages_exports, {
   getPacoteCachePath: () => getPacoteCachePath
 });
 module.exports = __toCommonJS(packages_exports);
-var import_npm = require("../env/npm");
+var import_pacote = __toESM(require("../external/pacote"));
+var import_package_extensions = require("../package-extensions");
+var import_normalize = require("../paths/normalize");
 var import_lifecycle_script_names = require("./lifecycle-script-names");
 var import_package_default_node_range = require("./package-default-node-range");
 var import_package_default_socket_categories = require("./package-default-socket-categories");
-var import_package_extensions = require("../package-extensions");
-var import_pacote = __toESM(require("../external/pacote"));
-var import_normalize = require("../paths/normalize");
 let _lifecycleScriptNames;
 let _packageDefaultNodeRange;
 let _packageDefaultSocketCategories;
@@ -59,6 +59,18 @@ const PACKAGE = "package";
 const AT_LATEST = "@latest";
 const LATEST = "latest";
 const PACKAGE_DEFAULT_VERSION = "1.0.0";
+function clearPackumentCache() {
+  if (_packumentCache !== void 0) {
+    _packumentCache.clear();
+  }
+}
+// @__NO_SIDE_EFFECTS__
+function getLifecycleScriptNames() {
+  if (_lifecycleScriptNames === void 0) {
+    _lifecycleScriptNames = Array.from(import_lifecycle_script_names.lifecycleScriptNames);
+  }
+  return _lifecycleScriptNames;
+}
 // @__NO_SIDE_EFFECTS__
 function getPackageDefaultNodeRange() {
   if (_packageDefaultNodeRange === void 0) {
@@ -80,21 +92,24 @@ function getPackageExtensions() {
   }
   return _packageExtensions;
 }
-// @__NO_SIDE_EFFECTS__
-function getNpmLifecycleEvent() {
-  return (0, import_npm.getNpmLifecycleEvent)();
-}
-// @__NO_SIDE_EFFECTS__
-function getLifecycleScriptNames() {
-  if (_lifecycleScriptNames === void 0) {
-    _lifecycleScriptNames = Array.from(import_lifecycle_script_names.lifecycleScriptNames);
+const PACKUMENT_CACHE_MAX = 500;
+class BoundedPackumentCache extends Map {
+  set(key, value) {
+    if (this.has(key)) {
+      this.delete(key);
+    } else if (this.size >= PACKUMENT_CACHE_MAX) {
+      const oldest = this.keys().next().value;
+      if (oldest !== void 0) {
+        this.delete(oldest);
+      }
+    }
+    return super.set(key, value);
   }
-  return _lifecycleScriptNames;
 }
 // @__NO_SIDE_EFFECTS__
 function getPackumentCache() {
   if (_packumentCache === void 0) {
-    _packumentCache = /* @__PURE__ */ new Map();
+    _packumentCache = new BoundedPackumentCache();
   }
   return _packumentCache;
 }
@@ -124,8 +139,8 @@ function getPacoteCachePath() {
   LATEST,
   PACKAGE,
   PACKAGE_DEFAULT_VERSION,
+  clearPackumentCache,
   getLifecycleScriptNames,
-  getNpmLifecycleEvent,
   getPackageDefaultNodeRange,
   getPackageDefaultSocketCategories,
   getPackageExtensions,

package/dist/constants/platform.d.ts

@@ -1,3 +1,4 @@
+/** @fileoverview Platform detection and OS-specific constants. */
 /**
  * CPU architecture type.
  */
@@ -18,10 +19,8 @@ export declare function getArch(): Arch;
  * Get the current platform (memoized).
  */
 export declare function getPlatform(): Platform;
-// Platform detection (memoized at module load).
 export declare const DARWIN: boolean;
 export declare const WIN32: boolean;
-// File permission modes.
 export declare const S_IXUSR = 64;
 export declare const S_IXGRP = 8;
 export declare const S_IXOTH = 1;

package/dist/constants/platform.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
@@ -32,7 +33,7 @@ let _os;
 // @__NO_SIDE_EFFECTS__
 function getOs() {
   if (_os === void 0) {
-    _os = require("os");
+    _os = require("node:os");
   }
   return _os;
 }

package/dist/constants/process.d.ts

@@ -1,2 +1,20 @@
+/**
+ * @fileoverview Process control helpers.
+ * Lazily creates and exposes a shared `AbortController` and its `AbortSignal`
+ * so cooperating modules can coordinate cancellation from a single source.
+ */
+/**
+ * Get the process-scoped shared `AbortController` singleton.
+ * Cooperating modules use this to coordinate cancellation across the library.
+ *
+ * @returns The lazily-created shared `AbortController` instance.
+ */
 export declare function getAbortController(): AbortController;
+/**
+ * Get the process-scoped shared `AbortSignal` singleton.
+ * This is the `signal` property of {@link getAbortController}'s controller and
+ * is intended to be passed to APIs that accept an `AbortSignal`.
+ *
+ * @returns The shared `AbortSignal` instance.
+ */
 export declare function getAbortSignal(): AbortSignal;

package/dist/constants/process.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;

package/dist/constants/socket.d.ts

@@ -1,12 +1,12 @@
 /**
- * Socket.dev APIs, scopes, organizations, and application names.
+ * @fileoverview Socket.dev branding and identifier constants.
+ * Centralizes API base URLs, the public API key, website/docs URLs, npm
+ * scopes, GitHub org/repo names, and app name strings used across the
+ * Socket toolchain.
  */
-// Socket.dev API.
 export declare const SOCKET_API_BASE_URL = "https://api.socket.dev/v0";
 export declare const SOCKET_PUBLIC_API_KEY = "sktsec_t_--RAN5U4ivauy4w37-6aoKyYPDt5ZbaT5JBVMqiwKo_api";
-// Alias for backward compatibility.
 export declare const SOCKET_PUBLIC_API_TOKEN = "sktsec_t_--RAN5U4ivauy4w37-6aoKyYPDt5ZbaT5JBVMqiwKo_api";
-// Socket.dev URLs.
 export declare const SOCKET_WEBSITE_URL = "https://socket.dev";
 export declare const SOCKET_CONTACT_URL = "https://socket.dev/contact";
 export declare const SOCKET_DASHBOARD_URL = "https://socket.dev/dashboard";
@@ -15,29 +15,23 @@ export declare const SOCKET_PRICING_URL = "https://socket.dev/pricing";
 export declare const SOCKET_STATUS_URL = "https://status.socket.dev";
 export declare const SOCKET_DOCS_URL = "https://docs.socket.dev";
 export declare const SOCKET_DOCS_CONTACT_URL = "https://docs.socket.dev/docs/contact-support";
-// Socket.dev scopes.
 export declare const SOCKET_REGISTRY_SCOPE = "@socketregistry";
 export declare const SOCKET_SECURITY_SCOPE = "@socketsecurity";
 export declare const SOCKET_OVERRIDE_SCOPE = "@socketoverride";
-// Socket.dev organization and repositories.
 export declare const SOCKET_GITHUB_ORG = "SocketDev";
 export declare const SOCKET_REGISTRY_REPO_NAME = "socket-registry";
 export declare const SOCKET_REGISTRY_PACKAGE_NAME = "@socketsecurity/registry";
 export declare const SOCKET_REGISTRY_NPM_ORG = "socketregistry";
-// Socket.dev application names.
 export declare const SOCKET_CLI_APP_NAME = "socket";
 export declare const SOCKET_DLX_APP_NAME = "dlx";
 export declare const SOCKET_FIREWALL_APP_NAME = "sfw";
 export declare const SOCKET_REGISTRY_APP_NAME = "registry";
 export declare const SOCKET_APP_PREFIX = "_";
-// Socket.dev lib.
 export declare const SOCKET_LIB_NAME = "@socketsecurity/lib";
 export declare const SOCKET_LIB_VERSION: string;
 export declare const SOCKET_LIB_URL = "https://github.com/SocketDev/socket-lib";
 export declare const SOCKET_LIB_USER_AGENT: string;
-// Socket.dev IPC.
 export declare const SOCKET_IPC_HANDSHAKE = "SOCKET_IPC_HANDSHAKE";
-// Socket.dev cache and registry.
 export declare const CACHE_SOCKET_API_DIR = "socket-api";
 export declare const REGISTRY = "registry";
 export declare const REGISTRY_SCOPE_DELIMITER = "__";

package/dist/constants/socket.js

@@ -1,5 +1,6 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
+"use strict";
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
@@ -76,7 +77,7 @@ const SOCKET_FIREWALL_APP_NAME = "sfw";
 const SOCKET_REGISTRY_APP_NAME = "registry";
 const SOCKET_APP_PREFIX = "_";
 const SOCKET_LIB_NAME = "@socketsecurity/lib";
-const SOCKET_LIB_VERSION = "5.18.1";
+const SOCKET_LIB_VERSION = "5.19.0";
 const SOCKET_LIB_URL = "https://github.com/SocketDev/socket-lib";
 const SOCKET_LIB_USER_AGENT = `socketsecurity-lib/${SOCKET_LIB_VERSION} (${SOCKET_LIB_URL})`;
 const SOCKET_IPC_HANDSHAKE = "SOCKET_IPC_HANDSHAKE";