@socketsecurity/lib 5.23.0 → 5.25.0

package/dist/process-lock.js

@@ -87,8 +87,8 @@ class ProcessLockManager {
         const now = Date.now() / 1e3;
         fs.utimesSync(lockPath, now, now);
       }
-    } catch (error) {
-      logger.warn(`Failed to touch lock ${lockPath}: ${(0, import_errors.errorMessage)(error)}`);
+    } catch (e) {
+      logger.warn(`Failed to touch lock ${lockPath}: ${(0, import_errors.errorMessage)(e)}`);
     }
   }
   /**
@@ -191,8 +191,8 @@ class ProcessLockManager {
           this.activeLocks.add(lockPath);
           this.startTouchTimer(lockPath, touchIntervalMs);
           return () => this.release(lockPath);
-        } catch (error) {
-          const code = error.code;
+        } catch (e) {
+          const code = e.code;
           if (code === "EEXIST") {
             if (this.isStale(lockPath, staleMs)) {
               throw new Error(`Stale lock detected: ${lockPath}`);
@@ -202,13 +202,13 @@ class ProcessLockManager {
           if (code === "EACCES" || code === "EPERM") {
             throw new Error(
               `Permission denied creating lock: ${lockPath}. Check directory permissions or run with appropriate access.`,
-              { cause: error }
+              { cause: e }
             );
           }
           if (code === "EROFS") {
             throw new Error(
               `Cannot create lock on read-only filesystem: ${lockPath}`,
-              { cause: error }
+              { cause: e }
             );
           }
           if (code === "ENOTDIR") {
@@ -225,7 +225,7 @@ To resolve:
   1. Check if "${parentDir}" contains a file instead of a directory
   2. Remove any conflicting files in the path
   3. Ensure the full parent directory structure exists`,
-              { cause: error }
+              { cause: e }
             );
           }
           if (code === "ENOENT") {
@@ -241,11 +241,11 @@ To resolve:
   1. Ensure the parent directory "${parentDir}" exists
   2. Create the directory structure: mkdir -p "${parentDir}"
   3. Check filesystem permissions allow directory creation`,
-              { cause: error }
+              { cause: e }
             );
           }
           throw new Error(`Failed to acquire lock: ${lockPath}`, {
-            cause: error
+            cause: e
           });
         }
       },
@@ -275,8 +275,8 @@ To resolve:
         (0, import_fs.safeDeleteSync)(lockPath, { recursive: true });
       }
       this.activeLocks.delete(lockPath);
-    } catch (error) {
-      logger.warn(`Failed to release lock ${lockPath}: ${(0, import_errors.errorMessage)(error)}`);
+    } catch (e) {
+      logger.warn(`Failed to release lock ${lockPath}: ${(0, import_errors.errorMessage)(e)}`);
     }
   }
   /**

package/dist/releases/github.js

@@ -124,9 +124,9 @@ async function downloadAndExtractArchive(tag, assetPattern, outputDir, repoConfi
         if (!quiet) {
           logger.info("Cleaned up temporary archive file");
         }
-      } catch (error) {
+      } catch (e) {
         if (!quiet) {
-          logger.warn(`Failed to cleanup archive file: ${error}`);
+          logger.warn(`Failed to cleanup archive file: ${e}`);
         }
       }
     }
@@ -160,9 +160,9 @@ async function downloadAndExtractZip(tag, assetPattern, outputDir, repoConfig, o
         if (!quiet) {
           logger.info("Cleaned up temporary zip file");
         }
-      } catch (error) {
+      } catch (e) {
         if (!quiet) {
-          logger.warn(`Failed to cleanup zip file: ${error}`);
+          logger.warn(`Failed to cleanup zip file: ${e}`);
         }
       }
     }

package/dist/signal-exit.js

@@ -26,7 +26,7 @@ __export(signal_exit_exports, {
   unload: () => unload
 });
 module.exports = __toCommonJS(signal_exit_exports);
-const ReflectApply = Reflect.apply;
+var import_primordials = require("./primordials");
 const globalProcess = globalThis.process;
 const originalProcessEmit = globalProcess?.emit;
 const platform = globalProcess?.platform ?? "";
@@ -104,7 +104,7 @@ function processEmit(eventName, exitCode, ...args) {
     } else if (globalProcess) {
       globalProcess.exitCode = actualExitCode;
     }
-    const result = ReflectApply(
+    const result = (0, import_primordials.ReflectApply)(
       originalProcessEmit,
       this,
       [eventName, actualExitCode, ...args]
@@ -114,7 +114,7 @@ function processEmit(eventName, exitCode, ...args) {
     /* @__PURE__ */ emit("afterexit", numExitCode, null);
     return result;
   }
-  return ReflectApply(
+  return (0, import_primordials.ReflectApply)(
     originalProcessEmit,
     this,
     [eventName, exitCode, ...args]
@@ -128,7 +128,7 @@ function processReallyExit(code) {
   }
   /* @__PURE__ */ emit("exit", exitCode, null);
   /* @__PURE__ */ emit("afterexit", exitCode, null);
-  ReflectApply(
+  (0, import_primordials.ReflectApply)(
     originalProcessReallyExit,
     globalProcess,
     [exitCode]

package/dist/spawn.d.ts

@@ -97,10 +97,10 @@ export type PromiseSpawnResult = Promise<{
  * @example
  * try {
  *   await spawn('exit', ['1'])
- * } catch (error) {
- *   if (isSpawnError(error)) {
- *     console.error(`Command failed with code ${error.code}`)
- *     console.error(`stderr: ${error.stderr}`)
+ * } catch (e) {
+ *   if (isSpawnError(e)) {
+ *     console.error(`Command failed with code ${e.code}`)
+ *     console.error(`stderr: ${e.stderr}`)
  *   }
  * }
  */
@@ -302,8 +302,8 @@ export type SpawnSyncOptions = Omit<SpawnOptions, 'spinner'>;
  * ```typescript
  * try {
  *   await spawn('git', ['status'])
- * } catch (err) {
- *   throw enhanceSpawnError(err)
+ * } catch (e) {
+ *   throw enhanceSpawnError(e)
  * }
  * ```
  */
@@ -318,9 +318,9 @@ export declare function enhanceSpawnError(error: unknown): unknown;
  * @example
  * try {
  *   await spawn('nonexistent-command')
- * } catch (error) {
- *   if (isSpawnError(error)) {
- *     console.error(`Spawn failed: ${error.code}`)
+ * } catch (e) {
+ *   if (isSpawnError(e)) {
+ *     console.error(`Spawn failed: ${e.code}`)
  *   }
  * }
  */
@@ -401,10 +401,10 @@ export declare function isStdioType(stdio: string | string[], type?: StdioType |
  * // Handle errors with exit codes
  * try {
  *   await spawn('exit', ['1'])
- * } catch (error) {
- *   if (isSpawnError(error)) {
- *     console.error(`Failed with code ${error.code}`)
- *     console.error(error.stderr)
+ * } catch (e) {
+ *   if (isSpawnError(e)) {
+ *     console.error(`Failed with code ${e.code}`)
+ *     console.error(e.stderr)
  *   }
  * }
  */

package/dist/stdio/stderr.d.ts

@@ -124,8 +124,8 @@ export declare function writeErrorLine(text?: string): void;
  * ```ts
  * try {
  *   throw new Error('Something went wrong')
- * } catch (err) {
- *   writeStackTrace(err as Error)
+ * } catch (e) {
+ *   writeStackTrace(e as Error)
  * }
  * ```
  */

package/dist/suppress-warnings.js

@@ -38,7 +38,7 @@ __export(suppress_warnings_exports, {
 });
 module.exports = __toCommonJS(suppress_warnings_exports);
 var import_node_process = __toESM(require("node:process"));
-const { apply: ReflectApply } = Reflect;
+var import_primordials = require("./primordials");
 let originalEmitWarning;
 const suppressedWarnings = /* @__PURE__ */ new Set();
 function setupSuppression() {
@@ -57,7 +57,7 @@ function setupSuppression() {
           return;
         }
       }
-      return ReflectApply(
+      return (0, import_primordials.ReflectApply)(
         originalEmitWarning,
         import_node_process.default,
         [warning, ...args]

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/lib",
-  "version": "5.23.0",
+  "version": "5.25.0",
   "packageManager": "pnpm@11.0.0-rc.5",
   "license": "MIT",
   "description": "Core utilities and infrastructure for Socket.dev security tools",
@@ -351,10 +351,6 @@
       "types": "./dist/env/socket-cli.d.ts",
       "default": "./dist/env/socket-cli.js"
     },
-    "./env/socket-cli-shadow": {
-      "types": "./dist/env/socket-cli-shadow.d.ts",
-      "default": "./dist/env/socket-cli-shadow.js"
-    },
     "./env/temp-dir": {
       "types": "./dist/env/temp-dir.d.ts",
       "default": "./dist/env/temp-dir.js"
@@ -523,6 +519,10 @@
       "types": "./dist/performance.d.ts",
       "default": "./dist/performance.js"
     },
+    "./primordials": {
+      "types": "./dist/primordials.d.ts",
+      "default": "./dist/primordials.js"
+    },
     "./process-lock": {
       "types": "./dist/process-lock.d.ts",
       "default": "./dist/process-lock.js"
@@ -679,7 +679,8 @@
     "./package.json": "./package.json",
     "./tsconfig.dts.json": "./tsconfig.dts.json",
     "./tsconfig.json": "./tsconfig.json",
-    "./tsconfig.test.json": "./tsconfig.test.json"
+    "./tsconfig.test.json": "./tsconfig.test.json",
+    "./xport.schema.json": "./xport.schema.json"
   },
   "files": [
     "dist",
@@ -694,13 +695,15 @@
   "scripts": {
     "build": "node scripts/build/main.mts",
     "check": "node scripts/check.mts",
+    "check:paths": "node scripts/check-paths.mts",
     "clean": "node scripts/build/clean.mts",
     "cover": "node scripts/test/cover.mts",
     "dev": "node scripts/build/main.mts --watch",
     "fix": "node scripts/fix.mts",
     "lint": "node scripts/lint.mts",
+    "prim": "node tools/prim/bin/prim.mts",
     "security": "agentshield scan && { command -v zizmor >/dev/null && zizmor .github/ || echo 'zizmor not installed — run pnpm run setup to install'; }",
-    "prepare": "husky",
+    "prepare": "husky && node scripts/build/main.mts --quiet",
     "prepublishOnly": "pnpm run build",
     "test": "node scripts/test/main.mts",
     "update": "node scripts/update.mts"
@@ -724,7 +727,7 @@
     "@socketregistry/is-unicode-supported": "1.0.5",
     "@socketregistry/packageurl-js": "1.4.2",
     "@socketregistry/yocto-spinner": "1.0.25",
-    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.21.0",
+    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.24.0",
     "@types/node": "24.9.2",
     "@typescript/native-preview": "7.0.0-dev.20260415.1",
     "@vitest/coverage-v8": "4.0.3",
@@ -756,6 +759,7 @@
     "pacote": "21.5.0",
     "picomatch": "4.0.4",
     "pony-cause": "2.1.11",
+    "prim": "workspace:*",
     "semver": "7.7.2",
     "signal-exit": "4.1.0",
     "spdx-correct": "3.2.0",

package/dist/env/socket-cli-shadow.d.ts

@@ -1,77 +0,0 @@
-/**
- * @fileoverview Socket CLI shadow mode environment variables.
- * Provides typed getters for SOCKET_CLI_SHADOW_* environment variables.
- */
-/**
- * Controls Socket CLI shadow mode risk acceptance.
- *
- * @returns Whether to accept all risks in shadow mode
- *
- * @example
- * ```typescript
- * import { getSocketCliShadowAcceptRisks } from '@socketsecurity/lib/env/socket-cli-shadow'
- *
- * if (getSocketCliShadowAcceptRisks()) {
- *   console.log('Shadow mode risks accepted')
- * }
- * ```
- */
-export declare function getSocketCliShadowAcceptRisks(): boolean;
-/**
- * API token for Socket CLI shadow mode.
- *
- * @returns Shadow mode API token or undefined
- *
- * @example
- * ```typescript
- * import { getSocketCliShadowApiToken } from '@socketsecurity/lib/env/socket-cli-shadow'
- *
- * const token = getSocketCliShadowApiToken()
- * // e.g. 'sk_shadow_abc123...' or undefined
- * ```
- */
-export declare function getSocketCliShadowApiToken(): string | undefined;
-/**
- * Binary path for Socket CLI shadow mode.
- *
- * @returns Shadow mode binary path or undefined
- *
- * @example
- * ```typescript
- * import { getSocketCliShadowBin } from '@socketsecurity/lib/env/socket-cli-shadow'
- *
- * const bin = getSocketCliShadowBin()
- * // e.g. '/usr/local/bin/socket-shadow' or undefined
- * ```
- */
-export declare function getSocketCliShadowBin(): string | undefined;
-/**
- * Controls Socket CLI shadow mode progress display.
- *
- * @returns Whether to show progress in shadow mode
- *
- * @example
- * ```typescript
- * import { getSocketCliShadowProgress } from '@socketsecurity/lib/env/socket-cli-shadow'
- *
- * if (getSocketCliShadowProgress()) {
- *   console.log('Shadow mode progress enabled')
- * }
- * ```
- */
-export declare function getSocketCliShadowProgress(): boolean;
-/**
- * Controls Socket CLI shadow mode silent operation.
- *
- * @returns Whether shadow mode should operate silently
- *
- * @example
- * ```typescript
- * import { getSocketCliShadowSilent } from '@socketsecurity/lib/env/socket-cli-shadow'
- *
- * if (getSocketCliShadowSilent()) {
- *   console.log('Shadow mode is silent')
- * }
- * ```
- */
-export declare function getSocketCliShadowSilent(): boolean;

package/dist/env/socket-cli-shadow.js

@@ -1,59 +0,0 @@
-"use strict";
-/* Socket Lib - Built with esbuild */
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var socket_cli_shadow_exports = {};
-__export(socket_cli_shadow_exports, {
-  getSocketCliShadowAcceptRisks: () => getSocketCliShadowAcceptRisks,
-  getSocketCliShadowApiToken: () => getSocketCliShadowApiToken,
-  getSocketCliShadowBin: () => getSocketCliShadowBin,
-  getSocketCliShadowProgress: () => getSocketCliShadowProgress,
-  getSocketCliShadowSilent: () => getSocketCliShadowSilent
-});
-module.exports = __toCommonJS(socket_cli_shadow_exports);
-var import_helpers = require("./helpers");
-var import_rewire = require("./rewire");
-// @__NO_SIDE_EFFECTS__
-function getSocketCliShadowAcceptRisks() {
-  return (0, import_helpers.envAsBoolean)((0, import_rewire.getEnvValue)("SOCKET_CLI_SHADOW_ACCEPT_RISKS"));
-}
-// @__NO_SIDE_EFFECTS__
-function getSocketCliShadowApiToken() {
-  return (0, import_rewire.getEnvValue)("SOCKET_CLI_SHADOW_API_TOKEN");
-}
-// @__NO_SIDE_EFFECTS__
-function getSocketCliShadowBin() {
-  return (0, import_rewire.getEnvValue)("SOCKET_CLI_SHADOW_BIN");
-}
-// @__NO_SIDE_EFFECTS__
-function getSocketCliShadowProgress() {
-  return (0, import_helpers.envAsBoolean)((0, import_rewire.getEnvValue)("SOCKET_CLI_SHADOW_PROGRESS"));
-}
-// @__NO_SIDE_EFFECTS__
-function getSocketCliShadowSilent() {
-  return (0, import_helpers.envAsBoolean)((0, import_rewire.getEnvValue)("SOCKET_CLI_SHADOW_SILENT"));
-}
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  getSocketCliShadowAcceptRisks,
-  getSocketCliShadowApiToken,
-  getSocketCliShadowBin,
-  getSocketCliShadowProgress,
-  getSocketCliShadowSilent
-});