npm - @socketsecurity/lib - Versions diffs - 5.25.1 → 5.26.1 - Mend

@socketsecurity/lib 5.25.1 → 5.26.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (147) hide show

package/CHANGELOG.md +344 -1184
package/README.md +1 -1
package/dist/abort.js +7 -6
package/dist/agent.js +16 -15
package/dist/ansi.js +3 -2
package/dist/archives.js +18 -17
package/dist/argv/flags.js +29 -28
package/dist/argv/parse.js +4 -3
package/dist/arrays.js +3 -2
package/dist/bin.js +12 -11
package/dist/cacache.js +16 -11
package/dist/cache-with-ttl.js +26 -21
package/dist/colors.js +2 -1
package/dist/constants/licenses.js +2 -1
package/dist/constants/lifecycle-script-names.js +2 -1
package/dist/constants/maintained-node-versions.js +2 -1
package/dist/constants/node.js +4 -3
package/dist/constants/package-default-socket-categories.js +2 -1
package/dist/constants/packages.js +4 -3
package/dist/constants/socket.js +1 -1
package/dist/cover/code.js +9 -8
package/dist/cover/formatters.js +12 -11
package/dist/cover/type.js +5 -4
package/dist/crypto.d.ts +36 -0
package/dist/{effects/ultra.js → crypto.js} +33 -37
package/dist/debug.js +12 -15
package/dist/dlx/arborist.js +10 -9
package/dist/dlx/binary.js +27 -24
package/dist/dlx/cache.js +2 -10
package/dist/dlx/detect.js +6 -5
package/dist/dlx/integrity.js +13 -11
package/dist/dlx/lockfile.js +7 -6
package/dist/dlx/manifest.js +6 -5
package/dist/dlx/package.js +17 -16
package/dist/dlx/packages.js +6 -5
package/dist/dlx/paths.d.ts +1 -1
package/dist/dlx/paths.js +2 -1
package/dist/effects/pulse-frames.js +4 -3
package/dist/effects/shimmer-keyframes.d.ts +62 -0
package/dist/effects/shimmer-keyframes.js +55 -0
package/dist/effects/shimmer-terminal.d.ts +66 -0
package/dist/effects/shimmer-terminal.js +57 -0
package/dist/effects/shimmer.d.ts +293 -0
package/dist/effects/shimmer.js +180 -0
package/dist/env/rewire.js +4 -3
package/dist/env.js +5 -4
package/dist/errors.js +1 -1
package/dist/external/@npmcli/package-json/lib/read-package.js +10 -10
package/dist/external/@npmcli/package-json.js +372 -372
package/dist/external/@npmcli/promise-spawn.js +24 -24
package/dist/external/@socketregistry/packageurl-js.js +19 -18
package/dist/external/@socketregistry/yocto-spinner.js +4 -3
package/dist/external/@yarnpkg/extensions.js +2 -1
package/dist/external/adm-zip.js +70 -70
package/dist/external/debug.js +22 -22
package/dist/external/external-pack.js +45 -45
package/dist/external/fast-sort.js +5 -5
package/dist/external/libnpmexec.js +4 -3
package/dist/external/npm-pack.js +369 -369
package/dist/external/p-map.js +9 -9
package/dist/external/pico-pack.js +190 -190
package/dist/external/pony-cause.js +2 -1
package/dist/external/spdx-pack.js +11 -10
package/dist/external/tar-fs.js +58 -58
package/dist/external/which.js +13 -13
package/dist/external/yargs-parser.js +71 -71
package/dist/fs.js +19 -23
package/dist/git.js +14 -13
package/dist/github.d.ts +34 -0
package/dist/github.js +248 -23
package/dist/globs.d.ts +20 -0
package/dist/globs.js +134 -25
package/dist/http-request.d.ts +4 -3
package/dist/http-request.js +39 -32
package/dist/ipc-cli.js +2 -1
package/dist/ipc.js +5 -4
package/dist/json/edit.js +4 -3
package/dist/json/format.js +3 -2
package/dist/json/parse.js +7 -6
package/dist/links.js +2 -1
package/dist/logger.js +21 -14
package/dist/memoization.js +16 -15
package/dist/objects.js +2 -2
package/dist/packages/edit.js +8 -7
package/dist/packages/exports.js +17 -16
package/dist/packages/isolation.js +20 -13
package/dist/packages/licenses.js +6 -3
package/dist/packages/manifest.js +2 -1
package/dist/packages/normalize.js +8 -4
package/dist/packages/operations.js +5 -4
package/dist/packages/provenance.js +7 -6
package/dist/packages/specs.js +2 -1
package/dist/packages/validation.js +2 -1
package/dist/paths/normalize.js +32 -40
package/dist/paths/packages.js +2 -1
package/dist/paths/rewire.js +3 -2
package/dist/performance.js +19 -18
package/dist/primordials.d.ts +9 -0
package/dist/primordials.js +17 -0
package/dist/process-lock.js +14 -13
package/dist/promise-queue.js +17 -9
package/dist/promises.d.ts +29 -6
package/dist/promises.js +19 -15
package/dist/regexps.js +9 -8
package/dist/releases/github-api.d.ts +56 -0
package/dist/releases/github-api.js +275 -0
package/dist/releases/github-archives.d.ts +60 -0
package/dist/releases/github-archives.js +136 -0
package/dist/releases/github-assets.d.ts +21 -0
package/dist/releases/github-assets.js +52 -0
package/dist/releases/github-auth.d.ts +16 -0
package/dist/releases/github-auth.js +51 -0
package/dist/releases/github-downloads.d.ts +42 -0
package/dist/releases/github-downloads.js +155 -0
package/dist/releases/github-types.d.ts +66 -0
package/dist/{effects/types.js → releases/github-types.js} +2 -2
package/dist/releases/socket-btm.d.ts +1 -1
package/dist/releases/socket-btm.js +17 -17
package/dist/schema/parse.js +2 -1
package/dist/schema/validate.js +6 -5
package/dist/shadow.js +2 -1
package/dist/signal-exit.js +2 -2
package/dist/spawn.js +45 -35
package/dist/spinner.d.ts +13 -6
package/dist/spinner.js +75 -57
package/dist/ssri.js +8 -7
package/dist/stdio/footer.js +13 -12
package/dist/stdio/header.js +5 -4
package/dist/stdio/progress.js +13 -12
package/dist/strings.js +19 -18
package/dist/suppress-warnings.js +2 -2
package/dist/tables.js +16 -13
package/dist/temporary-executor.js +2 -1
package/dist/themes/context.js +2 -1
package/dist/themes/types.d.ts +1 -1
package/dist/themes/utils.d.ts +8 -3
package/dist/themes/utils.js +29 -5
package/dist/url.js +4 -3
package/package.json +44 -20
package/dist/effects/text-shimmer.d.ts +0 -58
package/dist/effects/text-shimmer.js +0 -192
package/dist/effects/types.d.ts +0 -47
package/dist/effects/ultra.d.ts +0 -22
package/dist/releases/github.d.ts +0 -234
package/dist/releases/github.js +0 -417
package/dist/themes/index.d.ts +0 -49
package/dist/themes/index.js +0 -60

package/dist/effects/ultra.d.ts DELETED Viewed

@@ -1,22 +0,0 @@
-/**
- * @fileoverview Ultrathink rainbow gradient effect.
- * Provides rainbow gradient color generation for shimmer animations.
- * "Ultrathink" is Claude's intensive thinking mode for deep analysis.
- */
-import type { ShimmerColorGradient } from './types';
-/**
- * Rainbow gradient colors used for ultrathink effect.
- * This gradient cycles through the full color spectrum with smooth transitions.
- */
-export declare const RAINBOW_GRADIENT: ShimmerColorGradient;
-/**
- * Generate rainbow gradient colors for any text length.
- * Colors are distributed evenly across the text by cycling through the gradient.
- *
- * @example
- * ```typescript
- * const colors = generateRainbowGradient('Hello'.length)
- * console.log(colors.length) // 5
- * ```
- */
-export declare function generateRainbowGradient(textLength: number): ShimmerColorGradient;

package/dist/releases/github.d.ts DELETED Viewed

@@ -1,234 +0,0 @@
-/**
- * @fileoverview GitHub release download utilities.
- */
-import { type ArchiveFormat } from '../archives';
-/**
- * Pattern for matching release assets.
- * Can be either:
- * - A string with glob pattern syntax
- * - A prefix/suffix pair for explicit matching (backward compatible)
- * - A RegExp for complex patterns
- *
- * String patterns support full glob syntax via picomatch.
- * Examples:
- * - Simple wildcard: yoga-sync-*.mjs matches yoga-sync-abc123.mjs
- * - Complex: models-*.tar.gz matches models-2024-01-15.tar.gz
- * - Prefix wildcard: *-models.tar.gz matches foo-models.tar.gz
- * - Suffix wildcard: yoga-* matches yoga-layout
- * - Brace expansion: {yoga,models}-*.{mjs,js} matches yoga-abc.mjs or models-xyz.js
- *
- * For backward compatibility, prefix/suffix objects are still supported but glob patterns are recommended.
- */
-export type AssetPattern = string | {
-    prefix: string;
-    suffix: string;
-} | RegExp;
-/**
- * Configuration for downloading a GitHub release.
- */
-export interface DownloadGitHubReleaseConfig {
-    /** Asset name on GitHub. */
-    assetName: string;
-    /** Binary filename (e.g., 'node', 'binject'). */
-    binaryName: string;
-    /** Working directory (defaults to process.cwd()). */
-    cwd?: string;
-    /** Download destination directory. @default 'build/downloaded' */
-    downloadDir?: string;
-    /** GitHub repository owner/organization. */
-    owner: string;
-    /** Platform-arch identifier (e.g., 'linux-x64-musl'). */
-    platformArch: string;
-    /** Suppress log messages. @default false */
-    quiet?: boolean;
-    /** Remove macOS quarantine attribute after download. @default true */
-    removeMacOSQuarantine?: boolean;
-    /** GitHub repository name. */
-    repo: string;
-    /** Specific release tag to download. */
-    tag?: string;
-    /** Tool name for directory structure. */
-    toolName: string;
-    /** Tool prefix for finding latest release. */
-    toolPrefix?: string;
-}
-/**
- * Configuration for repository access.
- */
-export interface RepoConfig {
-    /**
-     * GitHub repository owner/organization.
-     */
-    owner: string;
-    /**
-     * GitHub repository name.
-     */
-    repo: string;
-}
-/**
- * Create a matcher function for a pattern using picomatch for glob patterns
- * or simple prefix/suffix matching for object patterns.
- *
- * @param pattern - Pattern to match (string glob, prefix/suffix object, or RegExp)
- * @returns Function that tests if a string matches the pattern
- *
- * @example
- * ```typescript
- * const isMatch = createAssetMatcher('tool-*-linux-x64')
- * isMatch('tool-v1.0-linux-x64')  // true
- * isMatch('tool-v1.0-darwin-arm64')  // false
- * ```
- */
-export declare function createAssetMatcher(pattern: string | {
-    prefix: string;
-    suffix: string;
-} | RegExp): (input: string) => boolean;
-/**
- * Download and extract an archive from a GitHub release.
- * Supports zip, tar, tar.gz, and tgz formats.
- * Automatically handles downloading, extracting, and cleanup.
- *
- * @param tag - Release tag name
- * @param assetPattern - Asset name or pattern (glob string, prefix/suffix object, or RegExp)
- * @param outputDir - Directory to extract the archive contents to
- * @param repoConfig - Repository configuration (owner/repo)
- * @param options - Additional options
- * @param options.quiet - Suppress log messages
- * @param options.cleanup - Remove downloaded archive after extraction (default: true)
- * @param options.strip - Strip leading path components (like tar --strip-components)
- * @param options.format - Archive format (auto-detected if not specified)
- * @returns Path to the extraction directory
- *
- * @example
- * ```typescript
- * const outputDir = await downloadAndExtractArchive(
- *   'v1.0.0', 'data-*.tar.gz', '/tmp/data',
- *   { owner: 'SocketDev', repo: 'socket-btm' },
- * )
- * ```
- */
-export declare function downloadAndExtractArchive(tag: string, assetPattern: string | AssetPattern, outputDir: string, repoConfig: RepoConfig, options?: {
-    cleanup?: boolean;
-    format?: ArchiveFormat;
-    quiet?: boolean;
-    strip?: number;
-}): Promise<string>;
-/**
- * Download and extract a zip file from a GitHub release.
- * Automatically handles downloading, extracting, and cleanup.
- *
- * @param tag - Release tag name
- * @param assetPattern - Asset name or pattern (glob string, prefix/suffix object, or RegExp)
- * @param outputDir - Directory to extract the zip contents to
- * @param repoConfig - Repository configuration (owner/repo)
- * @param options - Additional options
- * @param options.quiet - Suppress log messages
- * @param options.cleanup - Remove downloaded zip file after extraction (default: true)
- * @returns Path to the extraction directory
- *
- * @example
- * ```typescript
- * const outputDir = await downloadAndExtractZip(
- *   'v1.0.0', 'models-*.zip', '/tmp/models',
- *   { owner: 'SocketDev', repo: 'socket-btm' },
- * )
- * ```
- */
-export declare function downloadAndExtractZip(tag: string, assetPattern: string | AssetPattern, outputDir: string, repoConfig: RepoConfig, options?: {
-    cleanup?: boolean;
-    quiet?: boolean;
-}): Promise<string>;
-/**
- * Download a binary from any GitHub repository with version caching.
- *
- * @param config - Download configuration
- * @returns Path to the downloaded binary
- *
- * @example
- * ```typescript
- * const binaryPath = await downloadGitHubRelease({
- *   owner: 'SocketDev', repo: 'socket-btm',
- *   toolName: 'lief', toolPrefix: 'lief-',
- *   assetName: 'lief-linux-x64', binaryName: 'lief',
- *   platformArch: 'linux-x64',
- * })
- * ```
- */
-export declare function downloadGitHubRelease(config: DownloadGitHubReleaseConfig): Promise<string>;
-/**
- * Download a specific release asset.
- * Supports pattern matching for dynamic asset discovery.
- *
- * @param tag - Release tag name
- * @param assetPattern - Asset name or pattern (glob string, prefix/suffix object, or RegExp)
- * @param outputPath - Path to write the downloaded file
- * @param repoConfig - Repository configuration (owner/repo)
- * @param options - Additional options
- *
- * @example
- * ```typescript
- * await downloadReleaseAsset(
- *   'v1.0.0', 'tool-linux-x64', '/tmp/tool',
- *   { owner: 'SocketDev', repo: 'socket-btm' },
- * )
- * ```
- */
-export declare function downloadReleaseAsset(tag: string, assetPattern: string | AssetPattern, outputPath: string, repoConfig: RepoConfig, options?: {
-    quiet?: boolean;
-}): Promise<void>;
-/**
- * Get GitHub authentication headers if token is available.
- * Checks GH_TOKEN or GITHUB_TOKEN environment variables.
- *
- * @returns Headers object with Authorization header if token exists.
- *
- * @example
- * ```typescript
- * const headers = getAuthHeaders()
- * // { Accept: 'application/vnd.github+json', Authorization: 'Bearer ...' }
- * ```
- */
-export declare function getAuthHeaders(): Record<string, string>;
-/**
- * Get latest release tag matching a tool prefix.
- * Optionally filter by releases containing a matching asset.
- *
- * @param toolPrefix - Tool name prefix to search for (e.g., 'node-smol-')
- * @param repoConfig - Repository configuration (owner/repo)
- * @param options - Additional options
- * @param options.assetPattern - Optional pattern to filter releases by matching asset
- * @returns Latest release tag or null if not found
- *
- * @example
- * ```typescript
- * const tag = await getLatestRelease('lief-', {
- *   owner: 'SocketDev', repo: 'socket-btm',
- * })
- * console.log(tag) // 'lief-2025-01-15-abc1234'
- * ```
- */
-export declare function getLatestRelease(toolPrefix: string, repoConfig: RepoConfig, options?: {
-    assetPattern?: AssetPattern;
-    quiet?: boolean;
-}): Promise<string | null>;
-/**
- * Get download URL for a specific release asset.
- * Supports pattern matching for dynamic asset discovery.
- *
- * @param tag - Release tag name
- * @param assetPattern - Asset name or pattern (glob string, prefix/suffix object, or RegExp)
- * @param repoConfig - Repository configuration (owner/repo)
- * @param options - Additional options
- * @returns Browser download URL for the asset
- *
- * @example
- * ```typescript
- * const url = await getReleaseAssetUrl(
- *   'v1.0.0', 'tool-linux-x64',
- *   { owner: 'SocketDev', repo: 'socket-btm' },
- * )
- * ```
- */
-export declare function getReleaseAssetUrl(tag: string, assetPattern: string | AssetPattern, repoConfig: RepoConfig, options?: {
-    quiet?: boolean;
-}): Promise<string | null>;

package/dist/releases/github.js DELETED Viewed

@@ -1,417 +0,0 @@
-"use strict";
-/* Socket Lib - Built with esbuild */
-"use strict";
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-var github_exports = {};
-__export(github_exports, {
-  createAssetMatcher: () => createAssetMatcher,
-  downloadAndExtractArchive: () => downloadAndExtractArchive,
-  downloadAndExtractZip: () => downloadAndExtractZip,
-  downloadGitHubRelease: () => downloadGitHubRelease,
-  downloadReleaseAsset: () => downloadReleaseAsset,
-  getAuthHeaders: () => getAuthHeaders,
-  getLatestRelease: () => getLatestRelease,
-  getReleaseAssetUrl: () => getReleaseAssetUrl
-});
-module.exports = __toCommonJS(github_exports);
-var import_node_process = __toESM(require("node:process"));
-var import_picomatch = __toESM(require("../external/picomatch"));
-var import_archives = require("../archives");
-var import_errors = require("../errors");
-var import_fs = require("../fs");
-var import_http_request = require("../http-request");
-var import_logger = require("../logger");
-var import_promises = require("../promises");
-var import_spawn = require("../spawn");
-const RETRY_CONFIG = Object.freeze({
-  __proto__: null,
-  // Exponential backoff: delay doubles with each retry (5s, 10s, 20s).
-  backoffFactor: 2,
-  // Initial delay before first retry.
-  baseDelayMs: 5e3,
-  // Maximum number of retry attempts (excluding initial request).
-  retries: 2
-});
-const logger = (0, import_logger.getDefaultLogger)();
-let _fs;
-let _path;
-// @__NO_SIDE_EFFECTS__
-function getFs() {
-  if (_fs === void 0) {
-    _fs = require("node:fs");
-  }
-  return _fs;
-}
-// @__NO_SIDE_EFFECTS__
-function getPath() {
-  if (_path === void 0) {
-    _path = require("node:path");
-  }
-  return _path;
-}
-function createAssetMatcher(pattern) {
-  if (typeof pattern === "string") {
-    const isMatch = (0, import_picomatch.default)(pattern);
-    return (input) => isMatch(input);
-  }
-  if (pattern instanceof RegExp) {
-    return (input) => pattern.test(input);
-  }
-  const { prefix, suffix } = pattern;
-  return (input) => input.startsWith(prefix) && input.endsWith(suffix);
-}
-async function downloadAndExtractArchive(tag, assetPattern, outputDir, repoConfig, options = {}) {
-  const { cleanup = true, format, quiet = false, strip } = options;
-  const path = /* @__PURE__ */ getPath();
-  const fs = /* @__PURE__ */ getFs();
-  await (0, import_fs.safeMkdir)(outputDir);
-  let ext = ".archive";
-  if (format) {
-    ext = format === "tar.gz" ? ".tar.gz" : `.${format}`;
-  } else if (typeof assetPattern === "string") {
-    const detectedFormat = (0, import_archives.detectArchiveFormat)(assetPattern);
-    if (detectedFormat) {
-      ext = detectedFormat === "tar.gz" ? ".tar.gz" : `.${detectedFormat}`;
-    }
-  }
-  const archivePath = path.join(outputDir, `__temp_download__${ext}`);
-  if (!quiet) {
-    logger.info(`Downloading archive from release ${tag}...`);
-  }
-  await downloadReleaseAsset(tag, assetPattern, archivePath, repoConfig, {
-    quiet
-  });
-  if (!quiet) {
-    logger.info(`Extracting archive to ${outputDir}...`);
-  }
-  try {
-    await (0, import_archives.extractArchive)(archivePath, outputDir, { quiet, strip });
-    if (!quiet) {
-      logger.info(`Extracted archive contents to ${outputDir}`);
-    }
-  } catch (cause) {
-    throw new Error(`Failed to extract archive: ${archivePath}`, { cause });
-  } finally {
-    if (cleanup) {
-      try {
-        await fs.promises.unlink(archivePath);
-        if (!quiet) {
-          logger.info("Cleaned up temporary archive file");
-        }
-      } catch (e) {
-        if (!quiet) {
-          logger.warn(`Failed to cleanup archive file: ${e}`);
-        }
-      }
-    }
-  }
-  return outputDir;
-}
-async function downloadAndExtractZip(tag, assetPattern, outputDir, repoConfig, options = {}) {
-  const { cleanup = true, quiet = false } = options;
-  const path = /* @__PURE__ */ getPath();
-  const fs = /* @__PURE__ */ getFs();
-  await (0, import_fs.safeMkdir)(outputDir);
-  const zipPath = path.join(outputDir, "__temp_download__.zip");
-  if (!quiet) {
-    logger.info(`Downloading zip asset from release ${tag}...`);
-  }
-  await downloadReleaseAsset(tag, assetPattern, zipPath, repoConfig, { quiet });
-  if (!quiet) {
-    logger.info(`Extracting zip to ${outputDir}...`);
-  }
-  try {
-    await (0, import_archives.extractArchive)(zipPath, outputDir, { quiet });
-    if (!quiet) {
-      logger.info(`Extracted zip contents to ${outputDir}`);
-    }
-  } catch (cause) {
-    throw new Error(`Failed to extract zip file: ${zipPath}`, { cause });
-  } finally {
-    if (cleanup) {
-      try {
-        await fs.promises.unlink(zipPath);
-        if (!quiet) {
-          logger.info("Cleaned up temporary zip file");
-        }
-      } catch (e) {
-        if (!quiet) {
-          logger.warn(`Failed to cleanup zip file: ${e}`);
-        }
-      }
-    }
-  }
-  return outputDir;
-}
-async function downloadGitHubRelease(config) {
-  const {
-    assetName,
-    binaryName,
-    cwd = import_node_process.default.cwd(),
-    downloadDir = "build/downloaded",
-    owner,
-    platformArch,
-    quiet = false,
-    removeMacOSQuarantine = true,
-    repo,
-    tag: explicitTag,
-    toolName,
-    toolPrefix
-  } = config;
-  let tag;
-  if (explicitTag) {
-    tag = explicitTag;
-  } else if (toolPrefix) {
-    const latestTag = await getLatestRelease(
-      toolPrefix,
-      { owner, repo },
-      { quiet }
-    );
-    if (!latestTag) {
-      throw new Error(`No ${toolPrefix} release found in ${owner}/${repo}`);
-    }
-    tag = latestTag;
-  } else {
-    throw new Error("Either toolPrefix or tag must be provided");
-  }
-  const path = /* @__PURE__ */ getPath();
-  const resolvedDownloadDir = path.isAbsolute(downloadDir) ? downloadDir : path.join(cwd, downloadDir);
-  const binaryDir = resolvedDownloadDir;
-  const binaryPath = path.join(binaryDir, binaryName);
-  const versionPath = path.join(binaryDir, ".version");
-  const fs = /* @__PURE__ */ getFs();
-  if (fs.existsSync(versionPath) && fs.existsSync(binaryPath)) {
-    const cachedVersion = (await fs.promises.readFile(versionPath, "utf8")).trim();
-    if (cachedVersion === tag && fs.existsSync(binaryPath)) {
-      if (!quiet) {
-        logger.info(`Using cached ${toolName} (${platformArch}): ${binaryPath}`);
-      }
-      return binaryPath;
-    }
-  }
-  if (!quiet) {
-    logger.info(`Downloading ${toolName} for ${platformArch}...`);
-  }
-  await downloadReleaseAsset(
-    tag,
-    assetName,
-    binaryPath,
-    { owner, repo },
-    { quiet }
-  );
-  const isWindows = binaryName.endsWith(".exe");
-  if (!isWindows) {
-    fs.chmodSync(binaryPath, 493);
-    if (removeMacOSQuarantine && import_node_process.default.platform === "darwin" && platformArch.startsWith("darwin")) {
-      try {
-        await (0, import_spawn.spawn)("xattr", ["-d", "com.apple.quarantine", binaryPath], {
-          stdio: "ignore"
-        });
-      } catch {
-      }
-    }
-  }
-  await fs.promises.writeFile(versionPath, tag, "utf8");
-  if (!quiet) {
-    logger.info(`Downloaded ${toolName} to ${binaryPath}`);
-  }
-  return binaryPath;
-}
-async function downloadReleaseAsset(tag, assetPattern, outputPath, repoConfig, options = {}) {
-  const { owner, repo } = repoConfig;
-  const { quiet = false } = options;
-  const downloadUrl = await getReleaseAssetUrl(
-    tag,
-    assetPattern,
-    { owner, repo },
-    { quiet }
-  );
-  if (!downloadUrl) {
-    const patternDesc = typeof assetPattern === "string" ? assetPattern : "matching pattern";
-    throw new Error(`Asset ${patternDesc} not found in release ${tag}`);
-  }
-  const path = /* @__PURE__ */ getPath();
-  await (0, import_fs.safeMkdir)(path.dirname(outputPath));
-  await (0, import_http_request.httpDownload)(downloadUrl, outputPath, {
-    logger: quiet ? void 0 : logger,
-    progressInterval: 10,
-    retries: 2,
-    retryDelay: 5e3
-  });
-}
-function getAuthHeaders() {
-  const token = import_node_process.default.env["GH_TOKEN"] || import_node_process.default.env["GITHUB_TOKEN"];
-  const headers = {
-    Accept: "application/vnd.github+json",
-    "X-GitHub-Api-Version": "2022-11-28"
-  };
-  if (token) {
-    headers["Authorization"] = `Bearer ${token}`;
-  }
-  return headers;
-}
-async function getLatestRelease(toolPrefix, repoConfig, options = {}) {
-  const { assetPattern, quiet = false } = options;
-  const { owner, repo } = repoConfig;
-  const isMatch = assetPattern ? createAssetMatcher(assetPattern) : void 0;
-  return await (0, import_promises.pRetry)(
-    async () => {
-      const response = await (0, import_http_request.httpRequest)(
-        `https://api.github.com/repos/${owner}/${repo}/releases?per_page=100`,
-        {
-          headers: getAuthHeaders()
-        }
-      );
-      if (!response.ok) {
-        throw new Error(`Failed to fetch releases: ${response.status}`);
-      }
-      let releases;
-      try {
-        releases = JSON.parse(response.body.toString("utf8"));
-      } catch (cause) {
-        throw new Error(
-          `Failed to parse GitHub releases response from https://api.github.com/repos/${owner}/${repo}/releases`,
-          { cause }
-        );
-      }
-      const matchingReleases = releases.filter((release) => {
-        const { assets, tag_name: tag2 } = release;
-        if (!tag2.startsWith(toolPrefix)) {
-          return false;
-        }
-        if (!assets || assets.length === 0) {
-          return false;
-        }
-        if (isMatch) {
-          const hasMatchingAsset = assets.some(
-            (a) => isMatch(a.name)
-          );
-          if (!hasMatchingAsset) {
-            return false;
-          }
-        }
-        return true;
-      });
-      if (matchingReleases.length === 0) {
-        if (!quiet) {
-          logger.info(`No ${toolPrefix} release found in latest 100 releases`);
-        }
-        return null;
-      }
-      matchingReleases.sort(
-        (a, b) => new Date(b.published_at).getTime() - new Date(a.published_at).getTime()
-      );
-      const latestRelease = matchingReleases[0];
-      const tag = latestRelease.tag_name;
-      if (!quiet) {
-        logger.info(`Found release: ${tag}`);
-      }
-      return tag;
-    },
-    {
-      ...RETRY_CONFIG,
-      onRetry: (attempt, error) => {
-        if (!quiet) {
-          logger.info(
-            `Retry attempt ${attempt + 1}/${RETRY_CONFIG.retries + 1} for ${toolPrefix} release...`
-          );
-          logger.warn(
-            `Attempt ${attempt + 1}/${RETRY_CONFIG.retries + 1} failed: ${(0, import_errors.errorMessage)(error)}`
-          );
-        }
-        return void 0;
-      }
-    }
-  ) ?? null;
-}
-async function getReleaseAssetUrl(tag, assetPattern, repoConfig, options = {}) {
-  const { owner, repo } = repoConfig;
-  const { quiet = false } = options;
-  const isMatch = typeof assetPattern === "string" && !assetPattern.includes("*") && !assetPattern.includes("{") ? (input) => input === assetPattern : createAssetMatcher(assetPattern);
-  return await (0, import_promises.pRetry)(
-    async () => {
-      const response = await (0, import_http_request.httpRequest)(
-        `https://api.github.com/repos/${owner}/${repo}/releases/tags/${tag}`,
-        {
-          headers: getAuthHeaders()
-        }
-      );
-      if (!response.ok) {
-        throw new Error(`Failed to fetch release ${tag}: ${response.status}`);
-      }
-      let release;
-      try {
-        release = JSON.parse(response.body.toString("utf8"));
-      } catch (cause) {
-        throw new Error(
-          `Failed to parse GitHub release response for tag ${tag}`,
-          { cause }
-        );
-      }
-      const assets = release.assets;
-      if (!Array.isArray(assets)) {
-        throw new Error(`Release ${tag} has no assets`);
-      }
-      const asset = assets.find((a) => isMatch(a.name));
-      if (!asset) {
-        const patternDesc = typeof assetPattern === "string" ? assetPattern : "matching pattern";
-        throw new Error(`Asset ${patternDesc} not found in release ${tag}`);
-      }
-      if (!quiet) {
-        logger.info(`Found asset: ${asset.name}`);
-      }
-      return asset.browser_download_url;
-    },
-    {
-      ...RETRY_CONFIG,
-      onRetry: (attempt, error) => {
-        if (!quiet) {
-          logger.info(
-            `Retry attempt ${attempt + 1}/${RETRY_CONFIG.retries + 1} for asset URL...`
-          );
-          logger.warn(
-            `Attempt ${attempt + 1}/${RETRY_CONFIG.retries + 1} failed: ${(0, import_errors.errorMessage)(error)}`
-          );
-        }
-        return void 0;
-      }
-    }
-  ) ?? null;
-}
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  createAssetMatcher,
-  downloadAndExtractArchive,
-  downloadAndExtractZip,
-  downloadGitHubRelease,
-  downloadReleaseAsset,
-  getAuthHeaders,
-  getLatestRelease,
-  getReleaseAssetUrl
-});