@socketsecurity/lib 5.26.0 → 5.27.0

package/dist/packages/exports.js

@@ -31,13 +31,14 @@ module.exports = __toCommonJS(exports_exports);
 var import_arrays = require("../arrays");
 var import_core = require("../constants/core");
 var import_objects = require("../objects");
+var import_primordials = require("../primordials");
 // @__NO_SIDE_EFFECTS__
 function findTypesForSubpath(entryExports, subpath) {
   const queue = [entryExports];
   let pos = 0;
   while (pos < queue.length) {
     if (pos === import_core.LOOP_SENTINEL) {
-      throw new Error(
+      throw new import_primordials.ErrorCtor(
         "Detected infinite loop in entry exports crawl of getTypesForSubpath"
       );
     }
@@ -53,7 +54,7 @@ function findTypesForSubpath(entryExports, subpath) {
         }
       }
     } else if ((0, import_objects.isObject)(value)) {
-      const keys = Object.getOwnPropertyNames(value);
+      const keys = (0, import_primordials.ObjectGetOwnPropertyNames)(value);
       for (let i = 0, { length } = keys; i < length; i += 1) {
         const key = keys[i];
         const item = value[key];
@@ -74,27 +75,27 @@ function getExportFilePaths(entryExports) {
     return [];
   }
   const paths = [];
-  for (const key of Object.getOwnPropertyNames(entryExports)) {
-    if (!key.startsWith(".")) {
+  for (const key of (0, import_primordials.ObjectGetOwnPropertyNames)(entryExports)) {
+    if (!(0, import_primordials.StringPrototypeStartsWith)(key, ".")) {
       continue;
     }
     const value = entryExports[key];
     if (typeof value === "string") {
-      paths.push(value);
+      (0, import_primordials.ArrayPrototypePush)(paths, value);
     } else if ((0, import_objects.isObject)(value)) {
-      for (const subKey of Object.getOwnPropertyNames(value)) {
+      for (const subKey of (0, import_primordials.ObjectGetOwnPropertyNames)(value)) {
         const subValue = value[subKey];
         if (typeof subValue === "string") {
-          paths.push(subValue);
+          (0, import_primordials.ArrayPrototypePush)(paths, subValue);
         } else if ((0, import_arrays.isArray)(subValue)) {
           for (const item of subValue) {
             if (typeof item === "string") {
-              paths.push(item);
+              (0, import_primordials.ArrayPrototypePush)(paths, item);
             } else if ((0, import_objects.isObject)(item)) {
-              for (const nestedKey of Object.getOwnPropertyNames(item)) {
+              for (const nestedKey of (0, import_primordials.ObjectGetOwnPropertyNames)(item)) {
                 const nestedValue = item[nestedKey];
                 if (typeof nestedValue === "string") {
-                  paths.push(nestedValue);
+                  (0, import_primordials.ArrayPrototypePush)(paths, nestedValue);
                 }
               }
             }
@@ -103,15 +104,15 @@ function getExportFilePaths(entryExports) {
       }
     }
   }
-  return [...new Set(paths)].filter((p) => p.startsWith("./"));
+  return [...new import_primordials.SetCtor(paths)].filter((p) => (0, import_primordials.StringPrototypeStartsWith)(p, "./"));
 }
 // @__NO_SIDE_EFFECTS__
 function getSubpaths(entryExports) {
   if (!(0, import_objects.isObject)(entryExports)) {
     return [];
   }
-  return Object.getOwnPropertyNames(entryExports).filter(
-    (key) => key.startsWith(".")
+  return (0, import_primordials.ObjectGetOwnPropertyNames)(entryExports).filter(
+    (key) => (0, import_primordials.StringPrototypeStartsWith)(key, ".")
   );
 }
 // @__NO_SIDE_EFFECTS__
@@ -119,14 +120,14 @@ function isConditionalExports(entryExports) {
   if (!(0, import_objects.isObjectObject)(entryExports)) {
     return false;
   }
-  const keys = Object.getOwnPropertyNames(entryExports);
+  const keys = (0, import_primordials.ObjectGetOwnPropertyNames)(entryExports);
   const { length } = keys;
   if (!length) {
     return false;
   }
   for (let i = 0; i < length; i += 1) {
     const key = keys[i];
-    if (key.length > 0 && key.charCodeAt(0) === 46) {
+    if (key.length > 0 && (0, import_primordials.StringPrototypeCharCodeAt)(key, 0) === 46) {
       return false;
     }
   }
@@ -135,7 +136,7 @@ function isConditionalExports(entryExports) {
 // @__NO_SIDE_EFFECTS__
 function isSubpathExports(entryExports) {
   if ((0, import_objects.isObjectObject)(entryExports)) {
-    const keys = Object.getOwnPropertyNames(entryExports);
+    const keys = (0, import_primordials.ObjectGetOwnPropertyNames)(entryExports);
     for (let i = 0, { length } = keys; i < length; i += 1) {
       if (keys[i]?.charCodeAt(0) === 46) {
         return true;

package/dist/packages/isolation.js

@@ -40,10 +40,11 @@ var import_normalize = require("../paths/normalize");
 var import_socket = require("../paths/socket");
 var import_spawn = require("../spawn");
 var import_operations = require("./operations");
+var import_primordials = require("../primordials");
 const FS_CP_OPTIONS = {
   dereference: true,
   errorOnExist: false,
-  filter: (src) => !src.includes("node_modules") && !src.endsWith(".DS_Store"),
+  filter: (src) => !src.includes("node_modules") && !(0, import_primordials.StringPrototypeEndsWith)(src, ".DS_Store"),
   force: true,
   recursive: true,
   ...import_platform.WIN32 ? { maxRetries: 3, retryDelay: 100 } : {}
@@ -68,9 +69,9 @@ async function mergePackageJson(pkgJsonPath, originalPkgJson) {
   const fs = /* @__PURE__ */ getFs();
   let pkgJson;
   try {
-    pkgJson = JSON.parse(await fs.promises.readFile(pkgJsonPath, "utf8"));
+    pkgJson = (0, import_primordials.JSONParse)(await fs.promises.readFile(pkgJsonPath, "utf8"));
   } catch (e) {
-    throw new Error(`Failed to parse ${pkgJsonPath}: ${(0, import_errors.errorMessage)(e)}`, {
+    throw new import_primordials.ErrorCtor(`Failed to parse ${pkgJsonPath}: ${(0, import_errors.errorMessage)(e)}`, {
       cause: e
     });
   }
@@ -80,7 +81,11 @@ async function mergePackageJson(pkgJsonPath, originalPkgJson) {
 async function resolveRealPath(pathStr) {
   const fs = /* @__PURE__ */ getFs();
   const path = /* @__PURE__ */ getPath();
-  return await fs.promises.realpath(pathStr).catch(() => path.resolve(pathStr));
+  try {
+    return await fs.promises.realpath(pathStr);
+  } catch {
+    return path.resolve(pathStr);
+  }
 }
 async function isolatePackage(packageSpec, options) {
   const fs = /* @__PURE__ */ getFs();
@@ -95,11 +100,11 @@ async function isolatePackage(packageSpec, options) {
     const pathToResolve = (0, import_normalize.isAbsolute)(trimmedPath) ? trimmedPath : packageSpec;
     sourcePath = path.resolve(pathToResolve);
     if (!fs.existsSync(sourcePath)) {
-      throw new Error(`Source path does not exist: ${sourcePath}`);
+      throw new import_primordials.ErrorCtor(`Source path does not exist: ${sourcePath}`);
     }
     const pkgJson = await (0, import_operations.readPackageJson)(sourcePath, { normalize: true });
     if (!pkgJson) {
-      throw new Error(`Could not read package.json from: ${sourcePath}`);
+      throw new import_primordials.ErrorCtor(`Could not read package.json from: ${sourcePath}`);
     }
     packageName = pkgJson.name;
   } else {
@@ -108,12 +113,12 @@ async function isolatePackage(packageSpec, options) {
     if (parsed.type === "directory" || parsed.type === "file") {
       sourcePath = parsed.fetchSpec;
       if (!sourcePath || !fs.existsSync(sourcePath)) {
-        throw new Error(`Source path does not exist: ${sourcePath}`);
+        throw new import_primordials.ErrorCtor(`Source path does not exist: ${sourcePath}`);
       }
       if (!packageName) {
         const pkgJson = await (0, import_operations.readPackageJson)(sourcePath, { normalize: true });
         if (!pkgJson) {
-          throw new Error(`Could not read package.json from: ${sourcePath}`);
+          throw new import_primordials.ErrorCtor(`Could not read package.json from: ${sourcePath}`);
         }
         packageName = pkgJson.name;
       }
@@ -122,7 +127,7 @@ async function isolatePackage(packageSpec, options) {
     }
   }
   if (!packageName) {
-    throw new Error(`Could not determine package name from: ${packageSpec}`);
+    throw new import_primordials.ErrorCtor(`Could not determine package name from: ${packageSpec}`);
   }
   const sanitizedName = packageName.replace(/[@/]/g, "-");
   const tempDir = await fs.promises.mkdtemp(
@@ -148,7 +153,7 @@ async function isolatePackage(packageSpec, options) {
     if (install) {
       await install(packageTempDir);
     } else {
-      const packageInstallSpec = spec.startsWith("https://") ? spec : `${packageName}@${spec}`;
+      const packageInstallSpec = (0, import_primordials.StringPrototypeStartsWith)(spec, "https://") ? spec : `${packageName}@${spec}`;
       await (0, import_spawn.spawn)("pnpm", ["add", packageInstallSpec], {
         cwd: packageTempDir,
         shell: import_platform.WIN32,
@@ -168,9 +173,11 @@ async function isolatePackage(packageSpec, options) {
     }
   } else {
     if (!sourcePath) {
-      throw new Error("sourcePath is required when no version spec provided");
+      throw new import_primordials.ErrorCtor(
+        "sourcePath is required when no version spec provided"
+      );
     }
-    const scopedPath = packageName.startsWith("@") ? path.join(
+    const scopedPath = (0, import_primordials.StringPrototypeStartsWith)(packageName, "@") ? path.join(
       packageTempDir,
       "node_modules",
       packageName.split("/")[0] ?? ""
@@ -202,7 +209,7 @@ async function isolatePackage(packageSpec, options) {
   }
   const exports2 = imports ? { __proto__: null } : void 0;
   if (imports) {
-    for (const { 0: key, 1: specifier } of Object.entries(imports)) {
+    for (const { 0: key, 1: specifier } of (0, import_primordials.ObjectEntries)(imports)) {
       const fullPath = path.join(installedPath, specifier);
       exports2[key] = require(fullPath);
     }

package/dist/packages/licenses.js

@@ -46,6 +46,7 @@ var import_spdx_correct = __toESM(require("../external/spdx-correct"));
 var import_spdx_expression_parse = __toESM(require("../external/spdx-expression-parse"));
 var import_objects = require("../objects");
 var import_normalize = require("../paths/normalize");
+var import_primordials = require("../primordials");
 const copyLeftLicenses = (0, import_licenses.getCopyLeftLicenses)();
 let _path;
 // @__NO_SIDE_EFFECTS__
@@ -71,7 +72,7 @@ function collectIncompatibleLicenses(licenseNodes) {
 }
 // @__NO_SIDE_EFFECTS__
 function collectLicenseWarnings(licenseNodes) {
-  const warnings = /* @__PURE__ */ new Map();
+  const warnings = new import_primordials.MapCtor();
   for (let i = 0, { length } = licenseNodes; i < length; i += 1) {
     const node = licenseNodes[i];
     if (!node) {
@@ -139,7 +140,7 @@ function resolvePackageLicenses(licenseFieldValue, where) {
   if (licenseFieldValue === "UNLICENSED" || licenseFieldValue === "UNLICENCED") {
     return [{ license: "UNLICENSED" }];
   }
-  const match = fileReferenceRegExp.exec(licenseFieldValue);
+  const match = (0, import_primordials.RegExpPrototypeExec)(fileReferenceRegExp, licenseFieldValue);
   if (match) {
     const path = /* @__PURE__ */ getPath();
     return [
@@ -174,7 +175,9 @@ function visitLicenses(ast, visitor) {
   let { length: queueLength } = queue;
   while (pos < queueLength) {
     if (pos === import_core.LOOP_SENTINEL) {
-      throw new Error("Detected infinite loop in ast crawl of visitLicenses");
+      throw new import_primordials.ErrorCtor(
+        "Detected infinite loop in ast crawl of visitLicenses"
+      );
     }
     const { 0: node, 1: parent } = queue[pos++];
     const { type } = node;

package/dist/packages/manifest.js

@@ -45,6 +45,7 @@ var import_arrays = require("../arrays");
 var import_objects = require("../objects");
 var import_exports = require("./exports");
 var import_validation = require("./validation");
+var import_primordials = require("../primordials");
 const abortSignal = (0, import_process.getAbortSignal)();
 const packageDefaultNodeRange = (0, import_packages.getPackageDefaultNodeRange)();
 const PACKAGE_DEFAULT_SOCKET_CATEGORIES = (0, import_packages.getPackageDefaultSocketCategories)();
@@ -91,7 +92,7 @@ function createPackageJson(sockRegPkgName, directory, options) {
     ...(0, import_objects.isObjectObject)(overrides) ? { overrides: { ...overrides } } : {},
     ...(0, import_objects.isObjectObject)(resolutions) ? { resolutions: { ...resolutions } } : {},
     ...(0, import_objects.isObjectObject)(engines) ? {
-      engines: Object.fromEntries(
+      engines: (0, import_primordials.ObjectFromEntries)(
         (0, import_objects.objectEntries)(engines).map((pair) => {
           const strKey = String(pair[0]);
           const result = [strKey, pair[1]];

package/dist/packages/normalize.js

@@ -41,11 +41,12 @@ var import_regexps = require("../regexps");
 var import_normalize_package_data = __toESM(require("../external/normalize-package-data"));
 var import_objects = require("../objects");
 var import_operations = require("./operations");
+var import_primordials = require("../primordials");
 const ArrayIsArray = Array.isArray;
 const ObjectHasOwn = Object.hasOwn;
 function getEscapedScopeRegExp() {
   const firstChar = import_socket.REGISTRY_SCOPE_DELIMITER[0];
-  return new RegExp(
+  return new import_primordials.RegExpCtor(
     `^[^${(0, import_regexps.escapeRegExp)(firstChar)}]+${(0, import_regexps.escapeRegExp)(import_socket.REGISTRY_SCOPE_DELIMITER)}(?!${(0, import_regexps.escapeRegExp)(firstChar)})`
   );
 }
@@ -81,14 +82,17 @@ function normalizePackageJson(pkgJson, options) {
 // @__NO_SIDE_EFFECTS__
 function resolveEscapedScope(sockRegPkgName) {
   const escapedScopeRegExp = getEscapedScopeRegExp();
-  const match = escapedScopeRegExp.exec(sockRegPkgName)?.[0];
+  const match = (0, import_primordials.RegExpPrototypeExec)(escapedScopeRegExp, sockRegPkgName)?.[0];
   return match || void 0;
 }
 // @__NO_SIDE_EFFECTS__
 function resolveOriginalPackageName(sockRegPkgName) {
-  const name = sockRegPkgName.startsWith(`${import_socket.SOCKET_REGISTRY_SCOPE}/`) ? sockRegPkgName.slice(import_socket.SOCKET_REGISTRY_SCOPE.length + 1) : sockRegPkgName;
+  const name = (0, import_primordials.StringPrototypeStartsWith)(
+    sockRegPkgName,
+    `${import_socket.SOCKET_REGISTRY_SCOPE}/`
+  ) ? sockRegPkgName.slice(import_socket.SOCKET_REGISTRY_SCOPE.length + 1) : sockRegPkgName;
   const escapedScope = /* @__PURE__ */ resolveEscapedScope(name);
-  return escapedScope ? `${/* @__PURE__ */ unescapeScope(escapedScope)}/${name.slice(escapedScope.length)}` : name;
+  return escapedScope ? `${/* @__PURE__ */ unescapeScope(escapedScope)}/${(0, import_primordials.StringPrototypeSlice)(name, escapedScope.length)}` : name;
 }
 // @__NO_SIDE_EFFECTS__
 function unescapeScope(escapedScope) {

package/dist/packages/operations.js

@@ -57,6 +57,7 @@ var import_normalize = require("./normalize");
 var import_packages2 = require("../paths/packages");
 var import_specs = require("./specs");
 var import_edit = require("./edit");
+var import_primordials = require("../primordials");
 const abortSignal = (0, import_process.getAbortSignal)();
 const packageExtensions = (0, import_packages.getPackageExtensions)();
 const packumentCache = (0, import_packages.getPackumentCache)();
@@ -131,13 +132,13 @@ function getReleaseTag(spec) {
     return "";
   }
   let atIndex = -1;
-  if (spec.startsWith("@")) {
-    atIndex = spec.indexOf("@", 1);
+  if ((0, import_primordials.StringPrototypeStartsWith)(spec, "@")) {
+    atIndex = (0, import_primordials.StringPrototypeIndexOf)(spec, "@", 1);
   } else {
-    atIndex = spec.indexOf("@");
+    atIndex = (0, import_primordials.StringPrototypeIndexOf)(spec, "@");
   }
   if (atIndex !== -1) {
-    return spec.slice(atIndex + 1);
+    return (0, import_primordials.StringPrototypeSlice)(spec, atIndex + 1);
   }
   return "";
 }

package/dist/packages/provenance.js

@@ -39,6 +39,7 @@ var import_packages = require("../constants/packages");
 var import_make_fetch_happen = __toESM(require("../external/make-fetch-happen"));
 var import_abort = require("../abort");
 var import_url = require("../url");
+var import_primordials = require("../primordials");
 const ArrayIsArray = Array.isArray;
 const SLSA_PROVENANCE_V0_2 = "https://slsa.dev/provenance/v0.2";
 const SLSA_PROVENANCE_V1_0 = "https://slsa.dev/provenance/v1";
@@ -50,11 +51,11 @@ function findProvenance(attestations) {
       let predicate = att.predicate;
       if (!predicate && att.bundle?.dsseEnvelope?.payload) {
         try {
-          const decodedPayload = Buffer.from(
+          const decodedPayload = (0, import_primordials.BufferFrom)(
             att.bundle.dsseEnvelope.payload,
             "base64"
           ).toString("utf8");
-          const statement = JSON.parse(decodedPayload);
+          const statement = (0, import_primordials.JSONParse)(decodedPayload);
           predicate = statement.predicate;
         } catch {
           continue;
@@ -101,8 +102,8 @@ function isTrustedPublisher(value) {
   }
   let url = (0, import_url.parseUrl)(value);
   let hostname = url?.hostname;
-  if (!url && value.includes("@")) {
-    const firstPart = value.split("@")[0];
+  if (!url && (0, import_primordials.StringPrototypeIncludes)(value, "@")) {
+    const firstPart = (0, import_primordials.StringPrototypeSplit)(value, "@")[0];
     if (firstPart) {
       url = (0, import_url.parseUrl)(firstPart);
     }
@@ -117,9 +118,9 @@ function isTrustedPublisher(value) {
     }
   }
   if (hostname) {
-    return hostname === "github.com" || hostname.endsWith(".github.com") || hostname === "gitlab.com" || hostname.endsWith(".gitlab.com");
+    return hostname === "github.com" || (0, import_primordials.StringPrototypeEndsWith)(hostname, ".github.com") || hostname === "gitlab.com" || (0, import_primordials.StringPrototypeEndsWith)(hostname, ".gitlab.com");
   }
-  return value.includes("github") || value.includes("gitlab");
+  return (0, import_primordials.StringPrototypeIncludes)(value, "github") || (0, import_primordials.StringPrototypeIncludes)(value, "gitlab");
 }
 // @__NO_SIDE_EFFECTS__
 async function fetchPackageProvenance(pkgName, pkgVersion, options) {

package/dist/packages/specs.js

@@ -40,6 +40,7 @@ module.exports = __toCommonJS(specs_exports);
 var import_npm_package_arg = __toESM(require("../external/npm-package-arg"));
 var import_objects = require("../objects");
 var import_strings = require("../strings");
+var import_primordials = require("../primordials");
 // @__NO_SIDE_EFFECTS__
 function getRepoUrlDetails(repoUrl = "") {
   const match = /^(?:[a-z][a-z+]*:\/\/)(?:[^/@]+@)?github\.com\/([^?#]+)(?:[?#]|$)/i.exec(
@@ -51,7 +52,7 @@ function getRepoUrlDetails(repoUrl = "") {
   const userAndRepo = match[1].split("/");
   const user = userAndRepo[0] || "";
   const rawProject = userAndRepo[1] ?? "";
-  const project = rawProject.endsWith(".git") ? rawProject.slice(0, -4) : rawProject;
+  const project = (0, import_primordials.StringPrototypeEndsWith)(rawProject, ".git") ? rawProject.slice(0, -4) : rawProject;
   return { user, project };
 }
 // @__NO_SIDE_EFFECTS__

package/dist/packages/validation.js

@@ -36,9 +36,10 @@ __export(validation_exports, {
 });
 module.exports = __toCommonJS(validation_exports);
 var import_validate_npm_package_name = __toESM(require("../external/validate-npm-package-name"));
+var import_primordials = require("../primordials");
 // @__NO_SIDE_EFFECTS__
 function isBlessedPackageName(name) {
-  return typeof name === "string" && (name === "sfw" || name === "socket" || name.startsWith("@socketoverride/") || name.startsWith("@socketregistry/") || name.startsWith("@socketsecurity/"));
+  return typeof name === "string" && (name === "sfw" || name === "socket" || (0, import_primordials.StringPrototypeStartsWith)(name, "@socketoverride/") || (0, import_primordials.StringPrototypeStartsWith)(name, "@socketregistry/") || (0, import_primordials.StringPrototypeStartsWith)(name, "@socketsecurity/"));
 }
 // @__NO_SIDE_EFFECTS__
 function isRegistryFetcherType(type) {

package/dist/paths/normalize.js

@@ -36,6 +36,7 @@ __export(normalize_exports, {
 module.exports = __toCommonJS(normalize_exports);
 var import_platform = require("../constants/platform");
 var import_strings = require("../strings");
+var import_primordials = require("../primordials");
 const CHAR_BACKWARD_SLASH = 92;
 const CHAR_COLON = 58;
 const CHAR_FORWARD_SLASH = 47;
@@ -46,16 +47,8 @@ const CHAR_UPPERCASE_Z = 90;
 const msysDriveRegExp = /^\/([a-zA-Z])(\/|$)/;
 const slashRegExp = /[/\\]/;
 const nodeModulesPathRegExp = /(?:^|[/\\])node_modules(?:[/\\]|$)/;
-let _buffer;
 let _url;
 // @__NO_SIDE_EFFECTS__
-function getBuffer() {
-  if (_buffer === void 0) {
-    _buffer = require("node:buffer");
-  }
-  return _buffer;
-}
-// @__NO_SIDE_EFFECTS__
 function getUrl() {
   if (_url === void 0) {
     _url = require("node:url");
@@ -106,8 +99,8 @@ function relative(from, to) {
   let lastCommonSep = -1;
   let i = 0;
   for (; i < length; i += 1) {
-    let fromCode = actualFrom.charCodeAt(fromStart + i);
-    let toCode = actualTo.charCodeAt(toStart + i);
+    let fromCode = (0, import_primordials.StringPrototypeCharCodeAt)(actualFrom, fromStart + i);
+    let toCode = (0, import_primordials.StringPrototypeCharCodeAt)(actualTo, toStart + i);
     if (import_platform.WIN32) {
       if (fromCode >= CHAR_UPPERCASE_A && fromCode <= CHAR_UPPERCASE_Z) {
         fromCode += 32;
@@ -119,13 +112,13 @@ function relative(from, to) {
     if (fromCode !== toCode) {
       break;
     }
-    if (/* @__PURE__ */ isPathSeparator(actualFrom.charCodeAt(fromStart + i))) {
+    if (/* @__PURE__ */ isPathSeparator((0, import_primordials.StringPrototypeCharCodeAt)(actualFrom, fromStart + i))) {
       lastCommonSep = i;
     }
   }
   if (i === length) {
     if (toLen > length) {
-      const toCode = actualTo.charCodeAt(toStart + i);
+      const toCode = (0, import_primordials.StringPrototypeCharCodeAt)(actualTo, toStart + i);
       if (/* @__PURE__ */ isPathSeparator(toCode)) {
         return actualTo.slice(toStart + i + 1);
       }
@@ -133,7 +126,7 @@ function relative(from, to) {
         return actualTo.slice(toStart + i);
       }
     } else if (fromLen > length) {
-      const fromCode = actualFrom.charCodeAt(fromStart + i);
+      const fromCode = (0, import_primordials.StringPrototypeCharCodeAt)(actualFrom, fromStart + i);
       if (/* @__PURE__ */ isPathSeparator(fromCode)) {
         lastCommonSep = i;
       } else if (i === 0) {
@@ -143,7 +136,7 @@ function relative(from, to) {
   }
   let out = "";
   for (i = fromStart + lastCommonSep + 1; i <= fromEnd; i += 1) {
-    const code = actualFrom.charCodeAt(i);
+    const code = (0, import_primordials.StringPrototypeCharCodeAt)(actualFrom, i);
     if (i === fromEnd || /* @__PURE__ */ isPathSeparator(code)) {
       out += out.length === 0 ? ".." : "/..";
     }
@@ -183,7 +176,7 @@ function isAbsolute(pathLike) {
   if (length === 0) {
     return false;
   }
-  const code = filepath.charCodeAt(0);
+  const code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 0);
   if (code === CHAR_FORWARD_SLASH) {
     return true;
   }
@@ -191,7 +184,7 @@ function isAbsolute(pathLike) {
     return true;
   }
   if (import_platform.WIN32 && length > 2) {
-    if (/* @__PURE__ */ isWindowsDeviceRoot(code) && filepath.charCodeAt(1) === CHAR_COLON && /* @__PURE__ */ isPathSeparator(filepath.charCodeAt(2))) {
+    if (/* @__PURE__ */ isWindowsDeviceRoot(code) && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 1) === CHAR_COLON && /* @__PURE__ */ isPathSeparator((0, import_primordials.StringPrototypeCharCodeAt)(filepath, 2))) {
       return true;
     }
   }
@@ -200,7 +193,7 @@ function isAbsolute(pathLike) {
 // @__NO_SIDE_EFFECTS__
 function isNodeModules(pathLike) {
   const filepath = /* @__PURE__ */ pathLikeToString(pathLike);
-  return nodeModulesPathRegExp.test(filepath);
+  return (0, import_primordials.RegExpPrototypeTest)(nodeModulesPathRegExp, filepath);
 }
 // @__NO_SIDE_EFFECTS__
 function isPath(pathLike) {
@@ -218,7 +211,7 @@ function isPath(pathLike) {
     return true;
   }
   if (filepath.includes("/") || filepath.includes("\\")) {
-    if (filepath.startsWith("@") && !filepath.startsWith("@/")) {
+    if ((0, import_primordials.StringPrototypeStartsWith)(filepath, "@") && !(0, import_primordials.StringPrototypeStartsWith)(filepath, "@/")) {
       const parts = filepath.split("/");
       if (parts.length <= 2 && !parts[1]?.includes("\\")) {
         return false;
@@ -242,7 +235,7 @@ function isRelative(pathLike) {
 // @__NO_SIDE_EFFECTS__
 function isUnixPath(pathLike) {
   const filepath = /* @__PURE__ */ pathLikeToString(pathLike);
-  return typeof filepath === "string" && msysDriveRegExp.test(filepath);
+  return typeof filepath === "string" && (0, import_primordials.RegExpPrototypeTest)(msysDriveRegExp, filepath);
 }
 // @__NO_SIDE_EFFECTS__
 function normalizePath(pathLike) {
@@ -252,28 +245,28 @@ function normalizePath(pathLike) {
     return ".";
   }
   if (length < 2) {
-    return length === 1 && filepath.charCodeAt(0) === 92 ? "/" : filepath;
+    return length === 1 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 0) === 92 ? "/" : filepath;
   }
   let code = 0;
   let start = 0;
   let prefix = "";
-  if (length > 4 && filepath.charCodeAt(3) === 92) {
-    const code2 = filepath.charCodeAt(2);
-    if ((code2 === 63 || code2 === 46) && filepath.charCodeAt(0) === 92 && filepath.charCodeAt(1) === 92) {
+  if (length > 4 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 3) === 92) {
+    const code2 = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 2);
+    if ((code2 === 63 || code2 === 46) && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 0) === 92 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 1) === 92) {
       start = 2;
       prefix = "//";
     }
   }
   if (start === 0) {
-    if (length > 2 && (filepath.charCodeAt(0) === 92 && filepath.charCodeAt(1) === 92 && filepath.charCodeAt(2) !== 92 || filepath.charCodeAt(0) === 47 && filepath.charCodeAt(1) === 47 && filepath.charCodeAt(2) !== 47)) {
+    if (length > 2 && ((0, import_primordials.StringPrototypeCharCodeAt)(filepath, 0) === 92 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 1) === 92 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 2) !== 92 || (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 0) === 47 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 1) === 47 && (0, import_primordials.StringPrototypeCharCodeAt)(filepath, 2) !== 47)) {
       let firstSegmentEnd = -1;
       let hasSecondSegment = false;
       let i = 2;
-      while (i < length && (filepath.charCodeAt(i) === 47 || filepath.charCodeAt(i) === 92)) {
+      while (i < length && ((0, import_primordials.StringPrototypeCharCodeAt)(filepath, i) === 47 || (0, import_primordials.StringPrototypeCharCodeAt)(filepath, i) === 92)) {
         i++;
       }
       while (i < length) {
-        const char = filepath.charCodeAt(i);
+        const char = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, i);
         if (char === 47 || char === 92) {
           firstSegmentEnd = i;
           break;
@@ -282,7 +275,7 @@ function normalizePath(pathLike) {
       }
       if (firstSegmentEnd > 2) {
         i = firstSegmentEnd;
-        while (i < length && (filepath.charCodeAt(i) === 47 || filepath.charCodeAt(i) === 92)) {
+        while (i < length && ((0, import_primordials.StringPrototypeCharCodeAt)(filepath, i) === 47 || (0, import_primordials.StringPrototypeCharCodeAt)(filepath, i) === 92)) {
           i++;
         }
         if (i < length) {
@@ -293,20 +286,20 @@ function normalizePath(pathLike) {
         start = 2;
         prefix = "//";
       } else {
-        code = filepath.charCodeAt(start);
+        code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, start);
         while (code === 47 || code === 92) {
           start += 1;
-          code = filepath.charCodeAt(start);
+          code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, start);
         }
         if (start) {
           prefix = "/";
         }
       }
     } else {
-      code = filepath.charCodeAt(start);
+      code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, start);
       while (code === 47 || code === 92) {
         start += 1;
-        code = filepath.charCodeAt(start);
+        code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, start);
       }
       if (start) {
         prefix = "/";
@@ -320,7 +313,7 @@ function normalizePath(pathLike) {
       return prefix || ".";
     }
     if (segment === "..") {
-      return prefix ? prefix.slice(0, -1) || "/" : "..";
+      return prefix ? (0, import_primordials.StringPrototypeSlice)(prefix, 0, -1) || "/" : "..";
     }
     return msysDriveToNative(prefix + segment);
   }
@@ -361,10 +354,10 @@ function normalizePath(pathLike) {
       }
     }
     start = nextIndex + 1;
-    code = filepath.charCodeAt(start);
+    code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, start);
     while (code === 47 || code === 92) {
       start += 1;
-      code = filepath.charCodeAt(start);
+      code = (0, import_primordials.StringPrototypeCharCodeAt)(filepath, start);
     }
     nextIndex = (0, import_strings.search)(filepath, slashRegExp, { fromIndex: start });
   }
@@ -413,8 +406,7 @@ function pathLikeToString(pathLike) {
   if (typeof pathLike === "string") {
     return pathLike;
   }
-  const { Buffer: Buffer2 } = /* @__PURE__ */ getBuffer();
-  if (Buffer2.isBuffer(pathLike)) {
+  if ((0, import_primordials.BufferIsBuffer)(pathLike)) {
     return pathLike.toString("utf8");
   }
   const url = /* @__PURE__ */ getUrl();
@@ -424,10 +416,10 @@ function pathLikeToString(pathLike) {
     } catch {
       const pathname = pathLike.pathname;
       const decodedPathname = decodeURIComponent(pathname);
-      if (import_platform.WIN32 && decodedPathname.startsWith("/")) {
-        const letter = decodedPathname.charCodeAt(1) | 32;
+      if (import_platform.WIN32 && (0, import_primordials.StringPrototypeStartsWith)(decodedPathname, "/")) {
+        const letter = (0, import_primordials.StringPrototypeCharCodeAt)(decodedPathname, 1) | 32;
         const hasValidDriveLetter = decodedPathname.length >= 3 && letter >= 97 && // 'a' to 'z'
-        letter <= 122 && decodedPathname.charAt(2) === ":";
+        letter <= 122 && (0, import_primordials.StringPrototypeCharAt)(decodedPathname, 2) === ":";
         if (!hasValidDriveLetter) {
           return decodedPathname;
         }
@@ -467,7 +459,7 @@ function toUnixPath(pathLike) {
 // @__NO_SIDE_EFFECTS__
 function trimLeadingDotSlash(pathLike) {
   const filepath = /* @__PURE__ */ pathLikeToString(pathLike);
-  if (filepath.startsWith("./") || filepath.startsWith(".\\")) {
+  if ((0, import_primordials.StringPrototypeStartsWith)(filepath, "./") || (0, import_primordials.StringPrototypeStartsWith)(filepath, ".\\")) {
     return filepath.slice(2);
   }
   return filepath;