@socketsecurity/lib 5.3.0 → 5.4.0

package/dist/releases/socket-btm.js

@@ -26,18 +26,27 @@ __export(socket_btm_exports, {
   getPlatformArch: () => getPlatformArch
 });
 module.exports = __toCommonJS(socket_btm_exports);
-var import_fs = require("fs");
 var import_platform = require("../constants/platform.js");
 var import_github = require("./github.js");
 const ARCH_MAP = {
+  __proto__: null,
   arm64: "arm64",
   x64: "x64"
 };
+let _fs;
+// @__NO_SIDE_EFFECTS__
+function getFs() {
+  if (_fs === void 0) {
+    _fs = require("fs");
+  }
+  return _fs;
+}
 function detectLibc() {
   if ((0, import_platform.getPlatform)() !== "linux") {
     return void 0;
   }
   try {
+    const fs = /* @__PURE__ */ getFs();
     const muslPaths = [
       "/lib/ld-musl-x86_64.so.1",
       "/lib/ld-musl-aarch64.so.1",
@@ -45,7 +54,7 @@ function detectLibc() {
       "/usr/lib/ld-musl-aarch64.so.1"
     ];
     for (const path of muslPaths) {
-      if ((0, import_fs.existsSync)(path)) {
+      if (fs.existsSync(path)) {
         return "musl";
       }
     }
@@ -64,7 +73,38 @@ async function downloadSocketBtmRelease(config) {
       output,
       removeMacOSQuarantine = false
     } = config;
-    const outputName = output || asset;
+    let resolvedAsset;
+    let resolvedTag = tag;
+    const isExactMatch = typeof asset === "string" && !asset.includes("*");
+    if (isExactMatch) {
+      resolvedAsset = asset;
+    } else {
+      if (tag) {
+        throw new Error(
+          "Cannot use asset pattern with explicit tag. Either provide exact asset name or omit tag."
+        );
+      }
+      resolvedTag = await (0, import_github.getLatestRelease)(toolPrefix, import_github.SOCKET_BTM_REPO, {
+        assetPattern: asset,
+        quiet
+      });
+      if (!resolvedTag) {
+        throw new Error(`No ${tool} release with matching asset pattern found`);
+      }
+      const assetUrl = await (0, import_github.getReleaseAssetUrl)(
+        resolvedTag,
+        asset,
+        import_github.SOCKET_BTM_REPO,
+        {
+          quiet
+        }
+      );
+      if (!assetUrl) {
+        throw new Error(`No matching asset found in release ${resolvedTag}`);
+      }
+      resolvedAsset = assetUrl.split("/").pop() || asset.toString();
+    }
+    const outputName = output || resolvedAsset;
     const platformArch = "assets";
     downloadConfig = {
       owner: import_github.SOCKET_BTM_REPO.owner,
@@ -74,9 +114,9 @@ async function downloadSocketBtmRelease(config) {
       toolName: tool,
       platformArch,
       binaryName: outputName,
-      assetName: asset,
+      assetName: resolvedAsset,
       toolPrefix,
-      tag,
+      tag: resolvedTag,
       quiet,
       removeMacOSQuarantine
     };

package/dist/spawn.js

@@ -37,13 +37,20 @@ __export(spawn_exports, {
 module.exports = __toCommonJS(spawn_exports);
 var import_process = require("./constants/process");
 var import_promise_spawn = __toESM(require("./external/@npmcli/promise-spawn"));
-var import_node_path = __toESM(require("node:path"));
 var import_arrays = require("./arrays");
 var import_bin = require("./bin");
 var import_normalize = require("./paths/normalize");
 var import_objects = require("./objects");
 var import_spinner = require("./spinner");
 var import_strings = require("./strings");
+let _path;
+// @__NO_SIDE_EFFECTS__
+function getPath() {
+  if (_path === void 0) {
+    _path = require("path");
+  }
+  return _path;
+}
 const abortSignal = (0, import_process.getAbortSignal)();
 const spinner = (0, import_spinner.getDefaultSpinner)();
 const windowsScriptExtRegExp = /\.(?:cmd|bat|ps1)$/i;
@@ -102,7 +109,7 @@ function spawn(cmd, args, options, extra) {
   }
   const WIN32 = process.platform === "win32";
   if (WIN32 && shell && windowsScriptExtRegExp.test(actualCmd)) {
-    actualCmd = import_node_path.default.basename(actualCmd, import_node_path.default.extname(actualCmd));
+    actualCmd = (/* @__PURE__ */ getPath()).basename(actualCmd, (/* @__PURE__ */ getPath()).extname(actualCmd));
   }
   const wasSpinning = !!spinnerInstance?.isSpinning;
   const shouldStopSpinner = wasSpinning && !/* @__PURE__ */ isStdioType(stdio, "ignore") && !/* @__PURE__ */ isStdioType(stdio, "pipe");
@@ -181,7 +188,7 @@ function spawnSync(cmd, args, options) {
   const shell = (0, import_objects.getOwn)(options, "shell");
   const WIN32 = process.platform === "win32";
   if (WIN32 && shell && windowsScriptExtRegExp.test(actualCmd)) {
-    actualCmd = import_node_path.default.basename(actualCmd, import_node_path.default.extname(actualCmd));
+    actualCmd = (/* @__PURE__ */ getPath()).basename(actualCmd, (/* @__PURE__ */ getPath()).extname(actualCmd));
   }
   const { stripAnsi: shouldStripAnsi = true, ...rawSpawnOptions } = {
     __proto__: null,

package/dist/stdio/mask.d.ts

@@ -1,24 +1,4 @@
-/**
- * @fileoverview Interactive output masking utilities for CLI tools.
- * Provides output control with keyboard toggling (ctrl+o).
- *
- * ANSI Escape Sequences Used:
- * - '\r': Carriage return - moves cursor to beginning of current line.
- * - '\x1b[K' or '\x1b[0K': CSI K (erase line) - clear from cursor to end of line.
- * - '\x1b[2K': CSI 2K - erase entire line.
- * - '\x1b[1A': CSI A - move cursor up 1 line.
- *
- * Terminal Control:
- * - Raw mode (setRawMode(true)): Captures keypresses immediately without buffering.
- * - TTY detection: Ensures terminal manipulation only occurs in interactive terminals.
- *
- * Key Features:
- * - Output buffering: Stores up to 1000 lines when masked to prevent memory issues.
- * - Graceful cleanup: Always restores terminal to normal mode on exit/error.
- * - Visual feedback: Uses spinner to indicate process is running when output is masked.
- */
 import type { ChildProcess, SpawnOptions } from 'child_process';
-import readline from 'readline';
 export interface OutputMaskOptions {
     /**
      * Current working directory for spawned process.
@@ -120,7 +100,11 @@ export declare function createOutputMask(options?: OutputMaskOptions): OutputMas
  * - ctrl+c: Cancel the running process.
  * The handler manipulates terminal state using ANSI escape sequences.
  */
-export declare function createKeyboardHandler(mask: OutputMask, child: ChildProcess, options?: OutputMaskOptions): (_str: string, key: readline.Key) => void;
+type ReadlineKey = {
+    ctrl?: boolean;
+    name?: string;
+};
+export declare function createKeyboardHandler(mask: OutputMask, child: ChildProcess, options?: OutputMaskOptions): (_str: string, key: ReadlineKey) => void;
 /**
  * Attach output masking to a child process.
  * Returns a promise that resolves with the exit code.
@@ -138,3 +122,4 @@ export declare function attachOutputMask(child: ChildProcess, options?: OutputMa
  * stdin is inherited, stdout and stderr are piped for masking control.
  */
 export declare function runWithMask(command: string, args?: string[], options?: OutputMaskOptions & SpawnOptions): Promise<number>;
+export {};

package/dist/stdio/mask.js

@@ -1,10 +1,8 @@
 "use strict";
 /* Socket Lib - Built with esbuild */
-var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __export = (target, all) => {
   for (var name in all)
@@ -18,14 +16,6 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var mask_exports = {};
 __export(mask_exports, {
@@ -35,11 +25,25 @@ __export(mask_exports, {
   runWithMask: () => runWithMask
 });
 module.exports = __toCommonJS(mask_exports);
-var import_child_process = require("child_process");
-var import_readline = __toESM(require("readline"));
 var import_spinner = require("../spinner.js");
 var import_clear = require("./clear.js");
 var import_stdout = require("./stdout.js");
+let _child_process;
+// @__NO_SIDE_EFFECTS__
+function getChildProcess() {
+  if (_child_process === void 0) {
+    _child_process = require("child_process");
+  }
+  return _child_process;
+}
+let _readline;
+// @__NO_SIDE_EFFECTS__
+function getReadline() {
+  if (_readline === void 0) {
+    _readline = require("readline");
+  }
+  return _readline;
+}
 const spinner = (0, import_spinner.getDefaultSpinner)();
 function createOutputMask(options = {}) {
   const { showOutput = false } = options;
@@ -101,7 +105,7 @@ function attachOutputMask(child, options = {}) {
       );
     }
     if (process.stdin.isTTY) {
-      import_readline.default.emitKeypressEvents(process.stdin);
+      (/* @__PURE__ */ getReadline()).emitKeypressEvents(process.stdin);
       process.stdin.setRawMode(true);
       const keypressHandler = createKeyboardHandler(mask, child, options);
       process.stdin.on("keypress", keypressHandler);
@@ -194,7 +198,7 @@ async function runWithMask(command, args = [], options = {}) {
     toggleText = "to see output",
     ...spawnOptions
   } = options;
-  const child = (0, import_child_process.spawn)(command, args, {
+  const child = (/* @__PURE__ */ getChildProcess()).spawn(command, args, {
     stdio: ["inherit", "pipe", "pipe"],
     ...spawnOptions
   });

package/dist/themes/context.js

@@ -26,9 +26,17 @@ __export(context_exports, {
   withThemeSync: () => withThemeSync
 });
 module.exports = __toCommonJS(context_exports);
-var import_node_async_hooks = require("node:async_hooks");
 var import_themes = require("./themes");
-const themeStorage = new import_node_async_hooks.AsyncLocalStorage();
+let _async_hooks;
+// @__NO_SIDE_EFFECTS__
+function getAsyncHooks() {
+  if (_async_hooks === void 0) {
+    _async_hooks = require("async_hooks");
+  }
+  return _async_hooks;
+}
+const { AsyncLocalStorage } = /* @__PURE__ */ getAsyncHooks();
+const themeStorage = new AsyncLocalStorage();
 let fallbackTheme = import_themes.SOCKET_THEME;
 const listeners = /* @__PURE__ */ new Set();
 function setTheme(theme) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/lib",
-  "version": "5.3.0",
+  "version": "5.4.0",
   "packageManager": "pnpm@10.27.0",
   "license": "MIT",
   "description": "Core utilities and infrastructure for Socket.dev security tools",
@@ -787,6 +787,7 @@
       "@sigstore/sign": "4.1.0",
       "ansi-regex": "6.2.2",
       "lru-cache": "11.2.2",
+      "picomatch": "4.0.3",
       "semver": "7.7.2",
       "string-width": "8.1.0",
       "strip-ansi": "7.1.2",