@socketsecurity/lib 5.8.1 → 5.9.0

package/CHANGELOG.md

@@ -5,6 +5,27 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [5.9.0](https://github.com/SocketDev/socket-lib/releases/tag/v5.9.0) - 2026-03-14
+
+### Changed
+
+- **releases/socket-btm**: `getPlatformArch()` now normalizes Windows platform to `win` instead of `win32`
+  - Returns `win-x64`, `win-arm64` instead of `win32-x64`, `win32-arm64`
+  - Consistent with `getBinaryAssetName()` which already uses `win` for Windows assets
+  - Aligns with socket-btm and Node.js convention: use `win` for file/folder names, `win32` for platform checks (`process.platform`)
+  - Added `PLATFORM_MAP` for explicit platform name mapping (darwin, linux, win32 → win)
+  - Now throws `Error: Unsupported platform` for unknown platform values
+
+## [5.8.2](https://github.com/SocketDev/socket-lib/releases/tag/v5.8.2) - 2026-03-13
+
+### Fixed
+
+- **http-request**: Download to temp file then atomically rename to prevent corruption
+  - Downloads now write to `{destPath}.download` temp file first
+  - On success, atomically renames to the destination path
+  - On failure, cleans up temp file and preserves any existing file at destination
+  - Prevents partial/corrupted files from CI caching causing extraction failures
+
 ## [5.8.1](https://github.com/SocketDev/socket-lib/releases/tag/v5.8.1) - 2026-03-11
 
 ### Performance

package/dist/http-request.js

@@ -25,6 +25,7 @@ __export(http_request_exports, {
   httpText: () => httpText
 });
 module.exports = __toCommonJS(http_request_exports);
+var import_fs = require("./fs.js");
 let _fs;
 // @__NO_SIDE_EFFECTS__
 function getFs() {
@@ -308,18 +309,31 @@ async function httpDownload(url, destPath, options) {
       }
     };
   }
+  const fs = /* @__PURE__ */ getFs();
+  const tempPath = `${destPath}.download`;
+  if (fs.existsSync(tempPath)) {
+    await (0, import_fs.safeDelete)(tempPath);
+  }
   let lastError;
   for (let attempt = 0; attempt <= retries; attempt++) {
     try {
-      return await httpDownloadAttempt(url, destPath, {
+      const result = await httpDownloadAttempt(url, tempPath, {
         followRedirects,
         headers,
         maxRedirects,
         onProgress: progressCallback,
         timeout
       });
+      await fs.promises.rename(tempPath, destPath);
+      return {
+        path: destPath,
+        size: result.size
+      };
     } catch (e) {
       lastError = e;
+      if (fs.existsSync(tempPath)) {
+        await (0, import_fs.safeDelete)(tempPath);
+      }
       if (attempt === retries) {
         break;
       }

package/dist/releases/socket-btm.d.ts

@@ -98,10 +98,11 @@ export declare function getBinaryAssetName(binaryBaseName: string, platform: Pla
 export declare function getBinaryName(binaryBaseName: string, platform: Platform): string;
 /**
  * Get platform-arch identifier for directory structure.
+ * Uses 'win' instead of 'win32' for file/folder names.
  *
  * @param platform - Target platform
  * @param arch - Target architecture
  * @param libc - Linux libc variant (optional)
- * @returns Platform-arch identifier (e.g., 'darwin-arm64', 'linux-x64-musl')
+ * @returns Platform-arch identifier (e.g., 'darwin-arm64', 'linux-x64-musl', 'win-x64')
  */
 export declare function getPlatformArch(platform: Platform, arch: Arch, libc?: Libc | undefined): string;

package/dist/releases/socket-btm.js

@@ -28,6 +28,12 @@ __export(socket_btm_exports, {
 module.exports = __toCommonJS(socket_btm_exports);
 var import_platform = require("../constants/platform.js");
 var import_github = require("./github.js");
+const PLATFORM_MAP = {
+  __proto__: null,
+  darwin: "darwin",
+  linux: "linux",
+  win32: "win"
+};
 const ARCH_MAP = {
   __proto__: null,
   arm64: "arm64",
@@ -176,12 +182,16 @@ function getBinaryName(binaryBaseName, platform) {
   return platform === "win32" ? `${binaryBaseName}.exe` : binaryBaseName;
 }
 function getPlatformArch(platform, arch, libc) {
+  const mappedPlatform = PLATFORM_MAP[platform];
+  if (!mappedPlatform) {
+    throw new Error(`Unsupported platform: ${platform}`);
+  }
   const mappedArch = ARCH_MAP[arch];
   if (!mappedArch) {
     throw new Error(`Unsupported architecture: ${arch}`);
   }
   const muslSuffix = platform === "linux" && libc === "musl" ? "-musl" : "";
-  return `${platform}-${mappedArch}${muslSuffix}`;
+  return `${mappedPlatform}-${mappedArch}${muslSuffix}`;
 }
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/lib",
-  "version": "5.8.1",
+  "version": "5.9.0",
   "packageManager": "pnpm@10.32.1",
   "license": "MIT",
   "description": "Core utilities and infrastructure for Socket.dev security tools",
@@ -734,7 +734,7 @@
     "@socketregistry/is-unicode-supported": "1.0.5",
     "@socketregistry/packageurl-js": "1.3.5",
     "@socketregistry/yocto-spinner": "1.0.25",
-    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.8.0",
+    "@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.8.2",
     "@types/node": "24.9.2",
     "@typescript/native-preview": "7.0.0-dev.20250920.1",
     "@vitest/coverage-v8": "4.0.3",