@socketsecurity/sdk 3.4.0 → 3.5.0

package/dist/socket-sdk-class.d.ts

@@ -1,4 +1,4 @@
-import type { ArtifactPatches, BatchPackageFetchResultType, BatchPackageStreamOptions, CreateDependenciesSnapshotOptions, Entitlement, GetOptions, PatchViewResponse, PostOrgTelemetryPayload, PostOrgTelemetryResponse, QueryParams, SendOptions, SocketSdkGenericResult, SocketSdkOptions, SocketSdkResult, StreamOrgFullScanOptions, UploadManifestFilesError, UploadManifestFilesOptions, UploadManifestFilesReturnType } from './types';
+import type { ArtifactPatches, BatchPackageFetchResultType, BatchPackageStreamOptions, CreateDependenciesSnapshotOptions, Entitlement, GetOptions, MalwareCheckResult, PatchViewResponse, PostOrgTelemetryPayload, PostOrgTelemetryResponse, QueryParams, SendOptions, SocketSdkGenericResult, SocketSdkOptions, SocketSdkResult, StreamOrgFullScanOptions, UploadManifestFilesError, UploadManifestFilesOptions, UploadManifestFilesReturnType } from './types';
 import type { CreateFullScanOptions, DeleteRepositoryLabelResult, DeleteResult, FullScanListResult, FullScanResult, GetRepositoryOptions, ListFullScansOptions, ListRepositoriesOptions, OrganizationsResult, RepositoriesListResult, RepositoryLabelResult, RepositoryLabelsListResult, RepositoryResult, StrictErrorResult } from './types-strict';
 import type { IncomingMessage } from 'node:http';
 /**
@@ -73,6 +73,23 @@ export declare class SocketSdk {
             purl: string;
         }>;
     }, options?: BatchPackageStreamOptions | undefined): AsyncGenerator<BatchPackageFetchResultType>;
+    /**
+     * Check packages for malware and security alerts.
+     *
+     * For small sets (≤ MAX_FIREWALL_COMPONENTS), uses parallel firewall API
+     * requests which return full artifact data including score and alert details.
+     *
+     * For larger sets, uses the batch PURL API for efficiency.
+     *
+     * Both paths normalize alerts through publicPolicy and only return
+     * malware-relevant results.
+     *
+     * @param components - Array of package URLs to check
+     * @returns Normalized results with policy-filtered alerts per package
+     */
+    checkMalware(components: Array<{
+        purl: string;
+    }>): Promise<SocketSdkGenericResult<MalwareCheckResult>>;
     /**
      * Create a snapshot of project dependencies by uploading manifest files.
      * Analyzes dependency files to generate a comprehensive security report.
@@ -368,29 +385,16 @@ export declare class SocketSdk {
      */
     deleteRepositoryLabel(orgSlug: string, labelId: string): Promise<DeleteRepositoryLabelResult | StrictErrorResult>;
     /**
-     * Delete a legacy scan report permanently.
-  
-    /**
-     * Download patch file content by hash.
+     * Download full scan files as a tar archive.
      *
-     * Downloads the actual patched file content from the public Socket blob store.
-     * This is used after calling viewPatch() to get the patch metadata.
-     * No authentication is required as patch blobs are publicly accessible.
-     *
-     * @param hash - The blob hash in SSRI (sha256-base64) or hex format
-     * @param options - Optional configuration
-     * @param options.baseUrl - Override blob store URL (for testing)
-     * @returns Promise<string> - The patch file content as UTF-8 string
-     * @throws Error if blob not found (404) or download fails
+     * Streams the full scan file contents to the specified output path as a tar file.
+     * Includes size limit enforcement to prevent excessive disk usage.
      *
-     * @example
-     * ```typescript
-     * const sdk = new SocketSdk('your-api-token')
-     * // First get patch metadata
-     * const patch = await sdk.viewPatch('my-org', 'patch-uuid')
-     * // Then download the actual patched file
-     * const fileContent = await sdk.downloadPatch(patch.files['index.js'].socketBlob)
-     * ```
+     * @param orgSlug - Organization identifier
+     * @param fullScanId - Full scan identifier
+     * @param outputPath - Local file path to write the tar archive
+     * @returns Download result with success/error status
+     * @throws {Error} When server returns 5xx status codes
      */
     downloadOrgFullScanFilesAsTar(orgSlug: string, fullScanId: string, outputPath: string): Promise<SocketSdkResult<'downloadOrgFullScanFilesAsTar'>>;
     /**
@@ -526,7 +530,7 @@ export declare class SocketSdk {
     /**
      * Retrieve the enabled entitlements for an organization.
      *
-     * This method fetches the organization's entitlements and filters for only* the enabled ones, returning their keys. Entitlements represent Socket
+     * This method fetches the organization's entitlements and filters for only the enabled ones, returning their keys. Entitlements represent Socket
      * Products that the organization has access to use.
      */
     getEnabledEntitlements(orgSlug: string): Promise<string[]>;
@@ -713,13 +717,15 @@ export declare class SocketSdk {
         vulnerability_ids: string;
     }): Promise<SocketSdkResult<'fetch-fixes'>>;
     /**
-     * Get organization's license policy configuration.* Returns allowed, restricted, and monitored license types.
+     * Get organization's license policy configuration.
+     * Returns allowed, restricted, and monitored license types.
      *
      * @throws {Error} When server returns 5xx status codes
      */
     getOrgLicensePolicy(orgSlug: string): Promise<SocketSdkResult<'getOrgLicensePolicy'>>;
     /**
-     * Get organization's security policy configuration.* Returns alert rules, severity thresholds, and enforcement settings.
+     * Get organization's security policy configuration.
+     * Returns alert rules, severity thresholds, and enforcement settings.
      *
      * @throws {Error} When server returns 5xx status codes
      */
@@ -782,10 +788,6 @@ export declare class SocketSdk {
      * @throws {Error} When server returns 5xx status codes
      */
     getRepoAnalytics(repo: string, time: string): Promise<SocketSdkResult<'getRepoAnalytics'>>;
-    /**
-     * Get detailed results for a legacy scan report.
-    /**
-  
     /**
      * Get details for a specific repository.
      *
@@ -1156,13 +1158,15 @@ export declare class SocketSdk {
      */
     updateOrgAlertTriage(orgSlug: string, alertId: string, triageData: QueryParams): Promise<SocketSdkResult<'updateOrgAlertTriage'>>;
     /**
-     * Update organization's license policy configuration.* Modifies allowed, restricted, and monitored license types.
+     * Update organization's license policy configuration.
+     * Modifies allowed, restricted, and monitored license types.
      *
      * @throws {Error} When server returns 5xx status codes
      */
     updateOrgLicensePolicy(orgSlug: string, policyData: QueryParams, queryParams?: QueryParams | undefined): Promise<SocketSdkResult<'updateOrgLicensePolicy'>>;
     /**
-     * Update organization's security policy configuration.* Modifies alert rules, severity thresholds, and enforcement settings.
+     * Update organization's security policy configuration.
+     * Modifies alert rules, severity thresholds, and enforcement settings.
      *
      * @throws {Error} When server returns 5xx status codes
      */

package/dist/types.d.ts

@@ -171,6 +171,34 @@ export type SocketSdkGenericResult<T> = {
     success: false;
     url?: string | undefined;
 };
+export type MalwareCheckAlert = {
+    category?: string | undefined;
+    fix?: {
+        description: string;
+        type: string;
+    } | undefined;
+    key: string;
+    props?: Record<string, unknown> | undefined;
+    severity?: string | undefined;
+    type: ALERT_TYPE;
+};
+export type MalwareCheckPackage = {
+    alerts: MalwareCheckAlert[];
+    name?: string | undefined;
+    namespace?: string | undefined;
+    score?: MalwareCheckScore | undefined;
+    type: string;
+    version?: string | undefined;
+};
+export type MalwareCheckResult = MalwareCheckPackage[];
+export type MalwareCheckScore = {
+    license: number;
+    maintenance: number;
+    overall: number;
+    quality: number;
+    supplyChain: number;
+    vulnerability: number;
+};
 /**
  * Result from file validation callback.
  * Allows consumers to customize error handling and logging.
@@ -312,14 +340,6 @@ export type CreateDependenciesSnapshotOptions = {
     pathsRelativeTo?: string | undefined;
     queryParams?: QueryParams | undefined;
 };
-export type CreateOrgFullScanOptions = {
-    pathsRelativeTo?: string | undefined;
-    queryParams?: QueryParams | undefined;
-};
-export type CreateScanFromFilepathsOptions = {
-    issueRules?: Record<string, boolean> | undefined;
-    pathsRelativeTo?: string | undefined;
-};
 export type StreamOrgFullScanOptions = {
     output?: boolean | string | undefined;
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/sdk",
-  "version": "3.4.0",
+  "version": "3.5.0",
   "description": "SDK for the Socket API client",
   "homepage": "https://github.com/SocketDev/socket-sdk-js",
   "license": "MIT",
@@ -59,16 +59,18 @@
     "publish": "node scripts/publish.mjs",
     "publish:ci": "node scripts/publish.mjs --tag ${DIST_TAG:-latest}",
     "claude": "node scripts/claude.mjs",
+    "security": "agentshield scan && { command -v zizmor >/dev/null && zizmor .github/ || echo 'zizmor not installed — run pnpm run setup to install'; }",
     "test": "node scripts/test.mjs",
     "type": "tsgo --noEmit -p .config/tsconfig.check.json",
     "update": "node scripts/update.mjs"
   },
   "dependencies": {
-    "@socketregistry/packageurl-js": "1.3.5",
-    "@socketsecurity/lib": "5.8.0",
+    "@socketregistry/packageurl-js": "1.4.1",
+    "@socketsecurity/lib": "5.11.4",
     "form-data": "4.0.5"
   },
   "devDependencies": {
+    "@anthropic-ai/claude-code": "2.1.89",
     "@babel/generator": "7.28.5",
     "@babel/parser": "7.26.3",
     "@babel/traverse": "7.26.4",
@@ -83,6 +85,7 @@
     "acorn": "8.15.0",
     "del": "8.0.1",
     "dev-null-cli": "2.0.0",
+    "ecc-agentshield": "1.4.0",
     "esbuild": "0.25.11",
     "fast-glob": "3.3.3",
     "http2-wrapper": "2.2.1",
@@ -109,10 +112,10 @@
     "strict": true
   },
   "engines": {
-    "node": ">=18",
-    "pnpm": ">=10.25.0"
+    "node": ">=18.20.8",
+    "pnpm": ">=10.33.0"
   },
-  "packageManager": "pnpm@10.32.1",
+  "packageManager": "pnpm@10.33.0",
   "pnpm": {
     "ignoredBuiltDependencies": [
       "esbuild",

package/types/api.d.ts

@@ -466,7 +466,7 @@ export interface paths {
   '/orgs/{org_slug}/triage/alerts': {
     /**
      * List Org Alert Triage
-     * @description Get alert triage actions for an organization.
+     * @description List triage actions for an organization. Results are paginated and can be sorted by created_at or updated_at.
      *
      * This endpoint consumes 1 unit of your quota.
      *
@@ -475,8 +475,8 @@ export interface paths {
      */
     get: operations['getOrgTriage']
     /**
-     * Update Org Alert Triage
-     * @description Update triage actions on organization alerts.
+     * Create/Update Org Alert Triage
+     * @description Create or update triage actions on organization alerts. Accepts a batch of triage entries. Omit `uuid` to create a new entry; provide an existing `uuid` to update it. Use `?force=true` for broad triages that lack a specific `alertKey` or granular package information.
      *
      * This endpoint consumes 1 unit of your quota.
      *
@@ -896,7 +896,7 @@ export interface paths {
     /**
      * Start historical data snapshot job (Beta)
      * @description This API endpoint is used to start a historical snapshot job.
-     * While snapshots are typically taken at least once a day, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
+     * While snapshots are typically taken multiple times a day for paid plans and once a day for free plans, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
      *
      * An historical snapshot will contain details and raw data for the following resources:
      *
@@ -1940,6 +1940,27 @@ export interface components {
         licenseDetails?: components['schemas']['LicenseDetails']
         licenseAttrib?: components['schemas']['SAttrib1_N']
       }
+    /** @description Mapping of supply chain risk alert types to their computed score contributions and formulas used for calculation. This allows for detailed breakdowns of how each alert type impacts the overall supply chain security score, with the ability to include custom formulas and components for each alert type. */
+    SocketSBOMScore: {
+      [key: string]: {
+        value: {
+          /**
+           * @description Score from 0.0 to 1.0 for the scanned repository, computed from supply chain risk alerts using weighted exponential decay per direct dependency
+           * @default 0
+           */
+          result: number
+          /** @description Components used to compute result of the formula */
+          components?: {
+            [key: string]: number
+          }
+          /**
+           * @description Formula used to compute the supply chain security score
+           * @default
+           */
+          formula?: string
+        }
+      }
+    }
     SocketDiffArtifact: components['schemas']['SocketPURL'] & {
       diffType: components['schemas']['SocketDiffArtifactType']
       id?: components['schemas']['SocketId']
@@ -4331,6 +4352,23 @@ export interface components {
             usage?: components['schemas']['SocketUsageRef']
           }
         }
+      | {
+          /** @enum {string} */
+          type?: 'skillPreExecution'
+          value?: components['schemas']['SocketIssueBasics'] & {
+            /** @default */
+            description: string
+            props: {
+              /** @default */
+              notes: string
+              /** @default 0 */
+              confidence: number
+              /** @default 0 */
+              severity: number
+            }
+            usage?: components['schemas']['SocketUsageRef']
+          }
+        }
       | {
           /** @enum {string} */
           type?: 'skillPromptInjection'
@@ -5522,6 +5560,8 @@ export interface operations {
         cachedResultsOnly?: boolean
         /** @description Include a summary object at the end of the stream with counts of malformed, resolved, and not found PURLs. */
         summary?: boolean
+        /** @description Maximum time in seconds to wait for scan results. PURLs that have not completed processing when the timeout is reached will be returned as errors (when purlErrors is enabled). Omit for no timeout. */
+        timeoutSec?: number
       }
     }
     requestBody?: {
@@ -5598,6 +5638,8 @@ export interface operations {
               version?: string
               /** @default */
               release?: string
+              /** @default */
+              workspace?: string
             }>
           }
         }
@@ -5924,6 +5966,10 @@ export interface operations {
         include_alert_priority_details?:
           | boolean
           | Array<'component' | 'formula'>
+        /** @description Include scores event in the response. include_scores_details implies this flag */
+        include_scores: boolean
+        /** @description Control which score detail fields to include in the scores event. Set to "true" to include all fields, "false" to exclude all fields, or specify individual fields like "components,formula" to include only those fields. */
+        include_scores_details?: boolean | Array<'components' | 'formula'>
         /** @description Include license details in the response. This can increase the response size significantly. */
         include_license_details: boolean
         /** @description Return cached immutable scan results. When enabled and results are cached, returns the pre-computed scan. When results are not yet cached, returns 202 Accepted and enqueues a background job. */
@@ -5937,10 +5983,16 @@ export interface operations {
       }
     }
     responses: {
-      /** @description Socket issue lists and scores for all packages */
+      /** @description Socket issue lists and scores for all packages, followed by a final scores event */
       200: {
         content: {
-          'application/x-ndjson': components['schemas']['SocketArtifact']
+          'application/x-ndjson':
+            | components['schemas']['SocketArtifact']
+            | {
+                /** @enum {string} */
+                _type: 'scores'
+                value: components['schemas']['SocketSBOMScore']
+              }
         }
       }
       /** @description Scan is being processed. Poll again later to retrieve results. */
@@ -7477,7 +7529,7 @@ export interface operations {
   }
   /**
    * List Org Alert Triage
-   * @description Get alert triage actions for an organization.
+   * @description List triage actions for an organization. Results are paginated and can be sorted by created_at or updated_at.
    *
    * This endpoint consumes 1 unit of your quota.
    *
@@ -7487,9 +7539,13 @@ export interface operations {
   getOrgTriage: {
     parameters: {
       query?: {
+        /** @description Field to sort by. One of: created_at, updated_at. */
         sort?: string
+        /** @description Sort direction. One of: asc, desc. */
         direction?: string
+        /** @description Number of results per page (1–100, default 30). */
         per_page?: number
+        /** @description Page number (1-based). */
         page?: number
       }
       path: {
@@ -7612,8 +7668,8 @@ export interface operations {
     }
   }
   /**
-   * Update Org Alert Triage
-   * @description Update triage actions on organization alerts.
+   * Create/Update Org Alert Triage
+   * @description Create or update triage actions on organization alerts. Accepts a batch of triage entries. Omit `uuid` to create a new entry; provide an existing `uuid` to update it. Use `?force=true` for broad triages that lack a specific `alertKey` or granular package information.
    *
    * This endpoint consumes 1 unit of your quota.
    *
@@ -7635,19 +7691,40 @@ export interface operations {
       content: {
         'application/json': {
           alertTriage: Array<{
-            /** @default */
+            /**
+             * @description The UUID of the triage entry. Omit to create a new entry; provide to update an existing one.
+             * @default
+             */
             uuid?: string | null
-            /** @default */
+            /**
+             * @description The package ecosystem type (e.g., npm, pypi). Use null or "*" for wildcard.
+             * @default
+             */
             packageType?: string | null
-            /** @default */
+            /**
+             * @description The package namespace or scope. Use null or "*" for wildcard.
+             * @default
+             */
             packageNamespace?: string | null
-            /** @default */
+            /**
+             * @description The package name. Use null or "*" for wildcard.
+             * @default
+             */
             packageName?: string | null
-            /** @default */
+            /**
+             * @description The package version. Supports a "*" suffix for wildcard prefix matching. Use null for any version.
+             * @default
+             */
             packageVersion?: string | null
-            /** @default */
+            /**
+             * @description The specific alert key to target.
+             * @default
+             */
             alertKey?: string | null
-            /** @default */
+            /**
+             * @description The alert type (e.g., criticalCVE, highCVE).
+             * @default
+             */
             alertType?: string | null
             /**
              * @description Whether a fix is available, unavailable, or * for any
@@ -7664,16 +7741,25 @@ export interface operations {
              * @enum {string}
              */
             kevs?: 'exist' | 'none' | '*'
-            /** @default */
+            /**
+             * @description CVE or GHSA ID to match against.
+             * @default
+             */
             cveOrGhsaId?: string | null
             /**
              * @description The reachability of the alert, can be reachable, unreachable, other, or * for any
              * @enum {string}
              */
             reachability?: 'reachable' | 'unreachable' | 'other' | '*'
-            /** @default */
+            /**
+             * @description CVSS score comparison operator and value (e.g., >=7.5, >5.0, ==8.0).
+             * @default
+             */
             cvssScoreCmp?: string | null
-            /** @default */
+            /**
+             * @description A note or comment for the triage action.
+             * @default
+             */
             note?: string
             /**
              * @description The triage state of the alert
@@ -9377,6 +9463,13 @@ export interface operations {
                  */
                 action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
               }
+              skillPreExecution?: {
+                /**
+                 * @description The action to take for skillPreExecution issues.
+                 * @enum {string}
+                 */
+                action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+              }
               skillPromptInjection?: {
                 /**
                  * @description The action to take for skillPromptInjection issues.
@@ -10354,6 +10447,13 @@ export interface operations {
                */
               action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
             }
+            skillPreExecution?: {
+              /**
+               * @description The action to take for skillPreExecution issues.
+               * @enum {string}
+               */
+              action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+            }
             skillPromptInjection?: {
               /**
                * @description The action to take for skillPromptInjection issues.
@@ -11485,6 +11585,13 @@ export interface operations {
                  */
                 action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
               }
+              skillPreExecution?: {
+                /**
+                 * @description The action to take for skillPreExecution issues.
+                 * @enum {string}
+                 */
+                action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+              }
               skillPromptInjection?: {
                 /**
                  * @description The action to take for skillPromptInjection issues.
@@ -12455,6 +12562,13 @@ export interface operations {
                */
               action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
             }
+            skillPreExecution?: {
+              /**
+               * @description The action to take for skillPreExecution issues.
+               * @enum {string}
+               */
+              action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+            }
             skillPromptInjection?: {
               /**
                * @description The action to take for skillPromptInjection issues.
@@ -13394,6 +13508,13 @@ export interface operations {
                  */
                 action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
               }
+              skillPreExecution?: {
+                /**
+                 * @description The action to take for skillPreExecution issues.
+                 * @enum {string}
+                 */
+                action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+              }
               skillPromptInjection?: {
                 /**
                  * @description The action to take for skillPromptInjection issues.
@@ -15209,7 +15330,7 @@ export interface operations {
   /**
    * Start historical data snapshot job (Beta)
    * @description This API endpoint is used to start a historical snapshot job.
-   * While snapshots are typically taken at least once a day, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
+   * While snapshots are typically taken multiple times a day for paid plans and once a day for free plans, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
    *
    * An historical snapshot will contain details and raw data for the following resources:
    *
@@ -15279,6 +15400,7 @@ export interface operations {
           | 'CreateOauthRefreshToken'
           | 'CreateRepoAccessRule'
           | 'CreateWebhook'
+          | 'CreateTicket'
           | 'DeleteAlertTriage'
           | 'DeleteApiToken'
           | 'DeleteFullScan'
@@ -15289,8 +15411,10 @@ export interface operations {
           | 'DeleteRepository'
           | 'DeleteWebhook'
           | 'DisassociateLabel'
+          | 'DisconnectJiraIntegration'
           | 'DowngradeOrganizationPlan'
           | 'JoinOrganization'
+          | 'JiraIntegrationConnected'
           | 'MemberAdded'
           | 'MemberRemoved'
           | 'MemberRoleChanged'
@@ -15485,6 +15609,11 @@ export interface operations {
                 | 'alerts'
                 | 'alerts:list'
                 | 'alerts:trend'
+                | 'alert-resolution'
+                | 'alert-resolution:list'
+                | 'alert-resolution:create'
+                | 'alert-resolution:read'
+                | 'alert-resolution:delete'
                 | 'api-tokens'
                 | 'api-tokens:create'
                 | 'api-tokens:update'
@@ -15615,6 +15744,11 @@ export interface operations {
             | 'alerts'
             | 'alerts:list'
             | 'alerts:trend'
+            | 'alert-resolution'
+            | 'alert-resolution:list'
+            | 'alert-resolution:create'
+            | 'alert-resolution:read'
+            | 'alert-resolution:delete'
             | 'api-tokens'
             | 'api-tokens:create'
             | 'api-tokens:update'
@@ -15808,6 +15942,11 @@ export interface operations {
             | 'alerts'
             | 'alerts:list'
             | 'alerts:trend'
+            | 'alert-resolution'
+            | 'alert-resolution:list'
+            | 'alert-resolution:create'
+            | 'alert-resolution:read'
+            | 'alert-resolution:delete'
             | 'api-tokens'
             | 'api-tokens:create'
             | 'api-tokens:update'
@@ -16543,6 +16682,8 @@ export interface operations {
         cachedResultsOnly?: boolean
         /** @description Include a summary object at the end of the stream with counts of malformed, resolved, and not found PURLs. */
         summary?: boolean
+        /** @description Maximum time in seconds to wait for scan results. PURLs that have not completed processing when the timeout is reached will be returned as errors (when purlErrors is enabled). Omit for no timeout, unless a default timeout is configured for the organization. */
+        timeoutSec?: number
       }
       path: {
         /** @description The slug of the organization */
@@ -16633,7 +16774,7 @@ export interface operations {
   'fetch-fixes': {
     parameters: {
       query: {
-        /** @description The slug of the repository to fetch fixes for. Computes fixes based on the latest scan on the default branch */
+        /** @description The slug of the repository to fetch fixes for (e.g. "my-repo" or "my-org/my-repo"). Use the full org/repo path to disambiguate when multiple GitHub orgs share the same repo name. Computes fixes based on the latest scan on the default branch */
         repo_slug?: string
         /** @description The ID of the scan to fetch fixes for */
         full_scan_id?: string