@socketsecurity/sdk 3.4.1 → 4.0.0

package/dist/index.js

@@ -30,48 +30,31 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 // src/index.ts
 var index_exports = {};
 __export(index_exports, {
-  DEFAULT_USER_AGENT: () => DEFAULT_USER_AGENT,
   ResponseError: () => ResponseError,
   SocketSdk: () => SocketSdk,
   calculateTotalQuotaCost: () => calculateTotalQuotaCost,
-  calculateWordSetSimilarity: () => calculateWordSetSimilarity,
-  createDeleteRequest: () => createDeleteRequest,
-  createGetRequest: () => createGetRequest,
-  createRequestBodyForFilepaths: () => createRequestBodyForFilepaths,
-  createRequestBodyForJson: () => createRequestBodyForJson,
-  createRequestWithJson: () => createRequestWithJson,
-  createUploadRequest: () => createUploadRequest,
   createUserAgentFromPkgJson: () => createUserAgentFromPkgJson,
-  filterRedundantCause: () => filterRedundantCause,
   getAllMethodRequirements: () => getAllMethodRequirements,
-  getErrorResponseBody: () => getErrorResponseBody,
-  getHttpModule: () => getHttpModule,
   getMethodRequirements: () => getMethodRequirements,
   getMethodsByPermissions: () => getMethodsByPermissions,
   getMethodsByQuotaCost: () => getMethodsByQuotaCost,
   getQuotaCost: () => getQuotaCost,
   getQuotaUsageSummary: () => getQuotaUsageSummary,
   getRequiredPermissions: () => getRequiredPermissions,
-  getResponse: () => getResponse,
-  getResponseJson: () => getResponseJson,
-  hasQuotaForMethods: () => hasQuotaForMethods,
-  httpAgentNames: () => httpAgentNames,
-  isResponseOk: () => isResponseOk,
-  normalizeBaseUrl: () => normalizeBaseUrl,
-  promiseWithResolvers: () => promiseWithResolvers,
-  publicPolicy: () => publicPolicy,
-  queryToSearchParams: () => queryToSearchParams,
-  reshapeArtifactForPublicPolicy: () => reshapeArtifactForPublicPolicy,
-  resolveAbsPaths: () => resolveAbsPaths,
-  resolveBasePath: () => resolveBasePath,
-  shouldOmitReason: () => shouldOmitReason
+  hasQuotaForMethods: () => hasQuotaForMethods
 });
 module.exports = __toCommonJS(index_exports);
 
+// src/http-client.ts
+var import_debug = require("@socketsecurity/lib/debug");
+var import_http_request = require("@socketsecurity/lib/http-request");
+var import_parse = require("@socketsecurity/lib/json/parse");
+var import_performance = require("@socketsecurity/lib/performance");
+
 // package.json
 var package_default = {
   name: "@socketsecurity/sdk",
-  version: "3.4.1",
+  version: "4.0.0",
   description: "SDK for the Socket API client",
   homepage: "https://github.com/SocketDev/socket-sdk-js",
   license: "MIT",
@@ -119,7 +102,7 @@ var package_default = {
     clean: "node scripts/clean.mjs",
     cover: "node scripts/cover.mjs",
     fix: "node scripts/lint.mjs --fix",
-    format: "oxfmt .",
+    format: "oxfmt --write .",
     "format:check": "oxfmt --check .",
     "generate-sdk": "node scripts/generate-sdk.mjs",
     lint: "node scripts/lint.mjs",
@@ -130,16 +113,17 @@ var package_default = {
     publish: "node scripts/publish.mjs",
     "publish:ci": "node scripts/publish.mjs --tag ${DIST_TAG:-latest}",
     claude: "node scripts/claude.mjs",
+    security: "agentshield scan && { command -v zizmor >/dev/null && zizmor .github/ || echo 'zizmor not installed \u2014 run pnpm run setup to install'; }",
     test: "node scripts/test.mjs",
     type: "tsgo --noEmit -p .config/tsconfig.check.json",
     update: "node scripts/update.mjs"
   },
   dependencies: {
-    "@socketregistry/packageurl-js": "1.3.5",
-    "@socketsecurity/lib": "5.8.1",
+    "@socketsecurity/lib": "5.15.0",
     "form-data": "4.0.5"
   },
   devDependencies: {
+    "@anthropic-ai/claude-code": "2.1.92",
     "@babel/generator": "7.28.5",
     "@babel/parser": "7.26.3",
     "@babel/traverse": "7.26.4",
@@ -154,9 +138,9 @@ var package_default = {
     acorn: "8.15.0",
     del: "8.0.1",
     "dev-null-cli": "2.0.0",
+    "ecc-agentshield": "1.4.0",
     esbuild: "0.25.11",
     "fast-glob": "3.3.3",
-    "http2-wrapper": "2.2.1",
     husky: "9.1.7",
     "magic-string": "0.30.14",
     nock: "14.0.10",
@@ -180,17 +164,18 @@ var package_default = {
     strict: true
   },
   engines: {
-    node: ">=18",
-    pnpm: ">=10.25.0"
+    node: ">=18.20.8",
+    pnpm: ">=10.33.0"
   },
-  packageManager: "pnpm@10.32.1",
+  packageManager: "pnpm@10.33.0",
   pnpm: {
     ignoredBuiltDependencies: [
       "esbuild",
       "unrs-resolver"
     ],
     overrides: {
-      vite: "7.1.12"
+      defu: ">=6.1.6",
+      vite: "7.3.2"
     }
   }
 };
@@ -216,6 +201,8 @@ var MIN_HTTP_TIMEOUT = 5e3;
 var MAX_RESPONSE_SIZE = 10 * 1024 * 1024;
 var MAX_STREAM_SIZE = 100 * 1024 * 1024;
 var SOCKET_PUBLIC_BLOB_STORE_URL = "https://socketusercontent.com";
+var MAX_FIREWALL_COMPONENTS = 8;
+var SOCKET_FIREWALL_API_URL = "https://firewall-api.socket.dev/purl";
 var httpAgentNames = /* @__PURE__ */ new Set(["http", "https", "http2"]);
 var publicPolicy = /* @__PURE__ */ new Map([
   // error (1):
@@ -325,110 +312,6 @@ var publicPolicy = /* @__PURE__ */ new Map([
   ["zeroWidth", "ignore"]
 ]);
 
-// src/utils.ts
-var import_node_path = __toESM(require("node:path"));
-var import_memoization = require("@socketsecurity/lib/memoization");
-var import_normalize = require("@socketsecurity/lib/paths/normalize");
-function normalizeToWordSet(s) {
-  const words = s.toLowerCase().match(/\w+/g);
-  return new Set(words ?? []);
-}
-function calculateWordSetSimilarity(str1, str2) {
-  const set1 = normalizeToWordSet(str1);
-  const set2 = normalizeToWordSet(str2);
-  if (set1.size === 0 && set2.size === 0) {
-    return 1;
-  }
-  if (set1.size === 0 || set2.size === 0) {
-    return 0;
-  }
-  let intersectionSize = 0;
-  for (const word of set1) {
-    if (set2.has(word)) {
-      intersectionSize++;
-    }
-  }
-  const unionSize = set1.size + set2.size - intersectionSize;
-  return intersectionSize / unionSize;
-}
-function filterRedundantCause(errorMessage, errorCause, threshold = 0.6) {
-  if (!errorCause || !errorCause.trim()) {
-    return void 0;
-  }
-  const messageParts = errorMessage.split(":").map((part) => part.trim());
-  for (const part of messageParts) {
-    if (part && shouldOmitReason(part, errorCause, threshold)) {
-      return void 0;
-    }
-  }
-  return errorCause;
-}
-var normalizeBaseUrl = (0, import_memoization.memoize)(
-  (baseUrl) => {
-    return baseUrl.endsWith("/") ? baseUrl : `${baseUrl}/`;
-  },
-  { name: "normalizeBaseUrl" }
-);
-function promiseWithResolvers() {
-  if (Promise.withResolvers) {
-    return Promise.withResolvers();
-  }
-  const obj = {};
-  obj.promise = new Promise((resolver, reject) => {
-    obj.resolve = resolver;
-    obj.reject = reject;
-  });
-  return obj;
-}
-function queryToSearchParams(init) {
-  const params = new URLSearchParams(
-    init
-  );
-  const normalized = { __proto__: null };
-  const entries = params.entries();
-  for (const entry of entries) {
-    let key = entry[0];
-    const value = entry[1];
-    if (key === "defaultBranch") {
-      key = "default_branch";
-    } else if (key === "perPage") {
-      key = "per_page";
-    }
-    if (value) {
-      normalized[key] = value;
-    }
-  }
-  return new URLSearchParams(normalized);
-}
-function resolveAbsPaths(filepaths, pathsRelativeTo) {
-  const basePath = resolveBasePath(pathsRelativeTo);
-  return filepaths.map((p) => (0, import_normalize.normalizePath)(import_node_path.default.resolve(basePath, p)));
-}
-function resolveBasePath(pathsRelativeTo = ".") {
-  return (0, import_normalize.normalizePath)(import_node_path.default.resolve(process.cwd(), pathsRelativeTo));
-}
-function shouldOmitReason(errorMessage, reason, threshold = 0.6) {
-  if (!reason || !reason.trim()) {
-    return true;
-  }
-  const similarity = calculateWordSetSimilarity(errorMessage, reason);
-  return similarity >= threshold;
-}
-
-// src/file-upload.ts
-var import_node_fs = require("node:fs");
-var import_node_path2 = __toESM(require("node:path"));
-var import_node_stream = require("node:stream");
-var import_form_data = __toESM(require("form-data"));
-var import_normalize2 = require("@socketsecurity/lib/paths/normalize");
-
-// src/http-client.ts
-var import_node_http = __toESM(require("node:http"));
-var import_node_https = __toESM(require("node:https"));
-var import_debug = require("@socketsecurity/lib/debug");
-var import_parse = require("@socketsecurity/lib/json/parse");
-var import_performance = require("@socketsecurity/lib/performance");
-
 // src/utils/header-sanitization.ts
 var SENSITIVE_HEADERS = [
   "authorization",
@@ -461,13 +344,9 @@ function sanitizeHeaders(headers) {
 var ResponseError = class _ResponseError extends Error {
   response;
   url;
-  /**
-   * Create a new ResponseError from an HTTP response.
-   * Automatically formats error message with status code and message.
-   */
   constructor(response, message = "", url) {
-    const statusCode = response.statusCode ?? "unknown";
-    const statusMessage = response.statusMessage ?? "No status message";
+    const statusCode = response.status ?? "unknown";
+    const statusMessage = response.statusText || "No status message";
     super(
       /* c8 ignore next - fallback empty message if not provided */
       `Socket API ${message || "Request failed"} (${statusCode}): ${statusMessage}`
@@ -487,34 +366,41 @@ async function createDeleteRequest(baseUrl, urlPath, options) {
     ...options
   };
   const opts = { __proto__: null, ...rawOpts };
-  hooks?.onRequest?.({
-    method,
-    url,
-    headers: sanitizeHeaders(opts.headers),
-    timeout: opts.timeout
-  });
-  try {
-    const req = getHttpModule(baseUrl).request(url, {
-      method,
-      ...opts
-    }).end();
-    const response = await getResponse(req);
-    hooks?.onResponse?.({
+  if (hooks?.onRequest) {
+    hooks.onRequest({
       method,
       url,
-      duration: Date.now() - startTime,
-      status: response.statusCode,
-      statusText: response.statusMessage,
-      headers: sanitizeHeaders(response.headers)
+      headers: sanitizeHeaders(opts.headers),
+      timeout: opts.timeout
     });
-    return response;
-  } catch (error) {
-    hooks?.onResponse?.({
+  }
+  try {
+    const response = await (0, import_http_request.httpRequest)(url, {
       method,
-      url,
-      duration: Date.now() - startTime,
-      error
+      headers: opts.headers,
+      timeout: opts.timeout,
+      maxResponseSize: MAX_RESPONSE_SIZE
     });
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        status: response.status,
+        statusText: response.statusText,
+        headers: sanitizeHeaders(response.headers)
+      });
+    }
+    return response;
+  } catch (error) {
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        error
+      });
+    }
     throw error;
   }
 }
@@ -528,36 +414,43 @@ async function createGetRequest(baseUrl, urlPath, options) {
     ...options
   };
   const opts = { __proto__: null, ...rawOpts };
-  hooks?.onRequest?.({
-    method,
-    url,
-    headers: sanitizeHeaders(opts.headers),
-    timeout: opts.timeout
-  });
-  try {
-    const req = getHttpModule(baseUrl).request(url, {
-      method,
-      ...opts
-    }).end();
-    const response = await getResponse(req);
-    stopTimer({ statusCode: response.statusCode });
-    hooks?.onResponse?.({
+  if (hooks?.onRequest) {
+    hooks.onRequest({
       method,
       url,
-      duration: Date.now() - startTime,
-      status: response.statusCode,
-      statusText: response.statusMessage,
-      headers: sanitizeHeaders(response.headers)
+      headers: sanitizeHeaders(opts.headers),
+      timeout: opts.timeout
     });
+  }
+  try {
+    const response = await (0, import_http_request.httpRequest)(url, {
+      method,
+      headers: opts.headers,
+      timeout: opts.timeout,
+      maxResponseSize: MAX_RESPONSE_SIZE
+    });
+    stopTimer({ statusCode: response.status });
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        status: response.status,
+        statusText: response.statusText,
+        headers: sanitizeHeaders(response.headers)
+      });
+    }
     return response;
   } catch (error) {
     stopTimer({ error: true });
-    hooks?.onResponse?.({
-      method,
-      url,
-      duration: Date.now() - startTime,
-      error
-    });
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        error
+      });
+    }
     throw error;
   }
 }
@@ -575,157 +468,49 @@ async function createRequestWithJson(method, baseUrl, urlPath, json, options) {
   const body = JSON.stringify(json);
   const headers = {
     ...opts.headers,
-    "Content-Length": Buffer.byteLength(body, "utf8"),
     "Content-Type": "application/json"
   };
-  hooks?.onRequest?.({
-    method,
-    url,
-    headers: sanitizeHeaders(headers),
-    timeout: opts.timeout
-  });
-  try {
-    const req = getHttpModule(baseUrl).request(url, {
+  if (hooks?.onRequest) {
+    hooks.onRequest({
       method,
-      ...opts,
-      headers
+      url,
+      headers: sanitizeHeaders(headers),
+      timeout: opts.timeout
     });
-    req.write(body);
-    req.end();
-    const response = await getResponse(req);
-    stopTimer({ statusCode: response.statusCode });
-    hooks?.onResponse?.({
+  }
+  try {
+    const response = await (0, import_http_request.httpRequest)(url, {
       method,
-      url,
-      duration: Date.now() - startTime,
-      status: response.statusCode,
-      statusText: response.statusMessage,
-      headers: sanitizeHeaders(response.headers)
+      body,
+      headers,
+      timeout: opts.timeout,
+      maxResponseSize: MAX_RESPONSE_SIZE
     });
+    stopTimer({ statusCode: response.status });
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        status: response.status,
+        statusText: response.statusText,
+        headers: sanitizeHeaders(response.headers)
+      });
+    }
     return response;
   } catch (error) {
     stopTimer({ error: true });
-    hooks?.onResponse?.({
-      method,
-      url,
-      duration: Date.now() - startTime,
-      error
-    });
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        error
+      });
+    }
     throw error;
   }
 }
-async function getErrorResponseBody(response) {
-  return await new Promise((resolve, reject) => {
-    let body = "";
-    let totalBytes = 0;
-    response.setEncoding("utf8");
-    response.on("data", (chunk) => {
-      const chunkBytes = Buffer.byteLength(chunk, "utf8");
-      if (totalBytes + chunkBytes > MAX_RESPONSE_SIZE) {
-        response.destroy();
-        const projectedSize = totalBytes + chunkBytes;
-        const sizeMB = (projectedSize / (1024 * 1024)).toFixed(2);
-        const maxMB = (MAX_RESPONSE_SIZE / (1024 * 1024)).toFixed(2);
-        const message = [
-          `Response exceeds maximum size limit (${sizeMB}MB > ${maxMB}MB)`,
-          "\u2192 The API response is too large to process safely.",
-          "\u2192 Try: Use pagination parameters (limit, offset) to reduce response size.",
-          "\u2192 Try: Request specific fields instead of full objects.",
-          "\u2192 Contact support if you need to process larger responses."
-        ].join("\n");
-        reject(new Error(message));
-        return;
-      }
-      totalBytes += chunkBytes;
-      body += chunk;
-    });
-    response.on("end", () => resolve(body));
-    response.on("error", (e) => reject(e));
-  });
-}
-function getHttpModule(url) {
-  return url.startsWith("https:") ? import_node_https.default : import_node_http.default;
-}
-async function getResponse(req) {
-  return await new Promise((resolve, reject) => {
-    let timedOut = false;
-    req.on("response", (response) => {
-      if (timedOut) {
-        return;
-      }
-      resolve(response);
-    });
-    req.on("timeout", () => {
-      timedOut = true;
-      req.destroy();
-      const method = req.method || "REQUEST";
-      const path4 = req.path || "unknown";
-      const timeout = req.timeout || "configured timeout";
-      const message = [
-        `${method} request timed out after ${timeout}ms: ${path4}`,
-        "\u2192 The Socket API did not respond in time.",
-        "\u2192 Try: Increase timeout option or check network connectivity.",
-        "\u2192 If problem persists, Socket API may be experiencing issues."
-      ].join("\n");
-      reject(new Error(message));
-    });
-    req.on("error", (e) => {
-      if (!timedOut) {
-        const err = e;
-        const method = req.method || "REQUEST";
-        const path4 = req.path || "unknown";
-        let message = `${method} request failed: ${path4}`;
-        if (err.code === "ECONNREFUSED") {
-          message += [
-            "",
-            "\u2192 Connection refused. Socket API server is unreachable.",
-            "\u2192 Check: Network connectivity and firewall settings.",
-            "\u2192 Verify: Base URL is correct (default: https://api.socket.dev)"
-          ].join("\n");
-        } else if (err.code === "ENOTFOUND") {
-          message += [
-            "",
-            "\u2192 DNS lookup failed. Cannot resolve hostname.",
-            "\u2192 Check: Internet connection and DNS settings.",
-            "\u2192 Verify: Base URL hostname is correct."
-          ].join("\n");
-        } else if (err.code === "ETIMEDOUT") {
-          message += [
-            "",
-            "\u2192 Connection timed out. Network or server issue.",
-            "\u2192 Try: Check network connectivity and retry.",
-            "\u2192 If using proxy, verify proxy configuration."
-          ].join("\n");
-        } else if (err.code === "ECONNRESET") {
-          message += [
-            "",
-            "\u2192 Connection reset by server. Possible network interruption.",
-            "\u2192 Try: Retry the request. Enable retries option if not set."
-          ].join("\n");
-        } else if (err.code === "EPIPE") {
-          message += [
-            "",
-            "\u2192 Broken pipe. Server closed connection unexpectedly.",
-            "\u2192 Possible: Authentication issue or server error.",
-            "\u2192 Check: API token is valid and has required permissions."
-          ].join("\n");
-        } else if (err.code === "CERT_HAS_EXPIRED" || err.code === "UNABLE_TO_VERIFY_LEAF_SIGNATURE") {
-          message += [
-            "",
-            "\u2192 SSL/TLS certificate error.",
-            "\u2192 Check: System time and date are correct.",
-            "\u2192 Try: Update CA certificates on your system."
-          ].join("\n");
-        } else if (err.code) {
-          message += `
-\u2192 Error code: ${err.code}`;
-        }
-        const enhancedError = new Error(message, { cause: e });
-        reject(enhancedError);
-      }
-    });
-  });
-}
 async function getResponseJson(response, method, url) {
   const stopTimer = (0, import_performance.perfTimer)("http:parse-json");
   try {
@@ -736,7 +521,7 @@ async function getResponseJson(response, method, url) {
         url
       );
     }
-    const responseBody = await getErrorResponseBody(response);
+    const responseBody = response.text();
     if (responseBody === "") {
       (0, import_debug.debugLog)("API response: empty response treated as {}");
       stopTimer({ success: true });
@@ -800,12 +585,12 @@ async function getResponseJson(response, method, url) {
   }
 }
 function isResponseOk(response) {
-  const { statusCode } = response;
-  return statusCode ? statusCode >= 200 && statusCode < 300 : false;
+  return response.ok;
 }
-function reshapeArtifactForPublicPolicy(data, isAuthenticated, actions) {
+function reshapeArtifactForPublicPolicy(data, isAuthenticated, actions, policy) {
   if (!isAuthenticated) {
-    const allowedActions = actions?.trim() ? actions.split(",") : void 0;
+    const allowedActions = actions?.trim() ? new Set(actions.split(",")) : void 0;
+    const resolvedPolicy = policy ?? publicPolicy;
     const reshapeArtifact = (artifact) => ({
       name: artifact.name,
       version: artifact.version,
@@ -815,21 +600,22 @@ function reshapeArtifactForPublicPolicy(data, isAuthenticated, actions) {
       supplyChainRisk: artifact.supplyChainRisk,
       scorecards: artifact.scorecards,
       topLevelAncestors: artifact.topLevelAncestors,
-      // Compact the alerts array to reduce response size for non-authenticated
-      // requests.
-      alerts: artifact.alerts?.filter((alert) => {
+      alerts: artifact.alerts?.reduce((acc, alert) => {
         if (alert.severity === "low") {
-          return false;
+          return acc;
         }
-        if (allowedActions && alert.action && !allowedActions.includes(alert.action)) {
-          return false;
+        const action = resolvedPolicy.get(alert.type);
+        if (allowedActions && action && !allowedActions.has(action)) {
+          return acc;
         }
-        return true;
-      }).map((alert) => ({
-        type: alert.type,
-        severity: alert.severity,
-        key: alert.key
-      }))
+        acc.push({
+          action,
+          key: alert.key,
+          severity: alert.severity,
+          type: alert.type
+        });
+        return acc;
+      }, [])
     });
     if (data["artifacts"]) {
       const artifacts = data["artifacts"];
@@ -847,121 +633,22 @@ function reshapeArtifactForPublicPolicy(data, isAuthenticated, actions) {
   return data;
 }
 
-// src/file-upload.ts
-function createRequestBodyForFilepaths(filepaths, basePath) {
-  const form = new import_form_data.default();
-  for (const absPath of filepaths) {
-    const relPath = (0, import_normalize2.normalizePath)(import_node_path2.default.relative(basePath, absPath));
-    const filename = import_node_path2.default.basename(absPath);
-    let stream;
-    try {
-      stream = (0, import_node_fs.createReadStream)(absPath, { highWaterMark: 1024 * 1024 });
-    } catch (error) {
-      const err = error;
-      let message = `Failed to read file: ${absPath}`;
-      if (err.code === "ENOENT") {
-        message += "\n\u2192 File does not exist. Check the file path and try again.";
-      } else if (err.code === "EACCES") {
-        message += `
-\u2192 Permission denied. Run: chmod +r "${absPath}"`;
-      } else if (err.code === "EISDIR") {
-        message += "\n\u2192 Expected a file but found a directory.";
-      } else if (err.code) {
-        message += `
-\u2192 Error code: ${err.code}`;
-      }
-      throw new Error(message, { cause: error });
-    }
-    form.append(relPath, stream, {
-      contentType: "application/octet-stream",
-      filename
-    });
-  }
-  return form;
-}
-function createRequestBodyForJson(jsonData, basename = "data.json") {
-  const ext = import_node_path2.default.extname(basename);
-  const name = import_node_path2.default.basename(basename, ext);
-  const jsonStream = import_node_stream.Readable.from(JSON.stringify(jsonData), {
-    highWaterMark: 1024 * 1024
-  });
-  const form = new import_form_data.default();
-  form.append(name, jsonStream, {
-    contentType: "application/json",
-    filename: basename
-  });
-  return form;
-}
-async function createUploadRequest(baseUrl, urlPath, form, options) {
-  const { hooks, ...rawOpts } = {
-    __proto__: null,
-    ...options
-  };
-  const opts = { __proto__: null, ...rawOpts };
-  return await new Promise((pass, fail) => {
-    const url = new URL(urlPath, baseUrl);
-    const method = "POST";
-    const formHeaders = form.getHeaders();
-    const headers = {
-      ...opts?.headers,
-      ...formHeaders
-    };
-    const startTime = Date.now();
-    const req = getHttpModule(baseUrl).request(url, {
-      method,
-      ...opts,
-      headers
-    });
-    hooks?.onRequest?.({
-      method,
-      url: url.toString(),
-      headers: sanitizeHeaders(headers),
-      timeout: opts.timeout
-    });
-    req.flushHeaders();
-    void getResponse(req).then(
-      (response) => {
-        hooks?.onResponse?.({
-          method,
-          url: url.toString(),
-          duration: Date.now() - startTime,
-          status: response.statusCode,
-          statusText: response.statusMessage,
-          headers: sanitizeHeaders(response.headers)
-        });
-        pass(response);
-      },
-      (error) => {
-        hooks?.onResponse?.({
-          method,
-          url: url.toString(),
-          duration: Date.now() - startTime,
-          error
-        });
-        fail(error);
-      }
-    );
-    form.pipe(req);
-    form.on("error", fail);
-  });
-}
-
 // src/quota-utils.ts
-var import_node_fs2 = require("node:fs");
-var import_node_path3 = require("node:path");
-var import_memoization2 = require("@socketsecurity/lib/memoization");
-var loadRequirements = (0, import_memoization2.once)(() => {
+var import_node_fs = require("node:fs");
+var import_node_path = require("node:path");
+var import_memoization = require("@socketsecurity/lib/memoization");
+var loadRequirements = (0, import_memoization.once)(() => {
   try {
-    const requirementsPath = (0, import_node_path3.join)(
+    const requirementsPath = (0, import_node_path.join)(
       __dirname,
       "..",
       "data",
       "api-method-quota-and-permissions.json"
     );
-    if (!(0, import_node_fs2.existsSync)(requirementsPath)) {
+    if (!(0, import_node_fs.existsSync)(requirementsPath)) {
       throw new Error(`Requirements file not found at: ${requirementsPath}`);
     }
-    const data = (0, import_node_fs2.readFileSync)(requirementsPath, "utf8");
+    const data = (0, import_node_fs.readFileSync)(requirementsPath, "utf8");
     return JSON.parse(data);
   } catch (e) {
     throw new Error("Failed to load SDK method requirements", { cause: e });
@@ -983,7 +670,7 @@ function getAllMethodRequirements() {
   });
   return result;
 }
-var getMethodRequirements = (0, import_memoization2.memoize)(
+var getMethodRequirements = (0, import_memoization.memoize)(
   (methodName) => {
     const reqs = loadRequirements();
     const requirement = reqs.api[methodName];
@@ -997,7 +684,7 @@ var getMethodRequirements = (0, import_memoization2.memoize)(
   },
   { name: "getMethodRequirements" }
 );
-var getMethodsByPermissions = (0, import_memoization2.memoize)(
+var getMethodsByPermissions = (0, import_memoization.memoize)(
   (permissions) => {
     const reqs = loadRequirements();
     return Object.entries(reqs.api).filter(([, requirement]) => {
@@ -1008,14 +695,14 @@ var getMethodsByPermissions = (0, import_memoization2.memoize)(
   },
   { name: "getMethodsByPermissions" }
 );
-var getMethodsByQuotaCost = (0, import_memoization2.memoize)(
+var getMethodsByQuotaCost = (0, import_memoization.memoize)(
   (quotaCost) => {
     const reqs = loadRequirements();
     return Object.entries(reqs.api).filter(([, requirement]) => requirement.quota === quotaCost).map(([methodName]) => methodName).sort();
   },
   { name: "getMethodsByQuotaCost" }
 );
-var getQuotaCost = (0, import_memoization2.memoize)(
+var getQuotaCost = (0, import_memoization.memoize)(
   (methodName) => {
     const reqs = loadRequirements();
     const requirement = reqs.api[methodName];
@@ -1026,7 +713,7 @@ var getQuotaCost = (0, import_memoization2.memoize)(
   },
   { name: "getQuotaCost" }
 );
-var getQuotaUsageSummary = (0, import_memoization2.memoize)(
+var getQuotaUsageSummary = (0, import_memoization.memoize)(
   () => {
     const reqs = loadRequirements();
     const summary = {};
@@ -1044,40 +731,234 @@ var getQuotaUsageSummary = (0, import_memoization2.memoize)(
   },
   { name: "getQuotaUsageSummary" }
 );
-var getRequiredPermissions = (0, import_memoization2.memoize)(
+var getRequiredPermissions = (0, import_memoization.memoize)(
   (methodName) => {
     const reqs = loadRequirements();
     const requirement = reqs.api[methodName];
     if (!requirement) {
       throw new Error(`Unknown SDK method: "${String(methodName)}"`);
     }
-    return [...requirement.permissions];
-  },
-  { name: "getRequiredPermissions" }
-);
-function hasQuotaForMethods(availableQuota, methodNames) {
-  const totalCost = calculateTotalQuotaCost(methodNames);
-  return availableQuota >= totalCost;
+    return [...requirement.permissions];
+  },
+  { name: "getRequiredPermissions" }
+);
+function hasQuotaForMethods(availableQuota, methodNames) {
+  const totalCost = calculateTotalQuotaCost(methodNames);
+  return availableQuota >= totalCost;
+}
+
+// src/socket-sdk-class.ts
+var import_node_path4 = __toESM(require("node:path"));
+var import_node_process2 = __toESM(require("node:process"));
+var import_cache_with_ttl = require("@socketsecurity/lib/cache-with-ttl");
+var import_core = require("@socketsecurity/lib/constants/core");
+var import_process = require("@socketsecurity/lib/constants/process");
+var import_socket2 = require("@socketsecurity/lib/constants/socket");
+var import_debug2 = require("@socketsecurity/lib/debug");
+var import_fs = require("@socketsecurity/lib/fs");
+var import_parse2 = require("@socketsecurity/lib/json/parse");
+var import_objects = require("@socketsecurity/lib/objects");
+var import_promises = require("@socketsecurity/lib/promises");
+var import_suppress_warnings = require("@socketsecurity/lib/suppress-warnings");
+var import_url = require("@socketsecurity/lib/url");
+var import_http_request3 = require("@socketsecurity/lib/http-request");
+
+// src/file-upload.ts
+var import_node_fs2 = require("node:fs");
+var import_node_path2 = __toESM(require("node:path"));
+var import_form_data = __toESM(require("form-data"));
+var import_http_request2 = require("@socketsecurity/lib/http-request");
+var import_normalize = require("@socketsecurity/lib/paths/normalize");
+function createRequestBodyForFilepaths(filepaths, basePath) {
+  const form = new import_form_data.default();
+  for (const absPath of filepaths) {
+    const relPath = (0, import_normalize.normalizePath)(import_node_path2.default.relative(basePath, absPath));
+    const filename = import_node_path2.default.basename(absPath);
+    let stream;
+    try {
+      stream = (0, import_node_fs2.createReadStream)(absPath, { highWaterMark: 1024 * 1024 });
+    } catch (error) {
+      const err = error;
+      let message = `Failed to read file: ${absPath}`;
+      if (err.code === "ENOENT") {
+        message += "\n\u2192 File does not exist. Check the file path and try again.";
+      } else if (err.code === "EACCES") {
+        message += `
+\u2192 Permission denied. Run: chmod +r "${absPath}"`;
+      } else if (err.code === "EISDIR") {
+        message += "\n\u2192 Expected a file but found a directory.";
+      } else if (err.code) {
+        message += `
+\u2192 Error code: ${err.code}`;
+      }
+      throw new Error(message, { cause: error });
+    }
+    form.append(relPath, stream, {
+      contentType: "application/octet-stream",
+      filename
+    });
+  }
+  return form;
+}
+async function createUploadRequest(baseUrl, urlPath, form, options) {
+  const { hooks, ...rawOpts } = {
+    __proto__: null,
+    ...options
+  };
+  const opts = { __proto__: null, ...rawOpts };
+  const url = new URL(urlPath, baseUrl).toString();
+  const method = "POST";
+  const startTime = Date.now();
+  const headers = {
+    ...opts.headers
+  };
+  if (hooks?.onRequest) {
+    hooks.onRequest({
+      method,
+      url,
+      headers: sanitizeHeaders(headers),
+      timeout: opts.timeout
+    });
+  }
+  try {
+    const response = await (0, import_http_request2.httpRequest)(url, {
+      method,
+      body: form,
+      headers,
+      maxResponseSize: MAX_RESPONSE_SIZE,
+      timeout: opts.timeout
+    });
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        status: response.status,
+        statusText: response.statusText,
+        headers: sanitizeHeaders(response.headers)
+      });
+    }
+    return response;
+  } catch (error) {
+    if (hooks?.onResponse) {
+      hooks.onResponse({
+        method,
+        url,
+        duration: Date.now() - startTime,
+        error
+      });
+    }
+    throw error;
+  }
+}
+
+// src/utils.ts
+var import_node_path3 = __toESM(require("node:path"));
+var import_node_process = __toESM(require("node:process"));
+var import_memoization2 = require("@socketsecurity/lib/memoization");
+var import_normalize2 = require("@socketsecurity/lib/paths/normalize");
+function normalizeToWordSet(s) {
+  const words = s.toLowerCase().match(/\w+/g);
+  return new Set(words ?? []);
+}
+function calculateWordSetSimilarity(str1, str2) {
+  const set1 = normalizeToWordSet(str1);
+  const set2 = normalizeToWordSet(str2);
+  if (set1.size === 0 && set2.size === 0) {
+    return 1;
+  }
+  if (set1.size === 0 || set2.size === 0) {
+    return 0;
+  }
+  let intersectionSize = 0;
+  for (const word of set1) {
+    if (set2.has(word)) {
+      intersectionSize++;
+    }
+  }
+  const unionSize = set1.size + set2.size - intersectionSize;
+  return intersectionSize / unionSize;
+}
+function filterRedundantCause(errorMessage, errorCause, threshold = 0.6) {
+  if (!errorCause || !errorCause.trim()) {
+    return void 0;
+  }
+  const messageParts = errorMessage.split(":").map((part) => part.trim());
+  for (const part of messageParts) {
+    if (part && shouldOmitReason(part, errorCause, threshold)) {
+      return void 0;
+    }
+  }
+  return errorCause;
+}
+var normalizeBaseUrl = (0, import_memoization2.memoize)(
+  (baseUrl) => {
+    return baseUrl.endsWith("/") ? baseUrl : `${baseUrl}/`;
+  },
+  { name: "normalizeBaseUrl" }
+);
+function promiseWithResolvers() {
+  if (Promise.withResolvers) {
+    return Promise.withResolvers();
+  }
+  const obj = {};
+  obj.promise = new Promise((resolver, reject) => {
+    obj.resolve = resolver;
+    obj.reject = reject;
+  });
+  return obj;
+}
+function queryToSearchParams(init) {
+  const params = new URLSearchParams(
+    init
+  );
+  let needsNormalization = false;
+  let hasEmpty = false;
+  for (const [key, value] of params) {
+    if (key === "defaultBranch" || key === "perPage") {
+      needsNormalization = true;
+      break;
+    }
+    if (!value) {
+      hasEmpty = true;
+    }
+  }
+  if (!needsNormalization && !hasEmpty) {
+    return params;
+  }
+  const normalized = new URLSearchParams();
+  for (const [key, value] of params) {
+    if (!value) {
+      continue;
+    }
+    if (key === "defaultBranch") {
+      normalized.set("default_branch", value);
+    } else if (key === "perPage") {
+      normalized.set("per_page", value);
+    } else {
+      normalized.set(key, value);
+    }
+  }
+  return normalized;
+}
+function resolveAbsPaths(filepaths, pathsRelativeTo) {
+  const basePath = resolveBasePath(pathsRelativeTo);
+  return filepaths.map((p) => (0, import_normalize2.normalizePath)(import_node_path3.default.resolve(basePath, p)));
+}
+function resolveBasePath(pathsRelativeTo = ".") {
+  return (0, import_normalize2.normalizePath)(import_node_path3.default.resolve(import_node_process.default.cwd(), pathsRelativeTo));
+}
+function shouldOmitReason(errorMessage, reason, threshold = 0.6) {
+  if (!reason || !reason.trim()) {
+    return true;
+  }
+  const similarity = calculateWordSetSimilarity(errorMessage, reason);
+  return similarity >= threshold;
 }
 
 // src/socket-sdk-class.ts
-var import_node_events = __toESM(require("node:events"));
-var import_node_fs3 = require("node:fs");
-var import_node_path4 = __toESM(require("node:path"));
-var import_node_readline = __toESM(require("node:readline"));
-var import_cache_with_ttl = require("@socketsecurity/lib/cache-with-ttl");
-var import_core = require("@socketsecurity/lib/constants/core");
-var import_process = require("@socketsecurity/lib/constants/process");
-var import_socket2 = require("@socketsecurity/lib/constants/socket");
-var import_debug2 = require("@socketsecurity/lib/debug");
-var import_fs = require("@socketsecurity/lib/fs");
-var import_parse2 = require("@socketsecurity/lib/json/parse");
-var import_objects = require("@socketsecurity/lib/objects");
-var import_promises = require("@socketsecurity/lib/promises");
-var import_suppress_warnings = require("@socketsecurity/lib/suppress-warnings");
-var import_url = require("@socketsecurity/lib/url");
 var abortSignal = (0, import_process.getAbortSignal)();
-var SocketSdk = class {
+var SocketSdk = class _SocketSdk {
   #apiToken;
   #baseUrl;
   #cache;
@@ -1086,6 +967,7 @@ var SocketSdk = class {
   #hooks;
   #onFileValidation;
   #reqOptions;
+  #reqOptionsWithHooks;
   #retries;
   #retryDelay;
   /**
@@ -1158,6 +1040,10 @@ var SocketSdk = class {
       /* c8 ignore next - Optional timeout parameter, tested implicitly through method calls */
       ...timeout ? { timeout } : {}
     };
+    this.#reqOptionsWithHooks = {
+      ...this.#reqOptions,
+      hooks: this.#hooks
+    };
   }
   /**
    * Create async generator for streaming batch package URL processing.
@@ -1176,32 +1062,30 @@ var SocketSdk = class {
     if (!res) {
       throw new Error("Failed to get response from batch PURL request");
     }
-    const rli = import_node_readline.default.createInterface({
-      input: res,
-      crlfDelay: Number.POSITIVE_INFINITY,
-      signal: abortSignal
-    });
     const isPublicToken = this.#apiToken === import_socket2.SOCKET_PUBLIC_API_TOKEN;
-    try {
-      for await (const line of rli) {
-        const trimmed = line.trim();
-        const artifact = trimmed ? (0, import_parse2.jsonParse)(line, { throws: false }) : (
-          /* c8 ignore next - Empty line handling in batch streaming response parsing. */
-          null
-        );
-        if ((0, import_objects.isObjectObject)(artifact)) {
-          yield this.#handleApiSuccess(
-            /* c8 ignore next 7 - Public token artifact reshaping branch for policy compliance. */
-            isPublicToken ? reshapeArtifactForPublicPolicy(
-              artifact,
-              false,
-              queryParams?.["actions"]
-            ) : artifact
-          );
+    const text = res.text();
+    let start = 0;
+    for (let i = 0; i <= text.length; i++) {
+      if (i === text.length || text.charCodeAt(i) === 10) {
+        if (i > start) {
+          const line = text.slice(start, i);
+          const artifact = (0, import_parse2.jsonParse)(line, {
+            throws: false
+          });
+          if ((0, import_objects.isObjectObject)(artifact)) {
+            yield this.#handleApiSuccess(
+              /* c8 ignore next 8 - Public token artifact reshaping branch for policy compliance. */
+              isPublicToken ? reshapeArtifactForPublicPolicy(
+                artifact,
+                false,
+                queryParams?.["actions"],
+                publicPolicy
+              ) : artifact
+            );
+          }
         }
+        start = i + 1;
       }
-    } finally {
-      rli.close();
     }
   }
   /**
@@ -1210,11 +1094,13 @@ var SocketSdk = class {
    */
   async #createBatchPurlRequest(componentsObj, queryParams) {
     const url = `${this.#baseUrl}purl?${queryToSearchParams(queryParams)}`;
-    const req = getHttpModule(this.#baseUrl).request(url, {
+    const response = await (0, import_http_request3.httpRequest)(url, {
       method: "POST",
-      ...this.#reqOptions
-    }).end(JSON.stringify(componentsObj));
-    const response = await getResponse(req);
+      body: JSON.stringify(componentsObj),
+      headers: this.#reqOptions.headers,
+      timeout: this.#reqOptions.timeout,
+      maxResponseSize: MAX_RESPONSE_SIZE
+    });
     if (!isResponseOk(response)) {
       throw new ResponseError(response, "", url);
     }
@@ -1261,17 +1147,18 @@ var SocketSdk = class {
         if (!(error instanceof ResponseError)) {
           return void 0;
         }
-        const { statusCode } = error.response;
-        if (statusCode === 401 || statusCode === 403) {
-          throw error;
-        }
-        if (statusCode === 429) {
+        const { status } = error.response;
+        if (status === 429) {
           const retryAfter = this.#parseRetryAfter(
             error.response.headers["retry-after"]
           );
           if (retryAfter !== void 0) {
             return retryAfter;
           }
+          return void 0;
+        }
+        if (status >= 400 && status < 500) {
+          throw error;
         }
         return void 0;
       },
@@ -1332,25 +1219,6 @@ var SocketSdk = class {
       return await this.#executeWithRetry(fetcher);
     });
   }
-  /**
-   * Extract text content from HTTP response stream.
-   * Internal method with size limits to prevent memory exhaustion.
-   */
-  /* c8 ignore start - unused utility method reserved for future text response handling */
-  async #getResponseText(response) {
-    const chunks = [];
-    let size = 0;
-    const MAX = 50 * 1024 * 1024;
-    for await (const chunk of response) {
-      size += chunk.length;
-      if (size > MAX) {
-        throw new Error("Response body exceeds maximum size limit");
-      }
-      chunks.push(chunk);
-    }
-    return Buffer.concat(chunks).toString("utf8");
-  }
-  /* c8 ignore stop */
   /**
    * Handle API error responses and convert to standardized error result.
    * Internal error handling with status code analysis and message formatting.
@@ -1369,13 +1237,13 @@ var SocketSdk = class {
         cause: error
       });
     }
-    const { statusCode } = error.response;
+    const { status: statusCode } = error.response;
     if (statusCode && statusCode >= 500) {
       throw new Error(`Socket API server error (${statusCode})`, {
         cause: error
       });
     }
-    const bodyStr = await getErrorResponseBody(error.response);
+    const bodyStr = error.response.text();
     let body;
     try {
       const parsed = JSON.parse(bodyStr);
@@ -1393,7 +1261,7 @@ var SocketSdk = class {
     import_core.UNKNOWN_ERROR;
     const trimmedBody = body?.trim();
     if (trimmedBody && !errorMessage.includes(trimmedBody)) {
-      const statusMessage = error.response?.statusMessage;
+      const statusMessage = error.response?.statusText;
       if (statusMessage && errorMessage.includes(statusMessage)) {
         errorMessage = errorMessage.replace(statusMessage, trimmedBody);
       } else {
@@ -1477,7 +1345,7 @@ var SocketSdk = class {
       return response;
     }
     if (responseType === "text") {
-      return await this.#getResponseText(response);
+      return response.text();
     }
     if (responseType === "json") {
       return await getResponseJson(response);
@@ -1547,39 +1415,41 @@ var SocketSdk = class {
     const url = `${this.#baseUrl}orgs/${encodeURIComponent(orgSlug)}/purl?${queryToSearchParams(queryParams)}`;
     let res;
     try {
-      const req = getHttpModule(this.#baseUrl).request(url, {
-        method: "POST",
-        ...this.#reqOptions
-      }).end(JSON.stringify(componentsObj));
-      res = await getResponse(req);
-      if (!isResponseOk(res)) {
-        throw new ResponseError(res, "", url);
-      }
+      res = await this.#executeWithRetry(async () => {
+        const response = await (0, import_http_request3.httpRequest)(url, {
+          method: "POST",
+          body: JSON.stringify(componentsObj),
+          headers: this.#reqOptions.headers,
+          timeout: this.#reqOptions.timeout,
+          maxResponseSize: MAX_RESPONSE_SIZE
+        });
+        if (!isResponseOk(response)) {
+          throw new ResponseError(response, "POST Request failed", url);
+        }
+        return response;
+      });
     } catch (e) {
       return await this.#handleApiError(e);
     }
     if (!res) {
       throw new Error("Failed to get response from batch PURL request");
     }
-    const rli = import_node_readline.default.createInterface({
-      input: res,
-      crlfDelay: Number.POSITIVE_INFINITY,
-      signal: abortSignal
-    });
     const results = [];
-    try {
-      for await (const line of rli) {
-        const trimmed = line.trim();
-        const artifact = trimmed ? (0, import_parse2.jsonParse)(line, { throws: false }) : (
-          /* c8 ignore next - Empty line handling in batch parsing. */
-          null
-        );
-        if ((0, import_objects.isObjectObject)(artifact)) {
-          results.push(artifact);
+    const text = res.text();
+    let start = 0;
+    for (let i = 0; i <= text.length; i++) {
+      if (i === text.length || text.charCodeAt(i) === 10) {
+        if (i > start) {
+          const line = text.slice(start, i);
+          const artifact = (0, import_parse2.jsonParse)(line, {
+            throws: false
+          });
+          if ((0, import_objects.isObjectObject)(artifact)) {
+            results.push(artifact);
+          }
         }
+        start = i + 1;
       }
-    } finally {
-      rli.close();
     }
     const compact = (0, import_url.urlSearchParamAsBoolean)(
       (0, import_objects.getOwn)(queryParams, "compact")
@@ -1604,33 +1474,31 @@ var SocketSdk = class {
     if (!res) {
       throw new Error("Failed to get response from batch PURL request");
     }
-    const rli = import_node_readline.default.createInterface({
-      input: res,
-      crlfDelay: Number.POSITIVE_INFINITY,
-      signal: abortSignal
-    });
     const isPublicToken = this.#apiToken === import_socket2.SOCKET_PUBLIC_API_TOKEN;
     const results = [];
-    try {
-      for await (const line of rli) {
-        const trimmed = line.trim();
-        const artifact = trimmed ? (0, import_parse2.jsonParse)(line, { throws: false }) : (
-          /* c8 ignore next - Empty line handling in batch parsing. */
-          null
-        );
-        if ((0, import_objects.isObjectObject)(artifact)) {
-          results.push(
-            /* c8 ignore next 7 - Public token artifact reshaping for policy compliance. */
-            isPublicToken ? reshapeArtifactForPublicPolicy(
-              artifact,
-              false,
-              queryParams?.["actions"]
-            ) : artifact
-          );
+    const text = res.text();
+    let start = 0;
+    for (let i = 0; i <= text.length; i++) {
+      if (i === text.length || text.charCodeAt(i) === 10) {
+        if (i > start) {
+          const line = text.slice(start, i);
+          const artifact = (0, import_parse2.jsonParse)(line, {
+            throws: false
+          });
+          if ((0, import_objects.isObjectObject)(artifact)) {
+            results.push(
+              /* c8 ignore next 8 - Public token artifact reshaping for policy compliance. */
+              isPublicToken ? reshapeArtifactForPublicPolicy(
+                artifact,
+                false,
+                queryParams?.["actions"],
+                publicPolicy
+              ) : artifact
+            );
+          }
         }
+        start = i + 1;
       }
-    } finally {
-      rli.close();
     }
     const compact = (0, import_url.urlSearchParamAsBoolean)(
       (0, import_objects.getOwn)(queryParams, "compact")
@@ -1658,7 +1526,7 @@ var SocketSdk = class {
     (0, import_suppress_warnings.setMaxEventTargetListeners)(abortSignal, neededMaxListeners);
     const { components } = componentsObj;
     const { length: componentsCount } = components;
-    const running = [];
+    const running = /* @__PURE__ */ new Map();
     let index = 0;
     const enqueueGen = () => {
       if (index >= componentsCount) {
@@ -1666,7 +1534,6 @@ var SocketSdk = class {
       }
       const generator = this.#createBatchPurlGenerator(
         {
-          // Chunk components.
           components: components.slice(index, index + chunkSize)
         },
         queryParams
@@ -1680,29 +1547,20 @@ var SocketSdk = class {
         reject: rejectFn,
         resolve: resolveFn
       } = promiseWithResolvers();
-      running.push({
-        generator,
-        promise
-      });
+      running.set(generator, promise);
       void generator.next().then(
         (iteratorResult) => resolveFn({ generator, iteratorResult }),
         rejectFn
       );
     };
-    while (running.length < concurrencyLimit && index < componentsCount) {
+    while (running.size < concurrencyLimit && index < componentsCount) {
       enqueueGen();
     }
-    while (running.length > 0) {
+    while (running.size > 0) {
       const { generator, iteratorResult } = await Promise.race(
-        running.map((entry) => entry.promise)
+        running.values()
       );
-      const runningIndex = running.findIndex(
-        (entry) => entry.generator === generator
-      );
-      if (runningIndex === -1) {
-        continue;
-      }
-      running.splice(runningIndex, 1);
+      running.delete(generator);
       if (iteratorResult.value) {
         yield iteratorResult.value;
       }
@@ -1713,6 +1571,111 @@ var SocketSdk = class {
       }
     }
   }
+  /**
+   * Check packages for malware and security alerts.
+   *
+   * For small sets (≤ MAX_FIREWALL_COMPONENTS), uses parallel firewall API
+   * requests which return full artifact data including score and alert details.
+   *
+   * For larger sets, uses the batch PURL API for efficiency.
+   *
+   * Both paths normalize alerts through publicPolicy and only return
+   * malware-relevant results.
+   *
+   * @param components - Array of package URLs to check
+   * @returns Normalized results with policy-filtered alerts per package
+   */
+  async checkMalware(components) {
+    if (components.length <= MAX_FIREWALL_COMPONENTS) {
+      return this.#checkMalwareFirewall(components);
+    }
+    return this.#checkMalwareBatch(components);
+  }
+  // Small-set path: parallel firewall API requests per PURL.
+  // Returns full artifact data (score, alert props, categories, fix info).
+  async #checkMalwareFirewall(components) {
+    const packages = [];
+    const results = await Promise.allSettled(
+      components.map(async ({ purl }) => {
+        const urlPath = `/${encodeURIComponent(purl)}`;
+        const response = await createGetRequest(
+          SOCKET_FIREWALL_API_URL,
+          urlPath,
+          this.#reqOptions
+        );
+        if (!isResponseOk(response)) return void 0;
+        const json = await getResponseJson(response);
+        return json;
+      })
+    );
+    for (const settled of results) {
+      if (settled.status === "rejected" || !settled.value) continue;
+      packages.push(_SocketSdk.#normalizeArtifact(settled.value, publicPolicy));
+    }
+    return {
+      cause: void 0,
+      data: packages,
+      error: void 0,
+      status: 200,
+      success: true
+    };
+  }
+  // Multi-component path: batch PURL API request, normalized to publicPolicy.
+  async #checkMalwareBatch(components) {
+    const result = await this.batchPackageFetch(
+      { components },
+      { alerts: true, cachedResultsOnly: true }
+    );
+    if (!result.success) {
+      return {
+        cause: result.cause,
+        data: void 0,
+        error: result.error,
+        status: result.status,
+        success: false
+      };
+    }
+    const packages = [];
+    for (const artifact of result.data) {
+      packages.push(_SocketSdk.#normalizeArtifact(artifact, publicPolicy));
+    }
+    return {
+      cause: void 0,
+      data: packages,
+      error: void 0,
+      status: 200,
+      success: true
+    };
+  }
+  // Normalize an artifact into MalwareCheckPackage.
+  // When policy is provided, derive action from the map.
+  // When policy is undefined, use server-assigned alert.action.
+  static #normalizeArtifact(artifact, policy) {
+    const alerts = [];
+    if (artifact.alerts) {
+      for (const alert of artifact.alerts) {
+        const action = policy ? policy.get(alert.type) ?? "ignore" : alert.action ?? "ignore";
+        if (action === "error" || action === "warn") {
+          alerts.push({
+            category: alert.category,
+            fix: alert.fix ? { description: alert.fix.description, type: alert.fix.type } : void 0,
+            key: alert.key,
+            props: alert.props,
+            severity: alert.severity,
+            type: alert.type
+          });
+        }
+      }
+    }
+    return {
+      alerts,
+      name: artifact.name,
+      namespace: artifact.namespace,
+      score: artifact.score,
+      type: artifact.type,
+      version: artifact.version
+    };
+  }
   /**
    * Create a snapshot of project dependencies by uploading manifest files.
    * Analyzes dependency files to generate a comprehensive security report.
@@ -1787,7 +1750,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `dependencies/upload?${queryToSearchParams(queryParams)}`,
             createRequestBodyForFilepaths(validPaths, basePath),
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -1901,7 +1864,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans?${queryToSearchParams(queryParams)}`,
             createRequestBodyForFilepaths(validPaths, basePath),
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -1965,7 +1928,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/diff-scans/from-ids?${queryToSearchParams(options)}`,
             {},
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -1994,7 +1957,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/archive?${queryToSearchParams(options)}`,
             createRequestBodyForFilepaths([archivePath], basePath),
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2022,7 +1985,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/webhooks`,
             webhookData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2075,7 +2038,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos`,
             { ...params, name: repoSlug },
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2131,7 +2094,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/labels`,
             labelData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2184,7 +2147,7 @@ var SocketSdk = class {
           await createDeleteRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(scanId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2219,7 +2182,7 @@ var SocketSdk = class {
           await createDeleteRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/diff-scans/${encodeURIComponent(diffScanId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2245,7 +2208,7 @@ var SocketSdk = class {
           await createDeleteRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/webhooks/${encodeURIComponent(webhookId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2291,7 +2254,7 @@ var SocketSdk = class {
           await createDeleteRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/${encodeURIComponent(repoSlug)}${queryString}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2344,7 +2307,7 @@ var SocketSdk = class {
           await createDeleteRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/labels/${encodeURIComponent(labelId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2367,60 +2330,39 @@ var SocketSdk = class {
     }
   }
   /**
-     * Delete a legacy scan report permanently.
-  
-    /**
-     * Download patch file content by hash.
-     *
-     * Downloads the actual patched file content from the public Socket blob store.
-     * This is used after calling viewPatch() to get the patch metadata.
-     * No authentication is required as patch blobs are publicly accessible.
-     *
-     * @param hash - The blob hash in SSRI (sha256-base64) or hex format
-     * @param options - Optional configuration
-     * @param options.baseUrl - Override blob store URL (for testing)
-     * @returns Promise<string> - The patch file content as UTF-8 string
-     * @throws Error if blob not found (404) or download fails
-     *
-     * @example
-     * ```typescript
-     * const sdk = new SocketSdk('your-api-token')
-     * // First get patch metadata
-     * const patch = await sdk.viewPatch('my-org', 'patch-uuid')
-     * // Then download the actual patched file
-     * const fileContent = await sdk.downloadPatch(patch.files['index.js'].socketBlob)
-     * ```
-     */
+   * Download full scan files as a tar archive.
+   *
+   * Streams the full scan file contents to the specified output path as a tar file.
+   * Includes size limit enforcement to prevent excessive disk usage.
+   *
+   * @param orgSlug - Organization identifier
+   * @param fullScanId - Full scan identifier
+   * @param outputPath - Local file path to write the tar archive
+   * @returns Download result with success/error status
+   * @throws {Error} When server returns 5xx status codes
+   */
   async downloadOrgFullScanFilesAsTar(orgSlug, fullScanId, outputPath) {
     const url = `${this.#baseUrl}orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(fullScanId)}/files.tar`;
     try {
-      const req = getHttpModule(this.#baseUrl).request(url, {
-        method: "GET",
-        ...this.#reqOptions
-      }).end();
-      const res = await getResponse(req);
-      if (!isResponseOk(res)) {
-        throw new ResponseError(res, "", url);
-      }
-      const writeStream = (0, import_node_fs3.createWriteStream)(outputPath);
-      let bytesWritten = 0;
-      res.on("data", (chunk) => {
-        if (bytesWritten + chunk.length > MAX_STREAM_SIZE) {
-          const error = new Error(
-            `Response exceeds maximum stream size of ${MAX_STREAM_SIZE} bytes`
-          );
-          res.destroy(error);
-          writeStream.destroy(error);
-          return;
+      const res = await this.#executeWithRetry(async () => {
+        const response = await (0, import_http_request3.httpRequest)(url, {
+          method: "GET",
+          headers: this.#reqOptions.headers,
+          stream: true,
+          timeout: this.#reqOptions.timeout
+        });
+        if (!isResponseOk(response)) {
+          throw new ResponseError(response, "", url);
         }
-        bytesWritten += chunk.length;
+        return response;
       });
-      res.pipe(writeStream);
-      writeStream.on("error", (error) => {
-        res.destroy();
-        writeStream.destroy(error);
+      const { createWriteStream } = await import("node:fs");
+      await new Promise((resolve, reject) => {
+        const ws = createWriteStream(outputPath);
+        ws.on("error", reject);
+        ws.on("close", resolve);
+        res.rawResponse.pipe(ws);
       });
-      await import_node_events.default.once(writeStream, "finish");
       return this.#handleApiSuccess(res);
     } catch (e) {
       return await this.#handleApiError(e);
@@ -2449,90 +2391,34 @@ var SocketSdk = class {
    * ```
    */
   async downloadPatch(hash, options) {
-    const https2 = await import("node:https");
-    const http2 = await import("node:http");
     const blobPath = `/blob/${encodeURIComponent(hash)}`;
     const blobBaseUrl = options?.baseUrl || SOCKET_PUBLIC_BLOB_STORE_URL;
     const url = `${blobBaseUrl}${blobPath}`;
-    const isHttps = url.startsWith("https:");
-    return await new Promise((resolve, reject) => {
-      const client = isHttps ? https2 : http2;
-      client.get(url, (res) => {
-        if (res.statusCode === 404) {
-          const message = [
-            `Blob not found: ${hash}`,
-            `\u2192 URL: ${url}`,
-            "\u2192 The patch file may have expired or the hash is incorrect.",
-            "\u2192 Verify: The blob hash is correct.",
-            "\u2192 Note: Blob URLs may expire after a certain time period."
-          ].join("\n");
-          reject(new Error(message));
-          return;
-        }
-        if (res.statusCode !== 200) {
-          const message = [
-            `Failed to download blob: ${res.statusCode} ${res.statusMessage}`,
-            `\u2192 Hash: ${hash}`,
-            `\u2192 URL: ${url}`,
-            "\u2192 The blob storage service may be temporarily unavailable.",
-            res.statusCode && res.statusCode >= 500 ? "\u2192 Try: Retry the download after a short delay." : "\u2192 Verify: The blob hash and URL are correct."
-          ].join("\n");
-          reject(new Error(message));
-          return;
-        }
-        let data = "";
-        let bytesRead = 0;
-        const MAX_PATCH_SIZE = 50 * 1024 * 1024;
-        res.on("data", (chunk) => {
-          if (bytesRead + chunk.length > MAX_PATCH_SIZE) {
-            const error = new Error(
-              [
-                `Patch file exceeds maximum size of ${MAX_PATCH_SIZE} bytes`,
-                `\u2192 Current size: ${bytesRead + chunk.length} bytes`,
-                "\u2192 This may indicate an incorrect hash or corrupted blob."
-              ].join("\n")
-            );
-            res.destroy(error);
-            reject(error);
-            return;
-          }
-          bytesRead += chunk.length;
-          data += chunk.toString("utf8");
-        });
-        res.on("end", () => {
-          resolve(data);
-        });
-        res.on("error", (err) => {
-          reject(err);
-        });
-      }).on("error", (err) => {
-        const nodeErr = err;
-        const message = [
-          `Error downloading blob: ${hash}`,
-          `\u2192 URL: ${url}`,
-          `\u2192 Network error: ${nodeErr.message}`
-        ];
-        if (nodeErr.code === "ENOTFOUND") {
-          message.push(
-            "\u2192 DNS lookup failed. Cannot resolve blob storage hostname.",
-            "\u2192 Check: Internet connection and DNS settings."
-          );
-        } else if (nodeErr.code === "ECONNREFUSED") {
-          message.push(
-            "\u2192 Connection refused. Blob storage service is unreachable.",
-            "\u2192 Check: Network connectivity and firewall settings."
-          );
-        } else if (nodeErr.code === "ETIMEDOUT") {
-          message.push(
-            "\u2192 Connection timed out.",
-            "\u2192 Try: Check network connectivity and retry."
-          );
-        } else if (nodeErr.code) {
-          message.push(`\u2192 Error code: ${nodeErr.code}`);
-        }
-        reject(new Error(message.join("\n"), { cause: err }));
-      });
+    const MAX_PATCH_SIZE = 50 * 1024 * 1024;
+    const res = await (0, import_http_request3.httpRequest)(url, {
+      maxResponseSize: MAX_PATCH_SIZE
     });
+    if (res.status === 404) {
+      const message = [
+        `Blob not found: ${hash}`,
+        `\u2192 URL: ${url}`,
+        "\u2192 The patch file may have expired or the hash is incorrect.",
+        "\u2192 Verify: The blob hash is correct.",
+        "\u2192 Note: Blob URLs may expire after a certain time period."
+      ].join("\n");
+      throw new Error(message);
+    }
+    if (res.status !== 200) {
+      const message = [
+        `Failed to download blob: ${res.status} ${res.statusText}`,
+        `\u2192 Hash: ${hash}`,
+        `\u2192 URL: ${url}`,
+        "\u2192 The blob storage service may be temporarily unavailable.",
+        res.status >= 500 ? "\u2192 Try: Retry the download after a short delay." : "\u2192 Verify: The blob hash and URL are correct."
+      ].join("\n");
+      throw new Error(message);
+    }
+    return res.text();
   }
   /**
    * Export scan results in CycloneDX SBOM format.
@@ -2547,7 +2433,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(fullScanId)}/sbom/export/cdx`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2592,7 +2478,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/export/openvex/${encodeURIComponent(id)}${queryString}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2614,7 +2500,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(fullScanId)}/sbom/export/spdx`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2637,26 +2523,17 @@ var SocketSdk = class {
     };
     const url = `${this.#baseUrl}${urlPath}`;
     try {
-      const response = await createGetRequest(this.#baseUrl, urlPath, {
-        ...this.#reqOptions,
-        hooks: this.#hooks
-      });
-      if (!isResponseOk(response)) {
-        if (throws) {
-          throw new ResponseError(response, "", url);
-        }
-        const errorResult = await this.#handleApiError(
-          new ResponseError(response, "", url)
+      const response = await this.#executeWithRetry(async () => {
+        const res = await createGetRequest(
+          this.#baseUrl,
+          urlPath,
+          this.#reqOptionsWithHooks
         );
-        return {
-          cause: errorResult.cause,
-          data: void 0,
-          error: errorResult.error,
-          status: errorResult.status,
-          success: false,
-          url: errorResult.url
-        };
-      }
+        if (!isResponseOk(res)) {
+          throw new ResponseError(res, "", url);
+        }
+        return res;
+      });
       const data = await this.#handleQueryResponseData(
         response,
         responseType
@@ -2668,8 +2545,7 @@ var SocketSdk = class {
         cause: void 0,
         data,
         error: void 0,
-        /* c8 ignore next - Defensive fallback: response.statusCode is always defined in Node.js http/https */
-        status: response.statusCode ?? 200,
+        status: response.status,
         success: true
       };
     } catch (e) {
@@ -2683,7 +2559,8 @@ var SocketSdk = class {
           data: void 0,
           error: errorResult.error,
           status: errorResult.status,
-          success: false
+          success: false,
+          url: errorResult.url
         };
       }
       return this.#createQueryErrorResult(e);
@@ -2702,7 +2579,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/tokens`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2724,7 +2601,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/audit-log?${queryToSearchParams(queryParams)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2746,7 +2623,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/diff-scans/${encodeURIComponent(diffScanId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2788,7 +2665,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/diff-scans/${encodeURIComponent(diffScanId)}/gfm${options ? `?${queryToSearchParams(options)}` : ""}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2800,7 +2677,7 @@ var SocketSdk = class {
   /**
    * Retrieve the enabled entitlements for an organization.
    *
-   * This method fetches the organization's entitlements and filters for only* the enabled ones, returning their keys. Entitlements represent Socket
+   * This method fetches the organization's entitlements and filters for only the enabled ones, returning their keys. Entitlements represent Socket
    * Products that the organization has access to use.
    */
   async getEnabledEntitlements(orgSlug) {
@@ -2809,7 +2686,7 @@ var SocketSdk = class {
         await createGetRequest(
           this.#baseUrl,
           `orgs/${encodeURIComponent(orgSlug)}/entitlements`,
-          { ...this.#reqOptions, hooks: this.#hooks }
+          this.#reqOptionsWithHooks
         )
       )
     );
@@ -2828,7 +2705,7 @@ var SocketSdk = class {
         await createGetRequest(
           this.#baseUrl,
           `orgs/${encodeURIComponent(orgSlug)}/entitlements`,
-          { ...this.#reqOptions, hooks: this.#hooks }
+          this.#reqOptionsWithHooks
         )
       )
     );
@@ -2867,7 +2744,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(scanId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2922,7 +2799,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(scanId)}/metadata`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -2957,7 +2834,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `npm/${encodeURIComponent(pkgName)}/${encodeURIComponent(version)}/issues`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3002,7 +2879,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/alert-full-scan-search?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3028,7 +2905,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/alerts?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3050,7 +2927,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `analytics/org/${encodeURIComponent(time)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3076,7 +2953,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/fixes?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3086,7 +2963,8 @@ var SocketSdk = class {
     }
   }
   /**
-   * Get organization's license policy configuration.* Returns allowed, restricted, and monitored license types.
+   * Get organization's license policy configuration.
+   * Returns allowed, restricted, and monitored license types.
    *
    * @throws {Error} When server returns 5xx status codes
    */
@@ -3097,7 +2975,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/settings/license-policy`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3107,7 +2985,8 @@ var SocketSdk = class {
     }
   }
   /**
-   * Get organization's security policy configuration.* Returns alert rules, severity thresholds, and enforcement settings.
+   * Get organization's security policy configuration.
+   * Returns alert rules, severity thresholds, and enforcement settings.
    *
    * @throws {Error} When server returns 5xx status codes
    */
@@ -3118,7 +2997,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/settings/security-policy`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3143,7 +3022,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/telemetry/config`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3165,7 +3044,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/triage`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3191,7 +3070,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/webhooks/${encodeURIComponent(webhookId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3217,7 +3096,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/webhooks?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3237,10 +3116,11 @@ var SocketSdk = class {
       const data = await this.#getCached(
         "quota",
         async () => await getResponseJson(
-          await createGetRequest(this.#baseUrl, "quota", {
-            ...this.#reqOptions,
-            hooks: this.#hooks
-          })
+          await createGetRequest(
+            this.#baseUrl,
+            "quota",
+            this.#reqOptionsWithHooks
+          )
         ),
         "quota"
       );
@@ -3262,7 +3142,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `analytics/repo/${encodeURIComponent(repo)}/${encodeURIComponent(time)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3272,36 +3152,32 @@ var SocketSdk = class {
     }
   }
   /**
-     * Get detailed results for a legacy scan report.
-    /**
-  
-    /**
-     * Get details for a specific repository.
-     *
-     * Returns repository configuration, monitoring status, and metadata.
-     *
-     * @param orgSlug - Organization identifier
-     * @param repoSlug - Repository slug/name
-     * @param options - Optional parameters including workspace
-     * @returns Repository details with configuration
-     *
-     * @example
-     * ```typescript
-     * const result = await sdk.getRepository('my-org', 'my-repo')
-     *
-     * if (result.success) {
-     *   console.log('Repository:', result.data.name)
-     *   console.log('Visibility:', result.data.visibility)
-     *   console.log('Default branch:', result.data.default_branch)
-     * }
-     * ```
-     *
-     * @see https://docs.socket.dev/reference/getorgrepo
-     * @apiEndpoint GET /orgs/{org_slug}/repos/{repo_slug}
-     * @quota 0 units
-     * @scopes repo:read
-     * @throws {Error} When server returns 5xx status codes
-     */
+   * Get details for a specific repository.
+   *
+   * Returns repository configuration, monitoring status, and metadata.
+   *
+   * @param orgSlug - Organization identifier
+   * @param repoSlug - Repository slug/name
+   * @param options - Optional parameters including workspace
+   * @returns Repository details with configuration
+   *
+   * @example
+   * ```typescript
+   * const result = await sdk.getRepository('my-org', 'my-repo')
+   *
+   * if (result.success) {
+   *   console.log('Repository:', result.data.name)
+   *   console.log('Visibility:', result.data.visibility)
+   *   console.log('Default branch:', result.data.default_branch)
+   * }
+   * ```
+   *
+   * @see https://docs.socket.dev/reference/getorgrepo
+   * @apiEndpoint GET /orgs/{org_slug}/repos/{repo_slug}
+   * @quota 0 units
+   * @scopes repo:read
+   * @throws {Error} When server returns 5xx status codes
+   */
   async getRepository(orgSlug, repoSlug, options) {
     const orgSlugParam = encodeURIComponent(orgSlug);
     const repoSlugParam = encodeURIComponent(repoSlug);
@@ -3316,7 +3192,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${orgSlugParam}/repos/${repoSlugParam}${queryString}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3371,7 +3247,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/labels/${encodeURIComponent(labelId)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3406,7 +3282,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `npm/${encodeURIComponent(pkgName)}/${encodeURIComponent(version)}/score`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3448,10 +3324,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/supported-files`,
-            {
-              ...this.#reqOptions,
-              hooks: this.#hooks
-            }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3460,29 +3333,6 @@ var SocketSdk = class {
       return await this.#handleApiError(e);
     }
   }
-  /**
-   * Get list of file types and formats supported for scanning.
-   * Returns supported manifest files, lockfiles, and configuration formats.
-   *
-   * @deprecated Use getSupportedFiles() instead. This endpoint has been deprecated
-   * since 2023-01-15 and now uses the /report/supported endpoint.
-   * @throws {Error} When server returns 5xx status codes
-   */
-  async getSupportedScanFiles() {
-    try {
-      const data = await this.#executeWithRetry(
-        async () => await getResponseJson(
-          await createGetRequest(this.#baseUrl, "report/supported", {
-            ...this.#reqOptions,
-            hooks: this.#hooks
-          })
-        )
-      );
-      return this.#handleApiSuccess(data);
-    } catch (e) {
-      return await this.#handleApiError(e);
-    }
-  }
   /**
    * List all full scans for an organization.
    *
@@ -3521,7 +3371,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3571,10 +3421,11 @@ var SocketSdk = class {
       const data = await this.#getCached(
         "organizations",
         async () => await getResponseJson(
-          await createGetRequest(this.#baseUrl, "organizations", {
-            ...this.#reqOptions,
-            hooks: this.#hooks
-          })
+          await createGetRequest(
+            this.#baseUrl,
+            "organizations",
+            this.#reqOptionsWithHooks
+          )
         ),
         "organizations"
       );
@@ -3609,7 +3460,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/diff-scans`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3655,7 +3506,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3711,7 +3562,7 @@ var SocketSdk = class {
           await createGetRequest(
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/labels?${queryToSearchParams(options)}`,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3748,7 +3599,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/tokens`,
             tokenData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3772,7 +3623,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/tokens/${encodeURIComponent(tokenId)}/revoke`,
             {},
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3796,7 +3647,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/tokens/${encodeURIComponent(tokenId)}/rotate`,
             {},
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3820,7 +3671,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/tokens/${encodeURIComponent(tokenId)}/update`,
             updateData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3848,7 +3699,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/telemetry`,
             telemetryData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3860,7 +3711,7 @@ var SocketSdk = class {
         success: true
       };
     } catch (e) {
-      return this.#createQueryErrorResult(e);
+      return await this.#handleApiError(e);
     }
   }
   /**
@@ -3878,7 +3729,7 @@ var SocketSdk = class {
             this.#baseUrl,
             "settings",
             { json: selectors },
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3930,7 +3781,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(fullScanId)}/rescan${queryString}`,
             {},
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3954,7 +3805,7 @@ var SocketSdk = class {
             this.#baseUrl,
             "dependencies/search",
             queryParams,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -3977,14 +3828,21 @@ var SocketSdk = class {
       method = "POST",
       throws = true
     } = { __proto__: null, ...options };
+    const url = `${this.#baseUrl}${urlPath}`;
     try {
-      const response = await createRequestWithJson(
-        method,
-        this.#baseUrl,
-        urlPath,
-        body,
-        { ...this.#reqOptions, hooks: this.#hooks }
-      );
+      const response = await this.#executeWithRetry(async () => {
+        const res = await createRequestWithJson(
+          method,
+          this.#baseUrl,
+          urlPath,
+          body,
+          this.#reqOptionsWithHooks
+        );
+        if (!isResponseOk(res)) {
+          throw new ResponseError(res, "", url);
+        }
+        return res;
+      });
       const data = await getResponseJson(response);
       if (throws) {
         return data;
@@ -3993,8 +3851,7 @@ var SocketSdk = class {
         cause: void 0,
         data,
         error: void 0,
-        /* c8 ignore next - Defensive fallback: response.statusCode is always defined in Node.js http/https */
-        status: response.statusCode ?? 200,
+        status: response.status,
         success: true
       };
     } catch (e) {
@@ -4008,17 +3865,11 @@ var SocketSdk = class {
           data: void 0,
           error: errorResult.error,
           status: errorResult.status,
-          success: false
+          success: false,
+          url: errorResult.url
         };
       }
-      const errStr = e ? String(e).trim() : "";
-      return {
-        cause: errStr || import_core.UNKNOWN_ERROR,
-        data: void 0,
-        error: "API request failed",
-        status: 0,
-        success: false
-      };
+      return this.#createQueryErrorResult(e);
     }
   }
   /**
@@ -4061,57 +3912,33 @@ var SocketSdk = class {
     };
     const url = `${this.#baseUrl}orgs/${encodeURIComponent(orgSlug)}/full-scans/${encodeURIComponent(scanId)}`;
     try {
-      const req = getHttpModule(this.#baseUrl).request(url, {
-        method: "GET",
-        ...this.#reqOptions
-      }).end();
-      const res = await getResponse(req);
-      if (!isResponseOk(res)) {
-        throw new ResponseError(res, "", url);
-      }
-      if (typeof output === "string") {
-        const writeStream = (0, import_node_fs3.createWriteStream)(output);
-        let bytesWritten = 0;
-        res.on("data", (chunk) => {
-          if (bytesWritten + chunk.length > MAX_STREAM_SIZE) {
-            const error = new Error(
-              `Response exceeds maximum stream size of ${MAX_STREAM_SIZE} bytes`
-            );
-            res.destroy(error);
-            writeStream.destroy(error);
-            return;
-          }
-          bytesWritten += chunk.length;
+      const needsStream = typeof output === "string" || output === true;
+      const res = await this.#executeWithRetry(async () => {
+        const response = await (0, import_http_request3.httpRequest)(url, {
+          method: "GET",
+          headers: this.#reqOptions.headers,
+          stream: needsStream,
+          timeout: this.#reqOptions.timeout,
+          ...!needsStream && { maxResponseSize: MAX_RESPONSE_SIZE }
         });
-        res.pipe(writeStream);
-        writeStream.on("error", (error) => {
-          res.destroy();
-          writeStream.destroy(error);
+        if (!isResponseOk(response)) {
+          throw new ResponseError(response, "", url);
+        }
+        return response;
+      });
+      if (typeof output === "string") {
+        const { createWriteStream } = await import("node:fs");
+        await new Promise((resolve, reject) => {
+          const ws = createWriteStream(output);
+          ws.on("error", reject);
+          ws.on("close", resolve);
+          res.rawResponse.pipe(ws);
         });
-        await import_node_events.default.once(writeStream, "finish");
       } else if (output === true) {
-        let bytesWritten = 0;
-        res.on("data", (chunk) => {
-          if (bytesWritten + chunk.length > MAX_STREAM_SIZE) {
-            const error = new Error(
-              `Response exceeds maximum stream size of ${MAX_STREAM_SIZE} bytes`
-            );
-            res.destroy(error);
-            return;
-          }
-          bytesWritten += chunk.length;
-        });
-        const stdoutErrorHandler = (_error) => {
-          res.destroy();
-          process.stdout.removeListener("error", stdoutErrorHandler);
-        };
-        process.stdout.on("error", stdoutErrorHandler);
-        res.pipe(process.stdout);
-        res.on("end", () => {
-          process.stdout.removeListener("error", stdoutErrorHandler);
-        });
-        res.on("error", () => {
-          process.stdout.removeListener("error", stdoutErrorHandler);
+        await new Promise((resolve, reject) => {
+          res.rawResponse.on("error", reject);
+          res.rawResponse.on("end", resolve);
+          res.rawResponse.pipe(import_node_process2.default.stdout);
         });
       }
       return this.#handleApiSuccess(res);
@@ -4131,43 +3958,34 @@ var SocketSdk = class {
     const urlPath = `orgs/${encodeURIComponent(orgSlug)}/patches/scan?scan_id=${encodeURIComponent(scanId)}`;
     const url = `${this.#baseUrl}${urlPath}`;
     const response = await this.#executeWithRetry(
-      async () => await createGetRequest(this.#baseUrl, urlPath, {
-        ...this.#reqOptions,
-        hooks: this.#hooks
-      })
+      async () => await createGetRequest(
+        this.#baseUrl,
+        urlPath,
+        this.#reqOptionsWithHooks
+      )
     );
     if (!isResponseOk(response)) {
       throw new ResponseError(response, "GET Request failed", url);
     }
-    const rli = import_node_readline.default.createInterface({
-      input: response,
-      crlfDelay: Number.POSITIVE_INFINITY
-    });
+    const text = response.text();
     return new ReadableStream({
-      async start(controller) {
-        try {
-          for await (const line of rli) {
-            const trimmed = line.trim();
-            if (!trimmed) {
-              continue;
-            }
-            try {
-              const data = JSON.parse(trimmed);
-              controller.enqueue(data);
-            } catch (e) {
-              (0, import_debug2.debugLog)("streamPatchesFromScan", `Failed to parse line: ${e}`);
+      start(controller) {
+        let start = 0;
+        for (let i = 0; i <= text.length; i++) {
+          if (i === text.length || text.charCodeAt(i) === 10) {
+            if (i > start) {
+              const line = text.slice(start, i);
+              try {
+                const data = JSON.parse(line);
+                controller.enqueue(data);
+              } catch (e) {
+                (0, import_debug2.debugLog)("streamPatchesFromScan", `Failed to parse line: ${e}`);
+              }
             }
+            start = i + 1;
           }
-        } catch (error) {
-          controller.error(error);
-        } finally {
-          rli.close();
-          controller.close();
         }
-      },
-      /* c8 ignore next 3 - Stream cancellation cleanup, difficult to test reliably. */
-      cancel() {
-        rli.close();
+        controller.close();
       }
     });
   }
@@ -4186,7 +4004,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/triage/${encodeURIComponent(alertId)}`,
             triageData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4196,7 +4014,8 @@ var SocketSdk = class {
     }
   }
   /**
-   * Update organization's license policy configuration.* Modifies allowed, restricted, and monitored license types.
+   * Update organization's license policy configuration.
+   * Modifies allowed, restricted, and monitored license types.
    *
    * @throws {Error} When server returns 5xx status codes
    */
@@ -4209,7 +4028,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/settings/license-policy?${queryToSearchParams(queryParams)}`,
             policyData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4219,7 +4038,8 @@ var SocketSdk = class {
     }
   }
   /**
-   * Update organization's security policy configuration.* Modifies alert rules, severity thresholds, and enforcement settings.
+   * Update organization's security policy configuration.
+   * Modifies alert rules, severity thresholds, and enforcement settings.
    *
    * @throws {Error} When server returns 5xx status codes
    */
@@ -4232,7 +4052,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/settings/security-policy`,
             policyData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4260,7 +4080,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/telemetry/config`,
             telemetryData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4289,7 +4109,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/webhooks/${encodeURIComponent(webhookId)}`,
             webhookData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4341,7 +4161,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/${encodeURIComponent(repoSlug)}${queryString}`,
             params,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4398,7 +4218,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/repos/labels/${encodeURIComponent(labelId)}`,
             labelData,
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4494,7 +4314,7 @@ var SocketSdk = class {
             this.#baseUrl,
             `orgs/${encodeURIComponent(orgSlug)}/upload-manifest-files`,
             createRequestBodyForFilepaths(validPaths, basePath),
-            { ...this.#reqOptions, hooks: this.#hooks }
+            this.#reqOptionsWithHooks
           )
         )
       );
@@ -4514,55 +4334,39 @@ var SocketSdk = class {
    * vulnerabilities, description, license, and tier information.
    */
   async viewPatch(orgSlug, uuid) {
-    const data = await getResponseJson(
-      await createGetRequest(
-        this.#baseUrl,
-        `orgs/${encodeURIComponent(orgSlug)}/patches/view/${encodeURIComponent(uuid)}`,
-        { ...this.#reqOptions, hooks: this.#hooks }
-      )
-    );
-    return data;
+    try {
+      const data = await this.#executeWithRetry(
+        async () => await getResponseJson(
+          await createGetRequest(
+            this.#baseUrl,
+            `orgs/${encodeURIComponent(orgSlug)}/patches/view/${encodeURIComponent(uuid)}`,
+            this.#reqOptionsWithHooks
+          )
+        )
+      );
+      return data;
+    } catch (e) {
+      const result = await this.#handleApiError(e);
+      throw new Error(result.error, { cause: result.cause });
+    }
   }
 };
 if ((0, import_debug2.isDebugNs)("heap")) {
-  const used = process.memoryUsage();
+  const used = import_node_process2.default.memoryUsage();
   (0, import_debug2.debugLog)("heap", `heap used: ${Math.round(used.heapUsed / 1024 / 1024)}MB`);
 }
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
-  DEFAULT_USER_AGENT,
   ResponseError,
   SocketSdk,
   calculateTotalQuotaCost,
-  calculateWordSetSimilarity,
-  createDeleteRequest,
-  createGetRequest,
-  createRequestBodyForFilepaths,
-  createRequestBodyForJson,
-  createRequestWithJson,
-  createUploadRequest,
   createUserAgentFromPkgJson,
-  filterRedundantCause,
   getAllMethodRequirements,
-  getErrorResponseBody,
-  getHttpModule,
   getMethodRequirements,
   getMethodsByPermissions,
   getMethodsByQuotaCost,
   getQuotaCost,
   getQuotaUsageSummary,
   getRequiredPermissions,
-  getResponse,
-  getResponseJson,
-  hasQuotaForMethods,
-  httpAgentNames,
-  isResponseOk,
-  normalizeBaseUrl,
-  promiseWithResolvers,
-  publicPolicy,
-  queryToSearchParams,
-  reshapeArtifactForPublicPolicy,
-  resolveAbsPaths,
-  resolveBasePath,
-  shouldOmitReason
+  hasQuotaForMethods
 });