@socketsecurity/sdk 3.4.1 → 4.0.0

package/dist/socket-sdk-class.d.ts

@@ -1,6 +1,6 @@
-import type { ArtifactPatches, BatchPackageFetchResultType, BatchPackageStreamOptions, CreateDependenciesSnapshotOptions, Entitlement, GetOptions, PatchViewResponse, PostOrgTelemetryPayload, PostOrgTelemetryResponse, QueryParams, SendOptions, SocketSdkGenericResult, SocketSdkOptions, SocketSdkResult, StreamOrgFullScanOptions, UploadManifestFilesError, UploadManifestFilesOptions, UploadManifestFilesReturnType } from './types';
+import type { ArtifactPatches, BatchPackageFetchResultType, BatchPackageStreamOptions, CreateDependenciesSnapshotOptions, Entitlement, GetOptions, MalwareCheckResult, PatchViewResponse, PostOrgTelemetryPayload, PostOrgTelemetryResponse, QueryParams, SendOptions, SocketSdkGenericResult, SocketSdkOptions, SocketSdkResult, StreamOrgFullScanOptions, UploadManifestFilesError, UploadManifestFilesOptions, UploadManifestFilesReturnType } from './types';
 import type { CreateFullScanOptions, DeleteRepositoryLabelResult, DeleteResult, FullScanListResult, FullScanResult, GetRepositoryOptions, ListFullScansOptions, ListRepositoriesOptions, OrganizationsResult, RepositoriesListResult, RepositoryLabelResult, RepositoryLabelsListResult, RepositoryResult, StrictErrorResult } from './types-strict';
-import type { IncomingMessage } from 'node:http';
+import type { HttpResponse } from '@socketsecurity/lib/http-request';
 /**
  * Socket SDK for programmatic access to Socket.dev security analysis APIs.
  * Provides methods for package scanning, organization management, and security analysis.
@@ -73,6 +73,23 @@ export declare class SocketSdk {
             purl: string;
         }>;
     }, options?: BatchPackageStreamOptions | undefined): AsyncGenerator<BatchPackageFetchResultType>;
+    /**
+     * Check packages for malware and security alerts.
+     *
+     * For small sets (≤ MAX_FIREWALL_COMPONENTS), uses parallel firewall API
+     * requests which return full artifact data including score and alert details.
+     *
+     * For larger sets, uses the batch PURL API for efficiency.
+     *
+     * Both paths normalize alerts through publicPolicy and only return
+     * malware-relevant results.
+     *
+     * @param components - Array of package URLs to check
+     * @returns Normalized results with policy-filtered alerts per package
+     */
+    checkMalware(components: Array<{
+        purl: string;
+    }>): Promise<SocketSdkGenericResult<MalwareCheckResult>>;
     /**
      * Create a snapshot of project dependencies by uploading manifest files.
      * Analyzes dependency files to generate a comprehensive security report.
@@ -368,29 +385,16 @@ export declare class SocketSdk {
      */
     deleteRepositoryLabel(orgSlug: string, labelId: string): Promise<DeleteRepositoryLabelResult | StrictErrorResult>;
     /**
-     * Delete a legacy scan report permanently.
-  
-    /**
-     * Download patch file content by hash.
+     * Download full scan files as a tar archive.
      *
-     * Downloads the actual patched file content from the public Socket blob store.
-     * This is used after calling viewPatch() to get the patch metadata.
-     * No authentication is required as patch blobs are publicly accessible.
+     * Streams the full scan file contents to the specified output path as a tar file.
+     * Includes size limit enforcement to prevent excessive disk usage.
      *
-     * @param hash - The blob hash in SSRI (sha256-base64) or hex format
-     * @param options - Optional configuration
-     * @param options.baseUrl - Override blob store URL (for testing)
-     * @returns Promise<string> - The patch file content as UTF-8 string
-     * @throws Error if blob not found (404) or download fails
-     *
-     * @example
-     * ```typescript
-     * const sdk = new SocketSdk('your-api-token')
-     * // First get patch metadata
-     * const patch = await sdk.viewPatch('my-org', 'patch-uuid')
-     * // Then download the actual patched file
-     * const fileContent = await sdk.downloadPatch(patch.files['index.js'].socketBlob)
-     * ```
+     * @param orgSlug - Organization identifier
+     * @param fullScanId - Full scan identifier
+     * @param outputPath - Local file path to write the tar archive
+     * @returns Download result with success/error status
+     * @throws {Error} When server returns 5xx status codes
      */
     downloadOrgFullScanFilesAsTar(orgSlug: string, fullScanId: string, outputPath: string): Promise<SocketSdkResult<'downloadOrgFullScanFilesAsTar'>>;
     /**
@@ -472,7 +476,7 @@ export declare class SocketSdk {
      * @param options - Request options including responseType and throws behavior
      * @returns Raw response, parsed data, or SocketSdkGenericResult based on options
      */
-    getApi<T = IncomingMessage>(urlPath: string, options?: GetOptions | undefined): Promise<T | SocketSdkGenericResult<T>>;
+    getApi<T = HttpResponse>(urlPath: string, options?: GetOptions | undefined): Promise<T | SocketSdkGenericResult<T>>;
     /**
      * Get list of API tokens for an organization.
      * Returns organization API tokens with metadata and permissions.
@@ -526,7 +530,7 @@ export declare class SocketSdk {
     /**
      * Retrieve the enabled entitlements for an organization.
      *
-     * This method fetches the organization's entitlements and filters for only* the enabled ones, returning their keys. Entitlements represent Socket
+     * This method fetches the organization's entitlements and filters for only the enabled ones, returning their keys. Entitlements represent Socket
      * Products that the organization has access to use.
      */
     getEnabledEntitlements(orgSlug: string): Promise<string[]>;
@@ -713,13 +717,15 @@ export declare class SocketSdk {
         vulnerability_ids: string;
     }): Promise<SocketSdkResult<'fetch-fixes'>>;
     /**
-     * Get organization's license policy configuration.* Returns allowed, restricted, and monitored license types.
+     * Get organization's license policy configuration.
+     * Returns allowed, restricted, and monitored license types.
      *
      * @throws {Error} When server returns 5xx status codes
      */
     getOrgLicensePolicy(orgSlug: string): Promise<SocketSdkResult<'getOrgLicensePolicy'>>;
     /**
-     * Get organization's security policy configuration.* Returns alert rules, severity thresholds, and enforcement settings.
+     * Get organization's security policy configuration.
+     * Returns alert rules, severity thresholds, and enforcement settings.
      *
      * @throws {Error} When server returns 5xx status codes
      */
@@ -782,10 +788,6 @@ export declare class SocketSdk {
      * @throws {Error} When server returns 5xx status codes
      */
     getRepoAnalytics(repo: string, time: string): Promise<SocketSdkResult<'getRepoAnalytics'>>;
-    /**
-     * Get detailed results for a legacy scan report.
-    /**
-  
     /**
      * Get details for a specific repository.
      *
@@ -875,15 +877,6 @@ export declare class SocketSdk {
      * @throws {Error} When server returns 5xx status codes
      */
     getSupportedFiles(orgSlug: string): Promise<SocketSdkResult<'getSupportedFiles'>>;
-    /**
-     * Get list of file types and formats supported for scanning.
-     * Returns supported manifest files, lockfiles, and configuration formats.
-     *
-     * @deprecated Use getSupportedFiles() instead. This endpoint has been deprecated
-     * since 2023-01-15 and now uses the /report/supported endpoint.
-     * @throws {Error} When server returns 5xx status codes
-     */
-    getSupportedScanFiles(): Promise<SocketSdkResult<'getReportSupportedFiles'>>;
     /**
      * List all full scans for an organization.
      *
@@ -1156,13 +1149,15 @@ export declare class SocketSdk {
      */
     updateOrgAlertTriage(orgSlug: string, alertId: string, triageData: QueryParams): Promise<SocketSdkResult<'updateOrgAlertTriage'>>;
     /**
-     * Update organization's license policy configuration.* Modifies allowed, restricted, and monitored license types.
+     * Update organization's license policy configuration.
+     * Modifies allowed, restricted, and monitored license types.
      *
      * @throws {Error} When server returns 5xx status codes
      */
     updateOrgLicensePolicy(orgSlug: string, policyData: QueryParams, queryParams?: QueryParams | undefined): Promise<SocketSdkResult<'updateOrgLicensePolicy'>>;
     /**
-     * Update organization's security policy configuration.* Modifies alert rules, severity thresholds, and enforcement settings.
+     * Update organization's security policy configuration.
+     * Modifies alert rules, severity thresholds, and enforcement settings.
      *
      * @throws {Error} When server returns 5xx status codes
      */

package/dist/types.d.ts

@@ -5,9 +5,8 @@
 import type { components, operations } from '../types/api';
 import type { OpReturnType } from '../types/api-helpers';
 import type { Remap } from '@socketsecurity/lib/objects';
-import type { ClientHttp2Session } from 'http2-wrapper';
 import type { Agent as HttpAgent, RequestOptions as HttpRequestOptions } from 'node:http';
-import type { ClientSessionRequestOptions } from 'node:http2';
+import type { ClientHttp2Session, ClientSessionRequestOptions } from 'node:http2';
 import type { Agent as HttpsAgent, RequestOptions as HttpsRequestOptions } from 'node:https';
 export type ALERT_ACTION = 'error' | 'monitor' | 'warn' | 'ignore';
 export type ALERT_TYPE = keyof NonNullable<operations['getOrgSecurityPolicy']['responses']['200']['content']['application/json']['securityPolicyRules']>;
@@ -171,6 +170,34 @@ export type SocketSdkGenericResult<T> = {
     success: false;
     url?: string | undefined;
 };
+export type MalwareCheckAlert = {
+    category?: string | undefined;
+    fix?: {
+        description: string;
+        type: string;
+    } | undefined;
+    key: string;
+    props?: Record<string, unknown> | undefined;
+    severity?: string | undefined;
+    type: ALERT_TYPE;
+};
+export type MalwareCheckPackage = {
+    alerts: MalwareCheckAlert[];
+    name?: string | undefined;
+    namespace?: string | undefined;
+    score?: MalwareCheckScore | undefined;
+    type: string;
+    version?: string | undefined;
+};
+export type MalwareCheckResult = MalwareCheckPackage[];
+export type MalwareCheckScore = {
+    license: number;
+    maintenance: number;
+    overall: number;
+    quality: number;
+    supplyChain: number;
+    vulnerability: number;
+};
 /**
  * Result from file validation callback.
  * Allows consumers to customize error handling and logging.
@@ -312,14 +339,6 @@ export type CreateDependenciesSnapshotOptions = {
     pathsRelativeTo?: string | undefined;
     queryParams?: QueryParams | undefined;
 };
-export type CreateOrgFullScanOptions = {
-    pathsRelativeTo?: string | undefined;
-    queryParams?: QueryParams | undefined;
-};
-export type CreateScanFromFilepathsOptions = {
-    issueRules?: Record<string, boolean> | undefined;
-    pathsRelativeTo?: string | undefined;
-};
 export type StreamOrgFullScanOptions = {
     output?: boolean | string | undefined;
 };

package/dist/utils.d.ts

@@ -1,5 +1,4 @@
 import type { QueryParams } from './types';
-export { createUserAgentFromPkgJson } from './user-agent';
 /**
  * Calculate Jaccard similarity coefficient between two strings based on word sets.
  * Returns a value between 0 (no overlap) and 1 (identical word sets).

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@socketsecurity/sdk",
-  "version": "3.4.1",
+  "version": "4.0.0",
   "description": "SDK for the Socket API client",
   "homepage": "https://github.com/SocketDev/socket-sdk-js",
   "license": "MIT",
@@ -48,7 +48,7 @@
     "clean": "node scripts/clean.mjs",
     "cover": "node scripts/cover.mjs",
     "fix": "node scripts/lint.mjs --fix",
-    "format": "oxfmt .",
+    "format": "oxfmt --write .",
     "format:check": "oxfmt --check .",
     "generate-sdk": "node scripts/generate-sdk.mjs",
     "lint": "node scripts/lint.mjs",
@@ -59,16 +59,17 @@
     "publish": "node scripts/publish.mjs",
     "publish:ci": "node scripts/publish.mjs --tag ${DIST_TAG:-latest}",
     "claude": "node scripts/claude.mjs",
+    "security": "agentshield scan && { command -v zizmor >/dev/null && zizmor .github/ || echo 'zizmor not installed — run pnpm run setup to install'; }",
     "test": "node scripts/test.mjs",
     "type": "tsgo --noEmit -p .config/tsconfig.check.json",
     "update": "node scripts/update.mjs"
   },
   "dependencies": {
-    "@socketregistry/packageurl-js": "1.3.5",
-    "@socketsecurity/lib": "5.8.1",
+    "@socketsecurity/lib": "5.15.0",
     "form-data": "4.0.5"
   },
   "devDependencies": {
+    "@anthropic-ai/claude-code": "2.1.92",
     "@babel/generator": "7.28.5",
     "@babel/parser": "7.26.3",
     "@babel/traverse": "7.26.4",
@@ -83,9 +84,9 @@
     "acorn": "8.15.0",
     "del": "8.0.1",
     "dev-null-cli": "2.0.0",
+    "ecc-agentshield": "1.4.0",
     "esbuild": "0.25.11",
     "fast-glob": "3.3.3",
-    "http2-wrapper": "2.2.1",
     "husky": "9.1.7",
     "magic-string": "0.30.14",
     "nock": "14.0.10",
@@ -109,17 +110,18 @@
     "strict": true
   },
   "engines": {
-    "node": ">=18",
-    "pnpm": ">=10.25.0"
+    "node": ">=18.20.8",
+    "pnpm": ">=10.33.0"
   },
-  "packageManager": "pnpm@10.32.1",
+  "packageManager": "pnpm@10.33.0",
   "pnpm": {
     "ignoredBuiltDependencies": [
       "esbuild",
       "unrs-resolver"
     ],
     "overrides": {
-      "vite": "7.1.12"
+      "defu": ">=6.1.6",
+      "vite": "7.3.2"
     }
   }
 }

package/types/api.d.ts

@@ -896,7 +896,7 @@ export interface paths {
     /**
      * Start historical data snapshot job (Beta)
      * @description This API endpoint is used to start a historical snapshot job.
-     * While snapshots are typically taken at least once a day, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
+     * While snapshots are typically taken multiple times a day for paid plans and once a day for free plans, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
      *
      * An historical snapshot will contain details and raw data for the following resources:
      *
@@ -1940,6 +1940,27 @@ export interface components {
         licenseDetails?: components['schemas']['LicenseDetails']
         licenseAttrib?: components['schemas']['SAttrib1_N']
       }
+    /** @description Mapping of supply chain risk alert types to their computed score contributions and formulas used for calculation. This allows for detailed breakdowns of how each alert type impacts the overall supply chain security score, with the ability to include custom formulas and components for each alert type. */
+    SocketSBOMScore: {
+      [key: string]: {
+        value: {
+          /**
+           * @description Score from 0.0 to 1.0 for the scanned repository, computed from supply chain risk alerts using weighted exponential decay per direct dependency
+           * @default 0
+           */
+          result: number
+          /** @description Components used to compute result of the formula */
+          components?: {
+            [key: string]: number
+          }
+          /**
+           * @description Formula used to compute the supply chain security score
+           * @default
+           */
+          formula?: string
+        }
+      }
+    }
     SocketDiffArtifact: components['schemas']['SocketPURL'] & {
       diffType: components['schemas']['SocketDiffArtifactType']
       id?: components['schemas']['SocketId']
@@ -4331,6 +4352,23 @@ export interface components {
             usage?: components['schemas']['SocketUsageRef']
           }
         }
+      | {
+          /** @enum {string} */
+          type?: 'skillPreExecution'
+          value?: components['schemas']['SocketIssueBasics'] & {
+            /** @default */
+            description: string
+            props: {
+              /** @default */
+              notes: string
+              /** @default 0 */
+              confidence: number
+              /** @default 0 */
+              severity: number
+            }
+            usage?: components['schemas']['SocketUsageRef']
+          }
+        }
       | {
           /** @enum {string} */
           type?: 'skillPromptInjection'
@@ -5522,6 +5560,8 @@ export interface operations {
         cachedResultsOnly?: boolean
         /** @description Include a summary object at the end of the stream with counts of malformed, resolved, and not found PURLs. */
         summary?: boolean
+        /** @description Maximum time in seconds to wait for scan results. PURLs that have not completed processing when the timeout is reached will be returned as errors (when purlErrors is enabled). Omit for no timeout. */
+        timeoutSec?: number
       }
     }
     requestBody?: {
@@ -5598,6 +5638,8 @@ export interface operations {
               version?: string
               /** @default */
               release?: string
+              /** @default */
+              workspace?: string
             }>
           }
         }
@@ -5924,6 +5966,10 @@ export interface operations {
         include_alert_priority_details?:
           | boolean
           | Array<'component' | 'formula'>
+        /** @description Include scores event in the response. include_scores_details implies this flag */
+        include_scores: boolean
+        /** @description Control which score detail fields to include in the scores event. Set to "true" to include all fields, "false" to exclude all fields, or specify individual fields like "components,formula" to include only those fields. */
+        include_scores_details?: boolean | Array<'components' | 'formula'>
         /** @description Include license details in the response. This can increase the response size significantly. */
         include_license_details: boolean
         /** @description Return cached immutable scan results. When enabled and results are cached, returns the pre-computed scan. When results are not yet cached, returns 202 Accepted and enqueues a background job. */
@@ -5937,10 +5983,16 @@ export interface operations {
       }
     }
     responses: {
-      /** @description Socket issue lists and scores for all packages */
+      /** @description Socket issue lists and scores for all packages, followed by a final scores event */
       200: {
         content: {
-          'application/x-ndjson': components['schemas']['SocketArtifact']
+          'application/x-ndjson':
+            | components['schemas']['SocketArtifact']
+            | {
+                /** @enum {string} */
+                _type: 'scores'
+                value: components['schemas']['SocketSBOMScore']
+              }
         }
       }
       /** @description Scan is being processed. Poll again later to retrieve results. */
@@ -9411,6 +9463,13 @@ export interface operations {
                  */
                 action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
               }
+              skillPreExecution?: {
+                /**
+                 * @description The action to take for skillPreExecution issues.
+                 * @enum {string}
+                 */
+                action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+              }
               skillPromptInjection?: {
                 /**
                  * @description The action to take for skillPromptInjection issues.
@@ -10388,6 +10447,13 @@ export interface operations {
                */
               action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
             }
+            skillPreExecution?: {
+              /**
+               * @description The action to take for skillPreExecution issues.
+               * @enum {string}
+               */
+              action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+            }
             skillPromptInjection?: {
               /**
                * @description The action to take for skillPromptInjection issues.
@@ -11519,6 +11585,13 @@ export interface operations {
                  */
                 action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
               }
+              skillPreExecution?: {
+                /**
+                 * @description The action to take for skillPreExecution issues.
+                 * @enum {string}
+                 */
+                action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+              }
               skillPromptInjection?: {
                 /**
                  * @description The action to take for skillPromptInjection issues.
@@ -12489,6 +12562,13 @@ export interface operations {
                */
               action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
             }
+            skillPreExecution?: {
+              /**
+               * @description The action to take for skillPreExecution issues.
+               * @enum {string}
+               */
+              action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+            }
             skillPromptInjection?: {
               /**
                * @description The action to take for skillPromptInjection issues.
@@ -13428,6 +13508,13 @@ export interface operations {
                  */
                 action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
               }
+              skillPreExecution?: {
+                /**
+                 * @description The action to take for skillPreExecution issues.
+                 * @enum {string}
+                 */
+                action: 'defer' | 'error' | 'warn' | 'monitor' | 'ignore'
+              }
               skillPromptInjection?: {
                 /**
                  * @description The action to take for skillPromptInjection issues.
@@ -15243,7 +15330,7 @@ export interface operations {
   /**
    * Start historical data snapshot job (Beta)
    * @description This API endpoint is used to start a historical snapshot job.
-   * While snapshots are typically taken at least once a day, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
+   * While snapshots are typically taken multiple times a day for paid plans and once a day for free plans, this endpoint can be used to start an "on demand" snapshot job to ensure the latest data is collected and stored for historical purposes.
    *
    * An historical snapshot will contain details and raw data for the following resources:
    *
@@ -15309,12 +15396,17 @@ export interface operations {
           | 'ChangePlanSubscriptionSeats'
           | 'CreateApiToken'
           | 'CreateArtifact'
+          | 'CreateFirewallCustomRegistry'
+          | 'CreateFirewallDeploymentConfig'
           | 'CreateLabel'
           | 'CreateOauthRefreshToken'
           | 'CreateRepoAccessRule'
           | 'CreateWebhook'
+          | 'CreateTicket'
           | 'DeleteAlertTriage'
           | 'DeleteApiToken'
+          | 'DeleteFirewallCustomRegistry'
+          | 'DeleteFirewallDeploymentConfig'
           | 'DeleteFullScan'
           | 'DeleteLabel'
           | 'DeleteLabelSetting'
@@ -15323,8 +15415,10 @@ export interface operations {
           | 'DeleteRepository'
           | 'DeleteWebhook'
           | 'DisassociateLabel'
+          | 'DisconnectJiraIntegration'
           | 'DowngradeOrganizationPlan'
           | 'JoinOrganization'
+          | 'JiraIntegrationConnected'
           | 'MemberAdded'
           | 'MemberRemoved'
           | 'MemberRoleChanged'
@@ -15346,6 +15440,8 @@ export interface operations {
           | 'UpdateApiTokenScopes'
           | 'UpdateApiTokenVisibility'
           | 'UpdateAutopatchCurated'
+          | 'UpdateFirewallCustomRegistry'
+          | 'UpdateFirewallDeploymentConfig'
           | 'UpdateLabel'
           | 'UpdateLabelSetting'
           | 'UpdateLicenseOverlay'
@@ -15519,6 +15615,11 @@ export interface operations {
                 | 'alerts'
                 | 'alerts:list'
                 | 'alerts:trend'
+                | 'alert-resolution'
+                | 'alert-resolution:list'
+                | 'alert-resolution:create'
+                | 'alert-resolution:read'
+                | 'alert-resolution:delete'
                 | 'api-tokens'
                 | 'api-tokens:create'
                 | 'api-tokens:update'
@@ -15649,6 +15750,11 @@ export interface operations {
             | 'alerts'
             | 'alerts:list'
             | 'alerts:trend'
+            | 'alert-resolution'
+            | 'alert-resolution:list'
+            | 'alert-resolution:create'
+            | 'alert-resolution:read'
+            | 'alert-resolution:delete'
             | 'api-tokens'
             | 'api-tokens:create'
             | 'api-tokens:update'
@@ -15842,6 +15948,11 @@ export interface operations {
             | 'alerts'
             | 'alerts:list'
             | 'alerts:trend'
+            | 'alert-resolution'
+            | 'alert-resolution:list'
+            | 'alert-resolution:create'
+            | 'alert-resolution:read'
+            | 'alert-resolution:delete'
             | 'api-tokens'
             | 'api-tokens:create'
             | 'api-tokens:update'
@@ -16577,6 +16688,8 @@ export interface operations {
         cachedResultsOnly?: boolean
         /** @description Include a summary object at the end of the stream with counts of malformed, resolved, and not found PURLs. */
         summary?: boolean
+        /** @description Maximum time in seconds to wait for scan results. PURLs that have not completed processing when the timeout is reached will be returned as errors (when purlErrors is enabled). Omit for no timeout, unless a default timeout is configured for the organization. */
+        timeoutSec?: number
       }
       path: {
         /** @description The slug of the organization */
@@ -16667,7 +16780,7 @@ export interface operations {
   'fetch-fixes': {
     parameters: {
       query: {
-        /** @description The slug of the repository to fetch fixes for. Computes fixes based on the latest scan on the default branch */
+        /** @description The slug of the repository to fetch fixes for (e.g. "my-repo" or "my-org/my-repo"). Use the full org/repo path to disambiguate when multiple GitHub orgs share the same repo name. Computes fixes based on the latest scan on the default branch */
         repo_slug?: string
         /** @description The ID of the scan to fetch fixes for */
         full_scan_id?: string

package/dist/promise-queue.d.ts

@@ -1,35 +0,0 @@
-export declare class PromiseQueue {
-    private queue;
-    private running;
-    private readonly maxConcurrency;
-    private readonly maxQueueLength;
-    /**
-     * Creates a new PromiseQueue
-     * @param maxConcurrency - Maximum number of promises that can run concurrently
-     * @param maxQueueLength - Maximum queue size (older tasks are dropped if exceeded)
-     */
-    constructor(maxConcurrency: number, maxQueueLength?: number | undefined);
-    private runNext;
-    /**
-     * Get the number of tasks currently running
-     */
-    get activeCount(): number;
-    /**
-     * Add a task to the queue
-     * @param fn - Async function to execute
-     * @returns Promise that resolves with the function's result
-     */
-    add<T>(fn: () => Promise<T>): Promise<T>;
-    /**
-     * Clear all pending tasks from the queue (does not affect running tasks)
-     */
-    clear(): void;
-    /**
-     * Wait for all queued and running tasks to complete
-     */
-    onIdle(): Promise<void>;
-    /**
-     * Get the number of tasks waiting in the queue
-     */
-    get pendingCount(): number;
-}