@visulima/vis 1.0.0-alpha.22 → 1.0.0-alpha.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (139) hide show
  1. package/CHANGELOG.md +77 -0
  2. package/LICENSE.md +135 -2
  3. package/README.md +1 -1
  4. package/dashboard/dist/index.html +152 -0
  5. package/dist/bin.js +1 -1
  6. package/dist/binx.js +3 -0
  7. package/dist/config/index.d.ts +28 -41
  8. package/dist/config/index.js +1 -1
  9. package/dist/packem_chunks/bin.js +373 -367
  10. package/dist/packem_chunks/bloom-status.js +2 -2
  11. package/dist/packem_chunks/bloom-sync.js +2 -2
  12. package/dist/packem_chunks/config.js +12 -12
  13. package/dist/packem_chunks/doctor-probe.js +2 -2
  14. package/dist/packem_chunks/fix.js +3 -3
  15. package/dist/packem_chunks/handler.js +1 -1
  16. package/dist/packem_chunks/handler10.js +1 -1
  17. package/dist/packem_chunks/handler11.js +1 -1
  18. package/dist/packem_chunks/handler12.js +3 -3
  19. package/dist/packem_chunks/handler13.js +1 -1
  20. package/dist/packem_chunks/handler14.js +10 -10
  21. package/dist/packem_chunks/handler15.js +2 -2
  22. package/dist/packem_chunks/handler16.js +1 -1
  23. package/dist/packem_chunks/handler17.js +1 -1
  24. package/dist/packem_chunks/handler18.js +1 -1
  25. package/dist/packem_chunks/handler19.js +1 -1
  26. package/dist/packem_chunks/handler2.js +1 -1
  27. package/dist/packem_chunks/handler20.js +1 -1
  28. package/dist/packem_chunks/handler21.js +2 -2
  29. package/dist/packem_chunks/handler22.js +2 -2
  30. package/dist/packem_chunks/handler23.js +2 -2
  31. package/dist/packem_chunks/handler24.js +1 -18
  32. package/dist/packem_chunks/handler25.js +1 -1
  33. package/dist/packem_chunks/handler26.js +5 -1
  34. package/dist/packem_chunks/handler27.js +1 -5
  35. package/dist/packem_chunks/handler28.js +3 -1
  36. package/dist/packem_chunks/handler29.js +1 -3
  37. package/dist/packem_chunks/handler3.js +1 -1
  38. package/dist/packem_chunks/handler30.js +7 -1
  39. package/dist/packem_chunks/handler31.js +32 -6
  40. package/dist/packem_chunks/handler32.js +3 -33
  41. package/dist/packem_chunks/handler33.js +1 -3
  42. package/dist/packem_chunks/handler34.js +28 -1
  43. package/dist/packem_chunks/handler35.js +5 -26
  44. package/dist/packem_chunks/handler36.js +22 -5
  45. package/dist/packem_chunks/handler37.js +60 -21
  46. package/dist/packem_chunks/handler38.js +6 -428
  47. package/dist/packem_chunks/handler39.js +708 -61
  48. package/dist/packem_chunks/handler4.js +1 -1
  49. package/dist/packem_chunks/handler40.js +24 -6
  50. package/dist/packem_chunks/handler41.js +237 -166
  51. package/dist/packem_chunks/handler42.js +153 -24
  52. package/dist/packem_chunks/handler43.js +10 -153
  53. package/dist/packem_chunks/handler44.js +25 -10
  54. package/dist/packem_chunks/handler45.js +24 -25
  55. package/dist/packem_chunks/handler46.js +3 -24
  56. package/dist/packem_chunks/handler47.js +27 -3
  57. package/dist/packem_chunks/handler48.js +173 -21
  58. package/dist/packem_chunks/handler49.js +33 -173
  59. package/dist/packem_chunks/handler5.js +6 -6
  60. package/dist/packem_chunks/handler6.js +1 -1
  61. package/dist/packem_chunks/handler7.js +1 -1
  62. package/dist/packem_chunks/handler8.js +1 -1
  63. package/dist/packem_chunks/handler9.js +1 -1
  64. package/dist/packem_chunks/heal-accept.js +4 -4
  65. package/dist/packem_chunks/heal.js +1 -1
  66. package/dist/packem_chunks/help-command.js +2 -2
  67. package/dist/packem_chunks/index.js +2 -2
  68. package/dist/packem_chunks/keys-refresh.js +1 -1
  69. package/dist/packem_chunks/list.js +2 -2
  70. package/dist/packem_chunks/loader.js +3 -3
  71. package/dist/packem_chunks/loader2.js +1 -1
  72. package/dist/packem_chunks/prune.js +1 -1
  73. package/dist/packem_chunks/run.js +1 -1
  74. package/dist/packem_chunks/status.js +2 -2
  75. package/dist/packem_chunks/sync.js +2 -2
  76. package/dist/packem_chunks/sync2.js +2 -2
  77. package/dist/packem_chunks/tripwire.js +2 -2
  78. package/dist/packem_chunks/verify-lockfile.js +2 -2
  79. package/dist/packem_shared/{advisories-DS8JEB_g.js → advisories-U1QKY_tg.js} +1 -1
  80. package/dist/packem_shared/{ai-analysis-DGBZYlxF.js → ai-analysis-B8pDCOuT.js} +2 -2
  81. package/dist/packem_shared/ai-fix-DiGSrGKv.js +43 -0
  82. package/dist/packem_shared/anolilab-text-CAM_E6uK.js +13 -0
  83. package/dist/packem_shared/applyDefaults-KxZkvlp3.js +1 -0
  84. package/dist/packem_shared/build-scripts-3E2pmscY.js +1 -0
  85. package/dist/packem_shared/{cyclonedx-CO7-Y1B1.js → cyclonedx-DPEW0nwS.js} +3 -3
  86. package/dist/packem_shared/dependency-scan-BbtivycX.js +1 -0
  87. package/dist/packem_shared/docker-_pBC9Loj.js +60 -0
  88. package/dist/packem_shared/failure-log-B0Uh-65U.js +2 -0
  89. package/dist/packem_shared/index-B8Ko8mwG.js +29 -0
  90. package/dist/packem_shared/index-D_tAc2nS.js +1 -0
  91. package/dist/packem_shared/index.server-B7ETiT4C.js +2 -0
  92. package/dist/packem_shared/lifecycle-DJDsjoic.js +2 -0
  93. package/dist/packem_shared/{lockfile-C5DYMHVq.js → lockfile-CQLFNyVa.js} +1 -1
  94. package/dist/packem_shared/manifests-Z3spBpxv.js +1 -0
  95. package/dist/packem_shared/{min-release-age-D462DvYM.js → min-release-age-Cz6HbF-I.js} +2 -2
  96. package/dist/packem_shared/native-config-sync-BOeuyrBj.js +21 -0
  97. package/dist/packem_shared/{osv-bloom-QSAn2Dcw.js → osv-bloom-CyCDpXBl.js} +2 -2
  98. package/dist/packem_shared/peer-warnings-EvSJ18gE.js +1 -0
  99. package/dist/packem_shared/pm-runner-Dnj9J3KF.js +1 -0
  100. package/dist/packem_shared/provenance-yESbF7Vs.js +1 -0
  101. package/dist/packem_shared/readFileSync-CGmzMUF2-D6rUjGDn.js +1 -0
  102. package/dist/packem_shared/registry-keys-pemEkRM9.js +1 -0
  103. package/dist/packem_shared/{resolve-explicit-BgFQHUEP.js → resolve-explicit-BpxcFRuk.js} +3 -3
  104. package/dist/packem_shared/runtime-check-DgXsKCsv.js +1 -0
  105. package/dist/packem_shared/s1ngularity-B_xjP4lC.js +1 -0
  106. package/dist/packem_shared/scan-progress-EbvmIh4i.js +2 -0
  107. package/dist/packem_shared/{selectors-B2ISH581.js → selectors-BE2BCnTR.js} +1 -1
  108. package/dist/packem_shared/{signatures-b-jJYoZd.js → signatures-DBwSnMBB.js} +1 -1
  109. package/dist/packem_shared/toolchain-Jx2lkAYy.js +5 -0
  110. package/dist/packem_shared/typosquats-Citu7BRY.js +1 -0
  111. package/dist/packem_shared/verify-C8EAHql6.js +1 -0
  112. package/dist/packem_shared/{vis-update-app-Bnu1EIgE.js → vis-update-app-BWA1kA1q.js} +1 -1
  113. package/index.js +52 -52
  114. package/package.json +23 -12
  115. package/schemas/vis-config.schema.json +61 -12
  116. package/dist/packem_chunks/handler50.js +0 -34
  117. package/dist/packem_shared/ai-cache-BjlXWJtl.js +0 -1
  118. package/dist/packem_shared/ai-fix-BhcTrkuW.js +0 -43
  119. package/dist/packem_shared/applyDefaults-BOVDw1jD.js +0 -1
  120. package/dist/packem_shared/build-scripts-DsWMSWDs.js +0 -1
  121. package/dist/packem_shared/cache-directory-DQak1Vjc.js +0 -1
  122. package/dist/packem_shared/dependency-scan-DPHTzA5r.js +0 -1
  123. package/dist/packem_shared/docker-lk0-5Z-i.js +0 -60
  124. package/dist/packem_shared/failure-log-DF7nrFIs.js +0 -2
  125. package/dist/packem_shared/flakiness-DKCOYwN7.js +0 -1
  126. package/dist/packem_shared/index-B4gpNmrG.js +0 -1
  127. package/dist/packem_shared/lifecycle-boYwVQSE.js +0 -2
  128. package/dist/packem_shared/manifests-B0fMp872.js +0 -1
  129. package/dist/packem_shared/native-config-sync-B0_ef78M.js +0 -21
  130. package/dist/packem_shared/provenance-smHa8efI.js +0 -1
  131. package/dist/packem_shared/registry-keys-3qaVog76.js +0 -1
  132. package/dist/packem_shared/run-summary-utils-DIJV_dUD.js +0 -1
  133. package/dist/packem_shared/runtime-check-DrMx4Q9L.js +0 -1
  134. package/dist/packem_shared/s1ngularity-CwSBPB3I.js +0 -1
  135. package/dist/packem_shared/scan-progress-CMynp3eA.js +0 -2
  136. package/dist/packem_shared/toolchain-OH1PXwbZ.js +0 -5
  137. package/dist/packem_shared/typosquats-CJ4o1l7U.js +0 -1
  138. package/dist/packem_shared/verify-CQbzknur.js +0 -1
  139. package/dist/packem_shared/xxh3-DrAUNq4n.js +0 -1
package/schemas/vis-config.schema.json CHANGED
@@ -1062,8 +1062,8 @@
1062
1062
  "properties": {
1063
1063
  "advisoryCacheTtlMs": {
1064
1064
  "type": "number",
1065
- "description": "Cache TTL for advisory entries (immutable once published).",
1066
- "default": "604_800_000 (7 days)"
1065
+ "description": "Cache TTL for advisory entries (immutable once published). 7 days.",
1066
+ "default": 604800000
1067
1067
  },
1068
1068
  "enabled": {
1069
1069
  "type": "boolean",
@@ -1072,23 +1072,36 @@
1072
1072
  },
1073
1073
  "projectCacheTtlMs": {
1074
1074
  "type": "number",
1075
- "description": "Cache TTL for OpenSSF Scorecard project data (refreshes weekly).",
1076
- "default": "86_400_000 (24 hours)"
1075
+ "description": "Cache TTL for OpenSSF Scorecard project data (refreshes weekly). 24 hours.",
1076
+ "default": 86400000
1077
1077
  },
1078
1078
  "timeoutMs": {
1079
1079
  "type": "number",
1080
1080
  "description": "Request timeout in milliseconds.",
1081
- "default": "15_000"
1081
+ "default": 15000
1082
1082
  },
1083
1083
  "versionCacheTtlMs": {
1084
1084
  "type": "number",
1085
- "description": "Cache TTL for npm version metadata (immutable).",
1086
- "default": "604_800_000 (7 days)"
1085
+ "description": "Cache TTL for npm version metadata (immutable). 7 days.",
1086
+ "default": 604800000
1087
1087
  }
1088
1088
  },
1089
1089
  "additionalProperties": false,
1090
1090
  "description": "deps.dev (Google Open Source Insights) data-source configuration. Public, unauthenticated; pulls Scorecard data + advisories from `api.deps.dev`. Complements or replaces Socket.dev. Heavily cached."
1091
1091
  },
1092
+ "exoticSubdepsAllow": {
1093
+ "type": "array",
1094
+ "items": {
1095
+ "type": "string"
1096
+ },
1097
+ "description": "Package names exempted from the `blockExoticSubdeps` check. Bare names and a trailing `*` glob (`@scope/*`) are supported. Use for an internal package legitimately published as a git or tarball dependency.",
1098
+ "examples": [
1099
+ [
1100
+ "@myorg/legacy",
1101
+ "internal-*"
1102
+ ]
1103
+ ]
1104
+ },
1092
1105
  "marshalls": {
1093
1106
  "type": "object",
1094
1107
  "properties": {
@@ -1602,9 +1615,45 @@
1602
1615
  "type": "string",
1603
1616
  "enum": [
1604
1617
  "deps-dev",
1618
+ "snyk",
1605
1619
  "socket"
1606
1620
  ],
1607
- "description": "Which provider wins merge conflicts when multiple are enabled (e.g. both Socket.dev and deps.dev return data for the same package). The primary provider's `score` is kept; alerts from secondaries are appended and deduped by `key`. Defaults to whichever provider is enabled first in this order: socket → deps-dev."
1621
+ "description": "Which provider wins merge conflicts when multiple are enabled (e.g. both Socket.dev and deps.dev return data for the same package). The primary provider's `score` is kept; alerts from secondaries are appended and deduped by `key`. Defaults to whichever provider is enabled first in this order: socket → deps-dev → snyk."
1622
+ },
1623
+ "snyk": {
1624
+ "type": "object",
1625
+ "properties": {
1626
+ "apiToken": {
1627
+ "type": "string",
1628
+ "description": "Snyk API token. Set via VIS_SNYK_TOKEN environment variable or here."
1629
+ },
1630
+ "apiVersion": {
1631
+ "type": "string",
1632
+ "description": "Snyk REST API version date sent as the `version` query param.",
1633
+ "default": "2024-10-15"
1634
+ },
1635
+ "cacheTtlMs": {
1636
+ "type": "number",
1637
+ "description": "Cache TTL in milliseconds for Snyk issue lookups. 6 hours.",
1638
+ "default": 21600000
1639
+ },
1640
+ "enabled": {
1641
+ "type": "boolean",
1642
+ "description": "Enable Snyk security scanning on install/update/check/audit commands.",
1643
+ "default": false
1644
+ },
1645
+ "orgId": {
1646
+ "type": "string",
1647
+ "description": "Snyk organization id (the REST endpoint is org-scoped). Set via VIS_SNYK_ORG environment variable or here."
1648
+ },
1649
+ "timeoutMs": {
1650
+ "type": "number",
1651
+ "description": "Request timeout in milliseconds for the Snyk API. 15 seconds.",
1652
+ "default": 15000
1653
+ }
1654
+ },
1655
+ "additionalProperties": false,
1656
+ "description": "Snyk data-source configuration. Snyk only contributes vulnerability data (no maintenance / quality / supply-chain / license signal); those axes stay neutral. Requires both an org id and an API token — if either is missing the provider is skipped."
1608
1657
  },
1609
1658
  "socket": {
1610
1659
  "type": "object",
@@ -1615,8 +1664,8 @@
1615
1664
  },
1616
1665
  "cacheTtlMs": {
1617
1666
  "type": "number",
1618
- "description": "Cache TTL in milliseconds for Socket.dev reports.",
1619
- "default": "3_600_000 (1 hour)"
1667
+ "description": "Cache TTL in milliseconds for Socket.dev reports. 1 hour.",
1668
+ "default": 3600000
1620
1669
  },
1621
1670
  "enabled": {
1622
1671
  "type": "boolean",
@@ -1625,8 +1674,8 @@
1625
1674
  },
1626
1675
  "timeoutMs": {
1627
1676
  "type": "number",
1628
- "description": "Request timeout in milliseconds for the Socket.dev API.",
1629
- "default": "15_000 (15 seconds)"
1677
+ "description": "Request timeout in milliseconds for the Socket.dev API. 15 seconds.",
1678
+ "default": 15000
1630
1679
  }
1631
1680
  },
1632
1681
  "additionalProperties": false,