mobbdev 1.0.47 → 1.0.50

package/dist/index.mjs

@@ -5896,6 +5896,9 @@ async function getGitlabIsUserCollaborator({
     const members = await api2.ProjectMembers.all(res.id, {
       includeInherited: true
     });
+    if (!username) {
+      return true;
+    }
     return !!members.find((member) => member.username === username);
   } catch (e) {
     return false;
@@ -6254,7 +6257,14 @@ var GitlabSCMLib = class extends SCMLib {
   }
   async getUserHasAccessToRepo() {
     this._validateAccessTokenAndUrl();
-    const username = await this.getUsername();
+    let username = void 0;
+    try {
+      username = await this.getUsername();
+    } catch (e) {
+      console.warn(
+        "could not get username. this is okay if a project token is used"
+      );
+    }
     return getGitlabIsUserCollaborator({
       username,
       accessToken: this.accessToken,
@@ -8346,7 +8356,7 @@ async function uploadFile({
 
 // src/features/analysis/index.ts
 var { CliError: CliError2, Spinner: Spinner2 } = utils_exports;
-function _getScanSource(command) {
+function _getScanSource(command, ci) {
   if (command === "review")
     return "AUTO_FIXER" /* AutoFixer */;
   const envToCi = [
@@ -8362,6 +8372,9 @@ function _getScanSource(command) {
       return source;
     }
   }
+  if (ci) {
+    return "CI_UNKNOWN" /* CiUnknown */;
+  }
   return "CLI" /* Cli */;
 }
 async function downloadRepo({
@@ -8659,7 +8672,8 @@ async function _scan(params, { skipPrompts = false } = {}) {
     gqlClient,
     fixReportId: reportUploadInfo.fixReportId,
     projectId,
-    command
+    command,
+    ci
   });
   uploadReportSpinner.success({ text: "\u{1F4C1} Report uploaded successfully" });
   const mobbSpinner = createSpinner5("\u{1F575}\uFE0F\u200D\u2642\uFE0F Initiating Mobb analysis").start();
@@ -8675,7 +8689,7 @@ async function _scan(params, { skipPrompts = false } = {}) {
       sha,
       experimentalEnabled,
       pullRequest: params.pullRequest,
-      scanSource: _getScanSource(command)
+      scanSource: _getScanSource(command, ci)
     }
   });
   if (sendReportRes.submitVulnerabilityReport.__typename !== "VulnerabilityReport") {
@@ -8780,7 +8794,8 @@ async function _scan(params, { skipPrompts = false } = {}) {
       gqlClient,
       fixReportId: reportUploadInfo.fixReportId,
       projectId,
-      command
+      command,
+      ci
     });
     const srcFileStatus = await fsPromises.lstat(srcPath);
     const zippingSpinner = createSpinner5("\u{1F4E6} Zipping repo").start();
@@ -8817,7 +8832,7 @@ async function _scan(params, { skipPrompts = false } = {}) {
           repoUrl: repo || gitInfo.repoUrl || getTopLevelDirName(srcPath),
           reference: ref || gitInfo.reference || "no-branch",
           sha: commitHash || gitInfo.hash || "0123456789abcdef",
-          scanSource: _getScanSource(command),
+          scanSource: _getScanSource(command, ci),
           pullRequest: params.pullRequest
         }
       });
@@ -8876,7 +8891,8 @@ async function _digestReport({
   gqlClient,
   fixReportId,
   projectId,
-  command
+  command,
+  ci
 }) {
   const digestSpinner = createSpinner4(
     progressMassages.processingVulnerabilityReport
@@ -8886,7 +8902,7 @@ async function _digestReport({
       {
         fixReportId,
         projectId,
-        scanSource: _getScanSource(command)
+        scanSource: _getScanSource(command, ci)
       }
     );
     try {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mobbdev",
-  "version": "1.0.47",
+  "version": "1.0.50",
   "description": "Automated secure code remediation tool",
   "repository": "git+https://github.com/mobb-dev/bugsy.git",
   "main": "dist/index.js",
@@ -35,10 +35,10 @@
     "@octokit/core": "5.2.0",
     "@octokit/graphql": "5.0.6",
     "@octokit/plugin-rest-endpoint-methods": "7.2.3",
-    "@octokit/request-error": "5.1.0",
+    "@octokit/request-error": "5.1.1",
     "@types/libsodium-wrappers": "0.7.14",
     "adm-zip": "0.5.16",
-    "axios": "1.7.9",
+    "axios": "1.8.2",
     "azure-devops-node-api": "12.1.0",
     "bitbucket": "2.11.0",
     "chalk": "5.4.1",