socket 0.14.145 → 0.14.147

package/dist/cli.js

@@ -904,7 +904,7 @@ function emitBanner(name) {
   logger.logger.error(getAsciiHeader(name))
 }
 function getAsciiHeader(command) {
-  const cliVersion = '0.14.145:72b5678:19fa9236:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
+  const cliVersion = '0.14.147:be0fdf7:129207b8:pub' // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION_HASH']".
   const nodeVersion = process$1.version
   const apiToken = shadowNpmInject.getDefaultToken()
   const defaultOrg = shadowNpmInject.getConfigValue('defaultOrg')
@@ -3979,23 +3979,30 @@ const alertMapOptions = Object.freeze({
   },
   nothrow: true
 })
-function assignDefaultFixOptions(options) {
-  if (options.autoPilot === undefined) {
+function normalizeFixOptions(options_) {
+  const options = {
+    __proto__: null,
+    ...options_
+  }
+  if (typeof options.autoPilot !== 'boolean') {
     options.autoPilot = false
   }
-  if (options.autoMerge === undefined) {
+  if (typeof options.autoMerge !== 'boolean') {
     options.autoMerge = !!options.autoPilot
   }
-  if (options.cwd === undefined) {
+  if (typeof options.cwd !== 'string') {
     options.cwd = process.cwd()
   }
-  if (options.rangeStyle === undefined) {
+  options.purls = Array.isArray(options.purls)
+    ? options.purls.flatMap(p => p.split(/, */))
+    : []
+  if (typeof options.rangeStyle !== 'string') {
     options.rangeStyle = 'preserve'
   }
-  if (options.test === undefined) {
+  if (typeof options.test !== 'boolean') {
     options.test = !!options.autoPilot || !!options.testScript
   }
-  if (options.testScript === undefined) {
+  if (typeof options.testScript !== 'string') {
     options.testScript = 'test'
   }
   return options
@@ -5116,10 +5123,7 @@ async function detectAndValidatePackageEnvironment(cwd, options) {
 
 const { NPM: NPM$a, PNPM: PNPM$6 } = constants
 async function runFix(options_) {
-  const options = assignDefaultFixOptions({
-    __proto__: null,
-    ...options_
-  })
+  const options = normalizeFixOptions(options_)
   const pkgEnvDetails = await detectAndValidatePackageEnvironment(options.cwd, {
     cmdName: CMD_NAME$1,
     logger: logger.logger
@@ -5139,8 +5143,8 @@ async function runFix(options_) {
 const { DRY_RUN_BAIL_TEXT: DRY_RUN_BAIL_TEXT$y } = constants
 const config$B = {
   commandName: 'fix',
-  description: 'Fix "fixable" Socket alerts',
-  hidden: true,
+  description: 'Update dependencies with "fixable" Socket alerts',
+  hidden: false,
   flags: {
     ...commonFlags,
     autoPilot: {
@@ -5156,7 +5160,7 @@ const config$B = {
     purl: {
       type: 'string',
       default: [],
-      description: `User provided PURL to fix`,
+      description: `Provide a list of ${vendor.terminalLinkExports('package URLs (PURLs)', 'https://github.com/package-url/purl-spec?tab=readme-ov-file#purl')} to fix, as either a comma separated value or as multiple flags, instead of querying the Socket API`,
       isMultiple: true,
       shortFlag: 'p'
     },
@@ -5167,10 +5171,12 @@ const config$B = {
       Define how updated dependency versions should be written in package.json.
       Available styles:
         *	caret - Use ^ range for compatible updates (e.g. ^1.2.3)
-        *	gt - Use >= to allow any newer version (e.g. >=1.2.3)
+        *	gt - Use > to allow any newer version (e.g. >1.2.3)
+        *	gte - Use >= to allow any newer version (e.g. >=1.2.3)
         *	lt - Use < to allow only lower versions (e.g. <1.2.3)
+        *	lte - Use <= to allow only lower versions (e.g. <=1.2.3)
         *	pin - Use the exact version (e.g. 1.2.3)
-        *	preserve - Retain the existing version range as-is
+        *	preserve - Retain the existing version range style as-is
         *	tilde - Use ~ range for patch/minor updates (e.g. ~1.2.3)
       `
     },
@@ -7472,7 +7478,7 @@ async function addOverrides(pkgEnvDetails, pkgPath, options) {
   const isWorkspaceRoot = pkgPath === rootPath
   const isLockScanned = isWorkspaceRoot && !prod
   const workspaceName = isWorkspaceRoot
-    ? ''
+    ? 'root'
     : path$1.relative(rootPath, pkgPath)
   if (
     isWorkspace &&
@@ -7498,9 +7504,7 @@ async function addOverrides(pkgEnvDetails, pkgPath, options) {
       overridesDataByAgent.get(YARN_CLASSIC)(pkgEnvDetails)
     )
   }
-  spinner?.setText(
-    `Adding overrides${workspaceName ? ` to ${workspaceName}` : ''}...`
-  )
+  spinner?.setText(`Adding overrides to ${workspaceName}...`)
   const depAliasMap = new Map()
   const depEntries = getDependencyEntries(pkgEnvDetails)
   const manifestEntries = manifestNpmOverrides.filter(({ 1: data }) =>
@@ -7546,7 +7550,7 @@ async function addOverrides(pkgEnvDetails, pkgPath, options) {
           thisSpec = sockOverrideSpec
           depObj[origPkgName] = thisSpec
           state.added.add(sockRegPkgName)
-          if (workspaceName) {
+          if (!isWorkspaceRoot) {
             state.addedInWorkspaces.add(workspaceName)
           }
         }
@@ -12253,7 +12257,7 @@ void (async () => {
   await vendor.updater({
     name: SOCKET_CLI_BIN_NAME,
     // The '@rollup/plugin-replace' will replace "process.env['INLINED_SOCKET_CLI_VERSION']".
-    version: '0.14.145',
+    version: '0.14.147',
     ttl: 86_400_000 /* 24 hours in milliseconds */
   })
   try {
@@ -12321,5 +12325,5 @@ void (async () => {
     await shadowNpmInject.captureException(e)
   }
 })()
-//# debugId=be11d525-2d0b-4048-8e64-5391d6a93d04
+//# debugId=bbd43241-7b59-4dff-9ee3-8f60c7e28f1d
 //# sourceMappingURL=cli.js.map