npm - socket - Versions diffs - 0.14.24 → 0.14.26 - Mend

socket 0.14.24 → 0.14.26

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/cli.js CHANGED Viewed

@@ -3,33 +3,32 @@
 var vendor = require('./vendor.js');
 var require$$1 = require('node:path');
-var require$$8$1 = require('node:url');
-var require$$4 = require('@socketsecurity/registry/lib/objects');
-var require$$6$1 = require('pony-cause');
+var require$$8$2 = require('node:url');
+var require$$5$1 = require('pony-cause');
 var require$$0 = require('node:fs');
 var require$$1$1 = require('@npmcli/promise-spawn');
-var require$$6 = require('yargs-parser');
+var require$$5 = require('yargs-parser');
 var sdk = require('./sdk.js');
 var require$$1$2 = require('@inquirer/prompts');
-var require$$1$4 = require('node:fs/promises');
-var require$$1$3 = require('@npmcli/package-json');
-var require$$5 = require('@socketsecurity/registry');
-var require$$7$1 = require('@socketsecurity/registry/lib/packages');
-var require$$8 = require('@socketsecurity/registry/lib/promises');
-var require$$9$1 = require('@socketsecurity/registry/lib/regexps');
-var require$$6$2 = require('@socketsecurity/registry/lib/strings');
-var require$$12 = require('npm-package-arg');
-var require$$14 = require('semver');
-var require$$15 = require('tinyglobby');
-var require$$16 = require('yaml');
-var require$$2 = require('@socketregistry/hyrious__bun.lockb');
-var require$$4$1 = require('@socketsecurity/registry/lib/constants');
-var require$$7 = require('browserslist');
-var require$$9 = require('which');
+var require$$1$3 = require('node:fs/promises');
+var require$$5$3 = require('npm-package-arg');
+var require$$3 = require('semver');
+var require$$8$1 = require('tinyglobby');
+var require$$9$1 = require('yaml');
+var require$$10 = require('@socketsecurity/registry');
+var require$$7 = require('@socketsecurity/registry/lib/objects');
+var require$$8 = require('@socketsecurity/registry/lib/packages');
+var require$$13 = require('@socketsecurity/registry/lib/promises');
+var require$$14 = require('@socketsecurity/registry/lib/regexps');
+var require$$9 = require('@socketsecurity/registry/lib/strings');
+var require$$2 = require('browserslist');
+var require$$4 = require('which');
+var require$$5$2 = require('@socketregistry/hyrious__bun.lockb');
+var require$$6 = require('@socketsecurity/registry/lib/constants');
 var require$$2$1 = require('@apideck/better-ajv-errors');
-var require$$3 = require('@socketsecurity/config');
+var require$$6$1 = require('@socketsecurity/config');
 var pathResolve = require('./path-resolve.js');
-var require$$1$5 = require('node:os');
+var require$$1$4 = require('node:os');
 var require$$3$1 = require('node:readline');
 var require$$0$1 = require('node:process');
 var require$$2$2 = require('node:readline/promises');
@@ -54,9 +53,8 @@ cdxgen.cdxgen = void 0;
 var _nodeFs$3 = require$$0;
 var _nodePath$7 = require$$1;
 var _promiseSpawn$6 = require$$1$1;
-var _objects$6 = require$$4;
 var _chalk$j = _interopRequireDefault$s(vendor.source);
-var _yargsParser = require$$6;
+var _yargsParser = require$$5;
 const distPath$4 = __dirname;
 const {
   execPath
@@ -148,18 +146,18 @@ function argvToArray(argv) {
   for (const {
     0: key,
     1: value
-  } of (0, _objects$6.objectEntries)(argv)) {
+  } of Object.entries(argv)) {
     if (key === '_' || key === '--') continue;
     if (key === 'babel' || key === 'install-deps' || key === 'validate') {
       // cdxgen documents no-babel, no-install-deps, and no-validate flags so
       // use them when relevant.
       result.push(`--${value ? key : `no-${key}`}`);
     } else if (value === true) {
-      result.push(`--${String(key)}`);
+      result.push(`--${key}`);
     } else if (typeof value === 'string') {
-      result.push(`--${String(key)}`, String(value));
+      result.push(`--${key}`, String(value));
     } else if (Array.isArray(value)) {
-      result.push(`--${String(key)}`, ...value.map(String));
+      result.push(`--${key}`, ...value.map(String));
     }
   }
   if (argv['--']) {
@@ -289,7 +287,7 @@ apiHelpers.handleApiCall = handleApiCall;
 apiHelpers.handleUnsuccessfulApiResponse = handleUnsuccessfulApiResponse;
 apiHelpers.queryAPI = queryAPI;
 var _chalk$i = _interopRequireDefault$r(vendor.source);
-var _ponyCause$4 = require$$6$1;
+var _ponyCause$4 = require$$5$1;
 var _errors$l = sdk.errors;
 var _constants$1 = sdk.constants;
 function handleUnsuccessfulApiResponse(_name, result, spinner) {
@@ -360,7 +358,7 @@ Object.defineProperty(formatIssues, "__esModule", {
 formatIssues.formatSeverityCount = formatSeverityCount;
 formatIssues.getSeverityCount = getSeverityCount;
 var _misc$2 = sdk.misc;
-var _objects$5 = objects;
+var _objects$4 = objects;
 const SEVERITIES_BY_ORDER = ['critical', 'high', 'middle', 'low'];
 function getDesiredSeverities(lowestToInclude) {
   const result = [];
@@ -382,7 +380,7 @@ function formatSeverityCount(severityCount) {
   return (0, _misc$2.stringJoinWithSeparateFinalSeparator)(summary);
 }
 function getSeverityCount(issues, lowestToInclude) {
-  const severityCount = (0, _objects$5.pick)({
+  const severityCount = (0, _objects$4.pick)({
     low: 0,
     middle: 0,
     high: 0,
@@ -446,7 +444,7 @@ var _chalkMarkdown$3 = sdk.chalkMarkdown;
 var _errors$k = sdk.errors;
 var _formatIssues$1 = formatIssues;
 var _formatting$m = formatting;
-var _objects$4 = objects;
+var _objects$3 = objects;
 var _sdk$j = sdk.sdk;
 const info = info$1.info = {
   description: 'Look up info regarding a package',
@@ -562,7 +560,7 @@ function formatPackageDataOutput({
       License: Math.floor(score.license.score * 100)
     };
     Object.entries(scoreResult).map(score => console.log(`- ${score[0]}: ${formatScore(score[1])}`));
-    if ((0, _objects$4.objectSome)(severityCount)) {
+    if ((0, _objects$3.objectSome)(severityCount)) {
       const issueSummary = (0, _formatIssues$1.formatSeverityCount)(severityCount);
       console.log('\n');
       spinner[strict ? 'fail' : 'succeed'](`Package has these issues: ${issueSummary}`);
@@ -586,7 +584,7 @@ function formatPackageDataOutput({
       console.log(_chalk$h.default.dim('\nOr rerun', _chalk$h.default.italic(name), 'using the', _chalk$h.default.italic('--json'), 'flag to get full JSON output'));
     }
   }
-  if (strict && (0, _objects$4.objectSome)(severityCount)) {
+  if (strict && (0, _objects$3.objectSome)(severityCount)) {
     process.exit(1);
   }
 }
@@ -925,15 +923,15 @@ Object.defineProperty(packageManagerDetector, "__esModule", {
 packageManagerDetector.AGENTS = void 0;
 packageManagerDetector.detect = detect;
 var _nodePath$3 = require$$1;
-var _packageJson$1 = require$$1$3;
-var _hyrious__bun = require$$2;
 var _promiseSpawn$3 = require$$1$1;
-var _constants = require$$4$1;
-var _objects$3 = require$$4;
-var _strings$1 = require$$6$2;
-var _browserslist = require$$7;
-var _semver$1 = require$$14;
-var _which = require$$9;
+var _browserslist = require$$2;
+var _semver$1 = require$$3;
+var _which = require$$4;
+var _hyrious__bun = require$$5$2;
+var _constants = require$$6;
+var _objects$2 = require$$7;
+var _packages$1 = require$$8;
+var _strings$1 = require$$9;
 var _fs$1 = fs;
 const AGENTS = packageManagerDetector.AGENTS = ['bun', 'npm', 'pnpm', 'yarn/berry', 'yarn/classic', 'vlt'];
 const {
@@ -1022,7 +1020,9 @@ async function detect({
     cwd
   });
   const pkgPath = (0, _fs$1.existsSync)(pkgJsonPath) ? _nodePath$3.dirname(pkgJsonPath) : undefined;
-  const editablePkgJson = pkgPath ? await _packageJson$1.load(pkgPath) : undefined;
+  const editablePkgJson = pkgPath ? await (0, _packages$1.readPackageJson)(pkgPath, {
+    editable: true
+  }) : undefined;
   const pkgJson = editablePkgJson?.content;
   // Read Corepack `packageManager` field in package.json:
   // https://nodejs.org/api/packages.html#packagemanager
@@ -1064,7 +1064,7 @@ async function detect({
   let minimumNodeVersion = _constants.maintainedNodeVersions.previous;
   if (pkgJson) {
     const browserField = pkgJson.browser;
-    if ((0, _strings$1.isNonEmptyString)(browserField) || (0, _objects$3.isObjectObject)(browserField)) {
+    if ((0, _strings$1.isNonEmptyString)(browserField) || (0, _objects$2.isObjectObject)(browserField)) {
       targets.browser = true;
     }
     const nodeRange = pkgJson.engines?.['node'];
@@ -1114,28 +1114,28 @@ Object.defineProperty(optimize$1, "__esModule", {
   value: true
 });
 optimize$1.optimize = void 0;
-var _promises$2 = require$$1$4;
+var _promises$2 = require$$1$3;
 var _nodePath$2 = require$$1;
 var _promiseSpawn$2 = require$$1$1;
-var _packageJson = require$$1$3;
-var _registry = require$$5;
-var _objects$2 = require$$4;
-var _packages = require$$7$1;
-var _promises2 = require$$8;
-var _regexps = require$$9$1;
-var _strings = require$$6$2;
 var _meow$m = _interopRequireDefault$n(vendor.build);
-var _npmPackageArg = require$$12;
+var _npmPackageArg = require$$5$3;
 var _ora$i = _interopRequireDefault$n(vendor.ora);
-var _semver = require$$14;
-var _tinyglobby = require$$15;
-var _yaml = require$$16;
+var _semver = require$$3;
+var _tinyglobby = require$$8$1;
+var _yaml = require$$9$1;
+var _registry = require$$10;
+var _objects$1 = require$$7;
+var _packages = require$$8;
+var _promises2 = require$$13;
+var _regexps = require$$14;
+var _strings = require$$9;
 var _flags$j = flags$1;
 var _formatting$k = formatting;
 var _fs = fs;
 var _packageManagerDetector = packageManagerDetector;
 const COMMAND_TITLE = 'Socket Optimize';
 const OVERRIDES_FIELD_NAME = 'overrides';
+const PNPM_FIELD_NAME = 'pnpm';
 const PNPM_WORKSPACE = 'pnpm-workspace';
 const RESOLUTIONS_FIELD_NAME = 'resolutions';
 const distPath$1 = __dirname;
@@ -1230,26 +1230,83 @@ const lockIncludesByAgent = (() => {
   };
 })();
 const updateManifestByAgent = (() => {
-  function updateOverrides(pkgJson, overrides) {
-    pkgJson.update({
-      [OVERRIDES_FIELD_NAME]: overrides
-    });
+  const depFields = ['dependencies', 'devDependencies', 'peerDependencies', 'peerDependenciesMeta', 'optionalDependencies', 'bundleDependencies'];
+  function getEntryIndexes(entries, keys) {
+    return keys.map(n => entries.findIndex(p => p[0] === n)).filter(n => n !== -1).sort((a, b) => a - b);
+  }
+  function getLowestEntryIndex(entries, keys) {
+    return getEntryIndexes(entries, keys)?.[0] ?? -1;
+  }
+  function getHighestEntryIndex(entries, keys) {
+    return getEntryIndexes(entries, keys).at(-1) ?? -1;
+  }
+  function updatePkgJson(editablePkgJson, field, value) {
+    const pkgJson = editablePkgJson.content;
+    const oldValue = pkgJson[field];
+    if (oldValue) {
+      // The field already exists so we simply update the field value.
+      if (field === PNPM_FIELD_NAME) {
+        editablePkgJson['update']({
+          [field]: {
+            ...((0, _objects$1.isObject)(oldValue) ? oldValue : {}),
+            overrides: value
+          }
+        });
+      } else {
+        editablePkgJson.update({
+          [field]: value
+        });
+      }
+      return;
+    }
+    // Since the field doesn't exist we want to insert it into the package.json
+    // in a place that makes sense, e.g. close to the "dependencies" field. If
+    // we can't find a place to insert the field we'll add it to the bottom.
+    const entries = Object.entries(pkgJson);
+    let insertIndex = -1;
+    let isPlacingHigher = false;
+    if (field === OVERRIDES_FIELD_NAME) {
+      insertIndex = getLowestEntryIndex(entries, ['resolutions']);
+      if (insertIndex === -1) {
+        isPlacingHigher = true;
+        insertIndex = getHighestEntryIndex(entries, [...depFields, 'pnpm']);
+      }
+    } else if (field === RESOLUTIONS_FIELD_NAME) {
+      isPlacingHigher = true;
+      insertIndex = getHighestEntryIndex(entries, [...depFields, 'overrides', 'pnpm']);
+    } else if (field === PNPM_FIELD_NAME) {
+      insertIndex = getLowestEntryIndex(entries, ['overrides', 'resolutions']);
+      if (insertIndex === -1) {
+        isPlacingHigher = true;
+        insertIndex = getHighestEntryIndex(entries, depFields);
+      }
+    }
+    if (insertIndex === -1) {
+      insertIndex = getLowestEntryIndex(entries, ['engines', 'files']);
+    }
+    if (insertIndex === -1) {
+      isPlacingHigher = true;
+      insertIndex = getHighestEntryIndex(entries, ['exports', 'imports', 'main']);
+    }
+    if (insertIndex === -1) {
+      insertIndex = entries.length;
+    } else if (isPlacingHigher) {
+      insertIndex += 1;
+    }
+    entries.splice(insertIndex, 0, [field, value]);
+    editablePkgJson.fromJSON(`${JSON.stringify(Object.fromEntries(entries), null, 2)}\n`);
   }
-  function updateResolutions(pkgJson, overrides) {
-    pkgJson.update({
-      [RESOLUTIONS_FIELD_NAME]: overrides
-    });
+  function updateOverrides(editablePkgJson, overrides) {
+    updatePkgJson(editablePkgJson, OVERRIDES_FIELD_NAME, overrides);
+  }
+  function updateResolutions(editablePkgJson, overrides) {
+    updatePkgJson(editablePkgJson, RESOLUTIONS_FIELD_NAME, overrides);
   }
   return {
     bun: updateResolutions,
     npm: updateOverrides,
-    pnpm(pkgJson, overrides) {
-      pkgJson.update({
-        pnpm: {
-          ...pkgJson.content['pnpm'],
-          [OVERRIDES_FIELD_NAME]: overrides
-        }
-      });
+    pnpm(editablePkgJson, overrides) {
+      updatePkgJson(editablePkgJson, PNPM_FIELD_NAME, overrides);
     },
     vlt: updateOverrides,
     'yarn/berry': updateResolutions,
@@ -1480,12 +1537,16 @@ async function addOverrides({
   rootPath
 }, state = createAddOverridesState()) {
   if (editablePkgJson === undefined) {
-    editablePkgJson = await _packageJson.load(pkgPath);
+    editablePkgJson = await (0, _packages.readPackageJson)(pkgPath, {
+      editable: true
+    });
   }
   const {
     spinner
   } = state;
-  const pkgJson = editablePkgJson.content;
+  const {
+    content: pkgJson
+  } = editablePkgJson;
   const isRoot = pkgPath === rootPath;
   const isLockScanned = isRoot && !prod;
   const workspaceName = _nodePath$2.relative(rootPath, pkgPath);
@@ -1549,7 +1610,7 @@ async function addOverrides({
       overrides,
       type
     }) => {
-      const overrideExists = (0, _objects$2.hasOwn)(overrides, origPkgName);
+      const overrideExists = (0, _objects$1.hasOwn)(overrides, origPkgName);
       if (overrideExists || thingScanner(thingToScan, origPkgName)) {
         const oldSpec = overrideExists ? overrides[origPkgName] : undefined;
         const depAlias = depAliasMap.get(origPkgName);
@@ -1618,12 +1679,12 @@ async function addOverrides({
     });
   }
   if (state.added.size > 0 || state.updated.size > 0) {
-    editablePkgJson.update((0, _objects$2.objectFromEntries)(depEntries));
+    editablePkgJson.update(Object.fromEntries(depEntries));
     for (const {
       overrides,
       type
     } of overridesDataObjects) {
-      updateManifestByAgent[type](editablePkgJson, (0, _objects$2.toSortedObject)(overrides));
+      updateManifestByAgent[type](editablePkgJson, (0, _objects$1.toSortedObject)(overrides));
     }
     await editablePkgJson.save();
   }
@@ -1997,7 +2058,7 @@ view$3.view = void 0;
 var _chalk$f = _interopRequireDefault$j(vendor.source);
 var _meow$i = _interopRequireDefault$j(vendor.build);
 var _ora$g = _interopRequireDefault$j(vendor.ora);
-var _ponyCause$3 = require$$6$1;
+var _ponyCause$3 = require$$5$1;
 var _flags$g = flags$1;
 var _apiHelpers$g = apiHelpers;
 var _chalkMarkdown$2 = sdk.chalkMarkdown;
@@ -2137,10 +2198,10 @@ Object.defineProperty(create$5, "__esModule", {
 create$5.create = void 0;
 var _nodePath$1 = require$$1;
 var _betterAjvErrors = require$$2$1;
-var _config = require$$3;
 var _meow$h = _interopRequireDefault$i(vendor.build);
 var _ora$f = _interopRequireDefault$i(vendor.ora);
-var _ponyCause$2 = require$$6$1;
+var _ponyCause$2 = require$$5$1;
+var _config = require$$6$1;
 var _view$2 = view$3;
 var _flags$f = flags$1;
 var _apiHelpers$f = apiHelpers;
@@ -2363,8 +2424,8 @@ Object.defineProperty(meowWithSubcommands$1, "__esModule", {
 });
 meowWithSubcommands$1.meowWithSubcommands = meowWithSubcommands;
 var _meow$g = _interopRequireDefault$h(vendor.build);
+var _objects = require$$7;
 var _formatting$f = formatting;
-var _objects$1 = require$$4;
 var _flags$e = flags$1;
 async function meowWithSubcommands(subcommands, options) {
   const {
@@ -2403,8 +2464,8 @@ async function meowWithSubcommands(subcommands, options) {
     Commands
       ${(0, _formatting$f.printHelpList)({
-    ...(0, _objects$1.toSortedObject)(subcommands),
-    ...(0, _objects$1.toSortedObject)(aliases)
+    ...(0, _objects.toSortedObject)(subcommands),
+    ...(0, _objects.toSortedObject)(aliases)
   }, 6)}
     Options
@@ -2454,7 +2515,7 @@ Object.defineProperty(wrapper$1, "__esModule", {
 });
 wrapper$1.wrapper = void 0;
 var _nodeFs$1 = require$$0;
-var _nodeOs = require$$1$5;
+var _nodeOs = require$$1$4;
 var _nodeReadline = require$$3$1;
 var _meow$f = _interopRequireDefault$g(vendor.build);
 var _flags$d = flags$1;
@@ -2620,7 +2681,7 @@ var _chalk$e = _interopRequireDefault$f(vendor.source);
 var _meow$e = _interopRequireDefault$f(vendor.build);
 var _open = _interopRequireDefault$f(vendor.open);
 var _ora$e = _interopRequireDefault$f(vendor.ora);
-var _ponyCause$1 = require$$6$1;
+var _ponyCause$1 = require$$5$1;
 var _apiHelpers$e = apiHelpers;
 var _errors$f = sdk.errors;
 var _formatting$d = formatting;
@@ -4161,7 +4222,7 @@ Object.defineProperty(analytics$1, "__esModule", {
   value: true
 });
 analytics$1.analytics = void 0;
-var _promises = require$$1$4;
+var _promises = require$$1$3;
 var _blessed$1 = require$$2$4;
 var _blessedContrib$1 = require$$3$2;
 var _chalk$2 = _interopRequireDefault$3(vendor.source);
@@ -5037,10 +5098,9 @@ const getMinDiff = (start, end) => Math.floor((end - start) / 60000);
 var _interopRequireWildcard = vendor.interopRequireWildcard.default;
 var _interopRequireDefault = vendor.interopRequireDefault.default;
 var _nodePath = require$$1;
-var _nodeUrl = require$$8$1;
-var _objects = require$$4;
+var _nodeUrl = require$$8$2;
 var _chalk = _interopRequireDefault(vendor.source);
-var _ponyCause = require$$6$1;
+var _ponyCause = require$$5$1;
 var _tinyUpdater = _interopRequireDefault(vendor.dist);
 var cliCommands = _interopRequireWildcard(commands, true);
 var _chalkMarkdown = sdk.chalkMarkdown;
@@ -5050,9 +5110,9 @@ const distPath = __dirname;
 const rootPath = _nodePath.resolve(distPath, '..');
 const rootPkgJsonPath = _nodePath.join(rootPath, 'package.json');
 const rootPkgJson = require(rootPkgJsonPath);
-const formattedCliCommands = (0, _objects.objectFromEntries)((0, _objects.objectEntries)(cliCommands).map(entry => {
+const formattedCliCommands = Object.fromEntries(Object.entries(cliCommands).map(entry => {
   const key = entry[0];
-  entry[0] = typeof key === 'string' ? camelToHyphen(key) : key;
+  entry[0] = camelToHyphen(key);
   return entry;
 }));
 function camelToHyphen(str) {

package/dist/link.js CHANGED Viewed

@@ -2,7 +2,7 @@
 var require$$0 = require('node:fs');
 var require$$1 = require('node:path');
-var require$$9 = require('which');
+var require$$4 = require('which');
 var link = {};
@@ -12,7 +12,7 @@ Object.defineProperty(link, "__esModule", {
 link.installLinks = installLinks;
 var _nodeFs = require$$0;
 var _nodePath = require$$1;
-var _which = require$$9;
+var _which = require$$4;
 function installLinks(realDirname, binName) {
   const realShadowBinDir = realDirname;
   // find package manager being shadowed by this process

package/dist/npm-injection.js CHANGED Viewed

@@ -3,21 +3,21 @@
 var vendor = require('./vendor.js');
 var require$$0 = require('node:fs');
 var require$$1$1 = require('node:path');
-var link = require('./link.js');
 var require$$2 = require('node:events');
-var require$$4$1 = require('node:https');
+var require$$4 = require('node:https');
 var require$$3 = require('node:readline');
 var require$$5 = require('node:stream');
 var require$$8 = require('node:timers/promises');
-var require$$3$1 = require('@socketsecurity/config');
-var require$$12 = require('npm-package-arg');
-var require$$14 = require('semver');
-var sdk = require('./sdk.js');
+var require$$5$1 = require('npm-package-arg');
+var require$$3$1 = require('semver');
+var require$$6$1 = require('@socketsecurity/config');
+var require$$7 = require('@socketsecurity/registry/lib/objects');
 var require$$1$2 = require('node:net');
 var require$$1 = require('node:os');
 var require$$6 = require('../package.json');
-var require$$4 = require('@socketsecurity/registry/lib/objects');
+var sdk = require('./sdk.js');
 var pathResolve = require('./path-resolve.js');
+var link = require('./link.js');
 var npmInjection$1 = {};
@@ -385,23 +385,23 @@ arborist.SafeArborist = void 0;
 arborist.installSafeArborist = installSafeArborist;
 var _nodeEvents = require$$2;
 var _nodeFs$1 = require$$0;
-var _nodeHttps = require$$4$1;
+var _nodeHttps = require$$4;
 var _nodePath$1 = require$$1$1;
 var _nodeReadline = require$$3;
 var _nodeStream = require$$5;
 var _promises = require$$8;
-var _config = require$$3$1;
 var _chalk = _interopRequireDefault(vendor.source);
 var _isInteractive = _interopRequireDefault(vendor.isInteractive);
+var _npmPackageArg = require$$5$1;
 var _ora = _interopRequireWildcard(vendor.ora);
-var _npmPackageArg = require$$12;
-var _semver = require$$14;
-var _constants = sdk.constants;
+var _semver = require$$3$1;
+var _config = require$$6$1;
+var _objects = require$$7;
 var _ttyServer = ttyServer$1;
+var _constants = sdk.constants;
 var _chalkMarkdown = sdk.chalkMarkdown;
 var _issueRules = issueRules;
 var _misc = sdk.misc;
-var _objects = require$$4;
 var _pathResolve = pathResolve.pathResolve;
 var _sdk = sdk.sdk;
 var _settings = sdk.settings;
@@ -1565,8 +1565,8 @@ void (async () => {
 var _nodeFs = require$$0;
 var _nodePath = require$$1$1;
-var _link = link.link;
 var _arborist = arborist;
+var _link = link.link;
 const distPath = __dirname;
 const rootPath = _nodePath.resolve(distPath, '..');
 const binPath = _nodePath.join(rootPath, 'bin');

package/dist/path-resolve.js CHANGED Viewed

@@ -4,7 +4,7 @@ var require$$1$1 = require('node:fs/promises');
 var require$$1 = require('node:path');
 var require$$2 = require('ignore');
 var require$$3 = require('micromatch');
-var require$$15 = require('tinyglobby');
+var require$$8 = require('tinyglobby');
 var pathResolve = {};
@@ -51,7 +51,7 @@ var _promises = require$$1$1;
 var _nodePath = require$$1;
 var _ignore = require$$2;
 var _micromatch = require$$3;
-var _tinyglobby = require$$15;
+var _tinyglobby = require$$8;
 var _ignoreByDefault = ignoreByDefault;
 async function filterGlobResultToSupportedFiles(entries, supportedFiles) {
   const patterns = ['golang', 'npm', 'pypi'].reduce((r, n) => {

package/dist/sdk.js CHANGED Viewed

@@ -5,8 +5,8 @@ var vendor = require('./vendor.js');
 var require$$1$2 = require('node:fs/promises');
 var require$$1$1 = require('node:path');
 var require$$1$3 = require('@inquirer/prompts');
-var require$$4 = require('@socketsecurity/sdk');
-var require$$5 = require('hpagent');
+var require$$4 = require('hpagent');
+var require$$6 = require('@socketsecurity/sdk');
 var require$$0$1 = require('node:fs');
 var require$$1 = require('node:os');
@@ -201,9 +201,9 @@ sdk.setupSdk = setupSdk;
 var _promises = require$$1$2;
 var _nodePath = require$$1$1;
 var _prompts = require$$1$3;
-var _sdk = require$$4;
-var _hpagent = require$$5;
+var _hpagent = require$$4;
 var _isInteractive = _interopRequireDefault(vendor.isInteractive);
+var _sdk = require$$6;
 var _errors = errors;
 var _settings = settings$1;
 const distPath = __dirname;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "socket",
-  "version": "0.14.24",
+  "version": "0.14.26",
   "description": "CLI tool for Socket.dev",
   "homepage": "http://github.com/SocketDev/socket-cli",
   "license": "MIT",
@@ -42,11 +42,10 @@
     "@apideck/better-ajv-errors": "^0.3.6",
     "@cyclonedx/cdxgen": "^10.11.0",
     "@inquirer/prompts": "^7.0.1",
-    "@npmcli/package-json": "6.0.1",
     "@npmcli/promise-spawn": "^8.0.2",
     "@socketregistry/hyrious__bun.lockb": "1.0.4",
     "@socketsecurity/config": "^2.1.3",
-    "@socketsecurity/registry": "^1.0.16",
+    "@socketsecurity/registry": "^1.0.25",
     "@socketsecurity/sdk": "^1.3.0",
     "blessed": "^0.1.81",
     "blessed-contrib": "^4.11.0",
@@ -91,7 +90,6 @@
     "@types/mock-fs": "^4.13.4",
     "@types/node": "^22.9.0",
     "@types/npmcli__arborist": "^5.6.11",
-    "@types/npmcli__package-json": "^4.0.4",
     "@types/npmcli__promise-spawn": "^6.0.3",
     "@types/proc-log": "^3.0.4",
     "@types/semver": "^7.5.8",
@@ -103,7 +101,9 @@
     "c8": "^10.1.2",
     "chalk": "^5.3.0",
     "eslint": "^9.14.0",
+    "eslint-import-resolver-oxc": "^0.4.0",
     "eslint-plugin-depend": "^0.12.0",
+    "eslint-plugin-import-x": "^4.4.0",
     "eslint-plugin-n": "^17.12.0",
     "eslint-plugin-sort-destructure-keys": "^2.0.0",
     "eslint-plugin-unicorn": "^56.0.0",
@@ -115,7 +115,6 @@
     "meow": "^13.2.0",
     "mock-fs": "^5.4.1",
     "nock": "^13.5.5",
-    "normalize-package-data": "^7.0.0",
     "npm-run-all2": "^7.0.1",
     "open": "^10.1.0",
     "ora": "^8.1.1",
@@ -126,12 +125,11 @@
     "rollup-plugin-ts": "^3.4.5",
     "tap": "^21.0.1",
     "terminal-link": "^3.0.0",
-    "type-coverage": "^2.29.7",
     "tiny-updater": "^3.5.2",
+    "type-coverage": "^2.29.7",
     "typescript": "5.4.5",
     "typescript-eslint": "^8.13.0",
-    "unplugin-purge-polyfills": "^0.0.7",
-    "validate-npm-package-name": "^6.0.0"
+    "unplugin-purge-polyfills": "^0.0.7"
   },
   "overrides": {
     "aggregate-error": "npm:@socketregistry/aggregate-error@^1",
@@ -180,7 +178,7 @@
     "yaml": "^2.6.0"
   },
   "engines": {
-    "node": "^20.9.0 || >=22.0.0"
+    "node": "^18.20.4 || ^20.9.0 || >=22.0.0"
   },
   "files": [
     "bin/**",