socket 0.14.55 → 0.14.57
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bin/cli.js +8 -10
- package/bin/npm-cli.js +1 -1
- package/bin/npx-cli.js +3 -1
- package/dist/constants.d.ts +20 -10
- package/dist/constants.js +47 -33
- package/dist/constants.js.map +1 -1
- package/dist/module-sync/cli.js +760 -497
- package/dist/module-sync/cli.js.map +1 -1
- package/dist/module-sync/color-or-markdown.d.ts +16 -0
- package/dist/module-sync/edge.d.ts +1 -1
- package/dist/module-sync/index.d.ts +3 -173
- package/dist/module-sync/node.d.ts +1 -1
- package/dist/module-sync/override-set.d.ts +37 -0
- package/dist/module-sync/path-resolve.d.ts +2 -3
- package/dist/module-sync/shadow-bin.d.ts +1 -1
- package/dist/module-sync/shadow-bin.js +16 -24
- package/dist/module-sync/shadow-bin.js.map +1 -1
- package/dist/module-sync/{index.js → shadow-npm-inject.js} +46 -41
- package/dist/module-sync/shadow-npm-inject.js.map +1 -0
- package/dist/module-sync/{npm-paths.js → shadow-npm-paths.js} +5 -16
- package/dist/module-sync/shadow-npm-paths.js.map +1 -0
- package/dist/module-sync/socket-url.d.ts +3 -0
- package/dist/require/cli.js +760 -497
- package/dist/require/cli.js.map +1 -1
- package/dist/require/shadow-npm-inject.js +3 -0
- package/dist/require/shadow-npm-paths.js +3 -0
- package/package.json +41 -63
- package/dist/module-sync/index.js.map +0 -1
- package/dist/module-sync/npm-injection.js +0 -26
- package/dist/module-sync/npm-injection.js.map +0 -1
- package/dist/module-sync/npm-paths.js.map +0 -1
- package/dist/module-sync/proc-log.d.ts +0 -3
- package/dist/module-sync/reify.d.ts +0 -1018
- package/dist/require/index.js +0 -3
- package/dist/require/npm-injection.js +0 -3
- package/dist/require/npm-paths.js +0 -3
- /package/dist/module-sync/{npm-injection.d.ts → shadow-npm-inject.d.ts} +0 -0
- /package/dist/module-sync/{npm-paths.d.ts → shadow-npm-paths.d.ts} +0 -0
package/bin/cli.js
CHANGED
|
@@ -5,20 +5,18 @@ const process = require('node:process')
|
|
|
5
5
|
|
|
6
6
|
const constants = require('../dist/constants')
|
|
7
7
|
|
|
8
|
-
const {
|
|
8
|
+
const { DIST_TYPE, SOCKET_CLI_SENTRY_BUILD } = constants
|
|
9
9
|
|
|
10
10
|
if (
|
|
11
11
|
DIST_TYPE === 'require' &&
|
|
12
12
|
// Lazily access constants.ENV[SOCKET_CLI_SENTRY_BUILD].
|
|
13
13
|
!constants.ENV[SOCKET_CLI_SENTRY_BUILD]
|
|
14
14
|
) {
|
|
15
|
-
// Lazily access constants.
|
|
16
|
-
require(
|
|
15
|
+
// Lazily access constants.distCliPath.
|
|
16
|
+
require(constants.distCliPath)
|
|
17
17
|
} else {
|
|
18
|
-
const path = require('node:path')
|
|
19
|
-
const { spawn } = require('@socketsecurity/registry/lib/spawn')
|
|
20
|
-
|
|
21
18
|
process.exitCode = 1
|
|
19
|
+
const { spawn } = require('@socketsecurity/registry/lib/spawn')
|
|
22
20
|
spawn(
|
|
23
21
|
// Lazily access constants.execPath.
|
|
24
22
|
constants.execPath,
|
|
@@ -29,12 +27,12 @@ if (
|
|
|
29
27
|
...(constants.ENV[SOCKET_CLI_SENTRY_BUILD]
|
|
30
28
|
? [
|
|
31
29
|
'--require',
|
|
32
|
-
// Lazily access constants.
|
|
33
|
-
constants.
|
|
30
|
+
// Lazily access constants.distInstrumentWithSentryPath.
|
|
31
|
+
constants.distInstrumentWithSentryPath
|
|
34
32
|
]
|
|
35
33
|
: []),
|
|
36
|
-
// Lazily access constants.
|
|
37
|
-
|
|
34
|
+
// Lazily access constants.distCliPath.
|
|
35
|
+
constants.distCliPath,
|
|
38
36
|
...process.argv.slice(2)
|
|
39
37
|
],
|
|
40
38
|
{
|
package/bin/npm-cli.js
CHANGED
package/bin/npx-cli.js
CHANGED
package/dist/constants.d.ts
CHANGED
|
@@ -24,12 +24,14 @@ type ENV = Remap<RegistryEnv & Readonly<{
|
|
|
24
24
|
type IPC = Readonly<{
|
|
25
25
|
SOCKET_CLI_FIX?: string | undefined;
|
|
26
26
|
SOCKET_CLI_OPTIMIZE?: boolean | undefined;
|
|
27
|
-
SOCKET_CLI_SAFE_WRAPPER?:
|
|
27
|
+
SOCKET_CLI_SAFE_WRAPPER?: number | undefined;
|
|
28
28
|
}>;
|
|
29
29
|
declare const constants: {
|
|
30
30
|
readonly CI: "CI";
|
|
31
31
|
readonly [kInternalsSymbol]: registryConstants.Internals;
|
|
32
32
|
readonly NODE_MODULES: "node_modules";
|
|
33
|
+
readonly NPM: "npm";
|
|
34
|
+
readonly NPX: "npx";
|
|
33
35
|
readonly PACKAGE_JSON: "package.json";
|
|
34
36
|
readonly SOCKET_SECURITY_SCOPE: "@socketsecurity";
|
|
35
37
|
readonly kInternalsSymbol: unique symbol;
|
|
@@ -60,7 +62,6 @@ declare const constants: {
|
|
|
60
62
|
readonly NODE_MODULES_GLOB_RECURSIVE: "**/node_modules";
|
|
61
63
|
readonly NODE_WORKSPACES: "node_workspaces";
|
|
62
64
|
readonly NODE_VERSION: string;
|
|
63
|
-
readonly NPM: "npm";
|
|
64
65
|
readonly OVERRIDES: "overrides";
|
|
65
66
|
readonly PACKAGE_DEFAULT_SOCKET_CATEGORIES: readonly ["cleanup"];
|
|
66
67
|
readonly PACKAGE_DEFAULT_NODE_RANGE: string;
|
|
@@ -117,6 +118,8 @@ declare const constants: {
|
|
|
117
118
|
readonly isSpinning: boolean;
|
|
118
119
|
error: (text?: string | undefined, ...extras: any[]) => any;
|
|
119
120
|
errorAndStop: (text?: string | undefined, ...extras: any[]) => any;
|
|
121
|
+
fail: (text?: string | undefined, ...extras: any[]) => any;
|
|
122
|
+
failAndStop: (text?: string | undefined, ...extras: any[]) => any;
|
|
120
123
|
getText: () => string;
|
|
121
124
|
info: (text?: string | undefined, ...extras: any[]) => any;
|
|
122
125
|
infoAndStop: (text?: string | undefined, ...extras: any[]) => any;
|
|
@@ -142,7 +145,6 @@ declare const constants: {
|
|
|
142
145
|
readonly ALERT_TYPE_MILD_CVE: 'mildCVE';
|
|
143
146
|
readonly ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE: 'socketUpgradeAvailable';
|
|
144
147
|
readonly API_V0_URL: 'https://api.socket.dev/v0';
|
|
145
|
-
readonly BABEL_RUNTIME: '@babel/runtime';
|
|
146
148
|
readonly BATCH_PURL_ENDPOINT: 'https://api.socket.dev/v0/purl?alerts=true&compact=true';
|
|
147
149
|
readonly BINARY_LOCK_EXT: '.lockb';
|
|
148
150
|
readonly BUN: 'bun';
|
|
@@ -156,25 +158,33 @@ declare const constants: {
|
|
|
156
158
|
readonly IPC: IPC;
|
|
157
159
|
readonly LOCK_EXT: '.lock';
|
|
158
160
|
readonly MODULE_SYNC: 'module-sync';
|
|
159
|
-
readonly NPM_INJECTION: 'npm-injection';
|
|
160
161
|
readonly NPM_REGISTRY_URL: 'https://registry.npmjs.org';
|
|
161
|
-
readonly NPX: 'npx';
|
|
162
162
|
readonly PNPM: 'pnpm';
|
|
163
163
|
readonly REDACTED: '<redacted>';
|
|
164
164
|
readonly REQUIRE: 'require';
|
|
165
|
-
readonly
|
|
165
|
+
readonly SHADOW_NPM_BIN: 'shadow-bin';
|
|
166
|
+
readonly SHADOW_NPM_INJECT: 'shadow-npm-inject';
|
|
167
|
+
readonly SHADOW_NPM_PATHS: 'shadow-npm-paths';
|
|
166
168
|
readonly SOCKET: 'socket';
|
|
169
|
+
readonly SOCKET_CLI_BIN_NAME: 'socket';
|
|
170
|
+
readonly SOCKET_CLI_BIN_NAME_ALIAS: 'cli';
|
|
167
171
|
readonly SOCKET_CLI_DEBUG: 'SOCKET_CLI_DEBUG';
|
|
168
172
|
readonly SOCKET_CLI_FIX: 'SOCKET_CLI_FIX';
|
|
169
173
|
readonly SOCKET_CLI_ISSUES_URL: 'https://github.com/SocketDev/socket-cli/issues';
|
|
174
|
+
readonly SOCKET_CLI_SENTRY_BIN_NAME_ALIAS: 'cli-with-sentry';
|
|
170
175
|
readonly SOCKET_CLI_LEGACY_BUILD: 'SOCKET_CLI_LEGACY_BUILD';
|
|
171
176
|
readonly SOCKET_CLI_LEGACY_PACKAGE_NAME: '@socketsecurity/cli';
|
|
172
177
|
readonly SOCKET_CLI_NO_API_TOKEN: 'SOCKET_CLI_NO_API_TOKEN';
|
|
178
|
+
readonly SOCKET_CLI_NPM_BIN_NAME: 'socket-npm';
|
|
179
|
+
readonly SOCKET_CLI_NPX_BIN_NAME: 'socket-npx';
|
|
173
180
|
readonly SOCKET_CLI_OPTIMIZE: 'SOCKET_CLI_OPTIMIZE';
|
|
174
181
|
readonly SOCKET_CLI_PACKAGE_NAME: 'socket';
|
|
175
182
|
readonly SOCKET_CLI_PUBLISHED_BUILD: 'SOCKET_CLI_PUBLISHED_BUILD';
|
|
176
183
|
readonly SOCKET_CLI_SAFE_WRAPPER: 'SOCKET_CLI_SAFE_WRAPPER';
|
|
184
|
+
readonly SOCKET_CLI_SENTRY_BIN_NAME: 'socket-with-sentry';
|
|
177
185
|
readonly SOCKET_CLI_SENTRY_BUILD: 'SOCKET_CLI_SENTRY_BUILD';
|
|
186
|
+
readonly SOCKET_CLI_SENTRY_NPM_BIN_NAME: 'socket-npm-with-sentry';
|
|
187
|
+
readonly SOCKET_CLI_SENTRY_NPX_BIN_NAME: 'socket-npx-with-sentry';
|
|
178
188
|
readonly SOCKET_CLI_SENTRY_PACKAGE_NAME: '@socketsecurity/cli-with-sentry';
|
|
179
189
|
readonly SOCKET_CLI_SHOW_BANNER: 'SOCKET_CLI_SHOW_BANNER';
|
|
180
190
|
readonly SOCKET_CLI_VERSION_HASH: 'SOCKET_CLI_VERSION_HASH';
|
|
@@ -184,18 +194,18 @@ declare const constants: {
|
|
|
184
194
|
readonly YARN_BERRY: 'yarn/berry';
|
|
185
195
|
readonly YARN_CLASSIC: 'yarn/classic';
|
|
186
196
|
readonly bashRcPath: string;
|
|
187
|
-
readonly
|
|
197
|
+
readonly distCliPath: string;
|
|
198
|
+
readonly distInstrumentWithSentryPath: string;
|
|
188
199
|
readonly distPath: string;
|
|
200
|
+
readonly distShadowNpmBinPath: string;
|
|
201
|
+
readonly distShadowNpmInjectPath: string;
|
|
189
202
|
readonly homePath: string;
|
|
190
|
-
readonly instrumentWithSentryPath: string;
|
|
191
203
|
readonly nmBinPath: string;
|
|
192
|
-
readonly npmInjectionPath: string;
|
|
193
204
|
readonly rootBinPath: string;
|
|
194
205
|
readonly rootDistPath: string;
|
|
195
206
|
readonly rootPath: string;
|
|
196
207
|
readonly rootPkgJsonPath: string;
|
|
197
208
|
readonly shadowBinPath: string;
|
|
198
|
-
readonly synpBinPath: string;
|
|
199
209
|
readonly zshRcPath: string;
|
|
200
210
|
};
|
|
201
211
|
export { constants as default };
|
package/dist/constants.js
CHANGED
|
@@ -9,6 +9,8 @@ var env = require('@socketsecurity/registry/lib/env');
|
|
|
9
9
|
|
|
10
10
|
const {
|
|
11
11
|
NODE_MODULES,
|
|
12
|
+
NPM,
|
|
13
|
+
NPX,
|
|
12
14
|
PACKAGE_JSON,
|
|
13
15
|
SOCKET_SECURITY_SCOPE,
|
|
14
16
|
kInternalsSymbol,
|
|
@@ -16,6 +18,7 @@ const {
|
|
|
16
18
|
createConstantsObject
|
|
17
19
|
}
|
|
18
20
|
} = registryConstants;
|
|
21
|
+
const SOCKET = 'socket';
|
|
19
22
|
const WITH_SENTRY = 'with-sentry';
|
|
20
23
|
const ALERT_TYPE_CRITICAL_CVE = 'criticalCVE';
|
|
21
24
|
const ALERT_TYPE_CVE = 'cve';
|
|
@@ -23,7 +26,6 @@ const ALERT_TYPE_MEDIUM_CVE = 'mediumCVE';
|
|
|
23
26
|
const ALERT_TYPE_MILD_CVE = 'mildCVE';
|
|
24
27
|
const ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE = 'socketUpgradeAvailable';
|
|
25
28
|
const API_V0_URL = 'https://api.socket.dev/v0';
|
|
26
|
-
const BABEL_RUNTIME = '@babel/runtime';
|
|
27
29
|
const BINARY_LOCK_EXT = '.lockb';
|
|
28
30
|
const BUN = 'bun';
|
|
29
31
|
const CLI = 'cli';
|
|
@@ -33,14 +35,15 @@ const DRY_RUN_LABEL = '[DryRun]';
|
|
|
33
35
|
const DRY_RUN_BAIL_TEXT = `${DRY_RUN_LABEL}: Bailing now`;
|
|
34
36
|
const LOCK_EXT = '.lock';
|
|
35
37
|
const MODULE_SYNC = 'module-sync';
|
|
36
|
-
const NPM_INJECTION = 'npm-injection';
|
|
37
38
|
const NPM_REGISTRY_URL = 'https://registry.npmjs.org';
|
|
38
|
-
const NPX = 'npx';
|
|
39
39
|
const PNPM = 'pnpm';
|
|
40
40
|
const REDACTED = '<redacted>';
|
|
41
41
|
const REQUIRE = 'require';
|
|
42
|
-
const
|
|
43
|
-
const
|
|
42
|
+
const SHADOW_NPM_BIN = 'shadow-bin';
|
|
43
|
+
const SHADOW_NPM_INJECT = 'shadow-npm-inject';
|
|
44
|
+
const SHADOW_NPM_PATHS = 'shadow-npm-paths';
|
|
45
|
+
const SOCKET_CLI_BIN_NAME = SOCKET;
|
|
46
|
+
const SOCKET_CLI_BIN_NAME_ALIAS = CLI;
|
|
44
47
|
const SOCKET_CLI_DEBUG = 'SOCKET_CLI_DEBUG';
|
|
45
48
|
const SOCKET_CLI_FIX = 'SOCKET_CLI_FIX';
|
|
46
49
|
const SOCKET_CLI_ISSUES_URL = 'https://github.com/SocketDev/socket-cli/issues';
|
|
@@ -48,10 +51,16 @@ const SOCKET_CLI_LEGACY_BUILD = 'SOCKET_CLI_LEGACY_BUILD';
|
|
|
48
51
|
const SOCKET_CLI_LEGACY_PACKAGE_NAME = `${SOCKET_SECURITY_SCOPE}/${CLI}`;
|
|
49
52
|
const SOCKET_CLI_NO_API_TOKEN = 'SOCKET_CLI_NO_API_TOKEN';
|
|
50
53
|
const SOCKET_CLI_OPTIMIZE = 'SOCKET_CLI_OPTIMIZE';
|
|
54
|
+
const SOCKET_CLI_NPM_BIN_NAME = `${SOCKET}-${NPM}`;
|
|
55
|
+
const SOCKET_CLI_NPX_BIN_NAME = `${SOCKET}-${NPX}`;
|
|
51
56
|
const SOCKET_CLI_PACKAGE_NAME = SOCKET;
|
|
52
57
|
const SOCKET_CLI_PUBLISHED_BUILD = 'SOCKET_CLI_PUBLISHED_BUILD';
|
|
53
58
|
const SOCKET_CLI_SAFE_WRAPPER = 'SOCKET_CLI_SAFE_WRAPPER';
|
|
59
|
+
const SOCKET_CLI_SENTRY_BIN_NAME = `${SOCKET_CLI_BIN_NAME}-${WITH_SENTRY}`;
|
|
60
|
+
const SOCKET_CLI_SENTRY_BIN_NAME_ALIAS = `${SOCKET_CLI_BIN_NAME_ALIAS}-${WITH_SENTRY}`;
|
|
54
61
|
const SOCKET_CLI_SENTRY_BUILD = 'SOCKET_CLI_SENTRY_BUILD';
|
|
62
|
+
const SOCKET_CLI_SENTRY_NPM_BIN_NAME = `${SOCKET_CLI_NPM_BIN_NAME}-${WITH_SENTRY}`;
|
|
63
|
+
const SOCKET_CLI_SENTRY_NPX_BIN_NAME = `${SOCKET_CLI_NPX_BIN_NAME}-${WITH_SENTRY}`;
|
|
55
64
|
const SOCKET_CLI_SENTRY_PACKAGE_NAME = `${SOCKET_CLI_LEGACY_PACKAGE_NAME}-${WITH_SENTRY}`;
|
|
56
65
|
const SOCKET_CLI_SHOW_BANNER = 'SOCKET_CLI_SHOW_BANNER';
|
|
57
66
|
const SOCKET_CLI_VERSION_HASH = 'SOCKET_CLI_VERSION_HASH';
|
|
@@ -93,28 +102,31 @@ const LAZY_ENV = () => {
|
|
|
93
102
|
[SOCKET_CLI_SHOW_BANNER]: env.envAsBoolean(env$1[SOCKET_CLI_SHOW_BANNER]),
|
|
94
103
|
// Inlined flag set to determine the version hash of the build.
|
|
95
104
|
// The '@rollup/plugin-replace' will replace "process.env[SOCKET_CLI_VERSION_HASH]".
|
|
96
|
-
[SOCKET_CLI_VERSION_HASH]: "0.14.
|
|
105
|
+
[SOCKET_CLI_VERSION_HASH]: "0.14.57:6783de7:152f4f94:pub"
|
|
97
106
|
});
|
|
98
107
|
};
|
|
99
108
|
const lazyBashRcPath = () =>
|
|
100
109
|
// Lazily access constants.homePath.
|
|
101
110
|
path.join(constants.homePath, '.bashrc');
|
|
102
|
-
const
|
|
103
|
-
// Lazily access constants.
|
|
104
|
-
path.join(constants.
|
|
111
|
+
const lazyDistCliPath = () =>
|
|
112
|
+
// Lazily access constants.distPath.
|
|
113
|
+
path.join(constants.distPath, 'cli.js');
|
|
114
|
+
const lazyDistInstrumentWithSentryPath = () =>
|
|
115
|
+
// Lazily access constants.rootDistPath.
|
|
116
|
+
path.join(constants.rootDistPath, 'instrument-with-sentry.js');
|
|
105
117
|
const lazyDistPath = () =>
|
|
106
118
|
// Lazily access constants.rootDistPath and constants.DIST_TYPE.
|
|
107
119
|
path.join(constants.rootDistPath, constants.DIST_TYPE);
|
|
120
|
+
const lazyDistShadowNpmBinPath = () =>
|
|
121
|
+
// Lazily access constants.distPath.
|
|
122
|
+
path.join(constants.distPath, `${SHADOW_NPM_BIN}.js`);
|
|
123
|
+
const lazyDistShadowNpmInjectPath = () =>
|
|
124
|
+
// Lazily access constants.distPath.
|
|
125
|
+
path.join(constants.distPath, `${SHADOW_NPM_INJECT}.js`);
|
|
108
126
|
const lazyHomePath = () => os.homedir();
|
|
109
|
-
const lazyInstrumentWithSentryPath = () =>
|
|
110
|
-
// Lazily access constants.rootDistPath.
|
|
111
|
-
path.join(constants.rootDistPath, 'instrument-with-sentry.js');
|
|
112
127
|
const lazyNmBinPath = () =>
|
|
113
128
|
// Lazily access constants.rootPath.
|
|
114
129
|
path.join(constants.rootPath, `${NODE_MODULES}/.bin`);
|
|
115
|
-
const lazyNpmInjectionPath = () =>
|
|
116
|
-
// Lazily access constants.distPath.
|
|
117
|
-
path.join(constants.distPath, `${NPM_INJECTION}.js`);
|
|
118
130
|
const lazyRootBinPath = () =>
|
|
119
131
|
// Lazily access constants.rootPath.
|
|
120
132
|
path.join(constants.rootPath, 'bin');
|
|
@@ -124,16 +136,13 @@ path.join(constants.rootPath, 'dist');
|
|
|
124
136
|
const lazyRootPath = () =>
|
|
125
137
|
// The '@rollup/plugin-replace' will replace "process.env.['VITEST']" with `false` and
|
|
126
138
|
// it will be dead code eliminated by Rollup.
|
|
127
|
-
path.
|
|
139
|
+
path.join(fs.realpathSync.native(__dirname), '..');
|
|
128
140
|
const lazyRootPkgJsonPath = () =>
|
|
129
141
|
// Lazily access constants.rootPath.
|
|
130
142
|
path.join(constants.rootPath, PACKAGE_JSON);
|
|
131
143
|
const lazyShadowBinPath = () =>
|
|
132
144
|
// Lazily access constants.rootPath.
|
|
133
|
-
path.join(constants.rootPath,
|
|
134
|
-
const lazySynpBinPath = () =>
|
|
135
|
-
// Lazily access constants.nmBinPath.
|
|
136
|
-
path.join(constants.nmBinPath, 'synp');
|
|
145
|
+
path.join(constants.rootPath, SHADOW_NPM_BIN);
|
|
137
146
|
const lazyZshRcPath = () =>
|
|
138
147
|
// Lazily access constants.homePath.
|
|
139
148
|
path.join(constants.homePath, '.zshrc');
|
|
@@ -144,7 +153,6 @@ const constants = createConstantsObject({
|
|
|
144
153
|
ALERT_TYPE_MILD_CVE,
|
|
145
154
|
ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE,
|
|
146
155
|
API_V0_URL,
|
|
147
|
-
BABEL_RUNTIME,
|
|
148
156
|
// Lazily defined values are initialized as `undefined` to keep their key order.
|
|
149
157
|
BATCH_PURL_ENDPOINT: undefined,
|
|
150
158
|
BINARY_LOCK_EXT,
|
|
@@ -158,17 +166,20 @@ const constants = createConstantsObject({
|
|
|
158
166
|
ENV: undefined,
|
|
159
167
|
LOCK_EXT,
|
|
160
168
|
MODULE_SYNC,
|
|
161
|
-
NPM_INJECTION,
|
|
162
169
|
NPM_REGISTRY_URL,
|
|
163
|
-
NPX,
|
|
164
170
|
PNPM,
|
|
165
171
|
REDACTED,
|
|
166
172
|
REQUIRE,
|
|
167
|
-
|
|
173
|
+
SHADOW_NPM_BIN,
|
|
174
|
+
SHADOW_NPM_INJECT,
|
|
175
|
+
SHADOW_NPM_PATHS,
|
|
168
176
|
SOCKET,
|
|
177
|
+
SOCKET_CLI_BIN_NAME,
|
|
178
|
+
SOCKET_CLI_BIN_NAME_ALIAS,
|
|
169
179
|
SOCKET_CLI_DEBUG,
|
|
170
180
|
SOCKET_CLI_FIX,
|
|
171
181
|
SOCKET_CLI_ISSUES_URL,
|
|
182
|
+
SOCKET_CLI_SENTRY_BIN_NAME_ALIAS,
|
|
172
183
|
SOCKET_CLI_LEGACY_BUILD,
|
|
173
184
|
SOCKET_CLI_LEGACY_PACKAGE_NAME,
|
|
174
185
|
SOCKET_CLI_NO_API_TOKEN,
|
|
@@ -176,7 +187,10 @@ const constants = createConstantsObject({
|
|
|
176
187
|
SOCKET_CLI_PACKAGE_NAME,
|
|
177
188
|
SOCKET_CLI_PUBLISHED_BUILD,
|
|
178
189
|
SOCKET_CLI_SAFE_WRAPPER,
|
|
190
|
+
SOCKET_CLI_SENTRY_BIN_NAME,
|
|
179
191
|
SOCKET_CLI_SENTRY_BUILD,
|
|
192
|
+
SOCKET_CLI_SENTRY_NPM_BIN_NAME,
|
|
193
|
+
SOCKET_CLI_SENTRY_NPX_BIN_NAME,
|
|
180
194
|
SOCKET_CLI_SENTRY_PACKAGE_NAME,
|
|
181
195
|
SOCKET_CLI_SHOW_BANNER,
|
|
182
196
|
SOCKET_CLI_VERSION_HASH,
|
|
@@ -186,18 +200,18 @@ const constants = createConstantsObject({
|
|
|
186
200
|
YARN_BERRY,
|
|
187
201
|
YARN_CLASSIC,
|
|
188
202
|
bashRcPath: undefined,
|
|
189
|
-
|
|
203
|
+
distCliPath: undefined,
|
|
204
|
+
distInstrumentWithSentryPath: undefined,
|
|
190
205
|
distPath: undefined,
|
|
206
|
+
distShadowNpmBinPath: undefined,
|
|
207
|
+
distShadowNpmInjectPath: undefined,
|
|
191
208
|
homePath: undefined,
|
|
192
|
-
instrumentWithSentryPath: undefined,
|
|
193
209
|
nmBinPath: undefined,
|
|
194
|
-
npmInjectionPath: undefined,
|
|
195
210
|
rootBinPath: undefined,
|
|
196
211
|
rootDistPath: undefined,
|
|
197
212
|
rootPath: undefined,
|
|
198
213
|
rootPkgJsonPath: undefined,
|
|
199
214
|
shadowBinPath: undefined,
|
|
200
|
-
synpBinPath: undefined,
|
|
201
215
|
zshRcPath: undefined
|
|
202
216
|
}, {
|
|
203
217
|
getters: {
|
|
@@ -205,18 +219,18 @@ const constants = createConstantsObject({
|
|
|
205
219
|
DIST_TYPE: LAZY_DIST_TYPE,
|
|
206
220
|
ENV: LAZY_ENV,
|
|
207
221
|
bashRcPath: lazyBashRcPath,
|
|
222
|
+
distCliPath: lazyDistCliPath,
|
|
223
|
+
distInstrumentWithSentryPath: lazyDistInstrumentWithSentryPath,
|
|
208
224
|
distPath: lazyDistPath,
|
|
209
|
-
|
|
225
|
+
distShadowNpmBinPath: lazyDistShadowNpmBinPath,
|
|
226
|
+
distShadowNpmInjectPath: lazyDistShadowNpmInjectPath,
|
|
210
227
|
homePath: lazyHomePath,
|
|
211
|
-
instrumentWithSentryPath: lazyInstrumentWithSentryPath,
|
|
212
228
|
nmBinPath: lazyNmBinPath,
|
|
213
|
-
npmInjectionPath: lazyNpmInjectionPath,
|
|
214
229
|
rootBinPath: lazyRootBinPath,
|
|
215
230
|
rootDistPath: lazyRootDistPath,
|
|
216
231
|
rootPath: lazyRootPath,
|
|
217
232
|
rootPkgJsonPath: lazyRootPkgJsonPath,
|
|
218
233
|
shadowBinPath: lazyShadowBinPath,
|
|
219
|
-
synpBinPath: lazySynpBinPath,
|
|
220
234
|
zshRcPath: lazyZshRcPath
|
|
221
235
|
},
|
|
222
236
|
internals: {
|
|
@@ -235,5 +249,5 @@ const constants = createConstantsObject({
|
|
|
235
249
|
});
|
|
236
250
|
|
|
237
251
|
module.exports = constants;
|
|
238
|
-
//# debugId=
|
|
252
|
+
//# debugId=23cb1c1d-7228-4cb4-ad0d-9b5e4a38c195
|
|
239
253
|
//# sourceMappingURL=constants.js.map
|
package/dist/constants.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"constants.js","sources":["../../src/constants.ts"],"sourcesContent":["import { realpathSync } from 'node:fs'\nimport os from 'node:os'\nimport path from 'node:path'\nimport process from 'node:process'\n\nimport registryConstants from '@socketsecurity/registry/lib/constants'\nimport { envAsBoolean } from '@socketsecurity/registry/lib/env'\n\nimport type { Remap } from '@socketsecurity/registry/lib/objects'\n\nconst {\n NODE_MODULES,\n PACKAGE_JSON,\n SOCKET_SECURITY_SCOPE,\n kInternalsSymbol,\n [kInternalsSymbol as unknown as 'Symbol(kInternalsSymbol)']: {\n createConstantsObject\n }\n} = registryConstants\n\ntype RegistryEnv = typeof registryConstants.ENV\n\ntype RegistryInternals = (typeof registryConstants)['Symbol(kInternalsSymbol)']\n\ntype Sentry = any\n\ntype Internals = Remap<\n Omit<RegistryInternals, 'getIPC'> &\n Readonly<{\n getIPC: {\n (): Promise<IPC>\n <K extends keyof IPC | undefined>(\n key?: K | undefined\n ): Promise<K extends keyof IPC ? IPC[K] : IPC>\n }\n getSentry: () => Sentry\n setSentry(Sentry: Sentry): boolean\n }>\n>\n\ntype ENV = Remap<\n RegistryEnv &\n Readonly<{\n SOCKET_CLI_DEBUG: boolean\n SOCKET_CLI_LEGACY_BUILD: boolean\n SOCKET_CLI_NO_API_TOKEN: boolean\n SOCKET_CLI_PUBLISHED_BUILD: boolean\n SOCKET_CLI_SENTRY_BUILD: boolean\n SOCKET_CLI_SHOW_BANNER: boolean\n SOCKET_CLI_VERSION_HASH: string\n }>\n>\n\ntype IPC = Readonly<{\n SOCKET_CLI_FIX?: string | undefined\n SOCKET_CLI_OPTIMIZE?: boolean | undefined\n SOCKET_CLI_SAFE_WRAPPER?: boolean | undefined\n}>\n\ntype Constants = Remap<\n Omit<typeof registryConstants, 'Symbol(kInternalsSymbol)' | 'ENV' | 'IPC'> & {\n readonly 'Symbol(kInternalsSymbol)': Internals\n readonly ALERT_TYPE_CRITICAL_CVE: 'criticalCVE'\n readonly ALERT_TYPE_CVE: 'cve'\n readonly ALERT_TYPE_MEDIUM_CVE: 'mediumCVE'\n readonly ALERT_TYPE_MILD_CVE: 'mildCVE'\n readonly ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE: 'socketUpgradeAvailable'\n readonly API_V0_URL: 'https://api.socket.dev/v0'\n readonly BABEL_RUNTIME: '@babel/runtime'\n readonly BATCH_PURL_ENDPOINT: 'https://api.socket.dev/v0/purl?alerts=true&compact=true'\n readonly BINARY_LOCK_EXT: '.lockb'\n readonly BUN: 'bun'\n readonly CLI: 'cli'\n readonly CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER: 'firstPatchedVersionIdentifier'\n readonly CVE_ALERT_PROPS_VULNERABLE_VERSION_RANGE: 'vulnerableVersionRange'\n readonly ENV: ENV\n readonly DIST_TYPE: 'module-sync' | 'require'\n readonly DRY_RUN_LABEL: '[DryRun]'\n readonly DRY_RUN_BAIL_TEXT: '[DryRun] Bailing now'\n readonly IPC: IPC\n readonly LOCK_EXT: '.lock'\n readonly MODULE_SYNC: 'module-sync'\n readonly NPM_INJECTION: 'npm-injection'\n readonly NPM_REGISTRY_URL: 'https://registry.npmjs.org'\n readonly NPX: 'npx'\n readonly PNPM: 'pnpm'\n readonly REDACTED: '<redacted>'\n readonly REQUIRE: 'require'\n readonly SHADOW_BIN: 'shadow-bin'\n readonly SOCKET: 'socket'\n readonly SOCKET_CLI_DEBUG: 'SOCKET_CLI_DEBUG'\n readonly SOCKET_CLI_FIX: 'SOCKET_CLI_FIX'\n readonly SOCKET_CLI_ISSUES_URL: 'https://github.com/SocketDev/socket-cli/issues'\n readonly SOCKET_CLI_LEGACY_BUILD: 'SOCKET_CLI_LEGACY_BUILD'\n readonly SOCKET_CLI_LEGACY_PACKAGE_NAME: '@socketsecurity/cli'\n readonly SOCKET_CLI_NO_API_TOKEN: 'SOCKET_CLI_NO_API_TOKEN'\n readonly SOCKET_CLI_OPTIMIZE: 'SOCKET_CLI_OPTIMIZE'\n readonly SOCKET_CLI_PACKAGE_NAME: 'socket'\n readonly SOCKET_CLI_PUBLISHED_BUILD: 'SOCKET_CLI_PUBLISHED_BUILD'\n readonly SOCKET_CLI_SAFE_WRAPPER: 'SOCKET_CLI_SAFE_WRAPPER'\n readonly SOCKET_CLI_SENTRY_BUILD: 'SOCKET_CLI_SENTRY_BUILD'\n readonly SOCKET_CLI_SENTRY_PACKAGE_NAME: '@socketsecurity/cli-with-sentry'\n readonly SOCKET_CLI_SHOW_BANNER: 'SOCKET_CLI_SHOW_BANNER'\n readonly SOCKET_CLI_VERSION_HASH: 'SOCKET_CLI_VERSION_HASH'\n readonly VLT: 'vlt'\n readonly WITH_SENTRY: 'with-sentry'\n readonly YARN: 'yarn'\n readonly YARN_BERRY: 'yarn/berry'\n readonly YARN_CLASSIC: 'yarn/classic'\n readonly bashRcPath: string\n readonly cdxgenBinPath: string\n readonly distPath: string\n readonly homePath: string\n readonly instrumentWithSentryPath: string\n readonly nmBinPath: string\n readonly npmInjectionPath: string\n readonly rootBinPath: string\n readonly rootDistPath: string\n readonly rootPath: string\n readonly rootPkgJsonPath: string\n readonly shadowBinPath: string\n readonly synpBinPath: string\n readonly zshRcPath: string\n }\n>\n\nconst WITH_SENTRY = 'with-sentry'\nconst ALERT_TYPE_CRITICAL_CVE = 'criticalCVE'\nconst ALERT_TYPE_CVE = 'cve'\nconst ALERT_TYPE_MEDIUM_CVE = 'mediumCVE'\nconst ALERT_TYPE_MILD_CVE = 'mildCVE'\nconst ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE = 'socketUpgradeAvailable'\nconst API_V0_URL = 'https://api.socket.dev/v0'\nconst BABEL_RUNTIME = '@babel/runtime'\nconst BINARY_LOCK_EXT = '.lockb'\nconst BUN = 'bun'\nconst CLI = 'cli'\nconst CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER =\n 'firstPatchedVersionIdentifier'\nconst CVE_ALERT_PROPS_VULNERABLE_VERSION_RANGE = 'vulnerableVersionRange'\nconst DRY_RUN_LABEL = '[DryRun]'\nconst DRY_RUN_BAIL_TEXT = `${DRY_RUN_LABEL}: Bailing now`\nconst LOCK_EXT = '.lock'\nconst MODULE_SYNC = 'module-sync'\nconst NPM_INJECTION = 'npm-injection'\nconst NPM_REGISTRY_URL = 'https://registry.npmjs.org'\nconst NPX = 'npx'\nconst PNPM = 'pnpm'\nconst REDACTED = '<redacted>'\nconst REQUIRE = 'require'\nconst SHADOW_BIN = 'shadow-bin'\nconst SOCKET = 'socket'\nconst SOCKET_CLI_DEBUG = 'SOCKET_CLI_DEBUG'\nconst SOCKET_CLI_FIX = 'SOCKET_CLI_FIX'\nconst SOCKET_CLI_ISSUES_URL = 'https://github.com/SocketDev/socket-cli/issues'\nconst SOCKET_CLI_LEGACY_BUILD = 'SOCKET_CLI_LEGACY_BUILD'\nconst SOCKET_CLI_LEGACY_PACKAGE_NAME = `${SOCKET_SECURITY_SCOPE}/${CLI}`\nconst SOCKET_CLI_NO_API_TOKEN = 'SOCKET_CLI_NO_API_TOKEN'\nconst SOCKET_CLI_OPTIMIZE = 'SOCKET_CLI_OPTIMIZE'\nconst SOCKET_CLI_PACKAGE_NAME = SOCKET\nconst SOCKET_CLI_PUBLISHED_BUILD = 'SOCKET_CLI_PUBLISHED_BUILD'\nconst SOCKET_CLI_SAFE_WRAPPER = 'SOCKET_CLI_SAFE_WRAPPER'\nconst SOCKET_CLI_SENTRY_BUILD = 'SOCKET_CLI_SENTRY_BUILD'\nconst SOCKET_CLI_SENTRY_PACKAGE_NAME = `${SOCKET_CLI_LEGACY_PACKAGE_NAME}-${WITH_SENTRY}`\nconst SOCKET_CLI_SHOW_BANNER = 'SOCKET_CLI_SHOW_BANNER'\nconst SOCKET_CLI_VERSION_HASH = 'SOCKET_CLI_VERSION_HASH'\nconst VLT = 'vlt'\nconst YARN = 'yarn'\nconst YARN_BERRY = `${YARN}/berry`\nconst YARN_CLASSIC = `${YARN}/classic`\n\nlet _Sentry: any\n\nconst LAZY_BATCH_PURL_ENDPOINT = () => {\n const query = new URLSearchParams()\n query.append('alerts', 'true')\n query.append('compact', 'true')\n return `${API_V0_URL}/purl?${query}`\n}\n\nconst LAZY_DIST_TYPE = () =>\n registryConstants.SUPPORTS_NODE_REQUIRE_MODULE ? MODULE_SYNC : REQUIRE\n\nconst LAZY_ENV = () => {\n const { env } = process\n // We inline some environment values so that they CANNOT be influenced by user\n // provided environment variables.\n return Object.freeze({\n // Lazily access registryConstants.ENV.\n ...registryConstants.ENV,\n // Flag set to help debug Socket CLI.\n [SOCKET_CLI_DEBUG]: envAsBoolean(env[SOCKET_CLI_DEBUG]),\n // Inlined flag set to determine if this is the Legacy build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_LEGACY_BUILD]\".\n [SOCKET_CLI_LEGACY_BUILD]: process.env[SOCKET_CLI_LEGACY_BUILD],\n // Flag set to make the default API token `undefined`.\n [SOCKET_CLI_NO_API_TOKEN]: envAsBoolean(env[SOCKET_CLI_NO_API_TOKEN]),\n // Inlined flag set to determine if this is a published build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_PUBLISHED_BUILD]\".\n [SOCKET_CLI_PUBLISHED_BUILD]: process.env[SOCKET_CLI_PUBLISHED_BUILD],\n // Inlined flag set to determine if this is the Sentry build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_SENTRY_BUILD]\".\n [SOCKET_CLI_SENTRY_BUILD]: process.env[SOCKET_CLI_SENTRY_BUILD],\n // Flag set to toggle the informative ASCII art banner.\n [SOCKET_CLI_SHOW_BANNER]: envAsBoolean(env[SOCKET_CLI_SHOW_BANNER]),\n // Inlined flag set to determine the version hash of the build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_VERSION_HASH]\".\n [SOCKET_CLI_VERSION_HASH]: process.env[SOCKET_CLI_VERSION_HASH]\n })\n}\n\nconst lazyBashRcPath = () =>\n // Lazily access constants.homePath.\n path.join(constants.homePath, '.bashrc')\n\nconst lazyCdxgenBinPath = () =>\n // Lazily access constants.nmBinPath.\n path.join(constants.nmBinPath, 'cdxgen')\n\nconst lazyDistPath = () =>\n // Lazily access constants.rootDistPath and constants.DIST_TYPE.\n path.join(constants.rootDistPath, constants.DIST_TYPE)\n\nconst lazyHomePath = () => os.homedir()\n\nconst lazyInstrumentWithSentryPath = () =>\n // Lazily access constants.rootDistPath.\n path.join(constants.rootDistPath, 'instrument-with-sentry.js')\n\nconst lazyNmBinPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, `${NODE_MODULES}/.bin`)\n\nconst lazyNpmInjectionPath = () =>\n // Lazily access constants.distPath.\n path.join(constants.distPath, `${NPM_INJECTION}.js`)\n\nconst lazyRootBinPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, 'bin')\n\nconst lazyRootDistPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, 'dist')\n\nconst lazyRootPath = () =>\n // The '@rollup/plugin-replace' will replace \"process.env.['VITEST']\" with `false` and\n // it will be dead code eliminated by Rollup.\n path.resolve(\n realpathSync.native(__dirname),\n process.env['SOCKET_CLI_TEST_DIST_BUILD'] ? '../..' : '..'\n )\n\nconst lazyRootPkgJsonPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, PACKAGE_JSON)\n\nconst lazyShadowBinPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, SHADOW_BIN)\n\nconst lazySynpBinPath = () =>\n // Lazily access constants.nmBinPath.\n path.join(constants.nmBinPath, 'synp')\n\nconst lazyZshRcPath = () =>\n // Lazily access constants.homePath.\n path.join(constants.homePath, '.zshrc')\n\nconst constants = <Constants>createConstantsObject(\n {\n ALERT_TYPE_CRITICAL_CVE,\n ALERT_TYPE_CVE,\n ALERT_TYPE_MEDIUM_CVE,\n ALERT_TYPE_MILD_CVE,\n ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE,\n API_V0_URL,\n BABEL_RUNTIME,\n // Lazily defined values are initialized as `undefined` to keep their key order.\n BATCH_PURL_ENDPOINT: undefined,\n BINARY_LOCK_EXT,\n BUN,\n CLI,\n CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER,\n CVE_ALERT_PROPS_VULNERABLE_VERSION_RANGE,\n DIST_TYPE: undefined,\n DRY_RUN_LABEL,\n DRY_RUN_BAIL_TEXT,\n ENV: undefined,\n LOCK_EXT,\n MODULE_SYNC,\n NPM_INJECTION,\n NPM_REGISTRY_URL,\n NPX,\n PNPM,\n REDACTED,\n REQUIRE,\n SHADOW_BIN,\n SOCKET,\n SOCKET_CLI_DEBUG,\n SOCKET_CLI_FIX,\n SOCKET_CLI_ISSUES_URL,\n SOCKET_CLI_LEGACY_BUILD,\n SOCKET_CLI_LEGACY_PACKAGE_NAME,\n SOCKET_CLI_NO_API_TOKEN,\n SOCKET_CLI_OPTIMIZE,\n SOCKET_CLI_PACKAGE_NAME,\n SOCKET_CLI_PUBLISHED_BUILD,\n SOCKET_CLI_SAFE_WRAPPER,\n SOCKET_CLI_SENTRY_BUILD,\n SOCKET_CLI_SENTRY_PACKAGE_NAME,\n SOCKET_CLI_SHOW_BANNER,\n SOCKET_CLI_VERSION_HASH,\n VLT,\n WITH_SENTRY,\n YARN,\n YARN_BERRY,\n YARN_CLASSIC,\n bashRcPath: undefined,\n cdxgenBinPath: undefined,\n distPath: undefined,\n homePath: undefined,\n instrumentWithSentryPath: undefined,\n nmBinPath: undefined,\n npmInjectionPath: undefined,\n rootBinPath: undefined,\n rootDistPath: undefined,\n rootPath: undefined,\n rootPkgJsonPath: undefined,\n shadowBinPath: undefined,\n synpBinPath: undefined,\n zshRcPath: undefined\n },\n {\n getters: {\n BATCH_PURL_ENDPOINT: LAZY_BATCH_PURL_ENDPOINT,\n DIST_TYPE: LAZY_DIST_TYPE,\n ENV: LAZY_ENV,\n bashRcPath: lazyBashRcPath,\n distPath: lazyDistPath,\n cdxgenBinPath: lazyCdxgenBinPath,\n homePath: lazyHomePath,\n instrumentWithSentryPath: lazyInstrumentWithSentryPath,\n nmBinPath: lazyNmBinPath,\n npmInjectionPath: lazyNpmInjectionPath,\n rootBinPath: lazyRootBinPath,\n rootDistPath: lazyRootDistPath,\n rootPath: lazyRootPath,\n rootPkgJsonPath: lazyRootPkgJsonPath,\n shadowBinPath: lazyShadowBinPath,\n synpBinPath: lazySynpBinPath,\n zshRcPath: lazyZshRcPath\n },\n internals: {\n getSentry() {\n return _Sentry\n },\n setSentry(Sentry: Sentry): boolean {\n if (_Sentry === undefined) {\n _Sentry = Sentry\n return true\n }\n return false\n }\n },\n mixin: registryConstants\n }\n)\n\nexport default constants\n"],"names":["createConstantsObject","query","env","path","constants","BATCH_PURL_ENDPOINT","DIST_TYPE","ENV","bashRcPath","cdxgenBinPath","distPath","homePath","instrumentWithSentryPath","nmBinPath","npmInjectionPath","rootBinPath","rootDistPath","rootPath","rootPkgJsonPath","shadowBinPath","synpBinPath","zshRcPath","getters","internals","getSentry","_Sentry","mixin"],"mappings":";;;;;;;;;AAUA;;;;;AAKE;AACEA;AACF;AACF;AA4GA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACE;AACAC;AACAA;AACA;AACF;AAEA;AAGA;;AACUC;AAAI;AACZ;AACA;;AAEE;;AAEA;;AAEA;AACA;AACA;AACA;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA;AACA;AACA;AACF;AACF;AAEA;AACE;AACAC;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AAEA;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACA;AACAA;AAKF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEIC;;;;;;;;AASF;AACAC;;;;;;AAMAC;;;AAGAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA8BAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACF;AAEEC;AACEjB;AACAC;AACAC;AACAC;AACAE;AACAD;AACAE;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;;AAEFE;AACEC;AACE;;;;AAIEC;AACA;AACF;AACA;AACF;;AAEFC;AACF;;","debugId":"4b21145a-f9b5-4480-8d81-978ecaf98dc9"}
|
|
1
|
+
{"version":3,"file":"constants.js","sources":["../../src/constants.ts"],"sourcesContent":["import { realpathSync } from 'node:fs'\nimport os from 'node:os'\nimport path from 'node:path'\nimport process from 'node:process'\n\nimport registryConstants from '@socketsecurity/registry/lib/constants'\nimport { envAsBoolean } from '@socketsecurity/registry/lib/env'\n\nimport type { Remap } from '@socketsecurity/registry/lib/objects'\n\nconst {\n NODE_MODULES,\n NPM,\n NPX,\n PACKAGE_JSON,\n SOCKET_SECURITY_SCOPE,\n kInternalsSymbol,\n [kInternalsSymbol as unknown as 'Symbol(kInternalsSymbol)']: {\n createConstantsObject\n }\n} = registryConstants\n\ntype RegistryEnv = typeof registryConstants.ENV\n\ntype RegistryInternals = (typeof registryConstants)['Symbol(kInternalsSymbol)']\n\ntype Sentry = any\n\ntype Internals = Remap<\n Omit<RegistryInternals, 'getIPC'> &\n Readonly<{\n getIPC: {\n (): Promise<IPC>\n <K extends keyof IPC | undefined>(\n key?: K | undefined\n ): Promise<K extends keyof IPC ? IPC[K] : IPC>\n }\n getSentry: () => Sentry\n setSentry(Sentry: Sentry): boolean\n }>\n>\n\ntype ENV = Remap<\n RegistryEnv &\n Readonly<{\n SOCKET_CLI_DEBUG: boolean\n SOCKET_CLI_LEGACY_BUILD: boolean\n SOCKET_CLI_NO_API_TOKEN: boolean\n SOCKET_CLI_PUBLISHED_BUILD: boolean\n SOCKET_CLI_SENTRY_BUILD: boolean\n SOCKET_CLI_SHOW_BANNER: boolean\n SOCKET_CLI_VERSION_HASH: string\n }>\n>\n\ntype IPC = Readonly<{\n SOCKET_CLI_FIX?: string | undefined\n SOCKET_CLI_OPTIMIZE?: boolean | undefined\n SOCKET_CLI_SAFE_WRAPPER?: number | undefined\n}>\n\ntype Constants = Remap<\n Omit<typeof registryConstants, 'Symbol(kInternalsSymbol)' | 'ENV' | 'IPC'> & {\n readonly 'Symbol(kInternalsSymbol)': Internals\n readonly ALERT_TYPE_CRITICAL_CVE: 'criticalCVE'\n readonly ALERT_TYPE_CVE: 'cve'\n readonly ALERT_TYPE_MEDIUM_CVE: 'mediumCVE'\n readonly ALERT_TYPE_MILD_CVE: 'mildCVE'\n readonly ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE: 'socketUpgradeAvailable'\n readonly API_V0_URL: 'https://api.socket.dev/v0'\n readonly BATCH_PURL_ENDPOINT: 'https://api.socket.dev/v0/purl?alerts=true&compact=true'\n readonly BINARY_LOCK_EXT: '.lockb'\n readonly BUN: 'bun'\n readonly CLI: 'cli'\n readonly CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER: 'firstPatchedVersionIdentifier'\n readonly CVE_ALERT_PROPS_VULNERABLE_VERSION_RANGE: 'vulnerableVersionRange'\n readonly ENV: ENV\n readonly DIST_TYPE: 'module-sync' | 'require'\n readonly DRY_RUN_LABEL: '[DryRun]'\n readonly DRY_RUN_BAIL_TEXT: '[DryRun] Bailing now'\n readonly IPC: IPC\n readonly LOCK_EXT: '.lock'\n readonly MODULE_SYNC: 'module-sync'\n readonly NPM_REGISTRY_URL: 'https://registry.npmjs.org'\n readonly PNPM: 'pnpm'\n readonly REDACTED: '<redacted>'\n readonly REQUIRE: 'require'\n readonly SHADOW_NPM_BIN: 'shadow-bin'\n readonly SHADOW_NPM_INJECT: 'shadow-npm-inject'\n readonly SHADOW_NPM_PATHS: 'shadow-npm-paths'\n readonly SOCKET: 'socket'\n readonly SOCKET_CLI_BIN_NAME: 'socket'\n readonly SOCKET_CLI_BIN_NAME_ALIAS: 'cli'\n readonly SOCKET_CLI_DEBUG: 'SOCKET_CLI_DEBUG'\n readonly SOCKET_CLI_FIX: 'SOCKET_CLI_FIX'\n readonly SOCKET_CLI_ISSUES_URL: 'https://github.com/SocketDev/socket-cli/issues'\n readonly SOCKET_CLI_SENTRY_BIN_NAME_ALIAS: 'cli-with-sentry'\n readonly SOCKET_CLI_LEGACY_BUILD: 'SOCKET_CLI_LEGACY_BUILD'\n readonly SOCKET_CLI_LEGACY_PACKAGE_NAME: '@socketsecurity/cli'\n readonly SOCKET_CLI_NO_API_TOKEN: 'SOCKET_CLI_NO_API_TOKEN'\n readonly SOCKET_CLI_NPM_BIN_NAME: 'socket-npm'\n readonly SOCKET_CLI_NPX_BIN_NAME: 'socket-npx'\n readonly SOCKET_CLI_OPTIMIZE: 'SOCKET_CLI_OPTIMIZE'\n readonly SOCKET_CLI_PACKAGE_NAME: 'socket'\n readonly SOCKET_CLI_PUBLISHED_BUILD: 'SOCKET_CLI_PUBLISHED_BUILD'\n readonly SOCKET_CLI_SAFE_WRAPPER: 'SOCKET_CLI_SAFE_WRAPPER'\n readonly SOCKET_CLI_SENTRY_BIN_NAME: 'socket-with-sentry'\n readonly SOCKET_CLI_SENTRY_BUILD: 'SOCKET_CLI_SENTRY_BUILD'\n readonly SOCKET_CLI_SENTRY_NPM_BIN_NAME: 'socket-npm-with-sentry'\n readonly SOCKET_CLI_SENTRY_NPX_BIN_NAME: 'socket-npx-with-sentry'\n readonly SOCKET_CLI_SENTRY_PACKAGE_NAME: '@socketsecurity/cli-with-sentry'\n readonly SOCKET_CLI_SHOW_BANNER: 'SOCKET_CLI_SHOW_BANNER'\n readonly SOCKET_CLI_VERSION_HASH: 'SOCKET_CLI_VERSION_HASH'\n readonly VLT: 'vlt'\n readonly WITH_SENTRY: 'with-sentry'\n readonly YARN: 'yarn'\n readonly YARN_BERRY: 'yarn/berry'\n readonly YARN_CLASSIC: 'yarn/classic'\n readonly bashRcPath: string\n readonly distCliPath: string\n readonly distInstrumentWithSentryPath: string\n readonly distPath: string\n readonly distShadowNpmBinPath: string\n readonly distShadowNpmInjectPath: string\n readonly homePath: string\n readonly nmBinPath: string\n readonly rootBinPath: string\n readonly rootDistPath: string\n readonly rootPath: string\n readonly rootPkgJsonPath: string\n readonly shadowBinPath: string\n readonly zshRcPath: string\n }\n>\n\nconst SOCKET = 'socket'\nconst WITH_SENTRY = 'with-sentry'\n\nconst ALERT_TYPE_CRITICAL_CVE = 'criticalCVE'\nconst ALERT_TYPE_CVE = 'cve'\nconst ALERT_TYPE_MEDIUM_CVE = 'mediumCVE'\nconst ALERT_TYPE_MILD_CVE = 'mildCVE'\nconst ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE = 'socketUpgradeAvailable'\nconst API_V0_URL = 'https://api.socket.dev/v0'\nconst BINARY_LOCK_EXT = '.lockb'\nconst BUN = 'bun'\nconst CLI = 'cli'\nconst CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER =\n 'firstPatchedVersionIdentifier'\nconst CVE_ALERT_PROPS_VULNERABLE_VERSION_RANGE = 'vulnerableVersionRange'\nconst DRY_RUN_LABEL = '[DryRun]'\nconst DRY_RUN_BAIL_TEXT = `${DRY_RUN_LABEL}: Bailing now`\nconst LOCK_EXT = '.lock'\nconst MODULE_SYNC = 'module-sync'\nconst NPM_REGISTRY_URL = 'https://registry.npmjs.org'\nconst PNPM = 'pnpm'\nconst REDACTED = '<redacted>'\nconst REQUIRE = 'require'\nconst SHADOW_NPM_BIN = 'shadow-bin'\nconst SHADOW_NPM_INJECT = 'shadow-npm-inject'\nconst SHADOW_NPM_PATHS = 'shadow-npm-paths'\nconst SOCKET_CLI_BIN_NAME = SOCKET\nconst SOCKET_CLI_BIN_NAME_ALIAS = CLI\nconst SOCKET_CLI_DEBUG = 'SOCKET_CLI_DEBUG'\nconst SOCKET_CLI_FIX = 'SOCKET_CLI_FIX'\nconst SOCKET_CLI_ISSUES_URL = 'https://github.com/SocketDev/socket-cli/issues'\nconst SOCKET_CLI_LEGACY_BUILD = 'SOCKET_CLI_LEGACY_BUILD'\nconst SOCKET_CLI_LEGACY_PACKAGE_NAME = `${SOCKET_SECURITY_SCOPE}/${CLI}`\nconst SOCKET_CLI_NO_API_TOKEN = 'SOCKET_CLI_NO_API_TOKEN'\nconst SOCKET_CLI_OPTIMIZE = 'SOCKET_CLI_OPTIMIZE'\nconst SOCKET_CLI_NPM_BIN_NAME = `${SOCKET}-${NPM}`\nconst SOCKET_CLI_NPX_BIN_NAME = `${SOCKET}-${NPX}`\nconst SOCKET_CLI_PACKAGE_NAME = SOCKET\nconst SOCKET_CLI_PUBLISHED_BUILD = 'SOCKET_CLI_PUBLISHED_BUILD'\nconst SOCKET_CLI_SAFE_WRAPPER = 'SOCKET_CLI_SAFE_WRAPPER'\nconst SOCKET_CLI_SENTRY_BIN_NAME = `${SOCKET_CLI_BIN_NAME}-${WITH_SENTRY}`\nconst SOCKET_CLI_SENTRY_BIN_NAME_ALIAS = `${SOCKET_CLI_BIN_NAME_ALIAS}-${WITH_SENTRY}`\nconst SOCKET_CLI_SENTRY_BUILD = 'SOCKET_CLI_SENTRY_BUILD'\nconst SOCKET_CLI_SENTRY_NPM_BIN_NAME = `${SOCKET_CLI_NPM_BIN_NAME}-${WITH_SENTRY}`\nconst SOCKET_CLI_SENTRY_NPX_BIN_NAME = `${SOCKET_CLI_NPX_BIN_NAME}-${WITH_SENTRY}`\nconst SOCKET_CLI_SENTRY_PACKAGE_NAME = `${SOCKET_CLI_LEGACY_PACKAGE_NAME}-${WITH_SENTRY}`\nconst SOCKET_CLI_SHOW_BANNER = 'SOCKET_CLI_SHOW_BANNER'\nconst SOCKET_CLI_VERSION_HASH = 'SOCKET_CLI_VERSION_HASH'\nconst VLT = 'vlt'\nconst YARN = 'yarn'\nconst YARN_BERRY = `${YARN}/berry`\nconst YARN_CLASSIC = `${YARN}/classic`\n\nlet _Sentry: any\n\nconst LAZY_BATCH_PURL_ENDPOINT = () => {\n const query = new URLSearchParams()\n query.append('alerts', 'true')\n query.append('compact', 'true')\n return `${API_V0_URL}/purl?${query}`\n}\n\nconst LAZY_DIST_TYPE = () =>\n registryConstants.SUPPORTS_NODE_REQUIRE_MODULE ? MODULE_SYNC : REQUIRE\n\nconst LAZY_ENV = () => {\n const { env } = process\n // We inline some environment values so that they CANNOT be influenced by user\n // provided environment variables.\n return Object.freeze({\n // Lazily access registryConstants.ENV.\n ...registryConstants.ENV,\n // Flag set to help debug Socket CLI.\n [SOCKET_CLI_DEBUG]: envAsBoolean(env[SOCKET_CLI_DEBUG]),\n // Inlined flag set to determine if this is the Legacy build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_LEGACY_BUILD]\".\n [SOCKET_CLI_LEGACY_BUILD]: process.env[SOCKET_CLI_LEGACY_BUILD],\n // Flag set to make the default API token `undefined`.\n [SOCKET_CLI_NO_API_TOKEN]: envAsBoolean(env[SOCKET_CLI_NO_API_TOKEN]),\n // Inlined flag set to determine if this is a published build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_PUBLISHED_BUILD]\".\n [SOCKET_CLI_PUBLISHED_BUILD]: process.env[SOCKET_CLI_PUBLISHED_BUILD],\n // Inlined flag set to determine if this is the Sentry build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_SENTRY_BUILD]\".\n [SOCKET_CLI_SENTRY_BUILD]: process.env[SOCKET_CLI_SENTRY_BUILD],\n // Flag set to toggle the informative ASCII art banner.\n [SOCKET_CLI_SHOW_BANNER]: envAsBoolean(env[SOCKET_CLI_SHOW_BANNER]),\n // Inlined flag set to determine the version hash of the build.\n // The '@rollup/plugin-replace' will replace \"process.env[SOCKET_CLI_VERSION_HASH]\".\n [SOCKET_CLI_VERSION_HASH]: process.env[SOCKET_CLI_VERSION_HASH]\n })\n}\n\nconst lazyBashRcPath = () =>\n // Lazily access constants.homePath.\n path.join(constants.homePath, '.bashrc')\n\nconst lazyDistCliPath = () =>\n // Lazily access constants.distPath.\n path.join(constants.distPath, 'cli.js')\n\nconst lazyDistInstrumentWithSentryPath = () =>\n // Lazily access constants.rootDistPath.\n path.join(constants.rootDistPath, 'instrument-with-sentry.js')\n\nconst lazyDistPath = () =>\n // Lazily access constants.rootDistPath and constants.DIST_TYPE.\n path.join(constants.rootDistPath, constants.DIST_TYPE)\n\nconst lazyDistShadowNpmBinPath = () =>\n // Lazily access constants.distPath.\n path.join(constants.distPath, `${SHADOW_NPM_BIN}.js`)\n\nconst lazyDistShadowNpmInjectPath = () =>\n // Lazily access constants.distPath.\n path.join(constants.distPath, `${SHADOW_NPM_INJECT}.js`)\n\nconst lazyHomePath = () => os.homedir()\n\nconst lazyNmBinPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, `${NODE_MODULES}/.bin`)\n\nconst lazyRootBinPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, 'bin')\n\nconst lazyRootDistPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, 'dist')\n\nconst lazyRootPath = () =>\n // The '@rollup/plugin-replace' will replace \"process.env.['VITEST']\" with `false` and\n // it will be dead code eliminated by Rollup.\n path.join(\n realpathSync.native(__dirname),\n process.env['SOCKET_CLI_TEST_DIST_BUILD'] ? '../..' : '..'\n )\n\nconst lazyRootPkgJsonPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, PACKAGE_JSON)\n\nconst lazyShadowBinPath = () =>\n // Lazily access constants.rootPath.\n path.join(constants.rootPath, SHADOW_NPM_BIN)\n\nconst lazyZshRcPath = () =>\n // Lazily access constants.homePath.\n path.join(constants.homePath, '.zshrc')\n\nconst constants = <Constants>createConstantsObject(\n {\n ALERT_TYPE_CRITICAL_CVE,\n ALERT_TYPE_CVE,\n ALERT_TYPE_MEDIUM_CVE,\n ALERT_TYPE_MILD_CVE,\n ALERT_TYPE_SOCKET_UPGRADE_AVAILABLE,\n API_V0_URL,\n // Lazily defined values are initialized as `undefined` to keep their key order.\n BATCH_PURL_ENDPOINT: undefined,\n BINARY_LOCK_EXT,\n BUN,\n CLI,\n CVE_ALERT_PROPS_FIRST_PATCHED_VERSION_IDENTIFIER,\n CVE_ALERT_PROPS_VULNERABLE_VERSION_RANGE,\n DIST_TYPE: undefined,\n DRY_RUN_LABEL,\n DRY_RUN_BAIL_TEXT,\n ENV: undefined,\n LOCK_EXT,\n MODULE_SYNC,\n NPM_REGISTRY_URL,\n PNPM,\n REDACTED,\n REQUIRE,\n SHADOW_NPM_BIN,\n SHADOW_NPM_INJECT,\n SHADOW_NPM_PATHS,\n SOCKET,\n SOCKET_CLI_BIN_NAME,\n SOCKET_CLI_BIN_NAME_ALIAS,\n SOCKET_CLI_DEBUG,\n SOCKET_CLI_FIX,\n SOCKET_CLI_ISSUES_URL,\n SOCKET_CLI_SENTRY_BIN_NAME_ALIAS,\n SOCKET_CLI_LEGACY_BUILD,\n SOCKET_CLI_LEGACY_PACKAGE_NAME,\n SOCKET_CLI_NO_API_TOKEN,\n SOCKET_CLI_OPTIMIZE,\n SOCKET_CLI_PACKAGE_NAME,\n SOCKET_CLI_PUBLISHED_BUILD,\n SOCKET_CLI_SAFE_WRAPPER,\n SOCKET_CLI_SENTRY_BIN_NAME,\n SOCKET_CLI_SENTRY_BUILD,\n SOCKET_CLI_SENTRY_NPM_BIN_NAME,\n SOCKET_CLI_SENTRY_NPX_BIN_NAME,\n SOCKET_CLI_SENTRY_PACKAGE_NAME,\n SOCKET_CLI_SHOW_BANNER,\n SOCKET_CLI_VERSION_HASH,\n VLT,\n WITH_SENTRY,\n YARN,\n YARN_BERRY,\n YARN_CLASSIC,\n bashRcPath: undefined,\n distCliPath: undefined,\n distInstrumentWithSentryPath: undefined,\n distPath: undefined,\n distShadowNpmBinPath: undefined,\n distShadowNpmInjectPath: undefined,\n homePath: undefined,\n nmBinPath: undefined,\n rootBinPath: undefined,\n rootDistPath: undefined,\n rootPath: undefined,\n rootPkgJsonPath: undefined,\n shadowBinPath: undefined,\n zshRcPath: undefined\n },\n {\n getters: {\n BATCH_PURL_ENDPOINT: LAZY_BATCH_PURL_ENDPOINT,\n DIST_TYPE: LAZY_DIST_TYPE,\n ENV: LAZY_ENV,\n bashRcPath: lazyBashRcPath,\n distCliPath: lazyDistCliPath,\n distInstrumentWithSentryPath: lazyDistInstrumentWithSentryPath,\n distPath: lazyDistPath,\n distShadowNpmBinPath: lazyDistShadowNpmBinPath,\n distShadowNpmInjectPath: lazyDistShadowNpmInjectPath,\n homePath: lazyHomePath,\n nmBinPath: lazyNmBinPath,\n rootBinPath: lazyRootBinPath,\n rootDistPath: lazyRootDistPath,\n rootPath: lazyRootPath,\n rootPkgJsonPath: lazyRootPkgJsonPath,\n shadowBinPath: lazyShadowBinPath,\n zshRcPath: lazyZshRcPath\n },\n internals: {\n getSentry() {\n return _Sentry\n },\n setSentry(Sentry: Sentry): boolean {\n if (_Sentry === undefined) {\n _Sentry = Sentry\n return true\n }\n return false\n }\n },\n mixin: registryConstants\n }\n)\n\nexport default constants\n"],"names":["createConstantsObject","query","env","path","constants","BATCH_PURL_ENDPOINT","DIST_TYPE","ENV","bashRcPath","distCliPath","distInstrumentWithSentryPath","distPath","distShadowNpmBinPath","distShadowNpmInjectPath","homePath","nmBinPath","rootBinPath","rootDistPath","rootPath","rootPkgJsonPath","shadowBinPath","zshRcPath","getters","internals","getSentry","_Sentry","mixin"],"mappings":";;;;;;;;;AAUA;;;;;;;AAOE;AACEA;AACF;AACF;AAmHA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACE;AACAC;AACAA;AACA;AACF;AAEA;AAGA;;AACUC;AAAI;AACZ;AACA;;AAEE;;AAEA;;AAEA;AACA;AACA;AACA;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA;AACA;AACA;AACF;AACF;AAEA;AACE;AACAC;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AAEA;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACA;AACAA;AAKF;AACE;AACAA;AAEF;AACE;AACAA;AAEF;AACE;AACAA;AAEIC;;;;;;;AAQF;AACAC;;;;;;AAMAC;;;AAGAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoCAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACF;AAEEC;AACEjB;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;AACAC;;AAEFE;AACEC;AACE;;;;AAIEC;AACA;AACF;AACA;AACF;;AAEFC;AACF;;","debugId":"23cb1c1d-7228-4cb4-ad0d-9b5e4a38c195"}
|