socket 1.1.103 → 1.1.104
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +5 -0
- package/dist/constants.js +3 -3
- package/dist/constants.js.map +1 -1
- package/dist/tsconfig.dts.tsbuildinfo +1 -1
- package/dist/types/utils/dlx.d.mts.map +1 -1
- package/dist/utils.js +27 -3
- package/dist/utils.js.map +1 -1
- package/package.json +1 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"dlx.d.mts","sourceRoot":"","sources":["../../../src/utils/dlx.mts"],"names":[],"mappings":"AA0CA,OAAO,KAAK,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAC/E,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,cAAc,CAAA;AAC3C,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,oCAAoC,CAAA;AAMpE,MAAM,MAAM,UAAU,GAAG,gBAAgB,GAAG;IAC1C,KAAK,CAAC,EAAE,OAAO,GAAG,SAAS,CAAA;IAC3B,KAAK,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,MAAM,GAAG,SAAS,CAAA;IAC3C,MAAM,CAAC,EAAE,OAAO,GAAG,SAAS,CAAA;CAC7B,CAAA;AAED,MAAM,MAAM,cAAc,GAAG;IAC3B,IAAI,EAAE,MAAM,CAAA;IACZ,OAAO,EAAE,MAAM,CAAA;CAChB,CAAA;AAQD;;;;GAIG;AACH,wBAAsB,QAAQ,CAC5B,WAAW,EAAE,cAAc,EAC3B,IAAI,EAAE,MAAM,EAAE,GAAG,SAAS,MAAM,EAAE,EAClC,OAAO,CAAC,EAAE,UAAU,GAAG,SAAS,EAChC,UAAU,CAAC,EAAE,UAAU,GAAG,SAAS,GAClC,OAAO,CAAC,eAAe,CAAC,CAwG1B;AAED,MAAM,MAAM,eAAe,GAAG,UAAU,GAAG;IACzC,YAAY,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;CAClC,CAAA;
|
|
1
|
+
{"version":3,"file":"dlx.d.mts","sourceRoot":"","sources":["../../../src/utils/dlx.mts"],"names":[],"mappings":"AA0CA,OAAO,KAAK,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AAC/E,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,cAAc,CAAA;AAC3C,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,oCAAoC,CAAA;AAMpE,MAAM,MAAM,UAAU,GAAG,gBAAgB,GAAG;IAC1C,KAAK,CAAC,EAAE,OAAO,GAAG,SAAS,CAAA;IAC3B,KAAK,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,MAAM,GAAG,SAAS,CAAA;IAC3C,MAAM,CAAC,EAAE,OAAO,GAAG,SAAS,CAAA;CAC7B,CAAA;AAED,MAAM,MAAM,cAAc,GAAG;IAC3B,IAAI,EAAE,MAAM,CAAA;IACZ,OAAO,EAAE,MAAM,CAAA;CAChB,CAAA;AAQD;;;;GAIG;AACH,wBAAsB,QAAQ,CAC5B,WAAW,EAAE,cAAc,EAC3B,IAAI,EAAE,MAAM,EAAE,GAAG,SAAS,MAAM,EAAE,EAClC,OAAO,CAAC,EAAE,UAAU,GAAG,SAAS,EAChC,UAAU,CAAC,EAAE,UAAU,GAAG,SAAS,GAClC,OAAO,CAAC,eAAe,CAAC,CAwG1B;AAED,MAAM,MAAM,eAAe,GAAG,UAAU,GAAG;IACzC,YAAY,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;CAClC,CAAA;AAuKD;;;;;;;;;;;;;GAaG;AACH,wBAAsB,aAAa,CACjC,IAAI,EAAE,MAAM,EAAE,GAAG,SAAS,MAAM,EAAE,EAClC,OAAO,CAAC,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE,eAAe,GAAG,SAAS,EACrC,UAAU,CAAC,EAAE,UAAU,GAAG,SAAS,GAClC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAuI1B;AAsED;;GAEG;AACH,wBAAsB,cAAc,CAClC,IAAI,EAAE,MAAM,EAAE,GAAG,SAAS,MAAM,EAAE,EAClC,OAAO,CAAC,EAAE,UAAU,GAAG,SAAS,EAChC,UAAU,CAAC,EAAE,UAAU,GAAG,SAAS,GAClC,OAAO,CAAC,eAAe,CAAC,CAU1B;AAED;;GAEG;AACH,wBAAsB,YAAY,CAChC,IAAI,EAAE,MAAM,EAAE,GAAG,SAAS,MAAM,EAAE,EAClC,OAAO,CAAC,EAAE,UAAU,GAAG,SAAS,EAChC,UAAU,CAAC,EAAE,UAAU,GAAG,SAAS,GAClC,OAAO,CAAC,eAAe,CAAC,CAU1B"}
|
package/dist/utils.js
CHANGED
|
@@ -5254,6 +5254,30 @@ async function spawnDlx(packageSpec, args, options, spawnExtra) {
|
|
|
5254
5254
|
*/
|
|
5255
5255
|
const installedCoanaScriptPathsByVersion = new Map();
|
|
5256
5256
|
|
|
5257
|
+
/**
|
|
5258
|
+
* Strip npm-injected `npm_package_*` env vars before spawning a Coana
|
|
5259
|
+
* subprocess. npm (and pnpm/yarn classic) populate one env var per leaf in
|
|
5260
|
+
* the cwd's package.json — `npm_package_dependencies_*`, `npm_package_scripts_*`,
|
|
5261
|
+
* etc. In big monorepos with hundreds of deps this can easily account for
|
|
5262
|
+
* 50KB+ of environment, pushing combined argv + env past Linux ARG_MAX
|
|
5263
|
+
* (~128KB) and causing `spawn` to fail with E2BIG before Coana even starts.
|
|
5264
|
+
*
|
|
5265
|
+
* Coana does not read `npm_package_*` itself, so dropping them is safe. We
|
|
5266
|
+
* intentionally keep `npm_config_*` (registry, cache, proxy settings sourced
|
|
5267
|
+
* from .npmrc), `npm_lifecycle_*`, and everything else untouched — those can
|
|
5268
|
+
* matter for outbound network behavior of nested `npm install` calls.
|
|
5269
|
+
*/
|
|
5270
|
+
function sanitizeEnvForCoanaSubprocess(env) {
|
|
5271
|
+
const out = {};
|
|
5272
|
+
for (const key of Object.keys(env)) {
|
|
5273
|
+
if (key.startsWith('npm_package_')) {
|
|
5274
|
+
continue;
|
|
5275
|
+
}
|
|
5276
|
+
out[key] = env[key];
|
|
5277
|
+
}
|
|
5278
|
+
return out;
|
|
5279
|
+
}
|
|
5280
|
+
|
|
5257
5281
|
/**
|
|
5258
5282
|
* Spawn an installed Coana entry point via `node` (or directly, if it's a
|
|
5259
5283
|
* native binary). Shared by the SOCKET_CLI_COANA_LOCAL_PATH branch and the
|
|
@@ -5264,7 +5288,7 @@ async function spawnCoanaScriptViaNode(scriptPath, args, finalEnv, options, spaw
|
|
|
5264
5288
|
const spawnArgs = isBinary ? args : [scriptPath, ...args];
|
|
5265
5289
|
const spawnResult = await spawn.spawn(isBinary ? scriptPath : 'node', spawnArgs, {
|
|
5266
5290
|
cwd: options.cwd,
|
|
5267
|
-
env: finalEnv,
|
|
5291
|
+
env: sanitizeEnvForCoanaSubprocess(finalEnv),
|
|
5268
5292
|
stdio: spawnExtra?.['stdio'] || 'inherit'
|
|
5269
5293
|
});
|
|
5270
5294
|
return {
|
|
@@ -5309,7 +5333,7 @@ async function installCoanaToTmpdir(version, finalEnv) {
|
|
|
5309
5333
|
}
|
|
5310
5334
|
const installDir = await fs.promises.mkdtemp(path.join(os.tmpdir(), 'socket-coana-'));
|
|
5311
5335
|
await spawn.spawn('npm', ['install', '--no-save', '--no-package-lock', '--no-audit', '--no-fund', '--prefix', installDir, `@coana-tech/cli@${version}`], {
|
|
5312
|
-
env: finalEnv,
|
|
5336
|
+
env: sanitizeEnvForCoanaSubprocess(finalEnv),
|
|
5313
5337
|
stdio: 'inherit'
|
|
5314
5338
|
});
|
|
5315
5339
|
const scriptPath = await resolveCoanaBinFromInstallDir(installDir);
|
|
@@ -8225,5 +8249,5 @@ exports.updateConfigValue = updateConfigValue;
|
|
|
8225
8249
|
exports.walkNestedMap = walkNestedMap;
|
|
8226
8250
|
exports.webLink = webLink;
|
|
8227
8251
|
exports.writeSocketJson = writeSocketJson;
|
|
8228
|
-
//# debugId=
|
|
8252
|
+
//# debugId=d6940980-1f8e-474c-9258-5fefddeaadb5
|
|
8229
8253
|
//# sourceMappingURL=utils.js.map
|