socket 1.1.111 → 1.1.113

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (36) hide show
  1. package/CHANGELOG.md +9 -1
  2. package/dist/cli.js +1600 -926
  3. package/dist/cli.js.map +1 -1
  4. package/dist/constants.js +4 -4
  5. package/dist/constants.js.map +1 -1
  6. package/dist/tsconfig.dts.tsbuildinfo +1 -1
  7. package/dist/types/commands/manifest/bazel/bazel-cquery.d.mts +70 -0
  8. package/dist/types/commands/manifest/bazel/bazel-cquery.d.mts.map +1 -0
  9. package/dist/types/commands/manifest/bazel/bazel-pypi-discovery.d.mts +14 -1
  10. package/dist/types/commands/manifest/bazel/bazel-pypi-discovery.d.mts.map +1 -1
  11. package/dist/types/commands/manifest/bazel/bazel-query-runner.d.mts +58 -14
  12. package/dist/types/commands/manifest/bazel/bazel-query-runner.d.mts.map +1 -1
  13. package/dist/types/commands/manifest/bazel/bazel-repo-discovery.d.mts +43 -30
  14. package/dist/types/commands/manifest/bazel/bazel-repo-discovery.d.mts.map +1 -1
  15. package/dist/types/commands/manifest/bazel/bazel-workspace-walk.d.mts +18 -0
  16. package/dist/types/commands/manifest/bazel/bazel-workspace-walk.d.mts.map +1 -0
  17. package/dist/types/commands/manifest/bazel/cmd-manifest-bazel.d.mts +12 -10
  18. package/dist/types/commands/manifest/bazel/cmd-manifest-bazel.d.mts.map +1 -1
  19. package/dist/types/commands/manifest/bazel/extract_bazel_to_maven.d.mts +70 -8
  20. package/dist/types/commands/manifest/bazel/extract_bazel_to_maven.d.mts.map +1 -1
  21. package/dist/types/commands/manifest/generate_auto_manifest.d.mts.map +1 -1
  22. package/dist/types/commands/scan/finalize-tier1-scan.d.mts +6 -4
  23. package/dist/types/commands/scan/finalize-tier1-scan.d.mts.map +1 -1
  24. package/dist/types/commands/scan/handle-create-new-scan.d.mts.map +1 -1
  25. package/dist/types/commands/scan/handle-scan-reach.d.mts.map +1 -1
  26. package/dist/types/commands/scan/output-scan-reach.d.mts +2 -1
  27. package/dist/types/commands/scan/output-scan-reach.d.mts.map +1 -1
  28. package/dist/types/commands/scan/perform-reachability-analysis.d.mts.map +1 -1
  29. package/dist/types/utils/glob.d.mts +1 -0
  30. package/dist/types/utils/glob.d.mts.map +1 -1
  31. package/dist/utils.js +35 -16
  32. package/dist/utils.js.map +1 -1
  33. package/package.json +2 -2
  34. package/requirements.json +1 -1
  35. package/dist/types/commands/manifest/bazel/bazel-build-parser.d.mts +0 -34
  36. package/dist/types/commands/manifest/bazel/bazel-build-parser.d.mts.map +0 -1
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "socket",
3
- "version": "1.1.111",
3
+ "version": "1.1.113",
4
4
  "description": "CLI for Socket.dev",
5
5
  "homepage": "https://github.com/SocketDev/socket-cli",
6
6
  "license": "MIT AND OFL-1.1",
@@ -96,7 +96,7 @@
96
96
  "@babel/preset-typescript": "7.27.1",
97
97
  "@babel/runtime": "7.28.4",
98
98
  "@biomejs/biome": "2.2.4",
99
- "@coana-tech/cli": "15.3.15",
99
+ "@coana-tech/cli": "15.3.20",
100
100
  "@cyclonedx/cdxgen": "12.1.2",
101
101
  "@dotenvx/dotenvx": "1.49.0",
102
102
  "@eslint/compat": "1.3.2",
package/requirements.json CHANGED
@@ -10,7 +10,7 @@
10
10
  },
11
11
  "fix": {
12
12
  "quota": 101,
13
- "permissions": ["full-scans:create", "packages:list"]
13
+ "permissions": ["full-scans:create", "packages:list", "fixes:list"]
14
14
  },
15
15
  "login": {
16
16
  "quota": 1,
package/dist/types/commands/manifest/bazel/bazel-build-parser.d.mts DELETED
@@ -1,34 +0,0 @@
1
- /**
2
- * Parse `bazel query --output=build` text and `unsorted_deps.json` files
3
- * (rules_jvm_external) into a uniform `ExtractedArtifact` shape consumed by
4
- * the converter.
5
- *
6
- * Security gate: every regex uses bounded character classes to prevent
7
- * catastrophic backtracking on hostile bazel-query output. Rules without
8
- * `maven_coordinates=` are skipped. Caller is responsible for size-capping
9
- * the input string.
10
- */
11
- export type ExtractedArtifact = {
12
- ruleKind: 'jvm_import' | 'aar_import';
13
- ruleName: string;
14
- mavenCoordinates: string;
15
- sourceRepo?: string | undefined;
16
- mavenUrl?: string | undefined;
17
- mavenSha256?: string | undefined;
18
- deps: string[];
19
- };
20
- /**
21
- * Parse `bazel query --output=build` stdout into `ExtractedArtifact[]`.
22
- * Skips rules without a `maven_coordinates` attribute (those aren't
23
- * rules_jvm_external lockfile rules).
24
- */
25
- export declare function parseBazelBuildOutput(text: string): ExtractedArtifact[];
26
- /**
27
- * Parse supported `external/<repo>/unsorted_deps.json` shapes emitted by
28
- * rules_jvm_external. Older files use an artifact array with full coordinates;
29
- * newer v2 lock-file-shaped files use artifact/dependency maps keyed by
30
- * `group:artifact`. Caller MUST size-cap the input because JSON.parse is
31
- * unbounded by default.
32
- */
33
- export declare function parseUnsortedDepsJson(json: string): ExtractedArtifact[];
34
- //# sourceMappingURL=bazel-build-parser.d.mts.map
package/dist/types/commands/manifest/bazel/bazel-build-parser.d.mts.map DELETED
@@ -1 +0,0 @@
1
- {"version":3,"file":"bazel-build-parser.d.mts","sourceRoot":"","sources":["../../../../../src/commands/manifest/bazel/bazel-build-parser.mts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,QAAQ,EAAE,YAAY,GAAG,YAAY,CAAA;IACrC,QAAQ,EAAE,MAAM,CAAA;IAChB,gBAAgB,EAAE,MAAM,CAAA;IACxB,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IAC/B,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IAC7B,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IAChC,IAAI,EAAE,MAAM,EAAE,CAAA;CACf,CAAA;AAkED;;;;GAIG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG,iBAAiB,EAAE,CA8BvE;AAkBD;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG,iBAAiB,EAAE,CAmEvE"}