npm - socket - Versions diffs - 1.1.15 → 1.1.18 - Mend

socket 1.1.15 → 1.1.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (103) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -4,6 +4,21 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
+## [1.1.18](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.18) - 2025-09-18
+### Fixed
+- Enhanced Node.js version compatibility by downgrading yargs-parser for Node versions below 20
+## [1.1.17](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.17) - 2025-09-18
+### Fixed
+- Enhanced Windows compatibility for package manager detection and execution
+## [1.1.16](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.16) - 2025-09-16
+### Fixed
+- Enhanced pnpm wrapper compatibility with dlx commands for better package execution support
 ## [1.1.15](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.15) - 2025-09-16
 ### Changed

package/dist/cli.js CHANGED Viewed

@@ -25,7 +25,6 @@ var packages = require('../external/@socketsecurity/registry/lib/packages');
 var require$$12 = require('../external/@socketsecurity/registry/lib/promises');
 var regexps = require('../external/@socketsecurity/registry/lib/regexps');
 var require$$0$1 = require('node:crypto');
-var registryConstants = require('../external/@socketsecurity/registry/lib/constants');
 var require$$1 = require('node:util');
 var os = require('node:os');
 var promises = require('node:stream/promises');
@@ -3560,7 +3559,7 @@ async function coanaFix(fixConfig) {
         }
       };
     }
-    const fixCResult = await utils.spawnCoanaDlx(['compute-fixes-and-upgrade-purls', cwd, '--manifests-tar-hash', tarHash, '--apply-fixes-to', ...(isAll ? ['all'] : ghsas), ...(fixConfig.rangeStyle ? ['--range-style', fixConfig.rangeStyle] : []), ...(glob ? ['--glob', glob] : []), ...(onlyCompute ? ['--dry-run'] : []), ...(outputFile ? ['--output-file', outputFile] : []), ...fixConfig.unknownFlags], fixConfig.orgSlug, {
+    const fixCResult = await utils.spawnCoanaDlx(['compute-fixes-and-upgrade-purls', cwd, '--manifests-tar-hash', tarHash, '--apply-fixes-to', ...(isAll ? ['all'] : ghsas), ...(fixConfig.rangeStyle ? ['--range-style', fixConfig.rangeStyle] : []), ...(glob ? ['--glob', glob] : []), ...(onlyCompute ? [constants.FLAG_DRY_RUN] : []), ...(outputFile ? ['--output-file', outputFile] : []), ...fixConfig.unknownFlags], fixConfig.orgSlug, {
       cwd,
       spinner,
       stdio: 'inherit'
@@ -4611,7 +4610,7 @@ const {
 const nodejsPlatformTypes = new Set(['javascript', 'js', 'nodejs', constants.NPM, constants.PNPM, 'ts', 'tsx', 'typescript']);
 function argvToArray(argvObj) {
   if (argvObj['help']) {
-    return ['--help'];
+    return [constants.FLAG_HELP];
   }
   const result = [];
   for (const {
@@ -4940,7 +4939,7 @@ async function run$F(argv, importMeta, context) {
   const argsToProcess = utils.filterFlags(argv, {
     ...flags.commonFlags,
     ...flags.outputFlags
-  }, ['--no-banner', '--help', '-h']);
+  }, ['--no-banner', constants.FLAG_HELP, '-h']);
   const yargv = {
     ...vendor.yargsParser(argsToProcess, yargsConfig)
   };
@@ -6759,7 +6758,7 @@ async function lsPnpm(pkgEnvDetails, options) {
     stdout = (await spawn.spawn(pkgEnvDetails.agentExecPath,
     // Pnpm uses the alternative spelling of parsable.
     // https://en.wiktionary.org/wiki/parsable
-    ['ls', '--parseable', '--prod', '--depth', 'Infinity'], {
+    ['ls', '--parseable', constants.FLAG_PROD, '--depth', 'Infinity'], {
       cwd,
       shell: constants.default.WIN32
     })).stdout;
@@ -6812,7 +6811,7 @@ async function lsYarnClassic(pkgEnvDetails, options) {
     // https://github.com/yarnpkg/yarn/releases/tag/v1.0.0
     // > Fix: Excludes dev dependencies from the yarn list output when the
     //   environment is production
-    return (await spawn.spawn(pkgEnvDetails.agentExecPath, ['list', '--prod'], {
+    return (await spawn.spawn(pkgEnvDetails.agentExecPath, ['list', constants.FLAG_PROD], {
       cwd,
       shell: constants.default.WIN32
     })).stdout;
@@ -9052,7 +9051,7 @@ async function computeSHA256(filepath) {
     return {
       ok: false,
       message: 'Failed to compute file hash',
-      cause: `Unable to read file ${filepath}: ${e instanceof Error ? e.message : 'Unknown error'}`
+      cause: `Unable to read file ${filepath}: ${e instanceof Error ? e.message : constants.UNKNOWN_ERROR}`
     };
   }
 }
@@ -9172,9 +9171,9 @@ async function handlePatch({
   spinner
 }) {
   try {
-    const dotSocketDirPath = path.join(cwd, constants.DOT_SOCKET);
-    const manifestPath = path.join(dotSocketDirPath, 'manifest.json');
-    const manifestContent = await fs$1.promises.readFile(manifestPath, 'utf-8');
+    const dotSocketDirPath = path.join(cwd, constants.DOT_SOCKET_DIR);
+    const manifestPath = path.join(dotSocketDirPath, constants.MANIFEST_JSON);
+    const manifestContent = await fs$1.promises.readFile(manifestPath, constants.UTF8);
     const manifestData = JSON.parse(manifestContent);
     const purls = purlObjs.map(String);
     const validated = PatchManifestSchema.parse(manifestData);
@@ -9235,7 +9234,7 @@ async function handlePatch({
     let message = 'Failed to apply patches';
     let cause = e?.message || constants.UNKNOWN_ERROR;
     if (e instanceof SyntaxError) {
-      message = `Invalid JSON in ${registryConstants.MANIFEST_JSON}`;
+      message = `Invalid JSON in ${constants.MANIFEST_JSON}`;
       cause = e.message;
     } else if (e instanceof Error && 'issues' in e) {
       message = 'Schema validation failed';
@@ -9318,13 +9317,13 @@ async function run$m(argv, importMeta, {
   // Note: path.resolve vs .join:
   // If given path is absolute then cwd should not affect it.
   cwd = path.resolve(process.cwd(), cwd);
-  const dotSocketDirPath = path.join(cwd, constants.DOT_SOCKET);
+  const dotSocketDirPath = path.join(cwd, constants.DOT_SOCKET_DIR);
   if (!fs$1.existsSync(dotSocketDirPath)) {
-    throw new utils.InputError(`No ${constants.DOT_SOCKET} directory found in current directory`);
+    throw new utils.InputError(`No ${constants.DOT_SOCKET_DIR} directory found in current directory`);
   }
   const manifestPath = path.join(dotSocketDirPath, constants.MANIFEST_JSON);
   if (!fs$1.existsSync(manifestPath)) {
-    throw new utils.InputError(`No ${constants.MANIFEST_JSON} found in ${constants.DOT_SOCKET} directory`);
+    throw new utils.InputError(`No ${constants.MANIFEST_JSON} found in ${constants.DOT_SOCKET_DIR} directory`);
   }
   const {
     spinner
@@ -14735,5 +14734,5 @@ void (async () => {
     await utils.captureException(e);
   }
 })();
-//# debugId=243906f3-caec-435c-aaca-fe5ec4aeb381
+//# debugId=b2633ba4-7e32-440b-9581-735f53ff9fc8
 //# sourceMappingURL=cli.js.map