From e0144e2ea4151f14c402cc96bebb440cf0c1d56d Mon Sep 17 00:00:00 2001 From: Martin Torp Date: Wed, 14 Jan 2026 13:21:50 +0100 Subject: [PATCH 1/4] disable analysis splitting by default --- CHANGELOG.md | 7 ++++++ package.json | 2 +- src/commands/ci/handle-ci.mts | 2 +- src/commands/cli.test.mts | 1 + src/commands/scan/cmd-scan-create.mts | 8 +++--- src/commands/scan/cmd-scan-create.test.mts | 2 +- src/commands/scan/cmd-scan-reach.mts | 6 +++-- src/commands/scan/cmd-scan-reach.test.mts | 25 ++++++++++++++++--- src/commands/scan/create-scan-from-github.mts | 2 +- .../scan/perform-reachability-analysis.mts | 8 +++--- src/commands/scan/reachability-flags.mts | 9 ++++++- 11 files changed, 55 insertions(+), 17 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 5eefc37ef..d96371a71 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -4,6 +4,13 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/). +## [1.1.58](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.58) - 2026-01-14 + +### Changed +- Analysis splitting is now disabled by default for reachability scans. +- Added `--reach-enable-analysis-splitting` flag to opt-in to multiple analysis runs per workspace when needed. +- Deprecated `--reach-disable-analysis-splitting` flag (now a no-op for backwards compatibility). + ## [1.1.57](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.57) - 2026-01-10 ### Changed diff --git a/package.json b/package.json index 5e84870c6..67787440d 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "socket", - "version": "1.1.57", + "version": "1.1.58", "description": "CLI for Socket.dev", "homepage": "https://github.com/SocketDev/socket-cli", "license": "MIT AND OFL-1.1", diff --git a/src/commands/ci/handle-ci.mts b/src/commands/ci/handle-ci.mts index dca8ff37d..3ae6e101e 100644 --- a/src/commands/ci/handle-ci.mts +++ b/src/commands/ci/handle-ci.mts @@ -55,8 +55,8 @@ export async function handleCi(autoManifest: boolean): Promise { reachAnalysisTimeout: 0, reachConcurrency: 1, reachDebug: false, - reachDisableAnalysisSplitting: false, reachDisableAnalytics: false, + reachEnableAnalysisSplitting: false, reachEcosystems: [], reachExcludePaths: [], reachLazyMode: false, diff --git a/src/commands/cli.test.mts b/src/commands/cli.test.mts index 245418f9a..efb6f3cf1 100755 --- a/src/commands/cli.test.mts +++ b/src/commands/cli.test.mts @@ -76,6 +76,7 @@ describe('socket root command', async () => { `) expect(`\n ${stderr}`).toMatchInlineSnapshot(` " + \\xd7 Received an unknown command: patch _____ _ _ /--------------- | __|___ ___| |_ ___| |_ | CLI: |__ | * | _| '_| -_| _| | token: , org: diff --git a/src/commands/scan/cmd-scan-create.mts b/src/commands/scan/cmd-scan-create.mts index 7c4f4f3fd..ab23f44a9 100644 --- a/src/commands/scan/cmd-scan-create.mts +++ b/src/commands/scan/cmd-scan-create.mts @@ -241,8 +241,9 @@ async function run( reachAnalysisTimeout, reachConcurrency, reachDebug, - reachDisableAnalysisSplitting, + reachDisableAnalysisSplitting: _reachDisableAnalysisSplitting, reachDisableAnalytics, + reachEnableAnalysisSplitting, reachLazyMode, reachSkipCache, reachUseOnlyPregeneratedSboms, @@ -274,6 +275,7 @@ async function run( reachDebug: boolean reachDisableAnalysisSplitting: boolean reachDisableAnalytics: boolean + reachEnableAnalysisSplitting: boolean reachLazyMode: boolean reachSkipCache: boolean reachUseOnlyPregeneratedSboms: boolean @@ -461,7 +463,7 @@ async function run( isUsingNonDefaultMemoryLimit || isUsingNonDefaultTimeout || isUsingNonDefaultVersion || - reachDisableAnalysisSplitting || + reachEnableAnalysisSplitting || reachLazyMode || reachSkipCache || reachUseOnlyPregeneratedSboms @@ -574,8 +576,8 @@ async function run( reachAnalysisTimeout: Number(reachAnalysisTimeout), reachConcurrency: Number(reachConcurrency), reachDebug: Boolean(reachDebug), - reachDisableAnalysisSplitting: Boolean(reachDisableAnalysisSplitting), reachDisableAnalytics: Boolean(reachDisableAnalytics), + reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting), reachEcosystems, reachExcludePaths, reachLazyMode: Boolean(reachLazyMode), diff --git a/src/commands/scan/cmd-scan-create.test.mts b/src/commands/scan/cmd-scan-create.test.mts index 4d4c00422..5a81a7213 100644 --- a/src/commands/scan/cmd-scan-create.test.mts +++ b/src/commands/scan/cmd-scan-create.test.mts @@ -58,9 +58,9 @@ describe('socket scan create', async () => { --reach-analysis-timeout Set timeout for the reachability analysis. Split analysis runs may cause the total scan time to exceed this timeout significantly. --reach-concurrency Set the maximum number of concurrent reachability analysis runs. It is recommended to choose a concurrency level that ensures each analysis run has at least the --reach-analysis-memory-limit amount of memory available. NPM reachability analysis does not support concurrent execution, so the concurrency level is ignored for NPM. --reach-debug Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI. - --reach-disable-analysis-splitting Limits Coana to at most 1 reachability analysis run per workspace. --reach-disable-analytics Disable reachability analytics sharing with Socket. Also disables caching-based optimizations. --reach-ecosystems List of ecosystems to conduct reachability analysis on, as either a comma separated value or as multiple flags. Defaults to all ecosystems. + --reach-enable-analysis-splitting Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default. --reach-exclude-paths List of paths to exclude from reachability analysis, as either a comma separated value or as multiple flags. --reach-skip-cache Skip caching-based optimizations. By default, the reachability analysis will use cached configurations from previous runs to speed up the analysis. --reach-use-only-pregenerated-sboms When using this option, the scan is created based only on pre-generated CDX and SPDX files in your project. diff --git a/src/commands/scan/cmd-scan-reach.mts b/src/commands/scan/cmd-scan-reach.mts index caa304e65..44ee790c6 100644 --- a/src/commands/scan/cmd-scan-reach.mts +++ b/src/commands/scan/cmd-scan-reach.mts @@ -125,8 +125,9 @@ async function run( reachAnalysisTimeout, reachConcurrency, reachDebug, - reachDisableAnalysisSplitting, + reachDisableAnalysisSplitting: _reachDisableAnalysisSplitting, reachDisableAnalytics, + reachEnableAnalysisSplitting, reachLazyMode, reachSkipCache, reachUseOnlyPregeneratedSboms, @@ -144,6 +145,7 @@ async function run( reachDebug: boolean reachDisableAnalysisSplitting: boolean reachDisableAnalytics: boolean + reachEnableAnalysisSplitting: boolean reachLazyMode: boolean reachSkipCache: boolean reachUseOnlyPregeneratedSboms: boolean @@ -262,8 +264,8 @@ async function run( reachAnalysisTimeout: Number(reachAnalysisTimeout), reachConcurrency: Number(reachConcurrency), reachDebug: Boolean(reachDebug), - reachDisableAnalysisSplitting: Boolean(reachDisableAnalysisSplitting), reachDisableAnalytics: Boolean(reachDisableAnalytics), + reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting), reachEcosystems, reachExcludePaths, reachLazyMode: Boolean(reachLazyMode), diff --git a/src/commands/scan/cmd-scan-reach.test.mts b/src/commands/scan/cmd-scan-reach.test.mts index b3cb1e4c8..59567748a 100644 --- a/src/commands/scan/cmd-scan-reach.test.mts +++ b/src/commands/scan/cmd-scan-reach.test.mts @@ -41,9 +41,9 @@ describe('socket scan reach', async () => { --reach-analysis-timeout Set timeout for the reachability analysis. Split analysis runs may cause the total scan time to exceed this timeout significantly. --reach-concurrency Set the maximum number of concurrent reachability analysis runs. It is recommended to choose a concurrency level that ensures each analysis run has at least the --reach-analysis-memory-limit amount of memory available. NPM reachability analysis does not support concurrent execution, so the concurrency level is ignored for NPM. --reach-debug Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI. - --reach-disable-analysis-splitting Limits Coana to at most 1 reachability analysis run per workspace. --reach-disable-analytics Disable reachability analytics sharing with Socket. Also disables caching-based optimizations. --reach-ecosystems List of ecosystems to conduct reachability analysis on, as either a comma separated value or as multiple flags. Defaults to all ecosystems. + --reach-enable-analysis-splitting Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default. --reach-exclude-paths List of paths to exclude from reachability analysis, as either a comma separated value or as multiple flags. --reach-skip-cache Skip caching-based optimizations. By default, the reachability analysis will use cached configurations from previous runs to speed up the analysis. --reach-use-only-pregenerated-sboms When using this option, the scan is created based only on pre-generated CDX and SPDX files in your project. @@ -195,7 +195,26 @@ describe('socket scan reach', async () => { FLAG_CONFIG, '{"apiToken":"fakeToken"}', ], - 'should accept --reach-disable-analysis-splitting flag', + 'should accept deprecated --reach-disable-analysis-splitting flag (noop)', + async cmd => { + const { code, stdout } = await spawnSocketCli(binCliPath, cmd) + expect(stdout).toMatchInlineSnapshot(`"[DryRun]: Bailing now"`) + expect(code, 'should exit with code 0').toBe(0) + }, + ) + + cmdit( + [ + 'scan', + 'reach', + FLAG_DRY_RUN, + '--reach-enable-analysis-splitting', + '--org', + 'fakeOrg', + FLAG_CONFIG, + '{"apiToken":"fakeToken"}', + ], + 'should accept --reach-enable-analysis-splitting flag', async cmd => { const { code, stdout } = await spawnSocketCli(binCliPath, cmd) expect(stdout).toMatchInlineSnapshot(`"[DryRun]: Bailing now"`) @@ -319,7 +338,7 @@ describe('socket scan reach', async () => { '3600', '--reach-concurrency', '2', - '--reach-disable-analysis-splitting', + '--reach-enable-analysis-splitting', '--reach-ecosystems', 'npm,pypi', '--reach-exclude-paths', diff --git a/src/commands/scan/create-scan-from-github.mts b/src/commands/scan/create-scan-from-github.mts index 933521ebb..9e866ca31 100644 --- a/src/commands/scan/create-scan-from-github.mts +++ b/src/commands/scan/create-scan-from-github.mts @@ -253,8 +253,8 @@ async function scanOneRepo( reachAnalysisTimeout: 0, reachConcurrency: 1, reachDebug: false, - reachDisableAnalysisSplitting: false, reachDisableAnalytics: false, + reachEnableAnalysisSplitting: false, reachEcosystems: [], reachExcludePaths: [], reachLazyMode: false, diff --git a/src/commands/scan/perform-reachability-analysis.mts b/src/commands/scan/perform-reachability-analysis.mts index ee71f5e4b..7f3c64296 100644 --- a/src/commands/scan/perform-reachability-analysis.mts +++ b/src/commands/scan/perform-reachability-analysis.mts @@ -18,7 +18,7 @@ export type ReachabilityOptions = { reachAnalysisTimeout: number reachConcurrency: number reachDebug: boolean - reachDisableAnalysisSplitting: boolean + reachEnableAnalysisSplitting: boolean reachDisableAnalytics: boolean reachEcosystems: PURL_Type[] reachExcludePaths: string[] @@ -175,9 +175,9 @@ export async function performReachabilityAnalysis( ...(reachabilityOptions.reachDisableAnalytics ? ['--disable-analytics-sharing'] : []), - ...(reachabilityOptions.reachDisableAnalysisSplitting - ? ['--disable-analysis-splitting'] - : []), + ...(reachabilityOptions.reachEnableAnalysisSplitting + ? [] + : ['--disable-analysis-splitting']), ...(tarHash ? ['--run-without-docker', '--manifests-tar-hash', tarHash] : []), diff --git a/src/commands/scan/reachability-flags.mts b/src/commands/scan/reachability-flags.mts index 0e9a348df..494ed54a8 100644 --- a/src/commands/scan/reachability-flags.mts +++ b/src/commands/scan/reachability-flags.mts @@ -38,10 +38,17 @@ export const reachabilityFlags: MeowFlags = { 'Disable reachability analytics sharing with Socket. Also disables caching-based optimizations.', }, reachDisableAnalysisSplitting: { + type: 'boolean', + default: false, + hidden: true, + description: + 'Deprecated: Analysis splitting is now disabled by default. This flag is a no-op.', + }, + reachEnableAnalysisSplitting: { type: 'boolean', default: false, description: - 'Limits Coana to at most 1 reachability analysis run per workspace.', + 'Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default.', }, reachEcosystems: { type: 'string', From 7f1178e7357c10d0eee987957e972ca3dc447fbe Mon Sep 17 00:00:00 2001 From: Martin Torp Date: Wed, 14 Jan 2026 15:42:31 +0100 Subject: [PATCH 2/4] add flag for printing the path to the detailed analysis log file --- src/commands/ci/handle-ci.mts | 3 ++- src/commands/scan/cmd-scan-create.mts | 5 ++++- src/commands/scan/cmd-scan-create.test.mts | 1 + src/commands/scan/cmd-scan-reach.mts | 5 ++++- src/commands/scan/cmd-scan-reach.test.mts | 1 + src/commands/scan/create-scan-from-github.mts | 3 ++- src/commands/scan/perform-reachability-analysis.mts | 6 +++++- src/commands/scan/reachability-flags.mts | 6 ++++++ 8 files changed, 25 insertions(+), 5 deletions(-) diff --git a/src/commands/ci/handle-ci.mts b/src/commands/ci/handle-ci.mts index 3ae6e101e..812785c7a 100644 --- a/src/commands/ci/handle-ci.mts +++ b/src/commands/ci/handle-ci.mts @@ -55,9 +55,10 @@ export async function handleCi(autoManifest: boolean): Promise { reachAnalysisTimeout: 0, reachConcurrency: 1, reachDebug: false, + reachDetailedAnalysisLogFile: false, reachDisableAnalytics: false, - reachEnableAnalysisSplitting: false, reachEcosystems: [], + reachEnableAnalysisSplitting: false, reachExcludePaths: [], reachLazyMode: false, reachSkipCache: false, diff --git a/src/commands/scan/cmd-scan-create.mts b/src/commands/scan/cmd-scan-create.mts index ab23f44a9..2251438bc 100644 --- a/src/commands/scan/cmd-scan-create.mts +++ b/src/commands/scan/cmd-scan-create.mts @@ -241,6 +241,7 @@ async function run( reachAnalysisTimeout, reachConcurrency, reachDebug, + reachDetailedAnalysisLogFile, reachDisableAnalysisSplitting: _reachDisableAnalysisSplitting, reachDisableAnalytics, reachEnableAnalysisSplitting, @@ -273,6 +274,7 @@ async function run( reachAnalysisTimeout: number reachConcurrency: number reachDebug: boolean + reachDetailedAnalysisLogFile: boolean reachDisableAnalysisSplitting: boolean reachDisableAnalytics: boolean reachEnableAnalysisSplitting: boolean @@ -576,9 +578,10 @@ async function run( reachAnalysisTimeout: Number(reachAnalysisTimeout), reachConcurrency: Number(reachConcurrency), reachDebug: Boolean(reachDebug), + reachDetailedAnalysisLogFile: Boolean(reachDetailedAnalysisLogFile), reachDisableAnalytics: Boolean(reachDisableAnalytics), - reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting), reachEcosystems, + reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting), reachExcludePaths, reachLazyMode: Boolean(reachLazyMode), reachSkipCache: Boolean(reachSkipCache), diff --git a/src/commands/scan/cmd-scan-create.test.mts b/src/commands/scan/cmd-scan-create.test.mts index 5a81a7213..46e82ce7e 100644 --- a/src/commands/scan/cmd-scan-create.test.mts +++ b/src/commands/scan/cmd-scan-create.test.mts @@ -58,6 +58,7 @@ describe('socket scan create', async () => { --reach-analysis-timeout Set timeout for the reachability analysis. Split analysis runs may cause the total scan time to exceed this timeout significantly. --reach-concurrency Set the maximum number of concurrent reachability analysis runs. It is recommended to choose a concurrency level that ensures each analysis run has at least the --reach-analysis-memory-limit amount of memory available. NPM reachability analysis does not support concurrent execution, so the concurrency level is ignored for NPM. --reach-debug Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI. + --reach-detailed-analysis-log-file A log file with detailed analysis logs is written to root of each analyzed workspace. --reach-disable-analytics Disable reachability analytics sharing with Socket. Also disables caching-based optimizations. --reach-ecosystems List of ecosystems to conduct reachability analysis on, as either a comma separated value or as multiple flags. Defaults to all ecosystems. --reach-enable-analysis-splitting Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default. diff --git a/src/commands/scan/cmd-scan-reach.mts b/src/commands/scan/cmd-scan-reach.mts index 44ee790c6..60350ca54 100644 --- a/src/commands/scan/cmd-scan-reach.mts +++ b/src/commands/scan/cmd-scan-reach.mts @@ -125,6 +125,7 @@ async function run( reachAnalysisTimeout, reachConcurrency, reachDebug, + reachDetailedAnalysisLogFile, reachDisableAnalysisSplitting: _reachDisableAnalysisSplitting, reachDisableAnalytics, reachEnableAnalysisSplitting, @@ -143,6 +144,7 @@ async function run( reachAnalysisTimeout: number reachConcurrency: number reachDebug: boolean + reachDetailedAnalysisLogFile: boolean reachDisableAnalysisSplitting: boolean reachDisableAnalytics: boolean reachEnableAnalysisSplitting: boolean @@ -264,9 +266,10 @@ async function run( reachAnalysisTimeout: Number(reachAnalysisTimeout), reachConcurrency: Number(reachConcurrency), reachDebug: Boolean(reachDebug), + reachDetailedAnalysisLogFile: Boolean(reachDetailedAnalysisLogFile), reachDisableAnalytics: Boolean(reachDisableAnalytics), - reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting), reachEcosystems, + reachEnableAnalysisSplitting: Boolean(reachEnableAnalysisSplitting), reachExcludePaths, reachLazyMode: Boolean(reachLazyMode), reachSkipCache: Boolean(reachSkipCache), diff --git a/src/commands/scan/cmd-scan-reach.test.mts b/src/commands/scan/cmd-scan-reach.test.mts index 59567748a..4bf538211 100644 --- a/src/commands/scan/cmd-scan-reach.test.mts +++ b/src/commands/scan/cmd-scan-reach.test.mts @@ -41,6 +41,7 @@ describe('socket scan reach', async () => { --reach-analysis-timeout Set timeout for the reachability analysis. Split analysis runs may cause the total scan time to exceed this timeout significantly. --reach-concurrency Set the maximum number of concurrent reachability analysis runs. It is recommended to choose a concurrency level that ensures each analysis run has at least the --reach-analysis-memory-limit amount of memory available. NPM reachability analysis does not support concurrent execution, so the concurrency level is ignored for NPM. --reach-debug Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI. + --reach-detailed-analysis-log-file A log file with detailed analysis logs is written to root of each analyzed workspace. --reach-disable-analytics Disable reachability analytics sharing with Socket. Also disables caching-based optimizations. --reach-ecosystems List of ecosystems to conduct reachability analysis on, as either a comma separated value or as multiple flags. Defaults to all ecosystems. --reach-enable-analysis-splitting Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default. diff --git a/src/commands/scan/create-scan-from-github.mts b/src/commands/scan/create-scan-from-github.mts index 9e866ca31..0012dd432 100644 --- a/src/commands/scan/create-scan-from-github.mts +++ b/src/commands/scan/create-scan-from-github.mts @@ -253,9 +253,10 @@ async function scanOneRepo( reachAnalysisTimeout: 0, reachConcurrency: 1, reachDebug: false, + reachDetailedAnalysisLogFile: false, reachDisableAnalytics: false, - reachEnableAnalysisSplitting: false, reachEcosystems: [], + reachEnableAnalysisSplitting: false, reachExcludePaths: [], reachLazyMode: false, reachSkipCache: false, diff --git a/src/commands/scan/perform-reachability-analysis.mts b/src/commands/scan/perform-reachability-analysis.mts index 7f3c64296..ba5bdcbbd 100644 --- a/src/commands/scan/perform-reachability-analysis.mts +++ b/src/commands/scan/perform-reachability-analysis.mts @@ -18,9 +18,10 @@ export type ReachabilityOptions = { reachAnalysisTimeout: number reachConcurrency: number reachDebug: boolean - reachEnableAnalysisSplitting: boolean + reachDetailedAnalysisLogFile: boolean reachDisableAnalytics: boolean reachEcosystems: PURL_Type[] + reachEnableAnalysisSplitting: boolean reachExcludePaths: string[] reachLazyMode: boolean reachSkipCache: boolean @@ -172,6 +173,9 @@ export async function performReachabilityAnalysis( ? ['--concurrency', `${reachabilityOptions.reachConcurrency}`] : []), ...(reachabilityOptions.reachDebug ? ['--debug'] : []), + ...(reachabilityOptions.reachDetailedAnalysisLogFile + ? ['--print-analysis-log-file'] + : []), ...(reachabilityOptions.reachDisableAnalytics ? ['--disable-analytics-sharing'] : []), diff --git a/src/commands/scan/reachability-flags.mts b/src/commands/scan/reachability-flags.mts index 494ed54a8..ecd2145f4 100644 --- a/src/commands/scan/reachability-flags.mts +++ b/src/commands/scan/reachability-flags.mts @@ -31,6 +31,12 @@ export const reachabilityFlags: MeowFlags = { description: 'Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI.', }, + reachDetailedAnalysisLogFile: { + type: 'boolean', + default: false, + description: + 'A log file with detailed analysis logs is written to root of each analyzed workspace.', + }, reachDisableAnalytics: { type: 'boolean', default: false, From 866c70f3b26e78fe2ae94e788a54f5a2729ba38b Mon Sep 17 00:00:00 2001 From: Martin Torp Date: Wed, 14 Jan 2026 16:14:12 +0100 Subject: [PATCH 3/4] update coana and CHANGELOG --- CHANGELOG.md | 2 ++ package.json | 2 +- pnpm-lock.yaml | 10 +++++----- 3 files changed, 8 insertions(+), 6 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index d96371a71..e650d0300 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -10,6 +10,8 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/). - Analysis splitting is now disabled by default for reachability scans. - Added `--reach-enable-analysis-splitting` flag to opt-in to multiple analysis runs per workspace when needed. - Deprecated `--reach-disable-analysis-splitting` flag (now a no-op for backwards compatibility). +- Updated the Coana CLI to v `14.12.154`. + ## [1.1.57](https://github.com/SocketDev/socket-cli/releases/tag/v1.1.57) - 2026-01-10 diff --git a/package.json b/package.json index 67787440d..d7fbcd8c6 100644 --- a/package.json +++ b/package.json @@ -94,7 +94,7 @@ "@babel/preset-typescript": "7.27.1", "@babel/runtime": "7.28.4", "@biomejs/biome": "2.2.4", - "@coana-tech/cli": "14.12.148", + "@coana-tech/cli": "14.12.154", "@cyclonedx/cdxgen": "11.11.0", "@dotenvx/dotenvx": "1.49.0", "@eslint/compat": "1.3.2", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 8524a5df3..0a634786b 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -124,8 +124,8 @@ importers: specifier: 2.2.4 version: 2.2.4 '@coana-tech/cli': - specifier: 14.12.148 - version: 14.12.148 + specifier: 14.12.154 + version: 14.12.154 '@cyclonedx/cdxgen': specifier: 11.11.0 version: 11.11.0 @@ -680,8 +680,8 @@ packages: '@bufbuild/protobuf@2.6.3': resolution: {integrity: sha512-w/gJKME9mYN7ZoUAmSMAWXk4hkVpxRKvEJCb3dV5g9wwWdxTJJ0ayOJAVcNxtdqaxDyFuC0uz4RSGVacJ030PQ==} - '@coana-tech/cli@14.12.148': - resolution: {integrity: sha512-UUUKFCa4KVpbuBrsyjK/bfgaP0ERSgPkA8BmklGxfjFGQKakTqQCW+OEQa4cJ4OWcmDFtGPNSO97jg0g2TcOIg==} + '@coana-tech/cli@14.12.154': + resolution: {integrity: sha512-cksXLHZjn1dxgggq6YadiD/o9XCtx7WBAxyKYHBG4o9ALa8g1FYQrItIqTLl2AAizJhmmwfDQkZhGJ+S+8mQyw==} hasBin: true '@colors/colors@1.5.0': @@ -5323,7 +5323,7 @@ snapshots: '@bufbuild/protobuf@2.6.3': optional: true - '@coana-tech/cli@14.12.148': {} + '@coana-tech/cli@14.12.154': {} '@colors/colors@1.5.0': optional: true From dffb9c4b2abda22f539b5eb2bee0763b1a21cc08 Mon Sep 17 00:00:00 2001 From: Martin Torp Date: Wed, 14 Jan 2026 16:55:37 +0100 Subject: [PATCH 4/4] revert changes to cli.test.mts --- src/commands/cli.test.mts | 1 - 1 file changed, 1 deletion(-) diff --git a/src/commands/cli.test.mts b/src/commands/cli.test.mts index efb6f3cf1..245418f9a 100755 --- a/src/commands/cli.test.mts +++ b/src/commands/cli.test.mts @@ -76,7 +76,6 @@ describe('socket root command', async () => { `) expect(`\n ${stderr}`).toMatchInlineSnapshot(` " - \\xd7 Received an unknown command: patch _____ _ _ /--------------- | __|___ ___| |_ ___| |_ | CLI: |__ | * | _| '_| -_| _| | token: , org: