SocketDev/socket-cli issues and pull requests

#898 - Use npm 11 for publishing in provenance workflow

Pull Request - State: closed - Opened by jdalton 3 months ago

#897 - Add dist-tag support to provenance workflow

Pull Request - State: closed - Opened by jdalton 3 months ago

#896 - Bump to v1.1.26

Pull Request - State: closed - Opened by jdalton 3 months ago

#895 - Log API requests/responses

Pull Request - State: closed - Opened by reberhardt7 3 months ago - 1 comment

#894 - bump lib-internal

Issue - State: open - Opened by bradmsmith 3 months ago - 1 comment

#893 - chore: remove brotli compression and pkg dependency

Pull Request - State: closed - Opened by jdalton 3 months ago

#892 - chore(cli): cleanup dead code and miscellaneous fixes

Pull Request - State: closed - Opened by jdalton 3 months ago

#891 - refactor(lib-internal): replace require() with ES module imports

Pull Request - State: closed - Opened by jdalton 3 months ago

#890 - fix(cli): use spawnNode for SEA compatibility

Pull Request - State: closed - Opened by jdalton 3 months ago

#889 - refactor(cli)!: remove shadow bins for pnpm and yarn

Pull Request - State: closed - Opened by jdalton 3 months ago

#827 - Add option --reach-min-severity to only run reachability analysis on …

Pull Request - State: closed - Opened by barslev 4 months ago - 1 comment

#811 - ensure the target directory is handled correctly by the reachability analysis

Pull Request - State: closed - Opened by mtorp 4 months ago - 1 comment

#797 - Socket Cli not able to find npm when running through volta

Issue - State: open - Opened by broksonic21 4 months ago - 1 comment
Labels: bug

#796 - Socket fix improvements

Pull Request - State: open - Opened by mtorp 4 months ago - 4 comments

#795 - add --output / -o option to override the default .socket.facts.json output file for socket scan reach

Pull Request - State: open - Opened by mtorp 4 months ago

#794 - fix bug where directory target were not handled according to the specification

Pull Request - State: open - Opened by mtorp 4 months ago

#793 - Socket npm timeout

Issue - State: open - Opened by chabb 4 months ago - 1 comment
Labels: question

#792 - Bump @pnpm/lockfile.detect-dep-types from 1001.0.13 to 1001.0.15

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 4 comments
Labels: dependencies, javascript

#791 - Bump lint-staged from 16.1.6 to 16.2.4

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 3 comments
Labels: dependencies, javascript

#790 - Bump @eslint/js from 9.35.0 to 9.37.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 3 comments
Labels: dependencies, javascript

#789 - Bump @npmcli/config from 10.4.0 to 10.4.2

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 3 comments
Labels: dependencies, javascript

#788 - Bump @npmcli/arborist from 9.1.4 to 9.1.6

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 3 comments
Labels: dependencies, javascript

#787 - fix: improve organization capabilities detection for plan variants

Pull Request - State: closed - Opened by dacoburn 4 months ago - 1 comment

#786 - Fix for GHSA-35jh-r3h4-6jhm

Pull Request - State: closed - Opened by github-actions[bot] 4 months ago

#784 - chore(deps-dev): bump taze from 19.6.0 to 19.7.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#783 - chore(deps-dev): bump knip from 5.63.1 to 5.64.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#782 - chore(deps-dev): bump eslint-plugin-unicorn from 56.0.1 to 61.0.2

Issue - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#781 - chore(deps-dev): bump @typescript/native-preview from 7.0.0-dev.20250926.1 to 7.0.0-dev.20250928.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#780 - chore(deps-dev): bump @eslint/compat from 1.3.2 to 1.4.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#779 - chore(deps-dev): bump @pnpm/dependency-path from 1001.1.0 to 1001.1.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#778 - chore(deps-dev): bump @dotenvx/dotenvx from 1.49.0 to 1.51.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#776 - chore(deps-dev): bump @npmcli/arborist from 9.1.4 to 9.1.5

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#775 - chore(deps-dev): bump lint-staged from 16.1.6 to 16.2.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, javascript

#774 - Fix for GHSA-cm22-4g7w-348p

Pull Request - State: open - Opened by github-actions[bot] 4 months ago

#772 - Fix for GHSA-9wv6-86v2-598j

Pull Request - State: open - Opened by github-actions[bot] 4 months ago

#771 - Bump @octokit/openapi-types from 25.1.0 to 26.0.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments
Labels: dependencies, javascript

#770 - Bump @pnpm/lockfile.fs from 1001.1.17 to 1001.1.19

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments
Labels: dependencies, javascript

#769 - Bump zod from 4.1.8 to 4.1.11

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments
Labels: dependencies, javascript

#768 - Bump oxlint from 1.15.0 to 1.18.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments
Labels: dependencies, javascript

#767 - Bump knip from 5.63.1 to 5.64.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments
Labels: dependencies, javascript

#766 - Bump lint-staged from 16.1.6 to 16.2.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#762 - Bump browserslist from 4.25.4 to 4.26.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#761 - Bump @pnpm/lockfile.detect-dep-types from 1001.0.13 to 1001.0.14

Pull Request - State: open - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#760 - No packages overridden by optimize due to backwards semver logic

Issue - State: open - Opened by Uniqen 5 months ago

#759 - fix(optimize): correct backwards semver check of node version

Pull Request - State: open - Opened by Uniqen 5 months ago

#759 - fix(optimize): correct backwards semver check of node version

Pull Request - State: open - Opened by Uniqen 5 months ago

#758 - Bump actions/upload-artifact from 4.3.0 to 4.6.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#757 - Bump actions/download-artifact from 4.1.1 to 5.0.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#755 - Fix for GHSA-qw6h-vgh9-j6wx

Pull Request - State: closed - Opened by github-actions[bot] 5 months ago - 2 comments

#754 - Fix for GHSA-rv95-896h-c2vc

Pull Request - State: open - Opened by github-actions[bot] 5 months ago

#753 - Fix for GHSA-pxg6-pf52-xh8x

Pull Request - State: open - Opened by github-actions[bot] 5 months ago

#751 - Fix for GHSA-wf5p-g6vw-rhxx

Pull Request - State: closed - Opened by github-actions[bot] 5 months ago - 2 comments

#750 - Fix for GHSA-4hjh-wcwx-xvwj

Pull Request - State: open - Opened by github-actions[bot] 5 months ago

#748 - Fix for GHSA-8hc4-vh64-cxmj

Pull Request - State: open - Opened by github-actions[bot] 5 months ago

#747 - add --no-major-updates and --show-affected-direct-dependencies flags to socket fix

Pull Request - State: closed - Opened by mtorp 5 months ago - 2 comments

#745 - [typo] usage json example

Pull Request - State: open - Opened by drew-u410 5 months ago

#744 - Barslev/add min release age option to socket fix

Pull Request - State: open - Opened by barslev 5 months ago

#743 - Rename `--dont-apply-fixes` to `--no-apply-fixes`

Pull Request - State: closed - Opened by mtorp 5 months ago

#743 - Rename `--dont-apply-fixes` to `--no-apply-fixes`

Pull Request - State: open - Opened by mtorp 5 months ago

#742 - Socket fix and repo name adjustments

Pull Request - State: open - Opened by mtorp 5 months ago

#742 - Socket fix and repo name adjustments

Pull Request - State: closed - Opened by mtorp 5 months ago - 2 comments

#741 - Fix for GHSA-76c9-3jph-rj3q

Pull Request - State: closed - Opened by github-actions[bot] 5 months ago

#739 - Barslev/output fixes results to json

Pull Request - State: closed - Opened by barslev 5 months ago - 1 comment

#739 - Barslev/output fixes results to json

Pull Request - State: closed - Opened by barslev 5 months ago - 1 comment

#738 - Fixes error reading .parsed of undefined

Pull Request - State: closed - Opened by barslev 5 months ago

#737 - Debug failing publish

Pull Request - State: closed - Opened by barslev 5 months ago

#737 - Debug failing publish

Pull Request - State: closed - Opened by barslev 5 months ago

#736 - Update publish npm package to use pnpm

Pull Request - State: open - Opened by barslev 5 months ago

#735 - Barslev/update socket sdk to 1 4 93

Pull Request - State: closed - Opened by barslev 5 months ago - 2 comments

#734 - Bump SocketDev/socket-cli from 35c25823d5247a8cd15628ef2d2062cd1c199544 to c9772a9b2ec3383fc1328d062da6fe29e33fe859

Pull Request - State: open - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

GitHub / SocketDev/socket-cli issues and pull requests