From 96d0a95d1778086a10834ef23fe7e3cd7451dc6f Mon Sep 17 00:00:00 2001 From: jdalton Date: Wed, 5 Nov 2025 14:53:08 -0500 Subject: [PATCH 1/2] refactor(scripts): remove unused SHA256 checksum generation from compress-cli The .bz.sha256 checksum file was generated but never used by the runtime or build process. Removes SHA256 generation to align with cli-with-sentry implementation and avoid creating unnecessary dist artifacts. --- packages/cli/scripts/compress-cli.mjs | 9 --------- 1 file changed, 9 deletions(-) diff --git a/packages/cli/scripts/compress-cli.mjs b/packages/cli/scripts/compress-cli.mjs index f9106ff04..af9fae085 100644 --- a/packages/cli/scripts/compress-cli.mjs +++ b/packages/cli/scripts/compress-cli.mjs @@ -7,7 +7,6 @@ * The compressed file is decompressed at runtime by dist/index.js. */ -import crypto from 'node:crypto' import { mkdirSync, readFileSync, writeFileSync } from 'node:fs' import path from 'node:path' import { fileURLToPath } from 'node:url' @@ -50,12 +49,4 @@ logger.success( `Compressed: ${(originalSize / 1024 / 1024).toFixed(2)} MB → ${(compressedSize / 1024 / 1024).toFixed(2)} MB (${compressionRatio}% reduction)`, ) -// Generate SHA256 checksum for integrity validation. -const sha256 = crypto.createHash('sha256').update(compressed).digest('hex') -const checksumPath = path.join(distPath, 'cli.js.bz.sha256') -writeFileSync(checksumPath, `${sha256} cli.js.bz\n`) - -logger.success(`SHA256: ${sha256}`) -logger.log(`Checksum written to: ${path.relative(rootPath, checksumPath)}`) - logger.log('') From 820402f7fec4a5e46181959cfad5215769fbbf37 Mon Sep 17 00:00:00 2001 From: jdalton Date: Wed, 5 Nov 2025 14:53:59 -0500 Subject: [PATCH 2/2] chore(deps): update @socketsecurity/lib to 3.2.8 Updates socket-lib dependency from 3.2.6 to 3.2.8 in the workspace catalog. --- pnpm-lock.yaml | 56 ++++++++++++++++++++++----------------------- pnpm-workspace.yaml | 2 +- 2 files changed, 29 insertions(+), 29 deletions(-) diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 0e4c956d9..04222d2f7 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -331,7 +331,7 @@ catalogs: overrides: '@octokit/graphql': 9.0.1 '@octokit/request-error': 7.0.0 - '@socketsecurity/lib': 3.2.6 + '@socketsecurity/lib': 3.2.8 aggregate-error: npm:@socketregistry/aggregate-error@^1.0.15 ansi-regex: 6.1.0 brace-expansion: 2.0.2 @@ -489,8 +489,8 @@ importers: specifier: 'catalog:' version: 3.0.1 '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) '@socketsecurity/registry': specifier: 'catalog:' version: 2.0.2(typescript@5.9.3) @@ -723,8 +723,8 @@ importers: specifier: workspace:* version: link:../cli '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) del-cli: specifier: 'catalog:' version: 6.0.0 @@ -747,8 +747,8 @@ importers: specifier: 'catalog:' version: 7.28.4 '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) magic-string: specifier: 'catalog:' version: 0.30.19 @@ -777,8 +777,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) ajv-dist: specifier: 'catalog:' version: 8.17.1 @@ -819,8 +819,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) packages/minilm-builder: dependencies: @@ -828,8 +828,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) packages/models: dependencies: @@ -837,8 +837,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) packages/node-sea-builder: dependencies: @@ -865,8 +865,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) devDependencies: vitest: specifier: 'catalog:' @@ -878,8 +878,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) packages/sbom-generator: dependencies: @@ -887,8 +887,8 @@ importers: specifier: 'catalog:' version: 2.2.5 '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) '@yarnpkg/parsers': specifier: 'catalog:' version: 3.0.3 @@ -906,8 +906,8 @@ importers: packages/socket: devDependencies: '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) esbuild: specifier: 'catalog:' version: 0.25.11 @@ -959,8 +959,8 @@ importers: specifier: workspace:* version: link:../build-infra '@socketsecurity/lib': - specifier: 3.2.6 - version: 3.2.6(typescript@5.9.3) + specifier: 3.2.8 + version: 3.2.8(typescript@5.9.3) packages: @@ -2529,8 +2529,8 @@ packages: resolution: {integrity: sha512-kLKdSqi4W7SDSm5z+wYnfVRnZCVhxzbzuKcdOZSrcHoEGOT4Gl844uzoaML+f5eiQMxY+nISiETwRph/aXrIaQ==} engines: {node: 18.20.7 || ^20.18.3 || >=22.14.0} - '@socketsecurity/lib@3.2.6': - resolution: {integrity: sha512-tip5YLkt1cUtqYUao+7E3T8HTcyIaWfJ8Ap3eVgmTBKTEE65qBTIExa69290StVlkuZc8BlHNuNAcp0FF9XvCQ==} + '@socketsecurity/lib@3.2.8': + resolution: {integrity: sha512-fGUwZUYmgnzZ2ayyQCh5PspTydjRAqP3Dpzk5dm5KOicjOeMAcT/x8XtaVkFqilCGsbzMoBTag8qWfODtfrxAQ==} engines: {node: '>=22'} peerDependencies: typescript: '>=5.0.0' @@ -7754,7 +7754,7 @@ snapshots: pony-cause: 2.1.11 yaml: 2.8.1 - '@socketsecurity/lib@3.2.6(typescript@5.9.3)': + '@socketsecurity/lib@3.2.8(typescript@5.9.3)': optionalDependencies: typescript: 5.9.3 diff --git a/pnpm-workspace.yaml b/pnpm-workspace.yaml index 3d7019c63..66887ea5e 100644 --- a/pnpm-workspace.yaml +++ b/pnpm-workspace.yaml @@ -39,7 +39,7 @@ catalog: '@socketregistry/packageurl-js': 1.3.5 '@socketregistry/yocto-spinner': 1.0.25 '@socketsecurity/config': 3.0.1 - '@socketsecurity/lib': 3.2.6 + '@socketsecurity/lib': 3.2.8 '@socketsecurity/registry': 2.0.2 '@socketsecurity/sdk': 3.1.3 '@types/cmd-shim': 5.0.2