Skip to content

Commit c8c4e68

Browse files
jdaltonjdalton
committed
chore(deps): route packageurl-js external shim through -stable + catalog
Two cleanups to align socket-lib's @socketregistry/packageurl-js external shim with the fleet-wide stable-only catalog policy: 1. src/external/@socketregistry/packageurl-js.js: shim now does `require('@socketregistry/packageurl-js-stable')` instead of the canonical name. The stable alias resolves to the same npm package version; the rename makes the dep graph match the rest of the fleet (every other socket-lib import goes through -stable). 2. package.json: replace the direct version pin `"@socketregistry/packageurl-js": "1.4.2"` with the catalog reference `"@socketregistry/packageurl-js-stable": "catalog:"`. Same one-line consistency improvement applied to `@socketsecurity/lib-stable` and `@socketsecurity/sdk-stable` entries that were also direct `npm:<pkg>@<ver>` specs — all three now resolve through `catalog:` to the same workspace-level pin in pnpm-workspace.yaml. Centralizes version control in the catalog block; one edit there bumps all consumers. Verified: `pnpm install` succeeds, the shim's require resolves correctly (`PackageURL: function`), and the operations.test.mts suite passes (77/77, 26 skipped — pre-existing). edit.test.mts has 5 unrelated pre-existing failures from the earlier `pkgJsonToEditable` removal (commit f3b87a3); not in scope for this change.
1 parent ee9ed37 commit c8c4e68

3 files changed

Lines changed: 7 additions & 11 deletions

File tree

package.json

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -2295,11 +2295,10 @@
22952295
"@npmcli/promise-spawn": "8.0.3",
22962296
"@sinclair/typebox": "0.34.49",
22972297
"@socketregistry/is-unicode-supported": "1.0.5",
2298-
"@socketregistry/packageurl-js": "1.4.2",
2299-
"@socketregistry/packageurl-js-stable": "npm:@socketregistry/packageurl-js@1.4.2",
2298+
"@socketregistry/packageurl-js-stable": "catalog:",
23002299
"@socketregistry/yocto-spinner": "1.0.25",
2301-
"@socketsecurity/lib-stable": "npm:@socketsecurity/lib@5.28.0",
2302-
"@socketsecurity/sdk-stable": "npm:@socketsecurity/sdk@4.0.1",
2300+
"@socketsecurity/lib-stable": "catalog:",
2301+
"@socketsecurity/sdk-stable": "catalog:",
23032302
"@types/node": "24.9.2",
23042303
"@typescript/native-preview": "7.0.0-dev.20260415.1",
23052304
"@vitest/coverage-v8": "4.0.3",

pnpm-lock.yaml

Lines changed: 3 additions & 6 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

src/external/@socketregistry/packageurl-js.js

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,3 @@
11
'use strict'
22

3-
module.exports = require('@socketregistry/packageurl-js')
3+
module.exports = require('@socketregistry/packageurl-js-stable')

0 commit comments

Comments
 (0)