Use even more requirements.json

Author: jdalton

requirements.json

@@ -24,6 +24,10 @@
       "quota": 100,
       "permissions": ["packages:list"]
     },
+    "optimize": {
+      "quota": 100,
+      "permissions": ["packages:list"]
+    },
     "organization:dependencies": {
       "quota": 1,
       "permissions": []

src/commands/analytics/cmd-analytics.mts

@@ -25,7 +25,7 @@ const hidden = false
 export const cmdAnalytics = {
   description,
   hidden,
-  run: run,
+  run,
 }
 
 async function run(

src/commands/config/cmd-config-auto.mts

@@ -17,6 +17,8 @@ import type { CliCommandConfig } from '../../utils/meow-with-subcommands.mts'
 
 const { DRY_RUN_BAILING_NOW } = constants
 
+export const CMD_NAME = 'auto'
+
 const description =
   'Automatically discover and set the correct value config item'
 
@@ -34,7 +36,7 @@ async function run(
   { parentName }: { parentName: string },
 ): Promise<void> {
   const config: CliCommandConfig = {
-    commandName: 'auto',
+    commandName: CMD_NAME,
     description,
     hidden,
     flags: {

src/commands/config/cmd-config-set.mts

@@ -17,6 +17,8 @@ import type { CliCommandConfig } from '../../utils/meow-with-subcommands.mts'
 
 const { DRY_RUN_BAILING_NOW } = constants
 
+export const CMD_NAME = 'set'
+
 const description = 'Update the value of a local CLI config item'
 
 const hidden = false
@@ -33,7 +35,7 @@ async function run(
   { parentName }: { parentName: string },
 ): Promise<void> {
   const config: CliCommandConfig = {
-    commandName: 'set',
+    commandName: CMD_NAME,
     description,
     hidden,
     flags: {

src/commands/config/cmd-config-unset.mts

@@ -17,6 +17,8 @@ import type { CliCommandConfig } from '../../utils/meow-with-subcommands.mts'
 
 const { DRY_RUN_BAILING_NOW } = constants
 
+export const CMD_NAME = 'unset'
+
 const description = 'Clear the value of a local CLI config item'
 
 const hidden = false
@@ -33,7 +35,7 @@ async function run(
   { parentName }: { parentName: string },
 ): Promise<void> {
   const config: CliCommandConfig = {
-    commandName: 'unset',
+    commandName: CMD_NAME,
     description,
     hidden,
     flags: {

src/commands/fix/cmd-fix.mts

@@ -13,7 +13,10 @@ import { checkCommandInput } from '../../utils/check-input.mts'
 import { cmdFlagValueToArray } from '../../utils/cmd.mts'
 import { getOutputKind } from '../../utils/get-output-kind.mts'
 import { meowOrExit } from '../../utils/meow-with-subcommands.mts'
-import { getFlagListOutput } from '../../utils/output-formatting.mts'
+import {
+  getFlagApiRequirementsOutput,
+  getFlagListOutput,
+} from '../../utils/output-formatting.mts'
 import { RangeStyles } from '../../utils/semver.mts'
 import { getDefaultOrgSlug } from '../ci/fetch-default-org-slug.mts'
 
@@ -22,74 +25,92 @@ import type { RangeStyle } from '../../utils/semver.mts'
 
 const { DRY_RUN_NOT_SAVING } = constants
 
+export const CMD_NAME = 'fix'
+
 const DEFAULT_LIMIT = 10
 
-const config: CliCommandConfig = {
-  commandName: 'fix',
-  description: 'Update dependencies with "fixable" Socket alerts',
-  hidden: false,
-  flags: {
-    ...commonFlags,
-    autoMerge: {
-      type: 'boolean',
-      default: false,
-      description: `Enable auto-merge for pull requests that Socket opens.\nSee ${terminalLink(
-        'GitHub documentation',
-        'https://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/configuring-pull-request-merges/managing-auto-merge-for-pull-requests-in-your-repository',
-      )} for managing auto-merge for pull requests in your repository.`,
-    },
-    autopilot: {
-      type: 'boolean',
-      default: false,
-      description: `Shorthand for --autoMerge --test`,
-    },
-    ghsa: {
-      type: 'string',
-      default: [],
-      description: `Provide a list of ${terminalLink(
-        'GHSA IDs',
-        'https://docs.github.com/en/code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/about-the-github-advisory-database#about-ghsa-ids',
-      )} to compute fixes for, as either a comma separated value or as multiple flags.\nUse '--ghsa all' to lookup all GHSA IDs and compute fixes for them.`,
-      isMultiple: true,
-      hidden: true,
-    },
-    limit: {
-      type: 'number',
-      default: DEFAULT_LIMIT,
-      description: `The number of fixes to attempt at a time (default ${DEFAULT_LIMIT})`,
-    },
-    maxSatisfying: {
-      type: 'boolean',
-      default: true,
-      description: 'Use the maximum satisfying version for dependency updates',
-      hidden: true,
-    },
-    minSatisfying: {
-      type: 'boolean',
-      default: false,
-      description:
-        'Constrain dependency updates to the minimum satisfying version',
-    },
-    prCheck: {
-      type: 'boolean',
-      default: true,
-      description: 'Check for an existing PR before attempting a fix',
-      hidden: true,
-    },
-    purl: {
-      type: 'string',
-      default: [],
-      description: `Provide a list of ${terminalLink(
-        'PURLs',
-        'https://github.com/package-url/purl-spec?tab=readme-ov-file#purl',
-      )} to compute fixes for, as either a comma separated value or as\nmultiple flags, instead of querying the Socket API`,
-      isMultiple: true,
-      shortFlag: 'p',
-    },
-    rangeStyle: {
-      type: 'string',
-      default: 'preserve',
-      description: `
+const description = 'Update dependencies with "fixable" Socket alerts'
+
+const hidden = false
+
+export const cmdFix = {
+  description,
+  hidden,
+  run,
+}
+
+async function run(
+  argv: string[] | readonly string[],
+  importMeta: ImportMeta,
+  { parentName }: { parentName: string },
+): Promise<void> {
+  const config: CliCommandConfig = {
+    commandName: CMD_NAME,
+    description,
+    hidden,
+    flags: {
+      ...commonFlags,
+      autoMerge: {
+        type: 'boolean',
+        default: false,
+        description: `Enable auto-merge for pull requests that Socket opens.\nSee ${terminalLink(
+          'GitHub documentation',
+          'https://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/configuring-pull-request-merges/managing-auto-merge-for-pull-requests-in-your-repository',
+        )} for managing auto-merge for pull requests in your repository.`,
+      },
+      autopilot: {
+        type: 'boolean',
+        default: false,
+        description: `Shorthand for --autoMerge --test`,
+      },
+      ghsa: {
+        type: 'string',
+        default: [],
+        description: `Provide a list of ${terminalLink(
+          'GHSA IDs',
+          'https://docs.github.com/en/code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/about-the-github-advisory-database#about-ghsa-ids',
+        )} to compute fixes for, as either a comma separated value or as multiple flags.\nUse '--ghsa all' to lookup all GHSA IDs and compute fixes for them.`,
+        isMultiple: true,
+        hidden: true,
+      },
+      limit: {
+        type: 'number',
+        default: DEFAULT_LIMIT,
+        description: `The number of fixes to attempt at a time (default ${DEFAULT_LIMIT})`,
+      },
+      maxSatisfying: {
+        type: 'boolean',
+        default: true,
+        description:
+          'Use the maximum satisfying version for dependency updates',
+        hidden: true,
+      },
+      minSatisfying: {
+        type: 'boolean',
+        default: false,
+        description:
+          'Constrain dependency updates to the minimum satisfying version',
+      },
+      prCheck: {
+        type: 'boolean',
+        default: true,
+        description: 'Check for an existing PR before attempting a fix',
+        hidden: true,
+      },
+      purl: {
+        type: 'string',
+        default: [],
+        description: `Provide a list of ${terminalLink(
+          'PURLs',
+          'https://github.com/package-url/purl-spec?tab=readme-ov-file#purl',
+        )} to compute fixes for, as either a comma separated value or as\nmultiple flags, instead of querying the Socket API`,
+        isMultiple: true,
+        shortFlag: 'p',
+      },
+      rangeStyle: {
+        type: 'string',
+        default: 'preserve',
+        description: `
 Define how dependency version ranges are updated in package.json (default 'preserve').
 Available styles:
   * caret - Use ^ range for compatible updates (e.g. ^1.2.3)
@@ -101,42 +122,34 @@ Available styles:
   * preserve - Retain the existing version range style as-is
   * tilde - Use ~ range for patch/minor updates (e.g. ~1.2.3)
       `.trim(),
+      },
+      test: {
+        type: 'boolean',
+        default: false,
+        description: 'Verify the fix by running unit tests',
+      },
+      testScript: {
+        type: 'string',
+        default: 'test',
+        description: "The test script to run for fix attempts (default 'test')",
+      },
     },
-    test: {
-      type: 'boolean',
-      default: false,
-      description: 'Verify the fix by running unit tests',
-    },
-    testScript: {
-      type: 'string',
-      default: 'test',
-      description: "The test script to run for fix attempts (default 'test')",
-    },
-  },
-  help: (command, config) => `
+    help: (command, config) => `
     Usage
       $ ${command} [options] [CWD=.]
 
+    API Token Requirements
+      ${getFlagApiRequirementsOutput(`${parentName}:${CMD_NAME}`)}
+
     Options
       ${getFlagListOutput(config.flags)}
 
     Examples
       $ ${command}
       $ ${command} ./proj/tree --autoMerge
-  `,
-}
-
-export const cmdFix = {
-  description: config.description,
-  hidden: config.hidden,
-  run,
-}
+    `,
+  }
 
-async function run(
-  argv: string[] | readonly string[],
-  importMeta: ImportMeta,
-  { parentName }: { parentName: string },
-): Promise<void> {
   const cli = meowOrExit({
     allowUnknownFlags: false,
     argv,

src/commands/fix/cmd-fix.test.mts

@@ -19,6 +19,10 @@ describe('socket fix', async () => {
           Usage
             $ socket fix [options] [CWD=.]
 
+          API Token Requirements
+            - Quota: 100 units
+            - Permissions: packages:list
+
           Options
             --auto-merge        Enable auto-merge for pull requests that Socket opens.
                                 See GitHub documentation (\\u200bhttps://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/configuring-pull-request-merges/managing-auto-merge-for-pull-requests-in-your-repository\\u200b) for managing auto-merge for pull requests in your repository.

src/commands/login/cmd-login.mts

@@ -33,7 +33,7 @@ async function run(
   { parentName }: { parentName: string },
 ): Promise<void> {
   const config: CliCommandConfig = {
-    commandName: 'login',
+    commandName: CMD_NAME,
     description,
     hidden,
     flags: {