Skip to content

CHANGELOG.md

Latest commit

 

History

History
899 lines (539 loc) · 33.2 KB

CHANGELOG.md

File metadata and controls

899 lines (539 loc) · 33.2 KB

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog.

4.0.1 - 2026-04-14

Changed — build

  • Bundle @socketsecurity/lib and form-data into dist output, making the SDK a zero-runtime-dependency package
  • Stub heavy @socketsecurity/lib internals (npm-pack.js 2.5MB, pico-pack.js 260KB) and replace mime-db (212KB) with a minimal 3-entry lookup
  • dist/index.js: 3,897KB → 712KB (82% reduction)

Fixed

  • Strip Authorization header (case-insensitive) from public firewall API endpoint requests

4.0.0 - 2026-04-06

Breaking Changes

  • HTTP client refactored: All HTTP methods (createGetRequest, createDeleteRequest, createRequestWithJson, createUploadRequest) now return HttpResponse from @socketsecurity/lib/http-request instead of Node.js IncomingMessage
  • ResponseError.response: Changed from IncomingMessage to HttpResponse — access status via .status/.statusText instead of .statusCode/.statusMessage
  • Unified HTTP transport: File uploads now use httpRequest() from @socketsecurity/lib — eliminated the dual node:http/node:https + getResponse() stack
  • Trimmed public API surface: Removed internal helpers from the main entry point:
    • HTTP functions: createDeleteRequest, createGetRequest, createRequestWithJson, getErrorResponseBody, getResponseJson, isResponseOk, reshapeArtifactForPublicPolicy
    • File upload functions: createRequestBodyForFilepaths, createRequestBodyForJson, createUploadRequest
    • Utilities: calculateWordSetSimilarity, filterRedundantCause, normalizeBaseUrl, promiseWithResolvers, queryToSearchParams, resolveAbsPaths, resolveBasePath, shouldOmitReason
    • Constants: DEFAULT_USER_AGENT, httpAgentNames, publicPolicy
  • Removed exports: getHttpModule and getResponse are fully removed (not just from index)
  • Removed PromiseQueue: The PromiseQueue class has been removed entirely
  • Removed getSupportedScanFiles(): Deprecated since 2023-01-15 — use getSupportedFiles() instead
  • Removed http2-wrapper type dependency: Agent type now uses ClientHttp2Session from native node:http2

Changed

  • Migrated HTTP internals to @socketsecurity/lib/http-request (httpRequest), reducing code duplication and consolidating response handling
  • Retry logic improved: all 4xx client errors now bail immediately (previously only 401/403)
  • New audit log action types: CreateFirewallCustomRegistry, CreateFirewallDeploymentConfig, DeleteFirewallCustomRegistry, DeleteFirewallDeploymentConfig, UpdateFirewallCustomRegistry, UpdateFirewallDeploymentConfig

3.5.0 - 2026-04-03

Added

  • checkMalware: New API method for normalized malware detection across public and org tokens
    • Public tokens use the firewall API with client-side publicPolicy filtering
    • Org tokens use the batch PURL API with full server-assigned org policy
    • Both paths return the same normalized MalwareCheckResult shape
  • New exported types: MalwareCheckAlert, MalwareCheckPackage, MalwareCheckResult, MalwareCheckScore
  • New audit log action types: CreateTicket, DisconnectJiraIntegration, JiraIntegrationConnected
  • New alert-resolution permission scope (list, create, read, delete)
  • New workspace parameter for createOrgFullScan package entries
  • New SocketSBOMScore schema for supply chain risk score breakdowns with formulas and components
  • New skillPreExecution alert type and policy action
  • Full scan include_scores and include_scores_details query parameters with scores ndjson event
  • Batch PURL timeoutSec parameter for scan result timeout control

3.4.1 - 2026-03-12

Changed

  • Synced OpenAPI type definitions with latest API specification
    • Improved documentation for Org Triage API query parameters and request fields
  • Updated @socketsecurity/lib to v5.8.1

3.4.0 - 2026-03-11

Added

  • listRepositories: New workspace query parameter to filter repositories by workspace (when provided, only repos in that workspace are returned)
  • New audit log action types for OAuth refresh tokens and repository access rules:
    • CreateOauthRefreshToken - Track OAuth refresh token creation
    • RotateOauthRefreshToken - Track OAuth refresh token rotation
    • CreateRepoAccessRule - Track repository access rule creation
    • UpdateRepoAccessRule - Track repository access rule updates
    • DeleteRepoAccessRule - Track repository access rule deletion

Changed

  • Synced OpenAPI type definitions with latest API specification

3.3.1 - 2026-03-03

Changed

  • createRepository: Now requires repoSlug as second parameter with typed options including workspace, visibility, homepage, archived, default_branch, and description

Added

  • New API endpoints from OpenAPI sync: CSV/PDF export for full scans, delete triage alerts, new alert types

3.3.0 - 2026-01-25

Added

  • New SDK convenience methods for OpenAPI v3.3.0 endpoints:
    • batchOrgPackageFetch(orgSlug, components, options) - Organization-scoped PURL batch lookup with security policy label support
    • exportOpenVEX(orgSlug, id, options) - Export vulnerability exploitability data as OpenVEX v0.2.0 documents (includes patch data and reachability analysis)
    • getOrgAlertFullScans(orgSlug, options) - List full scans associated with specific alerts
    • rescanFullScan(orgSlug, fullScanId, options) - Rescan existing full scans with shallow (policy reapplication) or deep (dependency resolution rerun) modes
  • Repository endpoints now support optional workspace parameter for workspace-scoped operations:
    • createRepository(orgSlug, params, { workspace })
    • deleteRepository(orgSlug, repoSlug, { workspace })
    • getRepository(orgSlug, repoSlug, { workspace })
    • updateRepository(orgSlug, repoSlug, params, { workspace })

Changed

  • Updated @socketsecurity/lib to v5.5.3
  • TypeScript: Auto-generated strict types from OpenAPI schema for improved type safety
  • TypeScript: All optional properties now explicitly include | undefined for better null checking
  • Synced OpenAPI type definitions with latest API specification

3.2.0 - 2025-12-08

Added

  • New API methods:
    • getOrgTelemetryConfig() - Get organization telemetry configuration
    • updateOrgTelemetryConfig() - Update organization telemetry configuration
    • getOrgWebhooksList() - List organization webhooks
    • createOrgWebhook() - Create organization webhook
    • getOrgWebhook() - Get organization webhook details
    • updateOrgWebhook() - Update organization webhook
    • deleteOrgWebhook() - Delete organization webhook
    • getOrgAlertsList() - List organization alerts
    • getOrgFixes() - Get available vulnerability fixes for repositories or scans
    • createOrgFullScanFromArchive() - Create full scan from archive file (.tar, .tar.gz/.tgz, or .zip)
    • downloadOrgFullScanFilesAsTar() - Download full scan files as tarball to local filesystem
  • Per-endpoint TTL configuration: cacheTtl option accepts object with endpoint-specific TTL values (e.g., { default: 300_000, getIssues: 600_000 })
  • Request/response logging: hooks option with onRequest(info) and onResponse(info) callbacks for debugging and monitoring
  • PURL batch processing: cachedResultsOnly query parameter (return only cached results, skip new scans) and summary query parameter (include summary with counts of malformed, resolved, and not found PURLs) in batchPackageFetch() and batchPackageStream()
  • UTF-8 filename support: uploadManifestFiles(), createFullScan(), createDependenciesSnapshot(), and createOrgFullScanFromArchive() automatically handle international filenames (Japanese, Cyrillic, emoji, and other UTF-8 characters)

Changed

  • Updated @socketsecurity/lib to v5.0.0
  • Synced with OpenAPI definition

3.1.3 - 2025-11-04

Fixed

  • Updated OpenAPI type generation script to automatically preserve SDK v3 method name aliases during automated syncs

Changed

  • Updated @socketsecurity/lib to v3.2.4

3.1.2 - 2025-11-02

Fixed

  • Add type aliases in operations interface to map SDK v3 method names to OpenAPI operation names for TypeScript compatibility
  • Update FileValidationCallback to use createFullScan instead of createOrgFullScan

3.1.1 - 2025-11-02

Fixed

  • Use standard .js extension for CommonJS output instead of .mjs
  • Remove "type": "module" from package.json to properly indicate CommonJS format

3.1.0 - 2025-11-02

Fixed

  • Changed SDK output format from ESM to CJS to resolve Node.js built-in module bundling issues when bundling CJS dependencies into ESM output
  • SDK now correctly handles @socketsecurity/lib bundling without creating broken __require() wrappers that caused "Dynamic require of 'async_hooks' is not supported" errors in isolated environments

3.0.31 - 2025-11-02

Added

  • Bundle dependencies validation to prevent link: dependencies in production

Fixed

  • Build process now correctly bundles @socketsecurity/lib instead of marking it as external

Changed

  • Updated @socketsecurity/lib to v3.1.3
  • Updated @socketregistry/packageurl-js to v1.3.5

3.0.30 - 2025-11-01

Added

  • Validation guard against link: dependencies in package.json
  • Pre-commit and pre-push hooks for development workflow

Fixed

  • Build output now uses relative paths instead of absolute paths for better portability

Changed

  • Updated @socketsecurity/lib to v3.0.6
  • Updated @socketregistry/packageurl-js to v1.3.3

3.0.29 - 2025-11-01

Changed

  • Moved @socketsecurity/lib and @socketregistry/packageurl-js to devDependencies (bundled SDK has no runtime dependencies)

3.0.28 - 2025-11-01

Changed

  • Updated @socketsecurity/lib to v3.0.3

3.0.27 - 2025-10-31

Changed

  • Updated @socketsecurity/lib to v2.10.4

3.0.26 - 2025-10-31

Changed

  • Updated @socketsecurity/lib to v2.10.3

3.0.25 - 2025-10-31

Changed

  • Updated @socketsecurity/lib to v2.10.2

3.0.24 - 2025-10-31

Changed

  • Updated @socketsecurity/lib to v2.10.1

3.0.23 - 2025-10-30

Changed

  • Updated @socketsecurity/lib to v2.10.0

3.0.22 - 2025-10-30

Changed

  • Updated @socketsecurity/lib to v2.9.1

3.0.21 - 2025-10-30

Changed

  • Consolidated Socket.dev URL constants (SOCKET_CONTACT_URL, SOCKET_DASHBOARD_URL, SOCKET_API_TOKENS_URL) to use standardized exports from @socketsecurity/lib instead of duplicating them locally

3.0.20 - 2025-10-30

Changed

  • Updated @socketsecurity/lib to v2.9.0

3.0.19 - 2025-10-30

Changed

  • Updated @socketsecurity/lib to v2.8.4

3.0.18 - 2025-10-30

Changed

  • Updated @socketsecurity/lib to v2.8.3

3.0.17 - 2025-10-29

Changed

  • Updated @socketsecurity/lib to v2.8.2

3.0.16 - 2025-10-29

Changed

  • Updated OpenAPI types with new alert filtering capabilities:
    • Added github_installation_id query parameter to diff scan endpoints for GitHub installation-specific settings
    • Added KEV (Known Exploited Vulnerability) filter support (filters.alertKEV)
    • Added EPSS (Exploit Prediction Scoring System) severity filter support (filters.alertEPSS)
    • Updated aggregation fields to include alertKEV and alertEPSS options

3.0.15 - 2025-10-29

Changed

  • Updated @socketsecurity/lib to v2.8.1

3.0.14 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.7.0

3.0.13 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.6.0

3.0.12 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.5.0

3.0.11 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.4.0

3.0.10 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.3.0

3.0.9 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.2.0

3.0.8 - 2025-10-28

Changed

  • Updated @socketsecurity/lib to v2.1.0

3.0.7 - 2025-10-27

Changed

  • Updated @socketsecurity/lib to v2.0.0
  • Added comprehensive getting started guide

3.0.6 - 2025-10-24

Fixed

  • Externalized @socketsecurity/lib dependency to prevent dynamic require errors in bundled applications

Changed

  • Updated @socketsecurity/lib to v1.3.3

3.0.5 - 2025-10-24

Fixed

  • Cleanup package.json files entries

3.0.4 - 2025-10-24

Fixed

  • Include .mjs files in published npm package to fix import errors

3.0.3 - 2025-10-24

Fixed

  • Updated @socketsecurity/lib to v1.3.2 to fix broken v1.3.1 release

3.0.2 - 2025-10-24

Fixed

  • Upgraded @socketsecurity/lib to v1.3.1 to resolve dependency compatibility issue

3.0.1 - 2025-10-23

Fixed

  • Export FileValidationCallback and FileValidationResult types for consumers implementing file validation callbacks

3.0.0 - 2025-10-23

⚠️ BREAKING CHANGES

Removed Deprecated Methods

The following methods mapped to deprecated /report/* backend endpoints and have been removed:

  • createScan() - Use createFullScan() instead
  • deleteScan() - Use deleteFullScan() instead
  • getScan() - Use getFullScan() instead
  • listScans() - Use listFullScans() instead

Method Renames (Following REST Conventions)

Full Scans (Modern API):

  • getOrgFullScanList()listFullScans() with ListFullScansOptions
  • createOrgFullScan()createFullScan() with CreateFullScanOptions
  • getOrgFullScanBuffered()getFullScan()
  • deleteOrgFullScan()deleteFullScan()
  • streamOrgFullScan()streamFullScan() with StreamFullScanOptions
  • getOrgFullScanMetadata()getFullScanMetadata()

Organizations:

  • getOrganizations()listOrganizations()

Repositories:

  • getOrgRepoList()listRepositories() with ListRepositoriesOptions
  • getOrgRepo()getRepository()
  • createOrgRepo()createRepository()
  • updateOrgRepo()updateRepository()
  • deleteOrgRepo()deleteRepository()

Type System Improvements

Strict types now mark guaranteed API fields as required instead of optional, improving IntelliSense autocomplete.

Added

  • File Validation Callback: New onFileValidation option in SocketSdkOptions allows customizing error handling when unreadable files are detected. File-upload methods (uploadManifestFiles(), createFullScan(), createDependenciesSnapshot()) now automatically validate file readability, preventing ENOENT errors from Yarn Berry PnP virtual filesystems and pnpm symlink issues.

Changed

  • File-upload methods automatically skip unreadable files with warnings instead of failing

2.0.7 - 2025-10-22

Changed

  • Sync with openapi definition

2.0.6 - 2025-10-22

Fixed

  • TypeScript lint compliance for array type syntax in SocketSdkArrayElement type helper

2.0.5 - 2025-10-22

Added

  • SocketSdkData<T> type helper for extracting data from SDK operation results
  • SocketSdkArrayElement<T, K> type helper for extracting array element types from SDK operations

2.0.4 - 2025-10-22

Added

  • Support for Retry-After header in rate limit responses (HTTP 429)
    • Automatically respects server-specified retry delays
    • Parses both delay-seconds (numeric) and HTTP-date formats
    • Uses server delay instead of exponential backoff when available

2.0.3 - 2025-10-22

Fixed

  • Improved TypeScript module resolution with explicit type exports instead of wildcard re-exports

2.0.2 - 2025-10-22

Fixed

  • Ensured expected dist/ files are produced and refined package.json exports

2.0.1 - 2025-10-21

Changed

  • Use @socketsecurity/lib under the hood
  • Synced OpenAPI type definitions with latest API specification
    • Added documentation for scan_type query parameter on manifest upload endpoint (used for categorizing multiple SBOM heads per repository branch)
    • Improved TypeScript helper types (OpReturnType, OpErrorType) for better type inference and error handling

2.0.0 - 2025-10-10

Changed

  • BREAKING: Migrated to ESM-only module format
    • Package is now ESM-only ("type": "module" in package.json)
    • All output files use .mjs extension for JavaScript
    • TypeScript declaration files use .d.mts extension
    • CommonJS (require()) is no longer supported
  • Simplified build process for ESM-only output
  • Updated TypeScript configuration to use ESM module resolution
  • Improved code splitting for better tree-shaking with ESM

Removed

  • BREAKING: Removed CommonJS support and exports
  • Removed CommonJS-specific build configurations

Migration Guide

To migrate from v1.x to v2.0:

  1. Ensure your project supports ESM modules (Node.js 14+ with "type": "module" or .mjs extensions)

  2. Update imports from CommonJS require() to ESM import statements:

    // Before (v1.x)
const { SocketSdk } = require('@socketsecurity/sdk')

// After (v2.0)
import { SocketSdk } from '@socketsecurity/sdk'

  3. If your project still requires CommonJS, consider staying on v1.x or using a transpiler

1.11.2 - 2025-10-07

Fixed

  • Fixed typos in requirements.json
  • Updated @socketsecurity/registry to fix bugs related to inlined runtime-dependent expressions

1.11.1 - 2025-10-06

Added

  • Performance optimizations with memoization for normalizeBaseUrl and quota utility functions
  • Performance tracking to HTTP client functions
  • Comprehensive error handling tests for SDK methods across organization, scanning, and batch APIs
  • Reusable assertion helpers for SDK tests

Changed

  • Improved test coverage and reliability with additional test cases
  • Streamlined documentation (README, TESTING.md, QUOTA.md, EXAMPLES.md) for better clarity and discoverability

1.11.0 - 2025-10-04

Added

  • Optional TTL caching for API responses with configurable cache duration
  • New cache option (default: false) to enable response caching
  • New cacheTtl option (default: 5 minutes) to customize cache duration

1.10.1 - 2025-10-04

Added

  • Automatic retry with exponential backoff to all HTTP API calls for improved reliability on transient failures

1.10.0 - 2025-10-04

Added

  • Added PromiseQueue utility for controlled concurrency in async operations
  • HTTP retry logic with exponential backoff for improved reliability on transient failures
  • Added option type interfaces: CreateDependenciesSnapshotOptions, CreateOrgFullScanOptions, CreateScanFromFilepathsOptions, StreamOrgFullScanOptions, UploadManifestFilesOptions

Changed

  • BREAKING: Refactored SDK methods to use options objects instead of positional parameters for better API clarity:
    • createDependenciesSnapshot(filepaths, options) - replaced repo and branch positional parameters with options object
    • createOrgFullScan(orgSlug, filepaths, options) - replaced positional parameters with options object
    • createScanFromFilepaths(filepaths, options) - replaced positional parameters with options object
    • streamOrgFullScan(orgSlug, fullScanId, options) - replaced positional parameters with options object
    • uploadManifestFiles(orgSlug, filepaths, options) - replaced positional parameters with options object
  • Improved type safety by replacing any types with unknown or never where appropriate
  • Enhanced code style with numeric separators for better readability of large numbers
  • Improved coverage reporting accuracy with c8 ignore comments
  • Updated @socketsecurity/registry dependency to 1.4.0

Fixed

  • Fixed import assertion syntax for JSON imports to use standard import syntax
  • Fixed HTTP retry test mocks to correctly match PUT method requests
  • Fixed critical issues in type handling and URL search parameter conversions

1.9.2 - 2025-10-04

Changed

  • Improved TypeScript type definitions - All optional properties now include explicit | undefined type annotations for better type narrowing and null safety

1.9.1 - 2025-10-03

Changed

  • Disabled TypeScript declaration map generation to reduce package size

1.9.0 - 2025-10-03

Changed

  • BREAKING: Improved SocketSdkResult type compatibility - success and error results now have symmetric properties (data, error, cause) with explicit undefined types for better TypeScript narrowing
  • BREAKING: Removed CResult type (CLI-specific) in favor of SDK-appropriate SocketSdkGenericResult type for getApi() and sendApi() methods
  • Updated getApi() and sendApi() to use SocketSdkGenericResult with consistent HTTP status codes instead of CLI exit codes
  • All result types now use success discriminant with status (HTTP code), data, error, and cause properties on both branches

Migration Guide

  • If using getApi() or sendApi() with throws: false, update from CResult to SocketSdkGenericResult
  • Change .ok checks to .success
  • Change .code to .status (now contains HTTP status code)
  • Change .message to .error
  • Both success and error branches now have all properties - check discriminant first with if (result.success)

1.8.6 - 2025-10-02

Changed

  • Reduced package size by excluding source map files (.js.map) from published package

1.8.5 - 2025-10-02

Changed

  • Synced with OpenAPI definition
  • Added new /openapi.json endpoint for retrieving API specification in JSON format
  • Updated repo label filter descriptions to document empty string ("") usage for repositories with no labels
  • Added 'dual' threat category type

1.8.4 - 2025-10-01

Fixed

  • Fixed registry constant import paths to use correct casing (SOCKET_PUBLIC_API_TOKEN, UNKNOWN_ERROR)

1.8.3 - 2025-09-30

Changed

  • Synced with OpenAPI definition

1.8.2 - 2025-09-29

Fixed

  • Fixed publishing workflow to ensure dist folder is built before npm publish
  • Changed prepublishOnly script to prevent accidental local publishing

1.8.1 - 2025-09-29

Changed

  • Update test infrastructure and build configuration

1.8.0 - 2025-09-27

Added

  • Quota utility functions for API cost management in quota-utils.ts
  • New exported functions: checkQuota, formatQuotaReport, getEstimatedCost, getMethodCost, getQuotaSummary, isWithinQuota
  • Example files demonstrating quota usage patterns

Changed

  • Improved error handling for quota utilities

1.7.0 - 2025-09-26

Added

  • getApi method for raw GET requests with configurable response handling
  • sendApi method for POST/PUT requests with JSON body support
  • CResult type pattern for non-throwing API operations
  • CustomResponseType type export for response type options
  • Support for custom response types (response, text, json) in getApi
  • Enhanced error handling with detailed error context from error.details field
  • Socket API error.details parsing for richer error information
  • getEntitlements method for retrieving organization entitlements
  • getEnabledEntitlements method for getting enabled entitlement keys
  • viewPatch method for retrieving patch details by UUID
  • streamPatchesFromScan method for streaming patches from scan results
  • Entitlement and EntitlementsResponse types for entitlements API
  • PatchFile, Vulnerability, SecurityAlert, PatchRecord, PatchViewResponse, and ArtifactPatches types for patches API
  • Support for NDJSON streaming responses in patches API
  • Comprehensive test coverage improvements (484 total tests, 99.92% line coverage, 99.39% branch coverage)
  • Enhanced error handling tests for JSON parsing edge cases in streaming
  • Additional coverage tests for invalid JSON line handling in NDJSON streams

Changed

  • Improved error message formatting and JSON parsing error handling
  • Enhanced type safety with better generic constraints
  • Renamed option types to GetOptions and SendOptions for consistency
  • Reorganized test files into focused, functionality-based modules
  • Raised coverage thresholds to match achieved levels (100% statements, functions, lines)
  • Removed duplicate tests while maintaining coverage integrity
  • Renamed getIssuesByNPMPackage to getIssuesByNpmPackage for consistent naming convention
  • Improved method alphabetical ordering in source code
  • Enhanced test coverage from 99.77% to 99.92% line coverage
  • Improved branch coverage from 99.08% to 99.39%

1.6.1 - 2025-09-24

Changed

  • Updated to use trusted publisher for npm package provenance

1.6.0 - 2025-09-24

Changed

  • BREAKING: Converted to single CommonJS export type, removing dual ESM/CJS support

1.5.1 - 2025-09-24

Fixed

  • Added missing setup-script to provenance workflow

1.5.0 - 2025-09-23

Added

  • getOrgFullScanBuffered method for buffered full scan retrieval

Changed

  • BREAKING: Renamed getOrgFullScan to streamOrgFullScan for clarity

Fixed

  • Added missing getResponseJson call to createScanFromFilepaths
  • Improved handling of empty response bodies

1.4.93 - 2025-09-15

Fixed

  • Fixed malformed part header issue for upload of manifest files

1.4.91 - 2025-09-11

Changed

  • Improved URL handling

1.4.90 - 2025-09-11

Fixed

  • Improved error handling

1.4.84 - 2025-09-03

Added

  • Filter alerts by action

Changed

  • Improved JSON parsing

1.4.82 - 2025-09-02

Changed

  • Improved public policy handling

1.4.81 - 2025-09-02

Added

  • Add public security policy support

1.4.79 - 2025-08-27

Fixed

  • Fixed ESM module compatibility

1.4.77 - 2025-08-25

Added

  • Add timeout option for API requests

1.4.73 - 2025-08-08

Fixed

  • Fixed crates ecosystem support

1.4.72 - 2025-08-08

Fixed

  • Fixed rubygems ecosystem support

1.4.71 - 2025-08-08

Added

  • Support for crate and rubygem ecosystems

1.4.68 - 2025-08-02

Changed

  • Improved type definitions
  • Memory usage optimizations

1.4.66 - 2025-07-29

Fixed

  • Fixed file upload timing issue
  • Fixed multipart form data formatting

1.4.64 - 2025-07-22

Changed

  • Improved method signatures

1.4.62 - 2025-07-21

Fixed

  • Fixed query parameter handling for empty values

1.4.61 - 2025-07-21

Changed

  • Improved query parameter normalization

1.4.60 - 2025-07-21

Changed

  • Renamed result type for clarity

1.4.59 - 2025-07-20

Added

  • Add alias types for improved developer experience

1.4.0 - 2025-05-01

Added

  • Full scans feature support
  • Audit log and repos features
  • Organization security policy support (getOrgSecurityPolicy)

Changed

  • Improved TypeScript type exports
  • Enhanced ESM and CJS dual package support

1.3.0 - 2025-03-01

Added

  • Support for multiple ecosystem types
  • Enhanced error handling and reporting

Changed

  • Improved API client architecture
  • Better TypeScript type definitions

1.2.0 - 2025-01-15

Added

  • File upload support for manifest files
  • Request body creation for file paths

Changed

  • Enhanced multipart form data handling
  • Improved streaming support

1.1.0 - 2024-11-01

Added

  • Query parameter normalization
  • Enhanced search parameter handling

Changed

  • Improved URL parsing and handling
  • Better error messages

1.0.0 - 2024-09-01

Added

  • Initial release of Socket SDK for JavaScript
  • Full Socket API client implementation
  • TypeScript support with comprehensive type definitions
  • Dual ESM/CJS package support