-
Notifications
You must be signed in to change notification settings - Fork 44
Expand file tree
/
Copy pathreachability-flags.mts
More file actions
95 lines (93 loc) · 3.35 KB
/
reachability-flags.mts
File metadata and controls
95 lines (93 loc) · 3.35 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
import constants from '../../constants.mts'
import type { MeowFlags } from '../../flags.mts'
export const reachabilityFlags: MeowFlags = {
reachVersion: {
type: 'string',
description: `Override the version of @coana-tech/cli used for reachability analysis. Default: ${constants.ENV.INLINED_SOCKET_CLI_COANA_TECH_CLI_VERSION}.`,
},
reachAnalysisMemoryLimit: {
type: 'number',
default: 8192,
description:
'The maximum memory in MB to use for the reachability analysis. The default is 8192MB.',
},
reachAnalysisTimeout: {
type: 'number',
default: 0,
description:
'Set timeout for the reachability analysis. Split analysis runs may cause the total scan time to exceed this timeout significantly.',
},
reachConcurrency: {
type: 'number',
default: 1,
description:
'Set the maximum number of concurrent reachability analysis runs. It is recommended to choose a concurrency level that ensures each analysis run has at least the --reach-analysis-memory-limit amount of memory available. NPM reachability analysis does not support concurrent execution, so the concurrency level is ignored for NPM.',
},
reachDisableExternalToolChecks: {
type: 'boolean',
default: false,
description:
'Disable external tool checks during reachability analysis.',
},
reachDebug: {
type: 'boolean',
default: false,
description:
'Enable debug mode for reachability analysis. Provides verbose logging from the reachability CLI.',
},
reachDetailedAnalysisLogFile: {
type: 'boolean',
default: false,
description:
'A log file with detailed analysis logs is written to root of each analyzed workspace.',
},
reachDisableAnalytics: {
type: 'boolean',
default: false,
description:
'Disable reachability analytics sharing with Socket. Also disables caching-based optimizations.',
},
reachDisableAnalysisSplitting: {
type: 'boolean',
default: false,
hidden: true,
description:
'Deprecated: Analysis splitting is now disabled by default. This flag is a no-op.',
},
reachEnableAnalysisSplitting: {
type: 'boolean',
default: false,
description:
'Allow the reachability analysis to partition CVEs into buckets that are processed in separate analysis runs. May improve accuracy, but not recommended by default.',
},
reachEcosystems: {
type: 'string',
isMultiple: true,
description:
'List of ecosystems to conduct reachability analysis on, as either a comma separated value or as multiple flags. Defaults to all ecosystems.',
},
reachExcludePaths: {
type: 'string',
isMultiple: true,
description:
'List of paths to exclude from reachability analysis, as either a comma separated value or as multiple flags.',
},
reachLazyMode: {
type: 'boolean',
default: false,
description: 'Enable lazy mode for reachability analysis.',
hidden: true,
},
reachSkipCache: {
type: 'boolean',
default: false,
description:
'Skip caching-based optimizations. By default, the reachability analysis will use cached configurations from previous runs to speed up the analysis.',
},
reachUseOnlyPregeneratedSboms: {
type: 'boolean',
default: false,
description:
'When using this option, the scan is created based only on pre-generated CDX and SPDX files in your project.',
},
}