diff --git a/socketsecurity/__init__.py b/socketsecurity/__init__.py index 6e9694e..ce3f018 100644 --- a/socketsecurity/__init__.py +++ b/socketsecurity/__init__.py @@ -1,2 +1,2 @@ __author__ = 'socket.dev' -__version__ = '1.0.44' +__version__ = '1.0.45' \ No newline at end of file diff --git a/socketsecurity/core/messages.py b/socketsecurity/core/messages.py index f914bb9..7ea6769 100644 --- a/socketsecurity/core/messages.py +++ b/socketsecurity/core/messages.py @@ -82,7 +82,8 @@ def find_line_in_file(packagename: str, packageversion: str, manifest_file: str) needle_key = f'"{found_key}":' # e.g. "node_modules/axios": needle_version = f'"version": "{packageversion}"' lines = raw_text.splitlines() - best_line = -1 + best_line = 1 + snippet = None for i, line in enumerate(lines, start=1): @@ -97,10 +98,10 @@ def find_line_in_file(packagename: str, packageversion: str, manifest_file: str) else: return 1, f'"{found_key}": {found_info}' else: - return -1, f"{packagename} {packageversion} (not found in {manifest_file})" + return 1, f"{packagename} {packageversion} (not found in {manifest_file})" except (FileNotFoundError, json.JSONDecodeError): - return -1, f"Error reading {manifest_file}" + return 1, f"Error reading {manifest_file}" # ---------------------------------------------------- # 2) Text-based / line-based manifests @@ -148,11 +149,11 @@ def find_line_in_file(packagename: str, packageversion: str, manifest_file: str) return line_number, line_content.strip() except FileNotFoundError: - return -1, f"{manifest_file} not found" + return 1, f"{manifest_file} not found" except Exception as e: - return -1, f"Error reading {manifest_file}: {e}" + return 1, f"Error reading {manifest_file}: {e}" - return -1, f"{packagename} {packageversion} (not found)" + return 1, f"{packagename} {packageversion} (not found)" @staticmethod def create_security_comment_sarif(diff: Diff) -> dict: