Since the API Changes to not accept unsupported files changed the temp scan file to be .socket.facts.json to pass the validator. Also, added the debug flag support to the reachability engine

dacoburn · dacoburn · commit 4db876ec19fe · 2025-11-21T07:38:11.000-08:00
diff --git a/pyproject.toml b/pyproject.toml
@@ -6,7 +6,7 @@ build-backend = "hatchling.build"
 
 [project]
 name = "socketsecurity"
-version = "2.2.33"
+version = "2.2.34"
 requires-python = ">= 3.10"
 license = {"file" = "LICENSE"}
 dependencies = [
diff --git a/socketsecurity/__init__.py b/socketsecurity/__init__.py
@@ -1,3 +1,3 @@
 __author__ = 'socket.dev'
-__version__ = '2.2.33'
+__version__ = '2.2.34'
 USER_AGENT = f'SocketPythonCLI/{__version__}'
diff --git a/socketsecurity/core/__init__.py b/socketsecurity/core/__init__.py
@@ -442,12 +442,13 @@ def empty_head_scan_file() -> List[str]:
         Returns:
             List containing path to a temporary empty file
         """
-        # Create a temporary empty file
-        temp_fd, temp_path = tempfile.mkstemp(suffix='.empty', prefix='socket_baseline_')
+        # Create a temporary directory and then create our specific filename
+        temp_dir = tempfile.gettempdir()
+        temp_path = os.path.join(temp_dir, '.socket.facts.json')
         
-        # Close the file descriptor since we just need the path
-        # The file is already created and empty
-        os.close(temp_fd)
+        # Create the empty file
+        with open(temp_path, 'w') as f:
+            pass  # Creates an empty file
         
         log.debug(f"Created temporary empty file for baseline scan: {temp_path}")
         return [temp_path]
diff --git a/socketsecurity/core/tools/reachability.py b/socketsecurity/core/tools/reachability.py
@@ -100,6 +100,7 @@ def run_reachability_analysis(
         concurrency: Optional[int] = None,
         additional_params: Optional[List[str]] = None,
         allow_unverified: bool = False,
+        enable_debug: bool = False,
     ) -> Dict[str, Any]:
         """
         Run reachability analysis.
@@ -123,6 +124,7 @@ def run_reachability_analysis(
             concurrency: Concurrency level for analysis (must be >= 1)
             additional_params: Additional parameters to pass to coana CLI
             allow_unverified: Disable SSL certificate verification (sets NODE_TLS_REJECT_UNAUTHORIZED=0)
+            enable_debug: Enable debug mode (passes -d flag to coana CLI)
             
         Returns:
             Dict containing scan_id and report_path
@@ -173,6 +175,9 @@ def run_reachability_analysis(
         if concurrency:
             cmd.extend(["--concurrency", str(concurrency)])
         
+        if enable_debug:
+            cmd.append("-d")
+        
         # Add any additional parameters provided by the user
         if additional_params:
             cmd.extend(additional_params)
diff --git a/socketsecurity/socketcli.py b/socketsecurity/socketcli.py
@@ -288,7 +288,8 @@ def main_code():
                     version=config.reach_version,
                     concurrency=config.reach_concurrency,
                     additional_params=config.reach_additional_params,
-                    allow_unverified=config.allow_unverified
+                    allow_unverified=config.allow_unverified,
+                    enable_debug=config.enable_debug
                 )
                 
                 log.info(f"Reachability analysis completed successfully")

Original file line number	Diff line number	Diff line change
`@@ -288,7 +288,8 @@ def main_code():`
`288`	`288`	`version=config.reach_version,`
`289`	`289`	`concurrency=config.reach_concurrency,`
`290`	`290`	`additional_params=config.reach_additional_params,`
`291`		`- allow_unverified=config.allow_unverified`
	`291`	`+ allow_unverified=config.allow_unverified,`
	`292`	`+ enable_debug=config.enable_debug`
`292`	`293`	`)`
`293`	`294`
`294`	`295`	`log.info(f"Reachability analysis completed successfully")`