fix: missing prop from purl endpoint

Author: billxinli

.github/workflows/test.yml

@@ -29,6 +29,8 @@ jobs:
 
       - name: Setup Bun
         uses: oven-sh/setup-bun@22457c87c1b161cf7dde222c3e82b2b5f8d2bed2
+        with:
+          no-cache: true
 
       - name: Install dependencies
         run: bun install

src/index.ts

@@ -62,15 +62,15 @@ export const scanner: Bun.Security.Scanner = {
             for (const alert of artifact.alerts) {
               const description = ['']
 
-              if (alert.type === 'didYouMean') {
+              if (alert.type === 'didYouMean' && alert.props?.alternatePackage) {
                 description.push(`This package could be a typo-squatting attempt of another package (${alert.props.alternatePackage}).`)
               }
 
-              if (alert.props.description) {
+              if (alert.props?.description) {
                 description.push(alert.props.description)
               }
 
-              if (alert.props.note) {
+              if (alert.props?.note) {
                 description.push(alert.props.note)
               }
 

src/types.ts

@@ -5,7 +5,7 @@ export type SocketArtifact = {
   alerts: {
     action: 'error' | 'warn'
     type: string,
-    props: {
+    props?: {
       note?: string,
       didYouMean?: string,
     } & Record<string, any>