Upgrade 1.0.28 (#27)

* some changes required to properly upgrade to 1.0.27 that were missed in the previous PR

* upgrade to 1.0.28 + add Claude skill for making version changes

Author: mtorp

.claude/commands/bump-version.md

@@ -0,0 +1,35 @@
+Bump the project version. The bump type is: $ARGUMENTS (default to "patch" if empty or not one of: patch, minor, major).
+
+Follow these steps exactly:
+
+1. **Parse bump type**: Use "$ARGUMENTS". If blank or not one of `patch`, `minor`, `major`, default to `patch`.
+
+2. **Read current version**: Read `pyproject.toml` and extract the current version from the `version = "X.Y.Z"` line.
+
+3. **Compute new version**: Given current version `X.Y.Z`:
+   - `patch` → `X.Y.(Z+1)`
+   - `minor` → `X.(Y+1).0`
+   - `major` → `(X+1).0.0`
+
+4. **Update all version files**: Run the following Python command from the project root to invoke the existing hook logic, which updates `pyproject.toml`, `socket_basics/version.py`, and all doc files:
+   ```
+   python3 -c "import importlib.util; spec = importlib.util.spec_from_file_location('version_check', '.hooks/version-check.py'); mod = importlib.util.module_from_spec(spec); spec.loader.exec_module(mod); mod.inject_version('NEW_VERSION')"
+   ```
+   Replace `NEW_VERSION` with the computed version string.
+
+5. **Update `socket_basics/__init__.py`**: This file is NOT handled by the hook. Use the Edit tool to replace the old `__version__ = "OLD"` line with `__version__ = "NEW_VERSION"`.
+
+6. **Regenerate lock file**: Run `uv lock` to update `uv.lock` with the new version.
+
+7. **Verify**: Use grep to confirm no remaining references to the OLD version in these files:
+   - `pyproject.toml`
+   - `socket_basics/version.py`
+   - `socket_basics/__init__.py`
+   - `uv.lock`
+   - `README.md`
+   - `docs/github-action.md`
+   - `docs/pre-commit-hook.md`
+
+8. **Report**: Summarize what version was bumped (OLD → NEW) and list all files that were modified.
+
+Do NOT commit the changes. Just make the edits and report.

README.md

@@ -27,7 +27,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Run Socket Basics
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -112,7 +112,7 @@ Configure scanning policies, notification channels, and rule sets for your entir
 
 **Dashboard-Configured (Enterprise):**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   env:
     GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
   with:
@@ -123,7 +123,7 @@ Configure scanning policies, notification channels, and rule sets for your entir
 
 **CLI-Configured:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   env:
     GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
   with:
@@ -139,10 +139,10 @@ Configure scanning policies, notification channels, and rule sets for your entir
 
 ```bash
 # Build with version tag
-docker build -t socketdev/socket-basics:1.0.26 .
+docker build -t socketdev/socket-basics:1.0.28 .
 
 # Run scan
-docker run --rm -v "$PWD:/workspace" socketdev/socket-basics:1.0.26 \
+docker run --rm -v "$PWD:/workspace" socketdev/socket-basics:1.0.28 \
   --workspace /workspace \
   --python-sast-enabled \
   --secret-scanning-enabled \

docs/github-action.md

@@ -39,7 +39,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Run Socket Basics
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -79,7 +79,7 @@ Include these in your workflow's `jobs.<job_id>.permissions` section.
 
 **SAST (Static Analysis):**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     # Enable SAST for specific languages
@@ -93,7 +93,7 @@ Include these in your workflow's `jobs.<job_id>.permissions` section.
 
 **Secret Scanning:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     secret_scanning_enabled: 'true'
@@ -105,7 +105,7 @@ Include these in your workflow's `jobs.<job_id>.permissions` section.
 
 **Container Scanning:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     # Scan Docker images (auto-enables container scanning)
@@ -116,7 +116,7 @@ Include these in your workflow's `jobs.<job_id>.permissions` section.
 
 **Socket Tier 1 Reachability:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     socket_tier_1_enabled: 'true'
@@ -125,7 +125,7 @@ Include these in your workflow's `jobs.<job_id>.permissions` section.
 ### Output Configuration
 
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     python_sast_enabled: 'true'
@@ -155,7 +155,7 @@ Configure Socket Basics centrally from the [Socket Dashboard](https://socket.dev
 
 **Enable in workflow:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   env:
     GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
   with:
@@ -167,7 +167,7 @@ Configure Socket Basics centrally from the [Socket Dashboard](https://socket.dev
 
 > **Note:** You can also pass credentials using environment variables instead of the `with:` section:
 > ```yaml
-> - uses: SocketDev/socket-basics@1.0.26
+> - uses: SocketDev/socket-basics@1.0.28
 >   env:
 >     SOCKET_SECURITY_API_KEY: ${{ secrets.SOCKET_SECURITY_API_KEY }}
 >   with:
@@ -185,7 +185,7 @@ All notification integrations require Socket Enterprise.
 
 **Slack Notifications:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     socket_org: ${{ secrets.SOCKET_ORG }}
@@ -197,7 +197,7 @@ All notification integrations require Socket Enterprise.
 
 **Jira Issue Creation:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     socket_org: ${{ secrets.SOCKET_ORG }}
@@ -212,7 +212,7 @@ All notification integrations require Socket Enterprise.
 
 **Microsoft Teams:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     socket_org: ${{ secrets.SOCKET_ORG }}
@@ -224,7 +224,7 @@ All notification integrations require Socket Enterprise.
 
 **Generic Webhook:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     socket_org: ${{ secrets.SOCKET_ORG }}
@@ -236,7 +236,7 @@ All notification integrations require Socket Enterprise.
 
 **SIEM Integration:**
 ```yaml
-- uses: SocketDev/socket-basics@1.0.26
+- uses: SocketDev/socket-basics@1.0.28
   with:
     github_token: ${{ secrets.GITHUB_TOKEN }}
     socket_org: ${{ secrets.SOCKET_ORG }}
@@ -272,7 +272,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       
       - name: Run Socket Basics
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -318,7 +318,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       
       - name: Run Full Security Scan
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -369,10 +369,10 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       
       - name: Build Docker Image
-        run: docker build -t myapp:1.0.26:${{ github.sha }} .
+        run: docker build -t myapp:1.0.28:${{ github.sha }} .
       
       - name: Scan Container
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -435,7 +435,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Run Socket Basics
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -487,7 +487,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       
       - name: Run Socket Basics
-        uses: SocketDev/socket-basics@1.0.26
+        uses: SocketDev/socket-basics@1.0.28
         env:
           GITHUB_PR_NUMBER: ${{ github.event.pull_request.number || github.event.issue.number }}
         with:
@@ -580,7 +580,7 @@ env:
 ```yaml
 steps:
   - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - Must be first
-  - uses: SocketDev/socket-basics@1.0.26
+  - uses: SocketDev/socket-basics@1.0.28
 ```
 
 ### PR Comments Not Appearing