Fixed globbing for files that were unintentionally filtering out path… (

#143)

* Fixed globbing for files that were unintentionally filtering out paths that started with a dot

* Removed unused imports

Merge pull request #142 from SocketDev/fix-go-env

fix GOROOT when go is installed via apk

remove process timeout from reachability analysis (#141)

* remove process timeout from reachability analysis

* Fixing version for build

---------

Co-authored-by: Douglas Coburn <douglas@dactbc.com>

feat: add batched PURL endpoint calls and conditional license fetching (

#140)

* feat: add batched PURL endpoint calls and conditional license fetching

- Add --max-purl-batch-size flag (default: 5000, range: 1-9999) to control
  batch size for license detail API calls
- Skip PURL endpoint entirely when --generate-license is not set, improving
  performance for scans that don't need license attribution/details
- Implement batching in get_license_text_via_purl() to process packages in
  configurable chunks, preventing API overload on large repos
- Add validation for max_purl_batch_size parameter with clear error messages
- Remove unused check_full_scans_status() method (dead code cleanup)

This change optimizes license data retrieval by:
1. Only calling PURL endpoint when license output is actually needed
2. Processing packages in manageable batches to avoid timeouts/limits
3. Providing tunable batch sizes for different repo sizes

* Fixing --ignore-commit-files to properly work again

* properly included the enable diff param to the main module

* Adding NPM CLI to Dockerfile

Fixing hatch versioning (#139)

* Fixing hatch versioning

* Fixed typo in toml

* Fixing uv lock and testing hatch

Merge pull request #136 from SocketDev/ola/DAT-175-flter-out-ignored-…

…alerts

Merge pull request #136 from SocketDev/ola/DAT-175-flter-out-ignored-…

…alerts

finalize tier 1 reachability scans (#135)

* finalize tier 1 reachability scans such that the created full scan is associated with the tier 1 analytics

* Updated pyproject.toml to new SDK version. Updated readme with setting up pre commit environment

* Moved the Tier 1 reachability finalize logic to after the Full Scan instead of after the diff scan. This way if the diff scan fails for some reason the reachability status is still updated.

---------

Co-authored-by: Douglas Coburn <douglas@dactbc.com>

Doug/fix reachability engine cwd (#134)

* Changed variable from cwd to target_directory to ensure that the reachability engine writes the .socket.facts.json to the correct path

* Additional fix for CLI Path

 add support for workflow_dispatch to Github (#133)