npm - @chainpatrol/cli - Versions diffs - 0.3.0 → 0.3.1 - Mend

@chainpatrol/cli 0.3.0 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/CHANGELOG.md +63 -0
package/package.json +8 -8

package/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,63 @@
+# @chainpatrol/cli
+## 0.3.1
+### Patch Changes
+- ea3c3dc: Switch the release pipeline from `changeset publish` to
+  `yarn workspaces foreach -A --no-private npm publish --tolerate-republish`
+  followed by `changeset tag`. `yarn npm publish` expands Yarn 4's
+  `catalog:` and `workspace:` protocols to concrete versions at pack time,
+  so the published `package.json` no longer leaks `"react": "catalog:"`
+  and `"zod": "catalog:"` (which npm cannot resolve — `npm i -g
+@chainpatrol/cli` was previously failing with `EUNSUPPORTEDPROTOCOL`).
+  `--tolerate-republish` makes the publish step idempotent on re-runs.
+  `changeset tag` continues to create per-package git tags after a
+  successful publish, so the rest of the release flow (and tag-driven
+  workflows like extension uploads) is unchanged.
+## 0.3.0
+### Minor Changes
+- fb27d31: Add version awareness to the CLI, plus an Organization HealthCheck Guide
+  in the Claude Code skill:
+  - Skill now includes an Organization HealthCheck Guide walking through the
+    full detection → reviewing → blocklisting → takedowns pipeline, so the
+    assistant can proactively look for what may be wrong for a given org
+    (config gaps, detection spikes/drops, review backlogs, auto-approve
+    spikes, Google Safe Browsing errors, stuck or cancelled takedowns,
+    automated takedowns disabled for too long, etc.). Skill description
+    expanded so phrasings like "org healthcheck", "audit my org", or
+    "what's wrong with org X" trigger the skill.
+  - Embed a `version` field in the Claude Code skill frontmatter (matches the
+    CLI package version) so the installed skill can be diffed against the
+    bundled one.
+  - On every command, run two lightweight version checks (skill freshness +
+    npm registry freshness) in parallel with the command, and print a one-line
+    stderr nudge if either is out of date. First-time users with no skill
+    installed are prompted to run `chainpatrol setup`.
+  - The npm check is throttled to once per 24 hours, capped at a 1.5s timeout,
+    and skipped in JSON / quiet modes. Set `CHAINPATROL_NO_UPDATE_CHECK=1` to
+    silence both checks.
+  - Fix the `--version` flag to read from `package.json` (was hardcoded to
+    `0.1.0`).
+## 0.2.2
+### Patch Changes
+- bump patch to test publishing workflow
+## 0.2.1
+### Patch Changes
+- bump ink version
+## 0.2.0
+### Minor Changes
+- 32986bf: Various improvements and fixes to the ChainPatrol CLI.

package/package.json CHANGED Viewed

@@ -2,7 +2,7 @@
   "name": "@chainpatrol/cli",
   "description": "The official ChainPatrol CLI — terminal interface for threat detection",
   "author": "Umar Ahmed <umar@chainpatrol.io>",
-  "version": "0.3.0",
+  "version": "0.3.1",
   "license": "UNLICENSED",
   "homepage": "https://chainpatrol.com/docs/cli",
   "keywords": [
@@ -36,16 +36,16 @@
     "ink": "^7.0.1",
     "meow": "^14.1.0",
     "open": "^11.0.0",
-    "react": "catalog:",
-    "zod": "catalog:"
+    "react": "^19.2.4",
+    "zod": "^3.25.76"
   },
   "devDependencies": {
-    "@types/react": "catalog:",
+    "@types/react": "^19.2.7",
     "ink-testing-library": "^4.0.0",
     "msw": "^2.0.0",
     "tsup": "^8.5.0",
-    "tsx": "catalog:",
-    "typescript": "catalog:",
-    "vitest": "catalog:"
+    "tsx": "^4.19.4",
+    "typescript": "6.0.2",
+    "vitest": "^3.2.4"
   }
-}
+}