@geenius/release-toolkit 0.10.0

package/package.json

@@ -0,0 +1,88 @@
+{
+  "name": "@geenius/release-toolkit",
+  "version": "0.10.0",
+  "description": "Centralized, opt-out-able release toolkit for every Geenius package and boilerplate. One canonical CLI (geenius-release) replaces the per-package supply-chain / license / SBOM / smoke-packed / gauntlet scripts.",
+  "type": "module",
+  "license": "FSL-1.1-Apache-2.0",
+  "author": "Mehdi Nabhani <mehdi@nabhani.com>",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/geenius-dev/geenius-release-toolkit"
+  },
+  "homepage": "https://docs.geenius.dev/packages/release-toolkit",
+  "bugs": "https://github.com/geenius-dev/geenius-release-toolkit/issues",
+  "keywords": [
+    "geenius",
+    "release",
+    "supply-chain",
+    "sbom",
+    "license",
+    "audit",
+    "gauntlet",
+    "dev-tools",
+    "cli"
+  ],
+  "engines": {
+    "node": ">=22.0.0"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "bin": {
+    "geenius-release": "./bin/geenius-release.js",
+    "geenius-release-toolkit": "./bin/geenius-release.js"
+  },
+  "files": [
+    "bin",
+    "dist",
+    "templates",
+    "README.md",
+    "CHANGELOG.md"
+  ],
+  "dependencies": {
+    "commander": "^14.0.3",
+    "picocolors": "^1.1.1",
+    "picomatch": "^4.0.4",
+    "zod": "^4.4.3"
+  },
+  "devDependencies": {
+    "@arethetypeswrong/cli": "^0.18.2",
+    "@biomejs/biome": "^2.4.15",
+    "@changesets/cli": "^2.31.0",
+    "@types/node": "^25.6.2",
+    "@types/picomatch": "^4.0.2",
+    "@vitest/coverage-v8": "^4.1.6",
+    "publint": "^0.3.21",
+    "tsup": "^8.5.1",
+    "typescript": "^6.0.3",
+    "vitest": "^4.1.6"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsup",
+    "clean": "rm -rf dist .eval",
+    "dev": "tsup --watch",
+    "lint": "biome check src bin __tests__ package.json biome.json tsconfig.json tsconfig.build.json tsup.config.ts vitest.config.ts --error-on-warnings",
+    "format": "biome format --write src bin __tests__",
+    "type-check": "tsc -p tsconfig.json --noEmit",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "test:coverage": "vitest run --coverage",
+    "test:unit": "vitest run __tests__/unit",
+    "test:integration": "vitest run __tests__/integration",
+    "audit:supply-chain": "geenius-release supply-chain && geenius-release sbom",
+    "audit:license": "geenius-release license",
+    "audit:manifest": "geenius-release manifest-contract",
+    "test:smoke-packed": "geenius-release smoke-packed",
+    "test:publint": "geenius-release publint",
+    "test:gauntlet": "pnpm build && geenius-release gauntlet"
+  }
+}

package/templates/husky/pre-push

@@ -0,0 +1,11 @@
+#!/usr/bin/env sh
+# Optional Geenius release-toolkit pre-push hook.
+# Runs the supply-chain audit before each push. Non-blocking by default —
+# remove the trailing `|| exit 0` to make findings block the push.
+#
+# Install:
+#   cp node_modules/@geenius/release-toolkit/templates/husky/pre-push .husky/pre-push
+#   chmod +x .husky/pre-push
+
+pnpm run audit:supply-chain --silent 2>/dev/null \
+  || { echo "supply-chain audit reported issues (non-blocking — see output above)"; exit 0; }