@getcodesentinel/codesentinel 1.9.0 → 1.9.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +10 -10
- package/dist/index.js +0 -4
- package/dist/index.js.map +1 -1
- package/package.json +1 -1
package/README.md
CHANGED
|
@@ -61,18 +61,18 @@ Or in package scripts:
|
|
|
61
61
|
}
|
|
62
62
|
```
|
|
63
63
|
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
```
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
--no-new-high-risk-deps
|
|
72
|
-
--max-new-hotspots 2 \
|
|
73
|
-
--fail-on error
|
|
64
|
+
CI example:
|
|
65
|
+
|
|
66
|
+
```yaml
|
|
67
|
+
- uses: actions/checkout@v4
|
|
68
|
+
with:
|
|
69
|
+
fetch-depth: 0
|
|
70
|
+
- name: Run CodeSentinel
|
|
71
|
+
run: npx codesentinel ci --baseline-ref auto --max-repo-score 55 --max-repo-delta 0.03 --no-new-cycles --no-new-high-risk-deps --max-new-hotspots 2 --fail-on error
|
|
74
72
|
```
|
|
75
73
|
|
|
74
|
+
`--baseline-ref auto` requires enough git history to resolve a baseline deterministically. In GitHub Actions, use `fetch-depth: 0`.
|
|
75
|
+
|
|
76
76
|
## Vision
|
|
77
77
|
|
|
78
78
|
CodeSentinel combines three signals into a single, explainable risk profile:
|
package/dist/index.js
CHANGED
|
@@ -5580,10 +5580,6 @@ program.command("ci").argument("[path]", "path to the project to analyze").addOp
|
|
|
5580
5580
|
);
|
|
5581
5581
|
if (options.report === void 0) {
|
|
5582
5582
|
process.stdout.write(`${result.markdownSummary}
|
|
5583
|
-
`);
|
|
5584
|
-
}
|
|
5585
|
-
if (options.jsonOutput === void 0) {
|
|
5586
|
-
process.stdout.write(`${JSON.stringify(result.machineReadable, null, 2)}
|
|
5587
5583
|
`);
|
|
5588
5584
|
}
|
|
5589
5585
|
process.exitCode = result.gateResult.exitCode;
|