npm - @greenarmor/ges - Versions diffs - 1.3.0 → 1.4.1 - Mend

@greenarmor/ges 1.3.0 → 1.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/dist/cli.js +2 -0
package/dist/commands/audit.js +28 -19
package/dist/commands/doctor.js +48 -7
package/dist/commands/governance.d.ts +2 -0
package/dist/commands/governance.js +726 -0
package/dist/commands/init.js +35 -27
package/dist/commands/policy.js +14 -10
package/dist/commands/score.js +6 -2
package/dist/utils/next-steps.js +11 -6
package/dist/utils/prompts.d.ts +8 -0
package/dist/utils/prompts.js +62 -11
package/dist/utils/ui.d.ts +37 -0
package/dist/utils/ui.js +115 -0
package/package.json +18 -14

package/dist/cli.js CHANGED Viewed

@@ -17,6 +17,7 @@ import { controlCommand } from "./commands/control.js";
 import { fixCommand } from "./commands/fix.js";
 import { hooksCommand } from "./commands/hooks.js";
 import { dashboardCommand } from "./commands/dashboard.js";
+import { governanceCommand } from "./commands/governance.js";
 import { CLI_VERSION } from "./utils/version.js";
 const program = new Command();
 program
@@ -40,4 +41,5 @@ program.addCommand(controlCommand);
 program.addCommand(fixCommand);
 program.addCommand(hooksCommand);
 program.addCommand(dashboardCommand);
+program.addCommand(governanceCommand);
 program.parse();

package/dist/commands/audit.js CHANGED Viewed

@@ -5,6 +5,7 @@ import { getPacksForProjectType, getAllPacks } from "@greenarmor/ges-policy-engi
 import { generateScoreFile, formatScoreOutput } from "@greenarmor/ges-scoring-engine";
 import { runAudit, runAuditIncremental, deduplicateFindings } from "@greenarmor/ges-audit-engine";
 import { showNextStepsMenu } from "../utils/next-steps.js";
+import { banner, divider, blank, success, warn, info, severityBadge, BOLD, DIM, CYAN, RED, YELLOW, GRAY } from "../utils/ui.js";
 import * as fs from "node:fs";
 import * as path from "node:path";
 export const auditCommand = new Command("audit")
@@ -15,9 +16,10 @@ export const auditCommand = new Command("audit")
     .action(async (options) => {
     const root = ensureGESInitialized();
     const config = readJsonFile(path.join(root, ".ges", "config.json"));
-    console.log("\n  GESF Compliance Audit");
-    console.log("  ────────────────────\n");
-    console.log("  Scanning project files...");
+    if (!options.json) {
+        banner("GESF Compliance Audit", options.incremental ? "Incremental scan" : "Full project scan");
+        info("Scanning project files...");
+    }
     let rawFindings;
     let scannedFiles;
     if (options.incremental) {
@@ -27,16 +29,19 @@ export const auditCommand = new Command("audit")
         writeJsonFile(cachePath, result.newCache);
         rawFindings = result.findings;
         scannedFiles = result.scannedFiles;
-        console.log(`  Scanned ${scannedFiles} files (${result.changedFiles} changed)`);
+        if (!options.json)
+            success("Scan complete", `${scannedFiles} files (${result.changedFiles} changed)`);
     }
     else {
         const result = runAudit(root);
         rawFindings = result.findings;
         scannedFiles = result.scannedFiles;
-        console.log(`  Scanned ${scannedFiles} files`);
+        if (!options.json)
+            success("Scan complete", `${scannedFiles} files`);
     }
     const findings = deduplicateFindings(rawFindings);
-    console.log("");
+    if (!options.json)
+        blank();
     const configFrameworks = (config?.frameworks || ["GDPR", "OWASP"]);
     const projectPacks = getPacksForProjectType(config?.project_type || "generic-web-application");
     const packIds = new Set(projectPacks.map(p => p.id));
@@ -76,7 +81,8 @@ export const auditCommand = new Command("audit")
     if (overrides.length > 0) {
         const naCount = overrides.filter(o => o.status === "not-applicable").length;
         const passCount = overrides.filter(o => o.status === "pass").length;
-        console.log(`  Control overrides: ${naCount} not-applicable, ${passCount} pre-verified\n`);
+        if (!options.json)
+            info("Control overrides", `${naCount} not-applicable, ${passCount} pre-verified`);
     }
     if (options.json) {
         console.log(JSON.stringify({ findings, score: scoreData }, null, 2));
@@ -84,34 +90,37 @@ export const auditCommand = new Command("audit")
             process.exit(1);
         return;
     }
-    console.log("  ── Findings ─────────────────────\n");
-    console.log(`  Total findings: ${findings.length}`);
-    console.log(`  Critical: ${critical.length}  High: ${high.length}  Medium: ${medium.length}  Low: ${low.length}\n`);
+    console.log(`  ${BOLD("Findings")}`);
+    divider(40);
+    console.log(`  ${DIM("Total")}     ${findings.length}`);
+    console.log(`  ${RED(`Critical ${critical.length}`)}  ${RED(`High ${high.length}`)}  ${YELLOW(`Medium ${medium.length}`)}  ${CYAN(`Low ${low.length}`)}\n`);
     if (findings.length > 0) {
         const grouped = groupByCategory(findings);
         for (const [category, categoryFindings] of Object.entries(grouped)) {
-            console.log(`  [${category.toUpperCase()}]`);
+            console.log(`  ${BOLD(category.toUpperCase())}`);
             for (const f of categoryFindings.slice(0, 10)) {
-                const sev = f.severity === "critical" ? "CRIT" : f.severity === "high" ? "HIGH" : f.severity === "medium" ? "MED " : "LOW ";
-                const loc = f.file !== "project" ? ` (${f.file}${f.line ? ":" + f.line : ""})` : "";
-                console.log(`    [${sev}] ${f.title}${loc}`);
+                const loc = f.file !== "project" ? ` ${DIM(`(${f.file}${f.line ? ":" + f.line : ""})`)}` : "";
+                console.log(`    ${severityBadge(f.severity).padEnd(10)} ${f.title}${loc}`);
                 if (f.evidence && f.file !== "project") {
-                    console.log(`          ${f.evidence.slice(0, 100)}`);
+                    console.log(`          ${GRAY(f.evidence.slice(0, 100))}`);
                 }
             }
             if (categoryFindings.length > 10) {
-                console.log(`    ... and ${categoryFindings.length - 10} more`);
+                console.log(`    ${DIM(`... and ${categoryFindings.length - 10} more`)}`);
             }
             console.log("");
         }
     }
     else {
-        console.log("  ✓ No security or compliance issues found in source code.\n");
+        success("No security or compliance issues found in source code.");
+        blank();
     }
-    console.log("  ── Compliance Score ──────────────");
+    console.log(`  ${BOLD("Compliance Score")}`);
+    divider(40);
     console.log(formatScoreOutput(scoreData));
     if (critical.length > 0) {
-        console.log("  !! Critical issues must be resolved before deployment. !!\n");
+        warn("Critical issues must be resolved before deployment.");
+        blank();
     }
     recordActivity(root, {
         source: "cli",

package/dist/commands/doctor.js CHANGED Viewed

@@ -1,15 +1,15 @@
 import { Command } from "commander";
 import { findProjectRoot, readJsonFile } from "../utils/project.js";
 import { CLI_VERSION } from "../utils/version.js";
-import { GES_DIR } from "@greenarmor/ges-core";
+import { GES_DIR, loadGovernanceRecords, verifyGovernanceRecord } from "@greenarmor/ges-core";
 import { showNextStepsMenu } from "../utils/next-steps.js";
+import { banner, success, warn, error, blank, progressBar, BOLD, DIM, GREEN, RED, YELLOW } from "../utils/ui.js";
 import * as fs from "node:fs";
 import * as path from "node:path";
 export const doctorCommand = new Command("doctor")
     .description("Diagnose GESF configuration and health")
     .action(async () => {
-    console.log("\n  GESF Doctor - Diagnostic Check");
-    console.log("  ─────────────────────────────\n");
+    banner("GESF Doctor", "Diagnostic health check");
     const checks = [];
     const root = findProjectRoot();
     if (root) {
@@ -51,13 +51,54 @@ export const doctorCommand = new Command("doctor")
             checks.push({ name: "Project", status: "OK", detail: `${config.project_name} (${config.project_type})` });
             checks.push({ name: "Frameworks", status: "OK", detail: config.frameworks.join(", ") });
         }
+        const govRecords = loadGovernanceRecords(root);
+        if (govRecords.length > 0) {
+            let approved = 0;
+            let blockingIssues = 0;
+            let expiredApprovals = 0;
+            let missingReviewCycles = 0;
+            for (const record of govRecords) {
+                const verification = verifyGovernanceRecord(record);
+                if (verification.completeness.has_approval && record.approval && record.approval.decision === "approved")
+                    approved++;
+                if (verification.issues.length > 0)
+                    blockingIssues++;
+                if (verification.approval_status === "expired")
+                    expiredApprovals++;
+                if (!record.review_cycle)
+                    missingReviewCycles++;
+            }
+            checks.push({
+                name: "Governance records",
+                status: blockingIssues > 0 || expiredApprovals > 0 ? "WARN" : "OK",
+                detail: `${govRecords.length} record(s), ${approved} approved, ${blockingIssues} with blocking issues`,
+            });
+            if (expiredApprovals > 0) {
+                checks.push({ name: "Governance approvals", status: "WARN", detail: `${expiredApprovals} expired approval(s)` });
+            }
+            if (missingReviewCycles > 0) {
+                checks.push({ name: "Governance review cycles", status: "WARN", detail: `${missingReviewCycles} record(s) without review cycle` });
+            }
+        }
     }
     checks.push({ name: "GESF Version", status: "OK", detail: CLI_VERSION });
+    const okCount = checks.filter(c => c.status === "OK").length;
+    const warnCount = checks.filter(c => c.status === "WARN" || c.status === "MISSING").length;
+    const failCount = checks.filter(c => c.status === "FAIL").length;
+    console.log(`  ${BOLD("Health Score")}  ${progressBar(okCount, checks.length, 24)}`);
+    console.log(`  ${DIM("Checks")}        ${GREEN(`${okCount} ok`)}  ${YELLOW(`${warnCount} warn`)}  ${RED(`${failCount} fail`)}`);
+    blank();
     for (const check of checks) {
-        const icon = check.status === "OK" ? "✓" : check.status === "WARN" ? "!" : "✗";
-        const line = `  [${icon}] ${check.name}`;
-        console.log(line + (check.detail ? ` - ${check.detail}` : ""));
+        if (check.status === "OK") {
+            success(check.name, check.detail);
+        }
+        else if (check.status === "WARN" || check.status === "MISSING") {
+            warn(check.name, check.detail);
+        }
+        else {
+            error(check.name, check.detail);
+        }
     }
-    console.log("");
+    blank();
     await showNextStepsMenu("doctor");
 });

package/dist/commands/governance.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { Command } from "commander";
2	+ export declare const governanceCommand: Command;