@prodcycle/prodcycle 0.4.0 → 0.4.2

package/README.md

@@ -32,15 +32,21 @@ npm install @prodcycle/prodcycle
 
 ```bash
 # Scan current directory against SOC 2 and HIPAA
-prodcycle . --framework soc2,hipaa
+prodcycle scan . --framework soc2,hipaa
 
 # Output as SARIF for GitHub Code Scanning
-prodcycle . --framework soc2 --format sarif --output results.sarif
+prodcycle scan . --framework soc2 --format sarif --output results.sarif
 
 # Set severity threshold (only report HIGH and above)
-prodcycle . --framework hipaa --severity-threshold high
+prodcycle scan . --framework hipaa --severity-threshold high
+
+# Auto-configure compliance hooks/instructions for your coding agents
+# (Claude Code, Cursor, Codex, OpenCode, GitHub Copilot, Gemini CLI)
+prodcycle init --agent all
 ```
 
+Subcommands: `scan` (full repo scan), `gate` (JSON payload from stdin), `hook` (coding-agent post-edit hook), `init` (agent setup).
+
 ### Programmatic API
 
 ```typescript

package/dist/api-client.d.ts

@@ -21,6 +21,6 @@ export declare class ComplianceApiClient {
     private apiKey;
     constructor(apiUrl?: string, apiKey?: string);
     validate(files: Record<string, string>, frameworks: string[], options?: ScanOptions): Promise<any>;
-    hook(files: Record<string, string>, frameworks: string[]): Promise<any>;
+    hook(files: Record<string, string>, frameworks: string[], options?: ScanOptions): Promise<any>;
     private post;
 }

package/dist/api-client.js

@@ -22,10 +22,15 @@ class ComplianceApiClient {
             },
         });
     }
-    async hook(files, frameworks) {
+    async hook(files, frameworks, options = {}) {
         return this.post('/v1/compliance/hook', {
             files,
             frameworks,
+            options: {
+                severity_threshold: options.severityThreshold,
+                fail_on: options.failOn,
+                ...options.config,
+            },
         });
     }
     async post(endpoint, data) {

package/dist/cli.js

@@ -95,10 +95,21 @@ function parseList(val) {
         .filter(Boolean);
 }
 const program = new commander_1.Command();
+// Load version from package.json at runtime so CLI --version stays in sync with
+// the published package version without requiring a source edit per release.
+const PKG_VERSION = (() => {
+    try {
+        const pkgPath = path.join(__dirname, '..', 'package.json');
+        return JSON.parse(fs.readFileSync(pkgPath, 'utf-8')).version ?? '0.0.0';
+    }
+    catch {
+        return '0.0.0';
+    }
+})();
 program
     .name('prodcycle')
     .description('Multi-framework policy-as-code compliance scanner for infrastructure and application code.')
-    .version('0.4.0');
+    .version(PKG_VERSION);
 // ── scan ────────────────────────────────────────────────────────────────────
 program
     .command('scan [repo_path]')

package/dist/index.js

@@ -53,7 +53,7 @@ async function scan(params) {
 async function gate(options) {
     const { files, frameworks = ['soc2'], ...scanOpts } = options;
     const client = new api_client_1.ComplianceApiClient(options.apiUrl, options.apiKey);
-    const response = await client.hook(files, frameworks);
+    const response = await client.hook(files, frameworks, scanOpts);
     return {
         passed: response.passed,
         exitCode: response.passed ? 0 : 1,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@prodcycle/prodcycle",
-  "version": "0.4.0",
+  "version": "0.4.2",
   "description": "Multi-framework policy-as-code compliance scanner for infrastructure and application code.",
   "homepage": "https://docs.prodcycle.com",
   "repository": {