@safedep/pmg 0.9.0 → 0.10.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (2) hide show
  1. package/README.md +25 -19
  2. package/package.json +1 -1
package/README.md CHANGED
@@ -1,47 +1,50 @@
1
- # PMG - Package Manager Guard
1
+ <div align="center">
2
+ <img src="https://raw.githubusercontent.com/safedep/pmg/main/docs/assets/pmg-banner.png" alt="PMG banner">
3
+ </div>
2
4
 
5
+ # Package Manager Guard (PMG)
3
6
 
4
- 🤖 PMG protects developers from getting compromised by malicious open source packages.
7
+ PMG intercepts package installs and checks them for malware before code executes. Install it once, and your usual package manager workflows can stay the same.
5
8
 
6
- This is the npm distribution of PMG, a tool that wraps your favorite package manager (e.g., `npm`) and blocks malicious packages at install time.
9
+ This package is the npm distribution of PMG. The main project README at [`github.com/safedep/pmg`](https://github.com/safedep/pmg) is the source of truth for full documentation.
7
10
 
8
- ## Installation
11
+ ## Why PMG?
9
12
 
10
- Install PMG globally via npm:
13
+ - Protects developers and AI coding agents from malicious packages
14
+ - Wraps tools like `npm`, `pnpm`, `yarn`, `pip`, `poetry`, and `uv`
15
+ - Adds sandboxing and install-time security checks with minimal workflow changes
16
+
17
+ ## Install
11
18
 
12
19
  ```bash
13
20
  npm install -g @safedep/pmg
14
21
  ```
15
22
 
16
- Or using Homebrew:
23
+ You can also install PMG with Homebrew:
17
24
 
18
25
  ```bash
19
- brew tap safedep/tap
20
26
  brew install safedep/tap/pmg
21
27
  ```
22
28
 
23
- ## Usage
29
+ ## Quick Start
24
30
 
25
- Set up PMG to automatically protect your package installations:
31
+ Set up PMG so your normal package manager commands are protected automatically:
26
32
 
27
33
  ```bash
28
- # Recommended: Set up automatic protection
29
34
  pmg setup install
30
35
  ```
31
36
 
32
- After setup, use your package managers normally:
37
+ After setup, restart your terminal and keep using your tools as usual:
33
38
 
34
39
  ```bash
35
- # Your regular commands are now protected
36
40
  npm install express
37
41
  pnpm add react
38
42
  pip install requests
39
43
  ```
40
44
 
41
- Or use PMG manually without setup:
45
+ If you prefer, you can also run package manager commands through PMG directly:
42
46
 
43
47
  ```bash
44
- # Manual protection (alternative)
45
48
  pmg npm install express
46
49
  pmg pnpm add react
47
50
  pmg pip install requests
@@ -49,12 +52,15 @@ pmg pip install requests
49
52
 
50
53
  ## Platform Support
51
54
 
52
- - ✅ **macOS** (Intel & Apple Silicon)
53
- - ✅ **Linux** (x86_64, ARM64, i386)
54
- - ✅ **Windows** (x86_64, ARM64, i386)
55
+ - macOS
56
+ - Linux
57
+ - Windows
55
58
 
56
59
  Requires Node.js 14 or higher.
57
60
 
58
- ---
61
+ ## Learn More
62
+
63
+ For complete documentation, installation options, troubleshooting, and project updates, see:
59
64
 
60
- For complete documentation, advanced usage, troubleshooting, and more information, please visit: **[github.com/safedep/pmg](https://github.com/safedep/pmg)**
65
+ - [Main README](https://github.com/safedep/pmg)
66
+ - [Quickstart Docs](https://docs.safedep.io/pmg/quickstart)
package/package.json CHANGED
@@ -54,5 +54,5 @@
54
54
  "access": "public"
55
55
  },
56
56
  "dependencies": {},
57
- "version": "0.9.0"
57
+ "version": "0.10.0"
58
58
  }