@stream44.studio/t44-blockchaincommons.com 0.1.0-rc.2

package/.o/GordianOpenIntegrity.yaml

@@ -0,0 +1,25 @@
+{
+  "$schema": "https://json-schema.org/draft/2020-12/schema",
+  "envelope": "ur:envelope/lrtpsotanshdhdcxhsbtonkiisgrhegyaxdamowmherhoemodnhpurylgysocnattsgdlylksrykvymhoyaylftpsohdgltansgylftanshfhdcxwmfzjehtcmnygspaladssskkvlbgjppkbniezthsptemmocntktiwefdgrfzeysttansgrhdcxeyhtdaayjyutmsqzketorhnyetfyaokovtgdinfdrlkpdarkoyvtmutastjnkiasoycsfncsfgoycsfztpsohdjktngdgmgwhflfaxhdimyawzaxjtlddndnlecyqzvdclkskotksafsskdmlgwpbgdszmrerncmuofpaxmkkeahluwnmoidbsiypedmaozsneykjpplurloolghesjedwjtbzstimswwladghiartmkonaauogyfefnmnwzzsdratguaaoekkkipkmsecfykefwbkjldytpwmnlueyahpssfristkahtniecttihyoytpsojyfljljpieinhsjtgwjoihjtgajtjyihiojpinjykktpsokshnjkjkisdpihieeyececehescxfpfpfpfpfxeoglknhsfxehjzhtfygaehglghfeecfpfpfpfpgagdjtgoknhkfxgokpkkgmflgmgleogsdniofdemksksghgaidhdethfjnjegtecfxfphfeeflkphdkkjzkogwfecxjyeeeedpjkiniojtinjtiodpjeihkkaytyoxwl",
+  "mark": "946be460",
+  "$defs": {
+    "envelope": {
+      "$ref": "https://datatracker.ietf.org/doc/draft-mcnally-envelope/"
+    },
+    "mark": {
+      "$ref": "https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2025-001-provenance-mark.md"
+    }
+  }
+}
+---
+# Repository DID: did:repo:c8f51118b7dca6f9d7303c240b6a683d85e28dab
+# Current Mark: 946be460 (🅑 MEOW JADE VIBE HORN)
+# Inception Mark: 931e4bf4 (🅑 MENU COOK GEAR WORK)
+# XID(610da57d) [
+#     'key': Bytes(78) [
+#         'allow': 'All'
+#     ]
+#     'provenance': Bytes(115)
+#     "GordianOpenIntegrity": "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPnUzYCUuyRGRN3L+gH7xxTIbX8VmkM5CAV4GuXylvOE t44-signing-key"
+# ]
+# Trust established using https://github.com/Stream44/t44-BlockchainCommons.com

package/DCO.md

@@ -0,0 +1,34 @@
+Developer Certificate of Origin
+Version 1.1
+
+Copyright (C) 2004, 2006 The Linux Foundation and its contributors.
+
+Everyone is permitted to copy and distribute verbatim copies of this
+license document, but changing it is not allowed.
+
+
+Developer's Certificate of Origin 1.1
+
+By making a contribution to this project, I certify that:
+
+(a) The contribution was created in whole or in part by me and I
+    have the right to submit it under the open source license
+    indicated in the file; or
+
+(b) The contribution is based upon previous work that, to the best
+    of my knowledge, is covered under an appropriate open source
+    license and I have the right under that license to submit that
+    work with modifications, whether created in whole or in part
+    by me, under the same open source license (unless I am
+    permitted to submit under a different license), as indicated
+    in the file; or
+
+(c) The contribution was provided directly to me by some other
+    person who certified (a), (b) or (c) and I have not modified
+    it.
+
+(d) I understand and agree that this project and the contribution
+    are public and that a record of the contribution (including all
+    personal information I submit with it, including my sign-off) is
+    maintained indefinitely and may be redistributed consistent with
+    this project or the open source license(s) involved.

package/README.md

@@ -0,0 +1,210 @@
+⚠️ **WARNING:** This repository may get squashed and force-pushed if the [GordianOpenIntegrity](https://github.com/Stream44/t44-blockchaincommons.com) implementation must change in incompatible ways. Keep your diffs until the **GordianOpenIntegrity** system is stable.
+
+🔷 **Open Development Project:** The implementation is a preview release for community feedback.
+
+⚠️ **Disclaimer:** Under active development. Code has not been audited, APIs and interfaces are subject to change.
+
+`t44` Capsules for Blockchain Commons
+===
+
+This project [encapsulates](https://github.com/Stream44/encapsulate) the [javascript APIs](https://github.com/leonardocustodio/bcts/tree/main) of the incredible [Gordian Stack](https://developer.blockchaincommons.com/) by [Blockchain Commons](https://www.blockchaincommons.com/) for use in [t44](https://github.com/Stream44/t44).
+Blockchain Commons low-level libraries are wrapped into capsules and combined into new higher order capsules. Standalone use is also possible.
+
+### TODO
+
+- **GordianOpenIntegrity**
+  - [ ] Review terminology and choices with Blockchain Commons.
+    - [ ] Validate or Verify
+  - [ ] Audit logic to ensure all integrity requirements are met and validations make sense.
+  - [ ] JSON Schemas for Gordian Envelope and Provenance Mark properties in `.o/GordianOpenIntegrity.yaml`. Blockchain Commons should define schema on URL so we can link.
+  - [ ] Review `.o/GordianOpenIntegrity.yaml` Gordian Envelope predicate/subject/object structure with Blockchain Commons to ensure compliance.
+  - [ ] Minimal audit script hand coded by third party to validate integrity.
+  - [ ] Third party review of `GordianOpenIntegrity` other than Blockchain Commons.
+  - [ ] Declare `GordianOpenIntegrity` foundation as stable once Blockchain Commons agrees.
+
+Capsules: Higher Order
+---
+
+### `XidDocumentLedger` (XID Document Ledger)
+
+A utility to author a verifiable chain of xid documents.
+
+Combines the `xid` and `provenance-mark` capsules to provide a verifiable ledger according to the [Revisions with Provenance Marks](https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2024-010-xid.md#revisions-with-provenance-marks) approach.
+
+Compatible with `provenance-mark-cli` storage format.
+
+### `GordianOpenIntegrity` (Gordian Open Integrity Project)
+
+A utility to record decisions **about** a git repository, **in** the git repository, in a cryptographically rigerous way leveraging XID Documents.
+
+```
+# Initialize a git repository
+bunx @stream44.studio/t44-blockchaincommons.com init [GordianOpenIntegrity] --inception-key ~/.ssh/key
+
+# Validate a git repository
+bunx @stream44.studio/t44-blockchaincommons.com validate [GordianOpenIntegrity]
+```
+
+Github Actions validation workflow: `.github/workflows/gordian-open-integrity.yml`
+```
+name: Validate Gordian Open Integrity
+
+on: [push, pull_request]
+
+jobs:
+  gordian-open-integrity:
+    name: Validate Gordian Open Integrity
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - uses: Stream44/t44-blockchaincommons.com@main
+```
+
+The [Open Integrity Project](https://github.com/OpenIntegrityProject) is focused on `git` and its ecosystem and is proposing a `.repo/` directory to store decisions (signed config files). More details here: https://github.com/OpenIntegrityProject/core/blob/main/docs/Open_Integrity_Repo_Directory_Structure.md
+
+The `GordianOpenIntegrity` capsule takes a different *alternative and parallel* approach in that it provides an **open namespace to record all kinds of decisions for all kinds of purposes**.
+
+The inception commit is tied to a XID Document stored in git at `.o/GordianOpenIntegrity.yaml` with the provenance mark generator file kept at `.git/o/GordianOpenIntegrity-generator.yaml`. From there, the Gordian Envelope system is used to **introduce** new decision assets that may be stored at `.o/<domain.tld>/my/path/doc.yaml` and `.git/o/<domain.tld>/my/path/doc-generator.yaml`. Implementers can design their own URI layouts and **Gordian Envelope Spaces**.
+
+The capsule uses a `XidDocumentLedger` per document (across commits) and provides a minimal abstraction for `provenance-mark` enforced ledgers of XID Documents in git repositories tied cryptographically to the Open Integrity repository inception commit. `lifehash` is used to store the inception and current provenance mark at `.o/GordianOpenIntegrity-InceptionLifehash.svg` and `.o/GordianOpenIntegrity-CurrentLifehash.svg` respectively. See *[Provenance](#provenance)* footer below for the lifehash marks for this repository.
+
+Given the latest provenance mark via a publishing channel, users are able to verify the integrity of all decisions recorded against the repository with complete confidence. This verification includes the repository code thus allowing for distribution via public peer-to-peer networks. This is stable foundation for transparent distributed governance and the exploration of cryptographic decision making and relationship building.
+
+`.o/GordianOpenIntegrity.yaml` example from `examples/03-GordianOpenIntegrity/main.test.ts`:
+```
+{
+  "$schema": "https://json-schema.org/draft/2020-12/schema",
+  "envelope": "ur:envelope/lptpsotanshdhdcxesvdmtwlnlrfvevwayoygaberyvtjendqdtewljspsbwpmvsrpjymtrldkvwmubzoytpsojyfljljpieinhsjtgwjoihjtgajtjyihiojpinjykktpsokshnjkjkisdpihieeyececehescxfpfpfpfpfxeoglknhsfxehjzhtfygaehglghfeecfpfpfpfpgafweohtjyjkflengogdksjljyglingafphdhdhdhdieghjoeegdglgteegyimhteogojndykoehhkfyfxetgdhfcxjkiniojtinjtioheihieeyececehesoytpsoksckfljljpieinhsjtgwjoihjtgajtjyihiojpinjykkdmfyjliakpjnihjtjyjktpsoksehkgcpdmjldlihkshsjnjojzihdmiajljndljojljziniakkdlkoehdmkkhsjnjzcpftcphdgafydeieiaidehenetehiadtcpkioyaylftpsohdgltansgylftanshfhdcxolkiwytlsoehmshholmorhfgksladslfptsrwdgabkmdwlghbnbtuofrheoyosfstansgrhdcxdyhymubwbarffpotzcbajtstrfktlnpdbgrlwnoxgsctvofsledkfmckskldjzjsoycsfncsfgoycsfztpsohdjktngdgmgwhflfaxhdimdiwnmwrsemasflkitadwisswtbbemwtifgfdhtwdtlaeaavwkpongsatktvycapefhvapmlgselnqzaetnrdqdhnlpdnhlhgcertndrdrdwdtbaayalopsdiihmuontoiejomybtsthydpoemozckkmwltyannvdhtcmbbbswnfmwneoeyftmocxkszetsvdeycxkpguyaaabbfzenbtsaimwswe",
+  "mark": "a9ea4602",
+  "$defs": {
+    "envelope": {
+      "$ref": "https://datatracker.ietf.org/doc/draft-mcnally-envelope/"
+    },
+    "mark": {
+      "$ref": "https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2025-001-provenance-mark.md"
+    }
+  }
+}
+---
+# Repository DID: did:repo:72749389d090c2e6af2b14508df28aef74efeac8
+# Current Mark: a9ea4602 (🅑 PART WAND FROG ALSO)
+# Inception Mark: eb05b660 (🅑 WARM ARCH RAMP HORN)
+# XID(39e796e9) [
+#     "GordianOpenIntegrity": "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB3ZtsG6UPxotNiIAXXXXdTp4PNM4QjZ3Um0v1YDC8PV signing_ed25519"
+#     "GordianOpenIntegrity.Documents": "{".o/example.com/policy/v1.yaml":"XID(dcb1681c)"}"
+#     'key': Bytes(78) [
+#         'allow': 'All'
+#     ]
+#     'provenance': Bytes(115)
+# ]
+# Root of trust established using https://github.com/Stream44/t44-blockchaincommons.com
+```
+
+Commits that lead to this document:
+```
+% git log                                                                                                                                 
+commit 233ddac0b263a68f590c984e3ad27cb6e9db300c (HEAD -> main)
+Author: Author <author@example.com>
+Date:   Fri Feb 13 13:22:02 2026 -0500
+
+    [GordianOpenIntegrity] Introduce new Gordian Envelope at: .o/example.com/policy/v1.yaml
+    
+    Signed-off-by: Author <author@example.com>
+
+commit c7757c183fc7013fc4f51f25b86e88a45c736d17
+Author: Author <author@example.com>
+Date:   Fri Feb 13 13:22:02 2026 -0500
+
+    [GordianOpenIntegrity] Establish inception Gordian Envelope at: .o/GordianOpenIntegrity.yaml
+    
+    Trust established using https://github.com/Stream44/t44-BlockchainCommons.com
+    
+    Signed-off-by: Author <author@example.com>
+
+commit bb1408b6ccf40108866a8119d21a8f025a106078
+Author: Author <author@example.com>
+Date:   Fri Feb 13 18:22:02 2026 +0000
+
+    [GordianOpenIntegrity] Establish a SHA-1 root of trust for origin and future commit verification.
+    
+    Signed-off-by: Author <author@example.com>
+    
+    Trust established using https://github.com/Stream44/t44-BlockchainCommons.com
+```
+
+
+Capsules: Low Level
+---
+
+These capsules wrap Blockchain Commons [Gordian Stack](https://developer.blockchaincommons.com/) [javascript](https://github.com/leonardocustodio/bcts/tree/main) libraries.
+
+**NOTE:** Some capsules add additional functionality!
+
+### `xid` (XID: Extensible Identifiers)
+
+An eXtensible IDentifier (XID) is a stable decentralized identifier generated from the hash of an inception key. XIDs resolve to an [envelope](https://developer.blockchaincommons.com/envelope/)-based controller document for managing keys, credentials, and other assertions, and leverage provenance chains for key rotation and revocation without changing the identifier. It does not necessarily to the [DID spec](https://www.w3.org/TR/did-core/), but it is inspired by the same needs and desires.
+
+  * Introduction: https://www.blockchaincommons.com/musings/XIDs-True-SSI/
+  * Project Home: https://developer.blockchaincommons.com/xid/
+  * Research Paper: https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2024-010-xid.md
+
+### `provenance-mark` (Provenance Marks)
+
+A Provenance Mark is a forward-commitment hash chain to establish cryptographic sequential ordering for linked digital objects. Each mark in the chain commits to preceding and subsequent content, preventing retroactive insertion or modification without requiring timestamps or trusted witnesses. This enables tracking of editions, state changes, and histories for controller documents, credentials, and evolving structures.
+
+  * Project Home: https://developer.blockchaincommons.com/provemark/
+  * Research Paper: https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2025-001-provenance-mark.md
+
+### `provenance-mark-cli` (Provenance Mark CLI)
+
+A command line tool for creating and managing Provenance Mark chains.
+
+  * JavaScipt Implementation: https://github.com/leonardocustodio/bcts/tree/main/tools/provenance-mark-cli
+  * Research Paper: https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2025-001-provenance-mark.md
+
+### `open-integrity` (Open Integrity Project)
+
+Open Integrity is an initiative by Blockchain Commons to integrate cryptographic trust mechanisms into Git repositories. By leveraging Git's native SSH signing capabilities and structured verification processes, we ensure transparency, provenance, and immutability for software projects.
+
+  * Project Home: https://github.com/OpenIntegrityProject/core
+
+### `lifehash` (LifeHash)
+
+LifeHash is a method of hash visualization based on Conway’s Game of Life that creates beautiful icons that are deterministic, yet distinct and unique given the input data. It is part of the [OIB](https://developer.blockchaincommons.com/oib/).
+
+  * Introduction: https://developer.blockchaincommons.com/oib/
+  * Project Home: https://developer.blockchaincommons.com/lifehash/
+
+
+Projects
+===
+
+The following projects use `GordianOpenIntegrity`:
+
+- [t44](https://github.com/Stream44/t44) - A web3 + AI ready workspace
+- [Stream44.Studio](https://stream44.studio) - A **full-stack IDE** for building **embodied distributed systems**
+
+
+Provenance
+===
+
+Repository DID: `did:repo:c8f51118b7dca6f9d7303c240b6a683d85e28dab`
+
+<table>
+  <tr>
+    <td><strong>Inception Mark</strong></td>
+    <td><img src=".o/GordianOpenIntegrity-InceptionLifehash.svg" width="64" height="64"></td>
+    <td><strong>Current Mark</strong></td>
+    <td><img src=".o/GordianOpenIntegrity-CurrentLifehash.svg" width="64" height="64"></td>
+    <td>Trust established using<br/><a href="https://github.com/Stream44/t44-blockchaincommons.com">Stream44/t44-BlockchainCommons.com</a></td>
+  </tr>
+</table>
+
+(c) 2026 [Christoph.diy](https://christoph.diy) • Code: `BSD-2-Clause-Patent` • Text: `CC-BY` • Created with [Stream44.Studio](https://Stream44.Studio)
+
+### Credits & Thank You!
+
+* [@ChristopherA](https://github.com/ChristopherA), [@WolfMcNally](https://github.com/wolfmcnally) and [@shannona](https://github.com/shannona) of [Blockchain Commons](https://www.blockchaincommons.com/) for **all original work** on the [The Gordian Stack](https://developer.blockchaincommons.com/).
+* [Leonardo Custodio](https://github.com/leonardocustodio) for porting *The Gordian Stack* **Rust** implementations to **TypeScript**.

package/action.yml

@@ -0,0 +1,47 @@
+name: 'Gordian Open Integrity Validation'
+description: 'Validate Gordian Open Integrity provenance and commit signatures on a repository'
+author: 'Stream44'
+
+inputs:
+  mark:
+    description: 'Published provenance mark to verify against'
+    required: false
+    default: ''
+
+branding:
+  icon: 'shield'
+  color: 'blue'
+
+runs:
+  using: 'composite'
+  steps:
+    - name: Setup Bun
+      uses: oven-sh/setup-bun@v2
+
+    - name: Install dependencies
+      shell: bash
+      run: |
+        cd ${{ github.action_path }}
+        bun install --frozen-lockfile
+
+    - name: Read current mark
+      id: read-mark
+      shell: bash
+      run: |
+        MARK="${{ inputs.mark }}"
+        if [[ -z "$MARK" ]]; then
+          PROVENANCE_FILE=".o/GordianOpenIntegrity.yaml"
+          if [[ -f "$PROVENANCE_FILE" ]]; then
+            MARK=$(grep -oP '"mark":\s*"\K[^"]+' "$PROVENANCE_FILE" || true)
+          fi
+        fi
+        echo "mark=$MARK" >> "$GITHUB_OUTPUT"
+
+    - name: Validate Gordian Open Integrity
+      shell: bash
+      run: |
+        MARK_FLAG=""
+        if [[ -n "${{ steps.read-mark.outputs.mark }}" ]]; then
+          MARK_FLAG="--mark ${{ steps.read-mark.outputs.mark }}"
+        fi
+        bun ${{ github.action_path }}/bin/oi validate GordianOpenIntegrity $MARK_FLAG

package/bin/oi

@@ -0,0 +1,152 @@
+#!/usr/bin/env bun
+/// <reference types="bun" />
+/// <reference types="node" />
+
+import { resolve } from 'path'
+import { Command } from 'commander'
+import chalk from 'chalk'
+import { CapsuleSpineFactory } from "@stream44.studio/encapsulate/spine-factories/CapsuleSpineFactory.v0"
+import { CapsuleSpineContract } from "@stream44.studio/encapsulate/spine-contracts/CapsuleSpineContract.v0/Membrane.v0"
+
+const SUPPORTED_SYSTEMS = ['GordianOpenIntegrity']
+
+async function bootCapsule() {
+    const { encapsulate, freeze, CapsulePropertyTypes, makeImportStack, hoistSnapshot } = await CapsuleSpineFactory({
+        spineFilesystemRoot: resolve(import.meta.dir, '..'),
+        capsuleModuleProjectionRoot: import.meta.dir,
+        enableCallerStackInference: false,
+        spineContracts: {
+            ['#' + CapsuleSpineContract['#']]: CapsuleSpineContract
+        },
+    })
+
+    const spine = await encapsulate({
+        '#@stream44.studio/encapsulate/spine-contracts/CapsuleSpineContract.v0': {
+            '#@stream44.studio/encapsulate/structs/Capsule': {},
+            '#': {
+                oi: {
+                    type: CapsulePropertyTypes.Mapping,
+                    value: '@stream44.studio/t44-blockchaincommons.com/caps/GordianOpenIntegrity'
+                },
+            }
+        }
+    }, {
+        importMeta: import.meta,
+        importStack: makeImportStack(),
+        capsuleName: '@stream44.studio/t44-blockchaincommons.com/bin/oi'
+    })
+
+    const snapshot = await freeze()
+    const { run } = await hoistSnapshot({ snapshot })
+
+    return { spine, run }
+}
+
+function validateSystem(system: string) {
+    if (!SUPPORTED_SYSTEMS.includes(system)) {
+        console.error(chalk.red(`Unsupported system: ${system}`))
+        console.error(chalk.white(`Supported systems: ${SUPPORTED_SYSTEMS.join(', ')}`))
+        process.exit(1)
+    }
+}
+
+const program = new Command()
+    .name('@stream44.studio/t44-blockchaincommons.com')
+    .description('Gordian Open Integrity CLI')
+    .version('0.0.1')
+
+program
+    .command('init')
+    .description('Initialize a Gordian Open Integrity repository in the current directory')
+    .argument('<system>', `Integrity system to initialize (${SUPPORTED_SYSTEMS.join(', ')})`)
+    .requiredOption('--inception-key <path>', 'Path to the SSH private key for inception signing')
+    .option('--author-name <name>', 'Author name for git commits', 'Author')
+    .option('--author-email <email>', 'Author email for git commits', 'author@example.com')
+    .action(async (system, opts) => {
+        validateSystem(system)
+
+        const repoDir = resolve(process.cwd())
+        const inceptionKeyPath = resolve(opts.inceptionKey)
+
+        const { spine, run } = await bootCapsule()
+
+        await run({}, async ({ apis }) => {
+            const oi = apis[spine.capsuleSourceLineRef].oi
+
+            console.log(chalk.blue('Creating identity...'))
+            const author = await oi.createIdentity({
+                privateKeyPath: inceptionKeyPath,
+                authorName: opts.authorName,
+                authorEmail: opts.authorEmail,
+            })
+
+            console.log(chalk.blue('Creating repository...'))
+            const result = await oi.createRepository({
+                repoDir,
+                author,
+            })
+
+            const markId = await oi.getMarkIdentifier({ mark: result.mark })
+
+            console.log()
+            console.log(chalk.green('✓ Gordian Open Integrity repository initialized'))
+            console.log(chalk.white(`  DID:  ${result.did}`))
+            console.log(chalk.white(`  Mark: ${markId}`))
+            console.log(chalk.white(`  Dir:  ${repoDir}`))
+        })
+    })
+
+program
+    .command('validate')
+    .description('Validate a Gordian Open Integrity repository in the current directory')
+    .argument('<system>', `Integrity system to validate (${SUPPORTED_SYSTEMS.join(', ')})`)
+    .option('--mark <mark>', 'Published provenance mark to verify against')
+    .action(async (system, opts) => {
+        validateSystem(system)
+
+        const repoDir = resolve(process.cwd())
+
+        const { spine, run } = await bootCapsule()
+
+        await run({}, async ({ apis }) => {
+            const oi = apis[spine.capsuleSourceLineRef].oi
+
+            console.log(chalk.blue('Validating repository...'))
+            const result = await oi.verify({
+                repoDir,
+                mark: opts.mark,
+            })
+
+            console.log()
+            if (result.valid) {
+                console.log(chalk.green('✓ Repository integrity verified'))
+            } else {
+                console.log(chalk.red('✗ Repository integrity verification failed'))
+            }
+
+            console.log(chalk.white(`  XID:                ${result.xid || 'N/A'}`))
+            console.log(chalk.white(`  DID:                ${result.did || 'N/A'}`))
+            console.log(chalk.white(`  Commits:            ${result.totalCommits} total, ${result.validSignatures} valid, ${result.invalidSignatures} invalid`))
+            console.log(chalk.white(`  Provenance versions: ${result.provenanceVersions}`))
+            console.log(chalk.white(`  Marks monotonic:    ${result.marksMonotonic ? 'yes' : 'no'}`))
+            console.log(chalk.white(`  XID stable:         ${result.xidStable ? 'yes' : 'no'}`))
+
+            if (opts.mark) {
+                console.log(chalk.white(`  Mark matches latest: ${result.markMatchesLatest ? 'yes' : 'no'}`))
+            }
+
+            if (result.issues.length > 0) {
+                console.log()
+                console.log(chalk.red('Issues:'))
+                for (const issue of result.issues) {
+                    console.log(chalk.red(`  - ${issue}`))
+                }
+            }
+
+            if (!result.valid) {
+                process.exit(1)
+            }
+        })
+    })
+
+program.parse(process.argv)