pompelmi 0.34.0 → 0.34.1

package/README.md

@@ -499,6 +499,67 @@ Scan files or build artifacts in CI with a single step:
 
 ---
 
+## 🏢 Pompelmi Enterprise
+
+> The open-source `pompelmi` core is **MIT-licensed and always will be** — actively maintained, freely available, no strings attached. `@pompelmi/enterprise` is an optional commercial plugin for teams that need compliance evidence, production observability, and operational tooling on top.
+
+### What Enterprise adds
+
+| Feature | Core (Free, MIT) | Enterprise |
+|---|:---:|:---:|
+| File scanning, heuristics, YARA | ✅ | ✅ |
+| Framework adapters (Express, Next.js, NestJS…) | ✅ | ✅ |
+| Quarantine workflow & policy packs | ✅ | ✅ |
+| **Advanced Audit Logging (SIEM-compatible)** | — | ✅ |
+| **HMAC-signed tamper-evident log entries** | — | ✅ |
+| **File / Webhook / Console log sinks** | — | ✅ |
+| **On-disk audit log query API** | — | ✅ |
+| **Premium YARA Rules** (WannaCry, Cobalt Strike, XMRig, Mimikatz, LOLBAS) | — | ✅ |
+| **Prometheus Metrics endpoint** | — | ✅ |
+| **Embedded Web GUI Dashboard** | — | ✅ |
+| **Priority support & response SLA** | — | ✅ |
+
+### Who it's for
+
+- **Compliance teams** — HMAC-signed NDJSON audit logs satisfy SOC 2, HIPAA, ISO 27001, and PCI-DSS evidence requirements. Routes to file, console, or a SIEM webhook — no file bytes ever leave your infrastructure.
+- **Security operations** — live Prometheus metrics (blocked files, YARA hits by category, p95 scan latency) feed directly into your existing Grafana dashboards, zero custom instrumentation required.
+- **Platform / DevSecOps teams** — zero-config embedded web GUI shows scan activity in real time. No build step, no SaaS, no data egress. Five curated premium YARA rules (ransomware, APT, miner, LOLBAS) loaded automatically.
+
+### Drop-in integration (30 seconds)
+
+```bash
+npm install @pompelmi/enterprise
+```
+
+```ts
+import Pompelmi from 'pompelmi';
+import { PompelmiEnterprise } from '@pompelmi/enterprise';
+
+const enterprise = await PompelmiEnterprise.create({
+  licenseKey: process.env.POMPELMI_LICENSE_KEY,
+  auditLogger: { sinks: ['file'], hmac: true, hmacSecret: process.env.AUDIT_HMAC_SECRET },
+  dashboard:   { enabled: true, port: 3742 },
+});
+
+const scanner = new Pompelmi();
+enterprise.injectInto(scanner); // loads premium YARA rules + hooks all scan events
+
+const results = await scanner.scan('/srv/uploads');
+// → audit log → ./pompelmi-audit/audit-YYYY-MM-DD.ndjson
+// → metrics   → http://localhost:3742/metrics
+// → dashboard → http://localhost:3742
+```
+
+<div align="center">
+
+[![Get Pompelmi Enterprise](https://img.shields.io/badge/Pompelmi%20Enterprise-Upgrade%20Now%20%E2%86%92-0a7ea4?style=for-the-badge)](https://buy.polar.sh/polar_cl_sTQdCkfdsz6D0lyLRIKKB7MJCnmBm6mfsOmTr2l2fqn)
+
+**[View full feature comparison and pricing →](https://pompelmi.github.io/pompelmi/enterprise)**
+
+</div>
+
+---
+
 ## 🔒 Security
 
 - pompelmi **reads** bytes — it never executes uploaded files.

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "pompelmi",
-  "version": "0.34.0",
-  "description": "Fast, private malware scanner for Node.js file uploads. TypeScript-first library with Express, Koa, Fastify, Next.js & Nuxt/Nitro adapters. Features deep ZIP inspection, YARA integration, ZIP bomb protection, and real-time threat detection. Zero cloud dependencies - scan files in-process before they hit disk. Works well for privacy-sensitive and regulated environments.",
+  "version": "0.34.1",
+  "description": "In-process file upload security for Node.js — no cloud API, no daemon, no data egress. TypeScript-first library with Express, Next.js, NestJS, Fastify, Koa, and Nuxt/Nitro adapters. Features magic-byte MIME validation, ZIP bomb protection, YARA integration, and layered heuristic scanning. Built for privacy-sensitive and self-hosted environments.",
   "main": "./dist/pompelmi.cjs",
   "module": "./dist/pompelmi.esm.js",
   "type": "module",
@@ -146,8 +146,12 @@
     "react-dom": "^18.0.0 || ^19.0.0"
   },
   "peerDependenciesMeta": {
-    "react": { "optional": true },
-    "react-dom": { "optional": true }
+    "react": {
+      "optional": true
+    },
+    "react-dom": {
+      "optional": true
+    }
   },
   "optionalDependencies": {
     "@litko/yara-x": "^0.2.1"
@@ -213,6 +217,8 @@
   "keywords": [
     "malware-scanner",
     "file-upload-security",
+    "secure-file-upload",
+    "upload-security",
     "virus-scanner",
     "antivirus",
     "malware-detection",
@@ -228,11 +234,14 @@
     "fastify-plugin",
     "nextjs",
     "next-js",
+    "nestjs",
+    "nuxt",
     "nodejs-security",
     "typescript-security",
     "file-validation",
     "upload-sanitization",
     "mime-type-validation",
+    "magic-bytes",
     "security",
     "cybersecurity",
     "devsecops",
@@ -241,6 +250,7 @@
     "privacy-first",
     "in-process-scanning",
     "zero-cloud",
+    "self-hosted",
     "node",
     "nodejs",
     "typescript",
@@ -251,7 +261,7 @@
   "directories": {
     "example": "examples"
   },
-  "author": "",
+  "author": "Tommaso Bertocchi",
   "packageManager": "pnpm@9.12.0",
   "resolutions": {
     "process": "0.11.10"