preship 2.0.2 → 2.0.6

package/dist/cli.js

@@ -109,8 +109,12 @@ async function unifiedScan(options) {
   }
   const mode = config.mode ?? "auto";
   const policy = config.policy ?? "commercial-safe";
+  const progress = options?.onProgress ?? (() => {
+  });
+  progress("Detecting project...");
   const projects = (0, import_core.detectProjects)(projectPath);
   const project = projects[0];
+  progress(`Parsing ${project.type} lockfile...`);
   const packageJsonPath = path.join(project.path, "package.json");
   let parsedDeps;
   switch (project.type) {
@@ -136,6 +140,7 @@ async function unifiedScan(options) {
   if (modules.license) {
     promises.push(
       (async () => {
+        progress("Scanning licenses...");
         const licenseStart = Date.now();
         const dependencies = await (0, import_license.resolveLicenses)(parsedDeps, projectPath, {
           mode,
@@ -169,6 +174,7 @@ async function unifiedScan(options) {
   if (modules.security) {
     promises.push(
       (async () => {
+        progress("Checking security vulnerabilities...");
         const securityConfig = (0, import_security.mergeSecurityConfig)(config.security);
         securityResult = await (0, import_security.scanSecurity)(parsedDeps, projectPath, securityConfig, mode);
       })()
@@ -177,6 +183,7 @@ async function unifiedScan(options) {
   if (modules.secrets) {
     promises.push(
       (async () => {
+        progress("Scanning for leaked secrets...");
         secretsResult = await (0, import_secrets.scanSecrets)(projectPath, config.secrets);
       })()
     );
@@ -303,12 +310,12 @@ function formatTerminalUnified(result, warnOnly = false) {
   if (warnOnly) {
     return formatWarnOnlyUnified(result);
   }
+  const totalTime = (result.totalScanDurationMs / 1e3).toFixed(1);
   lines.push("");
   lines.push(import_chalk.default.bold("\u{1F50D} PreShip: Pre-ship verification"));
   lines.push(`   Project: ${import_chalk.default.cyan(getProjectName(result.projectPath))}${result.framework ? ` (${result.framework})` : ""}`);
   lines.push(`   Lock file: ${import_chalk.default.cyan(getLockFileName(result.projectType))} (${result.projectType})`);
-  lines.push(`   Policy: ${import_chalk.default.cyan(result.policy)}`);
-  lines.push(`   Mode: ${import_chalk.default.cyan(result.mode)}`);
+  lines.push(`   Policy: ${import_chalk.default.cyan(result.policy)}  ${import_chalk.default.dim("|")}  Mode: ${import_chalk.default.cyan(result.mode)}`);
   const enabledModules = [];
   if (result.modules.license) enabledModules.push("license");
   if (result.modules.security) enabledModules.push("security");
@@ -326,89 +333,172 @@ function formatTerminalUnified(result, warnOnly = false) {
   }
   lines.push(`   Modules: ${import_chalk.default.cyan(enabledModules.join(", "))}`);
   lines.push("");
+  lines.push(import_chalk.default.bold(`\u{1F4CA} Scan Summary`) + import_chalk.default.dim(`                                Total time: ${totalTime}s`));
+  const summaryTable = new import_cli_table3.default({
+    head: ["Module", "Scanned", "Passed", "Issues", "Warnings", "Status", "Time"],
+    colWidths: [12, 12, 9, 9, 10, 9, 8],
+    style: { head: ["cyan"] }
+  });
   if (result.modules.license) {
-    const license = result.modules.license;
-    lines.push(import_chalk.default.bold.underline("\u{1F4DC} License Compliance"));
-    lines.push(`   Scanned ${import_chalk.default.bold(String(license.totalPackages))} packages in ${(license.scanDurationMs / 1e3).toFixed(1)}s`);
-    lines.push("");
-    if (license.rejected.length === 0 && license.warned.length === 0 && license.unknown.length === 0) {
-      lines.push(import_chalk.default.green(`   \u2705 All ${license.totalPackages} packages passed license check`));
+    const lic = result.modules.license;
+    const issues = lic.rejected.length;
+    const warnings = lic.warned.length + lic.unknown.length;
+    summaryTable.push([
+      "License",
+      `${lic.totalPackages} pkgs`,
+      String(lic.allowed.length),
+      issues > 0 ? import_chalk.default.red(String(issues)) : "0",
+      warnings > 0 ? import_chalk.default.yellow(String(warnings)) : "0",
+      lic.passed ? import_chalk.default.green("PASS") : import_chalk.default.red("FAIL"),
+      `${(lic.scanDurationMs / 1e3).toFixed(1)}s`
+    ]);
+  }
+  if (result.modules.security) {
+    const sec = result.modules.security;
+    const issues = sec.findings.filter((f) => f.severity === "critical" || f.severity === "high").length;
+    const warnings = sec.findings.filter((f) => f.severity === "medium" || f.severity === "low").length;
+    summaryTable.push([
+      "Security",
+      `${sec.totalPackages} pkgs`,
+      import_chalk.default.dim("--"),
+      issues > 0 ? import_chalk.default.red(String(issues)) : "0",
+      warnings > 0 ? import_chalk.default.yellow(String(warnings)) : "0",
+      sec.passed ? import_chalk.default.green("PASS") : import_chalk.default.red("FAIL"),
+      `${(sec.scanDurationMs / 1e3).toFixed(1)}s`
+    ]);
+  }
+  if (result.modules.secrets) {
+    const sec = result.modules.secrets;
+    const issues = sec.stats.critical + sec.stats.high;
+    const warnings = sec.stats.medium + sec.stats.low;
+    summaryTable.push([
+      "Secrets",
+      `${sec.filesScanned} files`,
+      import_chalk.default.dim("--"),
+      issues > 0 ? import_chalk.default.red(String(issues)) : "0",
+      warnings > 0 ? import_chalk.default.yellow(String(warnings)) : "0",
+      sec.passed ? import_chalk.default.green("PASS") : import_chalk.default.red("FAIL"),
+      `${(sec.scanDurationMs / 1e3).toFixed(1)}s`
+    ]);
+  }
+  lines.push(summaryTable.toString());
+  lines.push("");
+  if (result.modules.license && result.modules.license.passed) {
+    const lic = result.modules.license;
+    const warnings = lic.warned.length + lic.unknown.length;
+    if (warnings > 0) {
+      lines.push(import_chalk.default.green(`\u{1F4DC} License Compliance \u2014 \u2705 ${lic.allowed.length} passed`) + import_chalk.default.yellow(`, ${warnings} warning${warnings > 1 ? "s" : ""}`));
     } else {
-      if (license.allowed.length > 0) {
-        lines.push(import_chalk.default.green(`   \u2705 ${license.allowed.length} packages \u2014 Allowed`));
-      }
-      if (license.warned.length > 0) {
-        lines.push(import_chalk.default.yellow(`   \u26A0\uFE0F  ${license.warned.length} package${license.warned.length > 1 ? "s" : ""} \u2014 Warning (weak copyleft)`));
-        formatPolicyResultsIndented(license.warned, lines, import_chalk.default.yellow);
-      }
-      if (license.rejected.length > 0) {
-        lines.push(import_chalk.default.red(`   \u274C ${license.rejected.length} package${license.rejected.length > 1 ? "s" : ""} \u2014 Rejected`));
-        formatPolicyResultsIndented(license.rejected, lines, import_chalk.default.red);
-      }
-      if (license.unknown.length > 0) {
-        lines.push(import_chalk.default.yellow(`   \u26A0\uFE0F  ${license.unknown.length} package${license.unknown.length > 1 ? "s" : ""} \u2014 Unknown License`));
-        formatPolicyResultsIndented(license.unknown, lines, import_chalk.default.yellow);
-      }
+      lines.push(import_chalk.default.green(`\u{1F4DC} License Compliance \u2014 \u2705 All ${lic.totalPackages} packages passed`));
     }
-    lines.push("");
   }
-  if (result.modules.security) {
-    const security = result.modules.security;
-    lines.push(import_chalk.default.bold.underline("\u{1F6E1}\uFE0F  Security Vulnerabilities"));
-    lines.push(`   Scanned ${import_chalk.default.bold(String(security.totalPackages))} packages in ${(security.scanDurationMs / 1e3).toFixed(1)}s`);
-    lines.push("");
-    if (security.findings.length === 0) {
-      lines.push(import_chalk.default.green("   \u2705 No security issues found"));
+  if (result.modules.security && result.modules.security.passed) {
+    const sec = result.modules.security;
+    if (sec.findings.length === 0) {
+      lines.push(import_chalk.default.green(`\u{1F6E1}\uFE0F  Security Vulnerabilities \u2014 \u2705 No issues found`));
     } else {
-      const statParts = [];
-      if (security.stats.critical > 0) statParts.push(import_chalk.default.red(`${security.stats.critical} critical`));
-      if (security.stats.high > 0) statParts.push(import_chalk.default.red(`${security.stats.high} high`));
-      if (security.stats.medium > 0) statParts.push(import_chalk.default.yellow(`${security.stats.medium} medium`));
-      if (security.stats.low > 0) statParts.push(import_chalk.default.dim(`${security.stats.low} low`));
-      if (security.stats.deprecated > 0) statParts.push(import_chalk.default.yellow(`${security.stats.deprecated} deprecated`));
-      if (security.stats.outdated > 0) statParts.push(import_chalk.default.yellow(`${security.stats.outdated} outdated`));
-      if (security.stats.unmaintained > 0) statParts.push(import_chalk.default.yellow(`${security.stats.unmaintained} unmaintained`));
-      lines.push(`   ${statParts.join(" \u2502 ")}`);
-      lines.push("");
-      const vulnFindings = security.findings.filter((f) => f.type === "vulnerability");
-      const healthFindings = security.findings.filter((f) => f.type !== "vulnerability");
-      if (vulnFindings.length > 0) {
-        formatSecurityFindings(vulnFindings, lines, "Vulnerabilities");
-      }
-      if (healthFindings.length > 0) {
-        formatSecurityFindings(healthFindings, lines, "Health Issues");
-      }
+      lines.push(import_chalk.default.green(`\u{1F6E1}\uFE0F  Security Vulnerabilities \u2014 \u2705 Passed`) + import_chalk.default.yellow(` (${sec.findings.length} low-severity finding${sec.findings.length > 1 ? "s" : ""})`));
     }
-    lines.push("");
   }
-  if (result.modules.secrets) {
-    const secrets = result.modules.secrets;
-    lines.push(import_chalk.default.bold.underline("\u{1F511} Secret Detection"));
-    lines.push(`   Scanned ${import_chalk.default.bold(String(secrets.filesScanned))} files in ${(secrets.scanDurationMs / 1e3).toFixed(1)}s`);
-    lines.push("");
-    if (secrets.findings.length === 0) {
-      lines.push(import_chalk.default.green("   \u2705 No leaked secrets found"));
+  if (result.modules.secrets && result.modules.secrets.passed) {
+    const sec = result.modules.secrets;
+    if (sec.findings.length === 0) {
+      lines.push(import_chalk.default.green(`\u{1F511} Secret Detection \u2014 \u2705 No issues found`));
     } else {
-      const statParts = [];
-      if (secrets.stats.critical > 0) statParts.push(import_chalk.default.red(`${secrets.stats.critical} critical`));
-      if (secrets.stats.high > 0) statParts.push(import_chalk.default.red(`${secrets.stats.high} high`));
-      if (secrets.stats.medium > 0) statParts.push(import_chalk.default.yellow(`${secrets.stats.medium} medium`));
-      if (secrets.stats.low > 0) statParts.push(import_chalk.default.dim(`${secrets.stats.low} low`));
-      lines.push(`   ${statParts.join(" \u2502 ")}`);
+      lines.push(import_chalk.default.green(`\u{1F511} Secret Detection \u2014 \u2705 Passed`) + import_chalk.default.yellow(` (${sec.findings.length} low-severity finding${sec.findings.length > 1 ? "s" : ""})`));
+    }
+  }
+  const hasLicenseFailures = (result.modules.license?.rejected.length ?? 0) > 0;
+  const hasSecurityFailures = result.modules.security ? result.modules.security.findings.filter((f) => f.severity === "critical" || f.severity === "high").length > 0 : false;
+  const hasSecretFailures = result.modules.secrets ? result.modules.secrets.findings.filter((f) => f.severity === "critical" || f.severity === "high").length > 0 : false;
+  if (hasLicenseFailures || hasSecurityFailures || hasSecretFailures) {
+    lines.push("");
+    lines.push(import_chalk.default.red.bold("\u274C Failures"));
+    lines.push("");
+    if (hasLicenseFailures) {
+      const lic = result.modules.license;
+      lines.push(import_chalk.default.red(`   \u{1F4DC} License Compliance \u2014 ${lic.rejected.length} rejected`));
+      formatPolicyResultsTruncated(lic.rejected, lines, import_chalk.default.red, 10);
+      lines.push("");
+    }
+    if (hasSecurityFailures) {
+      const sec = result.modules.security;
+      const critHighFindings = sec.findings.filter((f) => f.severity === "critical" || f.severity === "high");
+      const parts = [];
+      const critCount = critHighFindings.filter((f) => f.severity === "critical").length;
+      const highCount = critHighFindings.filter((f) => f.severity === "high").length;
+      if (critCount > 0) parts.push(`${critCount} critical`);
+      if (highCount > 0) parts.push(`${highCount} high`);
+      lines.push(import_chalk.default.red(`   \u{1F6E1}\uFE0F  Security Vulnerabilities \u2014 ${parts.join(", ")}`));
+      const vulnFails = critHighFindings.filter((f) => f.type === "vulnerability");
+      const healthFails = critHighFindings.filter((f) => f.type !== "vulnerability");
+      if (vulnFails.length > 0) formatSecurityFindings(vulnFails, lines, "Vulnerabilities");
+      if (healthFails.length > 0) formatSecurityFindings(healthFails, lines, "Health Issues");
       lines.push("");
-      formatSecretFindings(secrets.findings, lines);
     }
+    if (hasSecretFailures) {
+      const sec = result.modules.secrets;
+      const critHighFindings = sec.findings.filter((f) => f.severity === "critical" || f.severity === "high");
+      const parts = [];
+      const critCount = critHighFindings.filter((f) => f.severity === "critical").length;
+      const highCount = critHighFindings.filter((f) => f.severity === "high").length;
+      if (critCount > 0) parts.push(`${critCount} critical`);
+      if (highCount > 0) parts.push(`${highCount} high`);
+      lines.push(import_chalk.default.red(`   \u{1F511} Secret Detection \u2014 ${parts.join(", ")}`));
+      formatSecretFindings(critHighFindings, lines);
+      lines.push("");
+    }
+  }
+  const licenseWarnings = result.modules.license ? [...result.modules.license.warned, ...result.modules.license.unknown] : [];
+  const securityWarnings = result.modules.security ? result.modules.security.findings.filter((f) => f.severity === "medium" || f.severity === "low") : [];
+  const secretWarnings = result.modules.secrets ? result.modules.secrets.findings.filter((f) => f.severity === "medium" || f.severity === "low") : [];
+  const hasWarnings = licenseWarnings.length > 0 || securityWarnings.length > 0 || secretWarnings.length > 0;
+  if (hasWarnings) {
+    lines.push(import_chalk.default.yellow.bold("\u26A0\uFE0F  Warnings"));
     lines.push("");
+    if (licenseWarnings.length > 0) {
+      const warnedCount = result.modules.license.warned.length;
+      const unknownCount = result.modules.license.unknown.length;
+      const parts = [];
+      if (warnedCount > 0) parts.push(`${warnedCount} weak copyleft`);
+      if (unknownCount > 0) parts.push(`${unknownCount} unknown`);
+      lines.push(import_chalk.default.yellow(`   \u{1F4DC} License Compliance \u2014 ${parts.join(", ")}`));
+      formatPolicyResultsTruncated(licenseWarnings, lines, import_chalk.default.yellow, 10);
+      lines.push("");
+    }
+    if (securityWarnings.length > 0) {
+      const medCount = securityWarnings.filter((f) => f.severity === "medium").length;
+      const lowCount = securityWarnings.filter((f) => f.severity === "low").length;
+      const parts = [];
+      if (medCount > 0) parts.push(`${medCount} medium`);
+      if (lowCount > 0) parts.push(`${lowCount} low`);
+      lines.push(import_chalk.default.yellow(`   \u{1F6E1}\uFE0F  Security Vulnerabilities \u2014 ${parts.join(", ")}`));
+      const vulnWarns = securityWarnings.filter((f) => f.type === "vulnerability");
+      const healthWarns = securityWarnings.filter((f) => f.type !== "vulnerability");
+      if (vulnWarns.length > 0) formatSecurityFindings(vulnWarns, lines, "Vulnerabilities");
+      if (healthWarns.length > 0) formatSecurityFindings(healthWarns, lines, "Health Issues");
+      lines.push("");
+    }
+    if (secretWarnings.length > 0) {
+      const medCount = secretWarnings.filter((f) => f.severity === "medium").length;
+      const lowCount = secretWarnings.filter((f) => f.severity === "low").length;
+      const parts = [];
+      if (medCount > 0) parts.push(`${medCount} medium`);
+      if (lowCount > 0) parts.push(`${lowCount} low`);
+      lines.push(import_chalk.default.yellow(`   \u{1F511} Secret Detection \u2014 ${parts.join(", ")}`));
+      formatSecretFindings(secretWarnings, lines);
+      lines.push("");
+    }
   }
-  lines.push("\u2501".repeat(60));
+  lines.push("\u2501".repeat(62));
   if (result.passed) {
-    lines.push(import_chalk.default.green.bold(`\u2705 RESULT: All checks passed (${(result.totalScanDurationMs / 1e3).toFixed(1)}s)`));
+    lines.push(import_chalk.default.green.bold(`\u2705 RESULT: All checks passed`));
   } else {
     const failedModules = [];
     if (result.modules.license && !result.modules.license.passed) failedModules.push("license");
     if (result.modules.security && !result.modules.security.passed) failedModules.push("security");
     if (result.modules.secrets && !result.modules.secrets.passed) failedModules.push("secrets");
-    lines.push(import_chalk.default.red.bold(`\u274C RESULT: Failed \u2014 ${failedModules.join(", ")} check${failedModules.length > 1 ? "s" : ""} did not pass`));
+    lines.push(import_chalk.default.red.bold(`\u274C RESULT: ${failedModules.length} of ${enabledModules.length} check${enabledModules.length > 1 ? "s" : ""} failed`));
     lines.push("");
     lines.push(import_chalk.default.dim("\u{1F4A1} To fix:"));
     if (result.modules.license && !result.modules.license.passed) {
@@ -486,15 +576,21 @@ function formatPolicyResults(results, lines, colorFn) {
     lines.push(import_chalk.default.dim(`${reasonPrefix}Reason: ${getShortReason(r)}`));
   }
 }
-function formatPolicyResultsIndented(results, lines, colorFn) {
-  for (let i = 0; i < results.length; i++) {
+function formatPolicyResultsTruncated(results, lines, colorFn, maxItems) {
+  const showCount = Math.min(results.length, maxItems);
+  for (let i = 0; i < showCount; i++) {
     const r = results[i];
-    const isLast = i === results.length - 1;
+    const isLast = i === showCount - 1 && results.length <= maxItems;
     const prefix = isLast ? "      \u2514\u2500\u2500 " : "      \u251C\u2500\u2500 ";
     const reasonPrefix = isLast ? "          " : "      \u2502   ";
     lines.push(colorFn(`${prefix}${r.dependency.name}@${r.dependency.version} \u2014 ${r.dependency.license}`));
     lines.push(import_chalk.default.dim(`${reasonPrefix}Reason: ${getShortReason(r)}`));
   }
+  if (results.length > maxItems) {
+    const remaining = results.length - maxItems;
+    lines.push(import_chalk.default.dim(`      \u2514\u2500\u2500 ... and ${remaining} more`));
+    lines.push(import_chalk.default.dim("          Run with --format json for full details"));
+  }
 }
 function formatSecurityFindings(findings, lines, heading) {
   const MAX_FINDINGS = 15;
@@ -810,8 +906,13 @@ function registerScanCommand(program2) {
         }
         return;
       }
+      const showProgress = !options.silent && options.format === "table";
+      const onProgress = showProgress ? (msg) => {
+        process.stderr.write(`\r\x1B[K\x1B[2m  \u23F3 ${msg}\x1B[0m`);
+      } : void 0;
       const result = await unifiedScan({
         projectPath: options.project,
+        onProgress,
         config: {
           scanDevDependencies: options.dev || void 0,
           output: options.format !== "table" ? options.format : void 0,
@@ -835,6 +936,9 @@ function registerScanCommand(program2) {
           }
         }
       });
+      if (showProgress) {
+        process.stderr.write("\r\x1B[K");
+      }
       if (!options.silent) {
         switch (options.format) {
           case "json":
@@ -3914,7 +4018,7 @@ function registerAllowCommand(program2) {
 
 // src/cli.ts
 var program = new import_commander.Command();
-program.name("preship").description("Pre-ship verification: license compliance, security scanning, and secret detection \u2014 all before you ship.").version("2.0.2");
+program.name("preship").description("Pre-ship verification: license compliance, security scanning, and secret detection \u2014 all before you ship.").version("2.0.6");
 registerScanCommand(program);
 registerInitCommand(program);
 registerListCommand(program);

package/dist/index.d.ts

@@ -4,6 +4,8 @@ export { Dependency, DetectedProject, ExceptionEntry, LicenseSource, ModuleConfi
 interface ScanOptions {
     projectPath?: string;
     config?: Partial<PreshipConfig>;
+    /** Optional progress callback for CLI status updates */
+    onProgress?: (message: string) => void;
 }
 /**
  * Legacy scan function — license-only scan for backwards compatibility.

package/dist/index.js

@@ -119,8 +119,12 @@ async function unifiedScan(options) {
   }
   const mode = config.mode ?? "auto";
   const policy = config.policy ?? "commercial-safe";
+  const progress = options?.onProgress ?? (() => {
+  });
+  progress("Detecting project...");
   const projects = (0, import_core.detectProjects)(projectPath);
   const project = projects[0];
+  progress(`Parsing ${project.type} lockfile...`);
   const packageJsonPath = path.join(project.path, "package.json");
   let parsedDeps;
   switch (project.type) {
@@ -146,6 +150,7 @@ async function unifiedScan(options) {
   if (modules.license) {
     promises.push(
       (async () => {
+        progress("Scanning licenses...");
         const licenseStart = Date.now();
         const dependencies = await (0, import_license.resolveLicenses)(parsedDeps, projectPath, {
           mode,
@@ -179,6 +184,7 @@ async function unifiedScan(options) {
   if (modules.security) {
     promises.push(
       (async () => {
+        progress("Checking security vulnerabilities...");
         const securityConfig = (0, import_security.mergeSecurityConfig)(config.security);
         securityResult = await (0, import_security.scanSecurity)(parsedDeps, projectPath, securityConfig, mode);
       })()
@@ -187,6 +193,7 @@ async function unifiedScan(options) {
   if (modules.secrets) {
     promises.push(
       (async () => {
+        progress("Scanning for leaked secrets...");
         secretsResult = await (0, import_secrets.scanSecrets)(projectPath, config.secrets);
       })()
     );

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "preship",
-  "version": "2.0.2",
+  "version": "2.0.6",
   "description": "Pre-ship verification for modern dev teams. License compliance, security vulnerability scanning, and secret detection — all in one CLI. Zero config. Fully offline. Free forever.",
   "keywords": [
     "license",
@@ -56,9 +56,9 @@
   },
   "dependencies": {
     "@preship/core": "2.0.1",
-    "@preship/license": "2.0.0",
-    "@preship/security": "1.0.1",
-    "@preship/secrets": "1.0.2",
+    "@preship/license": "2.0.1",
+    "@preship/security": "1.0.2",
+    "@preship/secrets": "1.0.4",
     "chalk": "^4.1.2",
     "cli-table3": "^0.6.5",
     "commander": "^12.1.0"