proof-of-commitment 1.4.0 → 1.5.0

package/README.md

@@ -1,66 +1,55 @@
-# proof-of-commitment
+# Proof of Commitment
 
-> Supply chain risk scorer for npm and PyPI packages. Behavioral signals that can't be faked.
+[![Commitment Score](https://poc-backend.amdal-dev.workers.dev/badge/npm/proof-of-commitment)](https://getcommit.dev/audit?packages=proof-of-commitment)
 
-```
-npx proof-of-commitment axios zod chalk
-```
+> **Stars lie. Behavioral signals don't.**
 
-```
-──────────────────────────────────────────────────────────────────────────
-Package               Risk            Score    Publishers   Downloads     Age
-──────────────────────────────────────────────────────────────────────────
-axios                 🔴 CRITICAL      89       1            102.0M/wk     11.6y
-  ↳ 30+ GitHub contributors — publish-access concentration risk despite active community
-  └ longevity=25 momentum=25 releases=20 publishers=4 github=15
-zod                   🔴 CRITICAL      83       1            154.0M/wk     6.1y
-  ↳ 30+ GitHub contributors — publish-access concentration risk despite active community
-  └ longevity=25 momentum=25 releases=18 publishers=4 github=11
-chalk                 🔴 CRITICAL      75       1            414.6M/wk     12.7y
-  ↳ 30+ GitHub contributors — publish-access concentration risk despite active community
-  └ longevity=25 momentum=22 releases=13 publishers=4 github=11
-──────────────────────────────────────────────────────────────────────────
-
-⚠  3 CRITICAL packages found.
-   CRITICAL = sole npm publisher + >10M weekly downloads (publish-access concentration risk)
-   Full breakdown: https://getcommit.dev/audit?packages=axios,zod,chalk
-```
+An MCP server and web tool that scores npm packages, PyPI packages, Rust crates, and GitHub repos on **behavioral commitment** — signals that are harder to fake than stars, READMEs, or download counts.
 
-## What this does
+## The supply chain problem
 
-`npm audit` finds *known* CVEs — vulnerabilities already catalogued in a database. This scores *structural risk before it becomes a CVE*.
+26 of the 91 npm packages with >10M weekly downloads have a **single npm publisher**. Together they account for over 3 billion downloads per week. `npm audit` doesn't surface this. Stars don't either.
 
-The axios attack on April 1st, 2026: `npm audit` showed zero issues beforehand. Proof of Commitment flagged axios as CRITICAL (1 npm publisher, 96M downloads/week) — the exact publish-access concentration profile that made it a high-value target.
+Four packages in a typical Node.js project are CRITICAL right now:
+- **chalk** — 413M downloads/week, **1 npm publisher**
+- **zod** — 163M downloads/week, **1 npm publisher** (30+ GitHub contributors)
+- **lodash** — 145M downloads/week, **1 npm publisher**
+- **axios** — 99M downloads/week, **1 npm publisher** (attacked March 30, 2026)
 
-**Score dimensions:**
-- **Longevity** (25 pts) — years in production
-- **Download Momentum** (25 pts) — weekly download trend
-- **Release Consistency** (20 pts) — days since last release
-- **Publisher Depth** (15 pts) — npm publish-access holders
-- **GitHub Backing** (15 pts) — organization/team support
+They won't appear in your `package.json` either — but these are in almost every project:
+- **minimatch** — 562M downloads/week, **1 npm publisher**
+- **glob** — 333M downloads/week, **1 npm publisher**
+- **cross-spawn** — 190M downloads/week, **1 npm publisher**
 
-**CRITICAL** = sole npm publisher + >10M weekly downloads (publish-access concentration risk)
+Behavioral signals surface this. Stars and READMEs don't.
 
-## Usage
+## Try it now
 
+**Terminal (zero install):**
 ```bash
-# Score npm packages
-npx proof-of-commitment axios zod chalk lodash express
-
-# Score PyPI packages
-npx proof-of-commitment --pypi litellm langchain requests numpy
-
-# Auto-detect from package.json or requirements.txt
+npx proof-of-commitment axios zod chalk
+# scan your own project:
 npx proof-of-commitment --file package.json
-npx proof-of-commitment --file requirements.txt
-
-# Short alias
-npx poc axios zod chalk
+# scan ALL transitive dependencies via lock file (finds the hidden CRITICAL packages):
+npx proof-of-commitment --file package-lock.json   # npm
+npx proof-of-commitment --file yarn.lock           # yarn
+npx proof-of-commitment --file pnpm-lock.yaml      # pnpm
+# pnpm monorepo — scans all workspace packages, deduplicates:
+npx proof-of-commitment --file pnpm-workspace.yaml  # pnpm workspaces
+# JSON output for CI/CD pipelines (exits 1 if CRITICAL found):
+npx proof-of-commitment --file package-lock.json --json | jq '.criticalCount'
+# PyPI too:
+npx proof-of-commitment --pypi litellm langchain requests
+# Cargo (Rust) via API:
+curl -s https://poc-backend.amdal-dev.workers.dev/api/audit \
+  -X POST -H "Content-Type: application/json" \
+  -d '{"packages":["serde","tokio","reqwest"],"ecosystem":"cargo"}'
 ```
 
-## Zero-install MCP server (for Claude, Cursor, Windsurf)
+**Web demo (no install):** [getcommit.dev/audit](https://getcommit.dev/audit) — paste your packages, see risk scores in seconds.
+
+**MCP server (zero install):**
 
-Add to your AI tool's config:
 ```json
 {
   "mcpServers": {
@@ -72,20 +61,234 @@ Add to your AI tool's config:
 }
 ```
 
-Then ask: *"Audit the dependencies in my package.json"* or *"What's the risk profile of vercel/ai?"*
+Add to Claude Desktop, Cursor, Windsurf, or any MCP-compatible AI tool. Then ask:
+
+> "Audit my package.json for supply chain risk"
+> "Score axios, zod, chalk, lodash — which is highest risk?"
+> "Is vercel/ai actively maintained?"
 
 ## GitHub Action
 
-Posts audit results directly on your PR:
+Add supply chain auditing to any CI pipeline in 30 seconds — auto-detects packages from `package.json` or `requirements.txt`, **posts results as a PR comment**, writes to GitHub Step Summary, and optionally fails on CRITICAL packages.
+
+Use the dedicated action at [piiiico/commit-action](https://github.com/piiiico/commit-action):
+
 ```yaml
-- uses: piiiico/proof-of-commitment@main
-  with:
-    fail-on-critical: false
-    comment-on-pr: true
+# .github/workflows/supply-chain.yml
+name: Supply Chain Audit
+on:
+  pull_request:
+    paths: ['package.json', 'package-lock.json', 'bun.lock']
+
+jobs:
+  audit:
+    runs-on: ubuntu-latest
+    permissions:
+      pull-requests: write
+    steps:
+      - uses: actions/checkout@v4
+      - uses: piiiico/commit-action@v1
+        with:
+          fail-on-critical: true   # blocks merges on CRITICAL packages
+          comment-on-pr: true      # posts results as a PR comment
+```
+
+When `comment-on-pr: true` (default), the action automatically posts the audit table as a comment on the pull request — and **updates the same comment** on re-run, so you don't get comment spam. Reviewers see the risk table without leaving the PR.
+
+**Inputs:**
+
+| Input | Default | Description |
+|-------|---------|-------------|
+| `packages` | _(auto)_ | Comma-separated package names (auto-detected from `package.json`/`requirements.txt` if not set) |
+| `packages-file` | _(auto)_ | Path to `package.json` or `requirements.txt` (default: auto-detect in workspace root) |
+| `fail-on-critical` | `true` | Fail the workflow if CRITICAL packages are found |
+| `max-packages` | `20` | Max packages to audit when auto-detecting |
+| `include-dev-dependencies` | `false` | Include `devDependencies` from `package.json` |
+| `comment-on-pr` | `true` | Post audit results as a PR comment (requires `pull-requests: write` permission) |
+| `api-key` | _(none)_ | [Commit Pro](https://getcommit.dev/pricing) API key — enables batch requests and 10K requests/month |
+| `api-url` | _(prod)_ | Override API endpoint (useful for self-hosting) |
+
+**Outputs:** `has-critical`, `critical-count`, `audit-summary` (markdown table, also written to Step Summary).
+
+**Free vs Pro:** Without an API key, packages are audited one at a time (with delays to respect rate limits). With a Pro API key, all packages are audited in a single batch request — faster and with higher monthly limits.
+
+Example PR comment / Step Summary output:
+
+```
+| Package | Risk        | Score | Publishers | Downloads/wk | Age   |
+|---------|-------------|-------|------------|--------------|-------|
+| chalk   | 🔴 CRITICAL | 75    | 1          | 380M         | 12.7y |
+| zod     | 🔴 CRITICAL | 83    | 1          | 133M         | 6.1y  |
+| axios   | 🔴 CRITICAL | 89    | 1          | 93M          | 11.6y |
+```
+
+## README Badges
+
+Add a Commit Trust badge to any npm package you maintain or depend on:
+
+```markdown
+![Commit Trust](https://poc-backend.amdal-dev.workers.dev/badge/YOUR-PACKAGE)
+```
+
+Examples:
+
+| Package | Badge URL |
+|---------|-----------|
+| chalk | `![Commit Trust](https://poc-backend.amdal-dev.workers.dev/badge/chalk)` |
+| react | `![Commit Trust](https://poc-backend.amdal-dev.workers.dev/badge/react)` |
+| express | `![Commit Trust](https://poc-backend.amdal-dev.workers.dev/badge/express)` |
+| @babel/core | `![Commit Trust](https://poc-backend.amdal-dev.workers.dev/badge/@babel/core)` |
+
+Grades: 🟢 OK (75+) · 🟠 WARNING (40–74) · 🔴 CRITICAL (<40 or sole npm publisher with 10M+ weekly downloads)
+
+Badges are cached 1 hour. No API key needed.
+
+Also supports PyPI, Cargo, and the full ecosystem-specific format:
+
+```markdown
+![commit score](https://poc-backend.amdal-dev.workers.dev/api/badge/npm/YOUR-PACKAGE)
+![commit score](https://poc-backend.amdal-dev.workers.dev/api/badge/pypi/YOUR-PACKAGE)
+![commit score](https://poc-backend.amdal-dev.workers.dev/api/badge/cargo/YOUR-CRATE)
+```
+
+## REST API
+
+No API key. No install.
+
+```bash
+curl https://poc-backend.amdal-dev.workers.dev/api/audit \
+  -X POST \
+  -H "Content-Type: application/json" \
+  -d '{"packages": ["axios", "zod", "chalk", "lodash", "express"]}'
 ```
 
-## Links
+```json
+{
+  "count": 5,
+  "results": [
+    {
+      "name": "chalk",
+      "ecosystem": "npm",
+      "score": 75,
+      "maintainers": 1,
+      "weeklyDownloads": 398397580,
+      "ageYears": 12.7,
+      "trend": "stable",
+      "riskFlags": ["CRITICAL"],
+      "scorecardScore": 3.6,        // null if no GitHub repo
+      "hasDangerousWorkflow": false  // null if no Scorecard data
+    },
+    ...
+  ]
+}
+```
+
+## 8 MCP tools
+
+| Tool | Description |
+|------|-------------|
+| `audit_dependencies` | Batch risk audit for up to 20 npm/PyPI/Cargo packages |
+| `lookup_npm_package` | Single npm package behavioral profile |
+| `lookup_pypi_package` | Single PyPI package behavioral profile |
+| `lookup_cargo_crate` | Single Rust crate behavioral profile (crates.io) |
+| `lookup_github_repo` | GitHub repo commitment score (longevity, commit frequency, contributor depth) |
+| `lookup_business` | Norwegian business register — operating years, employees, financials |
+| `lookup_business_by_org` | Same, by org number |
+| `query_commitment` | Browser extension behavioral data (unique verified visitors, repeat rate) |
+
+## What the score measures
+
+Each package is scored 0–100 across:
+
+- **Longevity** — How long has the package existed? Abandoned packages get reactivated for attacks.
+- **Publisher depth** — Single npm publisher + millions of weekly downloads = the attack surface LiteLLM exploited. (Publisher = person with npm publish access, distinct from GitHub contributors.)
+- **Release consistency** — Regular releases signal active oversight. Long gaps = vulnerability accumulation.
+- **Download trend** — Growing packages attract more scrutiny (and attacks). Stable = lower profile.
+- **OpenSSF Scorecard** — Process security (code review enforcement, branch protection, CI/CD safety). Separate from behavioral signals. High Scorecard ≠ safe from credential theft attacks.
+
+> Both axios (8.1/10 Scorecard) and chalk (3.6/10 Scorecard) score CRITICAL on behavioral signals. They measure different attack surfaces — Scorecard catches process gaps, behavioral signals catch publisher concentration.
+
+**Risk flags:**
+- `CRITICAL` — single npm publisher + >10M weekly downloads (exact LiteLLM/axios attack profile)
+- `HIGH` — package <1yr old + rapid adoption
+- `WARN` — no release in 12+ months
+
+## Real data points
+
+```
+# packages you know about:
+chalk       — score 75, 1 publisher, 413M/week  ⚑ CRITICAL
+zod         — score 86, 1 publisher, 163M/week  ⚑ CRITICAL  (30+ GitHub contributors)
+lodash      — score 81, 1 publisher, 145M/week  ⚑ CRITICAL
+axios       — score 86, 1 publisher,  99M/week  ⚑ CRITICAL  (attacked Mar 30 2026)
+express     — score 90, 5 publishers, 95M/week
+
+# packages probably not in your package.json, definitely in your lock file:
+minimatch   — score 78, 1 publisher, 562M/week  ⚑ CRITICAL
+glob        — score 80, 1 publisher, 333M/week  ⚑ CRITICAL
+cross-spawn — score 72, 1 publisher, 190M/week  ⚑ CRITICAL
+
+# post-attack:
+litellm     — score 74, 1 publisher            ⚑ CRITICAL  (supply chain attack Mar 2026)
+
+# Rust crates (new in v1.3.0):
+serde       — score 78, 1 owner,  13M/week  ⚑ CRITICAL  (dtolnay sole owner)
+tokio       — score 89, 2 owners, 10M/week
+reqwest     — score 85, 1 owner,   8M/week  ⚑ HIGH
+```
+
+## Why behavioral signals
+
+The LiteLLM attack (March 2026) and axios attack (March 30, 2026) followed the same pattern: stolen credentials → malicious package pushed → 97M+ machines exposed. Both packages scored CRITICAL by these metrics *before* the attacks.
 
-- **Web demo:** https://getcommit.dev/audit
-- **Live watchlist:** https://getcommit.dev/watchlist (top 25 npm packages by structural risk)
-- **GitHub:** https://github.com/piiiico/proof-of-commitment
+Declarative signals (stars, README quality, CI badges) don't capture this risk. Behavioral commitment does.
+
+## Stack
+
+| Layer | Technology |
+|-------|-----------|
+| Backend | Cloudflare Workers + D1 |
+| MCP | Model Context Protocol SDK |
+| Data | npm registry, PyPI, crates.io, GitHub API, Brønnøysund (NO) |
+| Landing | Astro + Cloudflare Pages |
+
+## Roadmap
+
+Planned, not promised. The project is early-stage — contributions welcome on any of these.
+
+| Feature | Status | Notes |
+|---------|--------|-------|
+| **Cargo (Rust) registry support** | ✅ Live | MCP tool, REST API, badge endpoint — `ecosystem: "cargo"` |
+| **Go modules support** | Planned | pkg.go.dev API + GitHub backing score |
+| **Score breakdown visualization** | Planned | Chart component for the 5 dimensions on getcommit.dev/audit |
+| **`--json` flag for CLI** | ✅ Live | `npx proof-of-commitment --file package-lock.json --json \| jq '.criticalCount'` |
+| **pnpm workspace monorepo support** | ✅ Live | `--file pnpm-workspace.yaml` or auto-detected from `pnpm-lock.yaml` |
+| **Historical score tracking** | Planned | Trend charts — was this package getting riskier over time? |
+| **Org-level dashboards** | Planned | Aggregate risk view across all repos in a GitHub org |
+
+See [open issues](https://github.com/piiiico/proof-of-commitment/issues) for things you can help with today.
+
+## The broader vision
+
+Supply chain auditing is the first tool. The underlying primitive is a **commitment graph** — behavioral signals that replace content-based trust across any domain.
+
+When content is free to fake (reviews, stars, READMEs), commitment becomes the signal. A publisher who has shipped 847 releases over 12 years is a different kind of commitment than one who published once in 2023.
+
+The same logic applies to websites, businesses, and AI agents. Two card networks have independently named this gap: Mastercard Verifiable Intent §9.2 explicitly lists behavioral trust as "not covered." Visa TAP identifies agents without answering whether to trust them.
+
+Proof of Commitment is the trust layer they're pointing at.
+
+→ [getcommit.dev](https://getcommit.dev)
+
+## Run locally
+
+```bash
+bun install
+bun run dev:backend     # local server with SQLite
+bun run test:e2e        # E2E test with mock World ID
+```
+
+Deploy:
+```bash
+bun run deploy          # deploys to Cloudflare Workers
+```

package/index.js

@@ -144,12 +144,13 @@ ${clr(c.bold, 'Usage:')}
   npx proof-of-commitment --file package-lock.json  Audit ALL dependencies (lock file)
   npx proof-of-commitment --file yarn.lock      Audit from yarn lock file
   npx proof-of-commitment --file pnpm-lock.yaml Audit from pnpm lock file
+  npx proof-of-commitment --file pnpm-workspace.yaml  Audit entire pnpm monorepo
   npx proof-of-commitment --file requirements.txt  Audit Python packages
 
 ${clr(c.bold, 'Options:')}
   --json        Output results as JSON (exits 1 if any CRITICAL found — useful in CI)
   --pypi        Score PyPI packages instead of npm
-  --file, -f    Read packages from package.json, lock file, or requirements.txt
+  --file, -f    Read packages from package.json, lock file, pnpm-workspace.yaml, or requirements.txt
 
 ${clr(c.bold, 'Examples:')}
   npx proof-of-commitment axios zod chalk
@@ -229,12 +230,124 @@ function parseLockPnpm(content) {
   return [...pkgs];
 }
 
-async function readPackagesFromFile(filePath) {
+/**
+ * Parse pnpm-workspace.yaml and resolve all workspace package dependencies.
+ * Reads package.json from each workspace, merges deps, deduplicates.
+ * Internal workspace packages are excluded from the audit list.
+ */
+async function parsePnpmWorkspace(filePath) {
   const fs = await import('fs');
   const path = await import('path');
   const content = fs.readFileSync(filePath, 'utf-8');
+  const dir = path.dirname(path.resolve(filePath));
+
+  // Parse packages list from YAML
+  // Format: "packages:\n  - 'apps/*'\n  - 'packages/*'"
+  const patterns = [];
+  const lines = content.split('\n');
+  let inPackages = false;
+  for (const line of lines) {
+    if (/^packages\s*:/.test(line)) { inPackages = true; continue; }
+    if (inPackages) {
+      if (/^\s+-/.test(line)) {
+        const pattern = line.replace(/^\s+-\s*/, '').replace(/['"]/g, '').trim();
+        if (pattern) patterns.push(pattern);
+      } else if (/^\S/.test(line) && line.trim()) {
+        inPackages = false;
+      }
+    }
+  }
+
+  if (patterns.length === 0) {
+    throw new Error('No workspace packages found in pnpm-workspace.yaml');
+  }
+
+  // Split into includes and excludes
+  const excludes = patterns.filter(p => p.startsWith('!')).map(p => p.slice(1));
+  const includes = patterns.filter(p => !p.startsWith('!'));
+
+  // Resolve patterns to directories containing package.json
+  const workspaceDirs = [];
+  for (const pattern of includes) {
+    if (pattern.endsWith('/*') || pattern.endsWith('/**')) {
+      // Glob: 'apps/*' -> list all subdirectories of apps/
+      const parentDir = path.join(dir, pattern.replace(/\/\*\*?$/, ''));
+      try {
+        const entries = fs.readdirSync(parentDir, { withFileTypes: true });
+        for (const entry of entries) {
+          if (entry.isDirectory()) {
+            const fullPath = path.join(parentDir, entry.name);
+            const isExcluded = excludes.some(ex => fullPath.includes(ex) || entry.name === ex);
+            if (!isExcluded) workspaceDirs.push(fullPath);
+          }
+        }
+      } catch { /* directory doesn't exist — skip */ }
+    } else {
+      // Direct path: 'packages/shared'
+      const fullPath = path.join(dir, pattern);
+      try {
+        fs.statSync(fullPath);
+        workspaceDirs.push(fullPath);
+      } catch { /* doesn't exist — skip */ }
+    }
+  }
+
+  // Collect workspace package names (to exclude from audit — they're internal)
+  const workspacePackageNames = new Set();
+  for (const wsDir of workspaceDirs) {
+    try {
+      const pkg = JSON.parse(fs.readFileSync(path.join(wsDir, 'package.json'), 'utf-8'));
+      if (pkg.name) workspacePackageNames.add(pkg.name);
+    } catch { /* no package.json — skip */ }
+  }
+
+  // Read root package.json + all workspace package.json files, merge deps
+  const allDeps = new Set();
+  let workspaceCount = 0;
+
+  // Root
+  try {
+    const rootPkg = JSON.parse(fs.readFileSync(path.join(dir, 'package.json'), 'utf-8'));
+    if (rootPkg.dependencies) Object.keys(rootPkg.dependencies).forEach(d => allDeps.add(d));
+    if (rootPkg.devDependencies) Object.keys(rootPkg.devDependencies).forEach(d => allDeps.add(d));
+  } catch { /* no root package.json */ }
+
+  // Workspaces
+  for (const wsDir of workspaceDirs) {
+    try {
+      const pkg = JSON.parse(fs.readFileSync(path.join(wsDir, 'package.json'), 'utf-8'));
+      if (pkg.dependencies) Object.keys(pkg.dependencies).forEach(d => allDeps.add(d));
+      if (pkg.devDependencies) Object.keys(pkg.devDependencies).forEach(d => allDeps.add(d));
+      workspaceCount++;
+    } catch { /* no package.json in workspace dir */ }
+  }
+
+  // Remove internal workspace packages from audit list
+  for (const name of workspacePackageNames) {
+    allDeps.delete(name);
+  }
+
+  return {
+    packages: [...allDeps],
+    ecosystem: 'npm',
+    lockfile: false,
+    totalInFile: allDeps.size,
+    workspaceCount,
+  };
+}
+
+async function readPackagesFromFile(filePath) {
+  const fs = await import('fs');
+  const path = await import('path');
   const basename = path.basename(filePath).toLowerCase();
 
+  // pnpm-workspace.yaml — monorepo workspace scanner
+  if (basename === 'pnpm-workspace.yaml' || basename === 'pnpm-workspace.yml') {
+    return parsePnpmWorkspace(filePath);
+  }
+
+  const content = fs.readFileSync(filePath, 'utf-8');
+
   // package-lock.json
   if (basename === 'package-lock.json') {
     const pkgs = parseLockNpm(content);
@@ -247,8 +360,20 @@ async function readPackagesFromFile(filePath) {
     return { packages: pkgs, ecosystem: 'npm', lockfile: true, totalInFile: pkgs.length };
   }
 
-  // pnpm-lock.yaml
+  // pnpm-lock.yaml — also check for workspace file to give better detection
   if (basename === 'pnpm-lock.yaml' || basename === 'pnpm-lock.yml') {
+    const dir = path.dirname(path.resolve(filePath));
+    const workspaceFile = path.join(dir, 'pnpm-workspace.yaml');
+    let hasWorkspace = false;
+    try { fs.statSync(workspaceFile); hasWorkspace = true; } catch {}
+
+    if (hasWorkspace) {
+      // Monorepo detected — use workspace-aware parsing
+      const result = await parsePnpmWorkspace(workspaceFile);
+      result.monorepoDetected = true;
+      return result;
+    }
+
     const pkgs = parseLockPnpm(content);
     return { packages: pkgs, ecosystem: 'npm', lockfile: true, totalInFile: pkgs.length };
   }
@@ -274,7 +399,7 @@ async function readPackagesFromFile(filePath) {
     return { packages: pkgs, ecosystem: 'pypi', lockfile: false };
   }
 
-  throw new Error(`Unsupported file: ${basename}. Supported: package.json, package-lock.json, yarn.lock, pnpm-lock.yaml, requirements.txt`);
+  throw new Error(`Unsupported file: ${basename}. Supported: package.json, package-lock.json, yarn.lock, pnpm-lock.yaml, pnpm-workspace.yaml, requirements.txt`);
 }
 
 /**
@@ -359,7 +484,14 @@ async function main() {
       ecosystem = result.ecosystem;
       isLockfile = result.lockfile || false;
       totalInFile = result.totalInFile || packages.length;
-      if (!jsonOutput) console.log(clr(c.dim, `Detected ${totalInFile} packages from ${filePath} (${ecosystem})`));
+      if (result.workspaceCount) {
+        if (!jsonOutput) console.log(clr(c.dim, `Monorepo: ${result.workspaceCount} workspace${result.workspaceCount > 1 ? 's' : ''} → ${totalInFile} unique external dependencies (${ecosystem})`));
+        if (result.monorepoDetected && !jsonOutput) {
+          console.log(clr(c.dim, `  (auto-detected pnpm-workspace.yaml next to ${filePath})`));
+        }
+      } else {
+        if (!jsonOutput) console.log(clr(c.dim, `Detected ${totalInFile} packages from ${filePath} (${ecosystem})`));
+      }
     } catch (err) {
       console.error(`Error reading ${filePath}: ${err.message}`);
       process.exit(1);

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "proof-of-commitment",
-  "version": "1.4.0",
-  "description": "Supply chain risk scorer for npm and PyPI packages — behavioral signals that can't be faked",
+  "version": "1.5.0",
+  "description": "Supply chain risk scorer for npm, PyPI, and Cargo packages — behavioral signals that can't be faked",
   "type": "module",
   "bin": {
     "proof-of-commitment": "./index.js",
@@ -17,6 +17,11 @@
     "security",
     "npm",
     "pypi",
+    "cargo",
+    "rust",
+    "pnpm",
+    "monorepo",
+    "workspace",
     "dependencies",
     "audit",
     "risk",