proof-of-commitment 1.8.0 → 1.8.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/index.js +8 -2
- package/package.json +1 -1
package/index.js
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
2
|
/**
|
|
3
|
-
* proof-of-commitment CLI v1.8.
|
|
3
|
+
* proof-of-commitment CLI v1.8.1
|
|
4
4
|
* Scores npm/PyPI/Cargo/Go packages on behavioral commitment signals.
|
|
5
5
|
* Usage: npx proof-of-commitment [packages...] [options]
|
|
6
6
|
*/
|
|
@@ -170,12 +170,18 @@ function printTable(results, { totalScanned, totalCritical, lockfile } = {}) {
|
|
|
170
170
|
const topPkgs = results.slice(0, 10).map(r => r.name).join(',');
|
|
171
171
|
console.log(clr(c.cyan, `\n 🔗 Full report: ${WEB}?packages=${encodeURIComponent(topPkgs)}`));
|
|
172
172
|
console.log(clr(c.cyan, ` 🤖 GitHub Action: github.com/piiiico/commit-action — block CRITICAL packages in CI`));
|
|
173
|
+
|
|
174
|
+
// Contextual upsell — show when findings make monitoring relevant
|
|
175
|
+
if (effectiveCritical > 0) {
|
|
176
|
+
console.log(clr(c.dim, `\n 📊 Track ${effectiveCritical === 1 ? 'this package' : 'these packages'} daily. Get alerted on score changes.`));
|
|
177
|
+
console.log(clr(c.dim, ` Commit Pro — batch API, monitoring, alerts → https://getcommit.dev/pricing`));
|
|
178
|
+
}
|
|
173
179
|
console.log();
|
|
174
180
|
}
|
|
175
181
|
|
|
176
182
|
function printHelp() {
|
|
177
183
|
console.log(`
|
|
178
|
-
${clr(c.bold, 'proof-of-commitment')} v1.8.
|
|
184
|
+
${clr(c.bold, 'proof-of-commitment')} v1.8.1 — supply chain risk scorer
|
|
179
185
|
|
|
180
186
|
${clr(c.bold, 'Usage:')}
|
|
181
187
|
npx proof-of-commitment Auto-detect manifest in current dir
|