npm - push-sentinel - Versions diffs - 0.1.2 → 0.1.4 - Mend

push-sentinel 0.1.2 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -23,7 +23,7 @@ $ git push
 ## Install
 ```sh
-npx push-sentinel install
+npx --yes --prefer-online push-sentinel@latest install
 ```
 That's it. Runs automatically on every `git push` from now on.
@@ -59,13 +59,13 @@ Want hard blocking for HIGH findings? Add `--block-on-high`:
 ```sh
 # edit .git/hooks/pre-push, change the scan line to:
-npx push-sentinel scan --local-sha "$local_sha" --remote-sha "$remote_sha" --block-on-high
+npx --yes --prefer-online push-sentinel@latest scan --local-sha "$local_sha" --remote-sha "$remote_sha" --block-on-high
 ```
 ## Manual scan
 ```sh
-npx push-sentinel scan
+npx --yes --prefer-online push-sentinel@latest scan
 ```
 Manual scan checks, in order:
@@ -78,14 +78,27 @@ Manual scan checks, in order:
 ## Uninstall
 ```sh
-npx push-sentinel uninstall
+npx --yes --prefer-online push-sentinel@latest uninstall
 ```
 Your original `pre-push` hook is restored automatically.
+## GitHub Actions
+Want to enforce secret scanning across your team or org? Use the [GitHub Action](https://github.com/Pmaind/push-sentinel-action):
+```yaml
+- uses: Pmaind/push-sentinel-action@v1
+  env:
+    GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+```
+Blocks PRs with HIGH severity findings and posts a comment with details.
 ## Details
 - Scans only the commits being pushed — not your entire history
 - Zero dependencies (Node.js stdlib only)
 - Node.js >= 16
 - Existing `pre-push` hooks are preserved and still run
+- For the most predictable versioning in a repo, install as a dev dependency and run the local binary via `npx push-sentinel`

package/hook-template.sh CHANGED Viewed

@@ -14,7 +14,7 @@ STDIN_DATA=""
 while read local_ref local_sha remote_ref remote_sha; do
   STDIN_DATA="${STDIN_DATA}${local_ref} ${local_sha} ${remote_ref} ${remote_sha}
 "
-  npx push-sentinel scan --local-sha "$local_sha" --remote-sha "$remote_sha"
+  npx --yes --prefer-online push-sentinel@latest scan --local-sha "$local_sha" --remote-sha "$remote_sha"
   RESULT=$?
   if [ $RESULT -ne 0 ]; then
     EXIT_CODE=$RESULT

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "push-sentinel",
-  "version": "0.1.2",
+  "version": "0.1.4",
   "description": "Warns you if secrets are in your git diff before push.",
   "bin": {
     "push-sentinel": "bin/cli.js"

package/src/install.js CHANGED Viewed

@@ -41,7 +41,7 @@ STDIN_DATA=""
 while read local_ref local_sha remote_ref remote_sha; do
   STDIN_DATA="${'$'}{STDIN_DATA}${'$'}{local_ref} ${'$'}{local_sha} ${'$'}{remote_ref} ${'$'}{remote_sha}
 "
-  npx push-sentinel scan --local-sha "$local_sha" --remote-sha "$remote_sha"
+  npx --yes --prefer-online push-sentinel@latest scan --local-sha "$local_sha" --remote-sha "$remote_sha"
   RESULT=$?
   if [ $RESULT -ne 0 ]; then
     EXIT_CODE=$RESULT
@@ -79,7 +79,7 @@ function install() {
   fs.writeFileSync(hookPath, hookContent(), 'utf8');
   fs.chmodSync(hookPath, 0o755);
   console.log('[push-sentinel] Installed pre-push hook.');
-  console.log('[push-sentinel] Tip: to block pushes on HIGH findings, edit the hook to use: npx push-sentinel scan --block-on-high');
+  console.log('[push-sentinel] Tip: to block pushes on HIGH findings, edit the hook to use: npx --yes --prefer-online push-sentinel@latest scan --block-on-high');
 }
 function uninstall() {