secure-repo 1.0.2 → 1.0.4

package/README.md

@@ -1,4 +1,6 @@
-# Secure Repo
+# ShipSecure
+
+[Website](https://shipsecure.sebiomo.com) | [Get the Pro Pack](https://buy.polar.sh/polar_cl_q7Wa3Gcng42437OoTx4wHVNyMMyYv0WbtobUv145EZH)
 
 **Drop production-grade security standards into any repository in 30 seconds.**
 
@@ -19,7 +21,7 @@ npx secure-repo audit
 ```
 
 ```
-  secure-repo audit
+  shipsecure audit
 
   Scanning repository for security issues...
 
@@ -47,6 +49,12 @@ npx secure-repo audit
 
 Zero setup. Zero dependencies. Just run it.
 
+**Don't use the terminal?** Just tell your AI agent:
+
+> Run `npx secure-repo audit` in my project
+
+Works with Cursor, Claude Code, Windsurf, Copilot — any AI coding agent that can run commands.
+
 ---
 
 ## The Problem
@@ -65,7 +73,7 @@ npx secure-repo init
 ```
 
 ```
-  secure-repo - Adding production standards to your project
+  shipsecure - Adding production standards to your project
 
   Free templates:
     [done] SECURITY.md
@@ -160,6 +168,7 @@ npx secure-repo init --key <your-license-key>
 npx secure-repo init              # Add free security templates
 npx secure-repo init --key <key>  # Add free + pro templates (with license key)
 npx secure-repo audit             # Scan your repo for security issues
+npx secure-repo upgrade           # See what's in the pro pack
 npx secure-repo import <zip>      # Import pro templates from zip (offline)
 npx secure-repo check             # Check if your templates are outdated
 npx secure-repo list              # Show all available templates
@@ -191,13 +200,13 @@ When an AI agent sees `SECURITY.md` in your project root, it follows those rules
 
 **With policy files:** The agent follows your standards. Every generated endpoint validates input, checks auth, and handles errors safely.
 
-Secure Repo gives your AI agents the rules they need to write production-safe code.
+ShipSecure gives your AI agents the rules they need to write production-safe code.
 
 ---
 
 ## Support This Project
 
-If Secure Repo helps you ship safer software, consider [sponsoring development](https://github.com/sponsors/sebiomoa).
+If ShipSecure helps you ship safer software, consider [sponsoring development](https://github.com/sponsors/sebiomoa).
 
 ---
 

package/bin/cli.js

@@ -10,7 +10,7 @@ const FREE_DIR = path.join(TEMPLATES_DIR, "free");
 
 const POLAR_ORGANIZATION_ID = "d55baa70-3a94-4549-901a-2b4c920ff122";
 
-const PRO_ZIP_URL = "https://github.com/sebiomoa/secure-repo/releases/latest/download/secure-repo-pro.zip";
+const PRO_ZIP_URL = "https://github.com/sebiomoa/shipsecure/releases/latest/download/shipsecure-pro.zip";
 
 const args = process.argv.slice(2);
 const command = args[0];
@@ -48,6 +48,7 @@ function printHelp() {
     npx secure-repo import <file>     Import pro templates from a zip file (offline)
     npx secure-repo check             Check which templates are outdated
     npx secure-repo list              Show available free templates
+    npx secure-repo upgrade            See what's in the pro pack
 
   Options:
     --key      Your license key (from purchase)
@@ -211,7 +212,7 @@ function downloadFile(url, destPath) {
 // Extract zip and install pro templates
 // ============================================================
 function installFromZip(zipPath, outputDir, force) {
-  const tempDir = path.join(outputDir, ".secure-repo-temp");
+  const tempDir = path.join(outputDir, ".shipsecure-temp");
 
   try {
     fs.mkdirSync(tempDir, { recursive: true });
@@ -296,7 +297,7 @@ async function init() {
     const freeResult = copyFiles(FREE_DIR, outputDir, force);
 
     // Download and install pro templates
-    const zipPath = path.join(outputDir, ".secure-repo-pro.zip");
+    const zipPath = path.join(outputDir, ".shipsecure-pro.zip");
     console.log("\n  Downloading pro templates...");
 
     try {
@@ -330,8 +331,11 @@ async function init() {
     console.log("\n  Next steps:");
     console.log("    1. Customize the templates for your project");
     console.log("    2. Run: npx secure-repo audit");
-    console.log("    3. Get pro templates: npx secure-repo init --key <your-key>");
-    console.log("       Purchase at: https://buy.polar.sh/polar_cl_q7Wa3Gcng42437OoTx4wHVNyMMyYv0WbtobUv145EZH");
+    console.log("\n  ────────────────────────────────────");
+    console.log("  Want 27 more files? Database, deployment, incident response,");
+    console.log("  payments, access control, 100+ point audit checklist & more.");
+    console.log("\n  Run: npx secure-repo upgrade");
+    console.log("  ────────────────────────────────────");
     console.log();
   }
 }
@@ -524,6 +528,18 @@ function audit() {
     console.log("\n  Looking good! Your repo meets basic security standards.");
   }
 
+  // Pro upsell after audit — mention missing pro files
+  const proOnlyFiles = ["DATABASE.md", "DEPLOYMENT.md", "INCIDENT_RESPONSE.md", "ENV_VARIABLES.md",
+    "OBSERVABILITY.md", "TESTING.md", "PAYMENTS.md", "DATA_PRIVACY.md", "FILE_UPLOADS.md",
+    "RATE_LIMITING.md", "ACCESS_CONTROL.md", "LOGGING_PII.md"];
+  const missingProFiles = proOnlyFiles.filter((f) => !fs.existsSync(path.join(targetDir, f)));
+  if (missingProFiles.length > 0) {
+    console.log("\n  ────────────────────────────────────");
+    console.log(`  Want deeper coverage? The pro pack adds ${missingProFiles.length} more policy files:`);
+    console.log(`    ${missingProFiles.slice(0, 4).join(", ")}${missingProFiles.length > 4 ? `, +${missingProFiles.length - 4} more` : ""}`);
+    console.log("  Run: npx secure-repo upgrade");
+  }
+
   console.log();
   return issues;
 }
@@ -559,6 +575,39 @@ function check() {
   console.log();
 }
 
+// ============================================================
+// UPGRADE — show pro info and purchase link
+// ============================================================
+function upgrade() {
+  console.log(`
+  secure-repo pro — 27 additional files for complete coverage
+
+  What's included:
+    18 policy templates   DATABASE.md, DEPLOYMENT.md, INCIDENT_RESPONSE.md,
+                          OBSERVABILITY.md, TESTING.md, ENV_VARIABLES.md,
+                          PAYMENTS.md, DATA_PRIVACY.md, FILE_UPLOADS.md,
+                          RATE_LIMITING.md, THIRD_PARTY.md, ACCESS_CONTROL.md,
+                          LOGGING_PII.md, PR_CHECKLIST.md, THREAT_MODEL.md,
+                          VULNERABILITY_REPORTING.md, CONTRIBUTING_SECURITY.md,
+                          POLICY_INDEX.md
+
+    Premium audit         FULL_AUDIT_CHECKLIST.md (100+ point security audit)
+
+    Stack presets         supabase/ (6 files), firebase/ (3 files)
+
+    Code examples         next-route-handler.ts, rate-limit.ts, zod-validate.ts,
+                          supabase-rls.sql, firebase-rules.txt
+
+  ────────────────────────────────────
+  Get the pro pack:
+  https://buy.polar.sh/polar_cl_q7Wa3Gcng42437OoTx4wHVNyMMyYv0WbtobUv145EZH
+
+  After purchase, install with:
+  npx secure-repo init --key <your-license-key>
+  ────────────────────────────────────
+  `);
+}
+
 // ============================================================
 // Main
 // ============================================================
@@ -578,6 +627,10 @@ switch (command) {
   case "check":
     check();
     break;
+  case "upgrade":
+  case "pro":
+    upgrade();
+    break;
   case "help":
   case "--help":
   case "-h":

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "secure-repo",
-  "version": "1.0.2",
+  "version": "1.0.4",
   "description": "Drop production-grade security standards into any repo. Audit your repo for security issues. Templates for AI-assisted development.",
   "bin": {
     "secure-repo": "./bin/cli.js"