dnsight 0.1.1__tar.gz

dnsight-0.1.1/.github/actions/setup/action.yaml

@@ -0,0 +1,29 @@
+name: Setup Environment
+description: Installs just, uv and python
+
+inputs:
+  python-version:
+    description: Python version to use
+    required: false
+    default: '3.14'
+  install-deps:
+    description: Whether to run just install-ci
+    required: false
+    default: 'true'
+
+runs:
+  using: composite
+  steps:
+    - name: Install just
+      uses: extractions/setup-just@f8a3cce218d9f83db3a2ecd90e41ac3de6cdfd9b  # v3
+
+    - name: Install uv
+      uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098  # v7.3.1
+      with:
+        enable-cache: true
+        python-version: ${{ inputs.python-version }}
+
+    - name: Install dependencies
+      if: inputs.install-deps == 'true'
+      shell: bash
+      run: just install-ci

dnsight-0.1.1/.github/dependabot.yaml

@@ -0,0 +1,17 @@
+version: 2
+
+updates:
+  # Keep GitHub Actions SHA pins up to date
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: weekly
+    groups:
+      actions:
+        patterns: ['*']  # group all action updates into one PR
+
+  # Keep Python dependencies up to date
+  - package-ecosystem: uv
+    directory: /
+    schedule:
+      interval: weekly

dnsight-0.1.1/.github/workflows/ci.yaml

@@ -0,0 +1,63 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+jobs:
+  # Linting and type checking - only run on latest python v
+  check:
+    name: Check
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read  # checkout
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - uses: ./.github/actions/setup
+
+      - name: Run Checks
+        shell: bash
+        run: just check
+
+  # Tests - matrix across Python versions
+  test:
+    name: Test (Python ${{ matrix.python-version }})
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read  # checkout
+    strategy:
+      fail-fast: false  # run all versions even if one fails
+      matrix:
+        python-version: ['3.11', '3.12', '3.13', '3.14']
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - uses: ./.github/actions/setup
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Run tests
+        run: just test
+
+      - name: Upload coverage
+        if: github.event_name == 'push' && !cancelled() && matrix.python-version ==
+          '3.14'
+        uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de  # v5.5.2
+        with:
+          files: coverage.xml
+          token: ${{ secrets.CODECOV_TOKEN }}
+
+      - name: Upload test results to Codecov
+        if: github.event_name == 'push' && !cancelled() && matrix.python-version ==
+          '3.14'
+        uses: codecov/test-results-action@0fa95f0e1eeaafde2c782583b36b28ad0d8c77d3  # v1.2.1
+        with:
+          files: junit.xml
+          token: ${{ secrets.CODECOV_TOKEN }}

dnsight-0.1.1/.github/workflows/publish.yaml

@@ -0,0 +1,25 @@
+name: Publish
+
+on:
+  release:
+    types: [published]
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    environment: pypi
+    permissions:
+      contents: read  # required for checkout to clone the repo
+      id-token: write  # required for PyPI trusted publishing
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          fetch-depth: 0  # required for hatch-vcs to resolve version from tag
+
+      - uses: ./.github/actions/setup
+
+      - name: Build
+        run: just build
+
+      - name: Publish to PyPI
+        run: uv publish

dnsight-0.1.1/.gitignore

@@ -0,0 +1,48 @@
+### OS / editor
+.DS_Store
+
+### Python bytecode
+__pycache__/
+*.py[codz]
+*$py.class
+
+### Packaging / build artifacts
+build/
+dist/
+*.egg-info/
+*.egg
+.Python
+
+### Virtual environments
+.venv/
+venv/
+env/
+ENV/
+
+### Tests / coverage
+.pytest_cache/
+.coverage
+.coverage.*
+htmlcov/
+coverage.xml
+cover/
+junit.xml
+
+### Type checking / linting
+.mypy_cache/
+.dmypy.json
+dmypy.json
+.ruff_cache/
+
+### Local env / secrets
+.env
+.envrc
+.pypirc
+
+### Cursor
+.cursorignore
+.cursorindexingignore
+
+
+### Archive
+archive/

dnsight-0.1.1/.pre-commit-config.yaml

@@ -0,0 +1,15 @@
+repos:
+  # Make check
+  - repo: local
+    hooks:
+      - id: check
+        name: check
+        entry: just check
+        language: system
+        pass_filenames: false
+
+  # Aikido security scanner (secrets, passwords, API keys)
+  - repo: https://github.com/AikidoSec/pre-commit
+    rev: 77ecd16894235d3260203df342995eda0f14c5b5
+    hooks:
+      - id: aikido-local-scanner

dnsight-0.1.1/.python-version

@@ -0,0 +1 @@
+3.14

dnsight-0.1.1/.vscode/settings.json

@@ -0,0 +1,32 @@
+{
+  "sonarlint.connectedMode.project": {
+    "connectionId": "dnsight",
+    "projectKey": "dnsight_dnsight"
+  },
+  "cSpell.words": [
+    "addopts",
+    "asyncio",
+    "dmarc",
+    "dnsight",
+    "dnspython",
+    "htmlcov",
+    "httpx",
+    "isort",
+    "jsonschema",
+    "junitxml",
+    "mypy",
+    "pipx",
+    "pycache",
+    "pydantic",
+    "pypi",
+    "pytest",
+    "pyyaml",
+    "taplo",
+    "testpaths",
+    "typer",
+    "venv",
+    "whitelines",
+    "yamlfix"
+],
+  "python-envs.pythonProjects": []
+}

dnsight-0.1.1/.yamllint.yaml

@@ -0,0 +1,15 @@
+extends: default
+
+rules:
+  empty-lines:
+    max: 1  # allow up to 1 blank line (matches yamlfix whitelines = 1)
+    max-start: 0
+    max-end: 0
+  line-length:
+    max: 120
+    level: warning
+  truthy:
+    allowed-values: ['true', 'false']
+    check-keys: false
+  document-start:
+    present: false

dnsight-0.1.1/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 DNSight
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

dnsight-0.1.1/PKG-INFO

@@ -0,0 +1,66 @@
+Metadata-Version: 2.4
+Name: dnsight
+Version: 0.1.1
+Summary: DNS, email, and web security hygiene SDK and CLI for DevOps and security engineers.
+Project-URL: Homepage, https://github.com/dnsight/dnsight
+Project-URL: Repository, https://github.com/dnsight/dnsight
+Project-URL: Issues, https://github.com/dnsight/dnsight/issues
+Author-email: Mikey Scott <mikey@middleauth.io>
+License: MIT
+License-File: LICENSE
+Keywords: cli,devops,dkim,dmarc,dns,dnssec,security,spf
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: Intended Audience :: System Administrators
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Programming Language :: Python :: 3.14
+Classifier: Topic :: Internet :: Name Service (DNS)
+Classifier: Topic :: Security
+Classifier: Topic :: System :: Networking
+Requires-Python: >=3.11
+Requires-Dist: dnspython<3.0.0,>=2.8.0
+Requires-Dist: httpx<0.29.0,>=0.28.1
+Requires-Dist: pydantic<3.0.0,>=2.12.5
+Requires-Dist: pyyaml<7.0.0,>=6.0.3
+Requires-Dist: rich<15.0.0,>=14.3.3
+Requires-Dist: typer<0.25.0,>=0.24.1
+Description-Content-Type: text/markdown
+
+# dnsight
+
+[![CI](https://github.com/dnsight/dnsight/actions/workflows/ci.yaml/badge.svg)](https://github.com/dnsight/dnsight/actions/workflows/ci.yaml)
+[![PyPI version](https://img.shields.io/pypi/v/dnsight)](https://pypi.org/project/dnsight/)
+[![Python versions](https://img.shields.io/pypi/pyversions/dnsight)](https://pypi.org/project/dnsight/)
+[![codecov](https://codecov.io/github/dnsight/dnsight/graph/badge.svg?token=B4BKEX1G8O)](https://codecov.io/github/dnsight/dnsight)
+[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=dnsight_dnsight&metric=alert_status&token=479932a2a9cce01e25841c72ae83c300d5534029)](https://sonarcloud.io/summary/new_code?id=dnsight_dnsight)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
+
+> DNS, email, and web security hygiene SDK and CLI for DevOps and security engineers.
+
+## Installation
+
+```bash
+# CLI
+pipx install dnsight
+
+# SDK only
+pip install dnsight
+
+# With uv
+uv add dnsight
+```
+
+## Usage
+
+```bash
+dnsight --help
+dnsight --version
+```
+
+## License
+
+MIT

dnsight-0.1.1/README.md

@@ -0,0 +1,34 @@
+# dnsight
+
+[![CI](https://github.com/dnsight/dnsight/actions/workflows/ci.yaml/badge.svg)](https://github.com/dnsight/dnsight/actions/workflows/ci.yaml)
+[![PyPI version](https://img.shields.io/pypi/v/dnsight)](https://pypi.org/project/dnsight/)
+[![Python versions](https://img.shields.io/pypi/pyversions/dnsight)](https://pypi.org/project/dnsight/)
+[![codecov](https://codecov.io/github/dnsight/dnsight/graph/badge.svg?token=B4BKEX1G8O)](https://codecov.io/github/dnsight/dnsight)
+[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=dnsight_dnsight&metric=alert_status&token=479932a2a9cce01e25841c72ae83c300d5534029)](https://sonarcloud.io/summary/new_code?id=dnsight_dnsight)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
+
+> DNS, email, and web security hygiene SDK and CLI for DevOps and security engineers.
+
+## Installation
+
+```bash
+# CLI
+pipx install dnsight
+
+# SDK only
+pip install dnsight
+
+# With uv
+uv add dnsight
+```
+
+## Usage
+
+```bash
+dnsight --help
+dnsight --version
+```
+
+## License
+
+MIT

dnsight-0.1.1/justfile

@@ -0,0 +1,85 @@
+# Default recipe — lists all available commands
+default:
+    @just --list
+
+# == Environment ================================================================
+
+# Install development dependencies
+install:
+    uv sync
+    uv pip install -e .
+
+# Install from lockfile only (CI)
+install-ci:
+    uv sync --frozen
+
+# Regenerate uv.lock
+lock:
+    uv lock
+
+# == Code quality ===============================================================
+
+# Run all checks (lint, format, typecheck, config files)
+check:
+    #!/usr/bin/env bash
+    set +e
+    failed=0
+    uv run ruff check src/ tests/ || { echo "FAILED: ruff check"; failed=1; }
+    uv run ruff format --check src/ tests/ || { echo "FAILED: ruff format"; failed=1; }
+    uv run mypy src/ || { echo "FAILED: mypy"; failed=1; }
+    uv run yamllint $(find . \( -name "*.yml" -o -name "*.yaml" \) | grep -vE "^\./(.venv|src|tests)/") || { echo "FAILED: yamllint"; failed=1; }
+    uv run check-jsonschema --builtin-schema github-workflows .github/workflows/*.yaml || { echo "FAILED: check-jsonschema"; failed=1; }
+    uv run taplo check $(find . -name "*.toml" | grep -vE "^\./(.venv|src|tests)/") || { echo "FAILED: taplo"; failed=1; }
+    exit $failed
+
+# Auto-fix lint and formatting issues
+fix:
+    #!/usr/bin/env bash
+    set +e
+    failed=0
+    uv run ruff check --fix src/ tests/ || { echo "FAILED: ruff check"; failed=1; }
+    uv run ruff format src/ tests/ || { echo "FAILED: ruff format"; failed=1; }
+    uv run yamlfix $(find . \( -name "*.yml" -o -name "*.yaml" \) | grep -vE "^\./(.venv|src|tests)/") || { echo "FAILED: yamlfix"; failed=1; }
+    uv run taplo fmt $(find . -name "*.toml" | grep -vE "^\./(.venv|src|tests)/") || { echo "FAILED: taplo"; failed=1; }
+    exit $failed
+
+# == Pre-Commit =================================================================
+
+# Install pre-commit hooks
+pre-install:
+    uv run pre-commit install
+
+# Run pre-commit on all files
+pre:
+    uv run pre-commit run --all-files
+
+# == Testing ====================================================================
+
+# Run test suite with coverage
+test *args:
+    uv run pytest {{args}}
+
+# == Build and publish ==========================================================
+
+# Build distribution packages
+build: 
+    just clean
+    uv build
+
+# Publish to PyPI after build
+publish: 
+    just build
+    uv publish
+
+# == Maintenance ================================================================
+
+# Remove build artifacts and cache
+clean:
+    rm -rf dist/ .coverage htmlcov/ .pytest_cache/ .mypy_cache/ .ruff_cache/
+    find . -type d -name __pycache__ -exec rm -rf {} +
+    find . -type f -name "*.pyc" -delete
+
+# Re-create venv from existing lockfile
+re-venv:
+    uv venv --clear
+    just install

dnsight-0.1.1/pyproject.toml

@@ -0,0 +1,124 @@
+[project]
+name = "dnsight"
+dynamic = ["version"]
+description = "DNS, email, and web security hygiene SDK and CLI for DevOps and security engineers."
+readme = "README.md"
+license = { text = "MIT" }
+requires-python = ">=3.11"
+authors = [{ name = "Mikey Scott", email = "mikey@middleauth.io" }]
+keywords = [
+  "dns",
+  "dmarc",
+  "spf",
+  "dkim",
+  "dnssec",
+  "security",
+  "cli",
+  "devops",
+]
+classifiers = [
+  "Development Status :: 3 - Alpha",
+  "Intended Audience :: Developers",
+  "Intended Audience :: System Administrators",
+  "License :: OSI Approved :: MIT License",
+  "Operating System :: OS Independent",
+  "Programming Language :: Python :: 3.11",
+  "Programming Language :: Python :: 3.12",
+  "Programming Language :: Python :: 3.13",
+  "Programming Language :: Python :: 3.14",
+  "Topic :: Internet :: Name Service (DNS)",
+  "Topic :: Security",
+  "Topic :: System :: Networking",
+]
+
+dependencies = [
+  "dnspython>=2.8.0,<3.0.0",
+  "httpx>=0.28.1,<0.29.0",
+  "pydantic>=2.12.5,<3.0.0",
+  "pyyaml>=6.0.3,<7.0.0",
+  "rich>=14.3.3,<15.0.0",
+  "typer>=0.24.1,<0.25.0",
+]
+
+[project.urls]
+"Homepage" = "https://github.com/dnsight/dnsight"
+"Repository" = "https://github.com/dnsight/dnsight"
+"Issues" = "https://github.com/dnsight/dnsight/issues"
+
+
+[project.scripts]
+dnsight = "dnsight.cli:app"
+
+[build-system]
+requires = ["hatchling", "hatch-vcs"]
+build-backend = "hatchling.build"
+
+[tool.hatch.version]
+source = "vcs"
+
+[tool.hatch.build.targets.wheel]
+packages = ["src/dnsight"]
+
+[tool.uv]
+required-version = ">=0.10.7"
+
+[dependency-groups]
+dev = [
+  "hatch-vcs>=0.5.0,<0.6.0",
+  "pre-commit>=4.0.0,<5.0.0",
+  "mypy>=1.19.1,<2.0.0",
+  "pytest>=9.0.2,<10.0.0",
+  "pytest-asyncio>=1.3.0,<2.0.0",
+  "pytest-cov>=7.0.0,<8.0.0",
+  "types-pyyaml>=6.0.12.20250915,<7.0.0.0",
+  "yamllint>=1.38.0,<2.0.0",
+  "yamlfix>=1.19.1,<2.0.0",
+  "check-jsonschema>=0.37.0,<1.0.0",
+  "taplo>=0.9.3,<1.0.0",
+  "ruff>=0.8.6,<1.0.0",
+]
+
+[tool.ruff]
+target-version = "py311"
+line-length = 88
+indent-width = 4
+
+[tool.ruff.lint]
+select = ["E", "F", "I", "UP", "B", "SIM"]
+ignore = ["E501"]
+
+[tool.ruff.format]
+quote-style = "double"
+indent-style = "space"
+skip-magic-trailing-comma = true
+docstring-code-format = true
+
+[tool.ruff.lint.isort]
+known-first-party = ["dnsight"]
+lines-after-imports = 2
+section-order = [
+  "standard-library",
+  "third-party",
+  "first-party",
+  "local-folder",
+]
+force-sort-within-sections = true
+split-on-trailing-comma = false
+
+[tool.mypy]
+strict = true
+
+[tool.pytest.ini_options]
+asyncio_mode = "auto"
+testpaths = ["tests"]
+addopts = "--cov=src/dnsight --cov-report=term-missing --cov-report=xml --junitxml=junit.xml -o junit_family=legacy"
+
+[tool.coverage.run]
+source = ["src/dnsight"]
+omit = ["*/tests/**"]
+
+[tool.yamlfix]
+whitelines = 1                # preserve single blank lines between list items etc.
+section_whitelines = 1        # preserve blank lines between top-level sections
+explicit_start = false        # remove --- at top of file if you don't want it
+sequence_style = "keep_style" # don't convert between flow/block list styles

dnsight-0.1.1/src/dnsight/__init__.py

@@ -0,0 +1,11 @@
+from importlib.metadata import PackageNotFoundError
+
+
+try:
+    from importlib.metadata import version
+
+    raw = version("dnsight")
+    # Show clean version for releases, "dev" for untagged local builds
+    __version__ = raw if "dev" not in raw else "dev.local"
+except PackageNotFoundError:
+    __version__ = "dev"

dnsight-0.1.1/src/dnsight/cli.py

@@ -0,0 +1,34 @@
+from rich.console import Console
+import typer
+
+from dnsight import __version__
+
+
+app = typer.Typer(
+    name="dnsight",
+    help="DNS, email, and web security hygiene toolkit.",
+    no_args_is_help=True,
+)
+
+console = Console()
+
+
+def _version_callback(value: bool) -> None:
+    if value:
+        typer.echo(f"dnsight version: {__version__}")
+        raise typer.Exit()
+
+
+@app.callback()
+def main(
+    _version: bool | None = typer.Option(
+        None,
+        "--version",
+        "-v",
+        callback=_version_callback,
+        is_eager=True,
+        help="Show version and exit.",
+    ),
+) -> None:
+    # This uses callback pattern
+    pass

dnsight-0.1.1/tests/test_cli.py

@@ -0,0 +1,18 @@
+from typer.testing import CliRunner
+
+from dnsight.cli import app
+
+
+runner = CliRunner()
+
+
+def test_help():
+    result = runner.invoke(app, ["--help"])
+    assert result.exit_code == 0
+    assert "dnsight" in result.output
+
+
+def test_version():
+    result = runner.invoke(app, ["--version"])
+    assert result.exit_code == 0
+    assert "dnsight" in result.output