git-commit-guard 0.6.0__tar.gz → 0.7.0__tar.gz

git_commit_guard-0.7.0/.github/workflows/lint-md.yml

@@ -0,0 +1,26 @@
+---
+name: Lint Markdown
+on:  # yamllint disable-line rule:truthy
+  pull_request:
+permissions:
+  contents: read
+jobs:
+  lint-md:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+    steps:
+      - name: Checkout code
+        # yamllint disable-line rule:line-length
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # v6.0.2
+        with:
+          persist-credentials: false
+      - name: Lint Markdown files with reviewdog
+        # yamllint disable-line rule:line-length
+        uses: reviewdog/action-markdownlint@3667398db9118d7e78f7a63d10e26ce454ba5f58  # v0.26.2
+        with:
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          reporter: github-pr-review
+          level: info
+          fail_on_error: true

{git_commit_guard-0.6.0 → git_commit_guard-0.7.0}/.pre-commit-hooks.yaml

@@ -10,3 +10,14 @@
   always_run: true
   pass_filenames: true
   minimum_pre_commit_version: 2.8.0
+
+- id: commit-guard-signature
+  name: commit-guard (signature)
+  description: Verify commit is GPG/SSH signed
+  entry: commit-guard
+  args: [HEAD, --enable, signature]
+  language: python
+  stages: [post-commit]
+  always_run: true
+  pass_filenames: false
+  minimum_pre_commit_version: 2.8.0

{git_commit_guard-0.6.0 → git_commit_guard-0.7.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: git-commit-guard
-Version: 0.6.0
+Version: 0.7.0
 Summary: Opinionated conventional commit message linter with imperative mood detection
 Project-URL: Homepage, https://github.com/benner/commit-guard
 Project-URL: Repository, https://github.com/benner/commit-guard
@@ -31,7 +31,8 @@ imperative verb.
 
 ```bash
 $ commit-guard
-✗ subject does not match 'type(scope): description': Merge pull request #5 from fix/branch
+✗ subject does not match 'type(scope): description':
+  Merge pull request #5 from fix/branch
 ✗ missing 'Signed-off-by' trailer
 ✗ commit is not signed (GPG/SSH)
 ```
@@ -125,14 +126,19 @@ repos:
     rev: v0.1.0
     hooks:
       - id: commit-guard
+      - id: commit-guard-signature
 ```
 
-Install the hook:
+Install the hooks:
 
 ```bash
-pre-commit install --hook-type commit-msg
+pre-commit install --hook-type commit-msg --hook-type post-commit
 ```
 
+`commit-guard` runs at the `commit-msg` stage and checks message format.
+`commit-guard-signature` runs at the `post-commit` stage and verifies
+the GPG/SSH signature after the commit object is created.
+
 To selectively enable or disable checks, pass `args`:
 
 ```yaml
@@ -144,10 +150,9 @@ To selectively enable or disable checks, pass `args`:
 
 commit-guard combines two strategies to detect non-imperative descriptions:
 
-1. A whitelist common commit verbs (`add`, `fix`, `remove`, etc.)
-   that pass immediately without NLP.
-2. nltk POS tagging as a fallback — flags words tagged as past tense (`VBD`),
+1. nltk POS tagging — flags words tagged as past tense (`VBD`),
    gerund (`VBG`), third person (`VBZ`), etc.
+2. WordNet morphology as a fallback for words the tagger misclassifies.
 
 This catches common mistakes like `added logging` or `fixes bug` while
 keeping false positives low.

{git_commit_guard-0.6.0 → git_commit_guard-0.7.0}/README.md

@@ -10,7 +10,8 @@ imperative verb.
 
 ```bash
 $ commit-guard
-✗ subject does not match 'type(scope): description': Merge pull request #5 from fix/branch
+✗ subject does not match 'type(scope): description':
+  Merge pull request #5 from fix/branch
 ✗ missing 'Signed-off-by' trailer
 ✗ commit is not signed (GPG/SSH)
 ```
@@ -104,14 +105,19 @@ repos:
     rev: v0.1.0
     hooks:
       - id: commit-guard
+      - id: commit-guard-signature
 ```
 
-Install the hook:
+Install the hooks:
 
 ```bash
-pre-commit install --hook-type commit-msg
+pre-commit install --hook-type commit-msg --hook-type post-commit
 ```
 
+`commit-guard` runs at the `commit-msg` stage and checks message format.
+`commit-guard-signature` runs at the `post-commit` stage and verifies
+the GPG/SSH signature after the commit object is created.
+
 To selectively enable or disable checks, pass `args`:
 
 ```yaml
@@ -123,10 +129,9 @@ To selectively enable or disable checks, pass `args`:
 
 commit-guard combines two strategies to detect non-imperative descriptions:
 
-1. A whitelist common commit verbs (`add`, `fix`, `remove`, etc.)
-   that pass immediately without NLP.
-2. nltk POS tagging as a fallback — flags words tagged as past tense (`VBD`),
+1. nltk POS tagging — flags words tagged as past tense (`VBD`),
    gerund (`VBG`), third person (`VBZ`), etc.
+2. WordNet morphology as a fallback for words the tagger misclassifies.
 
 This catches common mistakes like `added logging` or `fixes bug` while
 keeping false positives low.

{git_commit_guard-0.6.0 → git_commit_guard-0.7.0}/src/git_commit_guard/__init__.py

@@ -275,10 +275,7 @@ def main():
         check_body(lines, result)
     if Check.SIGNED_OFF in args.enabled:
         check_signed_off(args.message, result)
-    if Check.SIGNATURE in args.enabled:
-        if args.rev:
-            check_signature(args.rev, result)
-        else:
-            result.warn("signature check skipped (no commit ref)")
+    if Check.SIGNATURE in args.enabled and args.rev:
+        check_signature(args.rev, result)
 
     return _report(result)

{git_commit_guard-0.6.0 → git_commit_guard-0.7.0}/tests/test_git_commit_guard.py

@@ -433,7 +433,7 @@ class TestMain:
         ):
             ret = main()
         assert ret == 0
-        assert "skipped" in capsys.readouterr().err
+        assert "all checks passed" in capsys.readouterr().err
 
     def test_imperative_only_no_subject_check(self, tmp_path):
         # imperative enabled, subject not — desc starts as None, parsed from line