PyPI - prismor - Versions diffs - 1.0.5__tar.gz → 1.1.1__tar.gz - Mend

prismor 1.0.5tar.gz → 1.1.1tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

{prismor-1.0.5/prismor.egg-info → prismor-1.1.1}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: prismor
-Version: 1.0.5
+Version: 1.1.1
 Summary: A CLI tool for scanning GitHub repositories for vulnerabilities, secrets, and generating SBOMs
 Home-page: https://github.com/PrismorSec/prismor-cli
 Author: Prismor
@@ -280,6 +280,33 @@ prismor --repo git@github.com:nodejs/node.git --detect-secret --sbom
 prismor --repo www.github.com/vercel/next.js --fullscan
 ```
+### Example 7: Save Results to File
+```bash
+# Save full scan results to JSON file
+prismor --repo username/repo --fullscan --output results.json
+# Save vulnerability scan with specific branch
+prismor --repo username/repo --scan --branch develop --output vuln-scan.json
+# Quiet mode with file output (no console output)
+prismor --repo username/repo --sbom --output sbom.json --quiet
+```
+### Example 8: CI/CD Integration
+```bash
+# Minimal output for CI/CD pipelines
+prismor --repo $REPO_NAME --scan --quiet --json > scan-results.json
+# Exit with error code if scan fails
+prismor --repo username/repo --fullscan --quiet || exit 1
+# Save results and continue pipeline
+prismor --repo username/repo --scan --output scan.json --quiet && \
+  echo "Scan completed, results saved to scan.json"
+```
 ### Example 7: Async Scan with Status Checking
 ```bash
@@ -433,43 +460,232 @@ Prismor CLI communicates with the Prismor API at `https://api.prismor.dev`. The
 - Response parsing
 - Result presentation
+## Advanced Usage
+### Save Results to File
+Save scan results to a JSON file for later analysis:
+```bash
+prismor --repo username/repo --fullscan --output results.json
+```
+### Quiet Mode
+Run scans with minimal output (useful for CI/CD pipelines):
+```bash
+prismor --repo username/repo --scan --quiet
+```
+### Combining Options
+Combine multiple options for customized workflows:
+```bash
+# Scan specific branch and save to file
+prismor --repo username/repo --scan --branch develop --output scan-results.json
+# Quiet mode with JSON output
+prismor --repo username/repo --fullscan --quiet --json
+# Save results without console output
+prismor --repo username/repo --sbom --output sbom.json --quiet
+```
 ## Troubleshooting
 ### API Key Not Set
-If you see an error about `PRISMOR_API_KEY` not being set:
+**Error:**
+```
+✗ PRISMOR_API_KEY environment variable is not set.
+```
+**Solution:**
 ```bash
+# Set temporarily (current session only)
 export PRISMOR_API_KEY=your_api_key_here
+# Set permanently (add to ~/.bashrc or ~/.zshrc)
+echo 'export PRISMOR_API_KEY=your_api_key_here' >> ~/.zshrc
+source ~/.zshrc
 ```
+**Get your API key:**
+1. Visit [https://prismor.dev/cli](https://prismor.dev/cli)
+2. Sign up for a free account
+3. Generate an API key from your dashboard
+---
 ### Invalid Repository Format
-Ensure your repository is in one of the supported formats:
+**Error:**
+```
+✗ Unrecognized repository format
+```
 **Supported formats:**
-- `username/repository` (recommended)
-- `https://github.com/username/repository`
-- `https://www.github.com/username/repository`
-- `http://github.com/username/repository`
-- `http://www.github.com/username/repository`
-- `github.com/username/repository`
-- `www.github.com/username/repository`
-- `git@github.com:username/repository.git`
-- `https://github.com/username/repository/tree/branch`
-- `https://github.com/username/repository/blob/branch/file`
+- ✅ `username/repository` (recommended)
+- ✅ `https://github.com/username/repository`
+- ✅ `https://www.github.com/username/repository`
+- ✅ `http://github.com/username/repository`
+- ✅ `http://www.github.com/username/repository`
+- ✅ `github.com/username/repository`
+- ✅ `www.github.com/username/repository`
+- ✅ `git@github.com:username/repository.git`
+- ✅ `https://github.com/username/repository/tree/branch`
+- ✅ `https://github.com/username/repository/blob/branch/file`
 **Not supported:**
-- Non-GitHub URLs (GitLab, Bitbucket, etc.)
-- Invalid URL formats
-- Empty or malformed repository names
+- ❌ Non-GitHub URLs (GitLab, Bitbucket, etc.)
+- ❌ Invalid URL formats
+- ❌ Empty or malformed repository names
+- ❌ Repository names with invalid characters
+**Valid characters:**
+- Alphanumeric (a-z, A-Z, 0-9)
+- Hyphens (-)
+- Underscores (_)
+- Dots (.)
+- Cannot start or end with special characters
+---
 ### Connection Issues
-If you experience connection issues:
-1. Check your internet connection
-2. Verify the API endpoint is accessible
-3. Ensure your API key is valid
+**Error:**
+```
+✗ Failed to connect to Prismor API
+```
+**Solutions:**
+1. **Check Internet Connection**
+   ```bash
+   ping prismor.dev
+   ```
+2. **Verify API Endpoint**
+   ```bash
+   curl -I https://prismor.dev
+   ```
+3. **Test API Key**
+   ```bash
+   prismor config
+   ```
+4. **Check Firewall/Proxy**
+   - Ensure your firewall allows HTTPS connections
+   - Configure proxy if needed:
+     ```bash
+     export HTTPS_PROXY=http://proxy.example.com:8080
+     ```
+5. **Retry with Automatic Retries**
+   - The CLI automatically retries failed requests 3 times with exponential backoff
+   - If issues persist, check your network configuration
+---
+### Timeout Issues
+**Error:**
+```
+✗ Request timed out
+```
+**Solutions:**
+1. **Large Repositories**
+   - Vulnerability scans can take up to 10 minutes for large repositories
+   - The CLI will wait automatically
+   - Use `--quiet` mode to reduce output during long scans
+2. **Network Latency**
+   - Check your internet speed
+   - Try again during off-peak hours
+   - Consider using a wired connection
+3. **Check Scan Status**
+   ```bash
+   # Start scan asynchronously
+   prismor start-scan username/repo
+   # Check status later
+   prismor scan-status <job_id>
+   ```
+---
+### Private Repository Access
+**Error:**
+```
+✗ GitHub integration required
+```
+**Solution:**
+1. Visit [https://prismor.dev/dashboard](https://prismor.dev/dashboard)
+2. Navigate to Settings → Integrations
+3. Connect your GitHub account
+4. Authorize Prismor to access private repositories
+5. Try scanning again
+---
+### Invalid Characters in Repository Name
+**Error:**
+```
+✗ Invalid Username: 'user@name'. Must contain only alphanumeric characters...
+```
+**Solution:**
+- Ensure repository name follows GitHub naming conventions
+- Remove special characters like `@`, `#`, `$`, etc.
+- Valid example: `username/my-repo-name`
+- Invalid example: `user@name/repo#123`
+---
+### Rate Limiting
+**Error:**
+```
+✗ API error: Rate limit exceeded
+```
+**Solution:**
+1. Wait a few minutes before retrying
+2. Check your account limits at [prismor.dev/dashboard](https://prismor.dev/dashboard)
+3. Upgrade your plan if needed for higher limits
+---
+### Getting Help
+If you're still experiencing issues:
+1. **Check Configuration**
+   ```bash
+   prismor config
+   ```
+2. **View Account Status**
+   ```bash
+   prismor status
+   ```
+3. **Enable Verbose Output**
+   - Remove `--quiet` flag to see detailed error messages
+4. **Contact Support**
+   - Visit [https://prismor.dev](https://prismor.dev)
+   - Check documentation at [https://docs.prismor.dev](https://docs.prismor.dev)
+   - Report issues at [GitHub Issues](https://github.com/PrismorSec/prismor-cli/issues)
 ## Development

{prismor-1.0.5 → prismor-1.1.1}/README.md RENAMED Viewed

@@ -238,6 +238,33 @@ prismor --repo git@github.com:nodejs/node.git --detect-secret --sbom
 prismor --repo www.github.com/vercel/next.js --fullscan
 ```
+### Example 7: Save Results to File
+```bash
+# Save full scan results to JSON file
+prismor --repo username/repo --fullscan --output results.json
+# Save vulnerability scan with specific branch
+prismor --repo username/repo --scan --branch develop --output vuln-scan.json
+# Quiet mode with file output (no console output)
+prismor --repo username/repo --sbom --output sbom.json --quiet
+```
+### Example 8: CI/CD Integration
+```bash
+# Minimal output for CI/CD pipelines
+prismor --repo $REPO_NAME --scan --quiet --json > scan-results.json
+# Exit with error code if scan fails
+prismor --repo username/repo --fullscan --quiet || exit 1
+# Save results and continue pipeline
+prismor --repo username/repo --scan --output scan.json --quiet && \
+  echo "Scan completed, results saved to scan.json"
+```
 ### Example 7: Async Scan with Status Checking
 ```bash
@@ -391,43 +418,232 @@ Prismor CLI communicates with the Prismor API at `https://api.prismor.dev`. The
 - Response parsing
 - Result presentation
+## Advanced Usage
+### Save Results to File
+Save scan results to a JSON file for later analysis:
+```bash
+prismor --repo username/repo --fullscan --output results.json
+```
+### Quiet Mode
+Run scans with minimal output (useful for CI/CD pipelines):
+```bash
+prismor --repo username/repo --scan --quiet
+```
+### Combining Options
+Combine multiple options for customized workflows:
+```bash
+# Scan specific branch and save to file
+prismor --repo username/repo --scan --branch develop --output scan-results.json
+# Quiet mode with JSON output
+prismor --repo username/repo --fullscan --quiet --json
+# Save results without console output
+prismor --repo username/repo --sbom --output sbom.json --quiet
+```
 ## Troubleshooting
 ### API Key Not Set
-If you see an error about `PRISMOR_API_KEY` not being set:
+**Error:**
+```
+✗ PRISMOR_API_KEY environment variable is not set.
+```
+**Solution:**
 ```bash
+# Set temporarily (current session only)
 export PRISMOR_API_KEY=your_api_key_here
+# Set permanently (add to ~/.bashrc or ~/.zshrc)
+echo 'export PRISMOR_API_KEY=your_api_key_here' >> ~/.zshrc
+source ~/.zshrc
 ```
+**Get your API key:**
+1. Visit [https://prismor.dev/cli](https://prismor.dev/cli)
+2. Sign up for a free account
+3. Generate an API key from your dashboard
+---
 ### Invalid Repository Format
-Ensure your repository is in one of the supported formats:
+**Error:**
+```
+✗ Unrecognized repository format
+```
 **Supported formats:**
-- `username/repository` (recommended)
-- `https://github.com/username/repository`
-- `https://www.github.com/username/repository`
-- `http://github.com/username/repository`
-- `http://www.github.com/username/repository`
-- `github.com/username/repository`
-- `www.github.com/username/repository`
-- `git@github.com:username/repository.git`
-- `https://github.com/username/repository/tree/branch`
-- `https://github.com/username/repository/blob/branch/file`
+- ✅ `username/repository` (recommended)
+- ✅ `https://github.com/username/repository`
+- ✅ `https://www.github.com/username/repository`
+- ✅ `http://github.com/username/repository`
+- ✅ `http://www.github.com/username/repository`
+- ✅ `github.com/username/repository`
+- ✅ `www.github.com/username/repository`
+- ✅ `git@github.com:username/repository.git`
+- ✅ `https://github.com/username/repository/tree/branch`
+- ✅ `https://github.com/username/repository/blob/branch/file`
 **Not supported:**
-- Non-GitHub URLs (GitLab, Bitbucket, etc.)
-- Invalid URL formats
-- Empty or malformed repository names
+- ❌ Non-GitHub URLs (GitLab, Bitbucket, etc.)
+- ❌ Invalid URL formats
+- ❌ Empty or malformed repository names
+- ❌ Repository names with invalid characters
+**Valid characters:**
+- Alphanumeric (a-z, A-Z, 0-9)
+- Hyphens (-)
+- Underscores (_)
+- Dots (.)
+- Cannot start or end with special characters
+---
 ### Connection Issues
-If you experience connection issues:
-1. Check your internet connection
-2. Verify the API endpoint is accessible
-3. Ensure your API key is valid
+**Error:**
+```
+✗ Failed to connect to Prismor API
+```
+**Solutions:**
+1. **Check Internet Connection**
+   ```bash
+   ping prismor.dev
+   ```
+2. **Verify API Endpoint**
+   ```bash
+   curl -I https://prismor.dev
+   ```
+3. **Test API Key**
+   ```bash
+   prismor config
+   ```
+4. **Check Firewall/Proxy**
+   - Ensure your firewall allows HTTPS connections
+   - Configure proxy if needed:
+     ```bash
+     export HTTPS_PROXY=http://proxy.example.com:8080
+     ```
+5. **Retry with Automatic Retries**
+   - The CLI automatically retries failed requests 3 times with exponential backoff
+   - If issues persist, check your network configuration
+---
+### Timeout Issues
+**Error:**
+```
+✗ Request timed out
+```
+**Solutions:**
+1. **Large Repositories**
+   - Vulnerability scans can take up to 10 minutes for large repositories
+   - The CLI will wait automatically
+   - Use `--quiet` mode to reduce output during long scans
+2. **Network Latency**
+   - Check your internet speed
+   - Try again during off-peak hours
+   - Consider using a wired connection
+3. **Check Scan Status**
+   ```bash
+   # Start scan asynchronously
+   prismor start-scan username/repo
+   # Check status later
+   prismor scan-status <job_id>
+   ```
+---
+### Private Repository Access
+**Error:**
+```
+✗ GitHub integration required
+```
+**Solution:**
+1. Visit [https://prismor.dev/dashboard](https://prismor.dev/dashboard)
+2. Navigate to Settings → Integrations
+3. Connect your GitHub account
+4. Authorize Prismor to access private repositories
+5. Try scanning again
+---
+### Invalid Characters in Repository Name
+**Error:**
+```
+✗ Invalid Username: 'user@name'. Must contain only alphanumeric characters...
+```
+**Solution:**
+- Ensure repository name follows GitHub naming conventions
+- Remove special characters like `@`, `#`, `$`, etc.
+- Valid example: `username/my-repo-name`
+- Invalid example: `user@name/repo#123`
+---
+### Rate Limiting
+**Error:**
+```
+✗ API error: Rate limit exceeded
+```
+**Solution:**
+1. Wait a few minutes before retrying
+2. Check your account limits at [prismor.dev/dashboard](https://prismor.dev/dashboard)
+3. Upgrade your plan if needed for higher limits
+---
+### Getting Help
+If you're still experiencing issues:
+1. **Check Configuration**
+   ```bash
+   prismor config
+   ```
+2. **View Account Status**
+   ```bash
+   prismor status
+   ```
+3. **Enable Verbose Output**
+   - Remove `--quiet` flag to see detailed error messages
+4. **Contact Support**
+   - Visit [https://prismor.dev](https://prismor.dev)
+   - Check documentation at [https://docs.prismor.dev](https://docs.prismor.dev)
+   - Report issues at [GitHub Issues](https://github.com/PrismorSec/prismor-cli/issues)
 ## Development

{prismor-1.0.5 → prismor-1.1.1}/prismor/__init__.py RENAMED Viewed

@@ -1,6 +1,6 @@
 """Prismor CLI - Security scanning tool for GitHub repositories."""
-__version__ = "1.0.4"
+__version__ = "1.1.0"
 __author__ = "Prismor"
 __description__ = "A CLI tool for scanning GitHub repositories for vulnerabilities, secrets, and generating SBOMs"

{prismor-1.0.5 → prismor-1.1.1}/prismor/api.py RENAMED Viewed

@@ -2,6 +2,7 @@
 import os
 import re
+import time
 import requests
 from typing import Optional, Dict, Any
 from urllib.parse import urlparse
@@ -12,6 +13,40 @@ class PrismorAPIError(Exception):
     pass
+def retry_request(func, max_retries=3, backoff_factor=2):
+    """Retry a request function with exponential backoff.
+    Args:
+        func: Function to retry (should return requests.Response)
+        max_retries: Maximum number of retry attempts
+        backoff_factor: Multiplier for delay between retries
+    Returns:
+        Response from the function
+    Raises:
+        Exception: If all retries fail
+    """
+    last_exception = None
+    for attempt in range(max_retries):
+        try:
+            return func()
+        except (requests.exceptions.ConnectionError, requests.exceptions.Timeout) as e:
+            last_exception = e
+            if attempt < max_retries - 1:
+                delay = backoff_factor ** attempt
+                time.sleep(delay)
+                continue
+            raise
+        except Exception as e:
+            # Don't retry on other exceptions
+            raise
+    # If we get here, all retries failed
+    raise last_exception
 def parse_github_repo(repo_input: str) -> str:
     """Extract user/repo_name from various GitHub URL formats or return as-is if already in correct format.
@@ -42,6 +77,19 @@ def parse_github_repo(repo_input: str) -> str:
     if not repo_input or not isinstance(repo_input, str):
         raise PrismorAPIError("Repository input cannot be empty")
+    # Validate repository name characters (GitHub allows alphanumeric, hyphens, underscores, dots)
+    def validate_repo_part(part: str, part_name: str) -> None:
+        if not part:
+            raise PrismorAPIError(f"{part_name} cannot be empty")
+        if len(part) > 100:
+            raise PrismorAPIError(f"{part_name} is too long (max 100 characters)")
+        # GitHub allows alphanumeric, hyphens, underscores, dots, but not starting/ending with special chars
+        if not re.match(r'^[a-zA-Z0-9]([a-zA-Z0-9._-]*[a-zA-Z0-9])?$', part):
+            raise PrismorAPIError(
+                f"Invalid {part_name}: '{part}'. Must contain only alphanumeric characters, "
+                "hyphens, underscores, or dots, and cannot start or end with special characters."
+            )
     repo_input = repo_input.strip()
     # If it's already in user/repo format (no protocol, no domain), return as-is
@@ -50,6 +98,8 @@ def parse_github_repo(repo_input: str) -> str:
         # Validate it has exactly one slash and both parts are non-empty
         parts = repo_input.split("/")
         if len(parts) == 2 and parts[0] and parts[1]:
+            validate_repo_part(parts[0], "Username")
+            validate_repo_part(parts[1], "Repository name")
             return repo_input
         else:
             raise PrismorAPIError(f"Invalid repository format: {repo_input}. Expected 'user/repo_name'")
@@ -263,12 +313,16 @@ class PrismorClient:
         try:
             # Note: Vulnerability scans now run asynchronously and can take up to 10 minutes
             # The web API handles polling internally, so we just need a longer timeout
-            response = requests.post(
-                f"{self.base_url}/api/cli/scan",
-                json=payload,
-                headers={"Content-Type": "application/json"},
-                timeout=600  # 10 minute timeout to accommodate async vulnerability scans
-            )
+            # Use retry logic for network resilience
+            def make_request():
+                return requests.post(
+                    f"{self.base_url}/api/cli/scan",
+                    json=payload,
+                    headers={"Content-Type": "application/json"},
+                    timeout=600  # 10 minute timeout to accommodate async vulnerability scans
+                )
+            response = retry_request(make_request, max_retries=3)
             if response.status_code == 401:
                 error_data = response.json()
@@ -290,6 +344,32 @@ class PrismorClient:
             result = response.json()
             # Handle the new response format from CLI endpoint
+            if result.get("ok") and result.get("status") == "accepted" and "job_id" in result:
+                job_id = result["job_id"]
+                # Poll for completion
+                while True:
+                    time.sleep(5)  # Wait between polls
+                    try:
+                        status_data = self.check_scan_status(job_id)
+                        status = status_data.get("status")
+                        if status == "completed":
+                            # Return the results
+                            if "results" in status_data:
+                                return status_data["results"]
+                            return status_data
+                        if status == "failed":
+                            error_msg = status_data.get("error", "Unknown error")
+                            raise PrismorAPIError(f"Scan failed: {error_msg}")
+                    except Exception as e:
+                        # For now, let exceptions propagate to the caller which will stop the spinner
+                        # In the future, we might want to implement retry logic for transient errors
+                        raise e
             if result.get("ok") and "results" in result:
                 return result["results"]
             return result

{prismor-1.0.5 → prismor-1.1.1}/prismor/cli.py RENAMED Viewed

@@ -167,10 +167,12 @@ def format_scan_results(results: dict, scan_type: str):
 @click.option("--fullscan", is_flag=True, help="Perform all scan types")
 @click.option("--branch", type=str, help="Specific branch to scan (defaults to main/master)")
 @click.option("--json", "output_json", is_flag=True, help="Output results in JSON format")
-@click.version_option(version="1.0.5", prog_name="prismor")
+@click.option("--output", "-o", type=click.Path(), help="Save results to file (JSON format)")
+@click.option("--quiet", "-q", is_flag=True, help="Minimal output (only errors and final results)")
+@click.version_option(version="1.1.1", prog_name="prismor")
 @click.pass_context
 def cli(ctx, scan_repo: Optional[str], scan: bool, sbom: bool, detect_secret: bool,
-        fullscan: bool, branch: Optional[str], output_json: bool):
+        fullscan: bool, branch: Optional[str], output_json: bool, output: Optional[str], quiet: bool):
     """Prismor CLI - Security scanning tool for GitHub repositories.
     Examples:
@@ -196,7 +198,8 @@ def cli(ctx, scan_repo: Optional[str], scan: bool, sbom: bool, detect_secret: bo
         try:
             # Initialize API client
-            print_info(f"Initializing Prismor scan for: {scan_repo}")
+            if not quiet:
+                print_info(f"Initializing Prismor scan for: {scan_repo}")
             client = PrismorClient()
             # Determine scan type for display
@@ -211,15 +214,18 @@ def cli(ctx, scan_repo: Optional[str], scan: bool, sbom: bool, detect_secret: bo
                 if detect_secret:
                     scan_types.append("Secret Detection")
-            print_info(f"Scan type: {', '.join(scan_types)}")
-            if scan or fullscan:
-                print_info("Starting scan... (vulnerability scans run asynchronously and may take up to 10 minutes)")
-            else:
-                print_info("Starting scan... (this may take a few minutes)")
+            if not quiet:
+                print_info(f"Scan type: {', '.join(scan_types)}")
+                if scan or fullscan:
+                    print_info("Starting scan... (vulnerability scans run asynchronously and may take up to 10 minutes)")
+                else:
+                    print_info("Starting scan... (this may take a few minutes)")
-            # Show loading spinner during scan
-            spinner = Spinner("Scanning repository")
-            spinner.start()
+            # Show loading spinner during scan (unless quiet mode)
+            spinner = None
+            if not quiet and not output_json and not output:
+                spinner = Spinner("Scanning repository")
+                spinner.start()
             try:
                 # Perform scan
@@ -231,48 +237,64 @@ def cli(ctx, scan_repo: Optional[str], scan: bool, sbom: bool, detect_secret: bo
                     fullscan=fullscan,
                     branch=branch
                 )
-                spinner.stop()
+                if spinner:
+                    spinner.stop()
             except Exception as e:
-                spinner.stop()
+                if spinner:
+                    spinner.stop()
                 raise e
+            # Save to file if --output specified
+            if output:
+                try:
+                    with open(output, 'w') as f:
+                        json.dump(results, f, indent=2)
+                    if not quiet:
+                        print_success(f"Results saved to: {output}")
+                except Exception as e:
+                    print_error(f"Failed to save results to file: {str(e)}")
+                    sys.exit(1)
             # Output results
-            if output_json:
-                click.echo(json.dumps(results, indent=2))
+            if output_json or output:
+                if not output:  # Only print to stdout if not saving to file
+                    click.echo(json.dumps(results, indent=2))
             else:
-                print_success("Scan completed successfully!")
+                if not quiet:
+                    print_success("Scan completed successfully!")
                 format_scan_results(results, ', '.join(scan_types))
-                # Try to get repository ID and display dashboard link
-                try:
-                    # Extract repo name from scan input using the comprehensive parser
-                    repo_name = parse_github_repo(scan_repo)
-                    # Get repository ID
-                    repo_info = client.get_repository_by_name(repo_name)
-                    if repo_info.get("success") and "repository" in repo_info:
-                        repo_id = repo_info["repository"]["id"]
-                        dashboard_url = f"https://prismor.dev/repositories/{repo_id}"
+                # Try to get repository ID and display dashboard link (unless quiet mode)
+                if not quiet:
+                    try:
+                        # Extract repo name from scan input using the comprehensive parser
+                        repo_name = parse_github_repo(scan_repo)
-                        click.echo("\n" + "=" * 60)
-                        click.secho("  📊 Dashboard Analysis", fg="cyan", bold=True)
-                        click.echo("=" * 60)
-                        click.secho(f"🔗 View detailed analysis and insights:", fg="blue")
-                        click.secho(f"   {dashboard_url}", fg="green", bold=True)
-                        click.echo("\n💡 The dashboard provides:")
-                        click.echo("   • Interactive visualizations and charts")
-                        click.echo("   • Historical vulnerability trends")
-                        click.echo("   • Detailed security reports")
-                        click.echo("   • Team collaboration features")
-                        click.echo("   • Export capabilities")
-                        click.echo("=" * 60 + "\n")
-                except PrismorAPIError as e:
-                    # Repository might not be found, continue without dashboard link
-                    print_warning(f"Could not generate dashboard link: {str(e)}")
-                except Exception as e:
-                    # Any other error, continue without dashboard link
-                    print_warning(f"Could not generate dashboard link: {str(e)}")
+                        # Get repository ID
+                        repo_info = client.get_repository_by_name(repo_name)
+                        if repo_info.get("success") and "repository" in repo_info:
+                            repo_id = repo_info["repository"]["id"]
+                            dashboard_url = f"https://prismor.dev/repositories/{repo_id}"
+                            click.echo("\n" + "=" * 60)
+                            click.secho("  📊 Dashboard Analysis", fg="cyan", bold=True)
+                            click.echo("=" * 60)
+                            click.secho(f"🔗 View detailed analysis and insights:", fg="blue")
+                            click.secho(f"   {dashboard_url}", fg="green", bold=True)
+                            click.echo("\n💡 The dashboard provides:")
+                            click.echo("   • Interactive visualizations and charts")
+                            click.echo("   • Historical vulnerability trends")
+                            click.echo("   • Detailed security reports")
+                            click.echo("   • Team collaboration features")
+                            click.echo("   • Export capabilities")
+                            click.echo("=" * 60 + "\n")
+                    except PrismorAPIError as e:
+                        # Repository might not be found, continue without dashboard link
+                        print_warning(f"Could not generate dashboard link: {str(e)}")
+                    except Exception as e:
+                        # Any other error, continue without dashboard link
+                        print_warning(f"Could not generate dashboard link: {str(e)}")
         except PrismorAPIError as e:
             print_error(str(e))
@@ -285,7 +307,7 @@ def cli(ctx, scan_repo: Optional[str], scan: bool, sbom: bool, detect_secret: bo
 @cli.command()
 def version():
     """Display the version of Prismor CLI."""
-    click.echo("Prismor CLI v1.0.5")
+    click.echo("Prismor CLI v1.1.0")
 @cli.command()

{prismor-1.0.5 → prismor-1.1.1/prismor.egg-info}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: prismor
-Version: 1.0.5
+Version: 1.1.1
 Summary: A CLI tool for scanning GitHub repositories for vulnerabilities, secrets, and generating SBOMs
 Home-page: https://github.com/PrismorSec/prismor-cli
 Author: Prismor
@@ -280,6 +280,33 @@ prismor --repo git@github.com:nodejs/node.git --detect-secret --sbom
 prismor --repo www.github.com/vercel/next.js --fullscan
 ```
+### Example 7: Save Results to File
+```bash
+# Save full scan results to JSON file
+prismor --repo username/repo --fullscan --output results.json
+# Save vulnerability scan with specific branch
+prismor --repo username/repo --scan --branch develop --output vuln-scan.json
+# Quiet mode with file output (no console output)
+prismor --repo username/repo --sbom --output sbom.json --quiet
+```
+### Example 8: CI/CD Integration
+```bash
+# Minimal output for CI/CD pipelines
+prismor --repo $REPO_NAME --scan --quiet --json > scan-results.json
+# Exit with error code if scan fails
+prismor --repo username/repo --fullscan --quiet || exit 1
+# Save results and continue pipeline
+prismor --repo username/repo --scan --output scan.json --quiet && \
+  echo "Scan completed, results saved to scan.json"
+```
 ### Example 7: Async Scan with Status Checking
 ```bash
@@ -433,43 +460,232 @@ Prismor CLI communicates with the Prismor API at `https://api.prismor.dev`. The
 - Response parsing
 - Result presentation
+## Advanced Usage
+### Save Results to File
+Save scan results to a JSON file for later analysis:
+```bash
+prismor --repo username/repo --fullscan --output results.json
+```
+### Quiet Mode
+Run scans with minimal output (useful for CI/CD pipelines):
+```bash
+prismor --repo username/repo --scan --quiet
+```
+### Combining Options
+Combine multiple options for customized workflows:
+```bash
+# Scan specific branch and save to file
+prismor --repo username/repo --scan --branch develop --output scan-results.json
+# Quiet mode with JSON output
+prismor --repo username/repo --fullscan --quiet --json
+# Save results without console output
+prismor --repo username/repo --sbom --output sbom.json --quiet
+```
 ## Troubleshooting
 ### API Key Not Set
-If you see an error about `PRISMOR_API_KEY` not being set:
+**Error:**
+```
+✗ PRISMOR_API_KEY environment variable is not set.
+```
+**Solution:**
 ```bash
+# Set temporarily (current session only)
 export PRISMOR_API_KEY=your_api_key_here
+# Set permanently (add to ~/.bashrc or ~/.zshrc)
+echo 'export PRISMOR_API_KEY=your_api_key_here' >> ~/.zshrc
+source ~/.zshrc
 ```
+**Get your API key:**
+1. Visit [https://prismor.dev/cli](https://prismor.dev/cli)
+2. Sign up for a free account
+3. Generate an API key from your dashboard
+---
 ### Invalid Repository Format
-Ensure your repository is in one of the supported formats:
+**Error:**
+```
+✗ Unrecognized repository format
+```
 **Supported formats:**
-- `username/repository` (recommended)
-- `https://github.com/username/repository`
-- `https://www.github.com/username/repository`
-- `http://github.com/username/repository`
-- `http://www.github.com/username/repository`
-- `github.com/username/repository`
-- `www.github.com/username/repository`
-- `git@github.com:username/repository.git`
-- `https://github.com/username/repository/tree/branch`
-- `https://github.com/username/repository/blob/branch/file`
+- ✅ `username/repository` (recommended)
+- ✅ `https://github.com/username/repository`
+- ✅ `https://www.github.com/username/repository`
+- ✅ `http://github.com/username/repository`
+- ✅ `http://www.github.com/username/repository`
+- ✅ `github.com/username/repository`
+- ✅ `www.github.com/username/repository`
+- ✅ `git@github.com:username/repository.git`
+- ✅ `https://github.com/username/repository/tree/branch`
+- ✅ `https://github.com/username/repository/blob/branch/file`
 **Not supported:**
-- Non-GitHub URLs (GitLab, Bitbucket, etc.)
-- Invalid URL formats
-- Empty or malformed repository names
+- ❌ Non-GitHub URLs (GitLab, Bitbucket, etc.)
+- ❌ Invalid URL formats
+- ❌ Empty or malformed repository names
+- ❌ Repository names with invalid characters
+**Valid characters:**
+- Alphanumeric (a-z, A-Z, 0-9)
+- Hyphens (-)
+- Underscores (_)
+- Dots (.)
+- Cannot start or end with special characters
+---
 ### Connection Issues
-If you experience connection issues:
-1. Check your internet connection
-2. Verify the API endpoint is accessible
-3. Ensure your API key is valid
+**Error:**
+```
+✗ Failed to connect to Prismor API
+```
+**Solutions:**
+1. **Check Internet Connection**
+   ```bash
+   ping prismor.dev
+   ```
+2. **Verify API Endpoint**
+   ```bash
+   curl -I https://prismor.dev
+   ```
+3. **Test API Key**
+   ```bash
+   prismor config
+   ```
+4. **Check Firewall/Proxy**
+   - Ensure your firewall allows HTTPS connections
+   - Configure proxy if needed:
+     ```bash
+     export HTTPS_PROXY=http://proxy.example.com:8080
+     ```
+5. **Retry with Automatic Retries**
+   - The CLI automatically retries failed requests 3 times with exponential backoff
+   - If issues persist, check your network configuration
+---
+### Timeout Issues
+**Error:**
+```
+✗ Request timed out
+```
+**Solutions:**
+1. **Large Repositories**
+   - Vulnerability scans can take up to 10 minutes for large repositories
+   - The CLI will wait automatically
+   - Use `--quiet` mode to reduce output during long scans
+2. **Network Latency**
+   - Check your internet speed
+   - Try again during off-peak hours
+   - Consider using a wired connection
+3. **Check Scan Status**
+   ```bash
+   # Start scan asynchronously
+   prismor start-scan username/repo
+   # Check status later
+   prismor scan-status <job_id>
+   ```
+---
+### Private Repository Access
+**Error:**
+```
+✗ GitHub integration required
+```
+**Solution:**
+1. Visit [https://prismor.dev/dashboard](https://prismor.dev/dashboard)
+2. Navigate to Settings → Integrations
+3. Connect your GitHub account
+4. Authorize Prismor to access private repositories
+5. Try scanning again
+---
+### Invalid Characters in Repository Name
+**Error:**
+```
+✗ Invalid Username: 'user@name'. Must contain only alphanumeric characters...
+```
+**Solution:**
+- Ensure repository name follows GitHub naming conventions
+- Remove special characters like `@`, `#`, `$`, etc.
+- Valid example: `username/my-repo-name`
+- Invalid example: `user@name/repo#123`
+---
+### Rate Limiting
+**Error:**
+```
+✗ API error: Rate limit exceeded
+```
+**Solution:**
+1. Wait a few minutes before retrying
+2. Check your account limits at [prismor.dev/dashboard](https://prismor.dev/dashboard)
+3. Upgrade your plan if needed for higher limits
+---
+### Getting Help
+If you're still experiencing issues:
+1. **Check Configuration**
+   ```bash
+   prismor config
+   ```
+2. **View Account Status**
+   ```bash
+   prismor status
+   ```
+3. **Enable Verbose Output**
+   - Remove `--quiet` flag to see detailed error messages
+4. **Contact Support**
+   - Visit [https://prismor.dev](https://prismor.dev)
+   - Check documentation at [https://docs.prismor.dev](https://docs.prismor.dev)
+   - Report issues at [GitHub Issues](https://github.com/PrismorSec/prismor-cli/issues)
 ## Development

{prismor-1.0.5 → prismor-1.1.1}/setup.py RENAMED Viewed

@@ -17,7 +17,7 @@ if os.path.exists("README.md"):
 setup(
     name="prismor",
-    version="1.0.5",
+    version="1.1.1",
     author="Prismor",
     author_email="support@prismor.dev",
     description="A CLI tool for scanning GitHub repositories for vulnerabilities, secrets, and generating SBOMs",