CLI tool to query PHP package quality scores from Plumb (plumbphp.dev): show scores, trigger scans, view scan history.

Maintainers

Package info

github.com/jeffersongoncalves/plump-cli

Type:project

pkg:composer/jeffersongoncalves/plump-cli

Transparency log

Fund package maintenance!

jeffersongoncalves

Statistics

Installs: 0

Dependents: 0

Suggesters: 0

Stars: 1

Open Issues: 0

v0.1.0 2026-07-15 21:18 UTC

This package is auto-updated.

Last update: 2026-07-15 21:20:32 UTC


README

plump-cli

plump-cli

A small CLI to query Plumb — mechanically-scored Security, Maintenance, and Ecosystem Health for PHP/Composer packages — directly from the terminal. Show a package's scores, trigger a fresh scan, or browse scan history. No API key required.

Built with Laravel Zero.

Installation

composer global require jeffersongoncalves/plump-cli

Or download the PHAR from the releases page.

Rate limits

Plumb's public API enforces these limits per IP; plump surfaces 429/503 responses (including Retry-After) as a friendly error instead of a raw HTTP failure:

Endpoint Limit
GET (show, history) 120 requests/minute
POST (scan) 3 requests/15 minutes

Commands

show — package scores and latest scan

plump show laravel/framework

scan — trigger a scan

plump scan laravel/framework

Queues an asynchronous scan (202) or returns the already-fresh cached result (200). Heavily rate limited server-side — see above.

history — scan history

plump history laravel/framework
plump history laravel/framework --sort=-scanned_at --limit=50

Development

composer install
composer test        # pest + pint --test
composer build       # build the PHAR into builds/

License

MIT © Jefferson Gonçalves