improvied table colour rendering for severities. Shows total as well now for single packages

Author: colinmoynes

CHANGELOG.md

@@ -8,6 +8,14 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 
 ## [Unreleased]
 
+### Added
+
+- Added repository-level vulnerability summary (`cloudsmith vulnerabilities OWNER/REPO`)
+  - Aggregates scan results across all packages into a single color-coded table
+  - Packages sorted by total vulnerability count (descending)
+  - Packages without scan results are silently omitted
+  - Supports `--severity` and `--fixable/--non-fixable` filters
+
 ## [1.16.0] - 2026-03-24
 
 ### Added

cloudsmith_cli/cli/commands/vulnerabilities.py

@@ -195,7 +195,7 @@ def _collect_repo_scan_data(opts, owner, repo, slugs, severity_filter, fixable):
         TextColumn("[progress.percentage]{task.percentage:>3.0f}%"),
         TextColumn("({task.completed}/{task.total})"),
         console=console,
-        transient=True,  # remove progress bar when done
+        transient=True,
     ) as progress:
         task = progress.add_task("Scanning packages...", total=len(slugs))
 
@@ -216,7 +216,6 @@ def _collect_repo_scan_data(opts, owner, repo, slugs, severity_filter, fixable):
                 progress.advance(task)
                 continue
 
-            # Skip packages with no scan data
             if not data or not _has_scan_results(data):
                 progress.advance(task)
                 continue
@@ -232,7 +231,11 @@ def _collect_repo_scan_data(opts, owner, repo, slugs, severity_filter, fixable):
             label = f"{pkg_name}:{pkg_version}" if pkg_version else pkg_name
 
             counts = _aggregate_severity_counts(data, severity_filter)
-            rows.append((slug, label, counts))
+
+            # Skip packages where filters removed all vulnerabilities
+            if sum(counts.values()) > 0:
+                rows.append((slug, label, counts))
+
             progress.advance(task)
 
     # Sort by total vulnerability count descending

cloudsmith_cli/core/api/vulnerabilities.py

@@ -2,20 +2,39 @@
 
 import click
 import cloudsmith_api
+from rich.console import Console
+from rich.table import Table
 
 from ...cli import utils
 from .. import ratelimits
 from .exceptions import catch_raise_api_exception
 from .init import get_api_client
 
+# Severity color mapping for consistent styling
+SEVERITY_COLORS = {
+    "critical": "red",
+    "high": "bright_red",
+    "medium": "yellow",
+    "low": "blue",
+    "unknown": "dim white",
+}
+
 
 def get_vulnerabilities_api():
     """Get the vulnerabilities API client."""
     return get_api_client(cloudsmith_api.VulnerabilitiesApi)
 
 
+def _colorize_count(count, severity_key):
+    """Return a rich-styled count string, colored only when count > 0."""
+    if count > 0:
+        color = SEVERITY_COLORS.get(severity_key, "white")
+        return f"[{color}]{count}[/{color}]"
+    return f"[dim]{count}[/dim]"
+
+
 def _print_vulnerabilities_summary_table(data, severity_filter, total_filtered_vulns):
-    """Print vulnerabilities as a table."""
+    """Print vulnerabilities as a color-coded table."""
 
     severity_keys = {
         "Critical": "critical",
@@ -29,10 +48,6 @@ def _print_vulnerabilities_summary_table(data, severity_filter, total_filtered_v
         allowed = [s.strip().lower() for s in severity_filter.split(",")]
         severity_keys = {k: v for k, v in severity_keys.items() if v in allowed}
 
-    headers = [{"header": "Package", "justify": "left", "style": "cyan"}]
-    for key in severity_keys.keys():
-        headers.append({"header": key, "justify": "center", "style": "white"})
-
     # Get package name and version for the target label
     pkg_data = getattr(data, "package", None)
     pkg_name = getattr(pkg_data, "name", "Unknown")
@@ -53,29 +68,43 @@ def _print_vulnerabilities_summary_table(data, severity_filter, total_filtered_v
             elif "unknown" in counts:
                 counts["unknown"] += 1
 
-    # Create the single summary row
-    row = [target_label]
-    for _header, key in severity_keys.items():
-        row.append(str(counts[key]))
-
-    rows = [row]
-
-    click.echo()
-    click.echo()
-
-    utils.rich_print_table(headers=headers, rows=rows, title="Vulnerabilities Summary")
+    # Build the rich table
+    console = Console()
+    table = Table(
+        title="Vulnerabilities Summary",
+        show_header=True,
+        header_style="bold",
+        show_lines=True,
+        border_style="bright_black",
+        padding=(0, 1),
+    )
+
+    table.add_column("Package", justify="left", style="cyan", no_wrap=True)
+    for display_name, sev_key in severity_keys.items():
+        color = SEVERITY_COLORS.get(sev_key, "white")
+        table.add_column(display_name, justify="center", header_style=f"bold {color}")
+    table.add_column("Total", justify="center", header_style="bold white")
+
+    # Build the row
+    row_total = 0
+    cells = [target_label]
+    for _display, sev_key in severity_keys.items():
+        count = counts.get(sev_key, 0)
+        cells.append(_colorize_count(count, sev_key))
+        row_total += count
+    total_style = "[bold red]" if row_total > 0 else "[dim]"
+    cells.append(f"{total_style}{row_total}[/]")
+    table.add_row(*cells)
+
+    console.print()
+    console.print(table)
 
     if severity_filter:
-        filters = severity_filter.upper()
-        click.echo(
-            f"\nTotal Vulnerabilities: {getattr(data, 'num_vulnerabilities', 0)}"
+        console.print(
+            f"\nFiltered Vulnerabilities: [bold]{total_filtered_vulns}[/bold]\n"
         )
-        click.echo(f"\nTotal {filters} Vulnerabilities: {total_filtered_vulns}")
     else:
-        click.echo(
-            f"\nTotal Vulnerabilities: {getattr(data, 'num_vulnerabilities', 0)}"
-        )
-    click.echo()
+        console.print(f"\nTotal Vulnerabilities: [bold]{row_total}[/bold]\n")
 
 
 def _print_vulnerabilities_assessment_table(data, severity_filter=None):