diff --git a/README.md b/README.md
index b94c89d..5efe087 100644
--- a/README.md
+++ b/README.md
@@ -11,14 +11,6 @@ When Cursor / Codex / Copilot / Claude Code opens a PR that touches `deploy/`, `
 
 > "GitHub asks 'did a reviewer approve?' Deploy Gate asks 'did a named human authorize this exact AI action?' and gives you signed proof."
 
-## Why this exists
-
-AI agents are moving from "suggest text" to "take actions": committing code, modifying workflows, and deploying to production. GitHub controls like branch protection, environments, and required reviewers gate humans, not agents.
-
-Deploy Gate is the missing primitive: a deterministic gate keyed to the exact action the agent is taking, with a signed authority receipt as the audit artifact.
-
-When audit time comes, you do not want to hand over a mutable PR comment thread. You want a chain of signed receipts that can be independently verified.
-
 ## Quickstart
 
 Add to your workflow:
@@ -41,6 +33,10 @@ jobs:
           pp-api-key: ${{ secrets.PP_API_KEY }}
 ```
 
+Free for unlimited signers and unlimited public repos. Paid tiers add policy controls and audit retention. See [pricing](https://permissionprotocol.com/pricing).
+
+![Blocked PR](./assets/marketplace-blocked-pr.png)
+
 1. Get API key at https://app.permissionprotocol.com
 2. Add secret:
 
@@ -52,6 +48,14 @@ gh secret set PP_API_KEY -b "pp_live_..."
 
 Full install guide: [INSTALL.md](./INSTALL.md)
 
+## Why this exists
+
+AI agents are moving from "suggest text" to "take actions": committing code, modifying workflows, and deploying to production. GitHub controls like branch protection, environments, and required reviewers gate humans, not agents.
+
+Deploy Gate is the missing primitive: a deterministic gate keyed to the exact action the agent is taking, with a signed authority receipt as the audit artifact.
+
+When audit time comes, you do not want to hand over a mutable PR comment thread. You want a chain of signed receipts that can be independently verified.
+
 ## Failure modes
 
 `v2` defaults to fail-closed when the Permission Protocol API is unavailable. **A security tool that fails open in a network blip is not a security tool.**
@@ -111,6 +115,13 @@ Deploy Gate checks for valid receipt
 | PR comments + screenshots | No | No | Open to mutation |
 | Deploy Gate | Yes | Yes (Ed25519 receipt) | Fails closed for production |
 
+## Resources
+
+- Trust + compliance: https://permissionprotocol.com/trust
+- Support: https://permissionprotocol.com/contact
+- Live demo: https://permissionprotocol.com/r/demo
+- Reference verifier (CLI): https://github.com/permission-protocol/pp-cli
+
 ## License
 
 MIT - see [LICENSE](./LICENSE)
diff --git a/action.yml b/action.yml
index eee48b3..5f7cb28 100644
--- a/action.yml
+++ b/action.yml
@@ -1,6 +1,6 @@
-# Version: v2
+# Version: v2.1.0
 name: 'Deploy Gate'
-description: 'Block AI deploys until a human signs off — no receipt, no merge (v2 fail-closed defaults)'
+description: 'Block AI agents from production deploys without a human-signed Ed25519 receipt. Fails closed by default.'
 author: 'Permission Protocol'
 
 branding: