flow_client 0.1.1 → 0.1.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 77827a004fe0125e3476d61a0f50a93d4d27d69e7212ba72415650568efc34a6
-  data.tar.gz: 5d7a508b6113ba6ee5822ef729f165552186b4b4b961305b2deb395356705850
+  metadata.gz: 3bd686d62caad9fb944665388d7014910df8500b7252f6962e9cd46a9d78a95a
+  data.tar.gz: d2357ad477ce9fa62f60ab0d510849e110aa172b9a2219f5986a5cecfa4992a3
 SHA512:
-  metadata.gz: 4931c719ba25d3114cca80f94b5417c0f8347bb192cd9796250b6eda7cc290aa37dee0bef5cc2ec2a14ebde548c5916998b639dcce1dfbd3d95b52fded0a3e1f
-  data.tar.gz: e73cc7e7dd2d2ae170d55b821cf930816d6f9a640ecf16be396c482a963d262790d0b40c6844f3561152fa498fd898104fdad7c252b660fe9dba67d4148a4149
+  metadata.gz: d589dbbda843abd41dac7cbfa7b2406bf1bffbbff7ed8bede326c2df5b21da048a35ec390762ccf9638a7ad7b38f527dfe47dd6243c4b601a8047a1106b3a504
+  data.tar.gz: 47824803a2aac66cd2c272a1846ff09e02124187860faab26f2f6508ad9c929cee1acf4f414091793ed14b9156f003e172143f00892e14ccbde8a1c6649b9ab7

data/.github/workflows/brakeman-analysis.yml

@@ -0,0 +1,46 @@
+# This workflow integrates Brakeman with GitHub's Code Scanning feature
+# Brakeman is a static analysis security vulnerability scanner for Ruby on Rails applications
+
+name: Brakeman Scan
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ main ]
+  schedule:
+    - cron: '44 7 * * 1'
+
+jobs:
+  brakeman-scan:
+    name: Brakeman Scan
+    runs-on: ubuntu-latest
+    steps:
+    # Checkout the repository to the GitHub Actions runner
+    - name: Checkout
+      uses: actions/checkout@v2
+
+    # Customize the ruby version depending on your needs
+    - name: Setup Ruby
+      uses: actions/setup-ruby@v1
+      with:
+        ruby-version: '2.7'
+
+    - name: Setup Brakeman
+      env:
+        BRAKEMAN_VERSION: '4.10' # SARIF support is provided in Brakeman version 4.10+
+      run: |
+        gem install brakeman --version $BRAKEMAN_VERSION
+
+    # Execute Brakeman CLI and generate a SARIF output with the security issues identified during the analysis
+    - name: Scan
+      continue-on-error: true
+      run: |
+        brakeman -f sarif -o output.sarif.json .
+
+    # Upload the SARIF file generated in the previous step
+    - name: Upload SARIF
+      uses: github/codeql-action/upload-sarif@v1
+      with:
+        sarif_file: output.sarif.json

data/.github/workflows/rubocop-analysis.yml

@@ -0,0 +1,47 @@
+# pulled from repo
+name: "Rubocop"
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ main ]
+  schedule:
+    - cron: '16 3 * * 1'
+
+jobs:
+  rubocop:
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v2
+
+    # If running on a self-hosted runner, check it meets the requirements
+    # listed at https://github.com/ruby/setup-ruby#using-self-hosted-runners
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        ruby-version: 2.6
+
+    # This step is not necessary if you add the gem to your Gemfile
+    - name: Install Code Scanning integration
+      run: bundle add code-scanning-rubocop --version 0.3.0 --skip-install
+
+    - name: Install dependencies
+      run: bundle install
+
+    - name: Rubocop run
+      run: |
+        bash -c "
+          bundle exec rubocop --require code_scanning --format CodeScanning::SarifFormatter -o rubocop.sarif
+          [[ $? -ne 2 ]]
+        "
+
+    - name: Upload Sarif output
+      uses: github/codeql-action/upload-sarif@v1
+      with:
+        sarif_file: rubocop.sarif

data/Gemfile

@@ -5,10 +5,7 @@ source "https://rubygems.org"
 # Specify your gem's dependencies in flow_client.gemspec
 gemspec
 
+gem "guard-rspec", "~> 4.7"
 gem "rake", "~> 13.0"
-
 gem "rspec", "~> 3.0"
-
 gem "rubocop", "~> 1.7"
-
-gem "guard-rspec", "~> 4.7"

data/Gemfile.lock

@@ -1,15 +1,12 @@
 PATH
   remote: .
   specs:
-    flow_client (0.1.1)
-      digest-sha3
-      ecdsa
+    flow_client (0.1.2)
       grpc
       grpc-tools
       json
       openssl
       rlp
-      rspec
 
 GEM
   remote: https://rubygems.org/
@@ -17,8 +14,6 @@ GEM
     ast (2.4.2)
     coderay (1.1.3)
     diff-lcs (1.4.4)
-    digest-sha3 (1.0.2)
-    ecdsa (1.2.0)
     ffi (1.15.3)
     formatador (0.3.0)
     google-protobuf (3.17.3-universal-darwin)
@@ -28,13 +23,13 @@ GEM
       google-protobuf (~> 3.15)
       googleapis-common-protos-types (~> 1.0)
     grpc-tools (1.38.0)
-    guard (2.17.0)
+    guard (2.18.0)
       formatador (>= 0.2.4)
       listen (>= 2.7, < 4.0)
       lumberjack (>= 1.0.12, < 2.0)
       nenv (~> 0.1)
       notiffany (~> 0.0)
-      pry (>= 0.9.12)
+      pry (>= 0.13.0)
       shellany (~> 0.0)
       thor (>= 0.18.1)
     guard-compat (1.2.1)
@@ -43,7 +38,7 @@ GEM
       guard-compat (~> 1.1)
       rspec (>= 2.99.0, < 4.0)
     json (2.5.1)
-    listen (3.5.1)
+    listen (3.7.0)
       rb-fsevent (~> 0.10, >= 0.10.3)
       rb-inotify (~> 0.9, >= 0.9.10)
     lumberjack (1.2.8)
@@ -80,16 +75,16 @@ GEM
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.10.0)
     rspec-support (3.10.2)
-    rubocop (1.18.3)
+    rubocop (1.19.1)
       parallel (~> 1.10)
       parser (>= 3.0.0.0)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 1.8, < 3.0)
       rexml
-      rubocop-ast (>= 1.7.0, < 2.0)
+      rubocop-ast (>= 1.9.1, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 1.4.0, < 3.0)
-    rubocop-ast (1.7.0)
+    rubocop-ast (1.10.0)
       parser (>= 3.0.1.1)
     ruby-progressbar (1.11.0)
     shellany (0.0.1)

data/README.md

@@ -1,3 +1,5 @@
+[![Gem Version](https://badge.fury.io/rb/flow_client.svg)](https://badge.fury.io/rb/flow_client)
+
 # FlowClient
 
 FlowClient is a Ruby gRPC client for Flow (onflow.org)
@@ -13,7 +15,7 @@ FlowClient is a Ruby gRPC client for Flow (onflow.org)
 - [x] Get a transaction
 - [x] Single account signing
 - [ ] Multi account signing
-- [ ] secp256k1 keys
+- [x] secp256k1 keys
 - [x] prime256v1 keys
 
 ### Flow Data
@@ -43,16 +45,24 @@ Or install it yourself as:
 client = FlowClient::Client.new("access.devnet.nodes.onflow.org:9000")
 res = client.ping
 ```
+### Accounts
+
+```ruby
+# get_account(account_address)
+res = client.get_account("0xAlice")
+```
+
 ### Events
 
 ```ruby
-get_events(type, start_height, end_height)
+# get_events(type, start_height, end_height)
 res = client.get_events("A.0b2a3299cc857e29.TopShot.Deposit", 12913388, 12913389)
 ```
 
 ### Scripts
 
 ```ruby
+# execute_script(cadence_string, args_array)
 args = [{ type: "Address", value: "0xAlice" }.to_json]
 # Execute a Cadence script
 res = client.execute_script(script, args)
@@ -61,6 +71,15 @@ res = client.execute_script(script, args)
 ### Transactions
 
 ```ruby
+# Construct a key - left pad with 0x04 to indicate it is uncompressed
+# as per https://datatracker.ietf.org/doc/html/rfc5480. You can generate keys
+# using the Flow CLI command `flow keys generate`
+key = FlowClient::Crypto.key_from_hex_keys(
+  "<priv key hex>",
+  "04<public key hex>"
+)
+
+# Send a transaction with a single signer, proposer and authorizer
 transaction = FlowClient::Transaction.new
 transaction.script = cadence
 transaction.reference_block_id = ref_block_id
@@ -74,6 +93,14 @@ transaction.payer_address = "0xAlice"
 transaction.authorizer_addresses = ["0xAlice"]
 transaction.add_envelope_signature("0xAlice", 0, key)
 res = client.send_transaction(transaction)
+
+# Get a transaction
+# get_transaction(transaction_id)
+client.get_transaction(res.id.unpack("H*"))
+
+# Get a transaction result
+# get_transaction_result(transaction_id)
+client.get_transaction_result(res.id.unpack("H*"))
 ```
 
 ### Address Alias Resolution

data/flow_client.gemspec

@@ -7,7 +7,6 @@ Gem::Specification.new do |spec|
   spec.version       = FlowClient::VERSION
   spec.authors       = ["Nico du Plessis"]
   spec.email         = ["nico@glucode.com"]
-
   spec.summary       = "A Ruby client for the Flow blockchain"
   spec.description   = "A Ruby client for the Flow blockchain"
   spec.homepage      = "https://github.com/glucode/flow_client"
@@ -30,14 +29,11 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
 
   # Uncomment to register a new dependency of your gem
-  spec.add_dependency "digest-sha3"
-  spec.add_dependency "ecdsa"
   spec.add_dependency "grpc"
   spec.add_dependency "grpc-tools"
   spec.add_dependency "json"
   spec.add_dependency "openssl"
   spec.add_dependency "rlp"
-  spec.add_dependency "rspec"
 
   # For more information and examples about making a new gem, checkout our
   # guide at: https://bundler.io/guides/creating_gem.html

data/lib/flow_client/crypto.rb

@@ -3,7 +3,14 @@
 require "openssl"
 
 module FlowClient
+  # Crypto helpers
   class Crypto
+    module Curves
+      P256 = "prime256v1"
+      SECP256K1 = "secp256k1"
+    end
+
+    # Sign data using the provided key
     def self.sign(data, key)
       digest = OpenSSL::Digest.digest("SHA3-256", data)
       asn = key.dsa_sign_asn1(digest)
@@ -14,20 +21,38 @@ module FlowClient
       combined_bytes.pack("C*")
     end
 
-    # TODO: Handle both sig algos here
+    # Constructs an OpenSSL::PKey::EC key from an octet string
+    # keypair.
+    #
     # secp256k1
     # prime256v1
-    def self.key_from_hex_keys(private_hex, public_hex)
+    def self.key_from_hex_keys(private_hex, public_hex, algo = Curves::P256)
       asn1 = OpenSSL::ASN1::Sequence(
         [
           OpenSSL::ASN1::Integer(1),
           OpenSSL::ASN1::OctetString([private_hex].pack("H*")),
-          OpenSSL::ASN1::ObjectId("prime256v1", 0, :EXPLICIT),
+          OpenSSL::ASN1::ObjectId(algo, 0, :EXPLICIT),
           OpenSSL::ASN1::BitString([public_hex].pack("H*"), 1, :EXPLICIT)
         ]
       )
 
       OpenSSL::PKey::EC.new(asn1.to_der)
     end
+
+    # Returns an octet string keypair.
+    #
+    # Supported ECC curves are:
+    # Crypto::Curves::P256
+    # Crypto::Curves::SECP256K1
+    #
+    # Usage example:
+    # private_key, public_key = FlowClient::Crypto.generate_keys(FlowClient::Crypto::Curves::P256)
+    def self.generate_keys(curve)
+      key = OpenSSL::PKey::EC.new(curve).generate_key
+      [
+        key.private_key.to_s(16).downcase,
+        key.public_key.to_bn.to_s(16).downcase
+      ]
+    end
   end
 end

data/lib/flow_client/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module FlowClient
-  VERSION = "0.1.1"
+  VERSION = "0.1.2"
 end

metadata

@@ -1,43 +1,15 @@
 --- !ruby/object:Gem::Specification
 name: flow_client
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.1.2
 platform: ruby
 authors:
 - Nico du Plessis
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2021-08-17 00:00:00.000000000 Z
+date: 2021-08-25 00:00:00.000000000 Z
 dependencies:
-- !ruby/object:Gem::Dependency
-  name: digest-sha3
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: ecdsa
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 - !ruby/object:Gem::Dependency
   name: grpc
   requirement: !ruby/object:Gem::Requirement
@@ -108,20 +80,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: A Ruby client for the Flow blockchain
 email:
 - nico@glucode.com
@@ -129,6 +87,8 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/workflows/brakeman-analysis.yml"
+- ".github/workflows/rubocop-analysis.yml"
 - ".github/workflows/ruby.yml"
 - ".gitignore"
 - ".rspec"