@agntk/agent-harness 0.1.3 → 0.1.4

package/dist/cli/index.js

@@ -3490,7 +3490,7 @@ Customize the workflows in your workflows/ directory.`);
     }
     return;
   }
-  const { universalInstall } = await import("../universal-installer-EVBDGOWM.js");
+  const { universalInstall } = await import("../universal-installer-AAXXYM5A.js");
   const result = await universalInstall(dir, source, {
     type: opts.type,
     id: opts.id,

package/dist/index.js

@@ -12496,6 +12496,130 @@ async function resolveGithubCommitSha(url) {
     clearTimeout(timeout);
   }
 }
+var SIBLING_LICENSE_NAMES = [
+  "LICENSE",
+  "LICENSE.txt",
+  "LICENSE.md",
+  "COPYING",
+  "COPYING.txt"
+];
+function classifyLicenseText(text) {
+  const lower = text.toLowerCase();
+  if (lower.includes("all rights reserved")) {
+    return "PROPRIETARY";
+  }
+  if (lower.includes("mit license")) return "MIT";
+  if (lower.includes("apache license, version 2.0") || lower.includes("apache-2.0"))
+    return "Apache-2.0";
+  if (lower.includes("mozilla public license version 2.0") || lower.includes("mpl-2.0"))
+    return "MPL-2.0";
+  if (lower.includes("gnu affero general public license")) return "AGPL-3.0";
+  if (lower.includes("gnu lesser general public license")) {
+    if (lower.includes("version 3")) return "LGPL-3.0";
+    if (lower.includes("version 2")) return "LGPL-2.1";
+  }
+  if (lower.includes("gnu general public license")) {
+    if (lower.includes("version 3")) return "GPL-3.0";
+    if (lower.includes("version 2")) return "GPL-2.0";
+  }
+  if (lower.includes("isc license")) return "ISC";
+  if (lower.includes("cc0 1.0 universal") || lower.includes("cc0-1.0")) return "CC0-1.0";
+  if (lower.includes("creative commons attribution-sharealike 4.0")) return "CC-BY-SA-4.0";
+  if (lower.includes("creative commons attribution 4.0") || lower.includes("cc-by-4.0"))
+    return "CC-BY-4.0";
+  if (lower.includes("redistribution and use in source and binary forms") && lower.includes("neither the name of")) {
+    return "BSD-3-Clause";
+  }
+  if (lower.includes("redistribution and use in source and binary forms")) {
+    return "BSD-2-Clause";
+  }
+  if (lower.includes("this is free and unencumbered software released into the public domain")) {
+    return "Unlicense";
+  }
+  return "UNKNOWN";
+}
+function extractCopyright(text) {
+  const lines = text.split(/\r?\n/);
+  for (const line of lines) {
+    const trimmed = line.trim();
+    if (/^©\s*\d{4}/.test(trimmed) || /^copyright\b.*\d{4}/i.test(trimmed)) {
+      return trimmed;
+    }
+  }
+  return void 0;
+}
+async function fetchSiblingLicense(siblingUrl) {
+  const controller = new AbortController();
+  const timeout = setTimeout(() => controller.abort(), 5e3);
+  try {
+    const response = await fetch(siblingUrl, { signal: controller.signal });
+    if (!response.ok) return null;
+    return await response.text();
+  } catch {
+    return null;
+  } finally {
+    clearTimeout(timeout);
+  }
+}
+async function fetchGithubRepoLicense(owner, repo) {
+  const apiUrl = `https://api.github.com/repos/${owner}/${repo}/license`;
+  const controller = new AbortController();
+  const timeout = setTimeout(() => controller.abort(), 5e3);
+  try {
+    const response = await fetch(apiUrl, {
+      signal: controller.signal,
+      headers: { "Accept": "application/vnd.github+json" }
+    });
+    if (!response.ok) return null;
+    const data = await response.json();
+    const spdxId = data.license?.spdx_id;
+    if (!spdxId || spdxId === "NOASSERTION") return null;
+    let body;
+    if (data.content && data.encoding === "base64") {
+      try {
+        body = Buffer.from(data.content, "base64").toString("utf-8");
+      } catch {
+        body = void 0;
+      }
+    }
+    return { spdxId, htmlUrl: data.html_url ?? "", body };
+  } catch {
+    return null;
+  } finally {
+    clearTimeout(timeout);
+  }
+}
+async function detectLicense(sourceUrl) {
+  const match2 = sourceUrl.match(
+    /^https?:\/\/raw\.githubusercontent\.com\/([^/]+)\/([^/]+)\/([^/]+)\/(.+)$/
+  );
+  if (!match2) {
+    return { spdxId: "UNKNOWN" };
+  }
+  const [, owner, repo, ref, path] = match2;
+  const lastSlash = path.lastIndexOf("/");
+  const dir = lastSlash >= 0 ? path.slice(0, lastSlash) : "";
+  const dirPrefix = dir ? `${dir}/` : "";
+  for (const siblingName of SIBLING_LICENSE_NAMES) {
+    const siblingUrl = `https://raw.githubusercontent.com/${owner}/${repo}/${ref}/${dirPrefix}${siblingName}`;
+    const text = await fetchSiblingLicense(siblingUrl);
+    if (text) {
+      const spdxId = classifyLicenseText(text);
+      const copyright = extractCopyright(text);
+      return { spdxId, copyright, licenseSource: siblingUrl };
+    }
+  }
+  const repoLicense = await fetchGithubRepoLicense(owner, repo);
+  if (repoLicense) {
+    const copyright = repoLicense.body ? extractCopyright(repoLicense.body) : void 0;
+    return {
+      spdxId: repoLicense.spdxId,
+      copyright,
+      licenseSource: repoLicense.htmlUrl || void 0
+    };
+  }
+  return { spdxId: "UNKNOWN" };
+}
 async function recordProvenance(content, originalSource) {
   let parsed;
   try {
@@ -12513,6 +12637,18 @@ async function recordProvenance(content, originalSource) {
       data.source_commit = sha;
     }
   }
+  if (!data.license || !data.copyright || !data.license_source) {
+    const license = await detectLicense(originalSource);
+    if (!data.license) {
+      data.license = license.spdxId;
+    }
+    if (!data.copyright && license.copyright) {
+      data.copyright = license.copyright;
+    }
+    if (!data.license_source && license.licenseSource) {
+      data.license_source = license.licenseSource;
+    }
+  }
   data.installed_at = (/* @__PURE__ */ new Date()).toISOString();
   data.installed_by = `agent-harness@${getHarnessVersion()}`;
   return matter4.stringify(parsed.content, data);