@ait-co/console-cli 0.1.15 → 0.1.17

package/README.md

@@ -99,3 +99,15 @@ Every command accepts `--json`. When set:
 ## Status
 
 `login`, `logout`, `whoami`, and `upgrade` are implemented end-to-end — `login` drives a real browser over CDP and `whoami` reads the live console member API. `deploy`, `logs`, `status` are next — see [TODO.md](./TODO.md). See the [organization landing page](https://apps-in-toss-community.github.io/) for the full roadmap.
+
+## Pre-commit hook
+
+Optional but recommended. After cloning, activate the standard pre-commit hook (runs `biome check` on staged files):
+
+```sh
+git config core.hooksPath .githooks
+```
+
+This is a developer convenience for fast feedback before push. CI runs the same checks as the enforcement layer, so contributors who don't activate the hook will still see lint failures in their PR.
+
+선택 사항이지만 권장합니다. clone 후 표준 pre-commit hook을 활성화하면 staged 파일에 `biome check`가 자동으로 돕니다 (push 전에 빠른 피드백). 활성화하지 않아도 동일한 검사가 CI에서 실행되므로 PR 단계에서 lint 실패를 볼 수 있습니다.

package/dist/cli.mjs

@@ -7,7 +7,8 @@ import { unzipSync } from "fflate";
 import { parse } from "yaml";
 import { imageSize } from "image-size";
 import { spawn } from "node:child_process";
-import { constants } from "node:fs";
+import { constants, createReadStream } from "node:fs";
+import { createHash } from "node:crypto";
 //#region src/api/http.ts
 var TossApiError = class extends Error {
 	constructor(status, errorCode, reason, errorType) {
@@ -718,7 +719,8 @@ const ExitCode = {
 	LoginCookieCaptureFailed: 16,
 	ApiError: 17,
 	UpgradeUnavailable: 20,
-	UpgradeAlreadyLatest: 21
+	UpgradeAlreadyLatest: 21,
+	UpgradeChecksumFailed: 22
 };
 //#endregion
 //#region src/flush.ts
@@ -1017,13 +1019,37 @@ var AitBundleError = class extends Error {
 		this.reason = args.reason;
 	}
 };
+const AIT_MAGIC = new Uint8Array([
+	65,
+	73,
+	84,
+	66,
+	85,
+	78,
+	68,
+	76
+]);
+const ZIP_MAGIC = new Uint8Array([
+	80,
+	75,
+	3,
+	4
+]);
+function startsWith(bytes, prefix) {
+	if (bytes.length < prefix.length) return false;
+	for (let i = 0; i < prefix.length; i++) if (bytes[i] !== prefix[i]) return false;
+	return true;
+}
+function detectBundleFormat(bytes) {
+	if (startsWith(bytes, AIT_MAGIC)) return "ait";
+	if (startsWith(bytes, ZIP_MAGIC)) return "zip";
+	return "unknown";
+}
 /**
-* Read the `.ait` at `path`, extract `app.json`, and pull out
-* `_metadata.deploymentId`. Returns both the id and the raw bytes so the
-* caller can forward them to the S3 upload without re-reading the file.
-*
-* Errors are all surfaced as `AitBundleError` with a structured `reason`
-* so the command layer can render a typed `--json` failure.
+* Read the `.ait` at `path` and pull out `deploymentId`, auto-detecting
+* whether the file is the modern AIT header format or a legacy plain
+* zip. Returns the raw bytes so the caller can forward them to S3
+* without re-reading the file.
 */
 async function readAitBundle(path) {
 	let buf;
@@ -1037,16 +1063,109 @@ async function readAitBundle(path) {
 		});
 	}
 	const bytes = new Uint8Array(buf.buffer, buf.byteOffset, buf.byteLength);
+	const { deploymentId, format } = deploymentIdFromBundleBytes(bytes, path);
 	return {
-		deploymentId: deploymentIdFromBundleBytes(bytes, path),
-		bytes
+		deploymentId,
+		bytes,
+		format
 	};
 }
 /**
-* Pure helper split out so tests can feed raw zip bytes without a tmp
-* file. Throws `AitBundleError` on any parse failure.
+* Pure helper split out so tests can feed raw bytes without a tmp file.
+* Throws `AitBundleError` on any parse failure. Returns the detected
+* format so callers that want to log it can.
 */
 function deploymentIdFromBundleBytes(bytes, pathForError) {
+	const format = detectBundleFormat(bytes);
+	if (format === "ait") return {
+		deploymentId: deploymentIdFromAitHeader(bytes, pathForError),
+		format
+	};
+	if (format === "zip") return {
+		deploymentId: deploymentIdFromLegacyZip(bytes, pathForError),
+		format
+	};
+	throw new AitBundleError({
+		path: pathForError,
+		reason: "unrecognized-format",
+		message: "bundle does not start with AITBUNDL or PK magic bytes — not a valid .ait or legacy zip bundle"
+	});
+}
+const AIT_MAGIC_SIZE = 8;
+const AIT_VERSION_SIZE = 4;
+const AIT_HEADER_SIZE = AIT_MAGIC_SIZE + AIT_VERSION_SIZE + 8;
+function deploymentIdFromAitHeader(bytes, pathForError) {
+	if (bytes.length < AIT_HEADER_SIZE) throw new AitBundleError({
+		path: pathForError,
+		reason: "invalid-ait",
+		message: "buffer too small to be a valid AIT file"
+	});
+	const view = new DataView(bytes.buffer, bytes.byteOffset, bytes.byteLength);
+	const bundleLen = Number(view.getBigUint64(AIT_MAGIC_SIZE + AIT_VERSION_SIZE, false));
+	if (!Number.isFinite(bundleLen) || bundleLen <= 0) throw new AitBundleError({
+		path: pathForError,
+		reason: "invalid-ait",
+		message: `AIT bundle length is invalid (${bundleLen})`
+	});
+	const bundleStart = AIT_HEADER_SIZE;
+	const bundleEnd = bundleStart + bundleLen;
+	if (bytes.length < bundleEnd) throw new AitBundleError({
+		path: pathForError,
+		reason: "invalid-ait",
+		message: "unexpected end of buffer reading AIT bundle protobuf"
+	});
+	const deploymentId = readProtobufStringFields(bytes.subarray(bundleStart, bundleEnd), [2, 3]).get(2);
+	if (typeof deploymentId !== "string" || deploymentId === "") throw new AitBundleError({
+		path: pathForError,
+		reason: "missing-deployment-id",
+		message: "AIT bundle protobuf is missing deploymentId (field 2)"
+	});
+	return deploymentId;
+}
+function readProtobufStringFields(bytes, wantedFieldNumbers) {
+	const wanted = new Set(wantedFieldNumbers);
+	const out = /* @__PURE__ */ new Map();
+	const decoder = new TextDecoder("utf-8", { fatal: false });
+	let offset = 0;
+	while (offset < bytes.length) {
+		const { value: tag, next } = readVarint(bytes, offset);
+		offset = next;
+		const fieldNumber = Number(tag >> 3n);
+		const wireType = Number(tag & 7n);
+		if (wireType === 0) offset = readVarint(bytes, offset).next;
+		else if (wireType === 1) offset += 8;
+		else if (wireType === 2) {
+			const { value: len, next: afterLen } = readVarint(bytes, offset);
+			offset = afterLen;
+			const payloadEnd = offset + Number(len);
+			if (payloadEnd > bytes.length) break;
+			if (wanted.has(fieldNumber)) out.set(fieldNumber, decoder.decode(bytes.subarray(offset, payloadEnd)));
+			offset = payloadEnd;
+		} else if (wireType === 5) offset += 4;
+		else break;
+	}
+	return out;
+}
+function readVarint(bytes, start) {
+	let value = 0n;
+	let shift = 0n;
+	let i = start;
+	for (let n = 0; n < 10 && i < bytes.length; n++, i++) {
+		const byte = bytes[i];
+		if (byte === void 0) break;
+		value |= BigInt(byte & 127) << shift;
+		if ((byte & 128) === 0) return {
+			value,
+			next: i + 1
+		};
+		shift += 7n;
+	}
+	return {
+		value,
+		next: i
+	};
+}
+function deploymentIdFromLegacyZip(bytes, pathForError) {
 	let entries;
 	try {
 		entries = unzipSync(bytes, { filter: (file) => file.name === "app.json" });
@@ -1195,6 +1314,7 @@ async function runDeploy(args, deps = {}) {
 			workspaceId,
 			appId,
 			deploymentId,
+			bundleFormat: bundleInfo.format,
 			bytes: bundleInfo.bytes.byteLength,
 			steps,
 			memo: memo ?? null,
@@ -1279,6 +1399,7 @@ async function runDeploy(args, deps = {}) {
 			workspaceId,
 			appId,
 			deploymentId,
+			bundleFormat: bundleInfo.format,
 			uploaded,
 			reviewed,
 			released: release,
@@ -5340,6 +5461,9 @@ async function fetchLatestReleaseConditional(previousEtag) {
 		etag
 	};
 }
+function findSha256SumsAsset(release) {
+	return release.assets.find((a) => a.name === "SHA256SUMS");
+}
 function versionFromTag(tag) {
 	const at = tag.lastIndexOf("@");
 	const candidate = at >= 0 ? tag.slice(at + 1) : tag;
@@ -5403,6 +5527,31 @@ function compareSemver(a, b) {
 	return pa.pre > pb.pre ? 1 : -1;
 }
 //#endregion
+//#region src/sha256.ts
+function parseSha256Sums(text) {
+	const out = /* @__PURE__ */ new Map();
+	for (const rawLine of text.split(/\r?\n/)) {
+		const line = rawLine.trim();
+		if (line === "" || line.startsWith("#")) continue;
+		const match = line.match(/^([0-9a-fA-F]{64})\s+\*?(.+)$/);
+		if (!match) continue;
+		const hash = match[1]?.toLowerCase();
+		const name = match[2]?.trim();
+		if (!hash || !name) continue;
+		out.set(name, hash);
+	}
+	return out;
+}
+function sha256OfFile(path) {
+	return new Promise((resolve, reject) => {
+		const hash = createHash("sha256");
+		const stream = createReadStream(path);
+		stream.on("error", reject);
+		stream.on("data", (chunk) => hash.update(chunk));
+		stream.on("end", () => resolve(hash.digest("hex")));
+	});
+}
+//#endregion
 //#region src/version.ts
 function resolveVersion() {
 	try {
@@ -5410,7 +5559,7 @@ function resolveVersion() {
 		if (typeof injected === "string" && injected.length > 0) return injected;
 	} catch {}
 	try {
-		return "0.1.15";
+		return "0.1.17";
 	} catch {}
 	return "0.0.0-dev";
 }
@@ -5531,6 +5680,50 @@ const upgradeCommand = defineCommand({
 			}, `Failed to download new binary: ${err.message}`);
 			process.exit(ExitCode.NetworkError);
 		}
+		const sumsAsset = findSha256SumsAsset(release);
+		if (!sumsAsset) {
+			await unlink(stagingPath).catch(() => {});
+			emitError({
+				reason: "sums-missing",
+				tag: release.tag_name
+			}, `Release ${release.tag_name} has no SHA256SUMS asset. It may still be uploading; retry shortly.`);
+			process.exit(ExitCode.UpgradeChecksumFailed);
+		}
+		let expected;
+		let actual;
+		try {
+			const sumsRes = await fetch(sumsAsset.browser_download_url);
+			if (!sumsRes.ok) throw new Error(`SHA256SUMS download failed: ${sumsRes.status} ${sumsRes.statusText}`);
+			expected = parseSha256Sums(await sumsRes.text()).get(platform.assetName);
+			actual = (await sha256OfFile(stagingPath)).toLowerCase();
+		} catch (err) {
+			await unlink(stagingPath).catch(() => {});
+			emitError({
+				reason: "sums-fetch-failed",
+				message: err.message
+			}, `Failed to verify checksum: ${err.message}`);
+			process.exit(ExitCode.UpgradeChecksumFailed);
+		}
+		if (!expected) {
+			await unlink(stagingPath).catch(() => {});
+			emitError({
+				reason: "sums-no-entry",
+				assetName: platform.assetName,
+				tag: release.tag_name
+			}, `SHA256SUMS for ${release.tag_name} has no entry for ${platform.assetName}.`);
+			process.exit(ExitCode.UpgradeChecksumFailed);
+		}
+		if (expected.toLowerCase() !== actual) {
+			await unlink(stagingPath).catch(() => {});
+			emitError({
+				reason: "sha256-mismatch",
+				assetName: platform.assetName,
+				expected: expected.toLowerCase(),
+				actual
+			}, `Checksum mismatch for ${platform.assetName}: expected ${expected.toLowerCase()}, got ${actual}.`);
+			process.exit(ExitCode.UpgradeChecksumFailed);
+		}
+		if (!args.json) process.stdout.write("Checksum OK.\n");
 		try {
 			if (process.platform === "win32") {
 				await rename(exePath, `${exePath}.old`);