npm - @certivu/cli - Versions diffs - 1.2.1 → 2.0.1 - Mend

@certivu/cli 1.2.1 → 2.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -18,10 +18,11 @@ certivu --version
 # Save your API key
 certivu config set api-key ctv_key_...
 certivu config set generator-id your-generator-id
-certivu config set private-key BASE64_PRIVATE_KEY
-# Sign a file
+# Sign a file — images, audio, or text; format auto-detected
 certivu sign ./output.jpg --model stable-diffusion-xl
+certivu sign ./podcast.wav --model whisper-v3
+certivu sign ./report.pdf --model gpt-4o --format text
 # Verify a file
 certivu verify ./output.jpg
@@ -34,20 +35,23 @@ certivu status ctv_7f3kx9mq2...
 ### `certivu sign <file>`
-Hash, sign, and submit a provenance record for AI-generated content. Requires an API key, generator ID, and private key.
+Sign AI-generated content. Signing, watermarking, and ML-DSA are all server-side — no private key required locally. Accepts images (JPEG/PNG/WebP), audio (MP3/FLAC/WAV), and text (PDF/HTML/plain text). Format is auto-detected from magic bytes; use `--format` to override.
 ```
 certivu sign ./output.jpg --model stable-diffusion-xl
 ✓ Signed
   Token       ctv_7f3kx9mq2...
   Record ID   rec-00000000-...
+  Format      image
+  Output      ./output.signed.jpg
 ```
 | Flag | Description |
 |------|-------------|
 | `--model <name>` | AI model name — required |
+| `--format <type>` | `image`, `audio`, or `text` — auto-detected if omitted |
 | `--generator-id <id>` | Override generator ID |
-| `--private-key <key>` | Override ML-DSA private key (base64) |
+| `--output <path>` | Output file path (default: `<input>.signed.<ext>`) |
 | `--api-key <key>` | Override API key |
 ### `certivu verify <file>`
@@ -78,11 +82,10 @@ Look up a token without re-uploading the file.
 ```bash
 certivu config set api-key ctv_key_abc123
 certivu config set generator-id <uuid>
-certivu config set private-key <base64>
 certivu config get
 ```
-Config is stored at `~/.config/certivu/config.json`. Environment variables (`CERTIVU_API_KEY`, `CERTIVU_GENERATOR_ID`, `CERTIVU_PRIVATE_KEY`, `CERTIVU_BASE_URL`) override the config file.
+Config is stored at `~/.config/certivu/config.json`. Environment variables (`CERTIVU_API_KEY`, `CERTIVU_GENERATOR_ID`, `CERTIVU_BASE_URL`) override the config file.
 ## Requirements

package/dist/index.js CHANGED Viewed

@@ -135,9 +135,11 @@ function toUint8Array(content) {
 async function signContent(baseUrl, apiKey, input) {
   const bytes = toUint8Array(input.content);
   const form = new FormData();
-  form.append("image", new Blob([bytes]), "image");
+  form.append("image", new Blob([bytes]), "content");
   form.append("model", input.model);
   form.append("generator_id", input.generatorId);
+  if (input.format)
+    form.append("format", input.format);
   const res = await fetch(`${baseUrl}/v1/sign`, {
     method: "POST",
     headers: { Authorization: `Bearer ${apiKey}` },
@@ -149,8 +151,15 @@ async function signContent(baseUrl, apiKey, input) {
   }
   const token = res.headers.get("X-Certivu-Token") ?? "";
   const record_id = res.headers.get("X-Certivu-Record-Id") ?? "";
-  const watermarkedContent = new Uint8Array(await res.arrayBuffer());
-  return { token, record_id, watermarkedContent };
+  const formatHeader = res.headers.get("X-Certivu-Format");
+  const signedContent = new Uint8Array(await res.arrayBuffer());
+  return {
+    token,
+    record_id,
+    signedContent,
+    watermarkedContent: signedContent,
+    ...formatHeader ? { format: formatHeader } : {}
+  };
 }
 function toUint8Array2(content) {
   if (typeof content === "string")
@@ -234,11 +243,71 @@ var CertivuClient = class {
     }
     return res.json();
   }
+  async getAnalyticsOverview(days) {
+    const url = new URL(`${this.baseUrl}/v1/analytics/overview`);
+    if (days !== void 0)
+      url.searchParams.set("days", String(days));
+    const res = await fetch(url.toString(), { headers: { Authorization: `Bearer ${this.apiKey}` } });
+    if (!res.ok) {
+      const err2 = await res.json().catch(() => ({}));
+      throw new Error(err2.error ?? `HTTP ${res.status}`);
+    }
+    return res.json();
+  }
+  async getRecordAnalytics(recordId) {
+    const res = await fetch(`${this.baseUrl}/v1/analytics/records/${encodeURIComponent(recordId)}`, {
+      headers: { Authorization: `Bearer ${this.apiKey}` }
+    });
+    if (!res.ok) {
+      const err2 = await res.json().catch(() => ({}));
+      throw new Error(err2.error ?? `HTTP ${res.status}`);
+    }
+    return res.json();
+  }
+  async listWebhooks() {
+    const res = await fetch(`${this.baseUrl}/v1/webhooks`, {
+      headers: { Authorization: `Bearer ${this.apiKey}` }
+    });
+    if (!res.ok) {
+      const err2 = await res.json().catch(() => ({}));
+      throw new Error(err2.error ?? `HTTP ${res.status}`);
+    }
+    return res.json();
+  }
+  async createWebhook(input) {
+    const res = await fetch(`${this.baseUrl}/v1/webhooks`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json", Authorization: `Bearer ${this.apiKey}` },
+      body: JSON.stringify(input)
+    });
+    if (!res.ok) {
+      const err2 = await res.json().catch(() => ({}));
+      throw new Error(err2.error ?? `HTTP ${res.status}`);
+    }
+    return res.json();
+  }
+  async deleteWebhook(webhookId) {
+    const res = await fetch(`${this.baseUrl}/v1/webhooks/${encodeURIComponent(webhookId)}`, {
+      method: "DELETE",
+      headers: { Authorization: `Bearer ${this.apiKey}` }
+    });
+    if (!res.ok) {
+      const err2 = await res.json().catch(() => ({}));
+      throw new Error(err2.error ?? `HTTP ${res.status}`);
+    }
+  }
 };
 // src/commands/sign.ts
+function inferFormat(filePath) {
+  const ext = (0, import_node_path2.extname)(filePath).toLowerCase();
+  if ([".jpg", ".jpeg", ".png", ".webp"].includes(ext)) return "image";
+  if ([".mp3", ".flac", ".wav", ".ogg", ".aac", ".m4a", ".aiff"].includes(ext)) return "audio";
+  if ([".pdf", ".docx", ".html", ".htm", ".txt", ".md"].includes(ext)) return "text";
+  return void 0;
+}
 async function signCommand(filePath, flags) {
-  if (!filePath) die("Usage: certivu sign <file> --model <model>");
+  if (!filePath) die("Usage: certivu sign <file> --model <model> [--format image|audio|text]");
   const config = await loadConfig();
   const apiKey = flags.apiKey ?? config.apiKey;
   const generatorId = flags.generatorId ?? config.generatorId;
@@ -250,6 +319,7 @@ async function signCommand(filePath, flags) {
   } catch {
     die(`Cannot read file: ${filePath}`);
   }
+  const format = flags.format ?? inferFormat(filePath);
   const clientConfig = {
     apiKey,
     generatorId,
@@ -258,20 +328,21 @@ async function signCommand(filePath, flags) {
   const client = new CertivuClient(clientConfig);
   let result;
   try {
-    result = await client.sign({ content, model: flags.model, generatorId });
+    result = await client.sign({ content, model: flags.model, generatorId, ...format ? { format } : {} });
   } catch (e) {
     const msg = e instanceof Error ? e.message : String(e);
     die(`Sign failed: ${msg}`);
   }
   const outPath = flags.output ?? (filePath.replace(/(\.[^.]+)$/, ".signed$1") || `${filePath}.signed${(0, import_node_path2.extname)(filePath)}`);
   try {
-    (0, import_node_fs2.writeFileSync)(outPath, result.watermarkedContent);
+    (0, import_node_fs2.writeFileSync)(outPath, result.signedContent);
   } catch {
     die(`Could not write output file: ${outPath}`);
   }
   console.log(ok("Signed"));
   row("Token", result.token);
   row("Record ID", result.record_id);
+  row("Format", result.format ?? format ?? "auto-detected");
   row("Output", outPath);
   if (result.deduplicated) {
     console.log("  (content already signed \u2014 existing token returned, no quota consumed)");
@@ -374,6 +445,7 @@ ${bold("Commands:")}
 ${bold("Sign flags:")}
   --model <name>         AI model name, e.g. stable-diffusion-xl  ${dim("(required)")}
+  --format <fmt>         Content format: image | audio | text  ${dim("(auto-detected if omitted)")}
   --generator-id <id>    Override generator ID
   --private-key <key>    Override ML-DSA private key (base64)
   --api-key <key>        Override API key

package/package.json CHANGED Viewed

@@ -1,29 +1,26 @@
 {
   "name": "@certivu/cli",
-  "version": "1.2.1",
+  "version": "2.0.1",
   "description": "Certivu CLI — sign and verify AI-generated content",
   "license": "UNLICENSED",
   "homepage": "https://certivu.ai",
-  "repository": {
-  "type": "git",
-  "url": "https://github.com/art-emini/certivu"
-},
-"bin": {
-  "certivu": "./bin/certivu"
-},
-"files": ["bin", "dist", "README.md"],
-"scripts": {
-  "dev": "bun run src/index.ts",
-  "build": "tsup",
-  "typecheck": "tsc --noEmit",
-  "lint": "biome check src"
-},
-"devDependencies": {
-  "@biomejs/biome": "^1.9.4",
-  "@certivu/crypto": "0.0.1",
-  "@certivu/sdk": "1.0.0",
-  "@types/node": "^20.0.0",
-  "tsup": "^8.0.0",
-  "typescript": "^5.7.3"
-}
+  "repository": { "type": "git", "url": "https://github.com/art-emini/certivu" },
+  "bin": {
+    "certivu": "./bin/certivu"
+  },
+  "files": ["bin", "dist", "README.md"],
+  "scripts": {
+    "dev": "bun run src/index.ts",
+    "build": "tsup",
+    "typecheck": "tsc --noEmit",
+    "lint": "biome check src"
+  },
+  "devDependencies": {
+    "@biomejs/biome": "^1.9.4",
+    "@certivu/crypto": "workspace:*",
+    "@certivu/sdk": "workspace:*",
+    "@types/node": "^20.0.0",
+    "tsup": "^8.0.0",
+    "typescript": "^5.7.3"
+  }
 }