@devtion/actions 0.0.0-101d43f → 0.0.0-2319823

package/dist/index.node.js

@@ -1,6 +1,6 @@
 /**
- * @module @p0tion/actions
- * @version 1.0.6
+ * @module @devtion/actions
+ * @version 1.1.0
  * @file A set of actions and helpers for CLI commands
  * @copyright Ethereum Foundation 2022
  * @license MIT
@@ -19,7 +19,6 @@ var crypto = require('crypto');
 var blake = require('blakejs');
 var ffjavascript = require('ffjavascript');
 var winston = require('winston');
-var clientS3 = require('@aws-sdk/client-s3');
 var stream = require('stream');
 var util = require('util');
 var app = require('firebase/app');
@@ -342,7 +341,7 @@ const commonTerms = {
         finalizeCircuit: "finalizeCircuit",
         finalizeCeremony: "finalizeCeremony",
         downloadCircuitArtifacts: "downloadCircuitArtifacts",
-        transferObject: "transferObject",
+        transferObject: "transferObject"
     }
 };
 
@@ -693,11 +692,15 @@ const getChunksAndPreSignedUrls = async (cloudFunctions, bucketName, objectKey,
  * @param cloudFunctions <Functions> - the Firebase Cloud Functions service instance.
  * @param ceremonyId <string> - the unique identifier of the ceremony.
  * @param alreadyUploadedChunks Array<ETagWithPartNumber> - the temporary information about the already uploaded chunks.
+ * @param logger <GenericBar> - an optional logger to show progress.
  * @returns <Promise<Array<ETagWithPartNumber>>> - the completed (uploaded) chunks information.
  */
-const uploadParts = async (chunksWithUrls, contentType, cloudFunctions, ceremonyId, alreadyUploadedChunks) => {
+const uploadParts = async (chunksWithUrls, contentType, cloudFunctions, ceremonyId, alreadyUploadedChunks, logger) => {
     // Keep track of uploaded chunks.
     const uploadedChunks = alreadyUploadedChunks || [];
+    // if we were passed a logger, start it
+    if (logger)
+        logger.start(chunksWithUrls.length, 0);
     // Loop through remaining chunks.
     for (let i = alreadyUploadedChunks ? alreadyUploadedChunks.length : 0; i < chunksWithUrls.length; i += 1) {
         // Consume the pre-signed url to upload the chunk.
@@ -729,6 +732,9 @@ const uploadParts = async (chunksWithUrls, contentType, cloudFunctions, ceremony
         // nb. this must be done only when contributing (not finalizing).
         if (!!ceremonyId && !!cloudFunctions)
             await temporaryStoreCurrentContributionUploadedChunkData(cloudFunctions, ceremonyId, chunk);
+        // increment the count on the logger
+        if (logger)
+            logger.increment();
     }
     return uploadedChunks;
 };
@@ -749,8 +755,9 @@ const uploadParts = async (chunksWithUrls, contentType, cloudFunctions, ceremony
  * @param configStreamChunkSize <number> - size of each chunk into which the artifact is going to be splitted (nb. will be converted in MB).
  * @param [ceremonyId] <string> - the unique identifier of the ceremony (used as a double-edge sword - as identifier and as a check if current contributor is the coordinator finalizing the ceremony).
  * @param [temporaryDataToResumeMultiPartUpload] <TemporaryParticipantContributionData> - the temporary information necessary to resume an already started multi-part upload.
+ * @param logger <GenericBar> - an optional logger to show progress.
  */
-const multiPartUpload = async (cloudFunctions, bucketName, objectKey, localFilePath, configStreamChunkSize, ceremonyId, temporaryDataToResumeMultiPartUpload) => {
+const multiPartUpload = async (cloudFunctions, bucketName, objectKey, localFilePath, configStreamChunkSize, ceremonyId, temporaryDataToResumeMultiPartUpload, logger) => {
     // The unique identifier of the multi-part upload.
     let multiPartUploadId = "";
     // The list of already uploaded chunks.
@@ -774,7 +781,7 @@ const multiPartUpload = async (cloudFunctions, bucketName, objectKey, localFileP
     const chunksWithUrlsZkey = await getChunksAndPreSignedUrls(cloudFunctions, bucketName, objectKey, localFilePath, multiPartUploadId, configStreamChunkSize, ceremonyId);
     // Step (2).
     const partNumbersAndETagsZkey = await uploadParts(chunksWithUrlsZkey, mime.lookup(localFilePath), // content-type.
-    cloudFunctions, ceremonyId, alreadyUploadedChunks);
+    cloudFunctions, ceremonyId, alreadyUploadedChunks, logger);
     // Step (3).
     await completeMultiPartUpload(cloudFunctions, bucketName, objectKey, multiPartUploadId, partNumbersAndETagsZkey, ceremonyId);
 };
@@ -1046,199 +1053,22 @@ const compareHashes = async (path1, path2) => {
 };
 
 /**
- * Parse and validate that the ceremony configuration is correct
- * @notice this does not upload any files to storage
- * @param path <string> - the path to the configuration file
- * @param cleanup <boolean> - whether to delete the r1cs file after parsing
- * @returns any - the data to pass to the cloud function for setup and the circuit artifacts
+ * Return a string with double digits if the provided input is one digit only.
+ * @param in <number> - the input number to be converted.
+ * @returns <string> - the two digits stringified number derived from the conversion.
  */
-const parseCeremonyFile = async (path, cleanup = false) => {
-    // check that the path exists
-    if (!fs.existsSync(path))
-        throw new Error("The provided path to the configuration file does not exist. Please provide an absolute path and try again.");
-    try {
-        // read the data
-        const data = JSON.parse(fs.readFileSync(path).toString());
-        // verify that the data is correct
-        if (data['timeoutMechanismType'] !== "DYNAMIC" /* CeremonyTimeoutType.DYNAMIC */ && data['timeoutMechanismType'] !== "FIXED" /* CeremonyTimeoutType.FIXED */)
-            throw new Error("Invalid timeout type. Please choose between DYNAMIC and FIXED.");
-        // validate that we have at least 1 circuit input data
-        if (!data.circuits || data.circuits.length === 0)
-            throw new Error("You need to provide the data for at least 1 circuit.");
-        // validate that the end date is in the future
-        let endDate;
-        let startDate;
-        try {
-            endDate = new Date(data.endDate);
-            startDate = new Date(data.startDate);
-        }
-        catch (error) {
-            throw new Error("The dates should follow this format: 2023-07-04T00:00:00.");
-        }
-        if (endDate <= startDate)
-            throw new Error("The end date should be greater than the start date.");
-        const currentDate = new Date();
-        if (endDate <= currentDate || startDate <= currentDate)
-            throw new Error("The start and end dates should be in the future.");
-        // validate penalty
-        if (data.penalty <= 0)
-            throw new Error("The penalty should be greater than zero.");
-        const circuits = [];
-        const urlPattern = /(https?:\/\/[^\s]+)/g;
-        const commitHashPattern = /^[a-f0-9]{40}$/i;
-        const circuitArtifacts = [];
-        for (let i = 0; i < data.circuits.length; i++) {
-            const circuitData = data.circuits[i];
-            const artifacts = circuitData.artifacts;
-            circuitArtifacts.push({
-                artifacts: artifacts
-            });
-            // where we storing the r1cs downloaded
-            const localR1csPath = `./${circuitData.name}.r1cs`;
-            // where we storing the wasm downloaded
-            const localWasmPath = `./${circuitData.name}.wasm`;
-            // check that the artifacts exist in S3
-            // we don't need any privileges to download this
-            // just the correct region
-            const s3 = new clientS3.S3Client({
-                region: artifacts.region,
-                credentials: undefined
-            });
-            // download the r1cs to extract the metadata
-            const command = new clientS3.GetObjectCommand({ Bucket: artifacts.bucket, Key: artifacts.r1csStoragePath });
-            const response = await s3.send(command);
-            const streamPipeline = util.promisify(stream.pipeline);
-            if (response.$metadata.httpStatusCode !== 200)
-                throw new Error(`There was an error while trying to download the r1cs file for circuit ${circuitData.name}. Please check that the file has the correct permissions (public) set.`);
-            if (response.Body instanceof stream.Readable)
-                await streamPipeline(response.Body, fs.createWriteStream(localR1csPath));
-            // extract the metadata from the r1cs
-            const metadata = getR1CSInfo(localR1csPath);
-            // download wasm too to ensure it's available
-            const wasmCommand = new clientS3.GetObjectCommand({ Bucket: artifacts.bucket, Key: artifacts.wasmStoragePath });
-            const wasmResponse = await s3.send(wasmCommand);
-            if (wasmResponse.$metadata.httpStatusCode !== 200)
-                throw new Error(`There was an error while trying to download the wasm file for circuit ${circuitData.name}. Please check that the file has the correct permissions (public) set.`);
-            if (wasmResponse.Body instanceof stream.Readable)
-                await streamPipeline(wasmResponse.Body, fs.createWriteStream(localWasmPath));
-            // validate that the circuit hash and template links are valid
-            const template = circuitData.template;
-            const URLMatch = template.source.match(urlPattern);
-            if (!URLMatch || URLMatch.length === 0 || URLMatch.length > 1)
-                throw new Error("You should provide the URL to the circuits templates on GitHub.");
-            const hashMatch = template.commitHash.match(commitHashPattern);
-            if (!hashMatch || hashMatch.length === 0 || hashMatch.length > 1)
-                throw new Error("You should provide a valid commit hash of the circuit templates.");
-            // calculate the hash of the r1cs file
-            const r1csBlake2bHash = await blake512FromPath(localR1csPath);
-            const circuitPrefix = extractPrefix(circuitData.name);
-            // filenames
-            const doubleDigitsPowers = convertToDoubleDigits(metadata.pot);
-            const r1csCompleteFilename = `${circuitData.name}.r1cs`;
-            const wasmCompleteFilename = `${circuitData.name}.wasm`;
-            const smallestPowersOfTauCompleteFilenameForCircuit = `${potFilenameTemplate}${doubleDigitsPowers}.ptau`;
-            const firstZkeyCompleteFilename = `${circuitPrefix}_${genesisZkeyIndex}.zkey`;
-            // storage paths 
-            const r1csStorageFilePath = getR1csStorageFilePath(circuitPrefix, r1csCompleteFilename);
-            const wasmStorageFilePath = getWasmStorageFilePath(circuitPrefix, wasmCompleteFilename);
-            const potStorageFilePath = getPotStorageFilePath(smallestPowersOfTauCompleteFilenameForCircuit);
-            const zkeyStorageFilePath = getZkeyStorageFilePath(circuitPrefix, firstZkeyCompleteFilename);
-            const files = {
-                potFilename: smallestPowersOfTauCompleteFilenameForCircuit,
-                r1csFilename: r1csCompleteFilename,
-                wasmFilename: wasmCompleteFilename,
-                initialZkeyFilename: firstZkeyCompleteFilename,
-                potStoragePath: potStorageFilePath,
-                r1csStoragePath: r1csStorageFilePath,
-                wasmStoragePath: wasmStorageFilePath,
-                initialZkeyStoragePath: zkeyStorageFilePath,
-                r1csBlake2bHash: r1csBlake2bHash
-            };
-            // validate that the compiler hash is a valid hash 
-            const compiler = circuitData.compiler;
-            const compilerHashMatch = compiler.commitHash.match(commitHashPattern);
-            if (!compilerHashMatch || compilerHashMatch.length === 0 || compilerHashMatch.length > 1)
-                throw new Error("You should provide a valid commit hash of the circuit compiler.");
-            // validate that the verification options are valid
-            const verification = circuitData.verification;
-            if (verification.cfOrVm !== "CF" && verification.cfOrVm !== "VM")
-                throw new Error("Please enter a valid verification mechanism: either CF or VM");
-            // @todo VM parameters verification
-            // if (verification['cfOrVM'] === "VM") {}
-            // check that the timeout is provided for the correct configuration
-            let dynamicThreshold;
-            let fixedTimeWindow;
-            let circuit = {};
-            if (data.timeoutMechanismType === "DYNAMIC" /* CeremonyTimeoutType.DYNAMIC */) {
-                if (circuitData.dynamicThreshold <= 0)
-                    throw new Error("The dynamic threshold should be > 0.");
-                dynamicThreshold = circuitData.dynamicThreshold;
-                // the Circuit data for the ceremony setup
-                circuit = {
-                    name: circuitData.name,
-                    description: circuitData.description,
-                    prefix: circuitPrefix,
-                    sequencePosition: i + 1,
-                    metadata: metadata,
-                    files: files,
-                    template: template,
-                    compiler: compiler,
-                    verification: verification,
-                    dynamicThreshold: dynamicThreshold,
-                    avgTimings: {
-                        contributionComputation: 0,
-                        fullContribution: 0,
-                        verifyCloudFunction: 0
-                    },
-                };
-            }
-            if (data.timeoutMechanismType === "FIXED" /* CeremonyTimeoutType.FIXED */) {
-                if (circuitData.fixedTimeWindow <= 0)
-                    throw new Error("The fixed time window threshold should be > 0.");
-                fixedTimeWindow = circuitData.fixedTimeWindow;
-                // the Circuit data for the ceremony setup
-                circuit = {
-                    name: circuitData.name,
-                    description: circuitData.description,
-                    prefix: circuitPrefix,
-                    sequencePosition: i + 1,
-                    metadata: metadata,
-                    files: files,
-                    template: template,
-                    compiler: compiler,
-                    verification: verification,
-                    fixedTimeWindow: fixedTimeWindow,
-                    avgTimings: {
-                        contributionComputation: 0,
-                        fullContribution: 0,
-                        verifyCloudFunction: 0
-                    },
-                };
-            }
-            circuits.push(circuit);
-            // remove the local r1cs download (if used for verifying the config only vs setup)
-            if (cleanup)
-                fs.unlinkSync(localR1csPath);
-        }
-        const setupData = {
-            ceremonyInputData: {
-                title: data.title,
-                description: data.description,
-                startDate: startDate.valueOf(),
-                endDate: endDate.valueOf(),
-                timeoutMechanismType: data.timeoutMechanismType,
-                penalty: data.penalty
-            },
-            ceremonyPrefix: extractPrefix(data.title),
-            circuits: circuits,
-            circuitArtifacts: circuitArtifacts
-        };
-        return setupData;
-    }
-    catch (error) {
-        throw new Error(`Error while parsing up the ceremony setup file. ${error.message}`);
-    }
-};
+const convertToDoubleDigits = (amount) => (amount < 10 ? `0${amount}` : amount.toString());
+/**
+ * Extract a prefix consisting of alphanumeric and underscore characters from a string with arbitrary characters.
+ * @dev replaces all special symbols and whitespaces with an underscore char ('_'). Convert all uppercase chars to lowercase.
+ * @notice example: str = 'Multiplier-2!2.4.zkey'; output prefix = 'multiplier_2_2_4.zkey'.
+ * NB. Prefix extraction is a key process that conditions the name of the ceremony artifacts, download/upload from/to storage, collections paths.
+ * @param str <string> - the arbitrary string from which to extract the prefix.
+ * @returns <string> - the resulting prefix.
+ */
+const extractPrefix = (str) => 
+// eslint-disable-next-line no-useless-escape
+str.replace(/[`\s~!@#$%^&*()|+\-=?;:'",.<>\{\}\[\]\\\/]/gi, "-").toLowerCase();
 /**
  * Extract data from a R1CS metadata file generated with a custom file-based logger.
  * @notice useful for extracting metadata circuits contained in the generated file using a logger
@@ -1295,17 +1125,6 @@ const formatZkeyIndex = (progress) => {
  * @returns <number> - the amount of powers.
  */
 const extractPoTFromFilename = (potCompleteFilename) => Number(potCompleteFilename.split("_").pop()?.split(".").at(0));
-/**
- * Extract a prefix consisting of alphanumeric and underscore characters from a string with arbitrary characters.
- * @dev replaces all special symbols and whitespaces with an underscore char ('_'). Convert all uppercase chars to lowercase.
- * @notice example: str = 'Multiplier-2!2.4.zkey'; output prefix = 'multiplier_2_2_4.zkey'.
- * NB. Prefix extraction is a key process that conditions the name of the ceremony artifacts, download/upload from/to storage, collections paths.
- * @param str <string> - the arbitrary string from which to extract the prefix.
- * @returns <string> - the resulting prefix.
- */
-const extractPrefix = (str) => 
-// eslint-disable-next-line no-useless-escape
-str.replace(/[`\s~!@#$%^&*()|+\-=?;:'",.<>\{\}\[\]\\\/]/gi, "-").toLowerCase();
 /**
  * Automate the generation of an entropy for a contribution.
  * @dev Took inspiration from here https://github.com/glamperd/setup-mpc-ui/blob/master/client/src/state/Compute.tsx#L112.
@@ -1372,7 +1191,9 @@ const getContributionsValidityForContributor = async (firestoreDatabase, circuit
  * @param isFinalizing <boolean> - true when the coordinator is finalizing the ceremony, otherwise false.
  * @returns <string> - the public attestation preamble.
  */
-const getPublicAttestationPreambleForContributor = (contributorIdentifier, ceremonyName, isFinalizing) => `Hey, I'm ${contributorIdentifier} and I have ${isFinalizing ? "finalized" : "contributed to"} the ${ceremonyName} MPC Phase2 Trusted Setup ceremony.\nThe following are my contribution signatures:`;
+const getPublicAttestationPreambleForContributor = (contributorIdentifier, ceremonyName, isFinalizing) => `Hey, I'm ${contributorIdentifier} and I have ${isFinalizing ? "finalized" : "contributed to"} the ${ceremonyName}${ceremonyName.toLowerCase().includes("trusted setup") || ceremonyName.toLowerCase().includes("ceremony")
+    ? "."
+    : " MPC Phase2 Trusted Setup ceremony."}\nThe following are my contribution signatures:`;
 /**
  * Check and prepare public attestation for the contributor made only of its valid contributions.
  * @param firestoreDatabase <Firestore> - the Firestore service instance associated to the current Firebase application.
@@ -1575,11 +1396,193 @@ const getR1CSInfo = (localR1CSFilePath) => {
     }
 };
 /**
- * Return a string with double digits if the provided input is one digit only.
- * @param in <number> - the input number to be converted.
- * @returns <string> - the two digits stringified number derived from the conversion.
+ * Parse and validate that the ceremony configuration is correct
+ * @notice this does not upload any files to storage
+ * @param path <string> - the path to the configuration file
+ * @param cleanup <boolean> - whether to delete the r1cs file after parsing
+ * @returns any - the data to pass to the cloud function for setup and the circuit artifacts
  */
-const convertToDoubleDigits = (amount) => (amount < 10 ? `0${amount}` : amount.toString());
+const parseCeremonyFile = async (path, cleanup = false) => {
+    // check that the path exists
+    if (!fs.existsSync(path))
+        throw new Error("The provided path to the configuration file does not exist. Please provide an absolute path and try again.");
+    try {
+        // read the data
+        const data = JSON.parse(fs.readFileSync(path).toString());
+        // verify that the data is correct
+        if (data.timeoutMechanismType !== "DYNAMIC" /* CeremonyTimeoutType.DYNAMIC */ &&
+            data.timeoutMechanismType !== "FIXED" /* CeremonyTimeoutType.FIXED */)
+            throw new Error("Invalid timeout type. Please choose between DYNAMIC and FIXED.");
+        // validate that we have at least 1 circuit input data
+        if (!data.circuits || data.circuits.length === 0)
+            throw new Error("You need to provide the data for at least 1 circuit.");
+        // validate that the end date is in the future
+        let endDate;
+        let startDate;
+        try {
+            endDate = new Date(data.endDate);
+            startDate = new Date(data.startDate);
+        }
+        catch (error) {
+            throw new Error("The dates should follow this format: 2023-07-04T00:00:00.");
+        }
+        if (endDate <= startDate)
+            throw new Error("The end date should be greater than the start date.");
+        const currentDate = new Date();
+        if (endDate <= currentDate || startDate <= currentDate)
+            throw new Error("The start and end dates should be in the future.");
+        // validate penalty
+        if (data.penalty <= 0)
+            throw new Error("The penalty should be greater than zero.");
+        const circuits = [];
+        const urlPattern = /(https?:\/\/[^\s]+)/g;
+        const commitHashPattern = /^[a-f0-9]{40}$/i;
+        const circuitArtifacts = [];
+        for (let i = 0; i < data.circuits.length; i++) {
+            const circuitData = data.circuits[i];
+            const { artifacts } = circuitData;
+            circuitArtifacts.push({
+                artifacts
+            });
+            // where we storing the r1cs downloaded
+            const localR1csPath = `./${circuitData.name}.r1cs`;
+            // where we storing the wasm downloaded
+            const localWasmPath = `./${circuitData.name}.wasm`;
+            // download the r1cs to extract the metadata
+            const streamPipeline = util.promisify(stream.pipeline);
+            // Make the call.
+            const responseR1CS = await fetch(artifacts.r1csStoragePath);
+            // Handle errors.
+            if (!responseR1CS.ok && responseR1CS.status !== 200)
+                throw new Error(`There was an error while trying to download the r1cs file for circuit ${circuitData.name}. Please check that the file has the correct permissions (public) set.`);
+            await streamPipeline(responseR1CS.body, fs.createWriteStream(localR1csPath));
+            // Write the file locally
+            // extract the metadata from the r1cs
+            const metadata = getR1CSInfo(localR1csPath);
+            // download wasm too to ensure it's available
+            const responseWASM = await fetch(artifacts.wasmStoragePath);
+            if (!responseWASM.ok && responseWASM.status !== 200)
+                throw new Error(`There was an error while trying to download the WASM file for circuit ${circuitData.name}. Please check that the file has the correct permissions (public) set.`);
+            await streamPipeline(responseWASM.body, fs.createWriteStream(localWasmPath));
+            // validate that the circuit hash and template links are valid
+            const { template } = circuitData;
+            const URLMatch = template.source.match(urlPattern);
+            if (!URLMatch || URLMatch.length === 0 || URLMatch.length > 1)
+                throw new Error("You should provide the URL to the circuits templates on GitHub.");
+            const hashMatch = template.commitHash.match(commitHashPattern);
+            if (!hashMatch || hashMatch.length === 0 || hashMatch.length > 1)
+                throw new Error("You should provide a valid commit hash of the circuit templates.");
+            // calculate the hash of the r1cs file
+            const r1csBlake2bHash = await blake512FromPath(localR1csPath);
+            const circuitPrefix = extractPrefix(circuitData.name);
+            // filenames
+            const doubleDigitsPowers = convertToDoubleDigits(metadata.pot);
+            const r1csCompleteFilename = `${circuitData.name}.r1cs`;
+            const wasmCompleteFilename = `${circuitData.name}.wasm`;
+            const smallestPowersOfTauCompleteFilenameForCircuit = `${potFilenameTemplate}${doubleDigitsPowers}.ptau`;
+            const firstZkeyCompleteFilename = `${circuitPrefix}_${genesisZkeyIndex}.zkey`;
+            // storage paths
+            const r1csStorageFilePath = getR1csStorageFilePath(circuitPrefix, r1csCompleteFilename);
+            const wasmStorageFilePath = getWasmStorageFilePath(circuitPrefix, wasmCompleteFilename);
+            const potStorageFilePath = getPotStorageFilePath(smallestPowersOfTauCompleteFilenameForCircuit);
+            const zkeyStorageFilePath = getZkeyStorageFilePath(circuitPrefix, firstZkeyCompleteFilename);
+            const files = {
+                potFilename: smallestPowersOfTauCompleteFilenameForCircuit,
+                r1csFilename: r1csCompleteFilename,
+                wasmFilename: wasmCompleteFilename,
+                initialZkeyFilename: firstZkeyCompleteFilename,
+                potStoragePath: potStorageFilePath,
+                r1csStoragePath: r1csStorageFilePath,
+                wasmStoragePath: wasmStorageFilePath,
+                initialZkeyStoragePath: zkeyStorageFilePath,
+                r1csBlake2bHash
+            };
+            // validate that the compiler hash is a valid hash
+            const { compiler } = circuitData;
+            const compilerHashMatch = compiler.commitHash.match(commitHashPattern);
+            if (!compilerHashMatch || compilerHashMatch.length === 0 || compilerHashMatch.length > 1)
+                throw new Error("You should provide a valid commit hash of the circuit compiler.");
+            // validate that the verification options are valid
+            const { verification } = circuitData;
+            if (verification.cfOrVm !== "CF" && verification.cfOrVm !== "VM")
+                throw new Error("Please enter a valid verification mechanism: either CF or VM");
+            // @todo VM parameters verification
+            // if (verification['cfOrVM'] === "VM") {}
+            // check that the timeout is provided for the correct configuration
+            let dynamicThreshold;
+            let fixedTimeWindow;
+            let circuit = {};
+            if (data.timeoutMechanismType === "DYNAMIC" /* CeremonyTimeoutType.DYNAMIC */) {
+                if (circuitData.dynamicThreshold <= 0)
+                    throw new Error("The dynamic threshold should be > 0.");
+                dynamicThreshold = circuitData.dynamicThreshold;
+                // the Circuit data for the ceremony setup
+                circuit = {
+                    name: circuitData.name,
+                    description: circuitData.description,
+                    prefix: circuitPrefix,
+                    sequencePosition: i + 1,
+                    metadata,
+                    files,
+                    template,
+                    compiler,
+                    verification,
+                    dynamicThreshold,
+                    avgTimings: {
+                        contributionComputation: 0,
+                        fullContribution: 0,
+                        verifyCloudFunction: 0
+                    }
+                };
+            }
+            if (data.timeoutMechanismType === "FIXED" /* CeremonyTimeoutType.FIXED */) {
+                if (circuitData.fixedTimeWindow <= 0)
+                    throw new Error("The fixed time window threshold should be > 0.");
+                fixedTimeWindow = circuitData.fixedTimeWindow;
+                // the Circuit data for the ceremony setup
+                circuit = {
+                    name: circuitData.name,
+                    description: circuitData.description,
+                    prefix: circuitPrefix,
+                    sequencePosition: i + 1,
+                    metadata,
+                    files,
+                    template,
+                    compiler,
+                    verification,
+                    fixedTimeWindow,
+                    avgTimings: {
+                        contributionComputation: 0,
+                        fullContribution: 0,
+                        verifyCloudFunction: 0
+                    }
+                };
+            }
+            circuits.push(circuit);
+            // remove the local r1cs and wasm downloads (if used for verifying the config only vs setup)
+            if (cleanup)
+                fs.unlinkSync(localR1csPath);
+            fs.unlinkSync(localWasmPath);
+        }
+        const setupData = {
+            ceremonyInputData: {
+                title: data.title,
+                description: data.description,
+                startDate: startDate.valueOf(),
+                endDate: endDate.valueOf(),
+                timeoutMechanismType: data.timeoutMechanismType,
+                penalty: data.penalty
+            },
+            ceremonyPrefix: extractPrefix(data.title),
+            circuits,
+            circuitArtifacts
+        };
+        return setupData;
+    }
+    catch (error) {
+        throw new Error(`Error while parsing up the ceremony setup file. ${error.message}`);
+    }
+};
 
 /**
  * Verify that a zKey is valid
@@ -1828,7 +1831,7 @@ const getFirestoreDatabase = (app) => firestore.getFirestore(app);
  * @param app <FirebaseApp> - the Firebase application.
  * @returns <Functions> - the Cloud Functions associated to the application.
  */
-const getFirebaseFunctions = (app) => functions.getFunctions(app, 'europe-west1');
+const getFirebaseFunctions = (app) => functions.getFunctions(app, "europe-west1");
 /**
  * Retrieve the configuration variables for the AWS services (S3, EC2).
  * @returns <AWSVariables> - the values of the AWS services configuration variables.
@@ -1837,14 +1840,14 @@ const getAWSVariables = () => {
     if (!process.env.AWS_ACCESS_KEY_ID ||
         !process.env.AWS_SECRET_ACCESS_KEY ||
         !process.env.AWS_REGION ||
-        !process.env.AWS_ROLE_ARN ||
+        !process.env.AWS_INSTANCE_PROFILE_ARN ||
         !process.env.AWS_AMI_ID)
         throw new Error("Could not retrieve the AWS environment variables. Please, verify your environment configuration and retry");
     return {
         accessKeyId: process.env.AWS_ACCESS_KEY_ID,
         secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY,
         region: process.env.AWS_REGION || "us-east-1",
-        roleArn: process.env.AWS_ROLE_ARN,
+        instanceProfileArn: process.env.AWS_INSTANCE_PROFILE_ARN,
         amiId: process.env.AWS_AMI_ID
     };
 };
@@ -2097,7 +2100,8 @@ const getGitHubStats = async (user) => {
         following: jsonData.following,
         followers: jsonData.followers,
         publicRepos: jsonData.public_repos,
-        avatarUrl: jsonData.avatar_url
+        avatarUrl: jsonData.avatar_url,
+        age: jsonData.created_at
     };
     return data;
 };
@@ -2109,20 +2113,21 @@ const getGitHubStats = async (user) => {
  * @param minimumAmountOfPublicRepos <number> The minimum amount of public repos the user should have
  * @returns <any> Return the avatar URL of the user if the user is reputable, false otherwise
  */
-const githubReputation = async (userLogin, minimumAmountOfFollowing, minimumAmountOfFollowers, minimumAmountOfPublicRepos) => {
+const githubReputation = async (userLogin, minimumAmountOfFollowing, minimumAmountOfFollowers, minimumAmountOfPublicRepos, minimumAge) => {
     if (!process.env.GITHUB_ACCESS_TOKEN)
         throw new Error("The GitHub access token is missing. Please insert a valid token to be used for anti-sybil checks on user registation, and then try again.");
-    const { following, followers, publicRepos, avatarUrl } = await getGitHubStats(userLogin);
+    const { following, followers, publicRepos, avatarUrl, age } = await getGitHubStats(userLogin);
     if (following < minimumAmountOfFollowing ||
         publicRepos < minimumAmountOfPublicRepos ||
-        followers < minimumAmountOfFollowers)
+        followers < minimumAmountOfFollowers ||
+        new Date(age) > new Date(Date.now() - minimumAge))
         return {
             reputable: false,
             avatarUrl: ""
         };
     return {
         reputable: true,
-        avatarUrl: avatarUrl
+        avatarUrl
     };
 };
 
@@ -2331,8 +2336,13 @@ const vmDependenciesAndCacheArtifactsCommand = (zKeyPath, potPath, snsTopic, reg
     // eslint-disable-next-line no-template-curly-in-string
     "touch ${MARKER_FILE}",
     "sudo yum update -y",
-    "curl -sL https://rpm.nodesource.com/setup_16.x | sudo bash - ",
-    "sudo yum install -y nodejs",
+    "curl -O https://nodejs.org/dist/v16.13.0/node-v16.13.0-linux-x64.tar.xz",
+    "tar -xf node-v16.13.0-linux-x64.tar.xz",
+    "mv node-v16.13.0-linux-x64 nodejs",
+    "sudo mv nodejs /opt/",
+    "echo 'export NODEJS_HOME=/opt/nodejs' >> /etc/profile",
+    "echo 'export PATH=$NODEJS_HOME/bin:$PATH' >> /etc/profile",
+    "source /etc/profile",
     "npm install -g snarkjs",
     `aws s3 cp s3://${zKeyPath} /var/tmp/genesisZkey.zkey`,
     `aws s3 cp s3://${potPath} /var/tmp/pot.ptau`,
@@ -2351,6 +2361,7 @@ const vmDependenciesAndCacheArtifactsCommand = (zKeyPath, potPath, snsTopic, reg
  * @returns Array<string> - the list of commands for contribution verification.
  */
 const vmContributionVerificationCommand = (bucketName, lastZkeyStoragePath, verificationTranscriptStoragePathAndFilename) => [
+    `source /etc/profile`,
     `aws s3 cp s3://${bucketName}/${lastZkeyStoragePath} /var/tmp/lastZKey.zkey > /var/tmp/log.txt`,
     `snarkjs zkvi /var/tmp/genesisZkey.zkey /var/tmp/pot.ptau /var/tmp/lastZKey.zkey > /var/tmp/verification_transcript.log`,
     `aws s3 cp /var/tmp/verification_transcript.log s3://${bucketName}/${verificationTranscriptStoragePathAndFilename} &>/dev/null`,
@@ -2377,7 +2388,7 @@ const computeDiskSizeForVM = (zKeySizeInBytes, pot) => Math.ceil(2 * convertByte
  */
 const createEC2Instance = async (ec2, commands, instanceType, volumeSize, diskType) => {
     // Get the AWS variables.
-    const { amiId, roleArn } = getAWSVariables();
+    const { amiId, instanceProfileArn } = getAWSVariables();
     // Parametrize the VM EC2 instance.
     const params = {
         ImageId: amiId,
@@ -2386,7 +2397,7 @@ const createEC2Instance = async (ec2, commands, instanceType, volumeSize, diskTy
         MinCount: 1,
         // nb. to find this: iam -> roles -> role_name.
         IamInstanceProfile: {
-            Arn: roleArn
+            Arn: instanceProfileArn
         },
         // nb. for running commands at the startup.
         UserData: Buffer.from(commands.join("\n")).toString("base64"),

package/dist/types/src/helpers/security.d.ts

@@ -6,5 +6,5 @@
  * @param minimumAmountOfPublicRepos <number> The minimum amount of public repos the user should have
  * @returns <any> Return the avatar URL of the user if the user is reputable, false otherwise
  */
-export declare const githubReputation: (userLogin: string, minimumAmountOfFollowing: number, minimumAmountOfFollowers: number, minimumAmountOfPublicRepos: number) => Promise<any>;
+export declare const githubReputation: (userLogin: string, minimumAmountOfFollowing: number, minimumAmountOfFollowers: number, minimumAmountOfPublicRepos: number, minimumAge: number) => Promise<any>;
 //# sourceMappingURL=security.d.ts.map

package/dist/types/src/helpers/security.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../../../src/helpers/security.ts"],"names":[],"mappings":"AA8BA;;;;;;;GAOG;AACH,eAAO,MAAM,gBAAgB,cACd,MAAM,4BACS,MAAM,4BACN,MAAM,8BACJ,MAAM,KACnC,QAAQ,GAAG,CAsBb,CAAA"}
+{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../../../src/helpers/security.ts"],"names":[],"mappings":"AA6BA;;;;;;;GAOG;AACH,eAAO,MAAM,gBAAgB,cACd,MAAM,4BACS,MAAM,4BACN,MAAM,8BACJ,MAAM,cACtB,MAAM,KACnB,QAAQ,GAAG,CAuBb,CAAA"}