npm - @sekyuriti/attest - Versions diffs - 0.2.0 → 0.2.1 - Mend

@sekyuriti/attest 0.2.0 → 0.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/bin/attest.js +102 -29
package/package.json +1 -1

package/bin/attest.js CHANGED Viewed

@@ -334,15 +334,17 @@ async function cmdInit() {
     return;
   }
-  // Check if .env exists
+  let steps = [];
+  // Step 1: Add .env variables
   const envPath = path.join(process.cwd(), ".env");
   const envLocalPath = path.join(process.cwd(), ".env.local");
-  let targetPath = envLocalPath;
+  let targetEnvPath = envLocalPath;
   if (fs.existsSync(envLocalPath)) {
-    targetPath = envLocalPath;
+    targetEnvPath = envLocalPath;
   } else if (fs.existsSync(envPath)) {
-    targetPath = envPath;
+    targetEnvPath = envPath;
   }
   const envVars = `
@@ -351,40 +353,111 @@ NEXT_PUBLIC_ATTEST_KEY=${config.publicKey}
 ATTEST_SECRET_KEY=${config.apiKey}
 `.trim();
-  if (fs.existsSync(targetPath)) {
-    // Append to existing
-    let content = fs.readFileSync(targetPath, "utf-8");
+  if (fs.existsSync(targetEnvPath)) {
+    let content = fs.readFileSync(targetEnvPath, "utf-8");
+    if (!content.includes("ATTEST_KEY")) {
+      content += "\n\n" + envVars + "\n";
+      fs.writeFileSync(targetEnvPath, content);
+      steps.push(`Added ATTEST config to ${path.basename(targetEnvPath)}`);
+    } else {
+      steps.push(`ATTEST config already in ${path.basename(targetEnvPath)}`);
+    }
+  } else {
+    fs.writeFileSync(envLocalPath, envVars + "\n");
+    steps.push("Created .env.local with ATTEST config");
+  }
-    if (content.includes("ATTEST_KEY")) {
-      log("  ATTEST is already configured in your .env file.");
-      log("");
-      return;
+  // Step 2: Find and update layout.tsx
+  const layoutPaths = [
+    path.join(process.cwd(), "src/app/layout.tsx"),
+    path.join(process.cwd(), "app/layout.tsx"),
+    path.join(process.cwd(), "src/app/layout.js"),
+    path.join(process.cwd(), "app/layout.js"),
+  ];
+  let layoutPath = null;
+  for (const p of layoutPaths) {
+    if (fs.existsSync(p)) {
+      layoutPath = p;
+      break;
     }
+  }
+  const scriptTag = `<Script
+        src="https://sekyuriti.build/api/v2/attest/script/${config.publicKey}"
+        strategy="beforeInteractive"
+      />`;
-    content += "\n\n" + envVars + "\n";
-    fs.writeFileSync(targetPath, content);
+  if (layoutPath) {
+    let layoutContent = fs.readFileSync(layoutPath, "utf-8");
+    if (layoutContent.includes("sekyuriti.build/api/v2/attest/script")) {
+      steps.push("ATTEST script already in layout");
+    } else {
+      // Check if Script is already imported
+      const hasScriptImport = layoutContent.includes("from 'next/script'") || layoutContent.includes('from "next/script"');
+      if (!hasScriptImport) {
+        // Add Script import after the first import line
+        layoutContent = layoutContent.replace(
+          /(import .+ from ['"][^'"]+['"];?\n)/,
+          `$1import Script from "next/script";\n`
+        );
+      }
-    log(`  ${c.bold}✓${c.reset} Added ATTEST config to ${path.basename(targetPath)}`);
+      // Add script tag after <body> or <body className=...>
+      if (layoutContent.includes("<body")) {
+        layoutContent = layoutContent.replace(
+          /(<body[^>]*>)/,
+          `$1\n      ${scriptTag}`
+        );
+        fs.writeFileSync(layoutPath, layoutContent);
+        steps.push(`Added ATTEST script to ${path.basename(layoutPath)}`);
+      } else {
+        steps.push("Could not find <body> tag in layout");
+      }
+    }
   } else {
-    // Create new .env.local
-    fs.writeFileSync(envLocalPath, envVars + "\n");
-    log(`  ${c.bold}✓${c.reset} Created .env.local with ATTEST config`);
+    steps.push("No layout.tsx found - add script manually");
   }
+  // Step 3: Check for middleware.ts and offer to add verification
+  const middlewarePaths = [
+    path.join(process.cwd(), "middleware.ts"),
+    path.join(process.cwd(), "src/middleware.ts"),
+    path.join(process.cwd(), "middleware.js"),
+    path.join(process.cwd(), "src/middleware.js"),
+  ];
+  let hasMiddleware = false;
+  for (const p of middlewarePaths) {
+    if (fs.existsSync(p)) {
+      hasMiddleware = true;
+      break;
+    }
+  }
+  // Print results
+  log("  SETUP COMPLETE");
   log("");
-  log("  Next steps:");
-  log("");
-  log(`  ${c.dim}1.${c.reset} Add the script to your app:`);
-  log("");
-  log(`     ${c.dim}<Script`);
-  log(`       src="https://sekyuriti.build/api/v2/attest/script/${config.publicKey}"`);
-  log(`       strategy="beforeInteractive"`);
-  log(`     />${c.reset}`);
-  log("");
-  log(`  ${c.dim}2.${c.reset} Add the middleware (optional):`);
-  log("");
-  log(`     ${c.dim}import { createAttestMiddleware } from '@sekyuriti/attest/middleware';${c.reset}`);
+  for (const step of steps) {
+    log(`  ${c.bold}✓${c.reset} ${step}`);
+  }
   log("");
+  if (!hasMiddleware) {
+    log("  Optional: Add middleware for server-side verification:");
+    log("");
+    log(`  ${c.dim}// middleware.ts${c.reset}`);
+    log(`  ${c.dim}import { createAttestMiddleware } from '@sekyuriti/attest/middleware';${c.reset}`);
+    log(`  ${c.dim}export default createAttestMiddleware({${c.reset}`);
+    log(`  ${c.dim}  protectedPaths: ['/api/'],${c.reset}`);
+    log(`  ${c.dim}});${c.reset}`);
+    log("");
+  }
   log("  Documentation: https://sekyuriti.build/docs/attest");
   log("");
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@sekyuriti/attest",
-  "version": "0.2.0",
+  "version": "0.2.1",
   "description": "API protection middleware for Next.js - verify requests with ATTEST",
   "main": "dist/index.js",
   "module": "dist/index.mjs",