@ubiquity-os/plugin-sdk 1.0.9 → 1.0.10

package/dist/constants.cjs

@@ -0,0 +1,58 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/constants.ts
+var constants_exports = {};
+__export(constants_exports, {
+  BOT_USER_ID: () => BOT_USER_ID,
+  CONFIG_FULL_PATH: () => CONFIG_FULL_PATH,
+  CONFIG_ORG_REPO: () => CONFIG_ORG_REPO,
+  DEV_CONFIG_FULL_PATH: () => DEV_CONFIG_FULL_PATH,
+  KERNEL_APP_ID: () => KERNEL_APP_ID,
+  KERNEL_PUBLIC_KEY: () => KERNEL_PUBLIC_KEY
+});
+module.exports = __toCommonJS(constants_exports);
+
+// src/types/config.ts
+var CONFIG_FULL_PATH = ".github/.ubiquity-os.config.yml";
+var DEV_CONFIG_FULL_PATH = ".github/.ubiquity-os.config.dev.yml";
+var CONFIG_ORG_REPO = ".ubiquity-os";
+
+// src/constants.ts
+var KERNEL_PUBLIC_KEY = `-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs96DOU+JqM8SyNXOB6u3
+uBKIFiyrcST/LZTYN6y7LeJlyCuGPqSDrWCfjU9Ph5PLf9TWiNmeM8DGaOpwEFC7
+U3NRxOSglo4plnQ5zRwIHHXvxyK400sQP2oISXymISuBQWjEIqkC9DybQrKwNzf+
+I0JHWPqmwMIw26UvVOtXGOOWBqTkk+N2+/9f8eDIJP5QQVwwszc8s1rXOsLMlVIf
+wShw7GO4E2jyK8TSJKpyjV8eb1JJMDwFhPiRrtZfQJUtDf2mV/67shQww61BH2Y/
+Plnalo58kWIbkqZoq1yJrL5sFb73osM5+vADTXVn79bkvea7W19nSkdMiarYt4Hq
+JQIDAQAB
+-----END PUBLIC KEY-----
+`;
+var KERNEL_APP_ID = 975031;
+var BOT_USER_ID = 178941584;
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  BOT_USER_ID,
+  CONFIG_FULL_PATH,
+  CONFIG_ORG_REPO,
+  DEV_CONFIG_FULL_PATH,
+  KERNEL_APP_ID,
+  KERNEL_PUBLIC_KEY
+});

package/dist/constants.js

@@ -1,34 +1,3 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-
-// src/constants.ts
-var constants_exports = {};
-__export(constants_exports, {
-  BOT_USER_ID: () => BOT_USER_ID,
-  CONFIG_FULL_PATH: () => CONFIG_FULL_PATH,
-  CONFIG_ORG_REPO: () => CONFIG_ORG_REPO,
-  DEV_CONFIG_FULL_PATH: () => DEV_CONFIG_FULL_PATH,
-  KERNEL_APP_ID: () => KERNEL_APP_ID,
-  KERNEL_PUBLIC_KEY: () => KERNEL_PUBLIC_KEY
-});
-module.exports = __toCommonJS(constants_exports);
-
 // src/types/config.ts
 var CONFIG_FULL_PATH = ".github/.ubiquity-os.config.yml";
 var DEV_CONFIG_FULL_PATH = ".github/.ubiquity-os.config.dev.yml";
@@ -47,12 +16,11 @@ JQIDAQAB
 `;
 var KERNEL_APP_ID = 975031;
 var BOT_USER_ID = 178941584;
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
+export {
   BOT_USER_ID,
   CONFIG_FULL_PATH,
   CONFIG_ORG_REPO,
   DEV_CONFIG_FULL_PATH,
   KERNEL_APP_ID,
   KERNEL_PUBLIC_KEY
-});
+};

package/dist/{index.mjs → index.cjs}

@@ -1,10 +1,48 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var src_exports = {};
+__export(src_exports, {
+  createActionsPlugin: () => createActionsPlugin,
+  createPlugin: () => createPlugin,
+  postComment: () => postComment
+});
+module.exports = __toCommonJS(src_exports);
+
 // src/server.ts
-import { Type as T } from "@sinclair/typebox";
-import { Value } from "@sinclair/typebox/value";
-import { LOG_LEVEL, LogReturn, Logs } from "@ubiquity-os/ubiquity-os-logger";
-import { Hono } from "hono";
-import { env as honoEnv } from "hono/adapter";
-import { HTTPException } from "hono/http-exception";
+var import_typebox = require("@sinclair/typebox");
+var import_value = require("@sinclair/typebox/value");
+var import_ubiquity_os_logger = require("@ubiquity-os/ubiquity-os-logger");
+var import_hono = require("hono");
+var import_adapter = require("hono/adapter");
+var import_http_exception = require("hono/http-exception");
 
 // src/util.ts
 function sanitizeMetadata(obj) {
@@ -60,12 +98,12 @@ JQIDAQAB
 `;
 
 // src/octokit.ts
-import { Octokit } from "@octokit/core";
-import { paginateRest } from "@octokit/plugin-paginate-rest";
-import { restEndpointMethods } from "@octokit/plugin-rest-endpoint-methods";
-import { retry } from "@octokit/plugin-retry";
-import { throttling } from "@octokit/plugin-throttling";
-import { paginateGraphQL } from "@octokit/plugin-paginate-graphql";
+var import_core = require("@octokit/core");
+var import_plugin_paginate_rest = require("@octokit/plugin-paginate-rest");
+var import_plugin_rest_endpoint_methods = require("@octokit/plugin-rest-endpoint-methods");
+var import_plugin_retry = require("@octokit/plugin-retry");
+var import_plugin_throttling = require("@octokit/plugin-throttling");
+var import_plugin_paginate_graphql = require("@octokit/plugin-paginate-graphql");
 var defaultOptions = {
   throttle: {
     onAbuseLimit: (retryAfter, options, octokit) => {
@@ -82,7 +120,7 @@ var defaultOptions = {
     }
   }
 };
-var customOctokit = Octokit.plugin(throttling, retry, paginateRest, restEndpointMethods, paginateGraphQL).defaults((instanceOptions) => {
+var customOctokit = import_core.Octokit.plugin(import_plugin_throttling.throttling, import_plugin_retry.retry, import_plugin_paginate_rest.paginateRest, import_plugin_rest_endpoint_methods.restEndpointMethods, import_plugin_paginate_graphql.paginateGraphQL).defaults((instanceOptions) => {
   return { ...defaultOptions, ...instanceOptions };
 });
 
@@ -119,60 +157,66 @@ async function verifySignature(publicKeyPem, inputs, signature) {
 }
 
 // src/server.ts
-var inputSchema = T.Object({
-  stateId: T.String(),
-  eventName: T.String(),
-  eventPayload: T.Record(T.String(), T.Any()),
-  authToken: T.String(),
-  settings: T.Record(T.String(), T.Any()),
-  ref: T.String(),
-  signature: T.String()
+var inputSchema = import_typebox.Type.Object({
+  stateId: import_typebox.Type.String(),
+  eventName: import_typebox.Type.String(),
+  eventPayload: import_typebox.Type.Record(import_typebox.Type.String(), import_typebox.Type.Any()),
+  authToken: import_typebox.Type.String(),
+  settings: import_typebox.Type.Record(import_typebox.Type.String(), import_typebox.Type.Any()),
+  ref: import_typebox.Type.String(),
+  signature: import_typebox.Type.String(),
+  bypassSignatureVerification: import_typebox.Type.Optional(
+    import_typebox.Type.Boolean({
+      default: false,
+      description: "Bypass signature verification (caution: only use this if you know what you're doing)"
+    })
+  )
 });
 function createPlugin(handler, manifest, options) {
   const pluginOptions = {
-    kernelPublicKey: options?.kernelPublicKey || KERNEL_PUBLIC_KEY,
-    logLevel: options?.logLevel || LOG_LEVEL.INFO,
-    postCommentOnError: options?.postCommentOnError || true,
+    kernelPublicKey: options?.kernelPublicKey ?? KERNEL_PUBLIC_KEY,
+    logLevel: options?.logLevel ?? import_ubiquity_os_logger.LOG_LEVEL.INFO,
+    postCommentOnError: options?.postCommentOnError ?? true,
     settingsSchema: options?.settingsSchema,
     envSchema: options?.envSchema
   };
-  const app = new Hono();
+  const app = new import_hono.Hono();
   app.get("/manifest.json", (ctx) => {
     return ctx.json(manifest);
   });
   app.post("/", async (ctx) => {
     if (ctx.req.header("content-type") !== "application/json") {
-      throw new HTTPException(400, { message: "Content-Type must be application/json" });
+      throw new import_http_exception.HTTPException(400, { message: "Content-Type must be application/json" });
     }
     const body = await ctx.req.json();
-    const inputSchemaErrors = [...Value.Errors(inputSchema, body)];
+    const inputSchemaErrors = [...import_value.Value.Errors(inputSchema, body)];
     if (inputSchemaErrors.length) {
       console.dir(inputSchemaErrors, { depth: null });
-      throw new HTTPException(400, { message: "Invalid body" });
+      throw new import_http_exception.HTTPException(400, { message: "Invalid body" });
     }
-    const inputs = Value.Decode(inputSchema, body);
+    const inputs = import_value.Value.Decode(inputSchema, body);
     const signature = inputs.signature;
-    if (!await verifySignature(pluginOptions.kernelPublicKey, inputs, signature)) {
-      throw new HTTPException(400, { message: "Invalid signature" });
+    if (!options?.bypassSignatureVerification && !await verifySignature(pluginOptions.kernelPublicKey, inputs, signature)) {
+      throw new import_http_exception.HTTPException(400, { message: "Invalid signature" });
     }
     let config2;
     if (pluginOptions.settingsSchema) {
       try {
-        config2 = Value.Decode(pluginOptions.settingsSchema, Value.Default(pluginOptions.settingsSchema, inputs.settings));
+        config2 = import_value.Value.Decode(pluginOptions.settingsSchema, import_value.Value.Default(pluginOptions.settingsSchema, inputs.settings));
       } catch (e) {
-        console.dir(...Value.Errors(pluginOptions.settingsSchema, inputs.settings), { depth: null });
+        console.dir(...import_value.Value.Errors(pluginOptions.settingsSchema, inputs.settings), { depth: null });
         throw e;
       }
     } else {
       config2 = inputs.settings;
     }
     let env;
-    const honoEnvironment = honoEnv(ctx);
+    const honoEnvironment = (0, import_adapter.env)(ctx);
     if (pluginOptions.envSchema) {
       try {
-        env = Value.Decode(pluginOptions.envSchema, Value.Default(pluginOptions.envSchema, honoEnvironment));
+        env = import_value.Value.Decode(pluginOptions.envSchema, import_value.Value.Default(pluginOptions.envSchema, honoEnvironment));
       } catch (e) {
-        console.dir(...Value.Errors(pluginOptions.envSchema, honoEnvironment), { depth: null });
+        console.dir(...import_value.Value.Errors(pluginOptions.envSchema, honoEnvironment), { depth: null });
         throw e;
       }
     } else {
@@ -184,7 +228,7 @@ function createPlugin(handler, manifest, options) {
       octokit: new customOctokit({ auth: inputs.authToken }),
       config: config2,
       env,
-      logger: new Logs(pluginOptions.logLevel)
+      logger: new import_ubiquity_os_logger.Logs(pluginOptions.logLevel)
     };
     try {
       const result = await handler(context2);
@@ -194,7 +238,7 @@ function createPlugin(handler, manifest, options) {
       let loggerError;
       if (error instanceof Error) {
         loggerError = context2.logger.error(`Error: ${error}`, { error });
-      } else if (error instanceof LogReturn) {
+      } else if (error instanceof import_ubiquity_os_logger.LogReturn) {
         loggerError = error;
       } else {
         loggerError = context2.logger.error(`Error: ${error}`);
@@ -202,36 +246,36 @@ function createPlugin(handler, manifest, options) {
       if (pluginOptions.postCommentOnError && loggerError) {
         await postComment(context2, loggerError);
       }
-      throw new HTTPException(500, { message: "Unexpected error" });
+      throw new import_http_exception.HTTPException(500, { message: "Unexpected error" });
     }
   });
   return app;
 }
 
 // src/actions.ts
-import * as core from "@actions/core";
-import * as github from "@actions/github";
-import { Type as T2 } from "@sinclair/typebox";
-import { Value as Value2 } from "@sinclair/typebox/value";
-import { LOG_LEVEL as LOG_LEVEL2, LogReturn as LogReturn2, Logs as Logs2 } from "@ubiquity-os/ubiquity-os-logger";
-import { config } from "dotenv";
-config();
-var inputSchema2 = T2.Object({
-  stateId: T2.String(),
-  eventName: T2.String(),
-  eventPayload: T2.String(),
-  authToken: T2.String(),
-  settings: T2.String(),
-  ref: T2.String(),
-  signature: T2.String()
+var core = __toESM(require("@actions/core"), 1);
+var github = __toESM(require("@actions/github"), 1);
+var import_typebox2 = require("@sinclair/typebox");
+var import_value2 = require("@sinclair/typebox/value");
+var import_ubiquity_os_logger2 = require("@ubiquity-os/ubiquity-os-logger");
+var import_dotenv = require("dotenv");
+(0, import_dotenv.config)();
+var inputSchema2 = import_typebox2.Type.Object({
+  stateId: import_typebox2.Type.String(),
+  eventName: import_typebox2.Type.String(),
+  eventPayload: import_typebox2.Type.String(),
+  authToken: import_typebox2.Type.String(),
+  settings: import_typebox2.Type.String(),
+  ref: import_typebox2.Type.String(),
+  signature: import_typebox2.Type.String()
 });
 async function createActionsPlugin(handler, options) {
   const pluginOptions = {
-    logLevel: options?.logLevel || LOG_LEVEL2.INFO,
-    postCommentOnError: options?.postCommentOnError || true,
+    logLevel: options?.logLevel ?? import_ubiquity_os_logger2.LOG_LEVEL.INFO,
+    postCommentOnError: options?.postCommentOnError ?? true,
     settingsSchema: options?.settingsSchema,
     envSchema: options?.envSchema,
-    kernelPublicKey: options?.kernelPublicKey || KERNEL_PUBLIC_KEY
+    kernelPublicKey: options?.kernelPublicKey ?? KERNEL_PUBLIC_KEY
   };
   const pluginGithubToken = process.env.PLUGIN_GITHUB_TOKEN;
   if (!pluginGithubToken) {
@@ -239,13 +283,13 @@ async function createActionsPlugin(handler, options) {
     return;
   }
   const inputPayload = github.context.payload.inputs;
-  const inputSchemaErrors = [...Value2.Errors(inputSchema2, inputPayload)];
+  const inputSchemaErrors = [...import_value2.Value.Errors(inputSchema2, inputPayload)];
   if (inputSchemaErrors.length) {
     console.dir(inputSchemaErrors, { depth: null });
     core.setFailed(`Error: Invalid inputs payload: ${inputSchemaErrors.join(",")}`);
     return;
   }
-  const inputs = Value2.Decode(inputSchema2, inputPayload);
+  const inputs = import_value2.Value.Decode(inputSchema2, inputPayload);
   const signature = inputs.signature;
   if (!await verifySignature(pluginOptions.kernelPublicKey, inputs, signature)) {
     core.setFailed(`Error: Invalid signature`);
@@ -254,9 +298,9 @@ async function createActionsPlugin(handler, options) {
   let config2;
   if (pluginOptions.settingsSchema) {
     try {
-      config2 = Value2.Decode(pluginOptions.settingsSchema, Value2.Default(pluginOptions.settingsSchema, JSON.parse(inputs.settings)));
+      config2 = import_value2.Value.Decode(pluginOptions.settingsSchema, import_value2.Value.Default(pluginOptions.settingsSchema, JSON.parse(inputs.settings)));
     } catch (e) {
-      console.dir(...Value2.Errors(pluginOptions.settingsSchema, JSON.parse(inputs.settings)), { depth: null });
+      console.dir(...import_value2.Value.Errors(pluginOptions.settingsSchema, JSON.parse(inputs.settings)), { depth: null });
       throw e;
     }
   } else {
@@ -265,9 +309,9 @@ async function createActionsPlugin(handler, options) {
   let env;
   if (pluginOptions.envSchema) {
     try {
-      env = Value2.Decode(pluginOptions.envSchema, Value2.Default(pluginOptions.envSchema, process.env));
+      env = import_value2.Value.Decode(pluginOptions.envSchema, import_value2.Value.Default(pluginOptions.envSchema, process.env));
     } catch (e) {
-      console.dir(...Value2.Errors(pluginOptions.envSchema, process.env), { depth: null });
+      console.dir(...import_value2.Value.Errors(pluginOptions.envSchema, process.env), { depth: null });
       throw e;
     }
   } else {
@@ -279,7 +323,7 @@ async function createActionsPlugin(handler, options) {
     octokit: new customOctokit({ auth: inputs.authToken }),
     config: config2,
     env,
-    logger: new Logs2(pluginOptions.logLevel)
+    logger: new import_ubiquity_os_logger2.Logs(pluginOptions.logLevel)
   };
   try {
     const result = await handler(context2);
@@ -291,7 +335,7 @@ async function createActionsPlugin(handler, options) {
     if (error instanceof Error) {
       core.setFailed(error);
       loggerError = context2.logger.error(`Error: ${error}`, { error });
-    } else if (error instanceof LogReturn2) {
+    } else if (error instanceof import_ubiquity_os_logger2.LogReturn) {
       core.setFailed(error.logMessage.raw);
       loggerError = error;
     } else {
@@ -334,8 +378,9 @@ async function returnDataToKernel(repoToken, stateId, output) {
     }
   });
 }
-export {
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
   createActionsPlugin,
   createPlugin,
   postComment
-};
+});

package/dist/{index.d.mts → index.d.cts}

@@ -9,7 +9,7 @@ import * as _octokit_plugin_rest_endpoint_methods from '@octokit/plugin-rest-end
 import * as _octokit_plugin_paginate_rest from '@octokit/plugin-paginate-rest';
 import * as _octokit_request_error from '@octokit/request-error';
 import { Octokit } from '@octokit/core';
-import { Manifest } from './manifest.mjs';
+import { Manifest } from './manifest.cjs';
 
 declare const customOctokit: typeof Octokit & _octokit_core_dist_types_types.Constructor<{
     retry: {
@@ -36,6 +36,7 @@ interface Options$1 {
     postCommentOnError?: boolean;
     settingsSchema?: TAnySchema;
     envSchema?: TAnySchema;
+    bypassSignatureVerification?: boolean;
 }
 declare function createPlugin<TConfig = unknown, TEnv = unknown, TSupportedEvents extends EmitterWebhookEventName = EmitterWebhookEventName>(handler: (context: Context<TConfig, TEnv, TSupportedEvents>) => Promise<Record<string, unknown> | undefined>, manifest: Manifest, options?: Options$1): Hono<hono_types.BlankEnv, hono_types.BlankSchema, "/">;
 

package/dist/index.d.ts

@@ -36,6 +36,7 @@ interface Options$1 {
     postCommentOnError?: boolean;
     settingsSchema?: TAnySchema;
     envSchema?: TAnySchema;
+    bypassSignatureVerification?: boolean;
 }
 declare function createPlugin<TConfig = unknown, TEnv = unknown, TSupportedEvents extends EmitterWebhookEventName = EmitterWebhookEventName>(handler: (context: Context<TConfig, TEnv, TSupportedEvents>) => Promise<Record<string, unknown> | undefined>, manifest: Manifest, options?: Options$1): Hono<hono_types.BlankEnv, hono_types.BlankSchema, "/">;
 

package/dist/index.js

@@ -1,48 +1,10 @@
-"use strict";
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-
-// src/index.ts
-var src_exports = {};
-__export(src_exports, {
-  createActionsPlugin: () => createActionsPlugin,
-  createPlugin: () => createPlugin,
-  postComment: () => postComment
-});
-module.exports = __toCommonJS(src_exports);
-
 // src/server.ts
-var import_typebox = require("@sinclair/typebox");
-var import_value = require("@sinclair/typebox/value");
-var import_ubiquity_os_logger = require("@ubiquity-os/ubiquity-os-logger");
-var import_hono = require("hono");
-var import_adapter = require("hono/adapter");
-var import_http_exception = require("hono/http-exception");
+import { Type as T } from "@sinclair/typebox";
+import { Value } from "@sinclair/typebox/value";
+import { LOG_LEVEL, LogReturn, Logs } from "@ubiquity-os/ubiquity-os-logger";
+import { Hono } from "hono";
+import { env as honoEnv } from "hono/adapter";
+import { HTTPException } from "hono/http-exception";
 
 // src/util.ts
 function sanitizeMetadata(obj) {
@@ -98,12 +60,12 @@ JQIDAQAB
 `;
 
 // src/octokit.ts
-var import_core = require("@octokit/core");
-var import_plugin_paginate_rest = require("@octokit/plugin-paginate-rest");
-var import_plugin_rest_endpoint_methods = require("@octokit/plugin-rest-endpoint-methods");
-var import_plugin_retry = require("@octokit/plugin-retry");
-var import_plugin_throttling = require("@octokit/plugin-throttling");
-var import_plugin_paginate_graphql = require("@octokit/plugin-paginate-graphql");
+import { Octokit } from "@octokit/core";
+import { paginateRest } from "@octokit/plugin-paginate-rest";
+import { restEndpointMethods } from "@octokit/plugin-rest-endpoint-methods";
+import { retry } from "@octokit/plugin-retry";
+import { throttling } from "@octokit/plugin-throttling";
+import { paginateGraphQL } from "@octokit/plugin-paginate-graphql";
 var defaultOptions = {
   throttle: {
     onAbuseLimit: (retryAfter, options, octokit) => {
@@ -120,7 +82,7 @@ var defaultOptions = {
     }
   }
 };
-var customOctokit = import_core.Octokit.plugin(import_plugin_throttling.throttling, import_plugin_retry.retry, import_plugin_paginate_rest.paginateRest, import_plugin_rest_endpoint_methods.restEndpointMethods, import_plugin_paginate_graphql.paginateGraphQL).defaults((instanceOptions) => {
+var customOctokit = Octokit.plugin(throttling, retry, paginateRest, restEndpointMethods, paginateGraphQL).defaults((instanceOptions) => {
   return { ...defaultOptions, ...instanceOptions };
 });
 
@@ -157,60 +119,66 @@ async function verifySignature(publicKeyPem, inputs, signature) {
 }
 
 // src/server.ts
-var inputSchema = import_typebox.Type.Object({
-  stateId: import_typebox.Type.String(),
-  eventName: import_typebox.Type.String(),
-  eventPayload: import_typebox.Type.Record(import_typebox.Type.String(), import_typebox.Type.Any()),
-  authToken: import_typebox.Type.String(),
-  settings: import_typebox.Type.Record(import_typebox.Type.String(), import_typebox.Type.Any()),
-  ref: import_typebox.Type.String(),
-  signature: import_typebox.Type.String()
+var inputSchema = T.Object({
+  stateId: T.String(),
+  eventName: T.String(),
+  eventPayload: T.Record(T.String(), T.Any()),
+  authToken: T.String(),
+  settings: T.Record(T.String(), T.Any()),
+  ref: T.String(),
+  signature: T.String(),
+  bypassSignatureVerification: T.Optional(
+    T.Boolean({
+      default: false,
+      description: "Bypass signature verification (caution: only use this if you know what you're doing)"
+    })
+  )
 });
 function createPlugin(handler, manifest, options) {
   const pluginOptions = {
-    kernelPublicKey: options?.kernelPublicKey || KERNEL_PUBLIC_KEY,
-    logLevel: options?.logLevel || import_ubiquity_os_logger.LOG_LEVEL.INFO,
-    postCommentOnError: options?.postCommentOnError || true,
+    kernelPublicKey: options?.kernelPublicKey ?? KERNEL_PUBLIC_KEY,
+    logLevel: options?.logLevel ?? LOG_LEVEL.INFO,
+    postCommentOnError: options?.postCommentOnError ?? true,
     settingsSchema: options?.settingsSchema,
     envSchema: options?.envSchema
   };
-  const app = new import_hono.Hono();
+  const app = new Hono();
   app.get("/manifest.json", (ctx) => {
     return ctx.json(manifest);
   });
   app.post("/", async (ctx) => {
     if (ctx.req.header("content-type") !== "application/json") {
-      throw new import_http_exception.HTTPException(400, { message: "Content-Type must be application/json" });
+      throw new HTTPException(400, { message: "Content-Type must be application/json" });
     }
     const body = await ctx.req.json();
-    const inputSchemaErrors = [...import_value.Value.Errors(inputSchema, body)];
+    const inputSchemaErrors = [...Value.Errors(inputSchema, body)];
     if (inputSchemaErrors.length) {
       console.dir(inputSchemaErrors, { depth: null });
-      throw new import_http_exception.HTTPException(400, { message: "Invalid body" });
+      throw new HTTPException(400, { message: "Invalid body" });
     }
-    const inputs = import_value.Value.Decode(inputSchema, body);
+    const inputs = Value.Decode(inputSchema, body);
     const signature = inputs.signature;
-    if (!await verifySignature(pluginOptions.kernelPublicKey, inputs, signature)) {
-      throw new import_http_exception.HTTPException(400, { message: "Invalid signature" });
+    if (!options?.bypassSignatureVerification && !await verifySignature(pluginOptions.kernelPublicKey, inputs, signature)) {
+      throw new HTTPException(400, { message: "Invalid signature" });
     }
     let config2;
     if (pluginOptions.settingsSchema) {
       try {
-        config2 = import_value.Value.Decode(pluginOptions.settingsSchema, import_value.Value.Default(pluginOptions.settingsSchema, inputs.settings));
+        config2 = Value.Decode(pluginOptions.settingsSchema, Value.Default(pluginOptions.settingsSchema, inputs.settings));
       } catch (e) {
-        console.dir(...import_value.Value.Errors(pluginOptions.settingsSchema, inputs.settings), { depth: null });
+        console.dir(...Value.Errors(pluginOptions.settingsSchema, inputs.settings), { depth: null });
         throw e;
       }
     } else {
       config2 = inputs.settings;
     }
     let env;
-    const honoEnvironment = (0, import_adapter.env)(ctx);
+    const honoEnvironment = honoEnv(ctx);
     if (pluginOptions.envSchema) {
       try {
-        env = import_value.Value.Decode(pluginOptions.envSchema, import_value.Value.Default(pluginOptions.envSchema, honoEnvironment));
+        env = Value.Decode(pluginOptions.envSchema, Value.Default(pluginOptions.envSchema, honoEnvironment));
       } catch (e) {
-        console.dir(...import_value.Value.Errors(pluginOptions.envSchema, honoEnvironment), { depth: null });
+        console.dir(...Value.Errors(pluginOptions.envSchema, honoEnvironment), { depth: null });
         throw e;
       }
     } else {
@@ -222,7 +190,7 @@ function createPlugin(handler, manifest, options) {
       octokit: new customOctokit({ auth: inputs.authToken }),
       config: config2,
       env,
-      logger: new import_ubiquity_os_logger.Logs(pluginOptions.logLevel)
+      logger: new Logs(pluginOptions.logLevel)
     };
     try {
       const result = await handler(context2);
@@ -232,7 +200,7 @@ function createPlugin(handler, manifest, options) {
       let loggerError;
       if (error instanceof Error) {
         loggerError = context2.logger.error(`Error: ${error}`, { error });
-      } else if (error instanceof import_ubiquity_os_logger.LogReturn) {
+      } else if (error instanceof LogReturn) {
         loggerError = error;
       } else {
         loggerError = context2.logger.error(`Error: ${error}`);
@@ -240,36 +208,36 @@ function createPlugin(handler, manifest, options) {
       if (pluginOptions.postCommentOnError && loggerError) {
         await postComment(context2, loggerError);
       }
-      throw new import_http_exception.HTTPException(500, { message: "Unexpected error" });
+      throw new HTTPException(500, { message: "Unexpected error" });
     }
   });
   return app;
 }
 
 // src/actions.ts
-var core = __toESM(require("@actions/core"));
-var github = __toESM(require("@actions/github"));
-var import_typebox2 = require("@sinclair/typebox");
-var import_value2 = require("@sinclair/typebox/value");
-var import_ubiquity_os_logger2 = require("@ubiquity-os/ubiquity-os-logger");
-var import_dotenv = require("dotenv");
-(0, import_dotenv.config)();
-var inputSchema2 = import_typebox2.Type.Object({
-  stateId: import_typebox2.Type.String(),
-  eventName: import_typebox2.Type.String(),
-  eventPayload: import_typebox2.Type.String(),
-  authToken: import_typebox2.Type.String(),
-  settings: import_typebox2.Type.String(),
-  ref: import_typebox2.Type.String(),
-  signature: import_typebox2.Type.String()
+import * as core from "@actions/core";
+import * as github from "@actions/github";
+import { Type as T2 } from "@sinclair/typebox";
+import { Value as Value2 } from "@sinclair/typebox/value";
+import { LOG_LEVEL as LOG_LEVEL2, LogReturn as LogReturn2, Logs as Logs2 } from "@ubiquity-os/ubiquity-os-logger";
+import { config } from "dotenv";
+config();
+var inputSchema2 = T2.Object({
+  stateId: T2.String(),
+  eventName: T2.String(),
+  eventPayload: T2.String(),
+  authToken: T2.String(),
+  settings: T2.String(),
+  ref: T2.String(),
+  signature: T2.String()
 });
 async function createActionsPlugin(handler, options) {
   const pluginOptions = {
-    logLevel: options?.logLevel || import_ubiquity_os_logger2.LOG_LEVEL.INFO,
-    postCommentOnError: options?.postCommentOnError || true,
+    logLevel: options?.logLevel ?? LOG_LEVEL2.INFO,
+    postCommentOnError: options?.postCommentOnError ?? true,
     settingsSchema: options?.settingsSchema,
     envSchema: options?.envSchema,
-    kernelPublicKey: options?.kernelPublicKey || KERNEL_PUBLIC_KEY
+    kernelPublicKey: options?.kernelPublicKey ?? KERNEL_PUBLIC_KEY
   };
   const pluginGithubToken = process.env.PLUGIN_GITHUB_TOKEN;
   if (!pluginGithubToken) {
@@ -277,13 +245,13 @@ async function createActionsPlugin(handler, options) {
     return;
   }
   const inputPayload = github.context.payload.inputs;
-  const inputSchemaErrors = [...import_value2.Value.Errors(inputSchema2, inputPayload)];
+  const inputSchemaErrors = [...Value2.Errors(inputSchema2, inputPayload)];
   if (inputSchemaErrors.length) {
     console.dir(inputSchemaErrors, { depth: null });
     core.setFailed(`Error: Invalid inputs payload: ${inputSchemaErrors.join(",")}`);
     return;
   }
-  const inputs = import_value2.Value.Decode(inputSchema2, inputPayload);
+  const inputs = Value2.Decode(inputSchema2, inputPayload);
   const signature = inputs.signature;
   if (!await verifySignature(pluginOptions.kernelPublicKey, inputs, signature)) {
     core.setFailed(`Error: Invalid signature`);
@@ -292,9 +260,9 @@ async function createActionsPlugin(handler, options) {
   let config2;
   if (pluginOptions.settingsSchema) {
     try {
-      config2 = import_value2.Value.Decode(pluginOptions.settingsSchema, import_value2.Value.Default(pluginOptions.settingsSchema, JSON.parse(inputs.settings)));
+      config2 = Value2.Decode(pluginOptions.settingsSchema, Value2.Default(pluginOptions.settingsSchema, JSON.parse(inputs.settings)));
     } catch (e) {
-      console.dir(...import_value2.Value.Errors(pluginOptions.settingsSchema, JSON.parse(inputs.settings)), { depth: null });
+      console.dir(...Value2.Errors(pluginOptions.settingsSchema, JSON.parse(inputs.settings)), { depth: null });
       throw e;
     }
   } else {
@@ -303,9 +271,9 @@ async function createActionsPlugin(handler, options) {
   let env;
   if (pluginOptions.envSchema) {
     try {
-      env = import_value2.Value.Decode(pluginOptions.envSchema, import_value2.Value.Default(pluginOptions.envSchema, process.env));
+      env = Value2.Decode(pluginOptions.envSchema, Value2.Default(pluginOptions.envSchema, process.env));
     } catch (e) {
-      console.dir(...import_value2.Value.Errors(pluginOptions.envSchema, process.env), { depth: null });
+      console.dir(...Value2.Errors(pluginOptions.envSchema, process.env), { depth: null });
       throw e;
     }
   } else {
@@ -317,7 +285,7 @@ async function createActionsPlugin(handler, options) {
     octokit: new customOctokit({ auth: inputs.authToken }),
     config: config2,
     env,
-    logger: new import_ubiquity_os_logger2.Logs(pluginOptions.logLevel)
+    logger: new Logs2(pluginOptions.logLevel)
   };
   try {
     const result = await handler(context2);
@@ -329,7 +297,7 @@ async function createActionsPlugin(handler, options) {
     if (error instanceof Error) {
       core.setFailed(error);
       loggerError = context2.logger.error(`Error: ${error}`, { error });
-    } else if (error instanceof import_ubiquity_os_logger2.LogReturn) {
+    } else if (error instanceof LogReturn2) {
       core.setFailed(error.logMessage.raw);
       loggerError = error;
     } else {
@@ -372,9 +340,8 @@ async function returnDataToKernel(repoToken, stateId, output) {
     }
   });
 }
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
+export {
   createActionsPlugin,
   createPlugin,
   postComment
-});
+};

package/dist/manifest.cjs

@@ -0,0 +1,47 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/types/manifest.ts
+var manifest_exports = {};
+__export(manifest_exports, {
+  commandSchema: () => commandSchema,
+  manifestSchema: () => manifestSchema,
+  runEvent: () => runEvent
+});
+module.exports = __toCommonJS(manifest_exports);
+var import_typebox = require("@sinclair/typebox");
+var import_webhooks = require("@octokit/webhooks");
+var runEvent = import_typebox.Type.Union(import_webhooks.emitterEventNames.map((o) => import_typebox.Type.Literal(o)));
+var commandSchema = import_typebox.Type.Object({
+  description: import_typebox.Type.String({ minLength: 1 }),
+  "ubiquity:example": import_typebox.Type.String({ minLength: 1 })
+});
+var manifestSchema = import_typebox.Type.Object({
+  name: import_typebox.Type.String({ minLength: 1 }),
+  description: import_typebox.Type.Optional(import_typebox.Type.String({ default: "" })),
+  commands: import_typebox.Type.Optional(import_typebox.Type.Record(import_typebox.Type.String(), commandSchema, { default: {} })),
+  "ubiquity:listeners": import_typebox.Type.Optional(import_typebox.Type.Array(runEvent, { default: [] })),
+  configuration: import_typebox.Type.Optional(import_typebox.Type.Record(import_typebox.Type.String(), import_typebox.Type.Any(), { default: {} }))
+});
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  commandSchema,
+  manifestSchema,
+  runEvent
+});

package/dist/manifest.js

@@ -1,47 +1,20 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
-
 // src/types/manifest.ts
-var manifest_exports = {};
-__export(manifest_exports, {
-  commandSchema: () => commandSchema,
-  manifestSchema: () => manifestSchema,
-  runEvent: () => runEvent
-});
-module.exports = __toCommonJS(manifest_exports);
-var import_typebox = require("@sinclair/typebox");
-var import_webhooks = require("@octokit/webhooks");
-var runEvent = import_typebox.Type.Union(import_webhooks.emitterEventNames.map((o) => import_typebox.Type.Literal(o)));
-var commandSchema = import_typebox.Type.Object({
-  description: import_typebox.Type.String({ minLength: 1 }),
-  "ubiquity:example": import_typebox.Type.String({ minLength: 1 })
+import { Type as T } from "@sinclair/typebox";
+import { emitterEventNames } from "@octokit/webhooks";
+var runEvent = T.Union(emitterEventNames.map((o) => T.Literal(o)));
+var commandSchema = T.Object({
+  description: T.String({ minLength: 1 }),
+  "ubiquity:example": T.String({ minLength: 1 })
 });
-var manifestSchema = import_typebox.Type.Object({
-  name: import_typebox.Type.String({ minLength: 1 }),
-  description: import_typebox.Type.Optional(import_typebox.Type.String({ default: "" })),
-  commands: import_typebox.Type.Optional(import_typebox.Type.Record(import_typebox.Type.String(), commandSchema, { default: {} })),
-  "ubiquity:listeners": import_typebox.Type.Optional(import_typebox.Type.Array(runEvent, { default: [] })),
-  configuration: import_typebox.Type.Optional(import_typebox.Type.Record(import_typebox.Type.String(), import_typebox.Type.Any(), { default: {} }))
+var manifestSchema = T.Object({
+  name: T.String({ minLength: 1 }),
+  description: T.Optional(T.String({ default: "" })),
+  commands: T.Optional(T.Record(T.String(), commandSchema, { default: {} })),
+  "ubiquity:listeners": T.Optional(T.Array(runEvent, { default: [] })),
+  configuration: T.Optional(T.Record(T.String(), T.Any(), { default: {} }))
 });
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
+export {
   commandSchema,
   manifestSchema,
   runEvent
-});
+};

package/dist/signature.cjs

@@ -0,0 +1,81 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/signature.ts
+var signature_exports = {};
+__export(signature_exports, {
+  signPayload: () => signPayload,
+  verifySignature: () => verifySignature
+});
+module.exports = __toCommonJS(signature_exports);
+async function verifySignature(publicKeyPem, inputs, signature) {
+  try {
+    const inputsOrdered = {
+      stateId: inputs.stateId,
+      eventName: inputs.eventName,
+      eventPayload: inputs.eventPayload,
+      settings: inputs.settings,
+      authToken: inputs.authToken,
+      ref: inputs.ref
+    };
+    const pemContents = publicKeyPem.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").trim();
+    const binaryDer = Uint8Array.from(atob(pemContents), (c) => c.charCodeAt(0));
+    const publicKey = await crypto.subtle.importKey(
+      "spki",
+      binaryDer,
+      {
+        name: "RSASSA-PKCS1-v1_5",
+        hash: "SHA-256"
+      },
+      true,
+      ["verify"]
+    );
+    const signatureArray = Uint8Array.from(atob(signature), (c) => c.charCodeAt(0));
+    const dataArray = new TextEncoder().encode(JSON.stringify(inputsOrdered));
+    return await crypto.subtle.verify("RSASSA-PKCS1-v1_5", publicKey, signatureArray, dataArray);
+  } catch (error) {
+    console.error(error);
+    return false;
+  }
+}
+async function importRsaPrivateKey(pem) {
+  const pemContents = pem.replace("-----BEGIN PRIVATE KEY-----", "").replace("-----END PRIVATE KEY-----", "").trim();
+  const binaryDer = Uint8Array.from(atob(pemContents), (c) => c.charCodeAt(0));
+  return await crypto.subtle.importKey(
+    "pkcs8",
+    binaryDer.buffer,
+    {
+      name: "RSASSA-PKCS1-v1_5",
+      hash: "SHA-256"
+    },
+    true,
+    ["sign"]
+  );
+}
+async function signPayload(payload, privateKey) {
+  const data = new TextEncoder().encode(payload);
+  const _privateKey = await importRsaPrivateKey(privateKey);
+  const signature = await crypto.subtle.sign("RSASSA-PKCS1-v1_5", _privateKey, data);
+  return btoa(String.fromCharCode(...new Uint8Array(signature)));
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  signPayload,
+  verifySignature
+});

package/dist/signature.d.cts

@@ -0,0 +1,12 @@
+interface Inputs {
+    stateId: unknown;
+    eventName: unknown;
+    eventPayload: unknown;
+    authToken: unknown;
+    settings: unknown;
+    ref: unknown;
+}
+declare function verifySignature(publicKeyPem: string, inputs: Inputs, signature: string): Promise<boolean>;
+declare function signPayload(payload: string, privateKey: string): Promise<string>;
+
+export { signPayload, verifySignature };

package/dist/signature.d.ts

@@ -0,0 +1,12 @@
+interface Inputs {
+    stateId: unknown;
+    eventName: unknown;
+    eventPayload: unknown;
+    authToken: unknown;
+    settings: unknown;
+    ref: unknown;
+}
+declare function verifySignature(publicKeyPem: string, inputs: Inputs, signature: string): Promise<boolean>;
+declare function signPayload(payload: string, privateKey: string): Promise<string>;
+
+export { signPayload, verifySignature };

package/dist/signature.js

@@ -0,0 +1,55 @@
+// src/signature.ts
+async function verifySignature(publicKeyPem, inputs, signature) {
+  try {
+    const inputsOrdered = {
+      stateId: inputs.stateId,
+      eventName: inputs.eventName,
+      eventPayload: inputs.eventPayload,
+      settings: inputs.settings,
+      authToken: inputs.authToken,
+      ref: inputs.ref
+    };
+    const pemContents = publicKeyPem.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").trim();
+    const binaryDer = Uint8Array.from(atob(pemContents), (c) => c.charCodeAt(0));
+    const publicKey = await crypto.subtle.importKey(
+      "spki",
+      binaryDer,
+      {
+        name: "RSASSA-PKCS1-v1_5",
+        hash: "SHA-256"
+      },
+      true,
+      ["verify"]
+    );
+    const signatureArray = Uint8Array.from(atob(signature), (c) => c.charCodeAt(0));
+    const dataArray = new TextEncoder().encode(JSON.stringify(inputsOrdered));
+    return await crypto.subtle.verify("RSASSA-PKCS1-v1_5", publicKey, signatureArray, dataArray);
+  } catch (error) {
+    console.error(error);
+    return false;
+  }
+}
+async function importRsaPrivateKey(pem) {
+  const pemContents = pem.replace("-----BEGIN PRIVATE KEY-----", "").replace("-----END PRIVATE KEY-----", "").trim();
+  const binaryDer = Uint8Array.from(atob(pemContents), (c) => c.charCodeAt(0));
+  return await crypto.subtle.importKey(
+    "pkcs8",
+    binaryDer.buffer,
+    {
+      name: "RSASSA-PKCS1-v1_5",
+      hash: "SHA-256"
+    },
+    true,
+    ["sign"]
+  );
+}
+async function signPayload(payload, privateKey) {
+  const data = new TextEncoder().encode(payload);
+  const _privateKey = await importRsaPrivateKey(privateKey);
+  const signature = await crypto.subtle.sign("RSASSA-PKCS1-v1_5", _privateKey, data);
+  return btoa(String.fromCharCode(...new Uint8Array(signature)));
+}
+export {
+  signPayload,
+  verifySignature
+};

package/package.json

@@ -1,12 +1,13 @@
 {
   "name": "@ubiquity-os/plugin-sdk",
-  "version": "1.0.9",
+  "version": "1.0.10",
   "description": "SDK for plugin support.",
   "author": "Ubiquity DAO",
   "license": "MIT",
   "engines": {
     "node": ">=20.10.0"
   },
+  "type": "module",
   "module": "dist/index.mjs",
   "main": "dist/index.js",
   "typings": "dist/index.d.ts",
@@ -18,6 +19,9 @@
       ],
       "constants": [
         "dist/constants.d.ts"
+      ],
+      "signature": [
+        "dist/signature.d.ts"
       ]
     }
   },
@@ -36,6 +40,11 @@
       "types": "./dist/constants.d.ts",
       "import": "./dist/constants.mjs",
       "require": "./dist/constants.js"
+    },
+    "./signature": {
+      "types": "./dist/signature.d.ts",
+      "import": "./dist/signature.mjs",
+      "require": "./dist/signature.js"
     }
   },
   "files": [
@@ -50,7 +59,7 @@
     "knip": "knip --config .github/knip.ts",
     "knip-ci": "knip --no-exit-code --reporter json --config .github/knip.ts",
     "prepare": "node .husky/install.mjs",
-    "test": "jest --setupFiles dotenv/config --coverage"
+    "jest:test": "cross-env NODE_OPTIONS=\"$NODE_OPTIONS --experimental-vm-modules\" jest --setupFiles dotenv/config --coverage"
   },
   "keywords": [
     "typescript",
@@ -83,10 +92,10 @@
     "@cspell/dict-software-terms": "^3.3.18",
     "@cspell/dict-typescript": "^3.1.2",
     "@eslint/js": "^9.14.0",
-    "@jest/globals": "29.7.0",
+    "@jest/globals": "^29.7.0",
     "@mswjs/data": "0.16.1",
-    "@types/jest": "29.5.12",
     "@types/node": "^20.11.19",
+    "cross-env": "^7.0.3",
     "cspell": "^8.4.0",
     "eslint": "^9.14.0",
     "eslint-config-prettier": "^9.1.0",
@@ -94,13 +103,17 @@
     "eslint-plugin-prettier": "^5.2.1",
     "eslint-plugin-sonarjs": "^2.0.4",
     "husky": "^9.0.11",
-    "jest": "29.7.0",
-    "jest-junit": "16.0.0",
-    "jest-md-dashboard": "0.8.0",
+    "jest": "^29.7.0",
+    "jest-junit": "^16.0.0",
+    "jest-md-dashboard": "^0.8.0",
     "knip": "^5.0.1",
     "lint-staged": "^15.2.2",
+    "msw": "^2.6.3",
+    "npm-run-all": "^4.1.5",
     "prettier": "^3.3.3",
-    "ts-jest": "29.1.2",
+    "simple-git": "^3.27.0",
+    "ts-jest": "^29.2.5",
+    "ts-node": "^10.9.2",
     "tsup": "8.1.0",
     "typescript": "^5.5.4",
     "typescript-eslint": "^8.13.0"

package/dist/constants.mjs

@@ -1,26 +0,0 @@
-// src/types/config.ts
-var CONFIG_FULL_PATH = ".github/.ubiquity-os.config.yml";
-var DEV_CONFIG_FULL_PATH = ".github/.ubiquity-os.config.dev.yml";
-var CONFIG_ORG_REPO = ".ubiquity-os";
-
-// src/constants.ts
-var KERNEL_PUBLIC_KEY = `-----BEGIN PUBLIC KEY-----
-MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs96DOU+JqM8SyNXOB6u3
-uBKIFiyrcST/LZTYN6y7LeJlyCuGPqSDrWCfjU9Ph5PLf9TWiNmeM8DGaOpwEFC7
-U3NRxOSglo4plnQ5zRwIHHXvxyK400sQP2oISXymISuBQWjEIqkC9DybQrKwNzf+
-I0JHWPqmwMIw26UvVOtXGOOWBqTkk+N2+/9f8eDIJP5QQVwwszc8s1rXOsLMlVIf
-wShw7GO4E2jyK8TSJKpyjV8eb1JJMDwFhPiRrtZfQJUtDf2mV/67shQww61BH2Y/
-Plnalo58kWIbkqZoq1yJrL5sFb73osM5+vADTXVn79bkvea7W19nSkdMiarYt4Hq
-JQIDAQAB
------END PUBLIC KEY-----
-`;
-var KERNEL_APP_ID = 975031;
-var BOT_USER_ID = 178941584;
-export {
-  BOT_USER_ID,
-  CONFIG_FULL_PATH,
-  CONFIG_ORG_REPO,
-  DEV_CONFIG_FULL_PATH,
-  KERNEL_APP_ID,
-  KERNEL_PUBLIC_KEY
-};

package/dist/manifest.mjs

@@ -1,20 +0,0 @@
-// src/types/manifest.ts
-import { Type as T } from "@sinclair/typebox";
-import { emitterEventNames } from "@octokit/webhooks";
-var runEvent = T.Union(emitterEventNames.map((o) => T.Literal(o)));
-var commandSchema = T.Object({
-  description: T.String({ minLength: 1 }),
-  "ubiquity:example": T.String({ minLength: 1 })
-});
-var manifestSchema = T.Object({
-  name: T.String({ minLength: 1 }),
-  description: T.Optional(T.String({ default: "" })),
-  commands: T.Optional(T.Record(T.String(), commandSchema, { default: {} })),
-  "ubiquity:listeners": T.Optional(T.Array(runEvent, { default: [] })),
-  configuration: T.Optional(T.Record(T.String(), T.Any(), { default: {} }))
-});
-export {
-  commandSchema,
-  manifestSchema,
-  runEvent
-};