attest-it 0.0.1

package/README.md

@@ -0,0 +1,124 @@
+# attest-it
+
+Human-gated test attestation system with cryptographic signing.
+
+## Why attest-it?
+
+Some tests can't run in CI:
+
+- Tests requiring desktop applications (Cursor, VS Code)
+- Tests requiring OAuth flows with real browsers
+- Tests requiring AI assistants (Claude Code, GitHub Copilot)
+- Tests requiring human verification of visual correctness
+
+These tests still need to be on the critical path. `attest-it` enforces that a human ran them by requiring cryptographically signed attestations.
+
+## Installation
+
+```bash
+npm install attest-it
+# or
+pnpm add attest-it
+# or
+yarn add attest-it
+```
+
+## Quick Start
+
+```bash
+# Initialize configuration
+npx attest-it init
+
+# Generate signing keys
+npx attest-it keygen
+
+# Run tests and create attestation
+npx attest-it run --suite my-suite
+
+# Verify attestations (in CI)
+npx attest-it verify
+```
+
+## Package Contents
+
+This umbrella package includes:
+
+- **CLI**: Full command-line interface (`npx attest-it <command>`)
+- **Core API**: Programmatic access to all functionality via `@attest-it/core`
+
+### CLI Commands
+
+| Command  | Description                      |
+| -------- | -------------------------------- |
+| `init`   | Initialize configuration         |
+| `keygen` | Generate signing keypair         |
+| `status` | Show attestation status          |
+| `run`    | Run tests and create attestation |
+| `verify` | Verify attestations (for CI)     |
+| `prune`  | Remove stale attestations        |
+
+### Programmatic API
+
+```typescript
+import { loadConfig, computeFingerprint, verifyAttestations, generateKeyPair } from 'attest-it'
+
+// Load configuration
+const config = await loadConfig('.attest-it/config.yaml')
+
+// Compute fingerprint for a suite
+const result = await computeFingerprint({
+  packages: config.suites['my-suite'].packages,
+  basedir: process.cwd(),
+})
+
+// Verify all attestations
+const verification = await verifyAttestations({
+  config,
+  repoRoot: process.cwd(),
+})
+```
+
+## Configuration
+
+Create `.attest-it/config.yaml`:
+
+```yaml
+version: 1
+
+settings:
+  maxAgeDays: 30
+  algorithm: ed25519
+  publicKeyPath: .attest-it/pubkey.pem
+  attestationsPath: .attest-it/attestations.json
+
+suites:
+  desktop-tests:
+    description: Tests requiring desktop application
+    packages:
+      - packages/my-app
+    command: pnpm vitest --project desktop
+```
+
+## Documentation
+
+- [Getting Started](../../docs/getting-started.md) - Complete setup guide
+- [Configuration](../../docs/configuration.md) - All configuration options
+- [GitHub Integration](../../docs/github-integration.md) - CI setup
+- [API Documentation](../../docs/api/attest-it.md) - Full API reference
+
+## Related Packages
+
+| Package                    | Description                   |
+| -------------------------- | ----------------------------- |
+| `@attest-it/core`          | Core library (included)       |
+| `@attest-it/cli`           | CLI implementation (included) |
+| `@attest-it/github-action` | GitHub Actions integration    |
+
+## Requirements
+
+- Node.js 20+
+- OpenSSL (for key generation and signing)
+
+## License
+
+MIT

package/dist/bin/attest-it.js

@@ -0,0 +1,6 @@
+#!/usr/bin/env node
+import { run } from '@attest-it/cli';
+
+run();
+//# sourceMappingURL=attest-it.js.map
+//# sourceMappingURL=attest-it.js.map

package/dist/bin/attest-it.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../bin/attest-it.ts"],"names":[],"mappings":";;;AAEA,GAAA,EAAI","file":"attest-it.js","sourcesContent":["import { run } from '@attest-it/cli'\n\nrun()\n"]}

package/dist/index.cjs

@@ -0,0 +1,14 @@
+'use strict';
+
+var core = require('@attest-it/core');
+
+
+
+Object.keys(core).forEach(function (k) {
+	if (k !== 'default' && !Object.prototype.hasOwnProperty.call(exports, k)) Object.defineProperty(exports, k, {
+		enumerable: true,
+		get: function () { return core[k]; }
+	});
+});
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.cjs","sourcesContent":[]}

package/dist/index.d.cts

@@ -0,0 +1 @@
+export * from '@attest-it/core';

package/dist/index.d.ts

@@ -0,0 +1 @@
+export * from '@attest-it/core';

package/dist/index.js

@@ -0,0 +1,3 @@
+export * from '@attest-it/core';
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"names":[],"mappings":"","file":"index.js","sourcesContent":[]}

package/package.json

@@ -0,0 +1,59 @@
+{
+  "name": "attest-it",
+  "description": "Human-gated test attestation system with cryptographic signing",
+  "version": "0.0.1",
+  "author": "Mike North <michael.l.north@gmail.com>",
+  "bin": {
+    "attest-it": "./dist/bin/attest-it.js"
+  },
+  "dependencies": {
+    "@attest-it/cli": "workspace:*",
+    "@attest-it/core": "workspace:*"
+  },
+  "devDependencies": {
+    "@microsoft/api-extractor": "^7.55.2",
+    "@types/node": "~22.19.3",
+    "tsup": "^8.3.5",
+    "typescript": "5.8.3"
+  },
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/index.d.ts",
+        "default": "./dist/index.js"
+      },
+      "require": {
+        "types": "./dist/index.d.cts",
+        "default": "./dist/index.cjs"
+      }
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "keywords": [
+    "attestation",
+    "ci",
+    "cryptographic-signing",
+    "human-in-the-loop",
+    "testing",
+    "verification"
+  ],
+  "license": "MIT",
+  "main": "./dist/index.js",
+  "repository": "attest-it/attest-it",
+  "scripts": {
+    "build": "tsup && declaration-file-normalizer dist/index.d.ts",
+    "check": "pnpm run check:api-report && pnpm run check:eslint && pnpm run check:types",
+    "check:api-report": "api-extractor run",
+    "check:eslint": "eslint src bin",
+    "check:types": "tsc --noEmit",
+    "generate:api-report": "api-extractor run --local",
+    "prepublishOnly": "pnpm run build"
+  },
+  "type": "module",
+  "types": "./dist/index.d.ts"
+}