npm - kayto_ts - Versions diffs - 0.1.0 → 0.1.2 - Mend

kayto_ts 0.1.0 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -1,5 +1,7 @@
 # kayto_ts
+[📦 npm: kayto_ts](https://www.npmjs.com/package/kayto_ts)
 🚀 Build robust API integrations faster with `kayto_ts`.
 - 🔒 End-to-end type safety for `method + path + params + body + response`

package/package.json CHANGED Viewed

@@ -1,14 +1,16 @@
 {
   "name": "kayto_ts",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "description": "Type-safe HTTP client and CLI wrapper for generating and using schemas with kayto.",
+  "repository": "https://github.com/vladislav-yemelyanov/kayto_ts",
+  "homepage": "https://www.npmjs.com/package/kayto_ts",
   "module": "src/index.ts",
   "type": "module",
   "bin": {
     "kayto": "./bin/kayto.mjs"
   },
   "scripts": {
-    "postinstall": "bun ./scripts/postinstall.mjs || node ./scripts/postinstall.mjs",
+    "postinstall": "node ./scripts/postinstall.mjs",
     "test": "bun test"
   },
   "devDependencies": {

package/publish.sh ADDED Viewed

@@ -0,0 +1,10 @@
+#!/usr/bin/env bash
+set -euo pipefail
+cd "$(dirname "$0")"
+npm version patch --no-git-tag-version
+git add .
+git commit -m "upgrade"
+git push
+npm publish

package/scripts/postinstall.mjs CHANGED Viewed

@@ -9,7 +9,6 @@ import {
   rmSync,
   writeFileSync,
 } from "node:fs";
-import { createHash } from "node:crypto";
 import { arch, platform } from "node:os";
 import { dirname, join } from "node:path";
 import { fileURLToPath } from "node:url";
@@ -61,17 +60,6 @@ function validateInputs() {
       ],
     );
   }
-  const checksum = process.env.KAYTO_SHA256?.trim();
-  if (checksum && !/^[a-fA-F0-9]{64}$/.test(checksum)) {
-    throw userError(
-      "KAYTO_SHA256 must be a 64-character hex SHA-256 string.",
-      [
-        "Use checksum format like: e3b0c44298fc1c149afbf4c8996fb924...",
-        "Unset KAYTO_SHA256 to auto-resolve checksum from release files.",
-      ],
-    );
-  }
 }
 function getTarget() {
@@ -168,33 +156,6 @@ function findBinaryRecursive(startDir, binaryName) {
   return null;
 }
-async function fetchText(url) {
-  let response;
-  try {
-    response = await fetch(url, {
-      headers: {
-        "User-Agent": "kayto_ts-postinstall",
-        Accept: "application/json, text/plain, application/octet-stream",
-      },
-    });
-  } catch (error) {
-    throw userError(`Network error while requesting ${url}.`, [
-      "Check internet access and DNS settings.",
-      "If you are behind proxy, configure proxy for Node.js/npm.",
-      `Original error: ${error instanceof Error ? error.message : String(error)}`,
-    ]);
-  }
-  if (!response.ok) {
-    throw userError(`Request failed (${response.status}) ${url}`, [
-      "Verify repository/tag/checksum file exists in GitHub release.",
-      "If GitHub is rate-limited, retry later or use authenticated network.",
-    ]);
-  }
-  return response.text();
-}
 async function resolveVersionInput() {
   if (versionInputRaw) {
     return versionInputRaw;
@@ -264,110 +225,6 @@ async function downloadFile(url, outFile) {
   writeFileSync(outFile, Buffer.from(arrayBuffer));
 }
-function sha256Hex(filePath) {
-  return createHash("sha256").update(readFileSync(filePath)).digest("hex");
-}
-function parseSha256Text(text, archiveName) {
-  const normalized = text.trim().toLowerCase();
-  const direct = normalized.match(/^[a-f0-9]{64}$/);
-  if (direct) {
-    return direct[0];
-  }
-  const lines = text.split(/\r?\n/);
-  for (const line of lines) {
-    const match = line.trim().match(/^([a-fA-F0-9]{64})\s+\*?(.+)$/);
-    if (!match) {
-      continue;
-    }
-    const fileName = match[2].trim();
-    if (fileName === archiveName) {
-      return match[1].toLowerCase();
-    }
-  }
-  return null;
-}
-async function resolveExpectedSha256(repoName, tag, archiveName) {
-  const base = `https://github.com/${repoName}/releases/download/${tag}`;
-  const directCandidates = [
-    `${base}/${archiveName}.sha256`,
-    `${base}/${archiveName}.sha256.txt`,
-  ];
-  for (const url of directCandidates) {
-    try {
-      const text = await fetchText(url);
-      const value = parseSha256Text(text, archiveName);
-      if (value) {
-        return { value, source: url };
-      }
-    } catch {
-    }
-  }
-  const checksumFileCandidates = [
-    "checksums.txt",
-    "sha256sums.txt",
-    "SHA256SUMS",
-    "SHA256SUMS.txt",
-  ];
-  for (const fileName of checksumFileCandidates) {
-    const url = `${base}/${fileName}`;
-    try {
-      const text = await fetchText(url);
-      const value = parseSha256Text(text, archiveName);
-      if (value) {
-        return { value, source: url };
-      }
-    } catch {
-    }
-  }
-  return null;
-}
-async function verifyArchiveChecksum(archivePath, archiveName, resolvedTag) {
-  if (process.env.KAYTO_SKIP_CHECKSUM === "1") {
-    console.warn("[kayto_ts] checksum verification is disabled via KAYTO_SKIP_CHECKSUM=1");
-    return;
-  }
-  const expectedFromEnv = process.env.KAYTO_SHA256?.trim().toLowerCase();
-  let expected = expectedFromEnv;
-  let source = "KAYTO_SHA256";
-  if (!expected) {
-    const resolved = await resolveExpectedSha256(repo, resolvedTag, archiveName);
-    if (!resolved) {
-      throw userError(`Could not resolve SHA-256 for ${archiveName}.`, [
-        `Publish checksum files in release ${resolvedTag} (e.g. checksums.txt).`,
-        "Or provide checksum explicitly via KAYTO_SHA256.",
-        "Or set KAYTO_SKIP_CHECKSUM=1 to bypass verification (not recommended).",
-      ]);
-    }
-    expected = resolved.value;
-    source = resolved.source;
-  }
-  const actual = sha256Hex(archivePath);
-  if (actual !== expected) {
-    throw userError(`Checksum mismatch for ${archiveName}.`, [
-      `Expected: ${expected} (${source})`,
-      `Actual:   ${actual}`,
-      "Re-run install with KAYTO_FORCE_INSTALL=1 to re-download archive.",
-      "If mismatch persists, verify release integrity and network/proxy behavior.",
-    ]);
-  }
-  console.log(`[kayto_ts] verified SHA-256 for ${archiveName} (${source})`);
-}
 function extractArchive(archivePath, outDir, ext) {
   if (ext === "tar.gz") {
     const tar = spawnSync("tar", ["-xzf", archivePath, "-C", outDir], {
@@ -502,10 +359,9 @@ async function main() {
     );
     console.log(
-      `[kayto_ts] downloaded kayto-${resolvedAssetVersion}-${target}.${ext} (tag ${resolvedTag})`,
+      `[kayto_ts] downloaded ${archiveName} (tag ${resolvedTag})`,
     );
-    await verifyArchiveChecksum(archivePath, archiveName, resolvedTag);
     extractArchive(archivePath, tmpDir, ext);
     const extractedBinary = findBinaryRecursive(tmpDir, binaryName);