koishi-plugin-github-webhook-pusher 0.0.7 → 0.0.9

package/lib/pusher.js

@@ -0,0 +1,128 @@
+"use strict";
+/**
+ * 消息推送器
+ * 需求: 5.1, 5.2, 5.6, 5.7
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.queryTargets = queryTargets;
+exports.pushWithConcurrency = pushWithConcurrency;
+exports.pushMessage = pushMessage;
+exports.pushEvent = pushEvent;
+const koishi_1 = require("koishi");
+const subscription_1 = require("./repository/subscription");
+const message_1 = require("./message");
+const logger = new koishi_1.Logger('github-webhook-pusher');
+/**
+ * 查询订阅目标
+ * 需求 5.1: 查询所有订阅该仓库的目标会话
+ * 需求 5.2: 根据订阅的事件类型过滤目标
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @param eventType 事件类型
+ * @returns 推送目标列表
+ */
+async function queryTargets(ctx, repo, eventType) {
+    return (0, subscription_1.queryTargets)(ctx, repo, eventType);
+}
+/**
+ * 发送消息到单个目标
+ * @param ctx Koishi 上下文
+ * @param target 推送目标
+ * @param message 消息内容
+ * @returns 推送结果
+ */
+async function sendMessage(ctx, target, message) {
+    try {
+        // 获取对应平台的 bot
+        const bot = ctx.bots.find(b => b.platform === target.platform);
+        if (!bot) {
+            throw new Error(`未找到平台 ${target.platform} 的 bot`);
+        }
+        // 发送消息到目标频道
+        await bot.sendMessage(target.channelId, message, target.guildId);
+        return { target, success: true };
+    }
+    catch (error) {
+        return {
+            target,
+            success: false,
+            error: error instanceof Error ? error : new Error(String(error))
+        };
+    }
+}
+/**
+ * 并发推送消息到多个目标
+ * 需求 5.6: 使用 Promise.allSettled 并发推送并限制并发数
+ * 需求 5.7: 推送失败记录错误日志但不影响其他目标的推送
+ * @param ctx Koishi 上下文
+ * @param targets 推送目标列表
+ * @param message 消息内容
+ * @param concurrency 并发数限制
+ * @returns 推送结果列表
+ */
+async function pushWithConcurrency(ctx, targets, message, concurrency) {
+    if (targets.length === 0) {
+        return [];
+    }
+    const results = [];
+    const queue = [...targets];
+    // 创建工作协程
+    const workers = Array(Math.min(concurrency, queue.length))
+        .fill(null)
+        .map(async () => {
+        while (queue.length > 0) {
+            const target = queue.shift();
+            if (!target)
+                break;
+            const result = await sendMessage(ctx, target, message);
+            results.push(result);
+            // 需求 5.7: 推送失败记录错误日志但不影响其他目标
+            if (!result.success && result.error) {
+                logger.error(`推送失败 [${target.platform}:${target.channelId}]: ${result.error.message}`);
+            }
+        }
+    });
+    await Promise.all(workers);
+    return results;
+}
+/**
+ * 推送消息到所有订阅目标
+ * @param ctx Koishi 上下文
+ * @param event 解析后的事件
+ * @param concurrency 并发数限制
+ * @returns 推送结果列表
+ */
+async function pushMessage(ctx, event, concurrency = 5) {
+    // 查询订阅目标
+    const targets = await queryTargets(ctx, event.repo, event.type);
+    if (targets.length === 0) {
+        logger.debug(`仓库 ${event.repo} 的 ${event.type} 事件没有订阅目标`);
+        return [];
+    }
+    logger.info(`准备推送 ${event.type} 事件到 ${targets.length} 个目标`);
+    // 构建消息
+    const message = (0, message_1.buildMessage)(event);
+    // 并发推送
+    const results = await pushWithConcurrency(ctx, targets, message, concurrency);
+    // 统计结果
+    const successCount = results.filter(r => r.success).length;
+    const failCount = results.filter(r => !r.success).length;
+    logger.info(`推送完成: 成功 ${successCount}, 失败 ${failCount}`);
+    return results;
+}
+/**
+ * 推送事件（完整流程）
+ * 整合事件解析、消息构建和推送
+ * @param ctx Koishi 上下文
+ * @param event 解析后的事件
+ * @param concurrency 并发数限制
+ * @returns 推送结果
+ */
+async function pushEvent(ctx, event, concurrency = 5) {
+    const results = await pushMessage(ctx, event, concurrency);
+    return {
+        pushed: results.filter(r => r.success).length,
+        failed: results.filter(r => !r.success).length,
+        results,
+    };
+}

package/lib/repository/delivery.js

@@ -0,0 +1,63 @@
+"use strict";
+/**
+ * 投递记录数据访问层
+ * 需求: 1.6
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.recordDelivery = recordDelivery;
+exports.isDelivered = isDelivered;
+exports.getDelivery = getDelivery;
+exports.cleanupDeliveries = cleanupDeliveries;
+/**
+ * 记录投递
+ * 需求 1.6: 记录 Delivery ID 用于去重
+ * @param ctx Koishi 上下文
+ * @param deliveryId GitHub Delivery ID
+ * @param repo 仓库名 (owner/repo)
+ * @param event 事件类型
+ * @returns 创建的投递记录
+ */
+async function recordDelivery(ctx, deliveryId, repo, event) {
+    const now = new Date();
+    await ctx.database.create('github_deliveries', {
+        deliveryId,
+        repo,
+        event,
+        receivedAt: now,
+    });
+    const [created] = await ctx.database.get('github_deliveries', { deliveryId });
+    return created;
+}
+/**
+ * 检查是否已投递
+ * 需求 1.6: 检查 Delivery ID 是否已处理过，用于去重
+ * @param ctx Koishi 上下文
+ * @param deliveryId GitHub Delivery ID
+ * @returns 是否已投递
+ */
+async function isDelivered(ctx, deliveryId) {
+    const deliveries = await ctx.database.get('github_deliveries', { deliveryId });
+    return deliveries.length > 0;
+}
+/**
+ * 获取投递记录
+ * @param ctx Koishi 上下文
+ * @param deliveryId GitHub Delivery ID
+ * @returns 投递记录，不存在返回 null
+ */
+async function getDelivery(ctx, deliveryId) {
+    const deliveries = await ctx.database.get('github_deliveries', { deliveryId });
+    return deliveries.length > 0 ? deliveries[0] : null;
+}
+/**
+ * 清理旧的投递记录
+ * @param ctx Koishi 上下文
+ * @param beforeDate 清理此日期之前的记录
+ * @returns 清理的记录数
+ */
+async function cleanupDeliveries(ctx, beforeDate) {
+    const result = await ctx.database.remove('github_deliveries', {
+        receivedAt: { $lt: beforeDate },
+    });
+    return result.removed ?? 0;
+}

package/lib/repository/index.js

@@ -0,0 +1,22 @@
+"use strict";
+/**
+ * 数据访问层导出
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./trust"), exports);
+__exportStar(require("./subscription"), exports);
+__exportStar(require("./delivery"), exports);

package/lib/repository/subscription.js

@@ -0,0 +1,187 @@
+"use strict";
+/**
+ * 订阅数据访问层
+ * 需求: 3.1-3.7, 5.1, 5.2
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createSubscription = createSubscription;
+exports.removeSubscription = removeSubscription;
+exports.listSubscriptions = listSubscriptions;
+exports.getSubscription = getSubscription;
+exports.updateEvents = updateEvents;
+exports.queryTargets = queryTargets;
+exports.getRepoSubscriptions = getRepoSubscriptions;
+exports.enableSubscription = enableSubscription;
+exports.disableSubscription = disableSubscription;
+/**
+ * 创建订阅
+ * 需求 3.1: 为当前会话创建订阅记录
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @param repo 仓库名 (owner/repo)
+ * @param defaultEvents 默认事件列表
+ * @returns 创建的订阅记录
+ */
+async function createSubscription(ctx, session, repo, defaultEvents) {
+    const now = new Date();
+    // 检查是否已存在
+    const existing = await ctx.database.get('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    });
+    if (existing.length > 0) {
+        return existing[0];
+    }
+    await ctx.database.create('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        guildId: session.guildId || '',
+        userId: session.userId || '',
+        repo,
+        events: defaultEvents,
+        enabled: true,
+        createdAt: now,
+        updatedAt: now,
+    });
+    const [created] = await ctx.database.get('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    });
+    return created;
+}
+/**
+ * 移除订阅
+ * 需求 3.3: 移除当前会话对该仓库的订阅
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否成功移除
+ */
+async function removeSubscription(ctx, session, repo) {
+    const result = await ctx.database.remove('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    });
+    return (result.removed ?? 0) > 0;
+}
+/**
+ * 列出会话的所有订阅
+ * 需求 3.4: 显示当前会话的所有订阅及其事件设置
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @returns 订阅列表
+ */
+async function listSubscriptions(ctx, session) {
+    return ctx.database.get('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+    });
+}
+/**
+ * 获取单个订阅
+ * 需求 3.5: 显示该仓库订阅的事件类型列表
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @param repo 仓库名 (owner/repo)
+ * @returns 订阅记录，不存在返回 null
+ */
+async function getSubscription(ctx, session, repo) {
+    const subs = await ctx.database.get('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    });
+    return subs.length > 0 ? subs[0] : null;
+}
+/**
+ * 更新订阅的事件类型
+ * 需求 3.6: 根据 +/- 前缀启用或禁用对应事件类型
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @param repo 仓库名 (owner/repo)
+ * @param events 新的事件列表
+ * @returns 是否成功更新
+ */
+async function updateEvents(ctx, session, repo, events) {
+    const result = await ctx.database.set('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    }, {
+        events,
+        updatedAt: new Date(),
+    });
+    return (result.modified ?? 0) > 0;
+}
+/**
+ * 查询订阅目标
+ * 需求 5.1, 5.2: 查询所有订阅该仓库的目标会话，并根据事件类型过滤
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @param eventType 事件类型
+ * @returns 推送目标列表
+ */
+async function queryTargets(ctx, repo, eventType) {
+    // 获取所有订阅该仓库且已启用的订阅
+    const subscriptions = await ctx.database.get('github_subscriptions', {
+        repo,
+        enabled: true,
+    });
+    // 过滤出订阅了该事件类型的目标
+    return subscriptions
+        .filter(sub => sub.events.includes(eventType))
+        .map(sub => ({
+        platform: sub.platform,
+        channelId: sub.channelId,
+        guildId: sub.guildId || undefined,
+        userId: sub.userId || undefined,
+    }));
+}
+/**
+ * 获取仓库的所有订阅
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 订阅列表
+ */
+async function getRepoSubscriptions(ctx, repo) {
+    return ctx.database.get('github_subscriptions', { repo });
+}
+/**
+ * 启用订阅
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否成功启用
+ */
+async function enableSubscription(ctx, session, repo) {
+    const result = await ctx.database.set('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    }, {
+        enabled: true,
+        updatedAt: new Date(),
+    });
+    return (result.modified ?? 0) > 0;
+}
+/**
+ * 禁用订阅
+ * @param ctx Koishi 上下文
+ * @param session 会话标识
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否成功禁用
+ */
+async function disableSubscription(ctx, session, repo) {
+    const result = await ctx.database.set('github_subscriptions', {
+        platform: session.platform,
+        channelId: session.channelId,
+        repo,
+    }, {
+        enabled: false,
+        updatedAt: new Date(),
+    });
+    return (result.modified ?? 0) > 0;
+}

package/lib/repository/trust.js

@@ -0,0 +1,133 @@
+"use strict";
+/**
+ * 信任仓库数据访问层
+ * 需求: 2.1-2.7
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isValidRepoFormat = isValidRepoFormat;
+exports.addTrustedRepo = addTrustedRepo;
+exports.removeTrustedRepo = removeTrustedRepo;
+exports.listTrustedRepos = listTrustedRepos;
+exports.isTrusted = isTrusted;
+exports.isInTrustList = isInTrustList;
+exports.enableRepo = enableRepo;
+exports.disableRepo = disableRepo;
+exports.getTrustedRepo = getTrustedRepo;
+/** 仓库名格式验证正则表达式 */
+const REPO_NAME_REGEX = /^[a-zA-Z0-9_.-]+\/[a-zA-Z0-9_.-]+$/;
+/**
+ * 验证仓库名格式是否符合 owner/repo 格式
+ * @param repo 仓库名
+ * @returns 是否有效
+ */
+function isValidRepoFormat(repo) {
+    if (!repo || typeof repo !== 'string') {
+        return false;
+    }
+    return REPO_NAME_REGEX.test(repo);
+}
+/**
+ * 添加信任仓库
+ * 需求 2.1: 将仓库添加到信任列表并持久化到数据库
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 添加的仓库记录，如果格式错误返回 null
+ */
+async function addTrustedRepo(ctx, repo) {
+    if (!isValidRepoFormat(repo)) {
+        return null;
+    }
+    const now = new Date();
+    // 检查是否已存在
+    const existing = await ctx.database.get('github_trusted_repos', { repo });
+    if (existing.length > 0) {
+        return existing[0];
+    }
+    await ctx.database.create('github_trusted_repos', {
+        repo,
+        enabled: true,
+        createdAt: now,
+        updatedAt: now,
+    });
+    const [created] = await ctx.database.get('github_trusted_repos', { repo });
+    return created;
+}
+/**
+ * 移除信任仓库
+ * 需求 2.2: 从信任列表中移除该仓库
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否成功移除
+ */
+async function removeTrustedRepo(ctx, repo) {
+    const result = await ctx.database.remove('github_trusted_repos', { repo });
+    return (result.removed ?? 0) > 0;
+}
+/**
+ * 列出所有信任仓库
+ * 需求 2.3: 显示所有信任仓库及其启用状态
+ * @param ctx Koishi 上下文
+ * @returns 信任仓库列表
+ */
+async function listTrustedRepos(ctx) {
+    return ctx.database.get('github_trusted_repos', {});
+}
+/**
+ * 检查仓库是否在信任列表中且已启用
+ * 需求 2.6: 验证仓库是否可以处理事件
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否信任且启用
+ */
+async function isTrusted(ctx, repo) {
+    const repos = await ctx.database.get('github_trusted_repos', { repo, enabled: true });
+    return repos.length > 0;
+}
+/**
+ * 检查仓库是否在信任列表中（不考虑启用状态）
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否在信任列表中
+ */
+async function isInTrustList(ctx, repo) {
+    const repos = await ctx.database.get('github_trusted_repos', { repo });
+    return repos.length > 0;
+}
+/**
+ * 启用信任仓库
+ * 需求 2.4: 启用该仓库的事件处理
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否成功启用
+ */
+async function enableRepo(ctx, repo) {
+    const result = await ctx.database.set('github_trusted_repos', { repo }, {
+        enabled: true,
+        updatedAt: new Date(),
+    });
+    return (result.modified ?? 0) > 0;
+}
+/**
+ * 禁用信任仓库
+ * 需求 2.5: 禁用该仓库的事件处理
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 是否成功禁用
+ */
+async function disableRepo(ctx, repo) {
+    const result = await ctx.database.set('github_trusted_repos', { repo }, {
+        enabled: false,
+        updatedAt: new Date(),
+    });
+    return (result.modified ?? 0) > 0;
+}
+/**
+ * 获取单个信任仓库信息
+ * @param ctx Koishi 上下文
+ * @param repo 仓库名 (owner/repo)
+ * @returns 仓库信息，不存在返回 null
+ */
+async function getTrustedRepo(ctx, repo) {
+    const repos = await ctx.database.get('github_trusted_repos', { repo });
+    return repos.length > 0 ? repos[0] : null;
+}

package/lib/signature.js

@@ -0,0 +1,38 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createSignature = createSignature;
+exports.verifySignature = verifySignature;
+const crypto_1 = require("crypto");
+/**
+ * 创建 GitHub Webhook 签名
+ * @param payload 原始请求体
+ * @param secret Webhook Secret
+ * @returns 签名字符串，格式为 sha256=<hex_digest>
+ */
+function createSignature(payload, secret) {
+    const hmac = (0, crypto_1.createHmac)('sha256', secret);
+    hmac.update(payload, 'utf8');
+    return `sha256=${hmac.digest('hex')}`;
+}
+/**
+ * 验证 GitHub Webhook 签名
+ * @param payload 原始请求体
+ * @param signature X-Hub-Signature-256 头的值
+ * @param secret 配置的 Webhook Secret
+ * @returns 签名是否有效
+ */
+function verifySignature(payload, signature, secret) {
+    // 检查签名格式
+    if (!signature || !signature.startsWith('sha256=')) {
+        return false;
+    }
+    const expected = createSignature(payload, secret);
+    // 使用常量时间比较防止时序攻击
+    const sigBuffer = Buffer.from(signature);
+    const expectedBuffer = Buffer.from(expected);
+    // 长度不同时也需要进行比较以保持常量时间
+    if (sigBuffer.length !== expectedBuffer.length) {
+        return false;
+    }
+    return (0, crypto_1.timingSafeEqual)(sigBuffer, expectedBuffer);
+}

package/lib/types.js

@@ -0,0 +1,40 @@
+"use strict";
+/**
+ * 事件类型和接口定义
+ * 需求: 4.1-4.7
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EVENT_DISPLAY_MAP = void 0;
+exports.getDisplayType = getDisplayType;
+exports.getEventEmoji = getEventEmoji;
+/** 事件类型到显示名称和 emoji 的映射 */
+exports.EVENT_DISPLAY_MAP = {
+    issues: { name: 'Issue', emoji: '📌' },
+    issue_comment: { name: 'Issue Comment', emoji: '💬' },
+    release: { name: 'Release', emoji: '🚀' },
+    push: { name: 'Commit', emoji: '⬆️' },
+    pull_request: { name: 'PR', emoji: '🔀' },
+    pull_request_review: { name: 'PR Review', emoji: '🧪' },
+    pull_request_review_comment: { name: 'PR Review Comment', emoji: '💬' },
+    star: { name: 'Star', emoji: '⭐' },
+    fork: { name: 'Fork', emoji: '🍴' },
+    create: { name: 'Create', emoji: '✨' },
+    delete: { name: 'Delete', emoji: '🗑️' },
+    workflow_run: { name: 'Workflow', emoji: '🧩' },
+};
+/**
+ * 获取事件类型的显示名称
+ * @param type 事件类型
+ * @returns 显示名称
+ */
+function getDisplayType(type) {
+    return exports.EVENT_DISPLAY_MAP[type].name;
+}
+/**
+ * 获取事件类型的 emoji
+ * @param type 事件类型
+ * @returns emoji 字符
+ */
+function getEventEmoji(type) {
+    return exports.EVENT_DISPLAY_MAP[type].emoji;
+}