npm - multimodel-dev-os - Versions diffs - 3.1.0 → 3.5.0 - Mend

multimodel-dev-os 3.1.0 → 3.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

package/.ai/policies/registry-policy.yaml +29 -1
package/.ai/registries/trusted-keys.yaml +12 -0
package/.ai/schema/registry-manifest.schema.json +31 -2
package/.ai/schema/registry-policy.schema.json +37 -1
package/.ai/schema/trusted-keys.schema.json +69 -0
package/AGENTS.md +22 -26
package/MEMORY.md +34 -11
package/README.md +2 -1
package/RUNBOOK.md +28 -36
package/TASKS.md +15 -5
package/bin/multimodel-dev-os.js +1366 -548
package/docs/.vitepress/config.js +3 -1
package/docs/architecture.md +3 -1
package/docs/index.md +5 -5
package/docs/npm-publishing.md +5 -5
package/docs/package-safety.md +17 -0
package/docs/public/llms-full.txt +5 -1
package/docs/public/llms.txt +6 -1
package/docs/public/sitemap.xml +15 -0
package/docs/registry-policy.md +29 -1
package/docs/registry-security.md +73 -6
package/docs/registry-signing.md +70 -0
package/docs/registry-sync.md +5 -2
package/docs/registry-trust-store.md +66 -0
package/docs/release-policy.md +6 -5
package/docs/security-threat-model.md +96 -0
package/docs/testing.md +25 -2
package/docs/trusted-registries.md +1 -1
package/docs/v3-roadmap.md +17 -6
package/docs/v3.5.0-readiness.md +46 -0
package/package.json +5 -2
package/scripts/build-cli.js +45 -3
package/scripts/check-build-fresh.js +52 -0
package/scripts/install.ps1 +1 -1
package/scripts/install.sh +1 -1
package/scripts/verify.js +327 -14
package/scripts/verify.sh +10 -0
package/src/catalog/loader.js +117 -0
package/src/cli/args.js +118 -0
package/src/cli/help.js +60 -0
package/src/cli/main.js +6263 -0
package/src/core/globals.js +52 -0
package/src/core/hashes.js +15 -0
package/src/core/policy.js +44 -0
package/src/core/security.js +61 -0
package/src/core/yaml.js +136 -0
package/src/plugin/manifest.js +95 -0
package/src/registry/provenance.js +114 -0
package/src/registry/signing.js +392 -0
package/src/registry/sources.js +40 -0
package/src/registry/trust-store.js +41 -0
package/src/registry/validation.js +45 -0
package/src/registry/verdict.js +51 -0
package/tests/README.md +37 -0
package/tests/fixtures/README.md +22 -0
package/tests/fixtures/custom-template-example/README.md +10 -0
package/tests/fixtures/proposals/approved-append-line.md +28 -0
package/tests/fixtures/proposals/approved-create-file.md +29 -0
package/tests/fixtures/proposals/approved-replace-text.md +30 -0
package/tests/fixtures/proposals/existing-create-file-no-overwrite.md +29 -0
package/tests/fixtures/proposals/no-operations.md +18 -0
package/tests/fixtures/proposals/path-traversal.md +29 -0
package/tests/fixtures/proposals/pending-proposal.md +29 -0
package/tests/fixtures/proposals/protected-path.md +29 -0
package/tests/fixtures/proposals/replace-multiple-without-allow.md +30 -0
package/tests/fixtures/registry-overrides/README.md +20 -0
package/tests/fixtures/signed-registries/README.md +4 -0
package/tests/fixtures/signed-registries/revoked-key/catalog.yaml +8 -0
package/tests/fixtures/signed-registries/revoked-key/expected-verdict.json +7 -0
package/tests/fixtures/signed-registries/revoked-key/registry-manifest.yaml +14 -0
package/tests/fixtures/signed-registries/tampered-manifest/catalog.yaml +8 -0
package/tests/fixtures/signed-registries/tampered-manifest/expected-verdict.json +7 -0
package/tests/fixtures/signed-registries/tampered-manifest/registry-manifest.yaml +14 -0
package/tests/fixtures/signed-registries/trusted-keys.yaml +23 -0
package/tests/fixtures/signed-registries/unsigned-remote-required/catalog.yaml +8 -0
package/tests/fixtures/signed-registries/unsigned-remote-required/expected-verdict.json +7 -0
package/tests/fixtures/signed-registries/unsigned-remote-required/registry-manifest.yaml +9 -0
package/tests/fixtures/signed-registries/unsupported-algorithm/catalog.yaml +8 -0
package/tests/fixtures/signed-registries/unsupported-algorithm/expected-verdict.json +7 -0
package/tests/fixtures/signed-registries/unsupported-algorithm/registry-manifest.yaml +14 -0
package/tests/fixtures/signed-registries/valid-signed-registry/catalog.yaml +8 -0
package/tests/fixtures/signed-registries/valid-signed-registry/expected-verdict.json +7 -0
package/tests/fixtures/signed-registries/valid-signed-registry/registry-manifest.yaml +14 -0
package/tests/fixtures/signed-registries/wrong-key/catalog.yaml +8 -0
package/tests/fixtures/signed-registries/wrong-key/expected-verdict.json +7 -0
package/tests/fixtures/signed-registries/wrong-key/registry-manifest.yaml +14 -0
package/tests/smoke/README.md +37 -0
package/tests/smoke/cli-smoke.md +49 -0
package/tests/unit/build-output.test.js +40 -0
package/tests/unit/catalog-loader.test.js +44 -0
package/tests/unit/path-safety.test.js +62 -0
package/tests/unit/plugin-manifest.test.js +94 -0
package/tests/unit/prepublish-guard.test.js +35 -0
package/tests/unit/registry-e2e-signature-fixtures.test.js +288 -0
package/tests/unit/registry-policy.test.js +52 -0
package/tests/unit/registry-provenance.test.js +185 -0
package/tests/unit/registry-public-signing.test.js +109 -0
package/tests/unit/registry-signature-policy.test.js +100 -0
package/tests/unit/registry-signing.test.js +193 -0
package/tests/unit/registry-trust-store.test.js +133 -0
package/tests/unit/registry-url-validation.test.js +64 -0
package/tests/unit/yaml.test.js +92 -0

package/tests/unit/registry-trust-store.test.js ADDED Viewed

@@ -0,0 +1,133 @@
+import { describe, it, expect, beforeAll, afterAll } from 'vitest';
+import { existsSync, mkdirSync, rmSync, writeFileSync } from 'fs';
+import { join } from 'path';
+import { loadTrustedKeys } from '../../src/registry/trust-store.js';
+import { verifySignatureBlock } from '../../src/registry/signing.js';
+const tempDir = join(process.cwd(), 'temp-trust-store-test');
+describe('Registry Trust Store — loadTrustedKeys', () => {
+  beforeAll(() => {
+    mkdirSync(join(tempDir, '.ai', 'registries'), { recursive: true });
+  });
+  afterAll(() => {
+    if (existsSync(tempDir)) {
+      rmSync(tempDir, { recursive: true, force: true });
+    }
+  });
+  it('returns empty array when no trusted-keys.yaml exists', () => {
+    const noKeysDir = join(tempDir, 'no-keys-dir');
+    mkdirSync(noKeysDir, { recursive: true });
+    const result = loadTrustedKeys(noKeysDir);
+    expect(result).toEqual([]);
+  });
+  it('returns parsed trusted keys list when trusted-keys.yaml exists', () => {
+    const yamlContent = `
+trusted_publishers:
+  - key_id: official-key
+    name: Official Maintainer
+    algorithm: ed25519
+    public_key: "-----BEGIN PUBLIC KEY-----\\n..."
+    scopes:
+      - registry
+    status: active
+`;
+    writeFileSync(join(tempDir, '.ai', 'registries', 'trusted-keys.yaml'), yamlContent, 'utf8');
+    const result = loadTrustedKeys(tempDir);
+    expect(result).toHaveLength(1);
+    expect(result[0].key_id).toBe('official-key');
+    expect(result[0].name).toBe('Official Maintainer');
+  });
+});
+describe('Registry Trust Store — Status & Scope Validation', () => {
+  const trustedKeys = [
+    {
+      key_id: 'active-key',
+      name: 'Active Key',
+      algorithm: 'ed25519',
+      public_key: 'MCowBQYDK2VwAyEA9vWwyE5+fY0dvEzl9S1UcvtoMkOAIDhDCzZAkP+CVNo=',
+      scopes: ['registry'],
+      status: 'active'
+    },
+    {
+      key_id: 'disabled-key',
+      name: 'Disabled Key',
+      algorithm: 'ed25519',
+      public_key: 'MCowBQYDK2VwAyEA9vWwyE5+fY0dvEzl9S1UcvtoMkOAIDhDCzZAkP+CVNo=',
+      scopes: ['registry'],
+      status: 'disabled'
+    },
+    {
+      key_id: 'revoked-key',
+      name: 'Revoked Key',
+      algorithm: 'ed25519',
+      public_key: 'MCowBQYDK2VwAyEA9vWwyE5+fY0dvEzl9S1UcvtoMkOAIDhDCzZAkP+CVNo=',
+      scopes: ['registry'],
+      status: 'revoked'
+    },
+    {
+      key_id: 'wrong-scope-key',
+      name: 'Wrong Scope Key',
+      algorithm: 'ed25519',
+      public_key: 'MCowBQYDK2VwAyEA9vWwyE5+fY0dvEzl9S1UcvtoMkOAIDhDCzZAkP+CVNo=',
+      scopes: ['other'],
+      status: 'active'
+    }
+  ];
+  const manifestTemplate = {
+    registry_name: 'test-registry',
+    publisher: 'Test Publisher',
+    version: '1.0.0',
+    catalog_hash: 'sha256:abc',
+    signature: {
+      algorithm: 'ed25519',
+      key_id: 'active-key',
+      signature: 'sig',
+      signed_fields: ['registry_name', 'version', 'catalog_hash']
+    }
+  };
+  it('fails verification if key is disabled', () => {
+    const manifest = {
+      ...manifestTemplate,
+      signature: {
+        ...manifestTemplate.signature,
+        key_id: 'disabled-key'
+      }
+    };
+    const res = verifySignatureBlock({ manifest, trustedKeys });
+    expect(res.verified).toBe(false);
+    expect(res.errors[0]).toContain('must be active');
+  });
+  it('fails verification if key is revoked', () => {
+    const manifest = {
+      ...manifestTemplate,
+      signature: {
+        ...manifestTemplate.signature,
+        key_id: 'revoked-key'
+      }
+    };
+    const res = verifySignatureBlock({ manifest, trustedKeys });
+    expect(res.verified).toBe(false);
+    expect(res.errors[0]).toContain('must be active');
+  });
+  it('fails verification if scope does not include registry or catalog', () => {
+    const manifest = {
+      ...manifestTemplate,
+      signature: {
+        ...manifestTemplate.signature,
+        key_id: 'wrong-scope-key'
+      }
+    };
+    const res = verifySignatureBlock({ manifest, trustedKeys });
+    expect(res.verified).toBe(false);
+    expect(res.errors[0]).toContain('does not have required scope');
+  });
+});

package/tests/unit/registry-url-validation.test.js ADDED Viewed

@@ -0,0 +1,64 @@
+import { describe, it, expect } from 'vitest';
+import { validateRegistryUrl } from '../../src/registry/validation.js';
+describe('Registry URL Validation', () => {
+  it('should accept valid HTTPS URLs', () => {
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml')).not.toThrow();
+    expect(() => validateRegistryUrl('https://raw.githubusercontent.com/user/repo/main/catalog.yaml')).not.toThrow();
+  });
+  it('should reject empty or non-string URLs', () => {
+    expect(() => validateRegistryUrl(null)).toThrow('Registry URL must be a non-empty string.');
+    expect(() => validateRegistryUrl('')).toThrow('Registry URL must be a non-empty string.');
+    expect(() => validateRegistryUrl(123)).toThrow('Registry URL must be a non-empty string.');
+  });
+  it('should reject URLs with whitespace or control characters', () => {
+    expect(() => validateRegistryUrl('https://example.com/cat alog.yaml')).toThrow('whitespace or control characters');
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml\n')).toThrow('whitespace or control characters');
+  });
+  it('should reject URLs containing quotes or backticks', () => {
+    expect(() => validateRegistryUrl("https://example.com/catalog.yaml'")).toThrow('quotes or backticks');
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml"')).toThrow('quotes or backticks');
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml`')).toThrow('quotes or backticks');
+  });
+  it('should reject URLs containing shell metacharacters', () => {
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml;echo')).toThrow('shell metacharacters');
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml&foo')).toThrow('shell metacharacters');
+    expect(() => validateRegistryUrl('https://example.com/catalog.yaml$foo')).toThrow('shell metacharacters');
+  });
+  it('should reject malformed URLs', () => {
+    expect(() => validateRegistryUrl('not-a-url')).toThrow('malformed or invalid');
+  });
+  it('should reject URLs containing credentials', () => {
+    expect(() => validateRegistryUrl('https://user:password@example.com/catalog.yaml')).toThrow('credentials');
+    expect(() => validateRegistryUrl('https://user@example.com/catalog.yaml')).toThrow('credentials');
+  });
+  it('should reject non-HTTPS remote URLs by default', () => {
+    expect(() => validateRegistryUrl('http://example.com/catalog.yaml')).toThrow('Only HTTPS is permitted');
+    expect(() => validateRegistryUrl('ftp://example.com/catalog.yaml')).toThrow('Only HTTPS is permitted');
+  });
+  describe('Localhost HTTP Allowance', () => {
+    it('should reject HTTP localhost by default', () => {
+      expect(() => validateRegistryUrl('http://localhost/catalog.yaml')).toThrow('Only HTTPS is permitted');
+      expect(() => validateRegistryUrl('http://127.0.0.1/catalog.yaml')).toThrow('Only HTTPS is permitted');
+    });
+    it('should allow HTTP localhost if policy explicitly allows it', () => {
+      const policy = { allow_http_localhost: true };
+      expect(() => validateRegistryUrl('http://localhost/catalog.yaml', policy)).not.toThrow();
+      expect(() => validateRegistryUrl('http://127.0.0.1/catalog.yaml', policy)).not.toThrow();
+    });
+    it('should still reject HTTP non-localhost even if policy allows HTTP localhost', () => {
+      const policy = { allow_http_localhost: true };
+      expect(() => validateRegistryUrl('http://example.com/catalog.yaml', policy)).toThrow('Only HTTPS is permitted');
+    });
+  });
+});

package/tests/unit/yaml.test.js ADDED Viewed

@@ -0,0 +1,92 @@
+import { describe, it, expect } from 'vitest';
+import { parseYaml, parseFlowArray } from '../../src/core/yaml.js';
+describe('YAML Parser', () => {
+  describe('parseFlowArray', () => {
+    it('should parse standard flow arrays', () => {
+      expect(parseFlowArray('[a, b, c]')).toEqual(['a', 'b', 'c']);
+      expect(parseFlowArray('["a", \'b\', c]')).toEqual(['a', 'b', 'c']);
+      expect(parseFlowArray('[true, false, null, 123, -45]')).toEqual([true, false, null, 123, -45]);
+    });
+    it('should handle empty flow array', () => {
+      expect(parseFlowArray('[]')).toEqual([]);
+    });
+  });
+  describe('parseYaml', () => {
+    it('should parse basic key-value pairs', () => {
+      const yaml = `
+        name: test-plugin
+        version: "1.0.0"
+        enabled: true
+        count: 42
+      `;
+      const result = parseYaml(yaml);
+      expect(result).toEqual({
+        name: 'test-plugin',
+        version: '1.0.0',
+        enabled: true,
+        count: 42
+      });
+    });
+    it('should ignore comments', () => {
+      const yaml = `
+        # This is a comment
+        name: test-plugin # trailing comment
+        version: '1.0.0'
+      `;
+      const result = parseYaml(yaml);
+      expect(result).toEqual({
+        name: 'test-plugin',
+        version: '1.0.0'
+      });
+    });
+    it('should not treat comments inside quoted strings as comments', () => {
+      const yaml = `
+        name: "test # plugin"
+        description: 'simple # description'
+      `;
+      const result = parseYaml(yaml);
+      expect(result).toEqual({
+        name: 'test # plugin',
+        description: 'simple # description'
+      });
+    });
+    it('should parse nested objects', () => {
+      const yaml = `
+        meta:
+          name: test
+          slug: test-slug
+      `;
+      const result = parseYaml(yaml);
+      expect(result).toEqual({
+        meta: {
+          name: 'test',
+          slug: 'test-slug'
+        }
+      });
+    });
+    it('should parse list arrays', () => {
+      const yaml = `
+        items:
+          - one
+          - "two"
+          - three
+      `;
+      const result = parseYaml(yaml);
+      expect(result).toEqual({
+        items: ['one', 'two', 'three']
+      });
+    });
+    it('should return empty object on malformed YAML', () => {
+      const result = parseYaml(null);
+      expect(result).toEqual({});
+    });
+  });
+});