multimodel-dev-os 3.1.0 → 3.5.0

package/docs/testing.md

@@ -1,4 +1,4 @@
-# MultiModel Dev OS — Testing Guide (v3.1.0+)
+# MultiModel Dev OS — Testing Guide (v3.5.0+)
 
 This document outlines the testing strategy, tools, and execution processes for MultiModel Dev OS.
 
@@ -64,6 +64,19 @@ npm test
    - Asserts that publishing blocks without `MMDO_ALLOW_PUBLISH=true`.
    - Permits stable major versions >= 2.
 
+7. **Registry Public-Key Signing (`tests/unit/registry-public-signing.test.js`)**
+   - Ed25519 keypair generation and format verification.
+   - Public-key signature creation, encoding, and verification checks.
+   - Canonical payload generation determinism and nested object sorting.
+
+8. **Registry Trust Store (`tests/unit/registry-trust-store.test.js`)**
+   - Loading trusted publisher key records from YAML.
+   - Strict verification of publisher active status, algorithm, and allowed scopes.
+
+9. **Registry Signature Policy (`tests/unit/registry-signature-policy.test.js`)**
+   - Enforcement of unsigned registry permissions (local, bundled, remote).
+   - Enforcing allowed signature algorithms and trusted publisher requirements.
+
 ---
 
 ## 3. Tier 2: Release Verification Audit
@@ -114,10 +127,20 @@ To ensure the npm package functions flawlessly after installation, we run a loca
    ```
 3. **Install the generated tarball locally**:
    ```bash
-   npm install F:\multimodel-dev-os\multimodel-dev-os-3.1.0.tgz --no-audit --no-fund
+   npm install F:\multimodel-dev-os\multimodel-dev-os-3.5.0.tgz --no-audit --no-fund
    ```
 4. **Validate npx invocation**:
    ```bash
    npx multimodel-dev-os --help
    npx multimodel-dev-os doctor
    ```
+
+---
+
+## 6. Maintainer Guidelines
+
+For contributors and maintainers modifying the codebase:
+1. **Always edit source modules** located under `src/`. Do NOT make manual edits to `bin/multimodel-dev-os.js` directly, as it will be overwritten during compilation.
+2. **Execute the build script** via `npm run build` after completing modifications to compile the single-file binary.
+3. **Execute Vitest unit tests** (`npm test`) to ensure all core modules pass verification gates in isolation.
+4. **Execute release verification** (`npm run verify`) to run the strict verification pipeline (250+ assertions check compiled binary, folder layouts, sitemaps, etc.).

package/docs/trusted-registries.md

@@ -56,7 +56,7 @@ To guarantee that remote catalogs have not been tampered with in transit, the re
 1. **Manifest File (`manifest.json`):** Every verified remote registry publishes a manifest file containing a map of all relative files in the catalog and their expected SHA256 checksums.
 2. **SHA256 Verification:** During `registry sync`, the client downloads the manifest and computes the SHA256 hash of all retrieved assets.
 3. **Local Audit:** The computed hashes are written to `checksums.json` in the cache directory.
-4. **Signature Verification (v3.0.0 Placeholder):** The `signature` field in the manifest provides a placeholder for future asymmetric public-key signature verification.
+4. **Signature Verification (v3.5.0-prep)**: The `signature` object or `signatures` array in the manifest is cryptographically verified using Ed25519 public-key signature verification against keys registered in the trust store (`.ai/registries/trusted-keys.yaml`).
 
 ---
 

package/docs/v3-roadmap.md

@@ -7,12 +7,25 @@ This document outlines the development path, completed milestones, and future pl
 ## 1. Current Status
 
 > [!IMPORTANT]
-> **v3.1.0 is the active stable release** on the public npm registry. All features below marked ✅ are shipped and production-ready.
+> **v3.5.0 is the active stable release** on the public npm registry. All features below marked ✅ are shipped and production-ready.
 
 ---
 
 ## 2. Completed Milestones
 
+### v3.5.0 — Trusted Registry Signing + Provenance ✅
+- **Asymmetric Ed25519 Signatures**: Cryptographic verification of remote registry manifests using publisher public keys to secure remote sync.
+- **Trusted Key Store**: Manages active public keys, publishers, and scopes via `.ai/registries/trusted-keys.yaml` configuration.
+- **Registry Provenance Lockfile**: Keeps a committed `.ai/registry-lock.json` containing synced hashes, timestamps, and verdicts to detect local cache tampering.
+- **Structured Verdicts**: Deployed `createTrustVerdict` to generate uniform verification reporting for CLI audits, lockfiles, and diagnostics.
+- **Signed Registry E2E Fixtures**: Comprehensive offline test suite validating valid, tampered, wrong key, revoked key, unsigned, and unsupported algorithm states.
+
+### v3.2.0 — Stable Modular Build + Package Governance ✅
+- **Build Freshness Auditing**: Integrated `check-build-fresh.js` to ensure the generated single-file CLI binary matches standard ES modules under `src/` dynamically.
+- **Hardened Package Governance**: Configured the NPM manifest (`package.json`) to include the modular source folder (`src/`) and unit test suites (`tests/unit/`) for developer auditability, while verifying the strict exclusion of sensitive and temporary files.
+- **Cross-Platform CI Pipeline**: Configured a complete multi-platform CI verification matrix on GitHub Actions covering Windows, Linux, and macOS across Node.js versions `20.x` and `22.x`.
+- **Harden Build & Verification Gates**: Applied post-build validations asserting shebang count uniqueness, warning headers, and URL shell-injection safety, while expanding integration audits to 269 assertions.
+
 ### v3.1.0 — Modular Source Layout + Formal Unit Tests ✅
 - **Modular Source Layout**: Refactored the monolithic CLI structure into isolated, clean modules under `src/` (core, registry, catalog, plugin, cli).
 - **Programmatic Compiler**: Programmed `scripts/build-cli.js` using `esbuild` to compile modules into a single zero-dependency executable (`bin/multimodel-dev-os.js`) with shebang preservation.
@@ -74,11 +87,9 @@ All releases follow this strict publishing checklist:
 
 ---
 
-## 4. Upcoming: v3.2.0 — Cryptographic Catalog Signing
-
-*   **Asymmetric Key Signatures**: Cryptographic signature validation for remote registries using public/private key pairs.
-*   **Decentralized Trust Anchors**: Trust anchors configuration allowing teams to pin public keys of verified catalog authors.
-*   **Tamper-Proof Audit Chain**: Signed change logs and history verification.
+## 4. In Progress: v3.6.0-prep / Sprint 4 — Remote Key Sync & GPG Signatures
+- **Remote Key Sync**: Enable syncing public keys directly from approved remote registries.
+- **GPG Compatibility**: Support GPG signatures for enterprise-controlled repositories.
 
 ---
 

package/docs/v3.5.0-readiness.md

@@ -0,0 +1,46 @@
+# v3.5.0 Release Readiness Checklist
+
+This document tracks the release readiness checklist for MultiModel Dev OS v3.5.0. 
+The v3.5.0 milestone represents the integration of HMAC-SHA256 provenance lockfiles, Ed25519 public-key signature checks, and the trusted publisher key store.
+
+---
+
+## Release Governance Status
+
+> [!WARNING]
+> **Status:** `Pending (Internal Preparation)`
+> This is an unreleased internal development build. Do not tag, publish to npm, or mark v3.5.0 as released.
+
+---
+
+## Readiness Checklist
+
+### 1. Cryptography and Identity Trust
+- [x] **Ed25519 Public-Key Signatures**: Asymmetric signing and timing-safe verification verified end-to-end using Node.js built-ins.
+- [x] **Zero Runtime Dependencies**: Cryptographic functions use native Node `crypto` only.
+- [x] **Trust Store**: Key loading and parsing validated with active status, expiration, and scope constraint checks.
+- [x] **Deterministic Serialization**: Canonical payload sorting proven stable and deterministic across platforms.
+
+### 2. End-to-End Fixtures
+- [x] **Valid Signed Registry**: Proven to pass verification.
+- [x] **Tampered Manifest**: Rejected during verification with signature verification errors.
+- [x] **Wrong Signing Key**: Rejected as untrusted.
+- [x] **Revoked/Disabled Keys**: Correctly blocked by trust store status gates.
+- [x] **Unsupported Algorithms**: Properly rejected by policy validation.
+- [x] **Lockfile & Provenance Integrity**: Local `registry-lock.json` entries record precise verdicts and error details.
+
+### 3. Build & Package Hygiene
+- [x] **Generated CLI Freshness**: `scripts/check-build-fresh.js` validates that `bin/multimodel-dev-os.js` matches the `src/` modules.
+- [x] **Shebang & Header Validations**: Generated binary has exactly one shebang and includes the warning header.
+- [x] **No Private Keys Committed**: No private keys or `.ai/registry-signing-key` files are tracked by Git.
+- [x] **Clean Packing Exclusion**: Manifest configuration filters out `.npmrc`, `.env`, private keys, local tarballs, and temporary smoke directories.
+
+### 4. Command Safety & UX
+- [x] **URL Safety Gate**: No shell-based URL interpolation is used. Synchronous fetching uses `execFileSync` arguments.
+- [x] **Approval Gated Sync**: `registry sync` strictly requires `--approved` flag before performing network fetches.
+- [x] **Offline Stability**: Registry verification and catalog features operate offline using cache directory fixtures.
+
+### 5. Verification Metrics
+- [x] **Unit Test Suite**: All unit tests pass cleanly.
+- [x] **Strict Verification Assertions**: `scripts/verify.js` executes successfully with zero failures.
+- [x] **Documentation Coverage**: Threat models, architecture guides, policies, and roadmap files are updated.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "multimodel-dev-os",
-  "version": "3.1.0",
+  "version": "3.5.0",
   "bin": {
     "multimodel-dev-os": "bin/multimodel-dev-os.js"
   },
@@ -35,12 +35,15 @@
     "!docs/.vitepress/cache/",
     "examples/",
     "bin/",
+    "src/",
+    "tests/",
     "assets/"
   ],
   "scripts": {
     "build": "node scripts/build-cli.js",
+    "check:build": "node scripts/check-build-fresh.js",
     "test": "vitest run",
-    "verify": "npm run build && npm test && node scripts/verify.js",
+    "verify": "npm run check:build && npm test && node scripts/verify.js",
     "verify:bash": "bash scripts/verify.sh",
     "test:cli": "node bin/multimodel-dev-os.js verify",
     "pack:template": "bash scripts/pack-template.sh",

package/scripts/build-cli.js

@@ -1,16 +1,58 @@
 import esbuild from 'esbuild';
+import { existsSync, chmodSync, readFileSync } from 'fs';
+
+const entryPoint = 'src/cli/main.js';
+const outfile = 'bin/multimodel-dev-os.js';
+
+if (!existsSync(entryPoint)) {
+  console.error(`[ERROR] Entrypoint file not found: ${entryPoint}`);
+  process.exit(1);
+}
 
 esbuild.build({
-  entryPoints: ['src/cli/main.js'],
+  entryPoints: [entryPoint],
   bundle: true,
   platform: 'node',
   format: 'esm',
-  outfile: 'bin/multimodel-dev-os.js',
+  outfile: outfile,
   banner: {
     js: `#!/usr/bin/env node\n// Generated from src/. Do not edit directly.\n`
   }
 }).then(() => {
-  console.log('Build succeeded.');
+  // Post-build validation & hardening
+  try {
+    const content = readFileSync(outfile, 'utf8');
+    
+    // 1. Check shebang counts
+    const shebangMatches = content.match(/^#!/g) || [];
+    const totalShebangs = (content.match(/#!/g) || []).length;
+    
+    // We expect exactly one shebang at the very top
+    if (totalShebangs !== 1 || !content.startsWith('#!/usr/bin/env node')) {
+      console.error('[ERROR] Compiled output has invalid shebang configuration.');
+      process.exit(1);
+    }
+    
+    // 2. Check warning header
+    if (!content.includes('// Generated from src/. Do not edit directly.')) {
+      console.error('[ERROR] Compiled output is missing the generation warning header.');
+      process.exit(1);
+    }
+    
+    // 3. Check for unsafe URL interpolation patterns
+    if (content.includes("mod.get('${targetUrl}'") || (content.includes('execSync(`node -e "') && content.includes('${targetUrl}'))) {
+      console.error('[ERROR] Compiled output contains unsafe registry URL interpolation!');
+      process.exit(1);
+    }
+
+    // 4. Set execution permissions (0755)
+    chmodSync(outfile, 0o755);
+    
+    console.log('Build succeeded.');
+  } catch (e) {
+    console.error('Post-build verification failed:', e.message);
+    process.exit(1);
+  }
 }).catch((err) => {
   console.error('Build failed:', err);
   process.exit(1);

package/scripts/check-build-fresh.js

@@ -0,0 +1,52 @@
+import esbuild from 'esbuild';
+import { readFileSync, unlinkSync, existsSync } from 'fs';
+
+const entryPoint = 'src/cli/main.js';
+const currentFile = 'bin/multimodel-dev-os.js';
+const tempFile = 'bin/multimodel-dev-os.tmp.js';
+
+if (!existsSync(entryPoint)) {
+  console.error(`[ERROR] Entrypoint file not found: ${entryPoint}`);
+  process.exit(1);
+}
+
+if (!existsSync(currentFile)) {
+  console.error(`[ERROR] Current build file not found: ${currentFile}`);
+  console.error('Generated CLI is stale. Run npm run build and commit bin/multimodel-dev-os.js.');
+  process.exit(1);
+}
+
+try {
+  await esbuild.build({
+    entryPoints: [entryPoint],
+    bundle: true,
+    platform: 'node',
+    format: 'esm',
+    outfile: tempFile,
+    banner: {
+      js: `#!/usr/bin/env node\n// Generated from src/. Do not edit directly.\n`
+    }
+  });
+
+  const currentContent = readFileSync(currentFile, 'utf8');
+  const tempContent = readFileSync(tempFile, 'utf8');
+
+  // Clean up temp file immediately
+  unlinkSync(tempFile);
+
+  const normalize = str => str.replace(/\r\n/g, '\n');
+
+  if (normalize(currentContent) !== normalize(tempContent)) {
+    console.error('[ERROR] Generated CLI is stale. Run npm run build and commit bin/multimodel-dev-os.js.');
+    process.exit(1);
+  }
+
+  console.log('Generated CLI is fresh.');
+  process.exit(0);
+} catch (err) {
+  console.error('Build freshness check failed:', err);
+  if (existsSync(tempFile)) {
+    unlinkSync(tempFile);
+  }
+  process.exit(1);
+}

package/scripts/install.ps1

@@ -11,7 +11,7 @@ param(
   [switch]$Help
 )
 
-$Version = "3.1.0"
+$Version = "3.5.0"
 $RepoUrl = "https://raw.githubusercontent.com/rizvee/multimodel-dev-os/main"
 
 if ($Help) {

package/scripts/install.sh

@@ -7,7 +7,7 @@ set -euo pipefail
 #        --all      (install all adapters)
 #        --dry-run  (show what would be created without creating)
 
-VERSION="3.1.0"
+VERSION="3.5.0"
 REPO_URL="https://raw.githubusercontent.com/rizvee/multimodel-dev-os/main"
 CAVEMAN=false
 DRY_RUN=false