seabox 0.1.1 → 0.2.0

package/lib/inject.mjs

@@ -1,106 +1,106 @@
-/**
- * inject.mjs
- * Inject SEA blob into Node binary using postject.
- */
-
-import fs from 'fs';
-import path from 'path';
-import Module from 'module';
-import { fileURLToPath } from 'url';
-import * as diag from './diagnostics.mjs';
-
-const __filename = fileURLToPath(import.meta.url);
-const __dirname = path.dirname(__filename);
-
-// Import unsign using require since it's CommonJS
-const require = Module.createRequire(import.meta.url);
-const { removeSignature, setVerbose: setUnsignVerbose } = require('./unsign.cjs');
-
-/**
- * Inject a SEA blob into a Node.js binary using postject.
- * @param {string} nodeBinaryPath - Path to the source Node binary
- * @param {string} blobPath - Path to the SEA blob file
- * @param {string} outputPath - Path for the output executable
- * @param {string} platform - Target platform (win32, linux, darwin)
- * @param {boolean} verbose - Enable verbose logging
- * @param {Object} [rceditOptions] - Optional rcedit configuration for Windows executables
- * @returns {Promise<void>}
- */
-export async function injectBlob(nodeBinaryPath, blobPath, outputPath, platform, verbose, rceditOptions) {
-  // Ensure output directory exists
-  const outputDir = path.dirname(outputPath);
-  if (!fs.existsSync(outputDir)) {
-    fs.mkdirSync(outputDir, { recursive: true });
-  }
-
-  // Copy node binary to output location
-  fs.copyFileSync(nodeBinaryPath, outputPath);
-
-  // Remove existing signature before postject injection
-  setUnsignVerbose(verbose);
-  await removeSignature(outputPath, platform);
-
-  // Apply rcedit changes (Windows only, before postject)
-  if (platform === 'win32' && rceditOptions && typeof rceditOptions === 'object') {
-    await applyRcedit(outputPath, rceditOptions, verbose);
-  }
-
-  // Prepare postject command
-  const sentinel = 'NODE_SEA_BLOB';
-  const sentinelFuse = 'NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2';
-
-  diag.verbose(`Injecting SEA blob into: ${outputPath}`, 1);
-  
-  // Use postject programmatically
-  const postject = (await import('postject')).default;
-  
-  // Read blob data as buffer
-  const blobData = fs.readFileSync(blobPath);
-  
-  const injectOptions = {
-    sentinelFuse,
-    machoSegmentName: platform === 'darwin' ? 'NODE_SEA' : undefined
-  };
-
-  try {
-    await postject.inject(outputPath, sentinel, blobData, injectOptions);
-    diag.verbose('SEA blob injected successfully', 2);
-  } catch (error) {
-    throw new Error(`Postject injection failed: ${error.message}`);
-  }
-}
-
-/**
- * Apply rcedit to modify Windows executable resources.
- * @param {string} exePath - Path to the executable
- * @param {Object} options - rcedit options (icon, version-string, file-version, product-version, etc.)
- * @param {boolean} verbose - Enable verbose logging
- * @returns {Promise<void>}
- */
-async function applyRcedit(exePath, options, verbose) {
-  diag.verbose('Applying rcedit to modify executable resources...', 2);
-  diag.verbose(`Options: ${JSON.stringify(options, null, 2)}`, 2);
-
-  // Try to import rcedit - it's a peer dependency
-  let rcedit;
-  try {
-    rcedit = (await import('rcedit')).default;
-  } catch (error) {
-    if (error.code === 'ERR_MODULE_NOT_FOUND') {
-      throw new Error(
-        'rcedit is required for Windows executable metadata but not installed. ' +
-        'Install it with: npm install rcedit'
-      );
-    }
-    throw error;
-  }
-  
-  try {
-    await rcedit(exePath, options);
-    diag.verbose('rcedit applied successfully', 2);
-  } catch (error) {
-    throw new Error(`rcedit failed: ${error.message}`);
-  }
-}
-
-export { applyRcedit };
+/**
+ * inject.mjs
+ * Inject SEA blob into Node binary using postject.
+ */
+
+import fs from 'fs';
+import path from 'path';
+import Module from 'module';
+import { fileURLToPath } from 'url';
+import * as diag from './diagnostics.mjs';
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+
+// Import unsign using require since it's CommonJS
+const require = Module.createRequire(import.meta.url);
+const { removeSignature, setVerbose: setUnsignVerbose } = require('./unsign.cjs');
+
+/**
+ * Inject a SEA blob into a Node.js binary using postject.
+ * @param {string} nodeBinaryPath - Path to the source Node binary
+ * @param {string} blobPath - Path to the SEA blob file
+ * @param {string} outputPath - Path for the output executable
+ * @param {string} platform - Target platform (win32, linux, darwin)
+ * @param {boolean} verbose - Enable verbose logging
+ * @param {Object} [rceditOptions] - Optional rcedit configuration for Windows executables
+ * @returns {Promise<void>}
+ */
+export async function injectBlob(nodeBinaryPath, blobPath, outputPath, platform, verbose, rceditOptions) {
+  // Ensure output directory exists
+  const outputDir = path.dirname(outputPath);
+  if (!fs.existsSync(outputDir)) {
+    fs.mkdirSync(outputDir, { recursive: true });
+  }
+
+  // Copy node binary to output location
+  fs.copyFileSync(nodeBinaryPath, outputPath);
+
+  // Remove existing signature before postject injection
+  setUnsignVerbose(verbose);
+  await removeSignature(outputPath, platform);
+
+  // Apply rcedit changes (Windows only, before postject)
+  if (platform === 'win32' && rceditOptions && typeof rceditOptions === 'object') {
+    await applyRcedit(outputPath, rceditOptions, verbose);
+  }
+
+  // Prepare postject command
+  const sentinel = 'NODE_SEA_BLOB';
+  const sentinelFuse = 'NODE_SEA_FUSE_fce680ab2cc467b6e072b8b5df1996b2';
+
+  diag.verbose(`Injecting SEA blob into: ${outputPath}`, 1);
+  
+  // Use postject programmatically
+  const postject = (await import('postject')).default;
+  
+  // Read blob data as buffer
+  const blobData = fs.readFileSync(blobPath);
+  
+  const injectOptions = {
+    sentinelFuse,
+    machoSegmentName: platform === 'darwin' ? 'NODE_SEA' : undefined
+  };
+
+  try {
+    await postject.inject(outputPath, sentinel, blobData, injectOptions);
+    diag.verbose('SEA blob injected successfully', 2);
+  } catch (error) {
+    throw new Error(`Postject injection failed: ${error.message}`);
+  }
+}
+
+/**
+ * Apply rcedit to modify Windows executable resources.
+ * @param {string} exePath - Path to the executable
+ * @param {Object} options - rcedit options (icon, version-string, file-version, product-version, etc.)
+ * @param {boolean} verbose - Enable verbose logging
+ * @returns {Promise<void>}
+ */
+async function applyRcedit(exePath, options, verbose) {
+  diag.verbose('Applying rcedit to modify executable resources...', 2);
+  diag.verbose(`Options: ${JSON.stringify(options, null, 2)}`, 2);
+
+  // Try to import rcedit - it's a peer dependency
+  let rcedit;
+  try {
+    rcedit = (await import('rcedit')).default;
+  } catch (error) {
+    if (error.code === 'ERR_MODULE_NOT_FOUND') {
+      throw new Error(
+        'rcedit is required for Windows executable metadata but not installed. ' +
+        'Install it with: npm install rcedit'
+      );
+    }
+    throw error;
+  }
+  
+  try {
+    await rcedit(exePath, options);
+    diag.verbose('rcedit applied successfully', 2);
+  } catch (error) {
+    throw new Error(`rcedit failed: ${error.message}`);
+  }
+}
+
+export { applyRcedit };

package/lib/manifest.mjs

@@ -1,100 +1,100 @@
-/**
- * manifest.mjs
- * Generate runtime manifest with asset metadata and extraction rules.
- */
-
-import path from 'path';
-
-/**
- * @typedef {Object} BinaryManifestEntry
- * @property {string} assetKey - Key in the SEA blob
- * @property {string} fileName - Original filename
- * @property {string} platform - Target platform (win32, linux, darwin, *)
- * @property {string} arch - Target architecture (x64, arm64, *)
- * @property {number} order - Extraction order priority (lower = earlier)
- * @property {string} hash - SHA-256 hash for integrity check
- */
-
-/**
- * @typedef {Object} RuntimeManifest
- * @property {string} appName - Application name
- * @property {string} appVersion - Application version
- * @property {string} platform - Target platform
- * @property {string} arch - Target architecture
- * @property {BinaryManifestEntry[]} binaries - Binary extraction rules
- * @property {string[]} allAssetKeys - All embedded asset keys
- * @property {string} [cacheLocation] - Configured cache location (optional)
- */
-
-/**
- * Generate a runtime manifest from scanned assets.
- * @param {Array} assets - All scanned assets
- * @param {Object} config - SEA configuration
- * @param {string} targetPlatform - Target platform (win32, linux, darwin)
- * @param {string} targetArch - Target architecture (x64, arm64)
- * @returns {RuntimeManifest}
- */
-export function generateManifest(assets, config, targetPlatform, targetArch) {
-  const binaries = assets
-    .filter(a => a.isBinary)
-    .map((asset, index) => {
-      const fileName = path.basename(asset.sourcePath);
-      return {
-        assetKey: asset.assetKey,
-        fileName,
-        platform: targetPlatform,
-        arch: targetArch,
-        order: inferExtractionOrder(fileName, index),
-        hash: asset.hash
-      };
-    });
-
-  const manifest = {
-    appName: config._packageName || 'app',
-    appVersion: config._packageVersion || '1.0.0',
-    platform: targetPlatform,
-    arch: targetArch,
-    binaries,
-    allAssetKeys: assets.map(a => a.assetKey)
-  };
-  
-  // Include cacheLocation if configured
-  if (config.cacheLocation) {
-    manifest.cacheLocation = config.cacheLocation;
-  }
-  
-  return manifest;
-}
-
-/**
- * Infer extraction order based on file type.
- * Libraries (.dll, .so, .dylib) should extract before .node addons.
- * @param {string} fileName
- * @param {number} fallbackIndex - Fallback order if heuristic doesn't apply
- * @returns {number}
- */
-function inferExtractionOrder(fileName, fallbackIndex) {
-  const ext = path.extname(fileName).toLowerCase();
-  
-  // Extract shared libraries first
-  if (['.dll', '.so', '.dylib'].includes(ext)) {
-    return 10;
-  }
-  
-  // Then native addons
-  if (ext === '.node') {
-    return 20;
-  }
-
-  // Fallback for other binaries
-  return 100 + fallbackIndex;
-}
-
-/**
- * Serialize manifest to JSON string for embedding.
- * @param {RuntimeManifest} manifest
- * @returns {string}
- */
-export function serializeManifest(manifest) {
-  return JSON.stringify(manifest, null, 2);
-}
+/**
+ * manifest.mjs
+ * Generate runtime manifest with asset metadata and extraction rules.
+ */
+
+import path from 'path';
+
+/**
+ * @typedef {Object} BinaryManifestEntry
+ * @property {string} assetKey - Key in the SEA blob
+ * @property {string} fileName - Original filename
+ * @property {string} platform - Target platform (win32, linux, darwin, *)
+ * @property {string} arch - Target architecture (x64, arm64, *)
+ * @property {number} order - Extraction order priority (lower = earlier)
+ * @property {string} hash - SHA-256 hash for integrity check
+ */
+
+/**
+ * @typedef {Object} RuntimeManifest
+ * @property {string} appName - Application name
+ * @property {string} appVersion - Application version
+ * @property {string} platform - Target platform
+ * @property {string} arch - Target architecture
+ * @property {BinaryManifestEntry[]} binaries - Binary extraction rules
+ * @property {string[]} allAssetKeys - All embedded asset keys
+ * @property {string} [cacheLocation] - Configured cache location (optional)
+ */
+
+/**
+ * Generate a runtime manifest from scanned assets.
+ * @param {Array} assets - All scanned assets
+ * @param {Object} config - SEA configuration
+ * @param {string} targetPlatform - Target platform (win32, linux, darwin)
+ * @param {string} targetArch - Target architecture (x64, arm64)
+ * @returns {RuntimeManifest}
+ */
+export function generateManifest(assets, config, targetPlatform, targetArch) {
+  const binaries = assets
+    .filter(a => a.isBinary)
+    .map((asset, index) => {
+      const fileName = path.basename(asset.sourcePath);
+      return {
+        assetKey: asset.assetKey,
+        fileName,
+        platform: targetPlatform,
+        arch: targetArch,
+        order: inferExtractionOrder(fileName, index),
+        hash: asset.hash
+      };
+    });
+
+  const manifest = {
+    appName: config._packageName || 'app',
+    appVersion: config._packageVersion || '1.0.0',
+    platform: targetPlatform,
+    arch: targetArch,
+    binaries,
+    allAssetKeys: assets.map(a => a.assetKey)
+  };
+  
+  // Include cacheLocation if configured
+  if (config.cacheLocation) {
+    manifest.cacheLocation = config.cacheLocation;
+  }
+  
+  return manifest;
+}
+
+/**
+ * Infer extraction order based on file type.
+ * Libraries (.dll, .so, .dylib) should extract before .node addons.
+ * @param {string} fileName
+ * @param {number} fallbackIndex - Fallback order if heuristic doesn't apply
+ * @returns {number}
+ */
+function inferExtractionOrder(fileName, fallbackIndex) {
+  const ext = path.extname(fileName).toLowerCase();
+  
+  // Extract shared libraries first
+  if (['.dll', '.so', '.dylib'].includes(ext)) {
+    return 10;
+  }
+  
+  // Then native addons
+  if (ext === '.node') {
+    return 20;
+  }
+
+  // Fallback for other binaries
+  return 100 + fallbackIndex;
+}
+
+/**
+ * Serialize manifest to JSON string for embedding.
+ * @param {RuntimeManifest} manifest
+ * @returns {string}
+ */
+export function serializeManifest(manifest) {
+  return JSON.stringify(manifest, null, 2);
+}