skillstore 0.0.1 → 0.1.1

package/dist/lib/plugin-logger.js

@@ -0,0 +1,173 @@
+import consola from 'consola';
+/**
+ * Plugin CLI Logger
+ *
+ * Provides styled logging and progress indicators for plugin operations.
+ */
+/** Color codes for different log types */
+const colors = {
+    info: '\x1b[36m', // Cyan
+    success: '\x1b[32m', // Green
+    warn: '\x1b[33m', // Yellow
+    error: '\x1b[31m', // Red
+    dim: '\x1b[90m', // Gray
+    reset: '\x1b[0m',
+    bold: '\x1b[1m',
+};
+class PluginLogger {
+    progressState = null;
+    spinnerInterval = null;
+    spinnerFrames = ['⠋', '⠙', '⠹', '⠸', '⠼', '⠴', '⠦', '⠧', '⠇', '⠏'];
+    spinnerIndex = 0;
+    /**
+     * Log info message
+     */
+    info(message) {
+        consola.info(message);
+    }
+    /**
+     * Log success message
+     */
+    success(message) {
+        consola.success(message);
+    }
+    /**
+     * Log warning message
+     */
+    warn(message) {
+        consola.warn(message);
+    }
+    /**
+     * Log error message
+     */
+    error(message, err) {
+        consola.error(message);
+        if (err && process.env.DEBUG) {
+            consola.error(err);
+        }
+    }
+    /**
+     * Log debug message (only in DEBUG mode)
+     */
+    debug(message) {
+        if (process.env.DEBUG) {
+            consola.debug(message);
+        }
+    }
+    /**
+     * Start a spinner with message
+     */
+    startSpinner(message) {
+        this.stopSpinner();
+        this.spinnerIndex = 0;
+        const spin = () => {
+            const frame = this.spinnerFrames[this.spinnerIndex];
+            process.stdout.write(`\r${colors.info}${frame}${colors.reset} ${message}`);
+            this.spinnerIndex = (this.spinnerIndex + 1) % this.spinnerFrames.length;
+        };
+        spin();
+        this.spinnerInterval = setInterval(spin, 80);
+    }
+    /**
+     * Stop the spinner
+     */
+    stopSpinner() {
+        if (this.spinnerInterval) {
+            clearInterval(this.spinnerInterval);
+            this.spinnerInterval = null;
+            process.stdout.write('\r\x1b[K'); // Clear line
+        }
+    }
+    /**
+     * Complete spinner with success
+     */
+    spinnerSuccess(message) {
+        this.stopSpinner();
+        console.log(`${colors.success}✓${colors.reset} ${message}`);
+    }
+    /**
+     * Complete spinner with error
+     */
+    spinnerError(message) {
+        this.stopSpinner();
+        console.log(`${colors.error}✗${colors.reset} ${message}`);
+    }
+    /**
+     * Start progress tracking
+     */
+    startProgress(total, label) {
+        this.progressState = { current: 0, total, label };
+        this.renderProgress();
+    }
+    /**
+     * Update progress
+     */
+    updateProgress(current) {
+        if (this.progressState) {
+            this.progressState.current = current;
+            this.renderProgress();
+        }
+    }
+    /**
+     * Increment progress by 1
+     */
+    incrementProgress() {
+        if (this.progressState) {
+            this.progressState.current++;
+            this.renderProgress();
+        }
+    }
+    /**
+     * Complete progress
+     */
+    completeProgress() {
+        if (this.progressState) {
+            process.stdout.write('\r\x1b[K'); // Clear line
+            const { total, label } = this.progressState;
+            console.log(`${colors.success}✓${colors.reset} ${label} (${total}/${total})`);
+            this.progressState = null;
+        }
+    }
+    /**
+     * Render progress bar
+     */
+    renderProgress() {
+        if (!this.progressState)
+            return;
+        const { current, total, label } = this.progressState;
+        const percent = Math.round((current / total) * 100);
+        const barWidth = 20;
+        const filled = Math.round((current / total) * barWidth);
+        const empty = barWidth - filled;
+        const bar = `${'█'.repeat(filled)}${'░'.repeat(empty)}`;
+        process.stdout.write(`\r${colors.info}↓${colors.reset} ${label} ${colors.dim}[${bar}]${colors.reset} ${current}/${total} (${percent}%)`);
+    }
+    /**
+     * Print a box with content
+     */
+    box(title, content) {
+        const width = Math.max(title.length, ...content.map((c) => c.length)) + 4;
+        const border = '─'.repeat(width);
+        console.log(`${colors.dim}┌${border}┐${colors.reset}`);
+        console.log(`${colors.dim}│${colors.reset} ${colors.bold}${title.padEnd(width - 2)}${colors.reset} ${colors.dim}│${colors.reset}`);
+        console.log(`${colors.dim}├${border}┤${colors.reset}`);
+        for (const line of content) {
+            console.log(`${colors.dim}│${colors.reset} ${line.padEnd(width - 2)} ${colors.dim}│${colors.reset}`);
+        }
+        console.log(`${colors.dim}└${border}┘${colors.reset}`);
+    }
+    /**
+     * Print skill installation summary
+     */
+    skillSummary(slug, status) {
+        const icons = {
+            installed: `${colors.success}✓${colors.reset}`,
+            skipped: `${colors.warn}○${colors.reset}`,
+            failed: `${colors.error}✗${colors.reset}`,
+        };
+        console.log(`  ${icons[status]} ${slug}`);
+    }
+}
+/** Singleton logger instance */
+export const logger = new PluginLogger();
+//# sourceMappingURL=plugin-logger.js.map

package/dist/lib/plugin-logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin-logger.js","sourceRoot":"","sources":["../../src/lib/plugin-logger.ts"],"names":[],"mappings":"AAAA,OAAO,OAAO,MAAM,SAAS,CAAC;AAE9B;;;;GAIG;AAEH,0CAA0C;AAC1C,MAAM,MAAM,GAAG;IACd,IAAI,EAAE,UAAU,EAAE,OAAO;IACzB,OAAO,EAAE,UAAU,EAAE,QAAQ;IAC7B,IAAI,EAAE,UAAU,EAAE,SAAS;IAC3B,KAAK,EAAE,UAAU,EAAE,MAAM;IACzB,GAAG,EAAE,UAAU,EAAE,OAAO;IACxB,KAAK,EAAE,SAAS;IAChB,IAAI,EAAE,SAAS;CACf,CAAC;AAQF,MAAM,YAAY;IACT,aAAa,GAAyB,IAAI,CAAC;IAC3C,eAAe,GAA0B,IAAI,CAAC;IAC9C,aAAa,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;IACnE,YAAY,GAAG,CAAC,CAAC;IAEzB;;OAEG;IACH,IAAI,CAAC,OAAe;QACnB,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,OAAe;QACtB,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IAC1B,CAAC;IAED;;OAEG;IACH,IAAI,CAAC,OAAe;QACnB,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAe,EAAE,GAAW;QACjC,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACvB,IAAI,GAAG,IAAI,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC;YAC9B,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACpB,CAAC;IACF,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAe;QACpB,IAAI,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC;YACvB,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACF,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,OAAe;QAC3B,IAAI,CAAC,WAAW,EAAE,CAAC;QACnB,IAAI,CAAC,YAAY,GAAG,CAAC,CAAC;QAEtB,MAAM,IAAI,GAAG,GAAG,EAAE;YACjB,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YACpD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,MAAM,CAAC,IAAI,GAAG,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,OAAO,EAAE,CAAC,CAAC;YAC3E,IAAI,CAAC,YAAY,GAAG,CAAC,IAAI,CAAC,YAAY,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC;QACzE,CAAC,CAAC;QAEF,IAAI,EAAE,CAAC;QACP,IAAI,CAAC,eAAe,GAAG,WAAW,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,WAAW;QACV,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YAC1B,aAAa,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACpC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;YAC5B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,aAAa;QAChD,CAAC;IACF,CAAC;IAED;;OAEG;IACH,cAAc,CAAC,OAAe;QAC7B,IAAI,CAAC,WAAW,EAAE,CAAC;QACnB,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,KAAK,IAAI,OAAO,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,OAAe;QAC3B,IAAI,CAAC,WAAW,EAAE,CAAC;QACnB,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC,KAAK,IAAI,OAAO,EAAE,CAAC,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,KAAa,EAAE,KAAa;QACzC,IAAI,CAAC,aAAa,GAAG,EAAE,OAAO,EAAE,CAAC,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC;QAClD,IAAI,CAAC,cAAc,EAAE,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,cAAc,CAAC,OAAe;QAC7B,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACxB,IAAI,CAAC,aAAa,CAAC,OAAO,GAAG,OAAO,CAAC;YACrC,IAAI,CAAC,cAAc,EAAE,CAAC;QACvB,CAAC;IACF,CAAC;IAED;;OAEG;IACH,iBAAiB;QAChB,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACxB,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC;YAC7B,IAAI,CAAC,cAAc,EAAE,CAAC;QACvB,CAAC;IACF,CAAC;IAED;;OAEG;IACH,gBAAgB;QACf,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACxB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,aAAa;YAC/C,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC;YAC5C,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,KAAK,IAAI,KAAK,KAAK,KAAK,IAAI,KAAK,GAAG,CAAC,CAAC;YAC9E,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;QAC3B,CAAC;IACF,CAAC;IAED;;OAEG;IACK,cAAc;QACrB,IAAI,CAAC,IAAI,CAAC,aAAa;YAAE,OAAO;QAEhC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC;QACrD,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC;QACpD,MAAM,QAAQ,GAAG,EAAE,CAAC;QACpB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,KAAK,CAAC,GAAG,QAAQ,CAAC,CAAC;QACxD,MAAM,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;QAEhC,MAAM,GAAG,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,MAAM,CAAC,KAAK,CACnB,KAAK,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,KAAK,IAAI,KAAK,IAAI,MAAM,CAAC,GAAG,IAAI,GAAG,IAAI,MAAM,CAAC,KAAK,IAAI,OAAO,IAAI,KAAK,KAAK,OAAO,IAAI,CAClH,CAAC;IACH,CAAC;IAED;;OAEG;IACH,GAAG,CAAC,KAAa,EAAE,OAAiB;QACnC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC;QAC1E,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAEjC,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,MAAM,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QACvD,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC,IAAI,GAAG,KAAK,CAAC,MAAM,CAAC,KAAK,GAAG,CAAC,CAAC,GAAG,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC,GAAG,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QACnI,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,MAAM,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QAEvD,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC5B,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,MAAM,CAAC,KAAK,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,GAAG,CAAC,CAAC,IAAI,MAAM,CAAC,GAAG,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QACtG,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,GAAG,IAAI,MAAM,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;IACxD,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,IAAY,EAAE,MAA0C;QACpE,MAAM,KAAK,GAAG;YACb,SAAS,EAAE,GAAG,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,KAAK,EAAE;YAC9C,OAAO,EAAE,GAAG,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,KAAK,EAAE;YACzC,MAAM,EAAE,GAAG,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC,KAAK,EAAE;SACzC,CAAC;QAEF,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC;IAC3C,CAAC;CACD;AAED,gCAAgC;AAChC,MAAM,CAAC,MAAM,MAAM,GAAG,IAAI,YAAY,EAAE,CAAC"}

package/dist/lib/plugin-verify.d.ts

@@ -0,0 +1,35 @@
+import type { PluginManifest } from './plugin-api.js';
+/**
+ * Plugin Manifest Verification
+ *
+ * Verifies HMAC-SHA256 signatures on plugin manifests to ensure integrity.
+ */
+/** Verification result */
+export interface VerifyResult {
+    valid: boolean;
+    error?: string;
+}
+/**
+ * Get the signing key for manifest verification
+ * Uses built-in key by default, can be overridden via environment variable
+ */
+export declare function getVerificationKey(): string;
+/**
+ * Verify manifest signature using HMAC-SHA256
+ *
+ * The signature is computed over the manifest JSON without the signature field.
+ */
+export declare function verifyManifestSignature(manifest: PluginManifest, key: string): VerifyResult;
+/**
+ * Verify skill content hash
+ *
+ * Ensures downloaded skill content matches the hash in the manifest.
+ */
+export declare function verifyContentHash(content: string, expectedHash: string): boolean;
+/**
+ * Verify entire manifest (signature + metadata)
+ */
+export declare function verifyManifest(manifest: PluginManifest, options?: {
+    skipSignature?: boolean;
+}): Promise<VerifyResult>;
+//# sourceMappingURL=plugin-verify.d.ts.map

package/dist/lib/plugin-verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin-verify.d.ts","sourceRoot":"","sources":["../../src/lib/plugin-verify.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAEtD;;;;GAIG;AAEH,0BAA0B;AAC1B,MAAM,WAAW,YAAY;IAC5B,KAAK,EAAE,OAAO,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;CACf;AAQD;;;GAGG;AACH,wBAAgB,kBAAkB,IAAI,MAAM,CAE3C;AAED;;;;GAIG;AACH,wBAAgB,uBAAuB,CACtC,QAAQ,EAAE,cAAc,EACxB,GAAG,EAAE,MAAM,GACT,YAAY,CA6Bd;AAgBD;;;;GAIG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAMhF;AAED;;GAEG;AACH,wBAAsB,cAAc,CACnC,QAAQ,EAAE,cAAc,EACxB,OAAO,GAAE;IAAE,aAAa,CAAC,EAAE,OAAO,CAAA;CAAO,GACvC,OAAO,CAAC,YAAY,CAAC,CA+BvB"}

package/dist/lib/plugin-verify.js

@@ -0,0 +1,97 @@
+import { createHmac, createHash, timingSafeEqual as cryptoTimingSafeEqual } from 'node:crypto';
+/**
+ * Built-in verification key for skillstore.io manifests
+ * This key is used to verify HMAC-SHA256 signatures on plugin manifests
+ */
+const DEFAULT_VERIFICATION_KEY = '3d2b8f367783854cbdb6f81c9a39d586201c8d898ec8737bfa464162a9177943';
+/**
+ * Get the signing key for manifest verification
+ * Uses built-in key by default, can be overridden via environment variable
+ */
+export function getVerificationKey() {
+    return process.env.SKILLSTORE_VERIFY_KEY || DEFAULT_VERIFICATION_KEY;
+}
+/**
+ * Verify manifest signature using HMAC-SHA256
+ *
+ * The signature is computed over the manifest JSON without the signature field.
+ */
+export function verifyManifestSignature(manifest, key) {
+    try {
+        // Extract signature and create unsigned manifest
+        const { signature, ...unsignedManifest } = manifest;
+        if (!signature) {
+            return { valid: false, error: 'Manifest has no signature' };
+        }
+        // Compute expected signature (matching server-side implementation)
+        const dataToSign = JSON.stringify(unsignedManifest, null, 0);
+        const expectedSignature = createHmac('sha256', key)
+            .update(dataToSign)
+            .digest('hex');
+        // Constant-time comparison to prevent timing attacks
+        const valid = timingSafeEqual(signature, expectedSignature);
+        if (!valid) {
+            return { valid: false, error: 'Signature verification failed' };
+        }
+        return { valid: true };
+    }
+    catch (err) {
+        return {
+            valid: false,
+            error: `Verification error: ${err instanceof Error ? err.message : 'Unknown error'}`,
+        };
+    }
+}
+/**
+ * Constant-time string comparison to prevent timing attacks
+ */
+function timingSafeEqual(a, b) {
+    if (a.length !== b.length) {
+        return false;
+    }
+    const bufA = Buffer.from(a, 'utf8');
+    const bufB = Buffer.from(b, 'utf8');
+    return cryptoTimingSafeEqual(bufA, bufB);
+}
+/**
+ * Verify skill content hash
+ *
+ * Ensures downloaded skill content matches the hash in the manifest.
+ */
+export function verifyContentHash(content, expectedHash) {
+    const actualHash = createHash('sha256').update(content).digest('hex');
+    // Content hash might be truncated, compare common length
+    const compareLength = Math.min(actualHash.length, expectedHash.length);
+    return actualHash.substring(0, compareLength) === expectedHash.substring(0, compareLength);
+}
+/**
+ * Verify entire manifest (signature + metadata)
+ */
+export async function verifyManifest(manifest, options = {}) {
+    // Validate manifest structure
+    if (!manifest.version || manifest.version !== '1.0') {
+        return { valid: false, error: 'Unsupported manifest version' };
+    }
+    if (!manifest.plugin?.slug) {
+        return { valid: false, error: 'Missing plugin slug in manifest' };
+    }
+    if (!Array.isArray(manifest.skills) || manifest.skills.length === 0) {
+        return { valid: false, error: 'Manifest contains no skills' };
+    }
+    // Validate skill entries
+    for (const skill of manifest.skills) {
+        if (!skill.slug || !skill.downloadUrl) {
+            return { valid: false, error: `Invalid skill entry: ${skill.slug || 'unknown'}` };
+        }
+    }
+    // Verify signature unless skipped
+    if (!options.skipSignature) {
+        const key = getVerificationKey();
+        const signatureResult = verifyManifestSignature(manifest, key);
+        if (!signatureResult.valid) {
+            return signatureResult;
+        }
+    }
+    return { valid: true };
+}
+//# sourceMappingURL=plugin-verify.js.map

package/dist/lib/plugin-verify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin-verify.js","sourceRoot":"","sources":["../../src/lib/plugin-verify.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,eAAe,IAAI,qBAAqB,EAAE,MAAM,aAAa,CAAC;AAe/F;;;GAGG;AACH,MAAM,wBAAwB,GAAG,kEAAkE,CAAC;AAEpG;;;GAGG;AACH,MAAM,UAAU,kBAAkB;IACjC,OAAO,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,wBAAwB,CAAC;AACtE,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,uBAAuB,CACtC,QAAwB,EACxB,GAAW;IAEX,IAAI,CAAC;QACJ,iDAAiD;QACjD,MAAM,EAAE,SAAS,EAAE,GAAG,gBAAgB,EAAE,GAAG,QAAQ,CAAC;QAEpD,IAAI,CAAC,SAAS,EAAE,CAAC;YAChB,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC;QAC7D,CAAC;QAED,mEAAmE;QACnE,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,gBAAgB,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC7D,MAAM,iBAAiB,GAAG,UAAU,CAAC,QAAQ,EAAE,GAAG,CAAC;aACjD,MAAM,CAAC,UAAU,CAAC;aAClB,MAAM,CAAC,KAAK,CAAC,CAAC;QAEhB,qDAAqD;QACrD,MAAM,KAAK,GAAG,eAAe,CAAC,SAAS,EAAE,iBAAiB,CAAC,CAAC;QAE5D,IAAI,CAAC,KAAK,EAAE,CAAC;YACZ,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC;QACjE,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;IACxB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACd,OAAO;YACN,KAAK,EAAE,KAAK;YACZ,KAAK,EAAE,uBAAuB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE;SACpF,CAAC;IACH,CAAC;AACF,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,CAAS,EAAE,CAAS;IAC5C,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;QAC3B,OAAO,KAAK,CAAC;IACd,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;IACpC,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;IAEpC,OAAO,qBAAqB,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;AAC1C,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAAe,EAAE,YAAoB;IACtE,MAAM,UAAU,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAEtE,yDAAyD;IACzD,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,EAAE,YAAY,CAAC,MAAM,CAAC,CAAC;IACvE,OAAO,UAAU,CAAC,SAAS,CAAC,CAAC,EAAE,aAAa,CAAC,KAAK,YAAY,CAAC,SAAS,CAAC,CAAC,EAAE,aAAa,CAAC,CAAC;AAC5F,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CACnC,QAAwB,EACxB,UAAuC,EAAE;IAEzC,8BAA8B;IAC9B,IAAI,CAAC,QAAQ,CAAC,OAAO,IAAI,QAAQ,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;QACrD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC;IAChE,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC;QAC5B,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,iCAAiC,EAAE,CAAC;IACnE,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACrE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC;IAC/D,CAAC;IAED,yBAAyB;IACzB,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,MAAM,EAAE,CAAC;QACrC,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;YACvC,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,wBAAwB,KAAK,CAAC,IAAI,IAAI,SAAS,EAAE,EAAE,CAAC;QACnF,CAAC;IACF,CAAC;IAED,kCAAkC;IAClC,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,kBAAkB,EAAE,CAAC;QACjC,MAAM,eAAe,GAAG,uBAAuB,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;QAC/D,IAAI,CAAC,eAAe,CAAC,KAAK,EAAE,CAAC;YAC5B,OAAO,eAAe,CAAC;QACxB,CAAC;IACF,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;AACxB,CAAC"}

package/dist/lib/skill-api.d.ts

@@ -0,0 +1,33 @@
+import type { PluginConfig } from './plugin-config.js';
+/**
+ * Skill API Client
+ *
+ * Handles HTTP requests for single skill operations.
+ */
+/** Skill info response */
+export interface SkillInfo {
+    slug: string;
+    name: string;
+    description: string | null;
+    category: string | null;
+    version: string | null;
+    author: string | null;
+    riskLevel: string | null;
+    qualityScore: number | null;
+    pluginPath: string | null;
+}
+/** API Error */
+export declare class SkillApiError extends Error {
+    statusCode: number;
+    code?: string | undefined;
+    constructor(message: string, statusCode: number, code?: string | undefined);
+}
+/**
+ * Fetch skill info/details
+ */
+export declare function fetchSkillInfo(config: PluginConfig, skillSlug: string): Promise<SkillInfo>;
+/**
+ * Download skill as ZIP
+ */
+export declare function downloadSkillZip(config: PluginConfig, skillSlug: string): Promise<ArrayBuffer>;
+//# sourceMappingURL=skill-api.d.ts.map

package/dist/lib/skill-api.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"skill-api.d.ts","sourceRoot":"","sources":["../../src/lib/skill-api.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAEvD;;;;GAIG;AAEH,0BAA0B;AAC1B,MAAM,WAAW,SAAS;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1B;AAED,gBAAgB;AAChB,qBAAa,aAAc,SAAQ,KAAK;IAG/B,UAAU,EAAE,MAAM;IAClB,IAAI,CAAC,EAAE,MAAM;gBAFpB,OAAO,EAAE,MAAM,EACR,UAAU,EAAE,MAAM,EAClB,IAAI,CAAC,EAAE,MAAM,YAAA;CAKrB;AAgBD;;GAEG;AACH,wBAAsB,cAAc,CACnC,MAAM,EAAE,YAAY,EACpB,SAAS,EAAE,MAAM,GACf,OAAO,CAAC,SAAS,CAAC,CA6BpB;AAED;;GAEG;AACH,wBAAsB,gBAAgB,CACrC,MAAM,EAAE,YAAY,EACpB,SAAS,EAAE,MAAM,GACf,OAAO,CAAC,WAAW,CAAC,CAgBtB"}

package/dist/lib/skill-api.js

@@ -0,0 +1,64 @@
+/** API Error */
+export class SkillApiError extends Error {
+    statusCode;
+    code;
+    constructor(message, statusCode, code) {
+        super(message);
+        this.statusCode = statusCode;
+        this.code = code;
+        this.name = 'SkillApiError';
+    }
+}
+/**
+ * Get the API endpoint for skill info
+ */
+function getSkillInfoUrl(config, skillSlug) {
+    return `${config.apiBaseUrl}/skills/${skillSlug}`;
+}
+/**
+ * Get the download URL for a skill
+ */
+function getSkillDownloadUrl(config, skillSlug) {
+    return `${config.apiBaseUrl}/skills/${skillSlug}/download`;
+}
+/**
+ * Fetch skill info/details
+ */
+export async function fetchSkillInfo(config, skillSlug) {
+    const url = getSkillInfoUrl(config, skillSlug);
+    const response = await fetch(url, {
+        method: 'GET',
+        headers: {
+            Accept: 'application/json',
+        },
+        signal: AbortSignal.timeout(config.timeout),
+    });
+    if (!response.ok) {
+        const errorText = await response.text().catch(() => 'Unknown error');
+        let errorData = {};
+        try {
+            errorData = JSON.parse(errorText);
+        }
+        catch {
+            // Not JSON
+        }
+        throw new SkillApiError(errorData.error || `Failed to fetch skill info: ${response.statusText}`, response.status, errorData.code);
+    }
+    const result = (await response.json());
+    return result.data;
+}
+/**
+ * Download skill as ZIP
+ */
+export async function downloadSkillZip(config, skillSlug) {
+    const url = getSkillDownloadUrl(config, skillSlug);
+    const response = await fetch(url, {
+        method: 'GET',
+        signal: AbortSignal.timeout(config.timeout * 2), // Longer timeout for download
+    });
+    if (!response.ok) {
+        throw new SkillApiError(`Failed to download skill: ${response.statusText}`, response.status);
+    }
+    return await response.arrayBuffer();
+}
+//# sourceMappingURL=skill-api.js.map

package/dist/lib/skill-api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"skill-api.js","sourceRoot":"","sources":["../../src/lib/skill-api.ts"],"names":[],"mappings":"AAqBA,gBAAgB;AAChB,MAAM,OAAO,aAAc,SAAQ,KAAK;IAG/B;IACA;IAHR,YACC,OAAe,EACR,UAAkB,EAClB,IAAa;QAEpB,KAAK,CAAC,OAAO,CAAC,CAAC;QAHR,eAAU,GAAV,UAAU,CAAQ;QAClB,SAAI,GAAJ,IAAI,CAAS;QAGpB,IAAI,CAAC,IAAI,GAAG,eAAe,CAAC;IAC7B,CAAC;CACD;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,MAAoB,EAAE,SAAiB;IAC/D,OAAO,GAAG,MAAM,CAAC,UAAU,WAAW,SAAS,EAAE,CAAC;AACnD,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAoB,EAAE,SAAiB;IACnE,OAAO,GAAG,MAAM,CAAC,UAAU,WAAW,SAAS,WAAW,CAAC;AAC5D,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CACnC,MAAoB,EACpB,SAAiB;IAEjB,MAAM,GAAG,GAAG,eAAe,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;IAE/C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QACjC,MAAM,EAAE,KAAK;QACb,OAAO,EAAE;YACR,MAAM,EAAE,kBAAkB;SAC1B;QACD,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC;KAC3C,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QAClB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,eAAe,CAAC,CAAC;QACrE,IAAI,SAAS,GAAsC,EAAE,CAAC;QACtD,IAAI,CAAC;YACJ,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QACnC,CAAC;QAAC,MAAM,CAAC;YACR,WAAW;QACZ,CAAC;QAED,MAAM,IAAI,aAAa,CACtB,SAAS,CAAC,KAAK,IAAI,+BAA+B,QAAQ,CAAC,UAAU,EAAE,EACvE,QAAQ,CAAC,MAAM,EACf,SAAS,CAAC,IAAI,CACd,CAAC;IACH,CAAC;IAED,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAwB,CAAC;IAC9D,OAAO,MAAM,CAAC,IAAI,CAAC;AACpB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACrC,MAAoB,EACpB,SAAiB;IAEjB,MAAM,GAAG,GAAG,mBAAmB,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;IAEnD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QACjC,MAAM,EAAE,KAAK;QACb,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,GAAG,CAAC,CAAC,EAAE,8BAA8B;KAC/E,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QAClB,MAAM,IAAI,aAAa,CACtB,6BAA6B,QAAQ,CAAC,UAAU,EAAE,EAClD,QAAQ,CAAC,MAAM,CACf,CAAC;IACH,CAAC;IAED,OAAO,MAAM,QAAQ,CAAC,WAAW,EAAE,CAAC;AACrC,CAAC"}

package/package.json

@@ -1,19 +1,58 @@
 {
-  "name": "skillstore",
-  "version": "0.0.1",
-  "description": "AI Skillstore SDK",
-  "main": "src/index.js",
-  "type": "module",
-  "scripts": {
-    "start": "node src/index.js",
-    "test": "echo \"Error: no test specified\" && exit 1"
-  },
-  "keywords": [
-    "skillstore",
-    "ai",
-    "skills",
-    "claude"
-  ],
-  "author": "",
-  "license": "MIT"
+	"name": "skillstore",
+	"version": "0.1.1",
+	"description": "Skillstore CLI - AI Skills marketplace for Claude Code",
+	"type": "module",
+	"main": "dist/index.js",
+	"types": "dist/index.d.ts",
+	"bin": {
+		"skillstore": "dist/cli/index.js"
+	},
+	"exports": {
+		".": {
+			"import": "./dist/index.js",
+			"types": "./dist/index.d.ts"
+		},
+		"./plugin": {
+			"import": "./dist/lib/plugin-api.js",
+			"types": "./dist/lib/plugin-api.d.ts"
+		}
+	},
+	"files": [
+		"dist"
+	],
+	"scripts": {
+		"build": "tsc",
+		"dev": "tsc --watch",
+		"check": "tsc --noEmit",
+		"test": "vitest run",
+		"test:watch": "vitest",
+		"test:coverage": "vitest run --coverage",
+		"prepublishOnly": "npm run build"
+	},
+	"keywords": [
+		"skillstore",
+		"ai",
+		"skills",
+		"claude",
+		"claude-code",
+		"codex",
+		"cli"
+	],
+	"author": "",
+	"license": "MIT",
+	"dependencies": {
+		"citty": "^0.1.6",
+		"consola": "^3.2.3",
+		"fflate": "^0.8.2"
+	},
+	"devDependencies": {
+		"@types/node": "^22.10.5",
+		"@vitest/coverage-v8": "^3.0.0",
+		"typescript": "^5.7.3",
+		"vitest": "^3.0.0"
+	},
+	"engines": {
+		"node": ">=18.0.0"
+	}
 }

package/src/index.js

@@ -1,16 +0,0 @@
-/**
- * Skillstore SDK
- * AI Skills marketplace for Claude Code
- */
-
-export function hello() {
-  return 'Hello, World!';
-}
-
-export function greet(name) {
-  return `Hello, ${name}!`;
-}
-
-if (import.meta.url === `file://${process.argv[1]}`) {
-  console.log(hello());
-}