sqlx-ts 0.33.0 → 0.34.0

package/.eslintrc.js

@@ -1,6 +1,7 @@
 module.exports = {
   "env": {
-    "browser": true,
+    "browser": false,
+    "node": true,
     "es2021": true,
   },
   "extends": [
@@ -15,5 +16,7 @@ module.exports = {
   "plugins": [
     "@typescript-eslint",
   ],
-  "rules": {},
+  "rules": {
+    "@typescript-eslint/no-var-requires": "off"
+  },
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "sqlx-ts",
-  "version": "0.33.0",
+  "version": "0.34.0",
   "description": "sqlx-ts ensures your raw SQLs are compile-time checked",
   "main": "dist/index.js",
   "maintainers": [
@@ -17,6 +17,9 @@
     "test": "npx jest",
     "prepublishOnly": "cp ../README.md . && npm i && npm run compile"
   },
+  "dependencies": {
+    "adm-zip": "^0.5.16"
+  },
   "devDependencies": {
     "@types/jest": "^27.4.1",
     "@types/node": "^20.14.8",

package/postinstall.js

@@ -1,8 +1,194 @@
-let execSync = require('child_process').execSync
-let tag = require('./package.json').version
+const { createHash } = require('crypto')
+const fs = require('fs')
+const https = require('https')
+const path = require('path')
+const os = require('os')
+const tag = require('./package.json').version
+const AdmZip = require('adm-zip')
 
-const os = process.platform
+const platform = process.platform
 const cpu = process.arch
 
-execSync(`curl -LSfs https://jasonshin.github.io/sqlx-ts/install.sh | sh -s -- --os ${os} --cpu ${cpu} --tag ${tag} -f`, { stdio: 'inherit' })
-console.info('sqlx-ts installation successful')
+const colors = {
+  reset: "\x1b[0m",
+  red: "\x1b[31m",
+  green: "\x1b[32m",
+  yellow: "\x1b[33m",
+  cyan: "\x1b[36m",
+}
+
+const info = (msg) => console.log(`${colors.cyan}INFO: ${msg} ${colors.reset}`)
+const success = (msg) => console.log(`${colors.green}SUCCESS: ${msg} ${colors.reset}`)
+const warn = (msg) => console.warn(`${colors.yellow}WARNING: ${msg} ${colors.reset}`)
+const error = (msg) => console.error(`${colors.red}ERROR: ${msg} ${colors.reset}`)
+
+function getBinaryInfo() {
+  let build = ''
+  if (platform === 'darwin') {
+    if (cpu === 'arm64') {
+      build = 'macos-arm'
+    } else {
+      build = 'macos-64-bit'
+    }
+  } else if (platform === 'win32') {
+    if (cpu === 'x64') {
+      build = 'windows-64-bit'
+    } else {
+      build = 'windows-32-bit'
+    }
+  } else if (platform === 'linux') {
+    if (cpu === 'x64') {
+      build = 'linux-64-bit'
+    } else if (cpu === 'arm64') {
+      build = 'linux-arm'
+    } else {
+      build = 'linux-32-bit'
+    }
+  } else {
+    throw new Error(`Unsupported platform: ${platform}-${cpu}`)
+  }
+
+  return {
+    build,
+    filename: `sqlx-ts-v${tag}-${build}.zip`,
+    binaryName: platform === 'win32' ? 'sqlx-ts.exe' : 'sqlx-ts'
+  }
+}
+
+function safeUnlink(filePath) {
+  try {
+    if (fs.existsSync(filePath)) {
+      fs.unlinkSync(filePath)
+    }
+  } catch (err) {
+    warn(`Failed to delete file: filePath: ${filePath}, err: ${err.message}`)
+  }
+}
+
+// Download file from URL
+function downloadFile(url, destination, redirectCount = 0) {
+  return new Promise((resolve, reject) => {
+    if (redirectCount > 5) {
+      return reject(new Error("Too many redirects while downloading file"))
+    }
+
+    const file = fs.createWriteStream(destination)
+    https.get(url, (response) => {
+      if (response.statusCode === 302 || response.statusCode === 301) {
+        // Handle redirects
+        // Close the current file and delete it
+        // Then download from the new location
+        file.close()
+        safeUnlink(destination)
+        return downloadFile(response.headers.location, destination, redirectCount + 1)
+          .then(resolve)
+          .catch(reject)
+      }
+
+      if (response.statusCode !== 200) {
+        file.close()
+        safeUnlink(destination)
+        return reject(new Error(`Failed to download: ${response.statusCode} ${response.statusMessage}`))
+      }
+
+      response.pipe(file)
+      file.on('finish', () => {
+        file.close(resolve)
+      })
+    }).on('error', (err) => {
+      safeUnlink(destination)
+      reject(err)
+    })
+  })
+}
+
+// Calculate SHA-256 hash of a file
+function calculateSHA256(filePath) {
+  return new Promise((resolve, reject) => {
+    const hash = createHash('sha256')
+    const stream = fs.createReadStream(filePath)
+
+    stream.on('data', (data) => hash.update(data))
+    stream.on('end', () => resolve(hash.digest('hex')))
+    stream.on('error', reject)
+  })
+}
+
+async function verifyHash(filePath, expectedHash) {
+  const actualHash = await calculateSHA256(filePath)
+
+  if (actualHash !== expectedHash) {
+    throw new Error(
+      `Hash mismatch!\n` +
+      `Expected: ${expectedHash}\n` +
+      `Got:      ${actualHash}\n` +
+      `This could indicate a corrupted download or a security issue.`
+    )
+  }
+
+  return true
+}
+
+function extractBinary(zipPath, binaryName, targetPath) {
+  const zip = new AdmZip(zipPath)
+  const zipEntries = zip.getEntries()
+
+  for (const entry of zipEntries) {
+    if (entry.entryName.endsWith(binaryName)) {
+      // Extract the entry's content directly
+      const data = entry.getData()
+      fs.writeFileSync(targetPath, data)
+      fs.chmodSync(targetPath, 0o755)
+      return
+    }
+  }
+
+  throw new Error(`Binary ${binaryName} not found in archive`)
+}
+
+async function install() {
+  try {
+    const { filename, binaryName } = getBinaryInfo()
+    const baseUrl = `https://github.com/JasonShin/sqlx-ts/releases/download/v${tag}`
+    const zipUrl = `${baseUrl}/${filename}`
+    const checksumUrl = `${zipUrl}.sha256`
+
+    const tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'sqlx-ts-'))
+    const zipPath = path.join(tmpDir, filename)
+    const checksumPath = path.join(tmpDir, `${filename}.sha256`)
+    const targetPath = path.join(__dirname, 'sqlx-ts' + (platform === 'win32' ? '.exe' : ''))
+
+    info(`Downloading sqlx-ts v${tag} for ${platform}-${cpu}...`)
+    info(`URL: ${zipUrl}`)
+
+    // Download the zip file
+    await downloadFile(zipUrl, zipPath)
+    success('Download complete')
+
+    // Download and verify the checksum
+    info('Downloading checksum...')
+    await downloadFile(checksumUrl, checksumPath)
+    const expectedHash = fs.readFileSync(checksumPath, 'utf8').trim()
+    info(`Expected SHA-256: ${expectedHash}`)
+
+    // Verify the hash
+    info('Verifying checksum...')
+    await verifyHash(zipPath, expectedHash)
+    success('Checksum verified successfully')
+
+    // Extract the binary
+    info('Extracting binary...')
+    extractBinary(zipPath, binaryName, targetPath)
+
+    // Cleanup
+    fs.rmSync(tmpDir, { recursive: true, force: true })
+
+    info('sqlx-ts installation successful')
+    process.exit(0)
+  } catch (err) {
+    error(`Installation failed: ${err.message}`)
+    process.exit(1)
+  }
+}
+
+install()

package/local-postinstall.js

@@ -1,10 +0,0 @@
-// This script is executed as part of sqlx-ts CI pipeline to test local ../scripts/install.sh changes
-// DO NOT USE THIS IN PRODUCTION
-let execSync = require('child_process').execSync
-let tag = require('./package.json').version
-
-const os = process.platform
-const cpu = process.arch
-
-execSync(`sh ../scripts/install.sh -s -- --os ${os} --cpu ${cpu} --tag ${tag} -f`, { stdio: 'inherit' })
-console.info('sqlx-ts installation successful')