windows-software-installer-skill 1.0.0

package/README.md

@@ -0,0 +1,59 @@
+# windows-software-installer-skill
+
+> 🛡️ 更安全的 Windows 软件安装器 — AI Agent Skill
+
+[![platform](https://img.shields.io/badge/platform-Windows-blue)](https://github.com/BingWuJ/windows-software-installer)
+[![type](https://img.shields.io/badge/type-Agent%20Skill-purple)](https://github.com/BingWuJ/windows-software-installer)
+[![license](https://img.shields.io/badge/license-MIT-green)](https://github.com/BingWuJ/windows-software-installer)
+
+一行命令安装，为 [pi Coding Agent](https://pi.dev) 和 [Claude Code](https://claude.ai/code) 提供安全的 Windows 软件安装能力。
+
+## 快速安装
+
+```bash
+npx windows-software-installer-skill
+```
+
+自动将 skill 文件安装到 `~/.agents/skills/` 和 `~/.claude/skills/`。
+
+## 使用方式
+
+安装完成后，在 pi 或 Claude Code 中直接使用：
+
+```
+/INSTALL vscode              # 通过 Scoop 安装
+/INSTALL D:\Downloads\setup.exe   # 从本地安装包安装
+/INSTALL https://example.com/app.exe  # 下载并验证后安装
+```
+
+## 三种安装模式
+
+| 模式 | 说明 | 安全级别 |
+|------|------|----------|
+| **Scoop** | 从 Scoop 仓库安装 | ✅ 最高 |
+| **Local file** | 从本地 .exe/.msi 安装 | ✅ 信任 |
+| **Verified download** | 下载后 SHA256/签名验证 | ✅ 已验证 |
+
+## 安全机制
+
+- 🔒 **SHA256 哈希校验** — 验证下载文件完整性
+- 🔏 **Authenticode 签名验证** — 确认发布者身份
+- 🌐 **HTTPS 强制** — 所有下载必须走加密连接
+- 📁 **C 盘保护** — 默认安装到 `D:\iStall\` 保持 C 盘干净
+
+## 要求
+
+- Windows 10/11
+- Node.js >= 16（用于 npx 安装）
+- Python 3.8+（安装脚本运行所需）
+
+## 手动安装
+
+```bash
+git clone https://github.com/BingWuJ/windows-software-installer ~/.agents/skills/windows-software-installer
+```
+
+## License
+
+MIT © [BingWuJ](https://github.com/BingWuJ)
+

package/bin/cli.js

@@ -0,0 +1,136 @@
+#!/usr/bin/env node
+'use strict';
+
+const path = require('path');
+const fs = require('fs');
+const os = require('os');
+
+// ─── 常量 ───────────────────────────────────────────────────────────────────
+const SKILL_NAME = 'windows-software-installer';
+const GREEN  = '\x1b[32m';
+const RED    = '\x1b[31m';
+const YELLOW = '\x1b[33m';
+const CYAN   = '\x1b[36m';
+const BOLD   = '\x1b[1m';
+const RESET  = '\x1b[0m';
+
+// ─── 工具函数 ───────────────────────────────────────────────────────────────
+function log(msg, color = '') {
+  console.log(`${color}${msg}${RESET}`);
+}
+
+function fail(msg) {
+  log(`\n[ERROR] ${msg}`, RED);
+  process.exit(1);
+}
+
+/**
+ * 递归复制目录，跳过 __pycache__ 和 .pyc 文件
+ */
+function copyRecursiveSync(src, dest) {
+  const stat = fs.statSync(src);
+  if (stat.isDirectory()) {
+    fs.mkdirSync(dest, { recursive: true });
+    for (const entry of fs.readdirSync(src)) {
+      if (entry === '__pycache__' || entry.endsWith('.pyc')) continue;
+      copyRecursiveSync(path.join(src, entry), path.join(dest, entry));
+    }
+  } else {
+    fs.copyFileSync(src, dest);
+  }
+}
+
+// ─── 主流程 ─────────────────────────────────────────────────────────────────
+
+// 1. 检测操作系统
+if (process.platform !== 'win32') {
+  fail('此 skill 仅支持 Windows 系统。');
+}
+
+// 2. 确定路径
+const pkgRoot   = path.resolve(__dirname, '..');
+const skillSrc  = path.join(pkgRoot, 'skill');
+const homeDir   = os.homedir();
+const agentsDir = path.join(homeDir, '.agents', 'skills', SKILL_NAME);
+const claudeDir = path.join(homeDir, '.claude', 'skills', SKILL_NAME);
+
+// 3. 检查包内 skill 文件是否存在
+if (!fs.existsSync(path.join(skillSrc, 'SKILL.md'))) {
+  fail(
+    `未找到 skill 源文件: ${skillSrc}\n` +
+    `npm 包可能已损坏，请尝试清除 npx 缓存后重试。`
+  );
+}
+
+// 4. 安装到 ~/.agents/skills/
+log(`\n${BOLD}正在安装 ${SKILL_NAME} skill...${RESET}`, CYAN);
+log(`  目标: ${agentsDir}\n`);
+
+// 清理已有安装
+if (fs.existsSync(agentsDir)) {
+  fs.rmSync(agentsDir, { recursive: true, force: true });
+}
+fs.mkdirSync(agentsDir, { recursive: true });
+
+// 复制 SKILL.md
+fs.copyFileSync(
+  path.join(skillSrc, 'SKILL.md'),
+  path.join(agentsDir, 'SKILL.md')
+);
+log('  [OK] SKILL.md', GREEN);
+
+// 复制 scripts/
+const scriptsSrc = path.join(skillSrc, 'scripts');
+if (fs.existsSync(scriptsSrc)) {
+  copyRecursiveSync(scriptsSrc, path.join(agentsDir, 'scripts'));
+  log('  [OK] scripts/', GREEN);
+}
+
+// 复制 references/
+const refsSrc = path.join(skillSrc, 'references');
+if (fs.existsSync(refsSrc)) {
+  copyRecursiveSync(refsSrc, path.join(agentsDir, 'references'));
+  log('  [OK] references/', GREEN);
+}
+
+// 5. 在 ~/.claude/skills/ 创建 Junction
+log(`\n${BOLD}设置 Claude Code 链接...${RESET}`, CYAN);
+
+const claudeSkillsDir = path.join(homeDir, '.claude', 'skills');
+if (!fs.existsSync(claudeSkillsDir)) {
+  fs.mkdirSync(claudeSkillsDir, { recursive: true });
+}
+
+// 移除已有的 junction / 目录
+// 注意：必须先判断是否为 symlink（junction），用 unlink 而非 rmSync
+// rmSync 对 junction 可能会递归删除目标内容
+if (fs.existsSync(claudeDir)) {
+  const stat = fs.lstatSync(claudeDir);
+  if (stat.isSymbolicLink()) {
+    fs.unlinkSync(claudeDir);
+  } else {
+    fs.rmSync(claudeDir, { recursive: true, force: true });
+  }
+}
+
+// 创建 Junction（Windows 目录联接，不需要管理员权限）
+try {
+  fs.symlinkSync(agentsDir, claudeDir, 'junction');
+  log(`  [OK] Junction: ${claudeDir}`, GREEN);
+  log(`       -> ${agentsDir}`, GREEN);
+} catch (err) {
+  log(`  [WARN] 无法创建 Junction: ${err.message}`, YELLOW);
+  log(`  请手动执行:`, YELLOW);
+  log(`  New-Item -ItemType Junction -Path "${claudeDir}" -Target "${agentsDir}"`, YELLOW);
+}
+
+// 6. 安装成功
+log(`\n${'='.repeat(55)}`, GREEN);
+log(`  ${SKILL_NAME} 安装成功!`, GREEN);
+log(`${'='.repeat(55)}`, GREEN);
+log(`\n${BOLD}在 pi 或 Claude Code 中使用:${RESET}`);
+log(`  /INSTALL vscode`);
+log(`  /INSTALL D:\\Downloads\\setup.exe`);
+log(`  /INSTALL https://vendor.example/app.exe`);
+log(`\n${BOLD}文件安装位置:${RESET}`);
+log(`  ${agentsDir}\n`);

package/package.json

@@ -0,0 +1,36 @@
+{
+  "name": "windows-software-installer-skill",
+  "version": "1.0.0",
+  "description": "Safer Windows software installer skill for AI coding agents (pi, Claude Code). Install via Scoop, local installer, or verified download with SHA256/Authenticode checks.",
+  "bin": {
+    "windows-software-installer-skill": "bin/cli.js"
+  },
+  "files": [
+    "bin/",
+    "skill/",
+    "README.md"
+  ],
+  "scripts": {
+    "sync": "node sync-skill.js",
+    "prepublishOnly": "node sync-skill.js"
+  },
+  "keywords": [
+    "pi",
+    "pi-coding-agent",
+    "claude-code",
+    "ai-agent",
+    "skill",
+    "windows",
+    "installer",
+    "scoop",
+    "winget"
+  ],
+  "author": "bingwuj",
+  "license": "MIT",
+  "engines": {
+    "node": ">=16.0.0"
+  },
+  "os": [
+    "win32"
+  ]
+}

package/skill/SKILL.md

@@ -0,0 +1,246 @@
+---
+name: windows-software-installer
+description: >
+  Safer Windows software installer for explicit Scoop, local installer, or verified download workflows.
+  Use when installing Windows software with controlled modes: (1) Scoop packages, (2) trusted local
+  .exe/.msi installers, or (3) HTTPS downloads that pass SHA256 or Authenticode signature checks.
+  Also trigger on concise requests such as /INSTALL vscode, /INSTALL 微信, /INSTALL D:\Downloads\setup.msi,
+  or /INSTALL https://vendor.example/app.exe. Avoid for generic "install anything" requests or arbitrary
+  unverified download-and-run flows. Note: winget is used only for discovery (to find the official download
+  URL or confirm a package exists), not for installation — winget's --location flag is frequently ignored
+  by installers, which would defeat the goal of keeping software off the C drive.
+---
+
+# Windows Software Installer
+
+Install Windows software through explicit modes with safer defaults. This skill keeps the existing default paths to avoid filling the C drive:
+
+- Default install directory: `D:\iStall\{software_name}`
+- Default download cache: `D:\WUDownloadCache`
+
+## Quick Entry
+
+Use `/INSTALL <payload>` as the short entrypoint for this skill. Treat `/INSTALL` and `/install` the same way.
+
+Interpret `<payload>` in this order:
+
+1. Absolute Windows path: use `local-file`
+2. HTTPS URL: use `download-verified`
+3. Anything else: treat as a software name → run `winget search <name>` and `scoop search <name>` only for discovery, then choose one explicit mode before installing
+
+Examples:
+
+```text
+/INSTALL vscode
+/INSTALL 微信
+/INSTALL D:\Downloads\Typeless-0.4.6-x64-Setup.exe
+/INSTALL https://vendor.example/app.exe
+```
+
+Rules:
+
+- `/INSTALL` is only a shorter entrypoint. It does not bypass any security checks.
+- Do not guess download links from vague software names.
+- Reject non-HTTPS URLs.
+- Reject local files that are not `.exe` or `.msi`.
+- If the request is more complex than a single payload, fall back to the explicit CLI arguments below.
+- For software-name payloads, discovery may inform the choice, but do not auto-switch modes during installation.
+
+## Modes
+
+### `scoop`
+Use when the software exists in Scoop and you want the lowest-risk path. Note: `--installer-type` is not needed for scoop mode, Scoop manages the installation internally.
+
+```bash
+python scripts/install_windows_software.py \
+  --mode scoop \
+  --software-name vscode
+```
+
+Optional bucket:
+
+```bash
+python scripts/install_windows_software.py \
+  --mode scoop \
+  --software-name neovim-nightly \
+  --scoop-bucket nightly
+```
+
+### `local-file`
+Use when the installer has already been downloaded manually and you trust the file source.
+
+```bash
+python scripts/install_windows_software.py \
+  --mode local-file \
+  --software-name typeless \
+  --local-file "D:\Downloads\Typeless-0.4.6-x64-Setup.exe" \
+  --installer-type nsis
+```
+
+### `download-verified`
+Use when you need the script to download the installer itself. Only HTTPS is allowed. The installer must either:
+
+- pass `--sha256`, or
+- have a valid Authenticode signature
+
+If the signature is valid but the publisher is not in the allowlist, the script asks for confirmation unless `--allow-untrusted-publisher` is provided.
+
+```bash
+python scripts/install_windows_software.py \
+  --mode download-verified \
+  --software-name wechat \
+  --download-url "https://example.com/WeChatSetup.exe" \
+  --installer-type nsis \
+  --publisher Tencent
+```
+
+With SHA256:
+
+```bash
+python scripts/install_windows_software.py \
+  --mode download-verified \
+  --software-name sumatrapdf \
+  --download-url "https://www.sumatrapdfreader.org/dl/rel/3.5.2/SumatraPDF-3.5.2-64-install.exe" \
+  --installer-type nsis \
+  --sha256 "<sha256>"
+```
+
+Interactive mode (launches the installer UI with the install directory pre-filled; success here means the installer was launched, and you handle the remaining steps to avoid bundled software):
+
+```bash
+python scripts/install_windows_software.py \
+  --mode download-verified \
+  --software-name wechat \
+  --download-url "https://example.com/WeChatSetup.exe" \
+  --installer-type nsis \
+  --publisher Tencent \
+  --interactive
+```
+
+With CDN Referer protection (download URL requires a Referer header):
+
+```bash
+python scripts/install_windows_software.py \
+  --mode download-verified \
+  --software-name shandianshuo \
+  --download-url "https://download.shandianshuo.cn/windows/shandianshuo_0.6.7_x64-setup.exe" \
+  --installer-type nsis \
+  --referer "https://shandianshuo.cn/" \
+  --allow-untrusted-publisher
+```
+
+## Security Rules
+
+- Use one explicit mode. Discovery is allowed, but installation must use a single chosen mode with no automatic fallback.
+- Only HTTPS download URLs are allowed.
+- Do not pass arbitrary installer argument strings.
+- `download-verified` refuses unsigned installers.
+- Signed installers from unknown publishers require confirmation unless `--allow-untrusted-publisher` is set.
+- `local-file` mode copies the installer into the install directory for execution, but does not delete the original file.
+
+## Parameters
+
+| Parameter | Required | Modes | Description |
+|---|---|---|---|
+| `--mode` | Yes | all | `scoop`, `local-file`, or `download-verified` |
+| `--software-name` | Yes | all | Safe identifier used for Scoop and default install dir |
+| `--installer-type` | Yes | local-file, download-verified | `nsis`, `inno`, or `msi` |
+| `--scoop-bucket` | No | scoop | Optional Scoop bucket |
+| `--local-file` | Yes | local-file | Absolute path to a trusted `.exe` or `.msi` |
+| `--download-url` | Yes | download-verified | HTTPS URL to the installer |
+| `--sha256` | No | download-verified | Strongest verification when vendor provides a hash |
+| `--publisher` | No | download-verified | Expected publisher hint for signed installers |
+| `--allow-untrusted-publisher` | No | download-verified | Skip the confirmation step for valid but unlisted publishers |
+| `--referer` | No | download-verified | Referer header URL for CDN hotlink protection (e.g. the software's official site) |
+| `--interactive` | No | local-file, download-verified | Launch installer in interactive mode so you can manually uncheck bundled software |
+| `--install-dir` | No | all | Override install destination; default is `D:\iStall\{software_name}` |
+
+## Full Auto Workflow (recommended for winget-listed software)
+
+When the software has a winget entry with `Installer Type: exe/msi`, use this pipeline to discover the URL automatically and download via Neat Download Manager:
+
+```powershell
+# Step 1: find the Package ID
+winget search <name>
+
+# Step 2: extract official URL and SHA256
+winget show <PackageId>
+# Look for:
+#   Installer Url: https://...
+#   Installer SHA256: <hash>
+```
+
+```bash
+# Step 3: download-verified with the values from winget show
+python scripts/install_windows_software.py \
+  --mode download-verified \
+  --software-name <name> \
+  --download-url "<Installer Url>" \
+  --installer-type <inno|nsis|msi> \
+  --sha256 "<Installer SHA256>"
+```
+
+The script auto-detects Neat Download Manager (via registry) and uses it as the download engine. If NDM is not installed it falls back to aria2c, and if aria2c also fails, it falls back to PowerShell `Invoke-WebRequest` (which supports `--referer` for CDN hotlink protection). After downloading, it verifies the SHA256 and installs to `D:\iStall\<name>`. Use this only after you have explicitly chosen `download-verified` as the install mode.
+
+**Note:** `winget show` sometimes lists `Installer Type: msstore` — those are Microsoft Store apps. They cannot be redirected to D: and this workflow does not apply.
+
+## When To Prefer Each Mode
+
+- **Discovery first**: Run `winget search <name>` and `scoop search <name>` to find what's available. winget has broader coverage for mainstream consumer software; scoop is better for CLI/dev tools.
+- **Do NOT install via winget** even if it lists the package — winget's `--location` flag is frequently ignored by the underlying installer, which defeats the goal of keeping software off the C drive.
+- **Use `scoop`** when the package is found in Scoop. Scoop respects the install location because it manages the directory itself.
+- **Use `local-file`** for installers you already downloaded yourself.
+- **Use `download-verified`** when scoop doesn't have it and you need to download from a vendor URL. Always required — downloading from an "official" URL alone is not sufficient, as CDN compromise or MITM can tamper with the file in transit.
+- **Add `--interactive`** when the installer is known to bundle unwanted software (common with Chinese consumer apps like WeChat, Baidu, 360). The script will pre-fill the install directory and launch the installer UI; you then manually uncheck bundled offers and complete the installation.
+
+**Exception**: if the user explicitly accepts C drive installation, winget is fine and simpler.
+
+## Finding the Download URL from an Official Website
+
+When winget and scoop both come up empty, you need to find the download URL from the vendor's website. The full discovery flow is:
+
+**Step 1: Web search to find the official website.**
+
+Use a web search tool to look up the software name. The goal is to find the vendor's official site URL (not a third-party download mirror).
+
+**Step 2: Fetch the raw HTML and extract download links.**
+
+**Do not use webReader / web_fetch_exa / tavily_extract** for this — these tools render pages into readable markdown and strip HTML tag attributes, so `<a href="https://download.example.com/setup.exe">` download links are lost entirely.
+
+Instead, fetch the raw HTML and search for installer URLs:
+
+```powershell
+$env:HTTPS_PROXY = 'http://127.0.0.1:10809'
+$env:HTTP_PROXY  = 'http://127.0.0.1:10809'
+$env:NODE_USE_ENV_PROXY = '1'
+node -e "fetch('https://official-site.example/').then(r=>r.text()).then(t=>{const matches=t.match(/https?:\/\/[^\s\"'<>]+\.exe/gi); console.log(matches||'no exe links found')}).catch(e=>console.error(e.message))"
+```
+
+This returns the direct download URLs embedded in the page. If Node.js is not available, use the PowerShell equivalent:
+
+```powershell
+$response = Invoke-WebRequest -Uri 'https://official-site.example/' -UseBasicParsing
+$matches = [regex]::Matches($response.Content, 'https?://[^\s""''<>]+\.exe', 'IgnoreCase')
+if ($matches.Count -gt 0) { $matches.Value } else { Write-Host 'no exe links found' }
+```
+
+If the site is a single-page app that loads content via JavaScript, the HTML source may not contain the links — in that case try the site's GitHub releases page, or search the web for `<software name> download url exe` to find cached or documented download links.
+
+## Troubleshooting
+
+**Q: The vendor does not publish SHA256.**
+A: Use `download-verified` with a valid digital signature and `--publisher`. If the signer is valid but not allowlisted, review the displayed signer and confirm manually.
+
+**Q: I do not want software to install to C:.**
+A: The default install path remains `D:\iStall\{software_name}`. You can also set `--install-dir` explicitly.
+
+**Q: Can I still use arbitrary installer switches?**
+A: No. This skill intentionally removes free-form installer arguments to reduce command injection and mismatched installer behavior.
+
+**Q: Download fails with 403 Forbidden from CDN.**
+A: Many Chinese software CDNs (e.g. `download.*.cn` subdomains) enforce Referer-based hotlink protection — they reject downloads that don't carry the official site as the `Referer` header. NDM and aria2c do not send Referer headers, so the script falls back to PowerShell `Invoke-WebRequest`. Use `--referer "https://official-site.example/"` to pass the official site URL. If you see an error mentioning `Referer ACL` or `denied by Referer ACL`, this is the cause.
+
+## Reference Materials
+
+- See [references/scoop-buckets.md](references/scoop-buckets.md) for bucket guidance.
+- See [references/installer-patterns.md](references/installer-patterns.md) for the installer templates supported by this skill.

package/skill/evals/evals.json

@@ -0,0 +1,147 @@
+{
+  "skill_name": "windows-software-installer",
+  "evals": [
+    {
+      "id": 0,
+      "prompt": "/INSTALL vscode",
+      "expected_output": "识别 /INSTALL 为简洁入口，并映射到 scoop 模式",
+      "assertions": [
+        "Recognizes /INSTALL as the skill trigger",
+        "Treats vscode as a software name",
+        "Uses --mode scoop"
+      ]
+    },
+    {
+      "id": 1,
+      "prompt": "帮我用 Scoop 安装 VS Code",
+      "expected_output": "识别为显式 scoop 模式，给出更安全的新命令格式",
+      "assertions": [
+        "Uses --mode scoop",
+        "Uses --software-name vscode"
+      ]
+    },
+    {
+      "id": 4,
+      "prompt": "/INSTALL D:\\Downloads\\app.msi",
+      "expected_output": "识别 /INSTALL + 绝对路径为 local-file 模式，并推断 msi 安装器类型",
+      "assertions": [
+        "Recognizes /INSTALL as the skill trigger",
+        "Uses --mode local-file",
+        "Uses --local-file parameter",
+        "Uses --installer-type msi"
+      ]
+    },
+    {
+      "id": 5,
+      "prompt": "/INSTALL https://vendor.example/app.exe",
+      "expected_output": "识别 /INSTALL + HTTPS URL 为 download-verified 模式",
+      "assertions": [
+        "Recognizes /INSTALL as the skill trigger",
+        "Uses --mode download-verified",
+        "Uses --download-url",
+        "Mentions SHA256 or Authenticode verification"
+      ]
+    },
+    {
+      "id": 2,
+      "prompt": "帮我从官网下载安装微信，如果没有 SHA256 就用签名校验",
+      "expected_output": "识别为 download-verified 模式，并要求 HTTPS 与签名或哈希验证",
+      "assertions": [
+        "Uses --mode download-verified",
+        "Uses --download-url",
+        "Mentions SHA256 or Authenticode verification",
+        "Mentions publisher confirmation or allowlist"
+      ]
+    },
+    {
+      "id": 3,
+      "prompt": "从本地文件 D:\\Downloads\\app.msi 安装软件",
+      "expected_output": "识别为 local-file 模式，并使用绝对路径和安装器类型",
+      "assertions": [
+        "Uses --mode local-file",
+        "Uses --local-file parameter",
+        "Uses --installer-type msi"
+      ]
+    },
+    {
+      "id": 6,
+      "prompt": "/INSTALL sumatrapdf --sha256 abc123",
+      "expected_output": "download-verified 模式 + SHA256 哈希校验",
+      "assertions": [
+        "Uses --mode download-verified",
+        "Uses --download-url",
+        "Uses --sha256",
+        "Mentions SHA256 verification"
+      ]
+    },
+    {
+      "id": 7,
+      "prompt": "从官网下载安装闪电说，官网是 shandianshuo.cn，可能有 CDN 防盗链",
+      "expected_output": "download-verified 模式 + referer 参数",
+      "assertions": [
+        "Uses --mode download-verified",
+        "Uses --referer",
+        "Mentions CDN or Referer"
+      ]
+    },
+    {
+      "id": 8,
+      "prompt": "安装微信，要用交互式安装，我怕它捆绑软件",
+      "expected_output": "download-verified 模式 + interactive 参数",
+      "assertions": [
+        "Uses --mode download-verified",
+        "Uses --interactive",
+        "Mentions bundled software or manual uncheck"
+      ]
+    },
+    {
+      "id": 9,
+      "prompt": "/INSTALL D:\\Downloads\\app-setup.exe",
+      "expected_output": "local-file 模式 + exe (非 msi)",
+      "assertions": [
+        "Uses --mode local-file",
+        "Uses --local-file",
+        "Mentions installer type for exe"
+      ]
+    },
+    {
+      "id": 10,
+      "prompt": "/INSTALL http://example.com/app.exe",
+      "expected_output": "拒绝非 HTTPS URL",
+      "assertions": [
+        "Rejects non-HTTPS URL",
+        "Requires HTTPS download URL"
+      ]
+    },
+    {
+      "id": 11,
+      "prompt": "/INSTALL D:\\Downloads\\readme.txt",
+      "expected_output": "拒绝非 exe/msi 文件",
+      "assertions": [
+        "Rejects non-exe/msi file",
+        "Mentions only exe or msi allowed"
+      ]
+    },
+    {
+      "id": 12,
+      "prompt": "帮我在 winget 里搜索 Firefox，然后用它的官方下载链接安装",
+      "expected_output": "winget discover + download-verified 模式（Full Auto Workflow）",
+      "assertions": [
+        "Runs winget search for discovery",
+        "Uses winget show to get URL and SHA256",
+        "Uses --mode download-verified",
+        "Uses --sha256 from winget output"
+      ]
+    },
+    {
+      "id": 13,
+      "prompt": "/INSTALL D:\\Downloads\\MyApp-setup.exe 这个安装包是 Inno Setup 格式的",
+      "expected_output": "local-file 模式 + inno 安装器类型",
+      "assertions": [
+        "Uses --mode local-file",
+        "Uses --installer-type inno",
+        "Mentions Inno Setup"
+      ]
+    }
+  ]
+}

package/skill/references/installer-patterns.md

@@ -0,0 +1,56 @@
+# Supported Installer Patterns
+
+This skill no longer accepts free-form installer arguments. It uses built-in templates for a small set of installer types that can reliably honor the requested install directory.
+
+## Supported Types
+
+### NSIS
+- Base flags: `/S`
+- Install directory: `/D=<path>` appended by the script
+
+### Inno Setup
+- Base flags: `/VERYSILENT /NORESTART`
+- Install directory: `/DIR="<path>"` appended by the script
+
+### MSI
+- Executed through `msiexec`
+- Base flags: `/quiet /norestart`
+- Install directory: `TARGETDIR=<path> INSTALLDIR=<path>` (both passed for maximum compatibility)
+
+
+## Verification Rules
+
+### `download-verified`
+A download is allowed to run only if one of these conditions is true:
+
+1. The provided `--sha256` matches the downloaded file.
+2. The file has a valid Authenticode signature and either:
+   - the signer matches the publisher allowlist, or
+   - the user confirms a valid but unlisted publisher.
+
+Unsigned downloads are rejected.
+
+### `local-file`
+Local installers must be `.exe` or `.msi` files on an absolute path.
+
+## Interactive Mode (`--interactive`)
+
+When `--interactive` is set, the silent flags are omitted but the install directory is still passed. This launches the installer UI with the directory pre-filled. In interactive mode, success means the installer was launched; the user then manually:
+
+- Uncheck bundled software offers (common in Chinese consumer apps)
+- Review license agreements
+- Choose custom components
+
+**Flags used in interactive mode:**
+
+| Type | Interactive flags |
+|------|-------------------|
+| NSIS | `/D=<path>` (no `/S`) |
+| Inno | `/DIR="<path>"` (no `/VERYSILENT /NORESTART`) |
+| MSI | `TARGETDIR=... INSTALLDIR=...` (no `/quiet /norestart`) |
+
+Interactive mode is only available for `local-file` and `download-verified` modes, not `scoop`.
+
+## Why this skill removed custom arguments
+
+The previous version accepted arbitrary installer switches and executed shell strings directly. That made command injection and unsafe installer execution too easy. The current version keeps behavior predictable and auditable by using fixed templates.

package/skill/references/scoop-buckets.md

@@ -0,0 +1,141 @@
+# Scoop Buckets Reference
+
+Common Scoop buckets and their typical software packages.
+
+## Official Buckets
+
+### `main` (default)
+The default bucket containing stable, well-maintained software.
+
+Common packages:
+- `python` - Python programming language
+- `nodejs` - Node.js JavaScript runtime
+- `git` - Git version control
+- `vim` - Vim text editor
+- `neovim` - Neovim text editor
+- `ffmpeg` - FFmpeg multimedia framework
+- `curl` - curl data transfer tool
+- `wget` - wget download utility
+- `grep` - grep text search
+- `tar` - tar archive utility
+
+### `extras`
+Software that doesn't meet the criteria for the main bucket but is still useful.
+
+Common packages:
+- `vscode` - Visual Studio Code
+- `chrome` - Google Chrome browser
+- `firefox` - Mozilla Firefox browser
+- `notepadplusplus` - Notepad++ text editor
+- `sublime-text` - Sublime Text editor
+- `obsidian` - Obsidian note-taking app
+- `typora` - Typora markdown editor
+- `telegram` - Telegram messenger
+- `discord` - Discord chat app
+- `spotify` - Spotify music streaming
+- `steam` - Steam gaming platform
+- `vlc` - VLC media player
+
+### `versions`
+Multiple versions of software (nightly, beta, portable, etc.)
+
+Common packages:
+- `python-nightly`
+- `nodejs-nightly`
+- `rust-nightly`
+- `gcc-nightly`
+
+### `nightly`
+Nightly builds of software.
+
+Common packages:
+- `neovim-nightly`
+- `ruby-nightly`
+
+### `nerd-fonts`
+Nerd Fonts - patched fonts for developers.
+
+Common packages:
+- `FiraCode-NF`
+- `JetBrainsMono-NF`
+- `Hack-NF`
+- `SourceCodePro-NF`
+
+## Third-Party Buckets
+
+### `nonportable`
+Contains non-portable versions of software (requires installation, not portable).
+
+Usage:
+```bash
+scoop bucket add nonportable
+scoop install nonportable/<app-name>
+```
+
+### `games`
+Game-related software and tools.
+
+### `java`
+Java Development Kits and Runtime Environments.
+
+Common packages:
+- `temurin-jdk` - Eclipse Temurin JDK (formerly AdoptOpenJDK)
+- `openjdk` - OpenJDK
+- `oraclejdk` - Oracle JDK
+
+## Managing Buckets
+
+### Add a bucket:
+```bash
+scoop bucket add <bucket-name>
+```
+
+### List known buckets:
+```bash
+scoop bucket known
+```
+
+### List installed buckets:
+```bash
+scoop bucket list
+```
+
+### Remove a bucket:
+```bash
+scoop bucket rm <bucket-name>
+```
+
+## Searching for Software
+
+### Search all buckets:
+```bash
+scoop search <software-name>
+```
+
+### Search specific bucket:
+```bash
+scoop search <software-name> # Shows results from all buckets with bucket names
+```
+
+## Bucket Selection Tips
+
+1. **Try main bucket first** - Most stable and well-maintained packages
+2. **Use extras for GUI apps** - Popular desktop applications
+3. **Use versions for alternatives** - When you need specific versions or variants
+4. **Use nightly for bleeding edge** - Latest development builds (may be unstable)
+5. **Add third-party buckets as needed** - For specialized software
+
+## Example: Finding Software
+
+To find where VS Code is located:
+```bash
+scoop search vscode
+# Output shows: 'vscode' bucket 'extras'
+```
+
+Then install with:
+```bash
+scoop install vscode --bucket extras
+# or simply (scoop finds it automatically):
+scoop install vscode
+```

package/skill/scripts/install_windows_software.py

@@ -0,0 +1,542 @@
+#!/usr/bin/env python3
+"""
+Windows Software Installer
+
+Install software on Windows using one of three explicit modes:
+- scoop
+- local-file
+- download-verified
+"""
+
+import argparse
+import hashlib
+import os
+import shutil
+import subprocess
+import sys
+from pathlib import Path
+from urllib.parse import urlparse
+
+
+DEFAULT_INSTALL_ROOT = Path("D:/iStall")
+DEFAULT_DOWNLOAD_CACHE = Path("D:/WUDownloadCache")
+SAFE_NAME_CHARS = set("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-._+")
+SAFE_BUCKET_CHARS = set("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-_")
+SAFE_EXTENSIONS = {".exe", ".msi"}
+DEFAULT_PUBLISHERS = {
+    "Tencent Technology (Shenzhen) Company Limited",
+    "Tencent",
+    "Microsoft Corporation",
+    "Google LLC",
+    "Mozilla Corporation",
+    "Notepad++ Team",
+    "VideoLAN",
+    "GitHub, Inc.",
+}
+
+INSTALLER_TEMPLATES = {
+    "nsis": ["/S"],
+    "inno": ["/VERYSILENT", "/NORESTART"],
+    "msi": ["/quiet", "/norestart"],
+}
+
+
+def safe_print_command(cmd):
+    print("Running:", " ".join(str(part) for part in cmd))
+
+
+def run_command(cmd, check=True, capture_output=True):
+    safe_print_command(cmd)
+    return subprocess.run(
+        cmd,
+        check=check,
+        capture_output=capture_output,
+        text=True,
+    )
+
+
+def fail(message):
+    print(message, file=sys.stderr)
+    return 1
+
+
+def ps_single_quote(value):
+    return str(value).replace("'", "''")
+
+
+def validate_safe_token(value, label, allowed_chars):
+    if not value or any(char not in allowed_chars for char in value):
+        raise ValueError(f"Invalid {label}: {value!r}")
+    return value
+
+
+def ensure_windows_absolute_path(path_value, label):
+    path = Path(path_value)
+    if not path.is_absolute():
+        raise ValueError(f"{label} must be an absolute path: {path_value}")
+    return path
+
+
+def get_default_install_dir(software_name):
+    return DEFAULT_INSTALL_ROOT / software_name
+
+
+def validate_installer_file(path):
+    if not path.exists():
+        raise ValueError(f"Installer file not found: {path}")
+    if not path.is_file():
+        raise ValueError(f"Installer path is not a file: {path}")
+    if path.suffix.lower() not in SAFE_EXTENSIONS:
+        raise ValueError(f"Unsupported installer type: {path.suffix}")
+
+
+def validate_download_url(url):
+    parsed = urlparse(url)
+    if parsed.scheme.lower() != "https":
+        raise ValueError("download-url must use HTTPS")
+    if not parsed.netloc:
+        raise ValueError("download-url must include a hostname")
+    return parsed
+
+
+def verify_sha256(path, expected_sha256):
+    digest = hashlib.sha256()
+    with path.open("rb") as handle:
+        for chunk in iter(lambda: handle.read(1024 * 1024), b""):
+            digest.update(chunk)
+    actual = digest.hexdigest().lower()
+    return actual == expected_sha256.lower(), actual
+
+
+def get_authenticode_signature(path):
+    escaped = str(path).replace("'", "''")
+    command = [
+        "pwsh",
+        "-NoProfile",
+        "-Command",
+        (
+            f"Get-AuthenticodeSignature -FilePath '{escaped}' | "
+            "Select-Object @{Name='Status';Expression={$_.Status.ToString()}},"
+            "StatusMessage,"
+            "@{Name='Signer';Expression={"
+            "if ($_.SignerCertificate) { $_.SignerCertificate.Subject } else { '' }"
+            "}} | ConvertTo-Json -Compress"
+        ),
+    ]
+    result = run_command(command, check=False)
+    if result.returncode != 0 or not result.stdout.strip():
+        return None
+
+    try:
+        import json
+
+        payload = json.loads(result.stdout)
+    except Exception:
+        return None
+
+    return {
+        "status": payload.get("Status", ""),
+        "status_message": payload.get("StatusMessage", ""),
+        "signer": payload.get("Signer", ""),
+    }
+
+
+def signature_is_valid(signature):
+    return signature and signature.get("status") == "Valid" and signature.get("signer")
+
+
+def signer_matches_allowlist(signature, publisher, allowlisted_publishers):
+    signer = signature.get("signer", "")
+    if publisher:
+        return publisher.lower() in signer.lower()
+    return any(candidate.lower() in signer.lower() for candidate in allowlisted_publishers)
+
+
+def confirm_untrusted_publisher(signature):
+    signer = signature.get("signer", "")
+    print("Publisher is not in the allowlist.")
+    print(f"Detected publisher: {signer}")
+    answer = input("Continue anyway? [y/N]: ").strip().lower()
+    return answer in {"y", "yes"}
+
+
+def check_scoop_installed():
+    result = run_command(["scoop", "--version"], check=False)
+    return result.returncode == 0
+
+
+def install_with_scoop(software_name, bucket=None):
+    if not check_scoop_installed():
+        print("Scoop is not installed.")
+        return False
+
+    command = ["scoop", "install", software_name]
+    if bucket:
+        command.extend(["--bucket", bucket])
+
+    result = run_command(command, check=False)
+    if result.returncode != 0:
+        print(f"Scoop installation of {software_name} failed")
+        return False
+
+    verify_result = run_command(["scoop", "list"], check=False)
+    if verify_result.returncode != 0:
+        print("Could not verify Scoop installation")
+        return False
+
+    installed = any(
+        line.split()[0].lower() == software_name.lower()
+        for line in verify_result.stdout.splitlines()
+        if line.strip() and not line.startswith("Installed apps:")
+    )
+    if installed:
+        print(f"Successfully installed {software_name} via Scoop")
+        return True
+
+    print(f"Scoop did not report {software_name} as installed")
+    return False
+
+
+def find_ndm():
+    """Return (ndm_exe, ndm_db) if Neat Download Manager is installed, else (None, None)."""
+    try:
+        import winreg
+        for hive in (winreg.HKEY_CURRENT_USER, winreg.HKEY_LOCAL_MACHINE):
+            for subpath in (
+                r"Software\Microsoft\Windows\CurrentVersion\Uninstall",
+                r"Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall",
+            ):
+                try:
+                    key = winreg.OpenKey(hive, subpath)
+                except OSError:
+                    continue
+                i = 0
+                while True:
+                    try:
+                        sub = winreg.OpenKey(key, winreg.EnumKey(key, i))
+                        try:
+                            name = winreg.QueryValueEx(sub, "DisplayName")[0]
+                            if "Neat Download Manager" in name:
+                                loc = winreg.QueryValueEx(sub, "InstallLocation")[0]
+                                exe = Path(loc) / "NeatDM.exe"
+                                db = Path(os.environ["APPDATA"]) / "NeatDM" / "NeatDB.db"
+                                if exe.exists() and db.exists():
+                                    return exe, db
+                        except OSError:
+                            pass
+                        finally:
+                            sub.Close()
+                        i += 1
+                    except OSError:
+                        break
+                key.Close()
+    except Exception:
+        pass
+    return None, None
+
+
+def download_with_ndm(download_url, ndm_exe, ndm_db, timeout=600):
+    """Dispatch a URL to Neat Download Manager and wait for completion.
+    Returns the Path of the downloaded file."""
+    import sqlite3, time
+
+    conn = sqlite3.connect(str(ndm_db))
+    max_id = conn.execute("SELECT COALESCE(MAX(id), 0) FROM downloads").fetchone()[0]
+    conn.close()
+
+    print(f"Sending to NDM: {download_url}")
+    subprocess.Popen([str(ndm_exe), download_url])
+
+    deadline = time.time() + timeout
+    last_status = ""
+    while time.time() < deadline:
+        time.sleep(2)
+        try:
+            conn = sqlite3.connect(str(ndm_db))
+            row = conn.execute(
+                "SELECT filename, status, folderpath FROM downloads "
+                "WHERE id > ? AND url = ? ORDER BY id DESC LIMIT 1",
+                (max_id, download_url),
+            ).fetchone()
+            conn.close()
+        except Exception:
+            continue
+
+        if not row:
+            continue
+        filename, status, folderpath = row
+        if status != last_status:
+            print(f"NDM: {status}")
+            last_status = status
+
+        if "Complete" in status:
+            return Path(folderpath) / filename
+        if "Error" in status:
+            raise RuntimeError(f"NDM download failed: {status}")
+
+    raise RuntimeError("NDM download timed out after 10 minutes")
+
+
+def download_with_powershell(download_url, destination, referer=None):
+    """Fallback download using PowerShell Invoke-WebRequest.
+    Supports Referer header for CDN hotlink protection."""
+    escaped_url = ps_single_quote(download_url)
+    escaped_destination = ps_single_quote(destination)
+    headers_clause = ""
+    if referer:
+        escaped_referer = ps_single_quote(referer)
+        headers_clause = f"-Headers @{{Referer='{escaped_referer}'}}"
+
+    cmd = [
+        "pwsh", "-NoProfile", "-Command",
+        (
+            "$ProgressPreference = 'SilentlyContinue'; "
+            f"Invoke-WebRequest -Uri '{escaped_url}' -OutFile '{escaped_destination}' "
+            f"-UseBasicParsing {headers_clause}"
+        ),
+    ]
+    result = run_command(cmd, check=False)
+    return result.returncode == 0 and destination.exists()
+
+
+def download_installer(download_url, destination, referer=None):
+    """Download to destination. Tries NDM → aria2c → PowerShell (with Referer support)."""
+    destination.parent.mkdir(parents=True, exist_ok=True)
+
+    ndm_exe, ndm_db = find_ndm()
+    if ndm_exe:
+        try:
+            downloaded = download_with_ndm(download_url, ndm_exe, ndm_db)
+            shutil.copy2(downloaded, destination)
+            return True
+        except Exception as exc:
+            print(f"NDM failed ({exc}), falling back to aria2c")
+
+    result = run_command(
+        ["aria2c", "--allow-overwrite=true", "-d", str(destination.parent), "-o", destination.name, download_url],
+        check=False,
+    )
+    if result.returncode == 0:
+        return True
+
+    print("aria2c failed, falling back to PowerShell Invoke-WebRequest")
+    return download_with_powershell(download_url, destination, referer)
+
+
+def build_install_command(installer_path, installer_type, install_dir, interactive=False):
+    installer_type = installer_type.lower()
+    if installer_type == "installshield":
+        raise ValueError("installshield installers are not supported because a generic silent install cannot reliably honor --install-dir")
+    if installer_type not in INSTALLER_TEMPLATES:
+        raise ValueError(f"Unsupported installer type: {installer_type}")
+
+    if installer_type == "msi":
+        cmd = ["msiexec", "/i", str(installer_path)]
+        if not interactive:
+            cmd.extend(INSTALLER_TEMPLATES["msi"])
+        cmd.append(f"TARGETDIR={install_dir}")
+        cmd.append(f"INSTALLDIR={install_dir}")
+        return cmd
+
+    command = [str(installer_path)]
+    if not interactive:
+        command.extend(INSTALLER_TEMPLATES[installer_type])
+
+    if installer_type == "nsis":
+        command.append(f"/D={install_dir}")
+    elif installer_type == "inno":
+        command.append(f'/DIR="{install_dir}"')
+    return command
+
+
+def verify_manual_install(install_dir, ignored_paths=None):
+    if not install_dir.exists():
+        return False
+
+    ignored = {Path(path).resolve() for path in (ignored_paths or [])}
+    for pattern in ("*.exe", "*.lnk", "*.dll"):
+        for candidate in install_dir.rglob(pattern):
+            if candidate.resolve() not in ignored:
+                return True
+    return False
+
+
+def prepare_local_installer(local_file, software_name, install_dir):
+    source = ensure_windows_absolute_path(local_file, "local-file")
+    validate_installer_file(source)
+    install_dir.mkdir(parents=True, exist_ok=True)
+
+    copied_path = install_dir / f"{software_name}-installer{source.suffix.lower()}"
+    shutil.copy2(source, copied_path)
+    return copied_path
+
+
+def prepare_downloaded_installer(download_url, software_name, install_dir, referer=None):
+    parsed = validate_download_url(download_url)
+    install_dir.mkdir(parents=True, exist_ok=True)
+    DEFAULT_DOWNLOAD_CACHE.mkdir(parents=True, exist_ok=True)
+
+    extension = Path(parsed.path).suffix.lower()
+    if extension not in SAFE_EXTENSIONS:
+        raise ValueError("download-url must point to an .exe or .msi installer")
+
+    cache_path = DEFAULT_DOWNLOAD_CACHE / f"{software_name}-installer{extension}"
+    if not download_installer(download_url, cache_path, referer):
+        raise RuntimeError(f"Failed to download installer from {download_url}")
+
+    final_path = install_dir / cache_path.name
+    shutil.copy2(cache_path, final_path)
+    return cache_path, final_path
+
+
+def validate_downloaded_installer(installer_path, sha256_value, publisher, allow_untrusted_publisher):
+    if sha256_value:
+        is_valid, actual_sha256 = verify_sha256(installer_path, sha256_value)
+        if not is_valid:
+            raise RuntimeError(
+                "SHA256 mismatch for downloaded installer. "
+                f"Expected {sha256_value.lower()}, got {actual_sha256}"
+            )
+        print("SHA256 verification passed.")
+        return
+
+    signature = get_authenticode_signature(installer_path)
+    if not signature_is_valid(signature):
+        raise RuntimeError("Downloaded installer does not have a valid Authenticode signature")
+
+    if signer_matches_allowlist(signature, publisher, DEFAULT_PUBLISHERS):
+        print(f"Trusted signed publisher detected: {signature['signer']}")
+        return
+
+    if allow_untrusted_publisher or confirm_untrusted_publisher(signature):
+        print(f"Proceeding with signed but untrusted publisher: {signature['signer']}")
+        return
+
+    raise RuntimeError("Publisher is signed but not allowlisted")
+
+
+def install_manually(installer_path, installer_type, install_dir):
+    command = build_install_command(installer_path, installer_type, install_dir)
+    result = run_command(command, check=False)
+    if result.returncode != 0:
+        print("Manual installation failed")
+        return False
+
+    if verify_manual_install(install_dir, ignored_paths=[installer_path]):
+        print(f"Successfully installed software to {install_dir}")
+        return True
+
+    print("Installer exited successfully but installation could not be verified")
+    return False
+
+
+def install_interactively(installer_path, installer_type, install_dir):
+    command = build_install_command(installer_path, installer_type, install_dir, interactive=True)
+    safe_print_command(command)
+    subprocess.Popen(command)
+    print()
+    print(f"Installer launched successfully. Install directory pre-set to: {install_dir}")
+    print("Installation is not complete yet. Finish the remaining steps manually and uncheck any bundled software.")
+
+
+def parse_args():
+    parser = argparse.ArgumentParser(
+        description="Install software on Windows using explicit and safer installation modes"
+    )
+    parser.add_argument("--mode", required=True, choices=["scoop", "local-file", "download-verified"])
+    parser.add_argument("--software-name", "--software_name", required=True, dest="software_name")
+    parser.add_argument("--scoop-bucket", "--scoop_bucket", dest="scoop_bucket")
+    parser.add_argument("--local-file", "--local_file", dest="local_file")
+    parser.add_argument("--download-url", "--download_url", dest="download_url")
+    parser.add_argument("--sha256")
+    parser.add_argument(
+        "--installer-type",
+        required=False,
+        default=None,
+        choices=["nsis", "inno", "msi"],
+    )
+    parser.add_argument("--install-dir", dest="install_dir")
+    parser.add_argument("--publisher")
+    parser.add_argument("--referer", dest="referer",
+                        help="Referer header for CDN hotlink protection (e.g. the official site URL)")
+    parser.add_argument("--allow-untrusted-publisher", action="store_true")
+    parser.add_argument("--interactive", action="store_true",
+                        help="Launch installer interactively instead of silent, so you can manually uncheck bundled software")
+    return parser.parse_args()
+
+
+def main():
+    args = parse_args()
+
+    try:
+        software_name = validate_safe_token(args.software_name, "software-name", SAFE_NAME_CHARS)
+        if args.scoop_bucket:
+            validate_safe_token(args.scoop_bucket, "scoop-bucket", SAFE_BUCKET_CHARS)
+
+        install_dir = (
+            ensure_windows_absolute_path(args.install_dir, "install-dir")
+            if args.install_dir
+            else get_default_install_dir(software_name)
+        )
+        install_dir.mkdir(parents=True, exist_ok=True)
+    except ValueError as error:
+        return fail(str(error))
+
+    if args.mode == "scoop":
+        if args.local_file or args.download_url or args.sha256 or args.publisher or args.allow_untrusted_publisher or args.interactive or args.installer_type:
+            return fail("scoop mode does not accept local-file, download-url, sha256, publisher, allow-untrusted-publisher, interactive, or installer-type")
+        return 0 if install_with_scoop(software_name, args.scoop_bucket) else 1
+
+    temp_paths = []
+    try:
+        if args.mode == "local-file":
+            if args.download_url or args.sha256 or args.publisher or args.allow_untrusted_publisher or args.referer:
+                return fail("local-file mode does not accept download-url, sha256, publisher, allow-untrusted-publisher, or referer")
+            if not args.local_file:
+                return fail("local-file mode requires --local-file")
+
+            if not args.installer_type:
+                return fail("--installer-type is required for local-file mode")
+            installer_path = prepare_local_installer(args.local_file, software_name, install_dir)
+            temp_paths.append(installer_path)
+            if args.interactive:
+                install_interactively(installer_path, args.installer_type, install_dir)
+                return 0
+
+            success = install_manually(installer_path, args.installer_type, install_dir)
+            return 0 if success else 1
+
+        if args.local_file:
+            return fail("download-verified mode does not accept --local-file")
+        if not args.download_url:
+            return fail("download-verified mode requires --download-url")
+
+        if not args.installer_type:
+            return fail("--installer-type is required for download-verified mode")
+        cache_path, installer_path = prepare_downloaded_installer(args.download_url, software_name, install_dir, referer=args.referer)
+        temp_paths.append(installer_path)
+        validate_downloaded_installer(
+            installer_path,
+            args.sha256,
+            args.publisher,
+            args.allow_untrusted_publisher,
+        )
+        if args.interactive:
+            install_interactively(installer_path, args.installer_type, install_dir)
+            return 0
+
+        success = install_manually(installer_path, args.installer_type, install_dir)
+        return 0 if success else 1
+    except (RuntimeError, ValueError) as error:
+        return fail(str(error))
+    finally:
+        for path in temp_paths:
+            try:
+                if path.exists():
+                    path.unlink()
+            except OSError:
+                pass
+
+
+if __name__ == "__main__":
+    sys.exit(main())