PyPI - aevum-cli - Versions diffs - 0.7.0__tar.gz → 0.7.1__tar.gz - Mend

aevum-cli 0.7.0tar.gz → 0.7.1tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (17) hide show

{aevum_cli-0.7.0 → aevum_cli-0.7.1}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: aevum-cli
-Version: 0.7.0
+Version: 0.7.1
 Summary: Aevum -- command-line interface for operating Aevum nodes.
 Project-URL: Homepage, https://aevum.build
 Project-URL: Repository, https://github.com/aevum-labs/aevum

{aevum_cli-0.7.0 → aevum_cli-0.7.1}/pyproject.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [project]
 name = "aevum-cli"
-version = "0.7.0"
+version = "0.7.1"
 description = "Aevum -- command-line interface for operating Aevum nodes."
 readme = "README.md"
 requires-python = ">=3.11"

{aevum_cli-0.7.0 → aevum_cli-0.7.1}/src/aevum/cli/app.py RENAMED Viewed

@@ -367,6 +367,56 @@ def _print_receipt_summary(
         typer.echo(f"Rekor ref:      {rekor_ref}")
+@app.command(name="vault-check")
+def vault_check() -> None:
+    """
+    Verify Vault Transit connectivity with a sign/verify round-trip.
+    Reads VAULT_ADDR, VAULT_TOKEN, and AEVUM_VAULT_KEY_NAME from the environment.
+    Exits 0 on success, exits 1 on failure.
+    """
+    import os
+    vault_addr = os.environ.get("VAULT_ADDR", "http://127.0.0.1:8200")
+    vault_token = os.environ.get("VAULT_TOKEN", "")
+    key_name = os.environ.get("AEVUM_VAULT_KEY_NAME", "aevum-signing")
+    if not vault_token:
+        typer.echo("VAULT_TOKEN is not set.", err=True)
+        raise typer.Exit(code=1)
+    typer.echo(f"Vault address : {vault_addr}")
+    typer.echo(f"Key name      : {key_name}")
+    try:
+        from aevum.core.audit.signer import VaultTransitSigner
+        signer = VaultTransitSigner(key_name=key_name, vault_addr=vault_addr, token=vault_token)
+    except Exception as exc:
+        typer.echo(f"Failed to create VaultTransitSigner: {exc}", err=True)
+        raise typer.Exit(code=1) from None
+    payload = b"aevum vault-check probe"
+    try:
+        sig = signer.sign(payload)
+        typer.echo(typer.style("  sign()   PASS", fg=typer.colors.GREEN))
+    except Exception as exc:
+        typer.echo(typer.style("  sign()   FAIL", fg=typer.colors.RED))
+        typer.echo(f"  {exc}", err=True)
+        raise typer.Exit(code=1) from None
+    try:
+        valid = signer.verify(payload, sig)
+        if not valid:
+            raise RuntimeError("verify() returned False for a freshly signed payload")
+        typer.echo(typer.style("  verify() PASS", fg=typer.colors.GREEN))
+    except Exception as exc:
+        typer.echo(typer.style("  verify() FAIL", fg=typer.colors.RED))
+        typer.echo(f"  {exc}", err=True)
+        raise typer.Exit(code=1) from None
+    typer.echo(typer.style("Vault Transit check PASSED.", fg=typer.colors.GREEN))
 @app.command()
 def replay(
     session_id: Annotated[str, typer.Argument(help="Session ID to replay")],