PyPI - api-key-manager - Versions diffs - 2.1.0__tar.gz → 2.1.2__tar.gz - Mend

api-key-manager 2.1.0tar.gz → 2.1.2tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (98) hide show

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: api-key-manager
-Version: 2.1.0
+Version: 2.1.2
 Summary: Batch manage API keys for 44+ AI providers with CLI and Web interfaces
 Author: Townrain
 License: MIT
@@ -192,10 +192,11 @@ python web.py
 ### 安全防护
 - **路径遍历防护** - 导入端点验证路径在允许目录内
-- **SSRF 防护** - `custom_base_url` 验证域名白名单，阻止私有 IP
+- **SSRF 防护** - `custom_base_url` 验证域名白名单，阻止私有 IP，已接入 `check/single` 和 `balance` 端点
 - **时序安全认证** - 使用 `hmac.compare_digest()` 防止时序攻击
 - **认证警告** - 未配置 API Key 时启动警告
 - **密钥掩码** - API 响应中只返回 `key_masked`，不暴露完整密钥
+- **Webhook 安全** - Webhook 端点使用正确的 API 方法，防止运行时错误
 ### API 认证
@@ -609,7 +610,7 @@ python -m pytest tests/ --cov=key_manager --cov-report=term-missing
 | 密钥解析 | `test_parser.py` | 12 |
 | 验证器 | `test_validator.py` | 5 |
 | 检查器 | `test_checker.py` | 4 |
-| 提供商合约 | `test_providers.py` | 30 |
+| 提供商合约 | `test_providers.py` | 220 |
 | 安全回归 | `test_security.py` | 12 |
 | 加密存储 | `test_storage.py` | 26 |
 | 错误系统 | `test_errors.py` | 28 |
@@ -617,7 +618,12 @@ python -m pytest tests/ --cov=key_manager --cov-report=term-missing
 | 端到端 | `test_e2e.py` | 17 |
 | Webhook | `test_webhook.py` | 35 |
 | OpenAPI | `test_openapi.py` | 26 |
+| 代理检测 | `test_proxy.py` | 19 |
+| 日志系统 | `test_logger.py` | 21 |
+| 能力测试 | `test_tester.py` | 11 |
+| 核心门面 | `test_core.py` | 22 |
+**总测试数**: 583+ | **覆盖率**: 88%
 ## SDK 使用
 ### Python SDK
@@ -704,6 +710,20 @@ const result = await client.checkSingleKey({ key: 'sk-xxx', provider: 'openai' }
 模型列表从 Cherry Studio 同步，每日更新一次。新发布的模型可能需要等待同步后才能被检测到。
+## 更新日志
+### v2.1.2 (2026-06-11)
+- **Bug 修复**: 修复 `KeyManager.detect_provider()` 调用异步函数未 await 的问题
+- **测试扩展**: 提供商合约测试扩展至全部 44 个服务商
+- **测试新增**: 新增 `test_proxy.py`、`test_logger.py`、`test_tester.py`、`test_core.py`
+- **覆盖率提升**: 测试覆盖率从 74% 提升至 88%
+### v2.1.1
+- 初始发布版本
 ## 许可证
 MIT License

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/README.md RENAMED Viewed

@@ -159,10 +159,11 @@ python web.py
 ### 安全防护
 - **路径遍历防护** - 导入端点验证路径在允许目录内
-- **SSRF 防护** - `custom_base_url` 验证域名白名单，阻止私有 IP
+- **SSRF 防护** - `custom_base_url` 验证域名白名单，阻止私有 IP，已接入 `check/single` 和 `balance` 端点
 - **时序安全认证** - 使用 `hmac.compare_digest()` 防止时序攻击
 - **认证警告** - 未配置 API Key 时启动警告
 - **密钥掩码** - API 响应中只返回 `key_masked`，不暴露完整密钥
+- **Webhook 安全** - Webhook 端点使用正确的 API 方法，防止运行时错误
 ### API 认证
@@ -576,7 +577,7 @@ python -m pytest tests/ --cov=key_manager --cov-report=term-missing
 | 密钥解析 | `test_parser.py` | 12 |
 | 验证器 | `test_validator.py` | 5 |
 | 检查器 | `test_checker.py` | 4 |
-| 提供商合约 | `test_providers.py` | 30 |
+| 提供商合约 | `test_providers.py` | 220 |
 | 安全回归 | `test_security.py` | 12 |
 | 加密存储 | `test_storage.py` | 26 |
 | 错误系统 | `test_errors.py` | 28 |
@@ -584,7 +585,12 @@ python -m pytest tests/ --cov=key_manager --cov-report=term-missing
 | 端到端 | `test_e2e.py` | 17 |
 | Webhook | `test_webhook.py` | 35 |
 | OpenAPI | `test_openapi.py` | 26 |
+| 代理检测 | `test_proxy.py` | 19 |
+| 日志系统 | `test_logger.py` | 21 |
+| 能力测试 | `test_tester.py` | 11 |
+| 核心门面 | `test_core.py` | 22 |
+**总测试数**: 583+ | **覆盖率**: 88%
 ## SDK 使用
 ### Python SDK
@@ -671,6 +677,20 @@ const result = await client.checkSingleKey({ key: 'sk-xxx', provider: 'openai' }
 模型列表从 Cherry Studio 同步，每日更新一次。新发布的模型可能需要等待同步后才能被检测到。
+## 更新日志
+### v2.1.2 (2026-06-11)
+- **Bug 修复**: 修复 `KeyManager.detect_provider()` 调用异步函数未 await 的问题
+- **测试扩展**: 提供商合约测试扩展至全部 44 个服务商
+- **测试新增**: 新增 `test_proxy.py`、`test_logger.py`、`test_tester.py`、`test_core.py`
+- **覆盖率提升**: 测试覆盖率从 74% 提升至 88%
+### v2.1.1
+- 初始发布版本
 ## 许可证
 MIT License

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/api_key_manager.egg-info/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: api-key-manager
-Version: 2.1.0
+Version: 2.1.2
 Summary: Batch manage API keys for 44+ AI providers with CLI and Web interfaces
 Author: Townrain
 License: MIT
@@ -192,10 +192,11 @@ python web.py
 ### 安全防护
 - **路径遍历防护** - 导入端点验证路径在允许目录内
-- **SSRF 防护** - `custom_base_url` 验证域名白名单，阻止私有 IP
+- **SSRF 防护** - `custom_base_url` 验证域名白名单，阻止私有 IP，已接入 `check/single` 和 `balance` 端点
 - **时序安全认证** - 使用 `hmac.compare_digest()` 防止时序攻击
 - **认证警告** - 未配置 API Key 时启动警告
 - **密钥掩码** - API 响应中只返回 `key_masked`，不暴露完整密钥
+- **Webhook 安全** - Webhook 端点使用正确的 API 方法，防止运行时错误
 ### API 认证
@@ -609,7 +610,7 @@ python -m pytest tests/ --cov=key_manager --cov-report=term-missing
 | 密钥解析 | `test_parser.py` | 12 |
 | 验证器 | `test_validator.py` | 5 |
 | 检查器 | `test_checker.py` | 4 |
-| 提供商合约 | `test_providers.py` | 30 |
+| 提供商合约 | `test_providers.py` | 220 |
 | 安全回归 | `test_security.py` | 12 |
 | 加密存储 | `test_storage.py` | 26 |
 | 错误系统 | `test_errors.py` | 28 |
@@ -617,7 +618,12 @@ python -m pytest tests/ --cov=key_manager --cov-report=term-missing
 | 端到端 | `test_e2e.py` | 17 |
 | Webhook | `test_webhook.py` | 35 |
 | OpenAPI | `test_openapi.py` | 26 |
+| 代理检测 | `test_proxy.py` | 19 |
+| 日志系统 | `test_logger.py` | 21 |
+| 能力测试 | `test_tester.py` | 11 |
+| 核心门面 | `test_core.py` | 22 |
+**总测试数**: 583+ | **覆盖率**: 88%
 ## SDK 使用
 ### Python SDK
@@ -704,6 +710,20 @@ const result = await client.checkSingleKey({ key: 'sk-xxx', provider: 'openai' }
 模型列表从 Cherry Studio 同步，每日更新一次。新发布的模型可能需要等待同步后才能被检测到。
+## 更新日志
+### v2.1.2 (2026-06-11)
+- **Bug 修复**: 修复 `KeyManager.detect_provider()` 调用异步函数未 await 的问题
+- **测试扩展**: 提供商合约测试扩展至全部 44 个服务商
+- **测试新增**: 新增 `test_proxy.py`、`test_logger.py`、`test_tester.py`、`test_core.py`
+- **覆盖率提升**: 测试覆盖率从 74% 提升至 88%
+### v2.1.1
+- 初始发布版本
 ## 许可证
 MIT License

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/api_key_manager.egg-info/SOURCES.txt RENAMED Viewed

@@ -20,6 +20,7 @@ key_manager/logger.py
 key_manager/model_capabilities.py
 key_manager/parser.py
 key_manager/proxy.py
+key_manager/py.typed
 key_manager/ssrf.py
 key_manager/storage.py
 key_manager/tester.py
@@ -74,16 +75,22 @@ key_manager/providers/yi.py
 key_manager/providers/zai.py
 key_manager/providers/zhipu.py
 key_manager/providers/zhipu_coding.py
+tests/test_bug_fixes.py
 tests/test_checker.py
+tests/test_core.py
 tests/test_detector.py
 tests/test_e2e.py
 tests/test_errors.py
 tests/test_i18n.py
+tests/test_logger.py
 tests/test_openapi.py
 tests/test_parser.py
 tests/test_provider_detection.py
 tests/test_providers.py
+tests/test_proxy.py
 tests/test_security.py
 tests/test_storage.py
+tests/test_tester.py
 tests/test_validator.py
+tests/test_web_fixes.py
 tests/test_webhook.py

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/key_manager/__init__.py RENAMED Viewed

@@ -1,4 +1,4 @@
-"""Key Manager - Batch API key management for 44+ AI providers."""
+"""Key Manager - Batch API key management for 44+ AI providers."""
 from key_manager.core import KeyManager
 from key_manager.providers import PROVIDERS, get_display_name
 from key_manager.errors import KeyManagerError, ErrorCode
@@ -13,4 +13,5 @@ __all__ = [
     "KeyStore",
 ]
-__version__ = "2.1.0"
+__version__ = "2.1.2"

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/key_manager/api_models.py RENAMED Viewed

@@ -42,6 +42,7 @@ __all__ = [
     "OperationEntry",
     "OperationsResponse",
     "ProgressResponse",
+    "ProxyResponse",
 ]
@@ -356,3 +357,11 @@ class ProgressResponse(BaseModel):
     total: int = Field(0, description="Total items to process")
     status: str = Field("", description="Task status: loading / done / error")
     results: dict[str, Any] | None = Field(None, description="Final results when complete")
+# ── Proxy ─────────────────────────────────────────────────────────────────────
+class ProxyResponse(BaseModel):
+    proxy: str | None = Field(None, description="Detected proxy URL")
+    source: str = Field("", description="Proxy source: config / env / auto / none")

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/key_manager/core.py RENAMED Viewed

@@ -62,10 +62,16 @@ class KeyManager:
         """Save keys to encrypted storage."""
         self._store.save(data)
-    def detect_provider(self, key: str) -> list[str]:
+    async def detect_provider(self, key: str) -> list[str]:
         """Auto-detect provider from key prefix."""
-        return detect_provider(key)
+        import httpx
+        from key_manager.detector import detect_provider as _detect_provider
+        timeout = self.config.get("check", {}).get("timeout_seconds", 30)
+        proxy = self.config.get("proxy") or None
+        async with httpx.AsyncClient(timeout=timeout, proxy=proxy) as client:
+            result = await _detect_provider(client, key)
+            return [result] if result else []
     def list_keys(
         self,
         provider: str | None = None,
@@ -139,7 +145,7 @@ class KeyManager:
         from key_manager.providers import PROVIDERS
         if not provider:
-            providers = self.detect_provider(key)
+            providers = await self.detect_provider(key)
             if not providers:
                 return {"valid": False, "error": "Could not detect provider"}
             provider = providers[0]

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/key_manager/proxy.py RENAMED Viewed

@@ -55,16 +55,3 @@ def get_proxy(config_proxy: str = None) -> str:
         return ""
     # Otherwise use the configured proxy
     return config_proxy
-    """Get proxy from config or auto-detect."""
-    # 空字符串表示禁用代理
-    if config_proxy == "":
-        return ""
-    # 有配置则使用配置
-    if config_proxy:
-        return config_proxy
-    # 没有配置则自动检测
-    return detect_system_proxy()
-    """Get proxy from config or auto-detect."""
-    if config_proxy:
-        return config_proxy
-    return detect_system_proxy()

api_key_manager-2.1.2/key_manager/py.typed ADDED Viewed

	@@ -0,0 +1 @@
1	+

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/key_manager/storage.py RENAMED Viewed

@@ -6,6 +6,7 @@ from pathlib import Path
 from cryptography.hazmat.primitives.ciphers.aead import AESGCM
 from cryptography.hazmat.primitives.kdf.pbkdf2 import PBKDF2HMAC
 from cryptography.hazmat.primitives import hashes
+from key_manager.errors import ErrorCode, StorageError
 _ITERATIONS = 100_000
@@ -33,7 +34,8 @@ def _get_passphrase(config: dict | None = None) -> str:
     if config and config.get("encryption", {}).get("passphrase"):
         return config["encryption"]["passphrase"]
     raise StorageError(
-        "No passphrase found. Set KEY_MANAGER_SECRET env var or "
+        code=ErrorCode.STORAGE_ENCRYPTION_ERROR,
+        message="No passphrase found. Set KEY_MANAGER_SECRET env var or "
         "configure encryption.passphrase in config.yaml"
     )
@@ -46,8 +48,6 @@ def _b64d(s: str) -> bytes:
     return base64.b64decode(s)
-class StorageError(Exception):
-    pass
 class KeyStore:
@@ -58,12 +58,12 @@ class KeyStore:
     def load(self) -> dict:
         if not self.path.exists():
-            raise StorageError(f"File not found: {self.path}")
+            raise StorageError(code=ErrorCode.STORAGE_READ_ERROR, message=f"File not found: {self.path}")
         raw = self.path.read_text(encoding="utf-8")
         try:
             data = json.loads(raw)
         except json.JSONDecodeError as e:
-            raise StorageError(f"Invalid JSON in {self.path}: {e}") from e
+            raise StorageError(code=ErrorCode.STORAGE_READ_ERROR, message=f"Invalid JSON in {self.path}: {e}") from e
         if isinstance(data, dict) and data.get("encrypted") is True:
             return self._decrypt(data)
         return data
@@ -83,12 +83,12 @@ class KeyStore:
     def rotate_key(self, new_passphrase: str) -> dict:
         if not self.path.exists():
-            raise StorageError(f"File not found: {self.path}")
+            raise StorageError(code=ErrorCode.STORAGE_READ_ERROR, message=f"File not found: {self.path}")
         raw = self.path.read_text(encoding="utf-8")
         try:
             envelope = json.loads(raw)
         except json.JSONDecodeError as e:
-            raise StorageError(f"Invalid JSON in {self.path}: {e}") from e
+            raise StorageError(code=ErrorCode.STORAGE_READ_ERROR, message=f"Invalid JSON in {self.path}: {e}") from e
         if isinstance(envelope, dict) and envelope.get("encrypted") is True:
             data = self._decrypt(envelope)
         else:
@@ -120,15 +120,15 @@ class KeyStore:
             nonce = _b64d(envelope["nonce"])
             ciphertext = _b64d(envelope["data"])
         except (KeyError, ValueError) as e:
-            raise StorageError(f"Malformed encrypted envelope: {e}") from e
+            raise StorageError(code=ErrorCode.STORAGE_ENCRYPTION_ERROR, message=f"Malformed encrypted envelope: {e}") from e
         passphrase = _get_passphrase(self.config)
         key = _derive_key(passphrase, salt)
         aes = AESGCM(key)
         try:
             plaintext = aes.decrypt(nonce, ciphertext, None)
         except Exception as e:
-            raise StorageError(f"Decryption failed (wrong key or tampered data): {e}") from e
+            raise StorageError(code=ErrorCode.STORAGE_ENCRYPTION_ERROR, message=f"Decryption failed (wrong key or tampered data): {e}") from e
         try:
             return json.loads(plaintext.decode("utf-8"))
         except json.JSONDecodeError as e:
-            raise StorageError(f"Decrypted data is not valid JSON: {e}") from e
+            raise StorageError(code=ErrorCode.STORAGE_ENCRYPTION_ERROR, message=f"Decrypted data is not valid JSON: {e}") from e

{api_key_manager-2.1.0 → api_key_manager-2.1.2}/key_manager/validator.py RENAMED Viewed

@@ -60,7 +60,7 @@ async def validate_keys(keys_file: str = "./data/keys.json",
             provider_name = info["provider"].lower()
             provider = PROVIDERS.get(provider_name)
             if not provider:
-                from src.providers.base import CheckResult
+                from key_manager.providers.base import CheckResult
                 result = CheckResult(valid=False, status_code=None, latency_ms=0, error=f"unknown provider: {provider_name}")
             else:
                 result = await provider.check(client, key)

api-key-manager 2.1.0__tar.gz → 2.1.2__tar.gz

api-key-manager 2.1.0tar.gz → 2.1.2tar.gz