rcf-cli 1.2.6__tar.gz → 1.2.8__tar.gz

{rcf_cli-1.2.6/rcf_cli.egg-info → rcf_cli-1.2.8}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: rcf-cli
-Version: 1.2.6
+Version: 1.2.8
 Summary: A command-line tool for RCF protocol compliance verification.
 Author-email: Aladdin Aliyev <aladdin@aliyev.site>
 License: RCF-PL 1.1.1
@@ -31,6 +31,7 @@ pip install rcf-cli
 - **Automated Scanning**: Quickly scan projects for RCF compliance and extract markers.
 - **Header Validation**: Ensure files have the required `NOTICE: This file is protected under RCF-PL v1.1` header.
 - **RCF-Audit (Premium)**: Generate cryptographically signed compliance reports for enterprise auditing.
+- **Integrity Verification**: Compare current file hashes against an audit report to detect unauthorized modifications or tampering.
 
 
 ## CLI Usage
@@ -65,6 +66,17 @@ rcf-cli audit . --license-key RCF-AUDIT-XXXX-XXXX
 export RCF_LICENSE_KEY=RCF-AUDIT-XXXX-XXXX
 rcf-cli audit .
 ```
+
+### 4. Verify Project Integrity
+
+Compare current files with the latest audit report:
+
+```bash
+rcf-cli verify .
+
+# Show summary only
+rcf-cli verify . --summary
+```
 ```
 
 ## Markers Reference

{rcf_cli-1.2.6 → rcf_cli-1.2.8}/README.md

@@ -18,6 +18,7 @@ pip install rcf-cli
 - **Automated Scanning**: Quickly scan projects for RCF compliance and extract markers.
 - **Header Validation**: Ensure files have the required `NOTICE: This file is protected under RCF-PL v1.1` header.
 - **RCF-Audit (Premium)**: Generate cryptographically signed compliance reports for enterprise auditing.
+- **Integrity Verification**: Compare current file hashes against an audit report to detect unauthorized modifications or tampering.
 
 
 ## CLI Usage
@@ -52,6 +53,17 @@ rcf-cli audit . --license-key RCF-AUDIT-XXXX-XXXX
 export RCF_LICENSE_KEY=RCF-AUDIT-XXXX-XXXX
 rcf-cli audit .
 ```
+
+### 4. Verify Project Integrity
+
+Compare current files with the latest audit report:
+
+```bash
+rcf-cli verify .
+
+# Show summary only
+rcf-cli verify . --summary
+```
 ```
 
 ## Markers Reference

{rcf_cli-1.2.6 → rcf_cli-1.2.8}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "rcf-cli"
-version = "1.2.6"
+version = "1.2.8"
 authors = [
   { name="Aladdin Aliyev", email="aladdin@aliyev.site" },
 ]

{rcf_cli-1.2.6 → rcf_cli-1.2.8}/rcf_cli/cli.py

@@ -1,4 +1,4 @@
-# NOTICE: This file is protected under RCF-PL v1.2.6
+# NOTICE: This file is protected under RCF-PL v1.2.8
 import argparse
 import sys
 import json
@@ -15,7 +15,7 @@ def init_project(args):
 
     notice_content = f"""# RCF-PL NOTICE
 
-This project (**{project_name}**) is protected under the **Restricted Correlation Framework Protocol License (RCF-PL) v1.2.6**.
+This project (**{project_name}**) is protected under the **Restricted Correlation Framework Protocol License (RCF-PL) v1.2.8**.
 
 Copyright (c) {year} {author_name}. All rights reserved.
 
@@ -35,7 +35,7 @@ For full protocol details, visit: https://rcf.aliyev.site
     else:
         with open(notice_path, "w") as f:
             f.write(notice_content)
-        print("✅ Generated NOTICE.md with RCF-PL v1.2.6 protections.")
+        print("✅ Generated NOTICE.md with RCF-PL v1.2.8 protections.")
     
     rcfignore_path = os.path.join(os.getcwd(), ".rcfignore")
     if not os.path.exists(rcfignore_path):
@@ -56,11 +56,17 @@ def audit_project(args):
     
     if provided_key_hash == admin_key_hash:
         pass # Admin bypass
-    elif not license_key or not license_key.startswith("RCF-AUDIT-") or not uuid_regex.match(license_key.replace("RCF-AUDIT-", "")):
-        print("❌ RCF-PL ERROR: The 'audit' command is a premium feature.")
-        print("   Please provide a valid RCF-AUDIT license key via --license-key or RCF_LICENSE_KEY env variable.")
+    elif not license_key:
+        print("❌ RCF-PL ERROR: License key is missing.")
+        print("   The 'audit' command is a premium feature. Please provide a license key.")
+        print("   Usage: rcf-cli audit . --license-key RCF-AUDIT-XXXXXX")
         print("   Visit https://rcf.aliyev.site to obtain a license.")
         sys.exit(1)
+    elif not license_key.startswith("RCF-AUDIT-") or not uuid_regex.match(license_key.replace("RCF-AUDIT-", "")):
+        print("❌ RCF-PL ERROR: Invalid license key format.")
+        print("   Expected format: RCF-AUDIT-(KEY)")
+        print("")
+        sys.exit(1)
 
     scanner = RCFScanner(args.path)
     results = scanner.scan_directory()
@@ -91,6 +97,71 @@ def audit_project(args):
     print(f"✅ RCF-Audit Complete. Generated {report_path}")
     print(f"🔒 Encrypted snapshot of {len(audit_report['protected_assets'])} protected assets created.")
 
+# [RCF:RESTRICTED]
+# Verification logic to detect tampering by comparing current hashes with the audit report.
+def verify_audit(args):
+    report_path = os.path.join(args.path, "RCF-AUDIT-REPORT.json")
+    if not os.path.exists(report_path):
+        print(f"❌ RCF-PL ERROR: Audit report not found at {report_path}")
+        print("   Please run 'rcf-cli audit' first to generate a baseline.")
+        sys.exit(1)
+
+    try:
+        with open(report_path, "r") as f:
+            report = json.load(f)
+    except Exception as e:
+        print(f"❌ RCF-PL ERROR: Failed to load audit report: {e}")
+        sys.exit(1)
+
+    print(f"--- RCF Integrity Verification ---")
+    print(f"Report Timestamp: {report.get('timestamp')}")
+    print("-" * 30)
+
+    mismatches = []
+    missing = []
+    verified_count = 0
+
+    for asset in report.get("protected_assets", []):
+        file_rel_path = asset["file"]
+        stored_hash = asset["sha256"]
+        full_path = os.path.join(args.path, file_rel_path)
+
+        if not os.path.exists(full_path):
+            missing.append(file_rel_path)
+            print(f"❌ MISSING: {file_rel_path}")
+            continue
+
+        try:
+            with open(full_path, "rb") as f:
+                current_hash = hashlib.sha256(f.read()).hexdigest()
+            
+            if current_hash == stored_hash:
+                verified_count += 1
+                if not args.summary:
+                    print(f"✅ VERIFIED: {file_rel_path}")
+            else:
+                mismatches.append(file_rel_path)
+                print(f"🚨 TAMPERED: {file_rel_path}")
+                print(f"   Expected: {stored_hash}")
+                print(f"   Actual:   {current_hash}")
+        except Exception as e:
+            print(f"⚠️ ERROR scanning {file_rel_path}: {e}")
+
+    print("-" * 30)
+    print(f"Total Assets in Report: {len(report.get('protected_assets', []))}")
+    print(f"Verified: {verified_count}")
+    
+    if missing:
+        print(f"Missing:  {len(missing)}")
+    if mismatches:
+        print(f"🚨 Mismatches Detected: {len(mismatches)}")
+
+    if mismatches or missing:
+        sys.exit(1)
+    else:
+        print("🛡️ Integrity Check Passed. No unauthorized modifications detected.")
+        sys.exit(0)
+
 def main():
     if len(sys.argv) > 1 and sys.argv[1] == "init":
         parser = argparse.ArgumentParser(description="Initialize RCF Protocol in the current directory")
@@ -110,6 +181,15 @@ def main():
         audit_project(args)
         return
 
+    if len(sys.argv) > 1 and sys.argv[1] == "verify":
+        parser = argparse.ArgumentParser(description="Verify project integrity against an RCF Audit Report")
+        parser.add_argument("verify", help="Verify command")
+        parser.add_argument("path", nargs="?", default=".", help="Path to verify")
+        parser.add_argument("--summary", action="store_true", help="Show summary only")
+        args = parser.parse_args()
+        verify_audit(args)
+        return
+
     parser = argparse.ArgumentParser(description="RCF Protocol Compliance Checker")
     parser.add_argument("path", nargs="?", default=".", help="Path to scan (default: current directory)")
     parser.add_argument("--format", choices=["text", "json"], default="text", help="Output format")

{rcf_cli-1.2.6 → rcf_cli-1.2.8}/rcf_cli/scanner.py

@@ -1,4 +1,4 @@
-# NOTICE: This file is protected under RCF-PL v1.2.6
+# NOTICE: This file is protected under RCF-PL v1.2.8
 import os
 import re
 from pathlib import Path
@@ -8,7 +8,7 @@ class RCFScanner:
     """Scans files and directories for RCF protocol markers."""
     
     MARKER_PATTERN = re.compile(r'\[RCF:(PUBLIC|PROTECTED|RESTRICTED|NOTICE)\]')
-    HEADER_PATTERN = re.compile(r'NOTICE: This file is protected under RCF-PL v1.2.6')
+    HEADER_PATTERN = re.compile(r'NOTICE: This file is protected under RCF-PL v1.2.8')
     
     def __init__(self, root_path, ignore_list=None):
         self.root_path = Path(root_path)

{rcf_cli-1.2.6 → rcf_cli-1.2.8/rcf_cli.egg-info}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: rcf-cli
-Version: 1.2.6
+Version: 1.2.8
 Summary: A command-line tool for RCF protocol compliance verification.
 Author-email: Aladdin Aliyev <aladdin@aliyev.site>
 License: RCF-PL 1.1.1
@@ -31,6 +31,7 @@ pip install rcf-cli
 - **Automated Scanning**: Quickly scan projects for RCF compliance and extract markers.
 - **Header Validation**: Ensure files have the required `NOTICE: This file is protected under RCF-PL v1.1` header.
 - **RCF-Audit (Premium)**: Generate cryptographically signed compliance reports for enterprise auditing.
+- **Integrity Verification**: Compare current file hashes against an audit report to detect unauthorized modifications or tampering.
 
 
 ## CLI Usage
@@ -65,6 +66,17 @@ rcf-cli audit . --license-key RCF-AUDIT-XXXX-XXXX
 export RCF_LICENSE_KEY=RCF-AUDIT-XXXX-XXXX
 rcf-cli audit .
 ```
+
+### 4. Verify Project Integrity
+
+Compare current files with the latest audit report:
+
+```bash
+rcf-cli verify .
+
+# Show summary only
+rcf-cli verify . --summary
+```
 ```
 
 ## Markers Reference

{rcf_cli-1.2.6 → rcf_cli-1.2.8}/tests/test_scanner.py

@@ -8,7 +8,7 @@ def temp_workspace(tmp_path):
     # Create a temporary file with RCF markers
     protected_file = tmp_path / "protected_code.py"
     protected_file.write_text(
-        "# NOTICE: This file is protected under RCF-PL v1.2.6\n"
+        "# NOTICE: This file is protected under RCF-PL v1.2.7\n"
         "# [RCF:RESTRICTED]\n"
         "def secret(): pass"
     )