PyPI - simplex - Versions diffs - 1.0.8__tar.gz → 1.0.11__tar.gz - Mend

simplex 1.0.8tar.gz → 1.0.11tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of simplex might be problematic. Click here for more details.

Files changed (26) hide show

simplex-1.0.11/.DS_Store ADDED Viewed

Binary file

simplex-1.0.11/.gitignore ADDED Viewed

@@ -0,0 +1,33 @@
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+# Environment
+.env
+.venv
+env/
+venv/
+ENV/
+# IDE
+.idea/
+.vscode/
+*.json

{simplex-1.0.8/simplex.egg-info → simplex-1.0.11}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: simplex
-Version: 1.0.8
+Version: 1.0.11
 Summary: Official Python SDK for the Simplex API
 Home-page: https://github.com/yourusername/simplex-python-sdk
 Author: Simplex

simplex-1.0.11/publish.sh ADDED Viewed

@@ -0,0 +1,114 @@
+#!/bin/bash
+# Exit on error
+set -e
+echo "Starting Python SDK publish script..."
+# Load environment variables from .env
+if [ -f .env ]; then
+    echo "Found .env file"
+    export $(cat .env | grep -v '^#' | xargs)
+    echo "Loaded environment variables"
+else
+    echo "Error: .env file not found"
+    exit 1
+fi
+# Check if PYPI_API_TOKEN exists
+if [ -z "$PYPI_API_TOKEN" ]; then
+    echo "Error: PYPI_API_TOKEN not found in .env file"
+    exit 1
+fi
+echo "Found PYPI_API_TOKEN"
+# Extract current version from setup.py and increment patch version
+echo "Attempting to read version from setup.py..."
+if [ ! -f setup.py ]; then
+    echo "Error: setup.py file not found"
+    exit 1
+fi
+echo "Contents of setup.py version line:"
+grep "version=" setup.py || echo "No version line found"
+# More portable version extraction that works on both Mac and Linux
+current_version=$(grep "version=" setup.py | sed 's/.*version="\([^"]*\)".*/\1/')
+if [ -z "$current_version" ]; then
+    echo "Error: Could not extract version from setup.py"
+    echo "Make sure setup.py contains a line like: version='1.0.0' or version=\"1.0.0\""
+    exit 1
+fi
+echo "Current version: $current_version"
+IFS='.' read -r major minor patch <<< "$current_version"
+new_patch=$((patch + 1))
+new_version="$major.$minor.$new_patch"
+# Update version in setup.py (Mac-compatible sed syntax)
+if [[ "$OSTYPE" == "darwin"* ]]; then
+    # Mac version - escape the quotes and use a different delimiter
+    sed -i '' "s|version=\"${current_version}\"|version=\"${new_version}\"|" setup.py
+else
+    # Linux version
+    sed -i "s/version=\"${current_version}\"/version=\"${new_version}\"/" setup.py
+fi
+echo "Updated setup.py from $current_version to $new_version"
+# Update version in pyproject.toml
+if [ -f pyproject.toml ]; then
+    echo "Updating version in pyproject.toml..."
+    if [[ "$OSTYPE" == "darwin"* ]]; then
+        sed -i '' "s|version = \".*\"|version = \"${new_version}\"|" pyproject.toml
+    else
+        sed -i "s/version = \".*\"/version = \"${new_version}\"/" pyproject.toml
+    fi
+    echo "Updated pyproject.toml to $new_version"
+fi
+# Update version in simplex/__init__.py
+if [ -f simplex/__init__.py ]; then
+    echo "Updating version in simplex/__init__.py..."
+    if [[ "$OSTYPE" == "darwin"* ]]; then
+        sed -i '' "s|__version__ = \".*\"|__version__ = \"${new_version}\"|" simplex/__init__.py
+    else
+        sed -i "s/__version__ = \".*\"/__version__ = \"${new_version}\"/" simplex/__init__.py
+    fi
+    echo "Updated simplex/__init__.py to $new_version"
+fi
+echo "All version files updated from $current_version to $new_version"
+# Check BASE_URL in simplex/client.py
+echo "Checking BASE_URL in simplex/client.py..."
+if ! grep -q 'https://api.simplex.sh' simplex/client.py; then
+    echo "Warning: BASE_URL in simplex/client.py may not be set to production URL"
+    echo "Continuing anyway..."
+fi
+echo "BASE_URL check passed"
+# Clean previous builds
+echo "Cleaning previous builds..."
+rm -rf dist/ build/ *.egg-info simplex.egg-info
+# Build the package using modern build tool
+echo "Building package..."
+python -m build
+# Upload to PyPI using API token
+echo "Uploading to PyPI..."
+TWINE_USERNAME=__token__ TWINE_PASSWORD=$PYPI_API_TOKEN python -m twine upload dist/*
+echo "Successfully published version $new_version to PyPI"
+# Create git commit and tag
+echo "Creating git commit and tag..."
+git add setup.py pyproject.toml simplex/__init__.py
+git commit -m "Bump Python SDK version to $new_version"
+git tag "python-v$new_version"
+git push && git push --tags
+echo "Created and pushed git tag python-v$new_version"
+echo ""
+echo "🎉 Python SDK v$new_version published successfully!"
+echo "Users can now install with: pip install simplex"

{simplex-1.0.8 → simplex-1.0.11}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "simplex"
-version = "1.0.8"
+version = "1.0.11"
 description = "Official Python SDK for the Simplex API"
 readme = "README.md"
 requires-python = ">=3.8"
@@ -53,7 +53,7 @@ target-version = ['py38', 'py39', 'py310', 'py311']
 include = '\.pyi?$'
 [tool.mypy]
-python_version = "3.8"
+python_version = "1.0.11"
 warn_return_any = true
 warn_unused_configs = true
 disallow_untyped_defs = false

simplex-1.0.11/requirements-dev.txt ADDED Viewed

@@ -0,0 +1,14 @@
+# Development dependencies
+-r requirements.txt
+# Testing
+pytest>=7.0.0
+pytest-cov>=3.0.0
+# Code quality
+black>=22.0.0
+flake8>=4.0.0
+mypy>=0.950
+# Utilities
+python-dotenv>=0.19.0

{simplex-1.0.8 → simplex-1.0.11}/setup.py RENAMED Viewed

@@ -9,7 +9,7 @@ with open("README.md", "r", encoding="utf-8") as fh:
 setup(
     name="simplex",
-    version="1.0.9",
+    version="1.0.11",
     author="Simplex",
     author_email="support@simplex.sh",
     description="Official Python SDK for the Simplex API",

{simplex-1.0.8 → simplex-1.0.11}/simplex/__init__.py RENAMED Viewed

@@ -20,8 +20,13 @@ from simplex.errors import (
 )
 from simplex.resources.workflow import Workflow
 from simplex.resources.workflow_session import WorkflowSession
+from simplex.webhook import (
+    verify_simplex_webhook,
+    verify_simplex_webhook_dict,
+    WebhookVerificationError,
+)
-__version__ = "1.0.0"
+__version__ = "1.0.11"
 __all__ = [
     "SimplexClient",
     "SimplexError",
@@ -32,4 +37,7 @@ __all__ = [
     "WorkflowError",
     "Workflow",
     "WorkflowSession",
+    "verify_simplex_webhook",
+    "verify_simplex_webhook_dict",
+    "WebhookVerificationError",
 ]

simplex-1.0.11/simplex/webhook.py ADDED Viewed

@@ -0,0 +1,175 @@
+"""
+Webhook verification utilities for Simplex webhooks.
+This module provides functions to verify the authenticity of webhook requests
+from Simplex using HMAC-SHA256 signature verification.
+Example usage:
+    >>> from simplex import verify_simplex_webhook, WebhookVerificationError
+    >>>
+    >>> try:
+    >>>     verify_simplex_webhook(
+    >>>         body=request.body,
+    >>>         signature=request.headers.get('X-Simplex-Signature'),
+    >>>         webhook_secret='your-webhook-secret'
+    >>>     )
+    >>>     # Webhook verified, safe to process
+    >>> except WebhookVerificationError as e:
+    >>>     # Invalid webhook
+    >>>     print(f"Verification failed: {e}")
+"""
+import hmac
+import hashlib
+from typing import Optional, Union, Dict
+class WebhookVerificationError(Exception):
+    """
+    Exception raised when webhook verification fails.
+    This error is raised when:
+    - The signature header is missing
+    - The signature is invalid
+    - The signature doesn't match the expected value
+    """
+    def __init__(self, message: str):
+        """
+        Initialize a WebhookVerificationError.
+        Args:
+            message: Description of the verification failure
+        """
+        super().__init__(message)
+        self.message = message
+def verify_simplex_webhook(
+    body: Union[str, bytes],
+    signature: Optional[str],
+    webhook_secret: str
+) -> None:
+    """
+    Verify a Simplex webhook request using HMAC-SHA256 signature verification.
+    This function ensures that webhook requests are authentic and haven't been
+    tampered with in transit. It uses the same pattern as GitHub webhooks.
+    The signature is computed as: HMAC-SHA256(webhook_secret, request_body)
+    Args:
+        body: Raw request body as string or bytes (must be the original unparsed body)
+        signature: The X-Simplex-Signature header value from the request
+        webhook_secret: Your webhook secret from the Simplex dashboard
+    Raises:
+        WebhookVerificationError: If signature is missing, invalid, or verification fails
+    Example:
+        >>> # Flask example
+        >>> from flask import Flask, request, jsonify
+        >>> from simplex import verify_simplex_webhook, WebhookVerificationError
+        >>>
+        >>> app = Flask(__name__)
+        >>>
+        >>> @app.route('/webhook', methods=['POST'])
+        >>> def webhook():
+        >>>     try:
+        >>>         verify_simplex_webhook(
+        >>>             body=request.get_data(as_text=True),
+        >>>             signature=request.headers.get('X-Simplex-Signature'),
+        >>>             webhook_secret='your-webhook-secret'
+        >>>         )
+        >>>
+        >>>         # Webhook verified, safe to process
+        >>>         payload = request.get_json()
+        >>>         print(f"Received webhook: {payload['session_id']}")
+        >>>         return jsonify({'received': True})
+        >>>
+        >>>     except WebhookVerificationError as e:
+        >>>         return jsonify({'error': str(e)}), 401
+    Example:
+        >>> # FastAPI example
+        >>> from fastapi import FastAPI, Request, HTTPException
+        >>> from simplex import verify_simplex_webhook, WebhookVerificationError
+        >>>
+        >>> app = FastAPI()
+        >>>
+        >>> @app.post("/webhook")
+        >>> async def webhook(request: Request):
+        >>>     body = await request.body()
+        >>>     signature = request.headers.get('X-Simplex-Signature')
+        >>>
+        >>>     try:
+        >>>         verify_simplex_webhook(
+        >>>             body=body,
+        >>>             signature=signature,
+        >>>             webhook_secret='your-webhook-secret'
+        >>>         )
+        >>>
+        >>>         payload = await request.json()
+        >>>         return {'received': True}
+        >>>
+        >>>     except WebhookVerificationError as e:
+        >>>         raise HTTPException(status_code=401, detail=str(e))
+    """
+    # 1. Check required signature
+    if not signature:
+        raise WebhookVerificationError('Missing X-Simplex-Signature header')
+    # 2. Ensure body is bytes for HMAC computation
+    if isinstance(body, str):
+        body_bytes = body.encode('utf-8')
+    else:
+        body_bytes = body
+    # 3. Compute expected signature
+    expected_signature = hmac.new(
+        webhook_secret.encode('utf-8'),
+        body_bytes,
+        hashlib.sha256
+    ).hexdigest()
+    # 4. Compare signatures using constant-time comparison to prevent timing attacks
+    if not hmac.compare_digest(expected_signature, signature):
+        raise WebhookVerificationError('Invalid webhook signature')
+    # Webhook verified successfully!
+def verify_simplex_webhook_dict(
+    body: Union[str, bytes],
+    headers: Dict[str, str],
+    webhook_secret: str
+) -> None:
+    """
+    Verify a Simplex webhook request using a headers dictionary.
+    This is a convenience wrapper around verify_simplex_webhook() that accepts
+    a headers dictionary and handles case-insensitive header lookup.
+    Args:
+        body: Raw request body as string or bytes
+        headers: Dictionary of request headers
+        webhook_secret: Your webhook secret from the Simplex dashboard
+    Raises:
+        WebhookVerificationError: If verification fails
+    Example:
+        >>> verify_simplex_webhook_dict(
+        >>>     body=request.body,
+        >>>     headers=dict(request.headers),
+        >>>     webhook_secret='your-secret'
+        >>> )
+    """
+    # Try to find the signature header (case-insensitive)
+    signature = None
+    for key, value in headers.items():
+        if key.lower() == 'x-simplex-signature':
+            signature = value
+            break
+    verify_simplex_webhook(body, signature, webhook_secret)

{simplex-1.0.8 → simplex-1.0.11/simplex.egg-info}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: simplex
-Version: 1.0.8
+Version: 1.0.11
 Summary: Official Python SDK for the Simplex API
 Home-page: https://github.com/yourusername/simplex-python-sdk
 Author: Simplex

{simplex-1.0.8 → simplex-1.0.11}/simplex.egg-info/SOURCES.txt RENAMED Viewed

@@ -1,7 +1,11 @@
+.DS_Store
+.gitignore
 LICENSE
 MANIFEST.in
 README.md
+publish.sh
 pyproject.toml
+requirements-dev.txt
 requirements.txt
 setup.py
 simplex/__init__.py
@@ -9,6 +13,7 @@ simplex/client.py
 simplex/errors.py
 simplex/http_client.py
 simplex/types.py
+simplex/webhook.py
 simplex.egg-info/PKG-INFO
 simplex.egg-info/SOURCES.txt
 simplex.egg-info/dependency_links.txt