docdex

Overview Schema Related Servers Score Discussions

docdex
scripts

generate_release_manifest.cjs•8.15 kB

#!/usr/bin/env node "use strict"; const fs = require("node:fs"); const path = require("node:path"); const crypto = require("node:crypto"); const { PUBLISHED_RELEASE_TARGETS } = require("../npm/lib/platform_matrix"); // Single source of truth: published targets come from npm/lib/platform_matrix.js const DEFAULT_TARGETS = Object.freeze(PUBLISHED_RELEASE_TARGETS.slice()); function usage() { return [ "Usage: node scripts/generate_release_manifest.cjs --dir <assets_dir> --out <manifest_path> [--tag vX.Y.Z] [--repo owner/repo]", "", "Generates a machine-readable release manifest with per-target SHA-256 integrity metadata,", "writes a sibling .sha256 file for the manifest itself, and writes SHA256SUMS (+ SHA256SUMS.txt)", "in the assets directory for deterministic installer fallback.", "", "Optional signing:", " Set DOCDEX_RELEASE_SIGNING_PRIVATE_KEY to a PEM-encoded Ed25519 private key to write", " detached signature files alongside integrity metadata:", " - <manifest>.sig", " - SHA256SUMS.sig", " - SHA256SUMS.txt.sig", "", "Exit codes:", " 1 generic failure", " 2 invalid arguments", " 3 missing expected assets", " 4 checksum mismatch" ].join("\n"); } function parseArgs(argv) { const args = { dir: null, out: null, tag: null, repo: null }; const rest = [...argv]; while (rest.length) { const flag = rest.shift(); if (flag === "--help" || flag === "-h") return { ...args, help: true }; if (flag === "--dir") args.dir = rest.shift() || null; else if (flag === "--out") args.out = rest.shift() || null; else if (flag === "--tag") args.tag = rest.shift() || null; else if (flag === "--repo") args.repo = rest.shift() || null; else return { ...args, error: `Unknown arg: ${flag}` }; } return args; } function sha256FileSync(filePath) { const hash = crypto.createHash("sha256"); hash.update(fs.readFileSync(filePath)); return hash.digest("hex"); } function signFileDetachedBase64({ filePath, privateKeyPem }) { const key = crypto.createPrivateKey(privateKeyPem); const data = fs.readFileSync(filePath); const signature = crypto.sign(null, data, key); return signature.toString("base64"); } function parseSha256File(text, expectedFilename) { const lines = String(text) .split(/\r?\n/) .map((l) => l.trim()) .filter(Boolean); for (const line of lines) { const match = line.match(/^([0-9a-fA-F]{64})\s+\*?(.+)$/); if (!match) continue; const hash = match[1].toLowerCase(); const filename = match[2].trim(); if (!expectedFilename || filename === expectedFilename) return hash; } return null; } function uniqueOrThrow(values, label) { const seen = new Set(); for (const v of values) { if (seen.has(v)) throw new Error(`Non-unique ${label}: ${v}`); seen.add(v); } } /** * @param {{ * assetsDir: string, * outPath: string, * tag?: string|null, * repo?: string|null, * targets?: {targetTriple: string, archiveBase: string}[], * now?: Date * }} options */ function generateReleaseManifest(options) { const assetsDir = options?.assetsDir; const outPath = options?.outPath; const tag = options?.tag ?? null; const repo = options?.repo ?? null; const targets = Array.isArray(options?.targets) && options.targets.length ? options.targets : DEFAULT_TARGETS; const now = options?.now instanceof Date ? options.now : new Date(); if (!assetsDir || !outPath) { const err = new Error("Missing required --dir/--out"); err.exitCode = 2; throw err; } uniqueOrThrow( targets.map((t) => t.targetTriple), "target triple" ); uniqueOrThrow( targets.map((t) => t.archiveBase), "archive base" ); const missing = []; const targetsObj = {}; const publishedAssets = []; for (const t of targets) { const tarName = `${t.archiveBase}.tar.gz`; const tarPath = path.join(assetsDir, tarName); const shaName = `${tarName}.sha256`; const shaPath = path.join(assetsDir, shaName); if (!fs.existsSync(tarPath)) missing.push(tarName); if (!fs.existsSync(shaPath)) missing.push(shaName); } if (missing.length) { const err = new Error(`Missing expected release assets: ${missing.sort().join(", ")}`); err.exitCode = 3; throw err; } for (const t of targets) { const tarName = `${t.archiveBase}.tar.gz`; const tarPath = path.join(assetsDir, tarName); const shaName = `${tarName}.sha256`; const shaPath = path.join(assetsDir, shaName); const tarSize = fs.statSync(tarPath).size; const computedTarSha = sha256FileSync(tarPath); const shaText = fs.readFileSync(shaPath, "utf8"); const declared = parseSha256File(shaText, tarName); if (!declared) { const err = new Error(`Could not parse SHA-256 file: ${shaName}`); err.exitCode = 4; throw err; } if (declared !== computedTarSha) { const err = new Error( `Checksum mismatch for ${tarName}: declared sha256=${declared} computed sha256=${computedTarSha}` ); err.exitCode = 4; throw err; } targetsObj[t.targetTriple] = { asset: { name: tarName }, integrity: { sha256: computedTarSha, size: tarSize } }; publishedAssets.push({ name: tarName, sha256: computedTarSha, size: tarSize }); publishedAssets.push({ name: shaName, sha256: sha256FileSync(shaPath), size: fs.statSync(shaPath).size }); } const manifest = { manifestVersion: 1, ...(repo ? { repo } : {}), ...(tag ? { tag, version: tag.startsWith("v") ? tag.slice(1) : tag } : {}), generatedAt: now.toISOString(), targets: targetsObj, publishedAssets }; fs.mkdirSync(path.dirname(outPath), { recursive: true }); fs.writeFileSync(outPath, JSON.stringify(manifest, null, 2) + "\n"); const manifestSha = sha256FileSync(outPath); const shaOutPath = `${outPath}.sha256`; fs.writeFileSync(shaOutPath, `${manifestSha} ${path.basename(outPath)}\n`); const checksumEntries = publishedAssets .slice() .concat([ { name: path.basename(outPath), sha256: manifestSha }, { name: path.basename(shaOutPath), sha256: sha256FileSync(shaOutPath) } ]); const checksumLines = checksumEntries .sort((a, b) => a.name.localeCompare(b.name)) .map((entry) => `${entry.sha256} ${entry.name}`) .join("\n"); const checksumsPath = path.join(assetsDir, "SHA256SUMS"); const checksumsTxtPath = path.join(assetsDir, "SHA256SUMS.txt"); fs.writeFileSync(checksumsPath, checksumLines + "\n"); fs.writeFileSync(checksumsTxtPath, checksumLines + "\n"); const signingKeyPem = String(process.env.DOCDEX_RELEASE_SIGNING_PRIVATE_KEY || "").trim() || null; const signatures = {}; if (signingKeyPem) { const toSign = [outPath, checksumsPath, checksumsTxtPath]; for (const filePath of toSign) { const sigB64 = signFileDetachedBase64({ filePath, privateKeyPem: signingKeyPem }); const sigPath = `${filePath}.sig`; fs.writeFileSync(sigPath, sigB64 + "\n"); signatures[path.basename(filePath)] = path.basename(sigPath); } } return { manifestPath: outPath, manifestSha256: manifestSha, sha256Path: shaOutPath, checksumsPath, checksumsTxtPath, signatures, manifest }; } if (require.main === module) { try { const args = parseArgs(process.argv.slice(2)); if (args.help) { process.stdout.write(usage() + "\n"); process.exit(0); } if (args.error) { process.stderr.write(args.error + "\n\n" + usage() + "\n"); process.exit(2); } const result = generateReleaseManifest({ assetsDir: args.dir, outPath: args.out, tag: args.tag, repo: args.repo }); process.stdout.write( `Wrote manifest: ${result.manifestPath}\nWrote manifest checksum: ${result.sha256Path}\n` ); } catch (err) { const exitCode = typeof err?.exitCode === "number" ? err.exitCode : 1; process.stderr.write(`${err?.message || String(err)}\n`); process.exit(exitCode); } } module.exports = { generateReleaseManifest, DEFAULT_TARGETS };

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/bekirdag/docdex'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

generate_release_manifest.cjs•8.15 kB