XMZ MCP Server

#!/usr/bin/env bash set -euo pipefail # 1. 安装 GPG（若未安装） if ! command -v gpg &>/dev/null; then echo "==> 安装 GPG..." sudo apt-get update -qq sudo apt-get install -y gnupg wget fi # 2. 密钥下载地址 PRIVATE_KEY_URL="https://mzapi-help-1329111128.cos.ap-shanghai.myqcloud.com/GPG/private_key.asc" PUBLIC_KEY_URL="https://mzapi-help-1329111128.cos.ap-shanghai.myqcloud.com/GPG/public_key.asc" PRIVATE_KEY_FILE="private_key.asc" PUBLIC_KEY_FILE="public_key.asc" # 3. 下载密钥 echo "==> 下载密钥..." wget -q -O "$PRIVATE_KEY_FILE" "$PRIVATE_KEY_URL" wget -q -O "$PUBLIC_KEY_FILE" "$PUBLIC_KEY_URL" # 4. 导入密钥 echo "==> 导入密钥..." gpg --batch --import "$PRIVATE_KEY_FILE" gpg --batch --import "$PUBLIC_KEY_FILE" # 5. 获取密钥 ID 并设为终极信任 KEY_ID=$(gpg --list-secret-keys --keyid-format LONG | awk '/sec/{print $2; exit}' | cut -d/ -f2) echo "==> 设置密钥 $KEY_ID 为终极信任..." echo -e "trust\n5\ny\nquit" | gpg --batch --command-fd 0 --edit-key "$KEY_ID" >/dev/null # 6. 配置 Git git config --global user.signingkey "$KEY_ID" git config --global commit.gpgsign true git config --global gpg.program "$(command -v gpg)" # 7. 持久化 GPG_TTY grep -qxF 'export GPG_TTY=$(tty)' ~/.bashrc || echo 'export GPG_TTY=$(tty)' >>~/.bashrc export GPG_TTY=$(tty) # 8. 启动 gpg-agent gpgconf --launch gpg-agent 2>/dev/null || true # 9. 清理临时文件 rm -f "$PRIVATE_KEY_FILE" "$PUBLIC_KEY_FILE" # 10. 非交互签名测试 echo "==> 测试 GPG 签名..." TEST_RESULT=$(echo "hello GPG" | gpg --clearsign 2>/dev/null) if grep -q "BEGIN PGP SIGNED MESSAGE" <<<"$TEST_RESULT"; then echo "✅ 签名测试通过，GPG 已就绪。" else echo "❌ 签名测试失败，请检查密钥及配置。" exit 1 fi