mirror of
https://github.com/openclaw/openclaw.git
synced 2026-07-14 12:26:06 +00:00
* chore(types): add declaration files for scripts/lib and scripts/e2e modules
* chore(types): add declaration files for top-level script modules (a-m)
* chore(types): add declaration files for top-level script modules (n-z)
* test: use a non-secret-shaped gateway token fixture
* test: type ci workflow guard helpers for the root test lane
* chore(tooling): typecheck root test/** with a dedicated tsgo lane
- test/tsconfig/tsconfig.test.root.json: root-test program (strict unused checks,
fixtures excluded; two Docker E2E clients that import built dist/** stay out,
same rationale as the scripts/e2e exclusion in tsconfig.scripts.json)
- tsgo:test:root wired into tsgo:test, check:test-types, scripts/check.mjs, and
the ci.yml test-types shard, mirroring the tsgo:scripts lane (#104348)
- changed-lane routing: test/**/*.ts (excluding fixtures) and the lane tsconfig
now trigger 'typecheck test root' in check:changed; previously test/ paths ran
lint only, so harness type errors surfaced first in CI (#104287 envDir case)
- burn down all 1071 latent type errors in the program: precise param/local
types across test/scripts, test/vitest, test/e2e, and transitive scripts/e2e
program members; 205 sibling .d.mts declaration files for imported .mjs
modules (committed separately); zero any, zero ts-expect-error
- resolve the pre-existing testing star-export ambiguity in
scripts/e2e/parallels/common.ts with an explicit re-export
Closes #104388
* chore(types): correct declaration fidelity per structured review
- re-derive 51 .d.mts files from implementation data flow instead of
initializers: fix a wrong never return (runTestProjectsDelegation returns
the child), add encoding-sensitive exec/spawn overloads (plain-gh), restore
the full release profile union, make parsed paths string | null, add missing
parseArgs fields via help/non-help unions, add a missing sibling declaration
(budget-number-args), drop 15 unused lint directives
- precise install-record/tuple typing removes the type-aware oxlint
regressions the first declarations caused in scripts/e2e implementations
- route .mts declaration edits under test/ to the testRoot lane and reference
the test-root project from tsconfig.projects.json so tsgo:all covers it
(closes both review findings against the lane wiring)
* chore(scripts): keep telegram runner dist typing structural for the boundary guard
* chore(types): declare runtime pack and gateway readiness exports added on main
* test: pin the importTargetPlan form of the plugin-contract plan import
The guard expectation still referenced the raw await import( form that
7ae5996bb3 (#103975) replaced with the importTargetPlan fallback helper;
the assertion fails on current main.
186 lines
5.0 KiB
TypeScript
186 lines
5.0 KiB
TypeScript
#!/usr/bin/env node
|
|
export function inspectPackageTarballBytes(
|
|
inputBytes: unknown,
|
|
options?: Record<string, unknown>,
|
|
): {
|
|
inventory: (
|
|
| {
|
|
path: string;
|
|
sha256: string;
|
|
sizeBytes: unknown;
|
|
type: string;
|
|
}
|
|
| {
|
|
path: string;
|
|
sizeBytes: number;
|
|
type: string;
|
|
}
|
|
)[];
|
|
packageManifest: unknown;
|
|
packageManifestSha256: string;
|
|
pluginManifest: unknown;
|
|
pluginManifestSha256: string;
|
|
tarballSizeBytes: number;
|
|
tarballSha256: string;
|
|
totalFileBytes: number;
|
|
};
|
|
export function validatePluginPackageManifest(params: unknown, packageManifest: unknown): void;
|
|
export function createPluginPublicationArtifact(params: unknown): {
|
|
manifest: {
|
|
schema: string;
|
|
schemaVersion: number;
|
|
targetSha: unknown;
|
|
package: {
|
|
dir: unknown;
|
|
name: unknown;
|
|
version: unknown;
|
|
author: unknown;
|
|
contributors: unknown;
|
|
repository: unknown;
|
|
packageJsonSha256: unknown;
|
|
pluginManifestSha256: unknown;
|
|
sourcePackageJsonSha256: unknown;
|
|
};
|
|
publication:
|
|
| {
|
|
route: unknown;
|
|
authMode: unknown;
|
|
capability: unknown;
|
|
reason: unknown;
|
|
tag: unknown;
|
|
publisherPolicy: unknown;
|
|
bootstrapMode?: undefined;
|
|
manualOverrideReason?: undefined;
|
|
requiresManualOverride?: undefined;
|
|
}
|
|
| {
|
|
route: unknown;
|
|
tag: unknown;
|
|
bootstrapMode: unknown;
|
|
manualOverrideReason: unknown;
|
|
requiresManualOverride: unknown;
|
|
authMode?: undefined;
|
|
capability?: undefined;
|
|
reason?: undefined;
|
|
publisherPolicy?: undefined;
|
|
};
|
|
artifact: {
|
|
name: unknown;
|
|
tarball: unknown;
|
|
npmIntegrity: string;
|
|
npmShasum: string;
|
|
sha256: unknown;
|
|
sizeBytes: unknown;
|
|
inventory: unknown;
|
|
};
|
|
};
|
|
manifestPath: string;
|
|
tarballPath: string;
|
|
};
|
|
export function verifyPluginPublicationArtifact(params: unknown): {
|
|
artifactDigest: string;
|
|
artifactId: unknown;
|
|
artifactName: string;
|
|
artifactSizeBytes: unknown;
|
|
artifactZipSha256: string;
|
|
manifest: {
|
|
schema: string;
|
|
schemaVersion: number;
|
|
targetSha: unknown;
|
|
package: {
|
|
dir: unknown;
|
|
name: unknown;
|
|
version: unknown;
|
|
author: unknown;
|
|
contributors: unknown;
|
|
repository: unknown;
|
|
packageJsonSha256: unknown;
|
|
pluginManifestSha256: unknown;
|
|
sourcePackageJsonSha256: unknown;
|
|
};
|
|
publication:
|
|
| {
|
|
route: unknown;
|
|
authMode: unknown;
|
|
capability: unknown;
|
|
reason: unknown;
|
|
tag: unknown;
|
|
publisherPolicy: unknown;
|
|
bootstrapMode?: undefined;
|
|
manualOverrideReason?: undefined;
|
|
requiresManualOverride?: undefined;
|
|
}
|
|
| {
|
|
route: unknown;
|
|
tag: unknown;
|
|
bootstrapMode: unknown;
|
|
manualOverrideReason: unknown;
|
|
requiresManualOverride: unknown;
|
|
authMode?: undefined;
|
|
capability?: undefined;
|
|
reason?: undefined;
|
|
publisherPolicy?: undefined;
|
|
};
|
|
artifact: {
|
|
name: unknown;
|
|
tarball: unknown;
|
|
npmIntegrity: string;
|
|
npmShasum: string;
|
|
sha256: unknown;
|
|
sizeBytes: unknown;
|
|
inventory: unknown;
|
|
};
|
|
};
|
|
npmIntegrity: string;
|
|
npmShasum: string;
|
|
packageJsonSha256: unknown;
|
|
pluginManifestSha256: unknown;
|
|
producerRunAttempt: unknown;
|
|
producerRunId: unknown;
|
|
sourcePackageJsonSha256: unknown;
|
|
tarballInventory: (
|
|
| {
|
|
path: string;
|
|
sha256: string;
|
|
sizeBytes: unknown;
|
|
type: string;
|
|
}
|
|
| {
|
|
path: string;
|
|
sizeBytes: number;
|
|
type: string;
|
|
}
|
|
)[];
|
|
tarballName: string;
|
|
tarballPath: string;
|
|
tarballSizeBytes: number;
|
|
tarballSha256: string;
|
|
};
|
|
export function main(argv?: string[]): void;
|
|
export const CLAWHUB_PUBLICATION_TAR_LIMITS: Readonly<{
|
|
maxArchiveBytes: number;
|
|
maxEntries: 10000;
|
|
maxEntryBytes: number;
|
|
maxExpandedBytes: number;
|
|
maxPathBytes: number;
|
|
maxTotalFileBytes: number;
|
|
}>;
|
|
import { downloadActionsArtifactArchive } from "./lib/actions-artifact-archive.mjs";
|
|
import { describeActionsArtifactFiles } from "./lib/actions-artifact-archive.mjs";
|
|
import { inspectActionsArtifactZip } from "./lib/actions-artifact-archive.mjs";
|
|
import { inspectActionsArtifactZipWithPolicy } from "./lib/actions-artifact-archive.mjs";
|
|
import { readBoundedRegularFile } from "./lib/actions-artifact-archive.mjs";
|
|
import { readPublicationArtifactArchive } from "./lib/actions-artifact-archive.mjs";
|
|
import { validateActionsArtifactBinding } from "./lib/actions-artifact-archive.mjs";
|
|
import { validateActionsArtifactProducerJob } from "./lib/actions-artifact-archive.mjs";
|
|
export {
|
|
downloadActionsArtifactArchive,
|
|
describeActionsArtifactFiles,
|
|
inspectActionsArtifactZip,
|
|
inspectActionsArtifactZipWithPolicy,
|
|
readBoundedRegularFile,
|
|
readPublicationArtifactArchive,
|
|
validateActionsArtifactBinding,
|
|
validateActionsArtifactProducerJob,
|
|
};
|