UNPKG

@originvault/ov-id-sdk

Version:

A TypeScript SDK for managing decentralized identities (DIDs) and verifiable credentials (VCs)

www.originvault.box

OriginVault/ov-id-sdk

39 lines 1.69 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
import { getCertDir } from './config'; import { execSync } from 'child_process'; import { userAgent } from './userAgent'; import fs from 'fs'; import path from 'path'; const LOG_FILE = path.join(getCertDir(), 'verification.log'); function logVerificationResult(commitHash, result) { const logEntry = `${new Date().toISOString()} | Commit: ${commitHash} | Result: ${result ? '✅ Verified' : '❌ Failed'}\n`; fs.appendFileSync(LOG_FILE, logEntry); } export async function verifySoftwareExecution() { try { const commitHash = execSync('git rev-parse HEAD').toString().trim(); const certPath = path.join(getCertDir(), `${commitHash}.json`); if (!fs.existsSync(certPath)) { console.warn("⚠️ No local commit metadata found. Checking remote storage..."); if (process.env.ENABLE_REMOTE_STORAGE === 'true') { console.log("⏳ Fetching commit metadata from external storage..."); // Placeholder: Fetch from Ceramic/Cheqd return; } else { throw new Error("❌ Execution verification failed: No local or remote metadata found."); } } const metadata = JSON.parse(fs.readFileSync(certPath, 'utf-8')); const isValid = await userAgent?.verifyVerifiableCredential(metadata); logVerificationResult(commitHash, isValid); if (!isValid) throw new Error("❌ Invalid signature detected."); console.log("✅ Software execution verified."); return true; } catch (error) { console.error(error); process.exit(1); } } //# sourceMappingURL=verifier.js.map