UNPKG

@sidekick-coder/db

Version:

Cli Tool to manipulate data from diferent sources

github.com/sidekick-coder/db

sidekick-coder/db

389 lines (380 loc) 11.4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
import * as valibot from 'valibot'; import path, { dirname, resolve } from 'path'; import fs from 'fs'; import 'url'; import { parse as parse$1, stringify as stringify$1 } from 'yaml'; import qs from 'qs'; import * as inquirer from '@inquirer/prompts'; import crypto from 'crypto'; // src/core/validator/valibot.ts // src/utils/tryCatch.ts async function tryCatch(tryer) { try { const result = await tryer(); return [result, null]; } catch (error) { return [null, error]; } } tryCatch.sync = function(tryer) { try { const result = tryer(); return [result, null]; } catch (error) { return [null, error]; } }; var parse = parse$1; var stringify = stringify$1; var YAML = { parse, stringify }; function readFileSync(path4) { const [content, error] = tryCatch.sync(() => fs.readFileSync(path4)); if (error) { return null; } return new Uint8Array(content); } readFileSync.text = function(filepath, defaultValue = "") { const content = readFileSync(filepath); if (!content) { return defaultValue; } return new TextDecoder().decode(content); }; readFileSync.json = function(path4, options) { const content = readFileSync.text(path4); if (!content) { return (options == null ? void 0 : options.default) || null; } const [json, error] = tryCatch.sync(() => JSON.parse(content, options == null ? void 0 : options.reviver)); return error ? (options == null ? void 0 : options.default) || null : json; }; readFileSync.yaml = function(path4, options) { const content = readFileSync.text(path4); if (!content) { return (options == null ? void 0 : options.default) || null; } const [yml, error] = tryCatch.sync(() => YAML.parse(content, options == null ? void 0 : options.parseOptions)); return error ? (options == null ? void 0 : options.default) || null : yml; }; var filesystem = { readSync: readFileSync}; function createReviver(folder) { return (_, value) => { if (typeof value == "string" && value.startsWith("./")) { return resolve(dirname(folder), value); } return value; }; } var schema = valibot.optional( valibot.pipe( valibot.any(), valibot.transform((value) => { if (typeof value == "object") { return value; } if (/\.yml$/.test(value)) { const file = value.replace(/^@/, ""); const folder = dirname(file); return filesystem.readSync.yaml(value.replace(/^@/, ""), { reviver: createReviver(folder) }); } if (typeof value == "string" && value.includes("=")) { const result = qs.parse(value, { allowEmptyArrays: true }); return result; } if (typeof value == "string" && value.startsWith("{")) { return JSON.parse(value); } if (typeof value == "string" && value.startsWith("[")) { return JSON.parse(value); } return value; }), valibot.record(valibot.string(), valibot.any()) ) ); function createPathNode() { return { resolve: (...args) => path.resolve(...args), join: (...args) => path.join(...args), dirname: (args) => path.dirname(args), basename: (args) => path.basename(args) }; } // src/core/validator/valibot.ts var stringList = valibot.pipe( valibot.any(), valibot.transform((value) => { if (typeof value === "string") { return value.split(","); } if (Array.isArray(value)) { return value; } }), valibot.array(valibot.string()) ); function array2(s) { return valibot.pipe( v2.union([v2.array(s), s]), valibot.transform((value) => Array.isArray(value) ? value : [value]), valibot.array(s) ); } function path3(dirname2, path4 = createPathNode()) { return valibot.pipe( valibot.string(), valibot.transform((value) => path4.resolve(dirname2, value)) ); } function uint8() { return valibot.pipe( valibot.any(), valibot.check((value) => value instanceof Uint8Array), valibot.transform((value) => value) ); } var prompts = { password: (options) => valibot.optionalAsync(valibot.string(), () => { return inquirer.password({ message: "Enter password", ...options }); }) }; var extras = { array: array2, vars: schema, stringList, path: path3, uint8, number: valibot.pipe( valibot.any(), valibot.transform(Number), valibot.check((n) => !isNaN(n)), valibot.number() ) }; var vWithExtras = { ...valibot, extras, prompts }; var v2 = vWithExtras; // src/core/validator/validate.ts function validate(cb, payload) { const schema3 = typeof cb === "function" ? cb(v2) : cb; const { output, issues, success } = v2.safeParse(schema3, payload); if (!success) { const flatten = v2.flatten(issues); const messages = []; if (flatten.root) { messages.push(...flatten.root); } if (flatten.nested) { Object.entries(flatten.nested).forEach((entry) => { const [key, value] = entry; messages.push(...value.map((v3) => `${key}: ${v3}`)); }); } const message = messages.length ? messages.join(", ") : "Validation failed"; const error = new Error(message); error.name = "ValidationError"; Object.assign(error, { messages }); throw error; } return output; } validate.async = async function(cb, payload) { let schema3; if (typeof cb === "function") { schema3 = cb(v2); } else { schema3 = cb; } const { output, issues, success } = await v2.safeParseAsync(schema3, payload); if (!success) { const error = new Error("Validation failed"); const flatten = v2.flatten(issues); const details = { ...flatten.root, ...flatten.nested }; Object.assign(error, { details }); throw error; } return output; }; // src/providers/vault/encryption.ts var schema2 = v2.object({ value: v2.union([v2.string(), v2.extras.uint8()]), salt: v2.optional(v2.string(), crypto.randomBytes(16).toString("hex")), iv: v2.optional(v2.string(), crypto.randomBytes(16).toString("hex")), password: v2.string() }); function encrypt(payload) { const options = validate(schema2, payload); const salt = Buffer.from(options.salt, "hex"); const iv = Buffer.from(options.iv, "hex"); const key = crypto.scryptSync(options.password, salt, 32); const cipher = crypto.createCipheriv("aes-256-ctr", key, iv); if (options.value instanceof Uint8Array) { const buffer = Buffer.concat([cipher.update(options.value), cipher.final()]); return new Uint8Array(buffer); } if (typeof options.value === "string") { const encrypted = cipher.update(options.value, "utf8", "hex"); return encrypted + cipher.final("hex"); } throw new Error("Invalid type"); } function decrypt(payload) { const options = validate(schema2, payload); const salt = Buffer.from(options.salt, "hex"); const iv = Buffer.from(options.iv, "hex"); const key = crypto.scryptSync(options.password, salt, 32); const decipher = crypto.createDecipheriv("aes-256-ctr", key, iv); if (typeof options.value === "string") { let decrypted = decipher.update(options.value, "hex", "utf8"); decrypted += decipher.final("utf8"); return decrypted; } if (options.value instanceof Uint8Array) { const buffer = Buffer.concat([decipher.update(options.value), decipher.final()]); return new Uint8Array(buffer); } throw new Error("Invalid type"); } function createEncryption(payload) { const state = { salt: (payload == null ? void 0 : payload.salt) || crypto.randomBytes(16).toString("hex"), iv: (payload == null ? void 0 : payload.iv) || crypto.randomBytes(16).toString("hex"), password: (payload == null ? void 0 : payload.password) || "" }; const instance = { state, setSalt: function(salt) { state.salt = salt; return instance; }, setIv: function(iv) { state.iv = iv; return instance; }, setPassword: function(password2) { state.password = password2; return instance; }, encrypt: function(value) { return encrypt({ ...state, value }); }, decrypt: function(value) { return decrypt({ ...state, value }); } }; return instance; } function findMetadata(options) { const { filesystem: filesystem2, root, id } = options; const resolve3 = (...args) => filesystem2.path.resolve(root, ...args); const filepath = resolve3(id, ".db", "metadata.json"); const json = filesystem2.readSync.json(filepath, { default: { salt: crypto.randomBytes(16).toString("hex"), iv: crypto.randomBytes(16).toString("hex"), files: [] } }); const all = filesystem2.readdirSync(resolve3(id)); const files = []; all.filter((file) => file !== ".db").forEach((file) => { var _a; const meta = (_a = json.files) == null ? void 0 : _a.find((f) => f.name === file); files.push({ name: file, encrypted: false, ...meta }); }); json.files = files; const schema3 = v2.object({ salt: v2.string(), iv: v2.string(), files: v2.array(v2.object({ name: v2.string(), encrypted: v2.boolean() })) }); return validate(schema3, json); } // src/providers/vault/findPassword.ts function findPassword(options) { const { filesystem: filesystem2, root } = options; const resolve3 = (...args) => filesystem2.path.resolve(root, ...args); if (!filesystem2.existsSync(resolve3(".db", "password"))) { throw new Error("Not authenticated, please run db auth first"); } const password2 = filesystem2.readSync.text(resolve3(".db", "password")); const metadata = filesystem2.readSync.json(resolve3(".db", "password.json"), { schema: (v3) => v3.object({ salt: v3.string(), iv: v3.string(), test: v3.string() }) }); if (!password2 || !metadata) { throw new Error("Password not found"); } const encryption = createEncryption({ password: password2, salt: metadata.salt, iv: metadata.iv }); const decrypted = encryption.decrypt(metadata.test); if (!decrypted.endsWith("success")) { throw new Error("Password incorrect"); } return password2; } // src/providers/vault/lockItem.ts async function lockItem(options) { const { filesystem: filesystem2, root } = options; const resolve3 = (...args) => filesystem2.path.resolve(root, ...args); const id = validate((v3) => v3.string(), options.options.id); const filepath = resolve3(id); if (!filesystem2.existsSync(resolve3(id))) { throw new Error(`Item ${id} not found in ${filepath}`); } const password2 = findPassword({ filesystem: filesystem2, root }); const metadata = findMetadata({ id, filesystem: filesystem2, root }); const encryption = createEncryption({ password: password2, salt: metadata.salt, iv: metadata.iv }); for (const file of metadata.files) { if (file.encrypted) { continue; } const source_filename = file.name; const target_filename = encryption.encrypt(source_filename); const contents = filesystem2.readSync(resolve3(id, source_filename)); const encrypted = encryption.encrypt(contents); filesystem2.writeSync(resolve3(id, target_filename), encrypted); filesystem2.removeSync(resolve3(id, source_filename)); file.encrypted = true; file.name = target_filename; } filesystem2.writeSync.json(resolve3(id, ".db", "metadata.json"), metadata, { recursive: true }); return metadata.files; } export { lockItem };