Build the read side of the unified distribution primitive from docs/roadmap/updates-and-distribution.md: one team-signed catalog (index.json) on the same channel as latest.json, listing type-tagged artifact envelopes. A hotfix is the first artifact type; apps/themes/ components are future envelope rows through the SAME pipe — the marketplace seam is just the `type` + `payload.kind` fields. Phase 1 is fetch + verify + parse only (NO mutation; the snapshot → ops → rollback → History apply verb is Phase 2): - Factor `lpVerifyMinisig` out of `lpFetchRelease` (scripts/source/ fetch.sh) — one trust anchor (the root-owned footprint key) now shared by releases and the index; refactor `lpFetchRelease` to use it (behaviour-preserving, still fail-closed). - scripts/source/artifacts.sh: `lpFetchIndex` — download → verify-before-parse → `valid_until` freshness (anti-withholding) → `index_serial` monotonic high-water (anti-rollback, TUF-lite) → emit verified JSON. Trust core is jq-free; parsing accessors prefer jq with a grep fallback. - `libreportal artifact index` (scripts/cli/commands/artifact/) — read-only front door that fetches, verifies and lists. Runs directly like `updater check` (no task; no mutation). - Regenerate the source arrays + lazy-load function manifest for the new files. Doc: promote the format from vision to spec (§8) — 3 layers (INDEX/ENVELOPE/PIPELINE), the bounded declarative op vocabulary (no run-script, ever), the apply pipeline mapped onto existing functions, the marketplace seam, and resolutions for all five open forks. Self-tested 12/12: trust core fails closed (real key + no minisign → refuse), happy path, stale-refused, rollback-refused, signature-refused, jq + grep parsing. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Signed-off-by: librelad <librelad@digitalangels.vip>
21 lines
857 B
Bash
21 lines
857 B
Bash
#!/bin/bash
|
|
|
|
# Artifact (distribution primitive) Commands Header
|
|
# Shows available `libreportal artifact` subcommands.
|
|
|
|
cliShowArtifactHelp()
|
|
{
|
|
echo ""
|
|
echo "Available Artifact Commands:"
|
|
echo ""
|
|
echo " libreportal artifact index - Fetch + verify the signed artifact index and list what's available"
|
|
echo ""
|
|
echo "An 'artifact' is anything LibrePortal pulls from the outside and applies"
|
|
echo "reversibly — a hotfix today; apps / themes / components later. They share"
|
|
echo "one team-signed catalog (index.json) on the same channel as the version"
|
|
echo "check. This read side verifies the catalog against the root-owned signing"
|
|
echo "key; the apply pipeline (snapshot → declarative ops → rollback → History)"
|
|
echo "lands in a later phase. See docs/roadmap/updates-and-distribution.md."
|
|
echo ""
|
|
}
|