validate new version/manifest and update on release

2024-05-19 00:57:11 +02:00 · 2024-05-19 00:57:11 +02:00 · 9b66123bb2
commit 9b66123bb2
parent aaf1162b0e
2 changed files with 137 additions and 13 deletions
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@ -72,21 +72,26 @@ jobs:
      with:
        tag_name: 10.9/v${{ github.event.inputs.version }}
        name: v${{ github.event.inputs.version }}
-        append_body: true
-        body: |
-          ---
-          ```json
-            {
-                "version": "${{ github.event.inputs.version }}",
-                "changelog": "- See the full changelog at [GitHub](https://github.com/jumoog/intro-skipper/blob/master/CHANGELOG.md)\n",
-                "targetAbi": "10.9.0.0",
-                "sourceUrl": "${{ env.SOURCE_URL }}",
-                "checksum": "${{ env.CHECKSUM }}",
-                "timestamp": "${{ env.TIMESTAMP }}"
-            }
-          ```
        draft: false
        prerelease: false
      env:
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

+    - name: Set up Node.js
+      uses: actions/setup-node@v4
+      with:
+        node-version: '20'
+
+    - name: Run validation and update script
+      run: node validate-and-update-manifest.js
+      env:
+        VERSION: ${{ github.event.inputs.version }}
+
+    - name: Commit changes
+      if: success()
+      run: |
+        git config --global user.name "github-actions[bot]"
+        git config --global user.email "github-actions[bot]@users.noreply.github.com"
+        git add manifest.json
+        git commit -m "release v${{ github.event.inputs.version }}"
+        git push
--- a/validate-and-update-manifest.js
+++ b/validate-and-update-manifest.js
@ -0,0 +1,119 @@
+const https = require('https');
+const crypto = require('crypto');
+const fs = require('fs');
+const { URL } = require('url');
+
+// Read manifest.json
+const manifestPath = './manifest.json';
+if (!fs.existsSync(manifestPath)) {
+    console.error('manifest.json file not found');
+    process.exit(1);
+}
+const jsonData = JSON.parse(fs.readFileSync(manifestPath, 'utf8'));
+
+const newVersion = {
+    version: process.env.VERSION, // replace with the actual new version
+    changelog: "- See the full changelog at [GitHub](https://github.com/jumoog/intro-skipper/blob/master/CHANGELOG.md)\n",
+    targetAbi: "10.9.0.0",
+    sourceUrl: process.env.SOURCE_URL,
+    checksum: process.env.CHECKSUM,
+    timestamp: process.env.TIMESTAMP
+};
+
+async function updateManifest() {
+	await validVersion(newVersion);
+	
+    // Add the new version to the manifest
+    jsonData[0].versions.unshift(newVersion);
+
+    // Write the updated manifest to file if validation is successful
+    fs.writeFileSync(manifestPath, JSON.stringify(jsonData, null, 4));
+    console.log('Manifest updated successfully.');
+}
+
+async function validateJSON() {
+    for (const item of jsonData) {
+        for (const version of item.versions) {
+			await validVersion(version);
+        }
+    }
+}
+
+async function validVersion(version) {
+    console.log(`Validating version ${version.version}...`);
+
+    const isValidUrl = await checkUrl(version.sourceUrl);
+    if (!isValidUrl) {
+        console.error(`Invalid URL: ${version.sourceUrl}`);
+        process.exit(1); // Exit with an error code
+    }
+
+    const isValidChecksum = await verifyChecksum(version.sourceUrl, version.checksum);
+    if (!isValidChecksum) {
+        console.error(`Checksum mismatch for URL: ${version.sourceUrl}`);
+        process.exit(1); // Exit with an error code
+    } else {
+        console.log(`Version ${version.version} is valid.`);
+    }
+}
+
+function checkUrl(url) {
+    return new Promise((resolve) => {
+        https.get(url, (res) => {
+            resolve(res.statusCode === 302);
+        }).on('error', () => {
+            resolve(false);
+        });
+    });
+}
+
+async function verifyChecksum(url, expectedChecksum) {
+    const tempFilePath = `tempfile_${Math.random().toString(36).substring(2, 15) + Math.random().toString(23).substring(2, 5)}.zip`;
+
+    try {
+        await downloadFile(url, tempFilePath);
+        const fileBuffer = fs.readFileSync(tempFilePath);
+        const hash = crypto.createHash('md5').update(fileBuffer).digest('hex');
+        fs.unlinkSync(tempFilePath); // Clean up temp file
+        return hash === expectedChecksum;
+    } catch (error) {
+        console.error(`Error verifying checksum for URL: ${url}`, error);
+        return false;
+    }
+}
+
+async function downloadFile(url, destinationPath, redirects = 5) {
+    if (redirects === 0) {
+        throw new Error('Too many redirects');
+    }
+
+    const file = fs.createWriteStream(destinationPath);
+
+    return new Promise((resolve, reject) => {
+        https.get(url, (response) => {
+            if (response.statusCode >= 300 && response.statusCode < 400 && response.headers.location) {
+                // Follow redirect
+                const redirectUrl = new URL(response.headers.location, url).toString();
+                downloadFile(redirectUrl, destinationPath, redirects - 1)
+                    .then(resolve)
+                    .catch(reject);
+            } else if (response.statusCode === 200) {
+                response.pipe(file);
+                file.on('finish', () => {
+                    file.close(resolve);
+                });
+            } else {
+                reject(new Error(`Failed to get '${url}' (${response.statusCode})`));
+            }
+        }).on('error', (err) => {
+            fs.unlink(destinationPath, () => reject(err));
+        });
+    });
+}
+
+async function run() {
+	await updateManifest();
+	await validateJSON();
+}
+
+run();