pakx-core 0.1.5

pakx core — manifest, lockfile, resolver, installer logic
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182

//! Strongly-typed representation of `agents.lock`.
//!
//! The lockfile pins every resolved dep to a content hash + source URL +
//! version, with transitive deps as forward references to other entries.
//! JSON storage chosen over YAML for determinism (no key-order ambiguity)
//! and tooling support.

use std::collections::BTreeMap;
use std::sync::LazyLock;

use regex::Regex;
use serde::{Deserialize, Serialize};

use crate::manifest::{AgentId, PackageType};

/// Current on-disk lockfile schema version. Bump on incompatible changes.
pub const LOCKFILE_VERSION: u32 = 1;

/// Source registry that produced an entry. `git` and `github` are direct
/// fetches (no intermediary index); the others are federated public APIs
/// queried by the registry-client in v0.1.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, PartialOrd, Ord, Serialize, Deserialize)]
#[serde(rename_all = "kebab-case")]
pub enum RegistrySource {
    OfficialMcp,
    Smithery,
    Glama,
    Github,
    Git,
    /// The pakx-registry backend (registry.pakx.dev) — first-party
    /// federated source for packages published through the CLI.
    Pakx,
}

/// All registry-source variants in canonical order.
pub const REGISTRY_SOURCES: [RegistrySource; 6] = [
    RegistrySource::OfficialMcp,
    RegistrySource::Smithery,
    RegistrySource::Glama,
    RegistrySource::Github,
    RegistrySource::Git,
    RegistrySource::Pakx,
];

impl RegistrySource {
    /// Stable kebab-case tag. Matches the serde representation (so a
    /// round-trip through `serde_json` / `serde_yaml_ng` produces the
    /// same string), but available without serializing. Used by the CLI
    /// for human + JSON output and is part of the documented JSON
    /// contract — only add new variants, never rename existing ones.
    pub const fn as_tag(self) -> &'static str {
        match self {
            Self::OfficialMcp => "official-mcp",
            Self::Smithery => "smithery",
            Self::Glama => "glama",
            Self::Github => "github",
            Self::Git => "git",
            Self::Pakx => "pakx",
        }
    }
}

// ---------------------------------------------------------------------------
// Integrity (SRI-style sha256)
// ---------------------------------------------------------------------------

static INTEGRITY_RE: LazyLock<Regex> =
    LazyLock::new(|| Regex::new(r"^sha256-[A-Za-z0-9+/]{43}=$").expect("static regex compiles"));

/// SRI integrity string: `sha256-<base64>` (RFC 6920). The 44 char body is
/// 32 raw bytes = a sha256 digest. Newtype keeps malformed values out of
/// other lockfile fields.
#[derive(Debug, Clone, PartialEq, Eq, Hash, Serialize)]
#[serde(transparent)]
pub struct Integrity(String);

impl Integrity {
    pub fn parse(s: impl Into<String>) -> Result<Self, String> {
        let s = s.into();
        if INTEGRITY_RE.is_match(&s) {
            Ok(Self(s))
        } else {
            Err(format!(
                "invalid integrity {s:?}: must be `sha256-<43 base64 chars>=`"
            ))
        }
    }

    pub const fn as_str(&self) -> &str {
        self.0.as_str()
    }
}

impl<'de> Deserialize<'de> for Integrity {
    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
    where
        D: serde::Deserializer<'de>,
    {
        let s = String::deserialize(deserializer)?;
        Self::parse(s).map_err(serde::de::Error::custom)
    }
}

// ---------------------------------------------------------------------------
// Entry key
// ---------------------------------------------------------------------------

static ENTRY_KEY_RE: LazyLock<Regex> = LazyLock::new(|| {
    Regex::new(r"^(skills|mcp|subagents|prompts|commands|hooks)/[^@\s]+@[^\s]+$")
        .expect("static regex compiles")
});

/// Validate a flat lockfile entry key.
///
/// Format: `<type>/<canonical-id>@<version>` — for example
/// `skills/anthropics/pdf@1.2.0` or `mcp/smithery/github-mcp@0.5.1`.
pub fn is_valid_entry_key(key: &str) -> bool {
    ENTRY_KEY_RE.is_match(key)
}

// ---------------------------------------------------------------------------
// Lock entry + lockfile
// ---------------------------------------------------------------------------

/// One resolved package pinned into the lockfile.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
#[serde(deny_unknown_fields, rename_all = "camelCase")]
pub struct LockEntry {
    pub name: String,
    #[serde(rename = "type")]
    pub kind: PackageType,
    pub version: String,
    /// Fully resolved fetch location (URL, git+ref, registry URI).
    pub resolved_from: String,
    pub registry: RegistrySource,
    pub integrity: Integrity,
    /// Agent ids this entry was installed into.
    #[serde(default)]
    pub agents: Vec<AgentId>,
    /// Transitive lockfile-entry keys this entry depends on.
    #[serde(default)]
    pub dependencies: Vec<String>,
}

/// On-disk `agents.lock`. `BTreeMap` gives deterministic key order for free.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
#[serde(deny_unknown_fields, rename_all = "camelCase")]
pub struct Lockfile {
    pub lockfile_version: u32,
    /// sha256 of the canonicalised manifest at lock time. Drift signal for
    /// `pakx doctor`.
    pub manifest_hash: Integrity,
    pub entries: BTreeMap<String, LockEntry>,
}

#[cfg(test)]
mod tests {
    use super::{RegistrySource, REGISTRY_SOURCES};

    /// `RegistrySource::as_tag` is the single source of truth for the
    /// kebab-case representation used by the CLI's human + JSON output.
    /// It MUST match the serde representation so a round-trip through
    /// JSON / YAML produces the same string — locking that in here.
    #[test]
    fn as_tag_matches_serde_kebab_case() {
        for src in REGISTRY_SOURCES {
            let via_serde = serde_json::to_string(&src).expect("serialize variant");
            let trimmed = via_serde.trim_matches('"');
            assert_eq!(trimmed, src.as_tag(), "as_tag must match serde for {src:?}");
        }
    }

    #[test]
    fn as_tag_returns_documented_strings() {
        assert_eq!(RegistrySource::OfficialMcp.as_tag(), "official-mcp");
        assert_eq!(RegistrySource::Smithery.as_tag(), "smithery");
        assert_eq!(RegistrySource::Glama.as_tag(), "glama");
        assert_eq!(RegistrySource::Github.as_tag(), "github");
        assert_eq!(RegistrySource::Git.as_tag(), "git");
        assert_eq!(RegistrySource::Pakx.as_tag(), "pakx");
    }
}