BrowserOS

LLM/BrowserOS

Fork 0

mirror of https://github.com/browseros-ai/BrowserOS.git synced 2026-05-19 11:31:03 +00:00

Commit Graph

Author	SHA1	Message	Date
Nikhil	ace9307878	feat: add browseros-cli self-updater (#605 ) * feat: add browseros-cli self-updater * fix: address review comments for 0327-cli_self_updater * fix: address PR review comments for 0327-cli_self_updater * fix: replace goreleaser with Makefile-based release build Remove .goreleaser.yml (required Pro license for monorepo field) and consolidate cross-compilation into `make release`. CI now uses the same Makefile target, fixing a bug where POSTHOG_API_KEY was missing from release ldflags. * fix: address critical self-updater bugs from code review - Fix SHA256 checksum mismatch: verify archive checksum before extraction instead of verifying extracted binary against archive hash (was always failing). Add VerifyChecksum() and integration test. - Fix JSON field name mismatch: TypeScript was emitting camelCase (publishedAt, archiveFormat) but Go expected snake_case (published_at, archive_format). Manifest parsing was silently broken. - Add decompression size limit (256 MB) to prevent zip/gzip bombs. - Don't update LastCheckedAt on transient errors so retry happens on next CLI invocation instead of waiting 24h.	2026-03-27 14:52:54 -07:00
Nikhil	6c053a5f29	feat: upload CLI binaries to CDN and gate release to core team (#602 ) * feat: upload CLI binaries to CDN during release and gate workflow to core team - Extend scripts/build/cli/upload.ts with uploadCliRelease() that pushes archives + checksums to R2 under versioned (cli/v{VERSION}/) and latest (cli/latest/) paths, plus a version.txt for lightweight latest resolution - Update scripts/build/cli.ts entry point with --release/--version/--binaries-dir flags (existing no-args behavior preserved for upload:cli-installers) - Rewrite install.sh and install.ps1 to fetch from cdn.browseros.com instead of GitHub releases API — eliminates rate limits and API dependency - Add environment: release-core to release-cli.yml for core-team gating via GitHub environment protection rules - Add Bun setup + CDN upload step to the workflow between build and GitHub release * fix: address review feedback for PR #602 - Make loadProdEnv return empty map when .env.production is absent so pickEnv falls through to process.env in CI (Greptile P1) - Add semver format validation for version string in install.sh and install.ps1 to guard against malformed CDN responses - Pass inputs.version via env var instead of inline ${{ }} interpolation to prevent command injection in workflow shell	2026-03-27 11:47:31 -07:00
Nikhil	220577b41c	feat: add CDN-hosted CLI installer flow (#588 ) * feat: add CDN upload flow for cli installers * fix: move cli install docs to top-level readme * fix: bun.lock update	2026-03-26 17:41:03 -07:00

Author

SHA1

Message

Date

Nikhil

ace9307878

feat: add browseros-cli self-updater (#605 )

* feat: add browseros-cli self-updater

* fix: address review comments for 0327-cli_self_updater

* fix: address PR review comments for 0327-cli_self_updater

* fix: replace goreleaser with Makefile-based release build

Remove .goreleaser.yml (required Pro license for monorepo field) and
consolidate cross-compilation into `make release`. CI now uses the same
Makefile target, fixing a bug where POSTHOG_API_KEY was missing from
release ldflags.

* fix: address critical self-updater bugs from code review

- Fix SHA256 checksum mismatch: verify archive checksum before extraction
  instead of verifying extracted binary against archive hash (was always
  failing). Add VerifyChecksum() and integration test.
- Fix JSON field name mismatch: TypeScript was emitting camelCase
  (publishedAt, archiveFormat) but Go expected snake_case
  (published_at, archive_format). Manifest parsing was silently broken.
- Add decompression size limit (256 MB) to prevent zip/gzip bombs.
- Don't update LastCheckedAt on transient errors so retry happens on
  next CLI invocation instead of waiting 24h.

2026-03-27 14:52:54 -07:00

Nikhil

6c053a5f29

feat: upload CLI binaries to CDN and gate release to core team (#602 )

* feat: upload CLI binaries to CDN during release and gate workflow to core team

- Extend scripts/build/cli/upload.ts with uploadCliRelease() that pushes
  archives + checksums to R2 under versioned (cli/v{VERSION}/) and latest
  (cli/latest/) paths, plus a version.txt for lightweight latest resolution
- Update scripts/build/cli.ts entry point with --release/--version/--binaries-dir
  flags (existing no-args behavior preserved for upload:cli-installers)
- Rewrite install.sh and install.ps1 to fetch from cdn.browseros.com instead of
  GitHub releases API — eliminates rate limits and API dependency
- Add environment: release-core to release-cli.yml for core-team gating via
  GitHub environment protection rules
- Add Bun setup + CDN upload step to the workflow between build and GitHub release

* fix: address review feedback for PR #602

- Make loadProdEnv return empty map when .env.production is absent so
  pickEnv falls through to process.env in CI (Greptile P1)
- Add semver format validation for version string in install.sh and
  install.ps1 to guard against malformed CDN responses
- Pass inputs.version via env var instead of inline ${{ }} interpolation
  to prevent command injection in workflow shell

2026-03-27 11:47:31 -07:00

Nikhil

220577b41c

feat: add CDN-hosted CLI installer flow (#588 )

* feat: add CDN upload flow for cli installers

* fix: move cli install docs to top-level readme

* fix: bun.lock update

2026-03-26 17:41:03 -07:00

3 Commits