feat: bundle GPG signature & project uuid

Author: SRWieZ

src/Electron/Commands/Bifrost/ClearBundleCommand.php

@@ -20,18 +20,45 @@ public function handle(): int
         intro('Clearing downloaded bundle...');
 
         $bundlePath = base_path('build/__nativephp_app_bundle');
+        $signaturePath = $bundlePath . '.asc';
 
-        if (! file_exists($bundlePath)) {
-            $this->warn('No bundle found to clear.');
+        $bundleExists = file_exists($bundlePath);
+        $signatureExists = file_exists($signaturePath);
+
+        if (! $bundleExists && ! $signatureExists) {
+            $this->warn('No bundle or signature files found to clear.');
 
             return static::SUCCESS;
         }
 
-        if (unlink($bundlePath)) {
-            $this->info('Bundle cleared successfully!');
+        $cleared = [];
+        $failed = [];
+
+        if ($bundleExists) {
+            if (unlink($bundlePath)) {
+                $cleared[] = 'bundle';
+            } else {
+                $failed[] = 'bundle';
+            }
+        }
+
+        if ($signatureExists) {
+            if (unlink($signaturePath)) {
+                $cleared[] = 'GPG signature';
+            } else {
+                $failed[] = 'GPG signature';
+            }
+        }
+
+        if (! empty($cleared)) {
+            $clearedText = implode(' and ', $cleared);
+            $this->info("Cleared {$clearedText} successfully!");
             $this->line('Note: Building in this state would be unsecure without a valid bundle.');
-        } else {
-            $this->error('Failed to remove bundle file.');
+        }
+
+        if (! empty($failed)) {
+            $failedText = implode(' and ', $failed);
+            $this->error("Failed to remove {$failedText}.");
 
             return static::FAILURE;
         }

src/Electron/Commands/Bifrost/DownloadBundleCommand.php

@@ -50,21 +50,30 @@ public function handle(): int
 
             $buildData = $response->json();
 
-            if (! isset($buildData['download_url'])) {
+            if (! isset($buildData['data']['download_url'])) {
                 $this->error('Bundle download URL not found in response.');
 
                 return static::FAILURE;
             }
 
-            $this->displayBundleInfo($buildData);
+            $this->displayBundleInfo($buildData['data']);
 
             $bundlePath = $this->prepareBundlePath();
 
-            if (! $this->downloadBundle($buildData['download_url'], $bundlePath)) {
+            if (! $this->downloadBundle($buildData['data']['download_url'], $bundlePath)) {
                 return static::FAILURE;
             }
 
-            $this->displaySuccessInfo($bundlePath);
+            // Download GPG signature if available
+            $signaturePath = null;
+            if (isset($buildData['data']['signature_url'])) {
+                $signaturePath = $bundlePath . '.asc';
+                if (! $this->downloadSignature($buildData['data']['signature_url'], $signaturePath)) {
+                    $this->warn('Failed to download GPG signature file.');
+                }
+            }
+
+            $this->displaySuccessInfo($bundlePath, $signaturePath);
 
             return static::SUCCESS;
         } catch (Exception $e) {
@@ -143,7 +152,27 @@ private function cleanupFailedDownload(string $bundlePath): void
         }
     }
 
-    private function displaySuccessInfo(string $bundlePath): void
+    private function downloadSignature(string $signatureUrl, string $signaturePath): bool
+    {
+        $this->line('');
+        $this->info('Downloading GPG signature...');
+
+        try {
+            $downloadResponse = Http::get($signatureUrl);
+
+            if ($downloadResponse->failed()) {
+                return false;
+            }
+
+            file_put_contents($signaturePath, $downloadResponse->body());
+
+            return true;
+        } catch (Exception $e) {
+            return false;
+        }
+    }
+
+    private function displaySuccessInfo(string $bundlePath, ?string $signaturePath = null): void
     {
         $this->line('');
         $this->info('Bundle downloaded successfully!');
@@ -153,6 +182,13 @@ private function displaySuccessInfo(string $bundlePath): void
             $sizeInMB = number_format(filesize($bundlePath) / 1024 / 1024, 2);
             $this->line("Size: {$sizeInMB} MB");
         }
+
+        if ($signaturePath && file_exists($signaturePath)) {
+            $this->line('GPG Signature: '.$signaturePath);
+            $this->line('');
+            $this->info('To verify the bundle integrity:');
+            $this->line('gpg --verify '.basename($signaturePath).' '.basename($bundlePath));
+        }
     }
 
     private function handleApiError($response): void

src/Electron/Commands/Bifrost/InitCommand.php

@@ -67,25 +67,25 @@ public function handle(): int
                 $name = $project['name'] ?? 'Unknown';
                 $repo = $project['repo'] ?? 'No repository';
 
-                return [$project['id'] => "{$name} - {$repo}"];
+                return [$project['uuid'] => "{$name} - {$repo}"];
             })->toArray();
 
-            $selectedProjectId = select(
+            $selectedProjectUuid = select(
                 label: 'Select a desktop project',
                 options: $choices,
                 required: true
             );
 
-            $selectedProject = collect($projects)->firstWhere('id', $selectedProjectId);
+            $selectedProject = collect($projects)->firstWhere('uuid', $selectedProjectUuid);
 
             if (! $selectedProject) {
                 $this->error('Selected project not found.');
 
                 return static::FAILURE;
             }
 
-            // Store project in .env file
-            $this->updateEnvFile('BIFROST_PROJECT', $selectedProjectId);
+            // Store project UUID in .env file
+            $this->updateEnvFile('BIFROST_PROJECT', $selectedProjectUuid);
 
             $this->displaySuccessMessage($selectedProject);