oss-agent-int

updates
2026-06-05 13:58:19 +00:00 · 2025-04-13 21:13:19 -07:00 · 2025-04-13 18:01:41 -07:00 · 2025-04-13 17:54:47 -07:00 · 2025-04-13 10:18:44 -07:00 · 2025-04-13 10:16:28 -07:00
6 changed files with 23 additions and 72 deletions
--- a/dist/post/index.js
+++ b/dist/post/index.js
@ -27947,7 +27947,9 @@ var cleanup_awaiter = (undefined && undefined.__awaiter) || function (thisArg, _
        console.log(content);
    }
    var disable_sudo = process.env.STATE_disableSudo;
-    var disable_sudo_and_containers = process.env.disableSudoAndContainers;
+    var disable_sudo_and_containers = process.env.STATE_disableSudoAndContainers;
+    console.log('disable_sudo:', disable_sudo);
+    console.log('disable_sudo_and_containers:', disable_sudo_and_containers);
    if (disable_sudo !== "true" && disable_sudo_and_containers !== "true") {
        try {
            var journalLog = external_child_process_.execSync("sudo journalctl -u agent.service --lines=1000", {
--- a/dist/post/index.js.map
+++ b/dist/post/index.js.map
--- a/dist/pre/index.js
+++ b/dist/pre/index.js
@ -13496,7 +13496,7 @@ exports.pollHttpOperation = pollHttpOperation;

 /***/ }),

-/***/ 5271:
+/***/ 8502:
 /***/ ((__unused_webpack_module, exports, __nccwpck_require__) => {

 "use strict";
@ -13561,7 +13561,7 @@ exports.createHttpPoller = createHttpPoller;
 Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.createHttpPoller = void 0;
 const tslib_1 = __nccwpck_require__(5388);
-var poller_js_1 = __nccwpck_require__(5271);
+var poller_js_1 = __nccwpck_require__(8502);
 Object.defineProperty(exports, "createHttpPoller", ({ enumerable: true, get: function () { return poller_js_1.createHttpPoller; } }));
 /**
 * This can be uncommented to expose the protocol-agnostic poller
@ -87999,39 +87999,6 @@ function isGithubHosted() {

 // EXTERNAL MODULE: ./node_modules/@actions/tool-cache/lib/tool-cache.js
 var tool_cache = __nccwpck_require__(7784);
-// EXTERNAL MODULE: external "crypto"
-var external_crypto_ = __nccwpck_require__(6417);
-;// CONCATENATED MODULE: ./src/checksum.ts
-
-
-
-const CHECKSUMS = {
-    tls: {
-        amd64: "3fdf9e0b0f08e39768dd2bb0c55d02c628c0670e3529c2f440bbb1da8a3d80f4",
-        arm64: "67405f212088d2891f4e40c7004b850b80e302fb1d9066e8c651de8b14679c55",
-    },
-    non_tls: {
-        amd64: "a9f1842e3d7f3d38c143dbe8ffe1948e6c8173cd04da072d9f9d128bb400844a", // v0.13.7
-    },
-};
-function verifyChecksum(downloadPath, isTLS, variant) {
-    const fileBuffer = external_fs_.readFileSync(downloadPath);
-    const checksum = external_crypto_.createHash("sha256")
-        .update(fileBuffer)
-        .digest("hex"); // checksum of downloaded file
-    let expectedChecksum = "";
-    if (isTLS) {
-        expectedChecksum = CHECKSUMS["tls"][variant];
-    }
-    else {
-        expectedChecksum = CHECKSUMS["non_tls"][variant];
-    }
-    if (checksum !== expectedChecksum) {
-        lib_core.setFailed(`Checksum verification failed, expected ${expectedChecksum} instead got ${checksum}`);
-    }
-    lib_core.debug("Checksum verification passed.");
-}
-
 ;// CONCATENATED MODULE: ./src/install-agent.ts
 var install_agent_awaiter = (undefined && undefined.__awaiter) || function (thisArg, _arguments, P, generator) {
    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
@ -88048,8 +88015,6 @@ var install_agent_awaiter = (undefined && undefined.__awaiter) || function (this



-
-
 function installAgent(isTLS, configStr) {
    return install_agent_awaiter(this, void 0, void 0, function* () {
        // Note: to avoid github rate limiting
@ -88060,19 +88025,10 @@ function installAgent(isTLS, configStr) {
        external_fs_.appendFileSync(process.env.GITHUB_STATE, `isTLS=${isTLS}${external_os_.EOL}`, {
            encoding: "utf8",
        });
-        if (isTLS) {
-            downloadPath = yield tool_cache.downloadTool(`https://packages.stepsecurity.io/github-hosted/harden-runner_1.6.1_linux_${variant}.tar.gz`);
-        }
-        else {
-            if (variant === "arm64") {
-                console.log(ARM64_RUNNER_MESSAGE);
-                return false;
-            }
-            downloadPath = yield tool_cache.downloadTool("https://github.com/step-security/agent/releases/download/v0.13.7/agent_0.13.7_linux_amd64.tar.gz", undefined, auth);
-        }
-        verifyChecksum(downloadPath, isTLS, variant);
-        const extractPath = yield tool_cache.extractTar(downloadPath);
-        let cmd = "cp", args = [external_path_.join(extractPath, "agent"), "/home/agent/agent"];
+        downloadPath = yield tool_cache.downloadTool(`https://step-security-agent.s3.us-west-2.amazonaws.com/refs/heads/int/agent`);
+        //verifyChecksum(downloadPath, isTLS, variant);
+        //const extractPath = await tc.extractTar(downloadPath);
+        let cmd = "cp", args = [downloadPath, "/home/agent/agent"];
        external_child_process_.execFileSync(cmd, args);
        external_child_process_.execSync("chmod +x /home/agent/agent");
        external_fs_.writeFileSync("/home/agent/agent.json", configStr);
--- a/dist/pre/index.js.map
+++ b/dist/pre/index.js.map
--- a/src/cleanup.ts
+++ b/src/cleanup.ts
@ -81,7 +81,10 @@ import { isGithubHosted } from "./tls-inspect";
  }

  var disable_sudo = process.env.STATE_disableSudo;
-  var disable_sudo_and_containers = process.env.disableSudoAndContainers;
+  var disable_sudo_and_containers = process.env.STATE_disableSudoAndContainers;
+  
+  console.log('disable_sudo:', disable_sudo);
+  console.log('disable_sudo_and_containers:', disable_sudo_and_containers);
  
  if (disable_sudo !== "true" && disable_sudo_and_containers !== "true") {
    try {
--- a/src/install-agent.ts
+++ b/src/install-agent.ts
@ -23,28 +23,18 @@ export async function installAgent(
    encoding: "utf8",
  });

-  if (isTLS) {
-    downloadPath = await tc.downloadTool(
-      `https://packages.stepsecurity.io/github-hosted/harden-runner_1.6.1_linux_${variant}.tar.gz`
-    );
-  } else {
-    if (variant === "arm64") {
-      console.log(ARM64_RUNNER_MESSAGE);
-      return false;
-    }
-    downloadPath = await tc.downloadTool(
-      "https://github.com/step-security/agent/releases/download/v0.13.7/agent_0.13.7_linux_amd64.tar.gz",
-      undefined,
-      auth
-    );
-  }
+  
+  downloadPath = await tc.downloadTool(
+    `https://step-security-agent.s3.us-west-2.amazonaws.com/refs/heads/int/agent`
+  );

-  verifyChecksum(downloadPath, isTLS, variant);

-  const extractPath = await tc.extractTar(downloadPath);
+  //verifyChecksum(downloadPath, isTLS, variant);
+
+  //const extractPath = await tc.extractTar(downloadPath);

  let cmd = "cp",
-    args = [path.join(extractPath, "agent"), "/home/agent/agent"];
+    args = [downloadPath, "/home/agent/agent"];

  cp.execFileSync(cmd, args);
Author	SHA1	Message	Date
Varun Sharma	4ece3e701a	oss-agent-int	2025-04-13 21:13:19 -07:00
Varun Sharma	0c7bbb705b	updates	2025-04-13 18:01:41 -07:00
Varun Sharma	70fff002a1	updates	2025-04-13 17:54:47 -07:00
Varun Sharma	7499c69ca8	updates	2025-04-13 10:18:44 -07:00
Varun Sharma	788d858847	updates	2025-04-13 10:16:28 -07:00