versun/claude-code
1
0
Fork 0
mirror of https://github.com/claude-code-best/claude-code.git synced 2026-06-17 13:55:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
d03af7bd4e31db3f080e9fc27bd53ed8fd452d0c
claude-code/packages/weixin/src/media.ts
claude-code-best 494eab7204 feat: 接入内建 weixin channel(同 #301 重构版本) (#303) 
* feat: 接入 weixin 服务层与命令入口

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* feat: 注册内建 weixin channel 插件

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* fix: 修正 channel permission relay 路由与能力判定

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* fix: 修复 builtin channel 的 ChannelsNotice 误报

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* docs: 补充内建 weixin channel 使用说明

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* docs: 更新微信 channel 接入计划状态

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* fix: 延迟加载 weixin 登录二维码依赖

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* fix: 改用 qrcode 生成 weixin 登录二维码

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* fix: 修正 vite 构建的 Windows 路径解析

Ultraworked with [Sisyphus](https://github.com/code-yeongyu/oh-my-openagent)

Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>

* chore: 删除临时规划文档 wx_channel.md 并还原 package.json 排序

wx_channel.md 内容已整合到 docs/features/channels.md,不再需要。
package.json 中 @ant/model-provider 位置从原始位置被无意移动,还原。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* refactor: 将 weixin 模块从 src/ 迁移至 packages/weixin 工作区包

将 src/services/weixin/ 中的纯业务逻辑迁入 @claude-code-best/weixin
workspace 包,降低 src/ 耦合度。仅保留 server.ts 作为薄适配层。

- 迁移 7 个无修改的纯模块 (types/api/accounts/login/pairing/media/send)
- monitor.ts 内联 PERMISSION_REPLY_RE 正则,解除对 src/ 的依赖
- permissions.ts 本地定义 ChannelPermissionRequestParams 接口
- cli.ts 拆分:serve 子命令通过回调注入,login/access 保留在包内
- server.ts 重写为从 @claude-code-best/weixin 导入
- 新增 cli-serve.ts 作为 serve 入口薄壳

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: 修正 weixin barrel export 中 interface 的导出方式

ChannelPermissionRequestParams 是纯类型,必须用 export type 导出,
否则 Bun 运行时会报 "export not found" 错误。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* refactor: 将 server.ts 迁入 packages/weixin,彻底移除 src/services/weixin/

通过依赖注入(WeixinServerDeps)解耦 src/ 依赖(analytics、config、
MCP channel schema),server.ts 完全移入包内。cli.tsx 入口处一次性
注入所有依赖。

src/services/weixin/ 目录已完全删除。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: 修复 markdownToPlainText 中代码块正则的 ReDoS 风险

用非正则的线性扫描替代 \`\`\`[\s\S]*?\n([\s\S]*?)\`\`\` 匹配,
避免在含有大量重复 \`\`\` 序列的输入上触发多项式回溯。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

---------

Co-authored-by: 1111 <11111@asd.c>
Co-authored-by: Sisyphus <clio-agent@sisyphuslabs.ai>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
2026-04-19 21:33:27 +08:00

164 lines
4.7 KiB
TypeScript
Raw Blame History

import {
createCipheriv,
createDecipheriv,
createHash,
randomBytes,
} from 'node:crypto'
import {
existsSync,
mkdirSync,
readFileSync,
writeFileSync,
} from 'node:fs'
import { tmpdir } from 'node:os'
import { basename, extname, join } from 'node:path'
import { getUploadUrl } from './api.js'
import { UploadMediaType } from './types.js'
export function encryptAesEcb(plaintext: Buffer, key: Buffer): Buffer {
const cipher = createCipheriv('aes-128-ecb', key, null)
return Buffer.concat([cipher.update(plaintext), cipher.final()])
}
export function decryptAesEcb(ciphertext: Buffer, key: Buffer): Buffer {
const decipher = createDecipheriv('aes-128-ecb', key, null)
return Buffer.concat([decipher.update(ciphertext), decipher.final()])
}
export function aesEcbPaddedSize(size: number): number {
return size + (16 - (size % 16))
}
export function buildCdnDownloadUrl(
encryptedQueryParam: string,
cdnBaseUrl: string,
): string {
return `${cdnBaseUrl}/download?encrypted_query_param=${encodeURIComponent(encryptedQueryParam)}`
}
export function buildCdnUploadUrl(
cdnBaseUrl: string,
uploadParam: string,
filekey: string,
): string {
return `${cdnBaseUrl}/upload?encrypted_query_param=${encodeURIComponent(uploadParam)}&filekey=${encodeURIComponent(filekey)}`
}
export function parseAesKey(aesKeyBase64: string): Buffer {
const decoded = Buffer.from(aesKeyBase64, 'base64')
if (decoded.length === 16) {
return decoded
}
if (decoded.length === 32 && /^[0-9a-fA-F]{32}$/.test(decoded.toString('ascii'))) {
return Buffer.from(decoded.toString('ascii'), 'hex')
}
throw new Error(
`Invalid aes_key: expected 16 raw bytes or 32 hex chars, got ${decoded.length} bytes`,
)
}
export async function downloadAndDecrypt(params: {
encryptQueryParam: string
aesKey: string
cdnBaseUrl: string
}): Promise<Buffer> {
const url = buildCdnDownloadUrl(params.encryptQueryParam, params.cdnBaseUrl)
const response = await fetch(url)
if (!response.ok) {
throw new Error(`CDN download failed: HTTP ${response.status}`)
}
const ciphertext = Buffer.from(await response.arrayBuffer())
return decryptAesEcb(ciphertext, parseAesKey(params.aesKey))
}
export interface UploadedFileInfo {
encryptQueryParam: string
aesKey: string
fileSize: number
rawSize: number
fileName: string
}
export async function uploadFile(params: {
filePath: string
toUserId: string
mediaType: number
apiBaseUrl: string
token: string
cdnBaseUrl: string
}): Promise<UploadedFileInfo> {
const plaintext = readFileSync(params.filePath)
const rawSize = plaintext.length
const rawMd5 = createHash('md5').update(plaintext).digest('hex')
const aesKey = randomBytes(16)
const filekey = randomBytes(16).toString('hex')
const ciphertext = encryptAesEcb(plaintext, aesKey)
const fileSize = ciphertext.length
const uploadResp = await getUploadUrl(params.apiBaseUrl, params.token, {
filekey,
media_type: params.mediaType,
to_user_id: params.toUserId,
rawsize: rawSize,
rawfilemd5: rawMd5,
filesize: fileSize,
no_need_thumb: true,
aeskey: aesKey.toString('hex'),
})
if (!uploadResp.upload_param) {
throw new Error('No upload_param in response')
}
const uploadUrl = buildCdnUploadUrl(
params.cdnBaseUrl,
uploadResp.upload_param,
filekey,
)
const uploadResult = await fetch(uploadUrl, {
method: 'POST',
headers: { 'Content-Type': 'application/octet-stream' },
body: new Uint8Array(ciphertext),
})
if (!uploadResult.ok) {
throw new Error(`CDN upload failed: HTTP ${uploadResult.status}`)
}
return {
encryptQueryParam: uploadResult.headers.get('x-encrypted-param') || '',
aesKey: Buffer.from(aesKey.toString('hex')).toString('base64'),
fileSize,
rawSize,
fileName: basename(params.filePath),
}
}
export function guessMediaType(filePath: string): number {
const ext = extname(filePath).toLowerCase()
const imageExts = ['.jpg', '.jpeg', '.png', '.gif', '.bmp', '.webp', '.heic']
const videoExts = ['.mp4', '.mov', '.avi', '.mkv', '.webm']
if (imageExts.includes(ext)) return UploadMediaType.IMAGE
if (videoExts.includes(ext)) return UploadMediaType.VIDEO
return UploadMediaType.FILE
}
export async function downloadRemoteToTemp(
url: string,
destDir?: string,
): Promise<string> {
const dir = destDir || join(tmpdir(), 'weixin-downloads')
if (!existsSync(dir)) mkdirSync(dir, { recursive: true })
const response = await fetch(url)
if (!response.ok) throw new Error(`Download failed: HTTP ${response.status}`)
const buffer = Buffer.from(await response.arrayBuffer())
const urlPath = new URL(url).pathname
const name = basename(urlPath) || `file_${Date.now()}`
const dest = join(dir, name)
writeFileSync(dest, buffer)
return dest
}
Reference in New Issue View Git Blame Copy Permalink