socket-cli/packages/cli/scripts/extract-models.mjs at ec785cddfc74e75ce46c1d9f8d7edfe685cc5789 · SocketDev/socket-cli · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
/**
 * Download models from socket-btm GitHub releases.
 * This provides production models optimized with INT4 quantization.
 *
 * Source: https://github.com/SocketDev/socket-btm/releases
 * Models included: MiniLM-L6-v2, CodeT5
 *
 * Idempotent: Skips extraction if models are already cached and up to date.
 */

import { existsSync } from 'node:fs'
import { readFile, writeFile } from 'node:fs/promises'
import path from 'node:path'
import { fileURLToPath } from 'node:url'

import { safeMkdir } from '@socketsecurity/lib/fs'
import { getDefaultLogger } from '@socketsecurity/lib/logger'
import { downloadSocketBtmRelease } from '@socketsecurity/lib/releases/socket-btm'
import { spawn } from '@socketsecurity/lib/spawn'

const __dirname = path.dirname(fileURLToPath(import.meta.url))
const rootPath = path.join(__dirname, '..')
const logger = getDefaultLogger()

const outputDir = path.join(rootPath, 'build/models')

/**
 * Extract tar.gz to output directory if needed.
 */
async function extractModels(tarGzPath, releaseTag) {
  await safeMkdir(outputDir)

  const versionPath = path.join(outputDir, '.version')

  // Check if already extracted and up to date.
  if (existsSync(versionPath)) {
    const cachedVersion = await readFile(versionPath, 'utf-8')
    if (cachedVersion.trim() === releaseTag) {
      logger.info('Models already up to date')
      return
    }
    logger.info('Models out of date, re-extracting...')
  } else {
    logger.info('Extracting models (this may take a minute)...')
  }

  // Extract tar.gz using tar command.
  const result = await spawn('tar', ['-xzf', tarGzPath, '-C', outputDir], {
    stdio: 'inherit',
  })

  if (result.code !== 0) {
    throw new Error(`tar extraction failed with code ${result.code}`)
  }

  // Write version file with release tag.
  await writeFile(versionPath, releaseTag, 'utf-8')
}

/**
 * Main extraction logic.
 */
async function main() {
  try {
    logger.group('Extracting models from socket-btm releases...')

    let assetPath
    try {
      // Download models tar.gz asset using @socketsecurity/lib helper.
      // Asset name pattern: models-{DATE}-{COMMIT}.tar.gz
      // The pattern is resolved automatically to find the latest matching asset.
      // This handles version caching automatically.
      assetPath = await downloadSocketBtmRelease({
        asset: 'models-*.tar.gz',
        cwd: rootPath,
        downloadDir: '../../packages/build-infra/build/downloaded',
        quiet: false,
        tool: 'models',
      })
    } catch (e) {
      logger.groupEnd()
      logger.warn(`Models not available: ${e.message}`)
      process.exit(0)
    }

    // Get tag from source version file.
    const assetDir = path.dirname(assetPath)
    const sourceVersionPath = path.join(assetDir, '.version')
    const tag = existsSync(sourceVersionPath)
      ? (await readFile(sourceVersionPath, 'utf8')).trim()
      : 'unknown'

    // Extract to output directory.
    await extractModels(assetPath, tag)

    logger.groupEnd()
    logger.success('Models extraction complete')
  } catch (e) {
    logger.groupEnd()
    logger.error(`Unexpected error: ${e.message}`)
    process.exit(1)
  }
}

main()