Skip to content

Add version check and update subcommands for CLI self-update #111

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
SmileyChris wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Add version check and update subcommands for CLI self-update #111

SmileyChris wants to merge 3 commits into from

Conversation

@SmileyChris
Copy link

@SmileyChris SmileyChris commented Dec 3, 2025

Summary

  • Adds apppack version check to check for available updates
  • Adds apppack version update to download and install the latest release from GitHub
  • Adds --force flag to update even when already on latest version

Features

  • Cross-platform support (Linux, macOS Intel/ARM, Windows)
  • SHA256 checksum verification before binary replacement
  • Blocks Homebrew installs with helpful brew upgrade apppack message
  • Safe binary replacement with atomic rename and cross-device fallbacks

Test plan

  • apppack version still shows current version
  • apppack version check reports if update is available
  • apppack version update downloads and installs latest release
  • apppack version update --force updates even if current
  • Homebrew installs show appropriate message instead of updating

@SmileyChris
Add version check and update subcommands for CLI self-update
6cc77fd 
Adds `apppack version check` to check for available updates and
`apppack version update` to download and install the latest release
from GitHub.

Features:
- Cross-platform support (Linux, macOS Intel/ARM, Windows)
- SHA256 checksum verification before binary replacement
- Blocks Homebrew installs with helpful upgrade message
- Safe binary replacement with atomic rename and fallbacks
- --force flag to update even when already on latest version
@SmileyChris
Fix potential DoS via decompression bomb in archive extraction
d0179da 
Use io.CopyN with a 100MB limit instead of io.Copy when extracting
binaries from archives to prevent decompression bomb attacks.

Addresses GO-S2110 (CWE-409)
@SmileyChris
docs: add version check/update commands to changelog
3b0f959
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@SmileyChris