Upgrade RSS plugin and object transform (#7)

* wip

* update telegram to escape characters

* update transform to transformer type

* fix plugin type map

* near-rewards

* Adds near social plugin (#6)

* init plugin

* fixed frontend

* working plugin

* fix test

* fmt

* fmt

* fix tests

* wip

* simpler plugin

* wip

* clean-up

* move rss-service

* example

* updates and adds docker support

* upgrade object-transform

* fmt

* bun lock

* clean up rss according to comments

* nit picks

* nit pick

* add template syncing

* update readme

* use actions/checkout@v4

Author: elliotBraem

.github/workflows/README.md

@@ -0,0 +1,152 @@
+# 🔄 Service Sync Workflows
+
+> Automate syncing service directories to deployment repositories
+
+## 📋 Overview
+
+This repository contains a reusable GitHub Actions workflow for syncing service directories to deployment repositories. The workflow is designed to be flexible and can be used with any service directory and target repository.
+
+## 🚀 Getting Started
+
+### Reusable Workflow Template
+
+The `sync-service-template.yml` workflow handles:
+
+- ✅ Validating source directory exists
+- 🔄 Cloning target repository
+- 🌱 Creating target branch if needed
+- 📂 Syncing directory contents
+- 🚢 Committing and pushing changes
+
+### Usage
+
+Create a new workflow file for your service (e.g. `sync-your-service.yml`):
+
+```yaml
+name: Sync Your Service
+on:
+  push:
+    paths:
+      - 'path/to/your/service/**'
+    branches:
+      - main
+
+jobs:
+  sync-service:
+    uses: ./.github/workflows/sync-service-template.yml
+    with:
+      source_path: path/to/your/service
+      target_repo: org/deployment-repo-name
+      target_branch: main  # optional, defaults to main
+    secrets:
+      deploy_token: ${{ secrets.YOUR_DEPLOY_TOKEN }}
+```
+
+## 🔑 Setting Up Deploy Keys
+
+For each target repository, set up a deploy key for secure repository access. Deploy keys are SSH keys that grant access to a single repository. See the [GitHub documentation on deploy keys](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/managing-deploy-keys#deploy-keys) for more information.
+
+### 1. Generate an SSH Key Pair
+
+Generate a new SSH key pair specifically for this deployment:
+
+```bash
+ssh-keygen -t ed25519 -C "your_email@example.com" -f deploy_key_filename
+```
+
+This creates:
+
+- `deploy_key_filename` (private key)
+- `deploy_key_filename.pub` (public key)
+
+When prompted for a passphrase, press Enter to create a key without a passphrase (since it will be used in automated workflows).
+
+To display the public key so you can copy it:
+
+```bash
+# On macOS/Linux
+cat deploy_key_filename.pub
+
+# On Windows (PowerShell)
+Get-Content deploy_key_filename.pub
+```
+
+For more detailed instructions on generating SSH keys, see [GitHub's documentation on generating a new SSH key](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent#generating-a-new-ssh-key).
+
+> **Security Note**: Always create a unique key for each repository. Never reuse SSH keys across different repositories or purposes.
+
+### 2. Add the Public Key to the Target Repository
+
+- Go to the target repository on GitHub
+- Navigate to Settings > Deploy keys
+- Click "Add deploy key"
+- Title: Give it a descriptive name (e.g. "Service Sync Deploy Key")
+- Key: Paste the contents of `deploy_key_filename.pub`
+- ✅ Check "Allow write access" if the workflow needs to push changes
+- Click "Add key"
+
+### 3. Add the Private Key as a Repository Secret
+
+- Go to your source repository's Settings > Secrets and variables > Actions
+- Click "New repository secret"
+- Name: Use a descriptive name (e.g. `RSS_DEPLOY_TOKEN`)
+- Value: Paste the contents of the `deploy_key_filename` file
+- Click "Add secret"
+
+### 4. Use the Deploy Key in Your Workflow
+
+The workflow template in this repository is already configured to use SSH deploy keys. The `sync-service-template.yml` workflow:
+
+1. Uses the [webfactory/ssh-agent](https://github.com/webfactory/ssh-agent) action to securely install the SSH key
+2. Automatically handles SSH authentication for git operations
+3. Uses SSH for git clone and push operations
+
+No additional modifications are needed to use deploy keys with this workflow.
+
+## 📊 Example: RSS Service
+
+The RSS service workflow (`sync-rss-service.yml`) demonstrates how to use the template:
+
+```yaml
+name: Sync RSS Service
+on:
+  push:
+    paths:
+      - 'packages/rss/service/**'
+    branches:
+      - main
+
+jobs:
+  sync-rss:
+    uses: ./.github/workflows/sync-service-template.yml
+    with:
+      source_path: packages/rss/service
+      target_repo: curatedotfun/rss-service-template
+      target_branch: main
+    secrets:
+      deploy_token: ${{ secrets.RSS_DEPLOY_TOKEN }}
+```
+
+## 🔒 Security Best Practices
+
+1. **Repository-Specific Keys**: Use a unique deploy key for each target repository.
+
+2. **Minimal Permissions**: Configure deploy keys with read-only access when possible.
+
+3. **Key Rotation**: Regularly rotate your deploy keys for better security.
+
+4. **Branch Protection**: Enable branch protection rules on target repositories to ensure changes follow your workflow.
+
+## ❓ Troubleshooting
+
+If the workflow fails, check:
+
+1. **Source Path**: Ensure the source directory exists and contains the files you want to sync.
+
+2. **Deploy Key**: Verify the key has the correct permissions and is properly configured.
+
+3. **Target Repository**: Confirm the repository exists and is accessible with the provided key.
+
+4. **SSH Configuration**: Check if the SSH configuration in the workflow is correct.
+
+5. **Branch Access**: Verify there are no branch protection rules preventing pushes.

.github/workflows/near-rewards.yml

@@ -14,10 +14,10 @@ jobs:
       issues: read
       pull-requests: read
     steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-node@v3
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v4
         with:
-          node-version: '18'
+          node-version: '20'
 
       - name: Calculate Rewards
         env:

.github/workflows/publish.yml

@@ -9,12 +9,12 @@ jobs:
   release:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: oven-sh/setup-bun@v1
       - run: bun install
       - run: bun run build
       - name: Setup Node.js
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4
         with:
           node-version: "lts/*"
           registry-url: 'https://registry.npmjs.org'

.github/workflows/rss-service-template.yml

@@ -0,0 +1,30 @@
+name: Sync Service Directory
+on:
+  push:
+    paths:
+      - 'packages/rss/service/**'
+    branches:
+      - main
+
+jobs:
+  sync:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Sync Service Directory
+        run: |
+          git config --global user.name "GitHub Action"
+          git config --global user.email "action@github.com"
+          
+          # Clone the deployment repo
+          git clone https://x-access-token:${{ secrets.DEPLOY_TOKEN }}@github.com/yourusername/rss-service-deploy.git
+          
+          # Copy service directory contents
+          rm -rf rss-service-deploy/*
+          cp -r packages/rss/service/* rss-service-deploy/
+          
+          # Commit and push changes
+          cd rss-service-deploy
+          git add .
+          git commit -m "Sync from main repo" || echo "No changes to commit"
+          git push

.github/workflows/sync-rss-service.yml

@@ -0,0 +1,17 @@
+name: Sync RSS Service
+on:
+  push:
+    paths:
+      - 'packages/rss/service/**'
+    branches:
+      - main
+
+jobs:
+  sync-rss:
+    uses: ./.github/workflows/sync-service-template.yml
+    with:
+      source_path: packages/rss/service
+      target_repo: curatedotfun/rss-service-template
+      target_branch: main
+    secrets:
+      deploy_token: ${{ secrets.RSS_DEPLOY_TOKEN }}

.github/workflows/sync-service-template.yml

@@ -0,0 +1,83 @@
+name: Sync Service Directory
+on:
+  workflow_call:
+    inputs:
+      source_path:
+        description: 'Path to the source directory to sync'
+        required: true
+        type: string
+      target_repo:
+        description: 'Name of the target repository (e.g. org/repo)'
+        required: true
+        type: string
+      target_branch:
+        description: 'Branch to push to in the target repository'
+        required: false
+        type: string
+        default: 'main'
+    secrets:
+      deploy_token:
+        description: 'SSH deploy key for target repository'
+        required: true
+
+jobs:
+  sync:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Validate inputs
+        run: |
+          if [ ! -d "${{ inputs.source_path }}" ]; then
+            echo "❌ Source path ${{ inputs.source_path }} does not exist"
+            exit 1
+          fi
+          echo "✅ Source path validated"
+
+      - name: Configure Git
+        run: |
+          git config --global user.name "GitHub Action"
+          git config --global user.email "action@github.com"
+          echo "✅ Git configured"
+
+      - name: Install SSH key
+        uses: webfactory/ssh-agent@v0.8.0
+        with:
+          ssh-private-key: ${{ secrets.deploy_token }}
+
+      - name: Clone target repository
+        run: |
+          # Clone the deployment repo using SSH with the installed key
+          git clone git@github.com:${{ inputs.target_repo }}.git target_repo
+          echo "✅ Repository cloned"
+          
+          # Ensure target branch exists
+          cd target_repo
+          if ! git ls-remote --heads origin ${{ inputs.target_branch }} | grep ${{ inputs.target_branch }} > /dev/null; then
+            echo "🌱 Creating target branch ${{ inputs.target_branch }}"
+            git checkout --orphan ${{ inputs.target_branch }}
+            git rm -rf .
+            git commit --allow-empty -m "Initialize branch"
+            git push origin ${{ inputs.target_branch }}
+          fi
+          git checkout ${{ inputs.target_branch }}
+          echo "✅ Branch checked out"
+          cd ..
+
+      - name: Sync directory contents
+        run: |
+          echo "🔄 Syncing directory contents"
+          
+          # Remove existing contents but preserve .git
+          rm -rf target_repo/*
+          
+          # Copy new contents
+          cp -r ${{ inputs.source_path }}/* target_repo/
+          
+          # Commit and push changes
+          cd target_repo
+          git add .
+          git commit -m "Sync from main repo" || echo "No changes to commit"
+          git push origin ${{ inputs.target_branch }}

apps/example/.env.example

@@ -0,0 +1,17 @@
+# Environment
+NODE_ENV=development
+
+# @curatedotfun/telegram
+TELEGRAM_BOT_TOKEN=your:telegram-bot-token
+
+# @curatedotfun/ai-transform
+OPENROUTER_API_KEY=sk-or-v1-your-open-router-key
+
+# @curatedotfun/notion
+NOTION_TOKEN=ntn_your-notion-key
+
+# @curatedotfun/near-social
+NEAR_PRIVATE_KEY=ed25519:your-private-key
+
+# @curatedotfun/rss
+API_SECRET=dev-secret

apps/example/src/frontend/frontend.js

@@ -111,7 +111,8 @@ const PLUGIN_DEFAULTS = {
     channelId: "@your_channel",
   },
   "@curatedotfun/rss": {
-    url: "https://example.com/feed.xml",
+    serviceUrl: "http://localhost:4001",
+    apiSecret: "{API_SECRET}",
   },
   "@curatedotfun/supabase": {
     url: "{SUPABASE_URL}",
@@ -130,11 +131,33 @@ const DEFAULT_CONFIG = {
   transform: [
     {
       plugin: "@curatedotfun/ai-transform",
-      config: PLUGIN_DEFAULTS["@curatedotfun/ai-transform"],
+      config: {
+        prompt:
+          "Transform this into an engaging news article with a title and content.",
+        apiKey: "{OPENROUTER_API_KEY}",
+        schema: {
+          title: {
+            type: "string",
+            description: "Engaging title for the article",
+          },
+          content: {
+            type: "string",
+            description: "Article content in HTML format",
+          },
+        },
+      },
     },
     {
       plugin: "@curatedotfun/object-transform",
-      config: PLUGIN_DEFAULTS["@curatedotfun/object-transform"],
+      config: {
+        mappings: {
+          title: "{{title}}",
+          content: "{{content}}",
+          link: "https://example.com/posts/{{id}}",
+          publishedAt: "{{timestamp}}",
+          guid: "post-{{id}}",
+        },
+      },
     },
     {
       plugin: "@curatedotfun/simple-transform",
@@ -150,6 +173,10 @@ const DEFAULT_CONFIG = {
       plugin: "@curatedotfun/near-social",
       config: PLUGIN_DEFAULTS["@curatedotfun/near-social"],
     },
+    {
+      plugin: "@curatedotfun/rss",
+      config: PLUGIN_DEFAULTS["@curatedotfun/rss"],
+    },
   ],
 };
 

bun.lockb

@@ -130,7 +130,6 @@ export default class AITransformer<T = string>
       const result = (await response.json()) as OpenRouterResponse;
 
       if (!result.choices?.[0]?.message?.content) {
-        console.log("result", result);
         throw new Error("Invalid response structure from OpenRouter API");
       }