feat: add VirtualBuddy TSS signing status verification (#1)

Integrates tss.virtualbuddy.app to verify real-time signing status of macOS restore images. VirtualBuddy signing status is treated as authoritative (same priority as MESU) and enriches existing images with TSS verification results.

- Add BushelVirtualBuddy dependency from BushelKit
- Implement VirtualBuddyFetcher with enrichment pattern
- Update merge logic to treat VirtualBuddy as authoritative source
- Add VIRTUALBUDDY_API_KEY environment variable support
- Graceful degradation when API key unavailable

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

Author: leogdion

Package.swift

@@ -105,6 +105,7 @@ let package = Package(
                 .product(name: "BushelLogging", package: "BushelKit"),
                 .product(name: "BushelFoundation", package: "BushelKit"),
                 .product(name: "BushelUtilities", package: "BushelKit"),
+                .product(name: "BushelVirtualBuddy", package: "BushelKit"),
                 .product(name: "IPSWDownloads", package: "IPSWDownloads"),
                 .product(name: "SwiftSoup", package: "SwiftSoup")
             ],

Sources/BushelCloudKit/DataSources/DataSourcePipeline.swift

@@ -42,6 +42,7 @@ public struct DataSourcePipeline: Sendable {
     public var includeBetaReleases: Bool = true
     public var includeAppleDB: Bool = true
     public var includeTheAppleWiki: Bool = true
+    public var includeVirtualBuddy: Bool = true
     public var force: Bool = false
     public var specificSource: String?
 
@@ -52,6 +53,7 @@ public struct DataSourcePipeline: Sendable {
       includeBetaReleases: Bool = true,
       includeAppleDB: Bool = true,
       includeTheAppleWiki: Bool = true,
+      includeVirtualBuddy: Bool = true,
       force: Bool = false,
       specificSource: String? = nil
     ) {
@@ -61,6 +63,7 @@ public struct DataSourcePipeline: Sendable {
       self.includeBetaReleases = includeBetaReleases
       self.includeAppleDB = includeAppleDB
       self.includeTheAppleWiki = includeTheAppleWiki
+      self.includeVirtualBuddy = includeVirtualBuddy
       self.force = force
       self.specificSource = specificSource
     }
@@ -306,6 +309,20 @@ public struct DataSourcePipeline: Sendable {
       }
     }
 
+    // Enrich with VirtualBuddy TSS signing status
+    if options.includeVirtualBuddy, let fetcher = VirtualBuddyFetcher() {
+      do {
+        let enrichedImages = try await fetcher.fetch(existingImages: allImages)
+        allImages = enrichedImages
+        print("   ✓ VirtualBuddy: Enriched \(allImages.count) images with signing status")
+      } catch {
+        print("   ⚠️  VirtualBuddy failed: \(error)")
+        // Don't throw - continue with original data
+      }
+    } else if options.includeVirtualBuddy {
+      print("   ⚠️  VirtualBuddy: No API key found (set VIRTUALBUDDY_API_KEY)")
+    }
+
     // Deduplicate by build number (keep first occurrence)
     let preDedupeCount = allImages.count
     let deduped = deduplicateRestoreImages(allImages)
@@ -397,14 +414,17 @@ public struct DataSourcePipeline: Sendable {
     }
 
     // Merge isSigned with priority rules:
-    // 1. MESU is always authoritative (Apple's real-time signing status)
-    // 2. For non-MESU sources, prefer the most recently updated
+    // 1. MESU or VirtualBuddy are always authoritative (Apple's real-time signing status)
+    // 2. For other sources, prefer the most recently updated
     // 3. If both have same update time (or both nil) and disagree, prefer false
 
-    if first.source == "mesu.apple.com" && first.isSigned != nil {
-      merged.isSigned = first.isSigned  // MESU first is authoritative
-    } else if second.source == "mesu.apple.com" && second.isSigned != nil {
-      merged.isSigned = second.isSigned  // MESU second is authoritative
+    // Define authoritative sources for signing status
+    let authoritativeSources: Set<String> = ["mesu.apple.com", "tss.virtualbuddy.app"]
+
+    if authoritativeSources.contains(first.source) && first.isSigned != nil {
+      merged.isSigned = first.isSigned  // First is authoritative (MESU or VirtualBuddy)
+    } else if authoritativeSources.contains(second.source) && second.isSigned != nil {
+      merged.isSigned = second.isSigned  // Second is authoritative (MESU or VirtualBuddy)
     } else {
       // Neither is MESU, compare update timestamps
       let firstUpdated = first.sourceUpdatedAt

Sources/BushelCloudKit/DataSources/VirtualBuddyFetcher.swift

@@ -0,0 +1,164 @@
+//
+//  VirtualBuddyFetcher.swift
+//  BushelCloud
+//
+//  Created by Leo Dion.
+//  Copyright © 2025 BrightDigit.
+//
+//  Permission is hereby granted, free of charge, to any person
+//  obtaining a copy of this software and associated documentation
+//  files (the "Software"), to deal in the Software without
+//  restriction, including without limitation the rights to use,
+//  copy, modify, merge, publish, distribute, sublicense, and/or
+//  sell copies of the Software, and to permit persons to whom the
+//  Software is furnished to do so, subject to the following
+//  conditions:
+//
+//  The above copyright notice and this permission notice shall be
+//  included in all copies or substantial portions of the Software.
+//
+//  THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+//  EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
+//  OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+//  NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
+//  HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
+//  WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+//  FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
+//  OTHER DEALINGS IN THE SOFTWARE.
+//
+
+import BushelFoundation
+import BushelUtilities
+import BushelVirtualBuddy
+import Foundation
+import OSVer
+
+#if canImport(FoundationNetworking)
+  import FoundationNetworking
+#endif
+
+/// Fetcher for enriching restore images with VirtualBuddy TSS signing status
+struct VirtualBuddyFetcher: DataSourceFetcher, Sendable {
+  typealias Record = [RestoreImageRecord]
+
+  private let apiKey: String
+  private let decoder: JSONDecoder
+  private let urlSession: URLSession
+
+  /// Failable initializer that reads API key from environment variable
+  init?() {
+    guard let key = ProcessInfo.processInfo.environment["VIRTUALBUDDY_API_KEY"], !key.isEmpty else {
+      return nil
+    }
+    self.apiKey = key
+    self.decoder = JSONDecoder()
+    #if canImport(FoundationNetworking)
+      self.urlSession = FoundationNetworking.URLSession.shared
+    #else
+      self.urlSession = URLSession.shared
+    #endif
+  }
+
+  /// Explicit initializer with API key
+  init(apiKey: String, decoder: JSONDecoder = JSONDecoder(), urlSession: URLSession = .shared) {
+    self.apiKey = apiKey
+    self.decoder = decoder
+    #if canImport(FoundationNetworking)
+      self.urlSession = FoundationNetworking.URLSession.shared
+    #else
+      self.urlSession = urlSession
+    #endif
+  }
+
+  /// DataSourceFetcher protocol requirement - returns empty for enrichment fetchers
+  func fetch() async throws -> [RestoreImageRecord] {
+    return []
+  }
+
+  /// Enrich existing restore images with VirtualBuddy TSS signing status
+  func fetch(existingImages: [RestoreImageRecord]) async throws -> [RestoreImageRecord] {
+    var enrichedImages: [RestoreImageRecord] = []
+
+    for image in existingImages {
+      // Skip file URLs (VirtualBuddy API doesn't support them)
+      guard image.downloadURL.scheme != "file" else {
+        enrichedImages.append(image)
+        continue
+      }
+
+      do {
+        let response = try await checkSigningStatus(for: image.downloadURL)
+
+        // Validate build number matches
+        guard response.build == image.buildNumber else {
+          print(
+            "   ⚠️  VirtualBuddy build mismatch: expected \(image.buildNumber), got \(response.build)"
+          )
+          enrichedImages.append(image)
+          continue
+        }
+
+        // Create enriched record with VirtualBuddy data
+        var enriched = image
+        enriched.isSigned = response.isSigned
+        enriched.source = "tss.virtualbuddy.app"
+        enriched.sourceUpdatedAt = Date()  // Real-time TSS check
+        enriched.notes = response.message  // TSS status message
+
+        enrichedImages.append(enriched)
+      } catch {
+        print("   ⚠️  VirtualBuddy error for \(image.buildNumber): \(error)")
+        enrichedImages.append(image)  // Keep original on error
+      }
+    }
+
+    return enrichedImages
+  }
+
+  /// Check signing status for an IPSW URL using VirtualBuddy TSS API
+  private func checkSigningStatus(for ipswURL: URL) async throws -> VirtualBuddySig {
+    // Build endpoint URL with API key and IPSW URL
+    var components = URLComponents(string: "https://tss.virtualbuddy.app/v1/status")!
+    components.queryItems = [
+      URLQueryItem(name: "apiKey", value: apiKey),
+      URLQueryItem(name: "ipsw", value: ipswURL.absoluteString)
+    ]
+
+    guard let endpointURL = components.url else {
+      throw VirtualBuddyFetcherError.invalidURL
+    }
+
+    // Fetch data from API
+    let data: Data
+    let response: URLResponse
+    do {
+      #if canImport(FoundationNetworking)
+        (data, response) = try await urlSession.data(from: endpointURL)
+      #else
+        (data, response) = try await urlSession.data(from: endpointURL)
+      #endif
+    } catch {
+      throw VirtualBuddyFetcherError.networkError(error)
+    }
+
+    // Check HTTP status
+    if let httpResponse = response as? HTTPURLResponse, httpResponse.statusCode != 200 {
+      throw VirtualBuddyFetcherError.httpError(httpResponse.statusCode)
+    }
+
+    // Decode response
+    do {
+      return try decoder.decode(VirtualBuddySig.self, from: data)
+    } catch {
+      throw VirtualBuddyFetcherError.decodingError(error)
+    }
+  }
+}
+
+/// Errors that can occur during VirtualBuddy fetching
+enum VirtualBuddyFetcherError: Error {
+  case invalidURL
+  case networkError(Error)
+  case httpError(Int)
+  case decodingError(Error)
+}