README
¶
ghreleases
A zero-dependency Go package for fetching and extracting GitHub release assets.
Features
- GitHub API Integration - Fetch latest releases and assets
- Template Rendering - Dynamic asset name generation with variables and modifiers
- Checksum Validation - Parse and verify SHA-256 checksums
- Archive Extraction - Extract from .tar.gz, .tgz, .zip, and .gz archives
- Streaming Downloads - Efficient downloads with built-in hash computation
- Zero Dependencies - Standard library only for maximum portability
Installation
go get github.com/mallardduck/ghreleases
Quick Start
package main
import (
"context"
"fmt"
"os"
"github.com/mallardduck/ghreleases"
)
func main() {
// Create client (uses GITHUB_TOKEN env var if available)
client := ghrelease.NewClient("")
// Get latest release
tag, _ := client.LatestRelease(context.Background(), "owner", "repo")
fmt.Println("Latest release:", tag)
// Get release details
release, _ := client.GetRelease(context.Background(), "owner", "repo", tag)
for _, asset := range release.Assets {
fmt.Println("Asset:", asset.Name)
}
}
Core Concepts
The package provides composable primitives that work independently or together:
- Client - GitHub API interactions (releases, assets, checksums)
- Template - Dynamic string rendering with variables and modifiers
- Checksum - Parse and validate SHA-256 checksums
- Archive - Extract files from archives
- Download - Streaming downloads with hash computation
API Reference
Client
Creating Clients
// Use GITHUB_TOKEN environment variable
client := ghrelease.NewClient("")
// Use explicit token
client := ghrelease.NewClient("ghp_yourtoken")
// Custom HTTP client (for proxies, timeouts, etc.)
httpClient := &http.Client{Timeout: 60 * time.Second}
client := ghrelease.NewClientWithHTTP(httpClient, "")
Fetching Releases
ctx := context.Background()
// Get latest release tag
tag, err := client.LatestRelease(ctx, "owner", "repo")
// Get specific release with assets
release, err := client.GetRelease(ctx, "owner", "repo", "v1.0.0")
for _, asset := range release.Assets {
fmt.Printf("%s - %d bytes\n", asset.Name, asset.Size)
}
Fetching Checksums
// Download and parse checksums file
checksums, err := client.FetchChecksums(ctx, checksumURL)
expectedHash := checksums["myapp-linux-amd64"]
Template Rendering
Dynamically generate asset names using variables and modifiers.
Variables
{name}- Binary/application name{version}- Release version/tag{os}- Operating system (linux, darwin, windows){arch}- Architecture (amd64, arm64, etc){ext}- File extension (tar.gz, zip, etc)
Modifiers
Modifiers are applied with pipe separators and chained left-to-right:
upper- Convert to uppercaselower- Convert to lowercasetitle- Capitalize first lettertrimprefix:PREFIX- Remove prefixtrimsuffix:SUFFIX- Remove suffixreplace:FROM=TO- Replace exact value (not substring)
Examples
vars := ghrelease.TemplateVars{
Name: "myapp",
Version: "v1.0.0",
OS: "linux",
Arch: "amd64",
Ext: "tar.gz",
}
// Basic template
name, _ := ghrelease.Render(
"{name}_{version}_{os}_{arch}.{ext}",
vars,
ghrelease.TemplatePermissive,
)
// Result: myapp_v1.0.0_linux_amd64.tar.gz
// With modifiers
name, _ := ghrelease.Render(
"{name|upper}-{version|trimprefix:v}.tar.gz",
vars,
ghrelease.TemplatePermissive,
)
// Result: MYAPP-1.0.0.tar.gz
// Replace OS name (exact match)
name, _ := ghrelease.Render(
"{name}-{os|replace:darwin=macos}-{arch}",
TemplateVars{Name: "myapp", OS: "darwin", Arch: "amd64"},
ghrelease.TemplatePermissive,
)
// Result: myapp-macos-amd64
// Chained modifiers
name, _ := ghrelease.Render(
"{os|replace:darwin=macos|upper}",
TemplateVars{OS: "darwin"},
ghrelease.TemplatePermissive,
)
// Result: MACOS
Template Modes
- TemplatePermissive - Unknown variables/modifiers pass through unchanged (for flexible matching)
- TemplateStrict - Unknown variables/modifiers return error (for validation)
Downloading
Download assets with automatic hash computation and validation.
// Download to writer
var buf bytes.Buffer
result, err := client.Download(assetURL, &buf, ghrelease.DownloadOptions{})
fmt.Println("SHA-256:", result.Hash)
fmt.Println("Size:", result.Size)
// Download with checksum validation
result, err := client.Download(assetURL, &buf, ghrelease.DownloadOptions{
ExpectedHash: "abc123...", // SHA-256 hex
})
// Returns ErrChecksumMismatch if hash doesn't match
// Download to byte slice (convenience wrapper)
data, result, err := client.DownloadToBytes(assetURL, ghrelease.DownloadOptions{})
// With context for cancellation
ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)
defer cancel()
result, err := client.Download(assetURL, &buf, ghrelease.DownloadOptions{
Context: ctx,
})
Archive Extraction
Extract files from various archive formats.
// Auto-detect format from filename
binary, err := ghrelease.Extract(archiveData, "myapp.tar.gz", ghrelease.ExtractOptions{})
// Extract specific file from multi-file archive
binary, err := ghrelease.Extract(archiveData, "release.tar.gz", ghrelease.ExtractOptions{
ExtractPath: "bin/myapp", // Full path or just basename
})
// Override format detection
binary, err := ghrelease.Extract(data, "archive", ghrelease.ExtractOptions{
Format: ghrelease.FormatTarGz,
})
Supported Formats
.tar.gz/.tgz- Gzip-compressed tar archive.zip- ZIP archive.gz- Gzip-compressed file- Plain files (no extraction)
Extraction Behavior
- Single file archive + no ExtractPath: Automatically extracts the file
- Multiple files + no ExtractPath: Returns
ErrMultipleFiles - ExtractPath specified: Extracts specific file (matches full path or basename)
- Directories: Automatically skipped
Checksum Validation
Parse and validate GNU coreutils style checksum files.
// Parse checksum file
file, _ := os.Open("checksums.txt")
checksums, err := ghrelease.ParseChecksumFile(file)
hash := checksums["myapp-linux-amd64"]
// Validate hash (case-insensitive)
err := ghrelease.ValidateHash(computedHash, expectedHash)
if errors.Is(err, ghrelease.ErrChecksumMismatch) {
// Handle mismatch
}
Checksum File Format
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 file1.txt
abc0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 file2.txt
# Comments and blank lines are ignored
def0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 file3.txt
Source Parsing
Parse GitHub repository identifiers.
owner, repo, err := ghrelease.ParseSource("owner/repo")
owner, repo, err := ghrelease.ParseSource("https://github.com/owner/repo")
owner, repo, err := ghrelease.ParseSource("https://github.com/owner/repo.git")
owner, repo, err := ghrelease.ParseSource("git@github.com:owner/repo.git")
Complete Examples
Download Latest Release Binary
package main
import (
"context"
"fmt"
"os"
"runtime"
"github.com/mallardduck/ghreleases"
)
func main() {
client := ghrelease.NewClient("")
ctx := context.Background()
// Get latest release
tag, err := client.LatestRelease(ctx, "owner", "repo")
if err != nil {
panic(err)
}
release, err := client.GetRelease(ctx, "owner", "repo", tag)
if err != nil {
panic(err)
}
// Generate asset name for current platform
vars := ghrelease.TemplateVars{
Name: "myapp",
Version: tag,
OS: runtime.GOOS,
Arch: runtime.GOARCH,
Ext: "tar.gz",
}
assetName, err := ghrelease.Render(
"{name}_{version}_{os}_{arch}.{ext}",
vars,
ghrelease.TemplatePermissive,
)
if err != nil {
panic(err)
}
// Find matching asset
var assetURL string
for _, asset := range release.Assets {
if asset.Name == assetName {
assetURL = asset.URL
break
}
}
if assetURL == "" {
panic("asset not found")
}
// Download and extract
data, result, err := client.DownloadToBytes(assetURL, ghrelease.DownloadOptions{})
if err != nil {
panic(err)
}
fmt.Println("Downloaded:", result.Size, "bytes")
fmt.Println("SHA-256:", result.Hash)
binary, err := ghrelease.Extract(data, assetName, ghrelease.ExtractOptions{
ExtractPath: "myapp",
})
if err != nil {
panic(err)
}
// Write binary to disk
os.WriteFile("myapp", binary, 0755)
fmt.Println("Binary extracted successfully")
}
Download with Checksum Verification
package main
import (
"context"
"os"
"github.com/mallardduck/ghreleases"
)
func main() {
client := ghrelease.NewClient("")
ctx := context.Background()
// Fetch checksums file
checksumURL := "https://github.com/owner/repo/releases/download/v1.0.0/checksums.txt"
checksums, err := client.FetchChecksums(ctx, checksumURL)
if err != nil {
panic(err)
}
// Get expected hash for our asset
assetName := "myapp-linux-amd64.tar.gz"
expectedHash := checksums[assetName]
// Download with verification
assetURL := "https://github.com/owner/repo/releases/download/v1.0.0/" + assetName
data, result, err := client.DownloadToBytes(assetURL, ghrelease.DownloadOptions{
ExpectedHash: expectedHash,
})
if err != nil {
panic(err) // Will error if checksum mismatch
}
// Extract
binary, err := ghrelease.Extract(data, assetName, ghrelease.ExtractOptions{})
if err != nil {
panic(err)
}
os.WriteFile("myapp", binary, 0755)
}
Error Handling
The package provides sentinel errors for common cases. Use errors.Is() for checking:
import "errors"
_, err := ghrelease.ParseSource("invalid")
if errors.Is(err, ghrelease.ErrInvalidSource) {
// Handle invalid source format
}
_, err = client.LatestRelease(ctx, "owner", "nonexistent")
if errors.Is(err, ghrelease.ErrReleaseNotFound) {
// Handle release not found
}
_, err = ghrelease.Extract(data, "multi-file.tar.gz", ghrelease.ExtractOptions{})
if errors.Is(err, ghrelease.ErrMultipleFiles) {
// Specify ExtractPath
}
err = ghrelease.ValidateHash(computed, expected)
if errors.Is(err, ghrelease.ErrChecksumMismatch) {
// Handle checksum failure
}
Available Errors
ErrInvalidSource- Invalid GitHub source formatErrReleaseNotFound- Release not foundErrAssetNotFound- Asset not foundErrChecksumMismatch- Checksum verification failedErrUnknownVariable- Unknown template variable (strict mode)ErrUnknownModifier- Unknown template modifier (strict mode)ErrInvalidModifier- Invalid modifier syntaxErrMultipleFiles- Archive has multiple files, ExtractPath requiredErrFileNotFound- File not found in archiveErrUnsupportedFormat- Unsupported archive format
Testing
The package includes comprehensive tests using httptest for mocking GitHub API:
go test ./...
go test -cover ./...
License
MIT - See LICENSE file for details.
Contributing
This package is designed to be stable and dependency-free. Contributions should maintain:
- Zero external dependencies
- Standard library only
- Comprehensive test coverage
- Clear error messages
- Simple, focused APIs
Documentation
¶
Overview ¶
Package ghrelease provides primitives for fetching and extracting GitHub release assets.
Index ¶
- Variables
- func Extract(data []byte, filename string, opts ExtractOptions) ([]byte, error)
- func ParseChecksumFile(r io.Reader) (map[string]string, error)
- func ParseSource(source string) (owner, repo string, err error)
- func Render(pattern string, vars TemplateVars, mode TemplateMode) (string, error)
- func ValidateHash(computed, expected string) error
- func WithTagPrefix(ctx context.Context, prefix string) context.Context
- type ArchiveFormat
- type Asset
- type Client
- func (c *Client) Download(url string, w io.Writer, opts DownloadOptions) (*DownloadResult, error)
- func (c *Client) DownloadToBytes(url string, opts DownloadOptions) ([]byte, *DownloadResult, error)
- func (c *Client) FetchChecksums(ctx context.Context, url string) (map[string]string, error)
- func (c *Client) GetRelease(ctx context.Context, owner, repo, tag string) (*Release, error)
- func (c *Client) LatestRelease(ctx context.Context, owner, repo string) (string, error)
- type DownloadOptions
- type DownloadResult
- type ExtractOptions
- type Release
- type ReleaseFilter
- type TemplateMode
- type TemplateVars
Constants ¶
This section is empty.
Variables ¶
var ( ErrInvalidSource = errors.New("invalid GitHub source format") ErrReleaseNotFound = errors.New("release not found") ErrAssetNotFound = errors.New("asset not found") ErrChecksumMismatch = errors.New("checksum verification failed") ErrUnknownVariable = errors.New("unknown template variable") ErrUnknownModifier = errors.New("unknown template modifier") ErrInvalidModifier = errors.New("invalid modifier syntax") ErrMultipleFiles = errors.New("archive contains multiple files, ExtractPath required") ErrFileNotFound = errors.New("file not found in archive") ErrUnsupportedFormat = errors.New("unsupported archive format") )
Package errors
Functions ¶
func Extract ¶
func Extract(data []byte, filename string, opts ExtractOptions) ([]byte, error)
Extract extracts content from an archive. Auto-detects format from filename unless opts.Format specified. If opts.ExtractPath set, extracts specific file. If archive contains single file and no ExtractPath, auto-extracts it.
func ParseChecksumFile ¶
ParseChecksumFile parses GNU coreutils style checksum files. Format: <hash> <filename> Supports both single and double space separators. Ignores blank lines and comments (lines starting with #).
func ParseSource ¶
ParseSource extracts owner and repo from various GitHub identifiers. Supports:
- owner/repo
- https://github.com/owner/repo
- https://github.com/owner/repo.git
- git@github.com:owner/repo.git
func Render ¶
func Render(pattern string, vars TemplateVars, mode TemplateMode) (string, error)
Render applies template variables to a pattern string. Supports variables: {name}, {version}, {os}, {arch}, {ext} Supports modifiers: upper, lower, title, trimprefix:PREFIX, trimsuffix:SUFFIX, replace:FROM=TO
Modifiers are chained with pipe separators and applied left-to-right:
{variable|modifier1|modifier2}
Examples:
{name}_{version}_{os}_{arch}.{ext}
{name|upper}-{version}.tar.gz
{os|replace:darwin=macos}-binary
{version|trimprefix:v}
Mode behavior:
- TemplateStrict: returns error on unknown variables/modifiers
- TemplatePermissive: preserves token unchanged (e.g., {os|bogusmod})
- TemplateFailsafe: ignores unknown modifiers, substitutes variable value (e.g., linux)
func ValidateHash ¶
ValidateHash compares a computed hash against an expected hash. Both hashes are normalized to lowercase for comparison.
func WithTagPrefix ¶ added in v0.4.0
WithTagPrefix returns a context that instructs LatestRelease to scan all releases and return the most recently published one whose tag starts with prefix. When prefix is non-empty, LatestRelease uses the paginated /releases endpoint instead of /releases/latest, because GitHub's /releases/latest does not support prefix filtering.
Example — find the latest CLI release in a multi-prefix repo:
ctx := ghrelease.WithTagPrefix(context.Background(), "cli/") tag, err := client.LatestRelease(ctx, "rancher", "ob-charts-tool")
Types ¶
type ArchiveFormat ¶
type ArchiveFormat string
ArchiveFormat represents supported archive types.
const ( FormatTarGz ArchiveFormat = "tar.gz" FormatTgz ArchiveFormat = "tgz" FormatZip ArchiveFormat = "zip" FormatGzip ArchiveFormat = "gz" FormatPlain ArchiveFormat = "plain" // no archive )
Archive format constants
type Client ¶
type Client struct {
// contains filtered or unexported fields
}
Client handles GitHub API interactions.
func NewClient ¶
NewClient creates a GitHub API client. Token is optional but recommended to avoid rate limits. If token is empty, tries GITHUB_TOKEN environment variable.
func NewClientWithHTTP ¶
NewClientWithHTTP creates a client with a custom HTTP client. Allows callers to configure timeouts, proxies, etc.
func (*Client) Download ¶
func (c *Client) Download(url string, w io.Writer, opts DownloadOptions) (*DownloadResult, error)
Download fetches an asset and writes it to w while computing SHA-256. Always computes hash (returned in result). If opts.ExpectedHash is set, validates before returning.
func (*Client) DownloadToBytes ¶
func (c *Client) DownloadToBytes(url string, opts DownloadOptions) ([]byte, *DownloadResult, error)
DownloadToBytes is a convenience wrapper that downloads to a byte slice.
func (*Client) FetchChecksums ¶
FetchChecksums downloads and parses a checksum file.
func (*Client) GetRelease ¶
GetRelease fetches a specific release by tag.
func (*Client) LatestRelease ¶
LatestRelease fetches the latest release tag for a repository.
By default it calls GitHub's /releases/latest endpoint, which returns the most recently published non-prerelease, non-draft release regardless of tag format. For repositories that maintain multiple release lines under distinct tag prefixes (e.g. "v*" for a library and "cli/v*" for a CLI), attach a ReleaseFilter to the context with WithTagPrefix so that only releases matching the desired prefix are considered.
type DownloadOptions ¶
type DownloadOptions struct {
// If set, validates downloaded content against this hash (SHA-256 hex, case-insensitive)
ExpectedHash string
// Context for cancellation (optional)
Context context.Context
}
DownloadOptions configures asset download behavior.
type DownloadResult ¶
type DownloadResult struct {
Hash string // Computed SHA-256 hex string
Size int64 // Bytes downloaded
}
DownloadResult contains the outcome of a download operation.
type ExtractOptions ¶
type ExtractOptions struct {
// Format override (auto-detect from filename if empty)
Format ArchiveFormat
// Specific file path within archive (empty = auto-select single file)
ExtractPath string
}
ExtractOptions configures archive extraction behavior.
type ReleaseFilter ¶ added in v0.4.0
type ReleaseFilter struct {
// TagPrefix restricts results to releases whose tag starts with this string.
// An empty prefix disables filtering and preserves the default behavior.
TagPrefix string
}
ReleaseFilter configures how LatestRelease selects a release in repositories that publish multiple release lines under different tag prefixes (e.g. "v*" for a library and "cli/v*" for a CLI tool, following Go multi-module conventions).
type TemplateMode ¶
type TemplateMode int
TemplateMode controls error handling for unknown variables.
const ( // TemplateStrict returns error on unknown variables/modifiers TemplateStrict TemplateMode = iota // TemplatePermissive passes through unknown vars/modifiers unchanged TemplatePermissive // TemplateFailsafe ignores unknown modifiers (returns unmodified value) // but preserves unknown variables as-is TemplateFailsafe )
type TemplateVars ¶
type TemplateVars struct {
Name string // Binary name
Version string // Release version/tag
OS string // Operating system (linux, darwin, windows)
Arch string // Architecture (amd64, arm64, etc)
Ext string // File extension (tar.gz, zip, etc)
}
TemplateVars holds variables for template rendering.
Source Files