Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/gavinuhma/checksum.sh

Verify every install script. Checksum.sh is a simple way to download, review, and verify install scripts.
https://github.com/gavinuhma/checksum.sh

bash checksum install security shell

Last synced: 22 days ago
JSON representation

Verify every install script. Checksum.sh is a simple way to download, review, and verify install scripts.

Host: GitHub
URL: https://github.com/gavinuhma/checksum.sh
Owner: gavinuhma
License: mit
Created: 2022-10-27T19:47:50.000Z (about 2 years ago)
Default Branch: main
Last Pushed: 2023-02-14T17:19:06.000Z (over 1 year ago)
Last Synced: 2024-10-03T12:35:07.055Z (about 1 month ago)
Topics: bash, checksum, install, security, shell
Language: Shell
Homepage: https://checksum.sh/
Size: 611 KB
Stars: 41
Watchers: 1
Forks: 2
Open Issues: 5
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # checksum.sh - Verify Every Install Script

![checksum.sh](./checksum.sh.png?raw=true "checksum.sh Logo")

[![GitHub top language](https://img.shields.io/github/languages/top/gavinuhma/checksum.sh)](https://github.com/gavinuhma/checksum.sh)

[![GitHub code size in bytes](https://img.shields.io/github/languages/code-size/gavinuhma/checksum.sh)](https://github.com/gavinuhma/checksum.sh)

[![GitHub license](https://img.shields.io/github/license/gavinuhma/checksum.sh)](https://github.com/gavinuhma/checksum.sh)

[![GitHub repo stars](https://img.shields.io/github/stars/gavinuhma/checksum.sh?style=social)](https://github.com/gavinuhma/checksum.sh)

Checksum.sh is a simple way to download, review, and verify install scripts. If the checksum is OK the script will be printed to stdout, which can be piped to `sh` or elsewhere. If the checksum doesn't match it produces an error and nothing is piped. [View the code on GitHub](https://github.com/gavinuhma/checksum.sh).

For example, to install Rust:

```bash

checksum https://sh.rustup.rs 8327fa6ce106d2a387fdd02cb95c3607193c2edb | sh

```

In contrast to Rust's usual installation which doesn't verify the checksum:

```bash

curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh

```

# Install

**Option 1: Define the checksum function directly**

Paste the following into your command line to define the `checksum` function.

```bash

function checksum() {

  local s

  s=$(curl -fsSL "$1")

  local h

  if command -v shasum >/dev/null ; then

    h=shasum

  else

    h=sha1sum

  fi

  if [ ! "$2" ] ; then

    printf %s\\n "$s" | "$h" | awk '{print $1}'

    return 1;

  fi

  printf %s\\n "$s" | "$h" --check --status <(printf '%s  -\n' "$2") || {

    echo "checksum failed" >&2;

    return 1;

  }

  printf %s\\n "$s"

}

```

**Option 2: Download the script**

Alternatively, you can download, review and verify the [checksum.sh script](https://github.com/gavinuhma/checksum.sh/blob/main/checksum.sh):

```bash

curl -O https://checksum.sh/checksum.sh

cat checksum.sh

echo "df260dd53581e6e30c0afbe32b80db6b0bec2d07  checksum.sh" | shasum -c

```

If everything is OK, you can source the script which will define the `checksum` function.

```bash

source checksum.sh

```

# Use

To download and verify a script pass the URL and the CHECKSUM:

`checksum  `

The script will be printed out by default so you can inspect it.

If you're happy with it, you can pipe the script to `sh` to execute it:

`checksum   | sh`

If you just want to calculate the checksum for a URL you can omit the CHECKSUM:

`checksum `

# Examples

_Note: If any of these install scripts have changed these commands will error because the checksum will be invalid._

### Install [Rust](https://www.rust-lang.org/tools/install)

```bash

checksum https://sh.rustup.rs 6282be0e90f8f9e041a4f714039e61bf8c03ad85 | sh

```

### Install [Cape](https://docs.capeprivacy.com/getting-started/)

```bash

checksum https://raw.githubusercontent.com/capeprivacy/cli/main/install.sh 2309498bc07fbca42d421f696a605da15d99d939 | sh

```

### Install [Nitrogen](https://github.com/capeprivacy/nitrogen)

```bash

checksum https://raw.githubusercontent.com/capeprivacy/nitrogen/main/install.sh f403add95bde19aeba87f8e63e67b09af671d804 | sh

```

### Install [Nix](https://nixos.org/download.html)

```bash

checksum https://nixos.org/nix/install 885201bc4da10dbd264778fbbdb4887e5304682a | sh

```

### Install [Deno](https://deno.land/manual/getting_started/installation)

```bash

checksum https://deno.land/install.sh 57a4d67e64d2a7204541b9e131cedb289a79e834 | sh

```

### Install [Bun](https://bun.sh)

```bash

checksum https://bun.sh/install 86c651cf7aac32cceb3688f0a4e026776c965b49 | bash

```

### Install [Haskell](https://www.haskell.org/ghcup)

```bash

checksum https://get-ghcup.haskell.org d1fe43ba1316fd89170c68d042dc2c6ac3979965 | sh

```

### Install [Homebrew](https://brew.sh/#install)

```bash

checksum https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh 112869ebf4129eba57cac6217d4cd1b21344f274 | bash

```

### Install [Just](https://github.com/casey/just#pre-built-binaries)

```bash

checksum https://just.systems/install.sh 1f253751970e65ea59fee43e0f740e84f8eb5d43 | bash -s -- --to DEST

```

# Contributors & Thanks

Checksum.sh is maintained by [@gavinuhma](https://github.com/gavinuhma).

Thank you to those who have contributued code and ideas through pull requests, issues, and comments!

- [@BendingBender](https://github.com/BendingBender)

- [@orblivion](https://github.com/orblivion)

- [@rnhmjoj](https://github.com/rnhmjoj)

- [@dundarious](https://github.com/dundarious)

- [@vyings](https://github.com/vyings)