Merge pull request #773 from objectstack-ai/copilot/add-package-artifact-format-spec

Author: hotlong

ROADMAP.md

@@ -691,7 +691,12 @@ Final polish and advanced features.
 
 ### 8.5 Marketplace & Cloud
 
-- [ ] Plugin marketplace — publish, discover, install community plugins
+- [x] Plugin marketplace protocol — package artifact format, artifact storage & distribution
+- [x] Platform version compatibility — engine requirements in manifest
+- [x] Dependency resolution protocol — conflict detection, topological install ordering
+- [x] Namespace collision detection — registry entries, conflict errors
+- [x] Upgrade migration context — version context for onUpgrade hooks, upgrade history
+- [ ] Plugin marketplace runtime — publish, discover, install community plugins
 - [ ] App store — pre-built applications (CRM, HRM, Project Management)
 - [ ] Developer portal — API keys, usage metrics, billing
 - [ ] Managed cloud offering — ObjectStack-as-a-Service

content/docs/references/cloud/marketplace.mdx

@@ -128,6 +128,7 @@ const result = ListingStatus.parse(data);
 | **licenseKey** | `string` | optional | License key for paid packages |
 | **settings** | `Record<string, any>` | optional |  |
 | **enableOnInstall** | `boolean` | ✅ |  |
+| **artifactRef** | `Object` | optional | Artifact reference for direct installation |
 | **tenantId** | `string` | optional |  |
 
 
@@ -282,3 +283,37 @@ const result = ListingStatus.parse(data);
 
 ---
 
+## ArtifactReference
+
+Reference to a downloadable package artifact with integrity verification.
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **url** | `string` | ✅ | Artifact download URL |
+| **sha256** | `string` | ✅ | SHA256 checksum |
+| **size** | `integer` | ✅ | Artifact size in bytes |
+| **format** | `Enum<'tgz' \| 'zip'>` | ✅ | Artifact format |
+| **uploadedAt** | `string` | ✅ | Upload timestamp |
+
+
+---
+
+## ArtifactDownloadResponse
+
+Response from the artifact download API endpoint.
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **downloadUrl** | `string` | ✅ | Artifact download URL (may be pre-signed) |
+| **sha256** | `string` | ✅ | SHA256 checksum for verification |
+| **size** | `integer` | ✅ | Artifact size in bytes |
+| **format** | `Enum<'tgz' \| 'zip'>` | ✅ | Artifact format |
+| **expiresAt** | `string` | optional | URL expiration timestamp for pre-signed URLs |
+
+
+---
+

content/docs/references/kernel/dependency-resolution.mdx

@@ -0,0 +1,101 @@
+---
+title: Dependency Resolution
+description: Dependency Resolution protocol schemas
+---
+
+{/* ⚠️  AUTO-GENERATED — DO NOT EDIT. Run build-docs.ts to regenerate. Hand-written docs go in content/docs/guides/. */}
+
+# Dependency Resolution Protocol
+
+Defines schemas for runtime dependency resolution when installing,
+upgrading, or managing packages. Provides a standardized way to
+express dependency conflicts, resolution results, and installation order.
+
+## Architecture Alignment
+
+- **npm**: Dependency tree resolution with conflict detection
+- **Helm**: Dependency management with version constraints
+- **Salesforce**: Package dependency validation at install time
+
+## Resolution Flow
+
+```
+1. Parse manifest.dependencies (SemVer ranges)
+2. Check installed packages registry
+3. Resolve each dependency → satisfied | needs_install | needs_upgrade | conflict
+4. Detect circular dependencies
+5. Compute topological install order
+6. Return resolution result with required actions
+```
+
+<Callout type="info">
+**Source:** `packages/spec/src/kernel/dependency-resolution.zod.ts`
+</Callout>
+
+## TypeScript Usage
+
+```typescript
+import { DependencyResolutionResultSchema, ResolvedDependencySchema } from '@objectstack/spec/kernel';
+import type { DependencyResolutionResult, ResolvedDependency } from '@objectstack/spec/kernel';
+
+// Validate resolution result
+const result = DependencyResolutionResultSchema.parse(data);
+```
+
+---
+
+## DependencyStatus
+
+### Allowed Values
+
+* `satisfied` — Already installed and version compatible
+* `needs_install` — Not installed, needs to be installed
+* `needs_upgrade` — Installed but version incompatible, needs upgrade
+* `conflict` — Conflicts with another package's dependency
+
+
+---
+
+## ResolvedDependency
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **packageId** | `string` | ✅ | Dependency package identifier |
+| **requiredRange** | `string` | ✅ | SemVer range required (e.g. "^2.0.0") |
+| **resolvedVersion** | `string` | optional | Actual version resolved from registry |
+| **installedVersion** | `string` | optional | Currently installed version |
+| **status** | `Enum<'satisfied' \| 'needs_install' \| 'needs_upgrade' \| 'conflict'>` | ✅ | Resolution status |
+| **conflictReason** | `string` | optional | Explanation of the conflict |
+
+
+---
+
+## RequiredAction
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **type** | `Enum<'install' \| 'upgrade' \| 'confirm_conflict'>` | ✅ | Type of action required |
+| **packageId** | `string` | ✅ | Target package identifier |
+| **description** | `string` | ✅ | Human-readable action description |
+
+
+---
+
+## DependencyResolutionResult
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **dependencies** | `ResolvedDependency[]` | ✅ | Resolution result for each dependency |
+| **canProceed** | `boolean` | ✅ | Whether installation can proceed |
+| **requiredActions** | `RequiredAction[]` | ✅ | Actions required before proceeding |
+| **installOrder** | `string[]` | ✅ | Topologically sorted package IDs |
+| **circularDependencies** | `string[][]` | optional | Circular dependency chains detected |
+
+
+---

content/docs/references/kernel/manifest.mdx

@@ -75,6 +75,7 @@ const result = Manifest.parse(data);
 | **capabilities** | `Object` | optional | Plugin capability declarations for interoperability |
 | **extensions** | `Record<string, any>` | optional | Extension points and contributions |
 | **loading** | `Object` | optional | Plugin loading and runtime behavior configuration |
+| **engine** | `Object` | optional | Platform compatibility requirements |
 
 
 ---

content/docs/references/kernel/meta.json

@@ -3,6 +3,7 @@
   "pages": [
     "cli-extension",
     "context",
+    "dependency-resolution",
     "dev-plugin",
     "execution-context",
     "feature",
@@ -11,6 +12,7 @@
     "metadata-persistence",
     "metadata-plugin",
     "misc",
+    "package-artifact",
     "package-registry",
     "package-upgrade",
     "permission",

content/docs/references/kernel/package-artifact.mdx

@@ -0,0 +1,126 @@
+---
+title: Package Artifact
+description: Package Artifact format protocol schemas
+---
+
+{/* ⚠️  AUTO-GENERATED — DO NOT EDIT. Run build-docs.ts to regenerate. Hand-written docs go in content/docs/guides/. */}
+
+# Package Artifact Format Protocol
+
+Defines the standard structure of a package artifact (.tgz) produced by
+`os plugin build`. The marketplace uses these schemas to validate, store,
+and distribute package artifacts.
+
+## Artifact Internal Structure
+
+```
+├── manifest.json          ← ManifestSchema serialized
+├── metadata/              ← 30+ metadata types (JSON)
+│   ├── objects/            ← *.object.json
+│   ├── views/              ← *.view.json
+│   ├── pages/              ← *.page.json
+│   ├── flows/              ← *.flow.json
+│   ├── dashboards/         ← *.dashboard.json
+│   ├── permissions/        ← *.permission.json
+│   ├── agents/             ← *.agent.json
+│   └── ...                 ← Other metadata types
+├── assets/                ← Static resources
+├── data/                  ← Seed data (DatasetSchema serialized)
+├── locales/               ← i18n translation files
+├── checksums.json         ← SHA256 checksum per file
+└── signature.sig          ← RSA-SHA256 package signature
+```
+
+## Architecture Alignment
+
+- **Salesforce**: Managed Package .zip with metadata components
+- **npm**: .tgz with package.json + contents
+- **Helm**: Chart .tgz with Chart.yaml + templates
+- **VS Code**: .vsix (zip) with extension manifest + assets
+
+<Callout type="info">
+**Source:** `packages/spec/src/kernel/package-artifact.zod.ts`
+</Callout>
+
+## TypeScript Usage
+
+```typescript
+import { PackageArtifactSchema, ArtifactChecksumSchema, ArtifactSignatureSchema } from '@objectstack/spec/kernel';
+import type { PackageArtifact, ArtifactChecksum, ArtifactSignature } from '@objectstack/spec/kernel';
+
+// Validate artifact metadata
+const result = PackageArtifactSchema.parse(data);
+```
+
+---
+
+## PackageArtifact
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **formatVersion** | `string` | ✅ | Artifact format version (e.g. "1.0") |
+| **packageId** | `string` | ✅ | Package identifier from manifest |
+| **version** | `string` | ✅ | Package version from manifest |
+| **format** | `Enum<'tgz' \| 'zip'>` | ✅ | Archive format of the artifact |
+| **size** | `integer` | optional | Total artifact file size in bytes |
+| **builtAt** | `string` | ✅ | ISO 8601 build timestamp |
+| **builtWith** | `string` | optional | Build tool identifier |
+| **files** | `Object[]` | optional | List of files in the artifact |
+| **metadataCategories** | `string[]` | optional | Metadata categories included |
+| **checksums** | `Object` | optional | SHA256 checksums for integrity |
+| **signature** | `Object` | optional | Digital signature for authenticity |
+
+
+---
+
+## ArtifactChecksum
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **algorithm** | `Enum<'sha256' \| 'sha384' \| 'sha512'>` | ✅ | Hash algorithm used |
+| **files** | `Record<string, string>` | ✅ | File path to hash value mapping |
+
+
+---
+
+## ArtifactSignature
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **algorithm** | `Enum<'RSA-SHA256' \| 'RSA-SHA384' \| 'RSA-SHA512' \| 'ECDSA-SHA256'>` | ✅ | Signing algorithm |
+| **publicKeyRef** | `string` | ✅ | Public key reference for verification |
+| **signature** | `string` | ✅ | Base64-encoded signature |
+| **signedAt** | `string` | optional | Signing timestamp |
+| **signedBy** | `string` | optional | Signer identity |
+
+
+---
+
+## MetadataCategory
+
+### Allowed Values
+
+* `objects`
+* `views`
+* `pages`
+* `flows`
+* `dashboards`
+* `permissions`
+* `agents`
+* `reports`
+* `actions`
+* `translations`
+* `themes`
+* `datasets`
+* `apis`
+* `triggers`
+* `workflows`
+
+
+---

content/docs/references/kernel/package-registry.mdx

@@ -128,6 +128,7 @@ const result = DisablePackageRequest.parse(data);
 | **manifest** | `Object` | ✅ |  |
 | **settings** | `Record<string, any>` | optional |  |
 | **enableOnInstall** | `boolean` | ✅ |  |
+| **platformVersion** | `string` | optional | Current platform version for compatibility verification |
 
 
 ---
@@ -140,6 +141,7 @@ const result = DisablePackageRequest.parse(data);
 | :--- | :--- | :--- | :--- |
 | **package** | `Object` | ✅ |  |
 | **message** | `string` | optional |  |
+| **dependencyResolution** | `Object` | optional | Dependency resolution result from install analysis |
 
 
 ---
@@ -160,6 +162,8 @@ const result = DisablePackageRequest.parse(data);
 | **statusChangedAt** | `string` | optional |  |
 | **errorMessage** | `string` | optional |  |
 | **settings** | `Record<string, any>` | optional |  |
+| **upgradeHistory** | `Object[]` | optional | Version upgrade history |
+| **registeredNamespaces** | `string[]` | optional | Namespace prefixes registered by this package |
 
 
 ---
@@ -227,3 +231,36 @@ const result = DisablePackageRequest.parse(data);
 
 ---
 
+## NamespaceRegistryEntry
+
+Tracks namespace ownership within the platform instance.
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **namespace** | `string` | ✅ | Namespace prefix |
+| **packageId** | `string` | ✅ | Owning package ID |
+| **registeredAt** | `string` | ✅ | Registration timestamp |
+| **status** | `Enum<'active' \| 'disabled' \| 'reserved'>` | ✅ | Namespace status |
+
+
+---
+
+## NamespaceConflictError
+
+Describes a namespace collision detected during package installation.
+
+### Properties
+
+| Property | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| **type** | `literal<'namespace_conflict'>` | ✅ | Error type |
+| **requestedNamespace** | `string` | ✅ | Requested namespace |
+| **conflictingPackageId** | `string` | ✅ | Conflicting package ID |
+| **conflictingPackageName** | `string` | ✅ | Conflicting package display name |
+| **suggestion** | `string` | optional | Suggested alternative namespace |
+
+
+---
+

docs/ENTERPRISE_ASSESSMENT.md

@@ -681,7 +681,15 @@ Create src/ai/governance.zod.ts:
 
 **Enhancement 1: Plugin Marketplace Protocol**
 
-The `cloud/marketplace.zod.ts` exists but needs tighter integration with the kernel for **security review, compatibility checking, and auto-update**.
+The `cloud/marketplace.zod.ts` now includes `ArtifactReferenceSchema` and `ArtifactDownloadResponseSchema` for artifact storage and distribution. The kernel has been extended with:
+- `package-artifact.zod.ts` — Standard artifact format (.tgz) with checksums and digital signatures
+- `dependency-resolution.zod.ts` — Runtime dependency resolution with conflict detection and topological ordering
+- `ManifestSchema.engine` — Platform version compatibility requirements
+- `UpgradeContextSchema` — Version migration context for onUpgrade hooks
+- `NamespaceRegistryEntrySchema` / `NamespaceConflictErrorSchema` — Namespace collision detection
+- `InstalledPackageSchema.upgradeHistory` — Version upgrade tracking
+
+Further integration needed for **auto-update orchestration and telemetry reporting**.
 
 **Enhancement 2: Plugin Telemetry Protocol**