@agentlink.sh/cli 0.10.0 → 0.10.2

package/README.md

@@ -4,7 +4,7 @@ Teach AI agents the right way to build on Supabase.
 
 [Agent Link](https://agentlink.sh) is an opinionated skill set for Claude Code — and this CLI is how you start a project with it. One command scaffolds a Supabase backend with schema isolation, RPC-first data access, row-level security, multi-tenancy, and edge functions already wired up — plus a frontend (React + Vite or Next.js) with auth, theming, and shadcn/ui ready to go. Your agent doesn't have to figure out the architecture — it's already there. From that foundation, five domain skills give it one clear path for every decision: how to structure tables, write RLS policies, expose APIs, handle background work, and connect a frontend. No ambiguity, no wrong turns. First-try results.
 
-## Install
+## Install & Run
 
 ### macOS
 
@@ -24,16 +24,16 @@ wget -qO- https://agentlink.sh/install | sh
 irm https://agentlink.sh/install.ps1 | iex
 ```
 
-### npm
+### npx (any platform with Node.js 18+)
 
 ```bash
-npm install -g @agentlinksh/cli
+npx @agentlink.sh/cli@latest
 ```
 
 Or run directly with npx (requires Node.js 18+):
 
 ```bash
-npx @agentlinksh/cli@latest
+npx @agentlink.sh/cli@latest
 ```
 
 The install scripts automatically detect your OS, install Node.js if needed, and set up the CLI globally.

package/dist/{chunk-DOWH47I5.js → chunk-2CNK2BQY.js}

@@ -181,7 +181,7 @@ async function ensureAccessToken(nonInteractive, projectDir) {
     }
     if (creds.oauth.refresh_token) {
       try {
-        const { refreshOAuthToken } = await import("./oauth-J4X62CY4.js");
+        const { refreshOAuthToken } = await import("./oauth-VTSNCG7U.js");
         const tokens = await refreshOAuthToken(creds.oauth.refresh_token);
         const updated = {
           ...creds,
@@ -230,7 +230,7 @@ async function ensureAccessToken(nonInteractive, projectDir) {
     ]
   });
   if (method === "oauth") {
-    const { oauthLogin } = await import("./oauth-J4X62CY4.js");
+    const { oauthLogin } = await import("./oauth-VTSNCG7U.js");
     const tokens = await oauthLogin();
     process.env.SUPABASE_ACCESS_TOKEN = tokens.access_token;
     saveCredentials({

package/dist/{cloud-N7CILHLD.js → cloud-2AWCJAG5.js}

@@ -20,7 +20,7 @@ import {
   updateAuthConfig,
   updatePostgrestConfig,
   waitForProjectReady
-} from "./chunk-DOWH47I5.js";
+} from "./chunk-2CNK2BQY.js";
 import "./chunk-G3HVUCWY.js";
 export {
   createProject,

package/dist/index.js

@@ -26,7 +26,7 @@ import {
   updatePostgrestConfig,
   validateProjectName,
   waitForProjectReady
-} from "./chunk-DOWH47I5.js";
+} from "./chunk-2CNK2BQY.js";
 import {
   SKILLS_VERSION,
   SUPPORTED_SUPABASE_CLI,
@@ -1671,7 +1671,7 @@ async function dbApply(options) {
       console.warn(`Warning: type generation failed \u2014 ${err.message}`);
     }
   }
-  console.log("\nDone. Run 'npx @agentlinksh/cli check' to verify.");
+  console.log("\nDone. Run 'npx @agentlink.sh/cli check' to verify.");
 }
 async function dbMigrate(name, options) {
   const dbUrl = await resolveDbUrl(options.cwd, options.dbUrl);
@@ -1928,7 +1928,7 @@ async function resolveEnvironments(cwd, opts) {
   if (!manifest.cloud?.environments?.[targetName]) {
     throw new Error(
       `Target environment "${targetName}" not found.
-  Run: npx @agentlinksh/cli@latest env add ${targetName}`
+  Run: npx @agentlink.sh/cli@latest env add ${targetName}`
     );
   }
   await ensureAccessToken(opts.ci, cwd);
@@ -2138,16 +2138,16 @@ This is a **cloud** Supabase project.
 
 | Task | Command |
 |------|---------|
-| Apply schemas | \`npx @agentlinksh/cli@latest db apply\` |
-| Generate migration | \`npx @agentlinksh/cli@latest db migrate name\` then \`supabase db push\` |
+| Apply schemas | \`npx @agentlink.sh/cli@latest db apply\` |
+| Generate migration | \`npx @agentlink.sh/cli@latest db migrate name\` then \`supabase db push\` |
 | Push migrations | \`supabase db push\` |
-| Generate types | \`npx @agentlinksh/cli@latest db types\` |
-| Run SQL | \`npx @agentlinksh/cli@latest db sql "SELECT ..."\` |
+| Generate types | \`npx @agentlink.sh/cli@latest db types\` |
+| Run SQL | \`npx @agentlink.sh/cli@latest db sql "SELECT ..."\` |
 | Deploy edge functions | \`supabase functions deploy\` |
 | Set secrets | \`supabase secrets set KEY=value\` |
-| Deploy to production | \`npx @agentlinksh/cli@latest deploy\` |
-| Switch environment | \`npx @agentlinksh/cli@latest env use <name>\` |
-| List environments | \`npx @agentlinksh/cli@latest env list\` |
+| Deploy to production | \`npx @agentlink.sh/cli@latest deploy\` |
+| Switch environment | \`npx @agentlink.sh/cli@latest env use <name>\` |
+| List environments | \`npx @agentlink.sh/cli@latest env list\` |
 
 ## Important
 
@@ -2169,14 +2169,14 @@ This is a **local** Supabase project running in Docker.
 | Task | Command |
 |------|---------|
 | Start Supabase | \`supabase start\` |
-| Apply schemas | \`npx @agentlinksh/cli@latest db apply\` |
-| Generate migration | \`npx @agentlinksh/cli@latest db migrate name\` |
-| Generate types | \`npx @agentlinksh/cli@latest db types\` |
-| Run SQL | \`npx @agentlinksh/cli@latest db sql "SELECT ..."\` |
+| Apply schemas | \`npx @agentlink.sh/cli@latest db apply\` |
+| Generate migration | \`npx @agentlink.sh/cli@latest db migrate name\` |
+| Generate types | \`npx @agentlink.sh/cli@latest db types\` |
+| Run SQL | \`npx @agentlink.sh/cli@latest db sql "SELECT ..."\` |
 | Serve edge functions | \`supabase functions serve\` |
-| Deploy to production | \`npx @agentlinksh/cli@latest deploy\` |
-| Switch environment | \`npx @agentlinksh/cli@latest env use <name>\` |
-| List environments | \`npx @agentlinksh/cli@latest env list\` |
+| Deploy to production | \`npx @agentlink.sh/cli@latest deploy\` |
+| Switch environment | \`npx @agentlink.sh/cli@latest env use <name>\` |
+| List environments | \`npx @agentlink.sh/cli@latest env list\` |
 
 ## Finding connection details
 
@@ -2315,7 +2315,7 @@ async function envAdd(name, cwd, opts = {}) {
   console.log(`
   ${blue("Done.")} Environment "${name}" is ready.`);
   if (!name.startsWith("dev") && name !== "staging" && name !== "local") {
-    console.log(`  Deploy with: ${dim("npx @agentlinksh/cli@latest deploy --env " + name)}`);
+    console.log(`  Deploy with: ${dim("npx @agentlink.sh/cli@latest deploy --env " + name)}`);
   }
 }
 async function promptForPassword(nonInteractive) {
@@ -2361,7 +2361,7 @@ async function connectExistingProject() {
   };
 }
 async function createNewProject(envName, opts) {
-  const { listOrganizations: listOrganizations2, listRegions: listRegions2 } = await import("./cloud-N7CILHLD.js");
+  const { listOrganizations: listOrganizations2, listRegions: listRegions2 } = await import("./cloud-2AWCJAG5.js");
   const orgs = await listOrganizations2();
   if (orgs.length === 0) {
     throw new Error("No Supabase organizations found. Create one at https://supabase.com/dashboard.");
@@ -2541,7 +2541,7 @@ jobs:
       - run: npm ci
 
       - name: Deploy to ${envName}
-        run: npx @agentlinksh/cli@latest deploy --ci --env ${envName}
+        run: npx @agentlink.sh/cli@latest deploy --ci --env ${envName}
         env:
           SUPABASE_ACCESS_TOKEN: \${{ secrets.SUPABASE_ACCESS_TOKEN }}
           SUPABASE_DB_PASSWORD: \${{ secrets.SUPABASE_DB_PASSWORD }}
@@ -3664,12 +3664,14 @@ async function scaffold(options) {
         "pgdelta binary not found. Run `npm install` in the CLI package first."
       );
     }
-    if (checkCommand("psql")) {
-      spinner.text = "Checking prerequisites \u2014 PostgreSQL client installed";
-    } else {
-      throw new Error(
-        "psql is required but not installed.\n  macOS:  brew install libpq && brew link --force libpq\n  Ubuntu: sudo apt install postgresql-client\n  See: https://www.postgresql.org/download/"
-      );
+    if (!options.cloud) {
+      if (checkCommand("psql")) {
+        spinner.text = "Checking prerequisites \u2014 PostgreSQL client installed";
+      } else {
+        throw new Error(
+          "psql is required for local mode but not installed.\n  macOS:  brew install libpq && brew link --force libpq\n  Ubuntu: sudo apt install postgresql-client\n  Or remove --local to use Supabase Cloud (no psql needed).\n  See: https://www.postgresql.org/download/"
+        );
+      }
     }
   });
   console.log();
@@ -4286,6 +4288,60 @@ ${red("Error:")} Supabase is not running.
 // src/wizard.ts
 var __dirname2 = path15.dirname(fileURLToPath2(import.meta.url));
 var pkg2 = JSON.parse(fs15.readFileSync(path15.join(__dirname2, "..", "package.json"), "utf-8"));
+async function checkForCliUpdate(autoYes) {
+  try {
+    const latest = execSync(`npm view @agentlink.sh/cli version 2>/dev/null`, { encoding: "utf-8" }).trim();
+    if (!latest || latest === pkg2.version) return;
+    const current = pkg2.version.split(".").map(Number);
+    const remote = latest.split(".").map(Number);
+    const isNewer = remote[0] > current[0] || remote[0] === current[0] && remote[1] > current[1] || remote[0] === current[0] && remote[1] === current[1] && remote[2] > current[2];
+    if (!isNewer) return;
+    console.log(`  ${amber("\u25B2")} New version available: ${dim(pkg2.version)} \u2192 ${bold(latest)}`);
+    const shouldUpdate = autoYes || await confirm5({
+      message: "Update now?",
+      default: true,
+      theme: theme5
+    });
+    if (!shouldUpdate) {
+      console.log();
+      return;
+    }
+    console.log(`  ${blue("\u25CF")} Updating...`);
+    execSync("npm install -g @agentlink.sh/cli@latest", { stdio: "ignore" });
+    console.log(`  ${blue("\u2714")} Updated to v${latest}`);
+    console.log();
+    const args = process.argv.slice(2).map((a) => JSON.stringify(a)).join(" ");
+    execSync(`agentlink ${args}`, { stdio: "inherit", cwd: process.cwd() });
+    process.exit(0);
+  } catch {
+  }
+}
+async function checkForPluginUpdate(autoYes) {
+  try {
+    const listOutput = execSync("claude plugin list --json 2>/dev/null", { encoding: "utf-8" });
+    const plugins = JSON.parse(listOutput);
+    const installed = plugins.find((p) => p.id === "link@agentlink");
+    if (!installed) return;
+    const availableOutput = execSync("claude plugin list --json --available 2>/dev/null", { encoding: "utf-8" });
+    const available = JSON.parse(availableOutput);
+    const latest = available.find((p) => p.id === "link@agentlink");
+    if (!latest || latest.version === installed.version) return;
+    console.log(`  ${amber("\u25B2")} Plugin update available: ${dim(installed.version)} \u2192 ${bold(latest.version)}`);
+    const shouldUpdate = autoYes || await confirm5({
+      message: "Update Agent Link plugin?",
+      default: true,
+      theme: theme5
+    });
+    if (!shouldUpdate) {
+      console.log();
+      return;
+    }
+    execSync(`claude plugin update link@agentlink --scope ${installed.scope}`, { stdio: "ignore" });
+    console.log(`  ${blue("\u2714")} Plugin updated to v${latest.version}`);
+    console.log();
+  } catch {
+  }
+}
 var theme5 = {
   prefix: { idle: blue("?"), done: blue("\u2714") },
   style: {
@@ -4404,6 +4460,10 @@ async function wizard(initialName, initialPrompt, opts = {}) {
   printBanner();
   console.log(dim(`  v${pkg2.version}`));
   console.log();
+  if (!nonInteractive) {
+    await checkForCliUpdate(autoYes);
+    await checkForPluginUpdate(autoYes);
+  }
   if (!opts.resume) {
     let sessions;
     if (initialName && initialName !== ".") {
@@ -4561,14 +4621,34 @@ Run without --resume to start fresh.`
   }
   if (!checkCommand("claude")) {
     console.log(amber("  Installing Claude Code..."));
-    await runCommand("npm install -g @anthropic-ai/claude-code");
+    try {
+      await runCommand("npm install -g @anthropic-ai/claude-code");
+    } catch {
+      await runCommand("sudo npm install -g @anthropic-ai/claude-code");
+    }
     console.log(blue("  \u2714 Claude Code installed."));
   }
   const authStatus = await runCommand("claude auth status").catch(() => "");
   const isLoggedIn = authStatus.includes('"loggedIn": true') || authStatus.includes('"loggedIn":true');
   if (!isLoggedIn) {
     console.log(amber("  Claude Code requires authentication. Opening login..."));
-    execSync("claude auth login", { stdio: "inherit" });
+    try {
+      execSync("claude auth login", { stdio: "inherit" });
+    } catch {
+      throw new Error(
+        `Claude Code login failed.
+  Run ${dim("claude auth login")} manually, then retry with:
+  ${dim("npx @agentlink.sh/cli@latest")}`
+      );
+    }
+    const recheck = await runCommand("claude auth status").catch(() => "");
+    if (!recheck.includes('"loggedIn": true') && !recheck.includes('"loggedIn":true')) {
+      throw new Error(
+        `Claude Code authentication did not complete.
+  Run ${dim("claude auth login")} manually, then retry with:
+  ${dim("npx @agentlink.sh/cli@latest")}`
+      );
+    }
   }
   const hasSupabase = fs15.existsSync(path15.join(process.cwd(), "supabase", "config.toml"));
   const hasPackageJson = fs15.existsSync(path15.join(process.cwd(), "package.json"));
@@ -4819,8 +4899,8 @@ program.command("info [name]").description("Show documentation about AgentLink c
 });
 program.command("login").description("Authenticate with Supabase via OAuth (opens browser)").action(async () => {
   try {
-    const { oauthLogin } = await import("./oauth-J4X62CY4.js");
-    const { saveCredentials: saveCredentials2, loadCredentials: loadCredentials2, credentialsPath: credentialsPath2 } = await import("./cloud-N7CILHLD.js");
+    const { oauthLogin } = await import("./oauth-VTSNCG7U.js");
+    const { saveCredentials: saveCredentials2, loadCredentials: loadCredentials2, credentialsPath: credentialsPath2 } = await import("./cloud-2AWCJAG5.js");
     console.log();
     const tokens = await oauthLogin();
     saveCredentials2({

package/dist/{oauth-J4X62CY4.js → oauth-VTSNCG7U.js}

@@ -4,6 +4,7 @@ import {
   OAUTH_CLIENT_SECRET,
   amber,
   blue,
+  bold,
   dim
 } from "./chunk-G3HVUCWY.js";
 
@@ -12,11 +13,21 @@ import { createHash, randomBytes } from "crypto";
 import { createServer } from "http";
 import { URL } from "url";
 import { execSync } from "child_process";
+import { select } from "@inquirer/prompts";
+var theme = {
+  prefix: { idle: blue("?"), done: blue("\u2714") },
+  style: {
+    answer: (text) => amber(text),
+    message: (text) => bold(text),
+    highlight: (text) => blue(text),
+    key: (text) => blue(bold(`<${text}>`))
+  }
+};
 var AUTHORIZE_URL = "https://api.supabase.com/v1/oauth/authorize";
 var TOKEN_URL = "https://api.supabase.com/v1/oauth/token";
 var PORT_RANGE_START = 54320;
 var PORT_RANGE_END = 54330;
-var TIMEOUT_MS = 12e4;
+var CHECK_IN_MS = 3e4;
 function generateCodeVerifier() {
   return randomBytes(64).toString("base64url");
 }
@@ -87,25 +98,15 @@ function openBrowser(url) {
     console.log(`  ${dim(url)}`);
   }
 }
-async function oauthLogin() {
-  const codeVerifier = generateCodeVerifier();
-  const codeChallenge = generateCodeChallenge(codeVerifier);
-  const state = randomBytes(16).toString("hex");
-  const port = await findOpenPort();
-  const redirectUri = `http://localhost:${port}/callback`;
-  const authorizeUrl = new URL(AUTHORIZE_URL);
-  authorizeUrl.searchParams.set("client_id", OAUTH_CLIENT_ID);
-  authorizeUrl.searchParams.set("redirect_uri", redirectUri);
-  authorizeUrl.searchParams.set("response_type", "code");
-  authorizeUrl.searchParams.set("code_challenge", codeChallenge);
-  authorizeUrl.searchParams.set("code_challenge_method", "S256");
-  authorizeUrl.searchParams.set("state", state);
-  const code = await new Promise((resolve, reject) => {
-    const timeout = setTimeout(() => {
-      server.close();
-      reject(new Error("OAuth login timed out. Try again."));
-    }, TIMEOUT_MS);
-    const server = createServer((req, res) => {
+function waitForCallback(port, state, timeoutMs) {
+  let server;
+  let timer;
+  const promise = new Promise((resolve) => {
+    timer = setTimeout(() => {
+      server?.close();
+      resolve(null);
+    }, timeoutMs);
+    server = createServer((req, res) => {
       const url = new URL(req.url, `http://localhost:${port}`);
       if (url.pathname !== "/callback") {
         res.writeHead(404);
@@ -117,43 +118,93 @@ async function oauthLogin() {
         const desc = url.searchParams.get("error_description") ?? error;
         res.writeHead(400, { "Content-Type": "text/html" });
         res.end(ERROR_HTML(desc));
-        clearTimeout(timeout);
+        clearTimeout(timer);
         server.close();
-        reject(new Error(`OAuth error: ${desc}`));
+        console.log(`  ${amber("\u25B2")} OAuth error: ${desc}`);
+        resolve(null);
         return;
       }
       const returnedState = url.searchParams.get("state");
       if (returnedState !== state) {
         res.writeHead(400, { "Content-Type": "text/html" });
         res.end(ERROR_HTML("State mismatch \u2014 possible CSRF attack."));
-        clearTimeout(timeout);
+        clearTimeout(timer);
         server.close();
-        reject(new Error("OAuth state mismatch."));
+        resolve(null);
         return;
       }
       const authCode = url.searchParams.get("code");
       if (!authCode) {
         res.writeHead(400, { "Content-Type": "text/html" });
         res.end(ERROR_HTML("No authorization code received."));
-        clearTimeout(timeout);
+        clearTimeout(timer);
         server.close();
-        reject(new Error("No authorization code in callback."));
+        resolve(null);
         return;
       }
       res.writeHead(200, { "Content-Type": "text/html" });
       res.end(SUCCESS_HTML);
-      clearTimeout(timeout);
+      clearTimeout(timer);
       server.close();
       resolve(authCode);
     });
-    server.listen(port, "127.0.0.1", () => {
-      console.log(`  ${blue("\u25CF")} Opening browser for Supabase login...`);
-      openBrowser(authorizeUrl.toString());
-      console.log(`  ${dim("Waiting for authorization...")}`);
-      console.log();
-    });
+    server.listen(port, "127.0.0.1");
   });
-  return exchangeCode(code, redirectUri, codeVerifier);
+  return {
+    promise,
+    cleanup: () => {
+      clearTimeout(timer);
+      server?.close();
+    }
+  };
+}
+async function oauthLogin() {
+  while (true) {
+    const codeVerifier = generateCodeVerifier();
+    const codeChallenge = generateCodeChallenge(codeVerifier);
+    const state = randomBytes(16).toString("hex");
+    const port = await findOpenPort();
+    const redirectUri = `http://localhost:${port}/callback`;
+    const authorizeUrl = new URL(AUTHORIZE_URL);
+    authorizeUrl.searchParams.set("client_id", OAUTH_CLIENT_ID);
+    authorizeUrl.searchParams.set("redirect_uri", redirectUri);
+    authorizeUrl.searchParams.set("response_type", "code");
+    authorizeUrl.searchParams.set("code_challenge", codeChallenge);
+    authorizeUrl.searchParams.set("code_challenge_method", "S256");
+    authorizeUrl.searchParams.set("state", state);
+    console.log(`  ${blue("\u25CF")} Opening browser for Supabase login...`);
+    openBrowser(authorizeUrl.toString());
+    console.log(`  ${dim("Waiting for authorization...")}`);
+    console.log();
+    let code = null;
+    const first = waitForCallback(port, state, CHECK_IN_MS);
+    code = await first.promise;
+    if (code) {
+      return exchangeCode(code, redirectUri, codeVerifier);
+    }
+    while (true) {
+      const action = await select({
+        message: "No response yet. What would you like to do?",
+        theme,
+        choices: [
+          { name: "Keep waiting (30s more)", value: "wait" },
+          { name: "Retry (open browser again)", value: "retry" },
+          { name: "Cancel", value: "cancel" }
+        ]
+      });
+      if (action === "cancel") {
+        throw new Error("OAuth login cancelled.");
+      }
+      if (action === "retry") {
+        break;
+      }
+      const next = waitForCallback(port, state, CHECK_IN_MS);
+      code = await next.promise;
+      if (code) {
+        return exchangeCode(code, redirectUri, codeVerifier);
+      }
+    }
+  }
 }
 async function exchangeCode(code, redirectUri, codeVerifier) {
   const res = await fetch(TOKEN_URL, {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agentlink.sh/cli",
-  "version": "0.10.0",
+  "version": "0.10.2",
   "description": "CLI for scaffolding Supabase apps with AI agents",
   "bin": {
     "agentlink": "dist/index.js"