@bike4mind/cli 0.9.3 → 0.10.1

package/README.md

@@ -386,6 +386,11 @@ tail -f ~/.bike4mind/debug/[session-id].txt
 
 This section covers the contributor workflow for hacking on the CLI from a checkout of the monorepo. For end-user installation see [Installation](#installation) above.
 
+### Prerequisites
+
+- **Node.js 24+** and **pnpm 10+** — the repo's `engines` field requires these versions. If you use [corepack](https://nodejs.org/api/corepack.html) (bundled with Node), run `corepack enable` from the repo root and it will activate the exact pnpm version pinned in the root `package.json`.
+- Native-module build tools (Python 3 + a C++ compiler) for `better-sqlite3` and `sharp` — see [Build Requirements](#build-requirements) above.
+
 ### How the bin resolves source vs. built code
 
 `apps/cli/bin/bike4mind-cli.mjs` auto-detects which mode to run in:
@@ -406,16 +411,21 @@ pnpm install
 # 2. Build the @bike4mind/* core packages so the CLI can import their dist/ outputs
 pnpm turbo:core:build
 
-# 3. Make the `b4m` and `bike4mind` commands point at this checkout
+# 3. Ensure pnpm has a global bin directory (once per machine). Without this,
+#    `pnpm link --global` fails with ERR_PNPM_NO_GLOBAL_BIN_DIR. `pnpm setup`
+#    appends PNPM_HOME to your shell profile — open a new shell afterward.
+pnpm setup
+
+# 4. Make the `b4m` and `bike4mind` commands point at this checkout
 cd apps/cli
 pnpm link --global
 
-# 4. Verify
+# 5. Verify
 which b4m
 b4m --version
 ```
 
-After step 3, running `b4m` anywhere on your system executes this working tree. Re-run `pnpm link --global` if you move or rename the repo.
+After step 4, running `b4m` anywhere on your system executes this working tree. Re-run `pnpm link --global` if you move or rename the repo.
 
 ### Editing CLI source (`apps/cli/src/`)
 

package/bin/bike4mind-cli.mjs

@@ -28,6 +28,11 @@ const __filename = fileURLToPath(import.meta.url);
 const __dirname = dirname(__filename);
 const require = createRequire(import.meta.url);
 
+// Read our own package.json so `--version` reports the CLI's version.
+// Without an explicit argument, yargs .version() resolves the version from
+// whichever package.json it discovers first, which is not necessarily ours.
+const { version: cliVersion } = require('../package.json');
+
 // Parse CLI arguments
 const argv = await yargs(hideBin(process.argv))
   .option('verbose', {
@@ -71,6 +76,15 @@ const argv = await yargs(hideBin(process.argv))
     type: 'string',
     description: 'Add local Ollama models to the model picker (e.g. http://localhost:11434)',
   })
+  .option('api-url', {
+    type: 'string',
+    description: 'Set a custom API URL (self-hosted instance) and clear auth tokens, then exit',
+  })
+  .option('reset-api', {
+    type: 'boolean',
+    description: 'Reset the API URL to the Bike4Mind default and clear auth tokens, then exit',
+    default: false,
+  })
   .command('mcp', 'Manage MCP (Model Context Protocol) servers', (yargs) => {
     return yargs
       .command('list', 'List configured MCP servers', {}, async () => {
@@ -117,7 +131,7 @@ const argv = await yargs(hideBin(process.argv))
   .command('doctor', 'Run diagnostic checks on CLI installation')
   .help()
   .alias('help', 'h')
-  .version()
+  .version(cliVersion)
   .alias('version', 'V')
   .parse();
 
@@ -161,6 +175,35 @@ const hasDist = existsSync(distPath);
 const isDev = process.env.NODE_ENV === 'development' ||
               (!hasDist && hasSource);
 
+// Handle --api-url / --reset-api flags
+// These mutate ~/.bike4mind/config.json and exit before any auth flow runs,
+// so devs can recover from a misconfigured customUrl without editing JSON.
+if (argv['reset-api'] || argv['api-url'] !== undefined) {
+  try {
+    let handleApiCommand;
+
+    if (isDev) {
+      const { register } = require('tsx/esm/api');
+      register();
+      const module = await import('../src/commands/apiCommand.ts');
+      handleApiCommand = module.handleApiCommand;
+    } else {
+      const module = await import('../dist/commands/apiCommand.mjs');
+      handleApiCommand = module.handleApiCommand;
+    }
+
+    if (argv['reset-api']) {
+      await handleApiCommand({ mode: 'reset' });
+    } else {
+      await handleApiCommand({ mode: 'set', url: argv['api-url'] });
+    }
+    process.exit(0);
+  } catch (error) {
+    console.error('Error:', error.message);
+    process.exit(1);
+  }
+}
+
 // Handle headless mode (-p / --prompt flag)
 // Must be done after isDev detection to use correct import path
 if (argv.prompt !== undefined) {

package/dist/{BubblewrapRuntime-CUD3bsgG.mjs → BubblewrapRuntime-CkL9-gnG.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { i as isBinaryAvailable, r as expandPath } from "./SandboxRuntimeAdapter-D1RUReNL.mjs";
+import { i as isBinaryAvailable, r as expandPath } from "./SandboxRuntimeAdapter-ChGlxSGQ.mjs";
 import os from "os";
 //#region src/sandbox/runtime/BubblewrapRuntime.ts
 /**

package/dist/{ConfigStore-BauEpjvT.mjs → ConfigStore-aeJGqjKm.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { t as DEFAULT_SANDBOX_CONFIG } from "./types-DBEjF9YS.mjs";
+import { t as DEFAULT_SANDBOX_CONFIG } from "./types-LyRNHOiS.mjs";
 import "crypto";
 import { existsSync, promises } from "fs";
 import os, { homedir } from "os";
@@ -22,7 +22,7 @@ let CollectionType = /* @__PURE__ */ function(CollectionType) {
 	return CollectionType;
 }({});
 //#endregion
-//#region ../../b4m-core/common/dist/api-d6gSEqLB.mjs
+//#region ../../b4m-core/common/dist/api--fTBBxKG.mjs
 const extractSnippetMeta = (content) => {
 	const snippetRegex = /<!--snippet-meta\s*(\{[\s\S]*?\})\s*-->[\n\s]*([\s\S]*?)(?=<!--snippet-meta|$)/g;
 	const sections = [];
@@ -160,6 +160,8 @@ let HttpStatus = /* @__PURE__ */ function(HttpStatus) {
 	return HttpStatus;
 }({});
 var HTTPError = class extends Error {
+	statusCode;
+	additionalInfo;
 	constructor(statusCode, message, additionalInfo) {
 		super(message);
 		this.statusCode = statusCode;
@@ -168,6 +170,7 @@ var HTTPError = class extends Error {
 	}
 };
 var InternalServerError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(500, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -175,6 +178,7 @@ var InternalServerError = class extends HTTPError {
 	}
 };
 var NotFoundError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(404, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -182,6 +186,7 @@ var NotFoundError = class extends HTTPError {
 	}
 };
 var UnprocessableEntityError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(422, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -189,6 +194,7 @@ var UnprocessableEntityError = class extends HTTPError {
 	}
 };
 var BadRequestError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(400, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -196,6 +202,7 @@ var BadRequestError = class extends HTTPError {
 	}
 };
 var UnauthorizedError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(401, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -203,6 +210,7 @@ var UnauthorizedError = class extends HTTPError {
 	}
 };
 var ForbiddenError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(403, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -210,6 +218,7 @@ var ForbiddenError = class extends HTTPError {
 	}
 };
 var TooManyRequestsError = class extends HTTPError {
+	additionalInfo;
 	constructor(message, additionalInfo) {
 		super(429, message, additionalInfo);
 		this.additionalInfo = additionalInfo;
@@ -217,6 +226,7 @@ var TooManyRequestsError = class extends HTTPError {
 	}
 };
 var CorruptedFileError = class extends HTTPError {
+	additionalInfo;
 	constructor(fileName, fileType, corruptionDetails, additionalInfo) {
 		const message = `File '${fileName}' (${fileType}) appears to be corrupted${corruptionDetails ? `: ${corruptionDetails}` : ""}. Please try uploading the file again.`;
 		super(422, message, additionalInfo);
@@ -232,6 +242,8 @@ function isZodError(err) {
 * This should break the agent loop immediately and return control to the user.
 */
 var PermissionDeniedError = class extends Error {
+	toolName;
+	toolArgs;
 	constructor(toolName, toolArgs) {
 		super(`Permission denied for tool: ${toolName}`);
 		this.toolName = toolName;
@@ -284,7 +296,7 @@ let ImageModels = /* @__PURE__ */ function(ImageModels) {
 	ImageModels["FLUX_DEV"] = "flux-dev";
 	ImageModels["FLUX_KONTEXT_PRO"] = "flux-kontext-pro";
 	ImageModels["FLUX_KONTEXT_MAX"] = "flux-kontext-max";
-	ImageModels["GROK_2_IMAGE"] = "grok-2-image";
+	ImageModels["GROK_IMAGINE_IMAGE_QUALITY"] = "grok-imagine-image-quality";
 	ImageModels["GEMINI_2_5_FLASH_IMAGE"] = "gemini-2.5-flash-image";
 	ImageModels["GEMINI_3_PRO_IMAGE_PREVIEW"] = "gemini-3-pro-image-preview";
 	return ImageModels;
@@ -348,6 +360,7 @@ let ChatModels = /* @__PURE__ */ function(ChatModels) {
 	ChatModels["CLAUDE_4_6_SONNET_BEDROCK"] = "global.anthropic.claude-sonnet-4-6";
 	ChatModels["CLAUDE_4_6_OPUS_BEDROCK"] = "global.anthropic.claude-opus-4-6-v1";
 	ChatModels["CLAUDE_4_7_OPUS_BEDROCK"] = "global.anthropic.claude-opus-4-7";
+	ChatModels["CLAUDE_4_8_OPUS_BEDROCK"] = "global.anthropic.claude-opus-4-8";
 	ChatModels["CLAUDE_3_OPUS"] = "claude-3-opus-20240229";
 	ChatModels["CLAUDE_3_5_HAIKU_ANTHROPIC"] = "claude-3-5-haiku-20241022";
 	ChatModels["CLAUDE_3_5_SONNET_ANTHROPIC"] = "claude-3-5-sonnet-20241022";
@@ -361,6 +374,7 @@ let ChatModels = /* @__PURE__ */ function(ChatModels) {
 	ChatModels["CLAUDE_4_6_SONNET"] = "claude-sonnet-4-6";
 	ChatModels["CLAUDE_4_6_OPUS"] = "claude-opus-4-6";
 	ChatModels["CLAUDE_4_7_OPUS"] = "claude-opus-4-7";
+	ChatModels["CLAUDE_4_8_OPUS"] = "claude-opus-4-8";
 	ChatModels["JURASSIC2_ULTRA"] = "ai21.j2-ultra-v1";
 	ChatModels["JURASSIC2_MID"] = "ai21.j2-mid-v1";
 	ChatModels["GEMINI_3_1_PRO_PREVIEW"] = "gemini-3.1-pro-preview";
@@ -413,7 +427,7 @@ const REASONING_SUPPORTED_MODELS = new Set([
 *    reasoning controls
 */
 const FIXED_TEMPERATURE_MODELS = new Set([
-	...REASONING_SUPPORTED_MODELS,
+	...Array.from(REASONING_SUPPORTED_MODELS),
 	"gpt-5.1-chat-latest",
 	"gpt-5.2-chat-latest",
 	"gpt-5.5"
@@ -422,7 +436,12 @@ const FIXED_TEMPERATURE_MODELS = new Set([
 * Models that do not accept the temperature parameter at all.
 * The API will reject requests that include temperature for these models.
 */
-const NO_TEMPERATURE_MODELS = new Set(["claude-opus-4-7", "global.anthropic.claude-opus-4-7"]);
+const NO_TEMPERATURE_MODELS = new Set([
+	"claude-opus-4-7",
+	"global.anthropic.claude-opus-4-7",
+	"claude-opus-4-8",
+	"global.anthropic.claude-opus-4-8"
+]);
 /**
 * Bedrock-hosted Claude models that do NOT support prompt caching (`cache_control`).
 * Sending `cache_control` to these models triggers a Bedrock deserialization error:
@@ -983,6 +1002,8 @@ let ApiKeyScope = /* @__PURE__ */ function(ApiKeyScope) {
 	*  radius of a sprite-spawning credential, not a billable AI key. */
 	ApiKeyScope["CC_BRIDGE"] = "cc-bridge:connect";
 	ApiKeyScope["ADMIN"] = "admin:*";
+	ApiKeyScope["MARKETING_REPORTS_READ"] = "marketing-reports:read";
+	ApiKeyScope["MARKETING_REPORTS_WRITE"] = "marketing-reports:write";
 	return ApiKeyScope;
 }({});
 /** Valid document types that can be favorited */
@@ -2578,6 +2599,7 @@ const AgentStepSchema = z.object({
 		toolName: z.string().optional(),
 		toolInput: z.unknown().optional(),
 		timestamp: z.number(),
+		iteration: z.number().optional(),
 		tokenUsage: z.object({
 			prompt: z.number(),
 			completion: z.number(),
@@ -2651,7 +2673,8 @@ const SubagentStartedAction = z.object({
 	agentName: z.string(),
 	model: z.string().optional(),
 	thoroughness: z.string().optional(),
-	maxIterations: z.number().optional()
+	maxIterations: z.number().optional(),
+	isBackground: z.boolean().optional()
 });
 const SubagentIterationStepAction = z.object({
 	action: z.literal("subagent_iteration_step"),
@@ -2696,7 +2719,9 @@ const ReconnectResultAction = z.object({
 		requestedAt: z.union([z.string(), z.date()])
 	}).optional(),
 	totalCreditsUsed: z.number().optional(),
-	iterationCount: z.number().optional()
+	iterationCount: z.number().optional(),
+	steps: z.array(AgentStepSchema).optional(),
+	stepsTruncated: z.boolean().optional()
 });
 z.discriminatedUnion("action", [
 	DataSubscribeRequestAction,
@@ -3412,7 +3437,7 @@ CommonBFLParams.extend({
 * XAI/Grok Image Models
 * Based on https://docs.x.ai/docs/guides/image-generations
 */
-const XAI_IMAGE_MODELS = ["grok-2-image"];
+const XAI_IMAGE_MODELS = ["grok-imagine-image-quality"];
 /**
 * Gemini Image Models (Nano Banana)
 * Based on https://ai.google.dev/gemini-api/docs/image-generation
@@ -3644,6 +3669,8 @@ z.enum([
 	"EnableRapidReplyDefault",
 	"EnableLattice",
 	"EnableLatticeDefault",
+	"EnableDataLakes",
+	"EnableDataLakesDefault",
 	"RapidReplySettings",
 	"EnableResearchEngine",
 	"EnableResearchEngineDefault",
@@ -3727,6 +3754,8 @@ z.enum([
 	"slackBotToken",
 	"enforceMFA",
 	"enableVoiceSession",
+	"voiceV2Enabled",
+	"elevenLabsServerApiKey",
 	"voiceSessionAiVoice",
 	"voiceSessionTranscriptionModel",
 	"voiceSessionVadType",
@@ -4359,6 +4388,14 @@ const API_SERVICE_GROUPS = {
 			{
 				key: "voiceSessionVadEagerness",
 				order: 5
+			},
+			{
+				key: "voiceV2Enabled",
+				order: 6
+			},
+			{
+				key: "elevenLabsServerApiKey",
+				order: 7
 			}
 		]
 	},
@@ -5006,6 +5043,25 @@ const settingsMap = {
 		group: API_SERVICE_GROUPS.NOTEBOOK.id,
 		order: 1
 	}),
+	EnableDataLakes: makeBooleanSetting({
+		key: "EnableDataLakes",
+		name: "Enable Data Lakes",
+		defaultValue: false,
+		description: "Server-side gate for the Data Lake capability (bulk folder ingestion). Off by default — turn on to expose the data-lake APIs and wizard.",
+		category: "Experimental",
+		group: API_SERVICE_GROUPS.EXPERIMENTAL.id,
+		order: 88
+	}),
+	EnableDataLakesDefault: makeBooleanSetting({
+		key: "EnableDataLakesDefault",
+		name: "Data Lakes: On by default for users",
+		defaultValue: false,
+		description: "When enabled, Data Lakes is active for users who have never explicitly toggled it.",
+		category: "Experimental",
+		group: API_SERVICE_GROUPS.EXPERIMENTAL.id,
+		order: 89,
+		dependsOn: "EnableDataLakes"
+	}),
 	EnableQuestMaster: makeBooleanSetting({
 		key: "EnableQuestMaster",
 		name: "Enable Quest Master",
@@ -5938,6 +5994,25 @@ const settingsMap = {
 		group: API_SERVICE_GROUPS.VOICE_SESSION.id,
 		order: 9
 	}),
+	voiceV2Enabled: makeBooleanSetting({
+		key: "voiceV2Enabled",
+		name: "Enable Voice v2 (Model-Agnostic)",
+		defaultValue: false,
+		description: "Gate for the Voice v2 feature (ElevenLabs Conversational AI + any B4M reasoning model). When disabled, /api/voice/v2/sessions returns 403.",
+		category: "AI",
+		group: API_SERVICE_GROUPS.VOICE_SESSION.id,
+		order: 10
+	}),
+	elevenLabsServerApiKey: makeStringSetting({
+		key: "elevenLabsServerApiKey",
+		name: "ElevenLabs Server API Key (Voice v2)",
+		defaultValue: "",
+		description: "Server-side ElevenLabs API key used by /api/voice/v2/sessions to mint Conversational AI signed URLs. Distinct from the per-user ElevenLabs key used for TTS preview.",
+		isSensitive: true,
+		category: "AI",
+		group: API_SERVICE_GROUPS.VOICE_SESSION.id,
+		order: 11
+	}),
 	voiceSessionAiVoice: makeStringSetting({
 		key: "voiceSessionAiVoice",
 		name: "Default Assistant Voice",
@@ -7609,18 +7684,36 @@ z$1.object({
 	slug: z$1.string().min(2).max(60).regex(slugRegex, "Slug must be lowercase alphanumeric with hyphens (e.g. \"my-data-lake\")"),
 	description: z$1.string().max(2e3).optional(),
 	fileTagPrefix: z$1.string().min(2).max(30).refine((s) => s.endsWith(":"), "Tag prefix must end with \":\" (e.g. \"acme:\")"),
-	requiredUserTag: z$1.string().min(1).max(100).optional(),
-	organizationId: z$1.string().optional()
+	requiredUserTag: z$1.string().min(1).max(100).optional()
 });
 z$1.object({
 	name: z$1.string().min(1).max(200).optional(),
 	description: z$1.string().max(2e3).optional(),
-	requiredUserTag: z$1.string().min(1).max(100).optional(),
-	status: z$1.enum(["active", "archived"]).optional()
+	requiredUserTag: z$1.string().min(1).max(100).optional()
 });
 z$1.object({
 	organizationId: z$1.string().optional(),
-	status: z$1.enum(["active", "archived"]).optional()
+	status: z$1.enum([
+		"draft",
+		"active",
+		"archived",
+		"deleted"
+	]).optional()
+});
+const ConflictResolutionSchema = z$1.enum([
+	"skip",
+	"update",
+	"duplicate"
+]);
+z$1.object({
+	dataLakeId: z$1.string(),
+	totalFiles: z$1.number().positive(),
+	totalSizeBytes: z$1.number().nonnegative(),
+	conflictResolution: ConflictResolutionSchema.optional(),
+	appliedTags: z$1.array(z$1.object({
+		name: z$1.string(),
+		strength: z$1.number()
+	})).optional()
 });
 const BatchPresignedUrlFileItem = z$1.object({
 	fileName: z$1.string().min(1),
@@ -7635,7 +7728,13 @@ const BatchPresignedUrlFileItem = z$1.object({
 });
 z$1.object({
 	files: z$1.array(BatchPresignedUrlFileItem).min(1).max(100),
-	dataLakeSlug: z$1.string().optional()
+	dataLakeSlug: z$1.string().optional(),
+	/**
+	* When uploading into a data lake batch, the batch id so each created FabFile is
+	* correlated to the batch (stamped with batchId) AND appended to the batch
+	* manifest. Without it the pipeline can't track batch progress.
+	*/
+	batchId: z$1.string().optional()
 });
 const InferTaxonomyFolderEntry = z$1.object({
 	relativePath: z$1.string(),
@@ -7661,7 +7760,9 @@ const SyncDeltaFileEntry = z$1.object({
 });
 z$1.object({
 	dataLakeSlug: z$1.string(),
-	currentFiles: z$1.array(SyncDeltaFileEntry).min(1).max(1e4)
+	currentFiles: z$1.array(SyncDeltaFileEntry).min(1).max(1e4),
+	/** Per-request dedup policy for files whose content hash already exists. Defaults to 'skip'. */
+	conflictResolution: ConflictResolutionSchema.optional()
 });
 z$1.object({
 	dataLakeSlug: z$1.string(),

package/dist/ProxyManager-ByuAHFMq.mjs

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+import { t as ProxyManager } from "./ProxyManager-CV94yZUW.mjs";
+export { ProxyManager };

package/dist/{SandboxOrchestrator-C4oDqltp.mjs → SandboxOrchestrator-BS6gALNq.mjs}

@@ -1,3 +1,3 @@
 #!/usr/bin/env node
-import { t as SandboxOrchestrator } from "./SandboxOrchestrator-B4GcZdBc.mjs";
+import { t as SandboxOrchestrator } from "./SandboxOrchestrator-BoINxbX4.mjs";
 export { SandboxOrchestrator };

package/dist/{SandboxOrchestrator-B4GcZdBc.mjs → SandboxOrchestrator-BoINxbX4.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { t as DEFAULT_SANDBOX_CONFIG } from "./types-DBEjF9YS.mjs";
+import { t as DEFAULT_SANDBOX_CONFIG } from "./types-LyRNHOiS.mjs";
 //#region src/sandbox/SandboxOrchestrator.ts
 var SandboxOrchestrator = class {
 	constructor(config, runtime, proxyManager) {

package/dist/{SandboxRuntimeAdapter-DXa3nFOw.mjs → SandboxRuntimeAdapter-CKelGICD.mjs}

@@ -1,3 +1,3 @@
 #!/usr/bin/env node
-import { i as isBinaryAvailable, n as detectPlatform, r as expandPath, t as createSandboxRuntime } from "./SandboxRuntimeAdapter-D1RUReNL.mjs";
+import { i as isBinaryAvailable, n as detectPlatform, r as expandPath, t as createSandboxRuntime } from "./SandboxRuntimeAdapter-ChGlxSGQ.mjs";
 export { createSandboxRuntime, detectPlatform, expandPath, isBinaryAvailable };

package/dist/{SandboxRuntimeAdapter-D1RUReNL.mjs → SandboxRuntimeAdapter-ChGlxSGQ.mjs}

@@ -42,12 +42,12 @@ async function createSandboxRuntime() {
 	const platform = detectPlatform();
 	if (!platform) return null;
 	if (platform === "darwin") {
-		const { SeatbeltRuntime } = await import("./SeatbeltRuntime-CTElMR9Q.mjs");
+		const { SeatbeltRuntime } = await import("./SeatbeltRuntime-Qqt19cAN.mjs");
 		const runtime = new SeatbeltRuntime();
 		return runtime.isAvailable() ? runtime : null;
 	}
 	if (platform === "linux") {
-		const { BubblewrapRuntime } = await import("./BubblewrapRuntime-CUD3bsgG.mjs");
+		const { BubblewrapRuntime } = await import("./BubblewrapRuntime-CkL9-gnG.mjs");
 		const runtime = new BubblewrapRuntime();
 		return runtime.isAvailable() ? runtime : null;
 	}

package/dist/{SeatbeltRuntime-CTElMR9Q.mjs → SeatbeltRuntime-Qqt19cAN.mjs}

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { i as isBinaryAvailable, r as expandPath } from "./SandboxRuntimeAdapter-D1RUReNL.mjs";
+import { i as isBinaryAvailable, r as expandPath } from "./SandboxRuntimeAdapter-ChGlxSGQ.mjs";
 import { mkdtempSync, writeFileSync } from "fs";
 import os from "os";
 import path from "path";

package/dist/{bashExecute-pYljpfPn-BZXHMQEl.mjs → bashExecute-B1N1lMOS-TZVDbcQ4.mjs}

@@ -1,7 +1,7 @@
 #!/usr/bin/env node
 import { spawn } from "child_process";
 import path from "path";
-//#region ../../b4m-core/services/dist/bashExecute-pYljpfPn.mjs
+//#region ../../b4m-core/services/dist/bashExecute-B1N1lMOS.mjs
 const DEFAULT_TIMEOUT_MS = 6e4;
 const MAX_OUTPUT_SIZE = 100 * 1024;
 /**

package/dist/commands/apiCommand.mjs

@@ -0,0 +1,45 @@
+#!/usr/bin/env node
+import { t as ConfigStore } from "../ConfigStore-aeJGqjKm.mjs";
+//#region src/commands/apiCommand.ts
+/**
+* External API config command (--api-url / --reset-api)
+* Runs outside the interactive CLI session, before any auth flow.
+*
+* - `--reset-api`: clears customUrl, falling back to the Bike4Mind default
+* - `--api-url <url>`: sets a custom API URL (e.g. http://localhost:3000)
+*
+* Both clear auth tokens because they're bound to the old origin, and both
+* exit on completion so the user can re-run `b4m` with a clean auth state.
+*/
+async function handleApiCommand(options) {
+	const configStore = new ConfigStore();
+	if (options.mode === "set") {
+		const url = options.url.trim().replace(/\/+$/, "");
+		let parsed;
+		try {
+			parsed = new URL(url);
+		} catch {
+			console.error(`❌ Invalid URL: ${url}`);
+			console.error("   Example: --api-url http://localhost:3000");
+			process.exit(1);
+		}
+		if (parsed.protocol !== "http:" && parsed.protocol !== "https:") {
+			console.error(`❌ Only http:// and https:// URLs are supported (got ${parsed.protocol}//)`);
+			console.error("   Example: --api-url http://localhost:3000");
+			process.exit(1);
+		}
+		await configStore.setCustomApiUrl(url);
+		await configStore.clearAuthTokens();
+		console.log(`\n✅ API URL set to ${url}`);
+		console.log("🔓 Authentication cleared");
+		console.log("💡 Run `b4m` to authenticate against the new API.\n");
+		return;
+	}
+	await configStore.setCustomApiUrl(null);
+	await configStore.clearAuthTokens();
+	console.log("\n✅ API URL reset to Bike4Mind main service");
+	console.log("🔓 Authentication cleared");
+	console.log("💡 Run `b4m` to authenticate.\n");
+}
+//#endregion
+export { handleApiCommand };

package/dist/commands/doctorCommand.mjs

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
-import { a as version, n as compareSemver, r as fetchLatestVersion } from "../updateChecker-DhWcEKAu.mjs";
-import { t as checkRipgrep } from "../ripgrepCheck-DIu4apVE.mjs";
+import { a as version, n as compareSemver, r as fetchLatestVersion } from "../updateChecker-CP_jeER9.mjs";
+import { t as checkRipgrep } from "../ripgrepCheck-BmkyTK2i.mjs";
 import { execSync } from "child_process";
 import { constants, existsSync, promises } from "fs";
 import { homedir } from "os";

package/dist/commands/headlessCommand.mjs

@@ -1,10 +1,10 @@
 #!/usr/bin/env node
-import { C as WebSocketToolExecutor, D as ServerLlmBackend, E as WebSocketLlmBackend, F as PermissionManager, I as generateCliTools, M as loadContextFiles, N as getApiUrl, O as McpManager, Q as CheckpointStore, S as ApiClient, T as FallbackLlmBackend, W as setWebSocketToolExecutor, X as ReActAgent, Y as isReadOnlyTool, Z as CustomCommandStore, _ as createAgentDelegateTool, b as createSkillTool, d as createFindDefinitionTool, et as SessionStore, f as createTodoStore, g as BackgroundAgentManager, h as createBackgroundAgentTools, m as createCoordinateTaskTool, p as createWriteTodosTool, q as buildSystemPrompt, u as createGetFileStructureTool, v as AgentStore, w as WebSocketConnectionManager, y as SubagentOrchestrator } from "../tools-CpWE3Qif.mjs";
-import { n as logger, t as ConfigStore } from "../ConfigStore-BauEpjvT.mjs";
-import { t as DEFAULT_SANDBOX_CONFIG } from "../types-DBEjF9YS.mjs";
-import { t as createSandboxRuntime } from "../SandboxRuntimeAdapter-D1RUReNL.mjs";
-import { t as SandboxOrchestrator } from "../SandboxOrchestrator-B4GcZdBc.mjs";
-import { t as ProxyManager } from "../ProxyManager-BsCoxpns.mjs";
+import { C as WebSocketToolExecutor, D as ServerLlmBackend, E as WebSocketLlmBackend, F as PermissionManager, I as generateCliTools, M as loadContextFiles, N as getApiUrl, O as McpManager, Q as CheckpointStore, S as ApiClient, T as FallbackLlmBackend, W as setWebSocketToolExecutor, X as ReActAgent, Y as isReadOnlyTool, Z as CustomCommandStore, _ as createAgentDelegateTool, b as createSkillTool, d as createFindDefinitionTool, et as SessionStore, f as createTodoStore, g as BackgroundAgentManager, h as createBackgroundAgentTools, m as createCoordinateTaskTool, p as createWriteTodosTool, q as buildSystemPrompt, u as createGetFileStructureTool, v as AgentStore, w as WebSocketConnectionManager, y as SubagentOrchestrator } from "../tools-RdGu37Lw.mjs";
+import { n as logger, t as ConfigStore } from "../ConfigStore-aeJGqjKm.mjs";
+import { t as DEFAULT_SANDBOX_CONFIG } from "../types-LyRNHOiS.mjs";
+import { t as createSandboxRuntime } from "../SandboxRuntimeAdapter-ChGlxSGQ.mjs";
+import { t as SandboxOrchestrator } from "../SandboxOrchestrator-BoINxbX4.mjs";
+import { t as ProxyManager } from "../ProxyManager-CV94yZUW.mjs";
 import { randomBytes } from "crypto";
 import { v4 } from "uuid";
 //#region src/commands/headlessCommand.ts

package/dist/commands/mcpCommand.mjs

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { t as ConfigStore } from "../ConfigStore-BauEpjvT.mjs";
+import { t as ConfigStore } from "../ConfigStore-aeJGqjKm.mjs";
 //#region src/commands/mcpCommand.ts
 /**
 * External MCP commands (b4m mcp list, b4m mcp add, etc.)

package/dist/commands/updateCommand.mjs

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
-import { a as version, i as forceCheckForUpdate } from "../updateChecker-DhWcEKAu.mjs";
-import { t as checkRipgrep } from "../ripgrepCheck-DIu4apVE.mjs";
+import { a as version, i as forceCheckForUpdate } from "../updateChecker-CP_jeER9.mjs";
+import { t as checkRipgrep } from "../ripgrepCheck-BmkyTK2i.mjs";
 import { execSync } from "child_process";
 //#region src/commands/updateCommand.ts
 /**

package/dist/{createFile-C1JoeuYh-metInFKd.mjs → createFile-DPv180yF-BnWFIxey.mjs}

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
-import { t as assertPathAllowed } from "./pathValidation-CIytuhr3-Dt5dntLx.mjs";
+import { t as assertPathAllowed } from "./pathValidation-D8tjkQXE-1HwvsuYT.mjs";
 import { existsSync, promises } from "fs";
 import path from "path";
-//#region ../../b4m-core/services/dist/createFile-C1JoeuYh.mjs
+//#region ../../b4m-core/services/dist/createFile-DPv180yF.mjs
 async function createFile(params, allowedDirectories) {
 	const { path: filePath, content, createDirectories = true } = params;
 	const resolvedPath = assertPathAllowed(filePath, allowedDirectories, "create");

package/dist/{deleteFile-BTberNGj-CW922hRM.mjs → deleteFile-BdjUwUQF-B3XOJmg3.mjs}

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
-import { t as assertPathAllowed } from "./pathValidation-CIytuhr3-Dt5dntLx.mjs";
+import { t as assertPathAllowed } from "./pathValidation-D8tjkQXE-1HwvsuYT.mjs";
 import { existsSync, promises, statSync } from "fs";
 import path from "path";
-//#region ../../b4m-core/services/dist/deleteFile-BTberNGj.mjs
+//#region ../../b4m-core/services/dist/deleteFile-BdjUwUQF.mjs
 async function deleteFile(params, allowedDirectories) {
 	const { path: filePath, recursive = false } = params;
 	const resolvedPath = assertPathAllowed(filePath, allowedDirectories, "delete");

package/dist/{globFiles-Bez8QCbS-DZb6McbJ.mjs → globFiles-DjfDGaUK-CNR8pMRC.mjs}

@@ -1,9 +1,9 @@
 #!/usr/bin/env node
-import { n as isPathAllowed } from "./pathValidation-CIytuhr3-Dt5dntLx.mjs";
+import { n as isPathAllowed } from "./pathValidation-D8tjkQXE-1HwvsuYT.mjs";
 import path from "path";
 import { stat } from "fs/promises";
 import { glob } from "glob";
-//#region ../../b4m-core/services/dist/globFiles-Bez8QCbS.mjs
+//#region ../../b4m-core/services/dist/globFiles-DjfDGaUK.mjs
 const DEFAULT_IGNORE_PATTERNS = [
 	"**/node_modules/**",
 	"**/.git/**",

package/dist/{grepSearch-BxucZWO8-lPRv6R6F.mjs → grepSearch-DJs-cubo-Bm0Y8oS3.mjs}

@@ -1,11 +1,11 @@
 #!/usr/bin/env node
-import { n as isPathAllowed } from "./pathValidation-CIytuhr3-Dt5dntLx.mjs";
+import { n as isPathAllowed } from "./pathValidation-D8tjkQXE-1HwvsuYT.mjs";
 import { execFile } from "child_process";
 import { existsSync } from "fs";
 import path from "path";
 import { stat } from "fs/promises";
 import { promisify } from "util";
-//#region ../../b4m-core/services/dist/grepSearch-BxucZWO8.mjs
+//#region ../../b4m-core/services/dist/grepSearch-DJs-cubo.mjs
 const execFileAsync = promisify(execFile);
 /** Cached ripgrep binary path after first resolution */
 let cachedRgPath = null;