@capgo/cli 8.8.2 → 8.9.1

package/dist/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@capgo/cli",
   "type": "module",
-  "version": "8.8.2",
+  "version": "8.9.1",
   "description": "A CLI to upload to capgo servers",
   "author": "Martin martin@capgo.app",
   "license": "Apache 2.0",
@@ -89,6 +89,17 @@
     "test:supabase-perf": "bun test/test-supabase-perf.mjs",
     "test:preview-qr": "bun test/test-preview-qr.mjs",
     "test:mcp-analytics": "bun test/test-mcp-analytics.mjs",
+    "test:mcp-instructions": "bun test/test-mcp-instructions.mjs",
+    "test:mcp-stdout-guard": "bun test/test-mcp-stdout-guard.mjs",
+    "test:mcp-platform-select": "bun test/test-mcp-platform-select.mjs",
+    "test:mcp-explain-scopes": "bun test/test-mcp-explain-scopes.mjs",
+    "test:mcp-oauth-reopen": "bun test/test-mcp-oauth-reopen.mjs",
+    "test:mcp-broker-oauth": "bun test/test-mcp-broker-oauth.mjs",
+    "test:mcp-broker-session": "bun test/test-mcp-broker-session.mjs",
+    "test:mcp-credentials-manage": "bun test/test-mcp-credentials-manage.mjs",
+    "test:mcp-resume-prompt": "bun test/test-mcp-resume-prompt.mjs",
+    "test:mcp-build-job": "bun test/test-mcp-build-job.mjs",
+    "test:mcp-build-tools": "bun test/test-mcp-build-tools.mjs",
     "test:app-created-source": "bun test/test-app-created-source.mjs",
     "test:doctor-analytics": "bun test/test-doctor-analytics.mjs",
     "test:posthog-exception": "bun test/test-posthog-exception.mjs",
@@ -140,7 +151,7 @@
     "test:ios-verify-app": "bun test/test-ios-verify-app.mjs",
     "test:platform-flow-contract": "bun test/test-platform-flow-contract.mjs",
     "test:tail-engine-shared": "bun test/test-tail-engine-shared.mjs",
-    "test": "bun run build && bun run test:helper-dce && bun run test:version-detection:setup && bun run test:bundle && bun run test:functional && bun run test:semver && bun run test:version-edge-cases && bun run test:regex && bun run test:upload && bun run test:fail-on-incompatible && bun run test:credentials && bun run test:credentials-validation && bun run test:android-service-account-validation && bun run test:build-zip-filter && bun run test:checksum && bun run test:build-needed && bun run test:ci-prompts && bun run test:ci-secrets && bun run test:android-onboarding-progress && bun run test:onboarding-telemetry && bun run test:v2-event-migration && bun run test:analytics && bun run test:analytics-error-category && bun run test:analytics-org-resolver && bun run test:supabase-perf && bun run test:preview-qr && bun run test:mcp-analytics && bun run test:app-created-source && bun run test:doctor-analytics && bun run test:posthog-exception && bun run test:build-platform-selection && bun run test:onboarding-recovery && bun run test:onboarding-progress && bun run test:onboarding-run-targets && bun run test:run-device-command && bun run test:init-app-conflict && bun run test:init-guardrails && bun run test:prompt-preferences && bun run test:esm-sdk && bun run test:mcp && bun run test:version-detection && bun run test:platform-paths && bun run test:project-type-detection && bun run test:payload-split && bun run test:manifest-path-encoding && bun run test:macos-signing && bun run test:asc-key-protocol && bun run test:apple-api-import-helpers && bun run test:bundle-id-detector && bun run test:apple-api-app-list && bun run test:app-verification && bun run test:pbxproj-parser && bun run test:ai-log-capture && bun run test:ai-analyze-flow && bun run test:ai-sse-parser && bun run test:ai-render-markdown && bun run test:ai-stream-markdown && bun run test:ai-onboarding-mode && bun run test:ai-fit && bun run test:platform-layout && bun run test:frame-fit && bun run test:onboarding-min-size && bun run test:min-size-gate && bun run test:shell-size-gate && bun run test:build-log-sanitize && bun run test:build-output-viewport && bun run test:diff-viewer-viewport && bun run test:build-complete-exit && bun run test:ai-analyze-stream && bun run test:support-mailto && bun run test:support-redact && bun run test:support-internal-log && bun run test:support-help-menu && bun run test:support-contact && bun run test:support-bundle-files && bun run test:self-update && bun run test:update-prompt && bun run test:apple-api-cert-create && bun run test:android-tail-engine && bun run test:android-tail-render && bun run test:android-tail-routing && bun run test:dev-gate-stripped && bun run test:frame-fit-ios-shared && bun run test:ios-confirm-app-id && bun run test:ios-create-new && bun run test:ios-e2e && bun run test:ios-flow-contract && bun run test:ios-import-discovery && bun run test:ios-import-export && bun run test:ios-import-pickers && bun run test:ios-import-recovery && bun run test:ios-recovery && bun run test:ios-resume && bun run test:ios-tail-handoff && bun run test:ios-tui-render && bun run test:p8-error && bun run test:ios-tui-routing && bun run test:ios-updater-sync-validation && bun run test:ios-verify-app && bun run test:platform-flow-contract && bun run test:tail-engine-shared",
+    "test": "bun run build && bun run test:helper-dce && bun run test:version-detection:setup && bun run test:bundle && bun run test:functional && bun run test:semver && bun run test:version-edge-cases && bun run test:regex && bun run test:upload && bun run test:fail-on-incompatible && bun run test:credentials && bun run test:credentials-validation && bun run test:android-service-account-validation && bun run test:build-zip-filter && bun run test:checksum && bun run test:build-needed && bun run test:ci-prompts && bun run test:ci-secrets && bun run test:android-onboarding-progress && bun run test:onboarding-telemetry && bun run test:v2-event-migration && bun run test:analytics && bun run test:analytics-error-category && bun run test:analytics-org-resolver && bun run test:supabase-perf && bun run test:preview-qr && bun run test:mcp-analytics && bun run test:mcp-instructions && bun run test:mcp-stdout-guard && bun run test:mcp-platform-select && bun run test:mcp-explain-scopes && bun run test:mcp-oauth-reopen && bun run test:mcp-broker-oauth && bun run test:mcp-broker-session && bun run test:mcp-credentials-manage && bun run test:mcp-resume-prompt && bun run test:mcp-build-job && bun run test:mcp-build-tools && bun run test:app-created-source && bun run test:doctor-analytics && bun run test:posthog-exception && bun run test:build-platform-selection && bun run test:onboarding-recovery && bun run test:onboarding-progress && bun run test:onboarding-run-targets && bun run test:run-device-command && bun run test:init-app-conflict && bun run test:init-guardrails && bun run test:prompt-preferences && bun run test:esm-sdk && bun run test:mcp && bun run test:version-detection && bun run test:platform-paths && bun run test:project-type-detection && bun run test:payload-split && bun run test:manifest-path-encoding && bun run test:macos-signing && bun run test:asc-key-protocol && bun run test:apple-api-import-helpers && bun run test:bundle-id-detector && bun run test:apple-api-app-list && bun run test:app-verification && bun run test:pbxproj-parser && bun run test:ai-log-capture && bun run test:ai-analyze-flow && bun run test:ai-sse-parser && bun run test:ai-render-markdown && bun run test:ai-stream-markdown && bun run test:ai-onboarding-mode && bun run test:ai-fit && bun run test:platform-layout && bun run test:frame-fit && bun run test:onboarding-min-size && bun run test:min-size-gate && bun run test:shell-size-gate && bun run test:build-log-sanitize && bun run test:build-output-viewport && bun run test:diff-viewer-viewport && bun run test:build-complete-exit && bun run test:ai-analyze-stream && bun run test:support-mailto && bun run test:support-redact && bun run test:support-internal-log && bun run test:support-help-menu && bun run test:support-contact && bun run test:support-bundle-files && bun run test:self-update && bun run test:update-prompt && bun run test:apple-api-cert-create && bun run test:android-tail-engine && bun run test:android-tail-render && bun run test:android-tail-routing && bun run test:dev-gate-stripped && bun run test:frame-fit-ios-shared && bun run test:ios-confirm-app-id && bun run test:ios-create-new && bun run test:ios-e2e && bun run test:ios-flow-contract && bun run test:ios-import-discovery && bun run test:ios-import-export && bun run test:ios-import-pickers && bun run test:ios-import-recovery && bun run test:ios-recovery && bun run test:ios-resume && bun run test:ios-tail-handoff && bun run test:ios-tui-render && bun run test:p8-error && bun run test:ios-tui-routing && bun run test:ios-updater-sync-validation && bun run test:ios-verify-app && bun run test:platform-flow-contract && bun run test:tail-engine-shared",
     "test:build-platform-selection": "bun test/test-build-platform-selection.mjs",
     "test:ai-log-capture": "bun test/test-ai-log-capture.mjs",
     "test:ai-analyze-flow": "bun test/test-ai-analyze-flow.mjs",

package/dist/src/build/onboarding/android/flow.d.ts

@@ -21,6 +21,13 @@ import type { WorkflowWriteOptions, WorkflowWriteResult } from '../workflow-writ
  * MCP bridge so both produce identical progress objects.
  */
 export declare function applyGoogleSignIn(progress: AndroidOnboardingProgress, tokens: GoogleOAuthTokens, info: GoogleUserInfo): AndroidOnboardingProgress;
+/**
+ * Apply a BROKER (access-token) Google sign-in. The MCP path receives a short-lived access token from the
+ * Capgo OAuth broker and CANNOT refresh it (the token is issued to the broker's confidential Web client), so
+ * it stores the access token + its expiry and re-signs-in on expiry — no `_oauthRefreshToken`. Mirrors
+ * applyGoogleSignIn for the refresh-token (TUI loopback) path.
+ */
+export declare function applyGoogleSignInBroker(progress: AndroidOnboardingProgress, accessToken: string, expiresAt: number | null, info: GoogleUserInfo): AndroidOnboardingProgress;
 export type AndroidStepKind = 'auto' | 'input' | 'choice' | 'done' | 'error';
 export interface AndroidStepOption {
     value: string;
@@ -289,6 +296,12 @@ export interface AndroidEffectDeps {
      * The driver pre-binds OAuth client config (clientId, clientSecret, scopes).
      */
     startOAuthFlow?: (callbacks?: Pick<RunOAuthFlowOptions, 'onAuthUrl' | 'onStatus'>) => Promise<PendingOAuthSession>;
+    /**
+     * Open a URL in the user's default browser — used by the MCP broker sign-in to (optionally) open the
+     * sign-in link for the user. Best-effort: the engine falls back to showing the link if this throws or is
+     * absent. Optional (the Ink driver never uses it).
+     */
+    openBrowser?: (url: string) => Promise<void>;
     /** Fetch the signed-in user's profile (email, sub). */
     fetchUserInfo: (accessToken: string) => Promise<GoogleUserInfo>;
     /**
@@ -398,6 +411,12 @@ export interface AndroidEffectDeps {
      * Mirrors env-export.ts: defaultExportPath(appId, platform).
      */
     defaultExportPath?: (appId: string, platform: 'ios' | 'android') => string;
+    /**
+     * Lockfile-based package-manager detection (pure, read-only). Drives the
+     * pick-package-manager 'recommended — matches your lockfile' note.
+     * Mirrors @capgo/find-package-manager: findPackageManagerType(cwd, 'npm').
+     */
+    detectPackageManager?: () => string;
     /**
      * Generate the GitHub Actions workflow YAML (pure).
      * Mirrors workflow-generator.ts: generateWorkflow(opts).

package/dist/src/build/onboarding/android/types.d.ts

@@ -85,6 +85,14 @@ export interface AndroidOnboardingProgress extends TailProgress {
         ciSecretsUploaded?: CiSecretsUploaded;
     };
     _oauthRefreshToken?: string;
+    _oauthAccessToken?: string;
+    _oauthAccessTokenExpiresAt?: number;
+    _brokerOAuth?: {
+        pubId: string;
+        pollSecret: string;
+        signInUrl: string;
+        expiresAt: number;
+    };
     _keystoreBase64?: string;
     /** Base64 of the downloaded SA JSON key — saved as PLAY_CONFIG_JSON at end. */
     _serviceAccountKeyBase64?: string;

package/dist/src/build/onboarding/ios/flow.d.ts

@@ -332,6 +332,8 @@ export interface IosEffectDeps {
     uploadCiSecretsAsync?: (target: CiSecretTarget, entries: CiSecretEntry[], existingKeys?: string[], runner?: AsyncCommandRunner, onProgress?: (current: number, total: number, keyName: string) => void) => Promise<void>;
     exportCredentialsToEnv?: (opts: EnvExportOpts) => EnvExportResult;
     defaultExportPath?: (appId: string, platform: 'ios' | 'android') => string;
+    /** Lockfile-based package-manager detection (the pick-package-manager 'recommended' note). */
+    detectPackageManager?: () => string;
     generateWorkflow?: (opts: WorkflowGeneratorOpts) => GeneratedWorkflow;
     writeWorkflowFile?: (opts: WorkflowGeneratorOpts, writeOptions?: WorkflowWriteOptions) => WorkflowWriteResult;
     requestBuildInternal?: (appId: string, options: BuildRequestOptions, silent?: boolean, logger?: BuildLogger) => Promise<BuildRequestResult>;
@@ -432,6 +434,17 @@ export interface IosEffectDeps {
          * resume that lost the in-memory state.
          */
         importedP12Password?: string;
+        /**
+         * The existing Apple Distribution certs surfaced when the per-team cert
+         * limit was hit (cert-limit recovery). Produced by `creating-certificate`
+         * into transient.existingCerts; the driver threads the list back here so a
+         * parked `cert-limit-prompt` re-renders (and resolves the user's pick by
+         * cert id) WITHOUT re-hitting Apple. EPHEMERAL — never persisted (the TUI's
+         * `existingCerts` React state); cleared together with `certToRevoke` after
+         * a successful revoke. A restart that loses it re-enters via a fresh
+         * creating-certificate attempt, which re-derives the list.
+         */
+        existingCerts?: AscDistributionCert[];
         /**
          * The cert the user picked at `cert-limit-prompt` (cert-limit recovery). The
          * choice is EPHEMERAL — `applyIosInput` persists nothing; the driver records
@@ -496,6 +509,15 @@ export interface IosEffectDeps {
          * variant. Mirrors the TUI leaving `noMatchReason` untouched on back-nav.
          */
         noMatchReason?: IosNoMatchReason;
+        /**
+         * The failing step's human error message — the error screen's content
+         * (BATCH 8). EPHEMERAL — set by the failing effect into transient.error and
+         * threaded back here by the driver so a parked 'error' view re-renders the
+         * message (iosViewForStep('error') reads ctx.error). NEVER persisted —
+         * mirrors the TUI's setError React state; a crash-recovery resume re-enters
+         * the failing phase fresh.
+         */
+        error?: string;
         /**
          * The step to re-run when the user picks "Try again" on the error screen
          * (BATCH 8). EPHEMERAL — set by the failing effect into transient.retryStep,

package/dist/src/build/onboarding/macos-signing.d.ts

@@ -152,14 +152,24 @@ export interface ResolveHelperBinaryOptions {
     /** Override `process.arch` (tests). */
     arch?: string;
     /**
-     * Override module resolution (tests). Receives the package's
-     * `package.json` specifier; must return its absolute path or throw.
+     * Override module resolution (tests). Each resolver receives the package's
+     * `package.json` specifier and must return its absolute path or throw. Pass an
+     * ARRAY to test the fallback chain (each base is tried in order until one
+     * resolves); a single function is treated as a one-element chain.
      */
-    resolve?: (specifier: string) => string;
+    resolve?: ((specifier: string) => string) | Array<(specifier: string) => string>;
     /** Override the codesign spawn (tests). */
     codesignRunner?: CodesignRunner;
     /** Force the dev env-override gate (tests). Defaults to the build-time flag. */
     allowEnvOverride?: boolean;
+    /**
+     * Project directory to ALSO resolve the helper package from, in addition to the
+     * CLI's own node_modules. Lets a project-local `npm i @capgo/cli-helper-darwin-*`
+     * be picked up even when the CLI runs from a global install or the MCP server
+     * (which doesn't resolve from the user's project). Defaults to `process.cwd()`.
+     * Ignored when `resolve` is provided (tests).
+     */
+    cwd?: string;
 }
 /**
  * Locate the precompiled `helper` binary for this machine and verify its code

package/dist/src/build/onboarding/mcp/app-id-validation.d.ts

@@ -3,6 +3,6 @@
  * that can be embedded in a shell command string without risk of injection.
  *
  * Valid examples:   com.example.app   io.capgo.app_1   com.acme.my-app
- * Invalid examples: com.x; rm -rf ~   com.x$(cmd)   nodots   ""
+ * Invalid examples: com.x; rm -rf ~   com.x$(cmd)   nodots   com-example   foo_bar   ""
  */
 export declare function isSafeAppIdForCommand(appId: string): boolean;

package/dist/src/build/onboarding/mcp/broker-oauth.d.ts

@@ -0,0 +1,30 @@
+export interface BrokerSession {
+    pubId: string;
+    pollSecret: string;
+    signInUrl: string;
+    /** Epoch ms when the sign-in window closes (the broker's 15-min session TTL). */
+    expiresAt: number;
+}
+export type BrokerPollResult = {
+    status: 'pending';
+} | {
+    status: 'awaiting_code';
+    error?: string;
+} | {
+    status: 'done';
+    accessToken: string;
+    expiresAt: number | null;
+} | {
+    status: 'error';
+    error: string;
+};
+/** Create a broker sign-in session for `appId`. Throws on a transport/HTTP failure. */
+export declare function createBrokerSession(appId: string): Promise<BrokerSession>;
+/**
+ * Poll a broker session. Pass `confirmCode` (the code the user read off the success page) to release the
+ * token — the broker withholds it (status 'awaiting_code') until the matching code is presented.
+ */
+export declare function pollBrokerSession(session: {
+    pubId: string;
+    pollSecret: string;
+}, confirmCode?: string): Promise<BrokerPollResult>;

package/dist/src/build/onboarding/mcp/broker-session.d.ts

@@ -0,0 +1,19 @@
+export interface BrokerSessionState {
+    status: 'absent' | 'pending' | 'awaiting_code' | 'done' | 'error';
+    /** The Google sign-in URL the user opens — present once a session exists. */
+    signInUrl?: string;
+    /** Short-lived Google access token, only on 'done'. */
+    accessToken?: string;
+    /** Epoch ms the access token expires, on 'done'. */
+    expiresAt?: number | null;
+    /** Human-readable failure reason for 'awaiting_code' (wrong code) / 'error'. */
+    error?: string;
+}
+/** Create a broker sign-in session for `appId`, persist its handle, and return the URL to show the user. */
+export declare function brokerBegin(appId: string, baseDir?: string): Promise<{
+    signInUrl: string;
+}>;
+/** Poll the persisted broker session. Pass `confirmCode` (the code the user read off the page) to release the token. */
+export declare function brokerPoll(appId: string, confirmCode?: string, baseDir?: string): Promise<BrokerSessionState>;
+/** Drop the in-flight broker session handle (reopen / error recovery). */
+export declare function brokerClear(appId: string, baseDir?: string): Promise<void>;

package/dist/src/build/onboarding/mcp/build-job.d.ts

@@ -0,0 +1,94 @@
+import type { BuildOutputRecord } from '../../output-record.js';
+import type { Platform } from './contract.js';
+export type BuildJobStatus = 'running' | 'completed' | 'failed' | 'cancelled' | 'unknown';
+export interface BuildJobResult {
+    jobId: string;
+    status: BuildJobStatus;
+    platform: Platform;
+    appId: string;
+    /** Absolute path to the local log file the user can tail. NEVER read by the agent directly. */
+    logsPath: string;
+    outputUrl?: string;
+    qrCodeAscii?: string;
+    error?: string;
+    /** True when start found an in-flight build for this target and returned it instead of starting a second. */
+    alreadyRunning?: boolean;
+}
+/** A handle to the spawned build process (injectable so tests never spawn anything). */
+export interface BuildChild {
+    pid: number;
+    kill: (signal?: NodeJS.Signals) => void;
+    /** Resolves with the exit code (or null on signal) when the process exits. */
+    exited: Promise<number | null>;
+}
+export interface BuildJobDeps {
+    /** Spawn the build command, streaming stdout+stderr to `logPath`. Returns a handle. */
+    spawnBuild: (args: {
+        appId: string;
+        platform: Platform;
+        recordPath: string;
+        logPath: string;
+    }) => BuildChild;
+    buildRecordPath: (appId: string, platform: Platform) => string;
+    /** Read the build record; resolves null when absent, THROWS on a present-but-corrupt record. */
+    readBuildRecord: (path: string) => Promise<BuildOutputRecord | null>;
+    /** Remove a stale record before a fresh build so wait can't read last run's result as this one's. */
+    clearBuildRecord?: (path: string) => Promise<void>;
+    /** Absolute path of the local log file for a target. */
+    logPath: (appId: string, platform: Platform) => string;
+    /** Read `logPath` from byte offset `cursor`; returns new text, the next cursor, and whether at EOF. */
+    readLogSlice: (logPath: string, cursor: number) => Promise<{
+        text: string;
+        nextCursor: number;
+        eof: boolean;
+    }>;
+    /** Best-effort cloud cancel by the cloud jobId (POST /build/cancel/:jobId). Optional. */
+    cancelCloud?: (cloudJobId: string) => Promise<void>;
+    /** Injected so the bounded wait loop is deterministic in tests. */
+    sleep: (ms: number) => Promise<void>;
+    now: () => number;
+}
+/** Bounded wait window (seconds), kept under the ~60s client tool-call timeout. */
+export declare const DEFAULT_WAIT_SECONDS = 40;
+export declare const MAX_WAIT_SECONDS = 59;
+/** Drop every tracked build job (test isolation only). */
+export declare function clearAllBuildJobs(): void;
+/**
+ * Start (or re-attach to) the cloud build for a target. Idempotent: if a build
+ * for this (appId, platform) is already running this session, returns that job
+ * instead of spawning a second.
+ */
+export declare function startBuild(deps: BuildJobDeps, args: {
+    appId: string;
+    platform: Platform;
+}): Promise<BuildJobResult>;
+/**
+ * Bounded wait: block up to `timeoutSeconds` (default 40, max 59 — kept under the
+ * client tool-call timeout), returning the instant the build reaches a terminal
+ * state, otherwise 'running' for the caller to re-call.
+ */
+export declare function waitBuild(deps: BuildJobDeps, args: {
+    jobId: string;
+    timeoutSeconds?: number;
+}): Promise<BuildJobResult>;
+/** Non-blocking status peek. */
+export declare function statusBuild(deps: BuildJobDeps, args: {
+    jobId: string;
+}): Promise<BuildJobResult>;
+/**
+ * Drain new log output since `cursor`. `eof` is true only once the build is
+ * terminal AND the read reached the end of the file, so a streamer knows to stop.
+ */
+export declare function buildLogs(deps: BuildJobDeps, args: {
+    jobId: string;
+    cursor?: number;
+}): Promise<{
+    jobId: string;
+    text: string;
+    nextCursor: number;
+    eof: boolean;
+}>;
+/** Cancel a running build: kill the local child + best-effort cloud cancel. */
+export declare function cancelBuild(deps: BuildJobDeps, args: {
+    jobId: string;
+}): Promise<BuildJobResult>;

package/dist/src/build/onboarding/mcp/build-tools.d.ts

@@ -0,0 +1,25 @@
+import type { BuildJobDeps } from './build-job.js';
+/** Minimal shape of the MCP server's tool registrar (matches McpServer.tool / McpLike). */
+interface ToolRegistrar {
+    tool: (name: string, description: string, schema: Record<string, unknown>, handler: (args: any) => Promise<{
+        content: Array<{
+            type: 'text';
+            text: string;
+        }>;
+    }>) => unknown;
+}
+/**
+ * Production build-job deps: spawn the published CLI's `build request` as a
+ * tracked background child streaming to a local log file, read/clear the build
+ * record, and drain the log file by byte offset. No cloud cancel in v1 (cancel
+ * stops the local watcher; the cloud build may still finish — surfaced in the
+ * result). All injectable for tests (test-mcp-build-job covers the manager).
+ */
+export declare function buildJobDeps(cwd: string): BuildJobDeps;
+/**
+ * Register the build tools onto an MCP server. `getAppId` resolves the current
+ * project's Capgo app id; `deps` are the build-job mechanics (production via
+ * buildJobDeps; injectable fakes in tests).
+ */
+export declare function registerBuildTools(server: ToolRegistrar, getAppId: () => Promise<string | undefined>, deps: BuildJobDeps): void;
+export {};

package/dist/src/build/onboarding/mcp/credentials-manage.d.ts

@@ -0,0 +1,79 @@
+import { z } from 'zod';
+import { loadSavedCredentials, removeSavedCredentialKeys, updateSavedCredentials } from '../../credentials.js';
+import { exportCredentialsToEnv } from '../env-export.js';
+/** The canonical Capgo credential field names (buildCredentialsSchema). Used only for a gentle typo nudge. */
+export declare const KNOWN_CREDENTIAL_KEYS: ReadonlySet<string>;
+/**
+ * Screen a valueFile path BEFORE reading it. The MCP caller (an LLM) supplies this path, so an injected
+ * prompt could try to read ~/.ssh/id_ed25519 or another app's ~/.capgo-credentials into the store (which
+ * is then sent to the build server). Allow only credential-file extensions, and never read from a known
+ * secret directory. Returns an error string to surface to the caller, or null when the path is acceptable.
+ */
+export declare function screenValueFilePath(filePath: string): string | null;
+/**
+ * Screen an export targetPath: the .env (which holds real secrets) must stay INSIDE the project
+ * directory so the tool can never be steered into writing to e.g. /etc/cron.d or ~/.bashrc. Returns an
+ * error string, or null when the path stays in the project.
+ */
+export declare function screenExportPath(targetPath: string, projectDir: string): string | null;
+export interface CredentialsManageInput {
+    action: 'list' | 'export' | 'set' | 'remove';
+    platform?: 'ios' | 'android';
+    key?: string;
+    value?: string;
+    /** For set: a path to a credential file whose base64 becomes the value (keystores, .p12, .p8, service-account JSON). */
+    valueFile?: string;
+    path?: string;
+    overwrite?: boolean;
+    appId?: string;
+}
+/** Injectable seam — the registration wires the real credential store + env export; tests pass fakes. */
+export interface CredentialsManageDeps {
+    getAppId: () => Promise<string | undefined>;
+    loadSavedCredentials: (appId: string) => Promise<Awaited<ReturnType<typeof loadSavedCredentials>>>;
+    updateSavedCredentials: typeof updateSavedCredentials;
+    removeSavedCredentialKeys: typeof removeSavedCredentialKeys;
+    exportCredentialsToEnv: typeof exportCredentialsToEnv;
+    /** Read a file and return its base64 — used by set + valueFile. Must reject symlinks. */
+    readFileBase64: (path: string) => Promise<string>;
+    /** True when a project-local .capgo-credentials.json holds this app — so set/remove write there, not global. */
+    localCredentialsExist: (appId: string) => Promise<boolean>;
+}
+/** Build the real deps (global credential store) bound to a getAppId resolver. */
+export declare function buildCredentialsManageDeps(getAppId: () => Promise<string | undefined>): CredentialsManageDeps;
+/**
+ * Run one credentials-manage action and return human-facing text (the MCP tool wraps it as a text block).
+ * Returns guidance instead of throwing for every expected "can't do that" case so the assistant can recover.
+ */
+export declare function runCredentialsManage(input: CredentialsManageInput, deps: CredentialsManageDeps): Promise<string>;
+/** zod shape for the tool's arguments. */
+export declare const credentialsManageSchema: {
+    action: z.ZodEnum<{
+        set: "set";
+        list: "list";
+        export: "export";
+        remove: "remove";
+    }>;
+    platform: z.ZodOptional<z.ZodEnum<{
+        android: "android";
+        ios: "ios";
+    }>>;
+    key: z.ZodOptional<z.ZodString>;
+    value: z.ZodOptional<z.ZodString>;
+    valueFile: z.ZodOptional<z.ZodString>;
+    path: z.ZodOptional<z.ZodString>;
+    overwrite: z.ZodOptional<z.ZodBoolean>;
+    appId: z.ZodOptional<z.ZodString>;
+};
+/** Minimal MCP server surface this registers against (mirrors onboarding-tools' McpLike.tool). */
+interface ToolRegistrar {
+    tool: (name: string, description: string, schema: Record<string, unknown>, handler: (args: CredentialsManageInput) => Promise<{
+        content: Array<{
+            type: 'text';
+            text: string;
+        }>;
+    }>) => unknown;
+}
+/** Register `capgo_builder_credentials_manage` on the given MCP server, bound to a getAppId resolver. */
+export declare function registerCredentialsManageTool(server: ToolRegistrar, getAppId: () => Promise<string | undefined>, depsOverride?: CredentialsManageDeps): void;
+export {};