@clef-sh/cli 0.1.0

package/dist/commands/doctor.js

@@ -0,0 +1,331 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.registerDoctorCommand = registerDoctorCommand;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const YAML = __importStar(require("yaml"));
+const core_1 = require("@clef-sh/core");
+const formatter_1 = require("../output/formatter");
+const symbols_1 = require("../output/symbols");
+const init_1 = require("./init");
+function registerDoctorCommand(program, deps) {
+    program
+        .command("doctor")
+        .description("Check your environment for required dependencies and configuration.\n\n" +
+        "Exit codes:\n" +
+        "  0  All checks pass\n" +
+        "  1  One or more checks failed")
+        .option("--json", "Output the full status as JSON")
+        .option("--fix", "Attempt to auto-fix issues (runs clef init if .sops.yaml is the only failure)")
+        .action(async (options) => {
+        const repoRoot = program.opts().repo || process.cwd();
+        const clefVersion = program.version() ?? "unknown";
+        const checks = [];
+        const depStatus = await (0, core_1.checkAll)(deps.runner);
+        // 1. Clef version (always passes)
+        checks.push({
+            name: "clef",
+            ok: true,
+            detail: `v${clefVersion}`,
+        });
+        // 2. sops
+        if (depStatus.sops) {
+            checks.push({
+                name: "sops",
+                ok: depStatus.sops.satisfied,
+                detail: depStatus.sops.satisfied
+                    ? `v${depStatus.sops.installed}    (required >= ${depStatus.sops.required})`
+                    : `v${depStatus.sops.installed}    (required >= ${depStatus.sops.required})`,
+                hint: depStatus.sops.satisfied ? undefined : depStatus.sops.installHint,
+            });
+        }
+        else {
+            checks.push({
+                name: "sops",
+                ok: false,
+                detail: "not installed",
+                hint: getSopsInstallHint(),
+            });
+        }
+        // 3. git
+        if (depStatus.git) {
+            checks.push({
+                name: "git",
+                ok: depStatus.git.satisfied,
+                detail: depStatus.git.satisfied
+                    ? `v${depStatus.git.installed}    (required >= ${depStatus.git.required})`
+                    : `v${depStatus.git.installed}    (required >= ${depStatus.git.required})`,
+                hint: depStatus.git.satisfied ? undefined : depStatus.git.installHint,
+            });
+        }
+        else {
+            checks.push({
+                name: "git",
+                ok: false,
+                detail: "not installed",
+                hint: "see https://git-scm.com/downloads",
+            });
+        }
+        // 5. manifest
+        const manifestPath = path.join(repoRoot, "clef.yaml");
+        const manifestFound = fs.existsSync(manifestPath);
+        checks.push({
+            name: "manifest",
+            ok: manifestFound,
+            detail: manifestFound ? "clef.yaml found" : "clef.yaml not found",
+            hint: manifestFound ? undefined : "run: clef init",
+        });
+        // 6. age key
+        const ageKeyResult = checkAgeKey(repoRoot);
+        checks.push(ageKeyResult);
+        // 7. .sops.yaml
+        const sopsYamlPath = path.join(repoRoot, ".sops.yaml");
+        const sopsYamlFound = fs.existsSync(sopsYamlPath);
+        checks.push({
+            name: ".sops.yaml",
+            ok: sopsYamlFound,
+            detail: sopsYamlFound ? "found" : "not found",
+            hint: sopsYamlFound ? undefined : "run: clef init",
+        });
+        // 8. .clefignore
+        const clefignorePath = path.join(repoRoot, ".clefignore");
+        const clefignoreFound = fs.existsSync(clefignorePath);
+        let clefignoreRuleCount = 0;
+        if (clefignoreFound) {
+            try {
+                const content = fs.readFileSync(clefignorePath, "utf-8");
+                clefignoreRuleCount = content
+                    .split("\n")
+                    .filter((l) => l.trim() && !l.trim().startsWith("#") && !l.trim().startsWith("ignore-pattern:")).length;
+            }
+            catch {
+                // unreadable — count stays 0
+            }
+        }
+        checks.push({
+            name: "scanner",
+            ok: clefignoreFound,
+            detail: clefignoreFound
+                ? `.clefignore found (${clefignoreRuleCount} rules)`
+                : "no .clefignore found",
+            hint: clefignoreFound
+                ? undefined
+                : "run clef init or create manually — see https://docs.clef.sh/cli/scan#clefignore",
+        });
+        // 9. merge driver
+        const git = new core_1.GitIntegration(deps.runner);
+        const mergeDriverStatus = await git.checkMergeDriver(repoRoot);
+        const mergeDriverOk = mergeDriverStatus.gitConfig && mergeDriverStatus.gitattributes;
+        const mergeDriverDetails = [];
+        if (!mergeDriverStatus.gitConfig)
+            mergeDriverDetails.push("git config missing");
+        if (!mergeDriverStatus.gitattributes)
+            mergeDriverDetails.push(".gitattributes missing");
+        checks.push({
+            name: "merge driver",
+            ok: mergeDriverOk,
+            detail: mergeDriverOk ? "SOPS merge driver configured" : mergeDriverDetails.join(", "),
+            hint: mergeDriverOk ? undefined : "run: clef hooks install",
+        });
+        // --fix: if the only failure is .sops.yaml missing, run clef init
+        if (options.fix) {
+            const failures = checks.filter((c) => !c.ok);
+            const onlySopsYamlMissing = failures.length === 1 && failures[0].name === ".sops.yaml" && !sopsYamlFound;
+            if (onlySopsYamlMissing) {
+                formatter_1.formatter.info("Attempting to fix: generating .sops.yaml from manifest...");
+                try {
+                    (0, init_1.scaffoldSopsConfig)(repoRoot);
+                    const nowFound = fs.existsSync(sopsYamlPath);
+                    if (nowFound) {
+                        const sopsYamlCheck = checks.find((c) => c.name === ".sops.yaml");
+                        if (sopsYamlCheck) {
+                            sopsYamlCheck.ok = true;
+                            sopsYamlCheck.detail = "found (fixed)";
+                            delete sopsYamlCheck.hint;
+                        }
+                        formatter_1.formatter.success(".sops.yaml created from manifest.");
+                    }
+                }
+                catch {
+                    formatter_1.formatter.error("Failed to generate .sops.yaml. Run 'clef init' manually to diagnose.");
+                }
+            }
+            else if (failures.length > 0) {
+                formatter_1.formatter.warn("--fix cannot resolve these issues automatically.");
+            }
+        }
+        // JSON output
+        if (options.json) {
+            const json = {
+                clef: { version: clefVersion, ok: true },
+                sops: {
+                    version: depStatus.sops?.installed ?? null,
+                    required: core_1.REQUIREMENTS.sops,
+                    ok: depStatus.sops?.satisfied ?? false,
+                },
+                git: {
+                    version: depStatus.git?.installed ?? null,
+                    required: core_1.REQUIREMENTS.git,
+                    ok: depStatus.git?.satisfied ?? false,
+                },
+                manifest: { found: manifestFound, ok: manifestFound },
+                ageKey: {
+                    source: ageKeyResult.ok ? (process.env.SOPS_AGE_KEY ? "env" : "file") : null,
+                    recipients: countAgeRecipients(sopsYamlPath),
+                    ok: ageKeyResult.ok,
+                },
+                sopsYaml: {
+                    found: checks.find((c) => c.name === ".sops.yaml").ok,
+                    ok: checks.find((c) => c.name === ".sops.yaml").ok,
+                    ...(!checks.find((c) => c.name === ".sops.yaml").ok ? { fix: "clef init" } : {}),
+                },
+                scanner: {
+                    clefignoreFound: checks.find((c) => c.name === "scanner")?.ok ?? false,
+                    ok: checks.find((c) => c.name === "scanner")?.ok ?? false,
+                },
+                mergeDriver: {
+                    gitConfig: mergeDriverStatus.gitConfig,
+                    gitattributes: mergeDriverStatus.gitattributes,
+                    ok: mergeDriverOk,
+                },
+            };
+            formatter_1.formatter.raw(JSON.stringify(json, null, 2) + "\n");
+            const hasFailures = checks.some((c) => !c.ok);
+            process.exit(hasFailures ? 1 : 0);
+            return;
+        }
+        // Pretty output
+        formatter_1.formatter.print("\nDiagnosing...\n");
+        const nameWidth = Math.max(...checks.map((c) => c.name.length));
+        for (const check of checks) {
+            const icon = check.ok ? (0, symbols_1.sym)("success") : (0, symbols_1.sym)("failure");
+            const name = check.name.padEnd(nameWidth);
+            formatter_1.formatter.print(`${icon} ${name}  ${check.detail}`);
+            if (check.hint) {
+                formatter_1.formatter.hint(check.hint);
+            }
+        }
+        formatter_1.formatter.print("");
+        const failures = checks.filter((c) => !c.ok);
+        if (failures.length === 0) {
+            formatter_1.formatter.success("Everything looks good.");
+        }
+        else {
+            formatter_1.formatter.error(`${failures.length} issue${failures.length > 1 ? "s" : ""} found.`);
+        }
+        formatter_1.formatter.hint("clef scan \u2014 check for plaintext secrets");
+        process.exit(failures.length > 0 ? 1 : 0);
+    });
+}
+function checkAgeKey(repoRoot) {
+    // Check SOPS_AGE_KEY env var first
+    if (process.env.SOPS_AGE_KEY) {
+        return {
+            name: "age key",
+            ok: true,
+            detail: "loaded (via SOPS_AGE_KEY env var)",
+        };
+    }
+    // Check SOPS_AGE_KEY_FILE or default path
+    const defaultKeyPath = path.join(process.env.HOME || process.env.USERPROFILE || "", ".config", "sops", "age", "keys.txt");
+    const sopsAgeKeyFile = process.env.SOPS_AGE_KEY_FILE || defaultKeyPath;
+    if (fs.existsSync(sopsAgeKeyFile)) {
+        return {
+            name: "age key",
+            ok: true,
+            detail: `loaded (from ${sopsAgeKeyFile})`,
+        };
+    }
+    // Check .clef/config.yaml age_key_file
+    const clefConfigPath = path.join(repoRoot, ".clef", "config.yaml");
+    if (fs.existsSync(clefConfigPath)) {
+        try {
+            const configContent = fs.readFileSync(clefConfigPath, "utf-8");
+            const config = YAML.parse(configContent);
+            if (config?.age_key_file) {
+                if (fs.existsSync(config.age_key_file)) {
+                    return {
+                        name: "age key",
+                        ok: true,
+                        detail: `loaded (from ${config.age_key_file})`,
+                    };
+                }
+            }
+        }
+        catch {
+            // Failed to parse config — fall through
+        }
+    }
+    return {
+        name: "age key",
+        ok: false,
+        detail: "not configured",
+        hint: "set SOPS_AGE_KEY_FILE or run: clef init to auto-generate your age key",
+    };
+}
+function countAgeRecipients(sopsYamlPath) {
+    try {
+        if (!fs.existsSync(sopsYamlPath))
+            return 0;
+        const content = fs.readFileSync(sopsYamlPath, "utf-8");
+        const config = YAML.parse(content);
+        if (!config?.creation_rules || !Array.isArray(config.creation_rules)) {
+            return 0;
+        }
+        const recipients = new Set();
+        for (const rule of config.creation_rules) {
+            if (typeof rule.age === "string") {
+                // age field may contain comma-separated recipients
+                for (const r of rule.age.split(",")) {
+                    const trimmed = r.trim();
+                    if (trimmed) {
+                        recipients.add(trimmed);
+                    }
+                }
+            }
+        }
+        return recipients.size;
+    }
+    catch {
+        return 0;
+    }
+}
+function getSopsInstallHint() {
+    if (process.platform === "darwin")
+        return "brew install sops";
+    return "see https://github.com/getsops/sops/releases";
+}
+//# sourceMappingURL=doctor.js.map

package/dist/commands/doctor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"doctor.js","sourceRoot":"","sources":["../../src/commands/doctor.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA2BA,sDAoOC;AA/PD,uCAAyB;AACzB,2CAA6B;AAC7B,2CAA6B;AAE7B,wCAAyF;AACzF,mDAAgD;AAChD,+CAAwC;AACxC,iCAA4C;AAoB5C,SAAgB,qBAAqB,CAAC,OAAgB,EAAE,IAAkC;IACxF,OAAO;SACJ,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CACV,yEAAyE;QACvE,eAAe;QACf,wBAAwB;QACxB,gCAAgC,CACnC;SACA,MAAM,CAAC,QAAQ,EAAE,gCAAgC,CAAC;SAClD,MAAM,CACL,OAAO,EACP,+EAA+E,CAChF;SACA,MAAM,CAAC,KAAK,EAAE,OAA0C,EAAE,EAAE;QAC3D,MAAM,QAAQ,GAAI,OAAO,CAAC,IAAI,EAAE,CAAC,IAAe,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QAClE,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,EAAE,IAAI,SAAS,CAAC;QAEnD,MAAM,MAAM,GAAwB,EAAE,CAAC;QACvC,MAAM,SAAS,GAAG,MAAM,IAAA,eAAQ,EAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAE9C,kCAAkC;QAClC,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,MAAM;YACZ,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,IAAI,WAAW,EAAE;SAC1B,CAAC,CAAC;QAEH,UAAU;QACV,IAAI,SAAS,CAAC,IAAI,EAAE,CAAC;YACnB,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,MAAM;gBACZ,EAAE,EAAE,SAAS,CAAC,IAAI,CAAC,SAAS;gBAC5B,MAAM,EAAE,SAAS,CAAC,IAAI,CAAC,SAAS;oBAC9B,CAAC,CAAC,IAAI,SAAS,CAAC,IAAI,CAAC,SAAS,oBAAoB,SAAS,CAAC,IAAI,CAAC,QAAQ,GAAG;oBAC5E,CAAC,CAAC,IAAI,SAAS,CAAC,IAAI,CAAC,SAAS,oBAAoB,SAAS,CAAC,IAAI,CAAC,QAAQ,GAAG;gBAC9E,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,WAAW;aACxE,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,MAAM;gBACZ,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,eAAe;gBACvB,IAAI,EAAE,kBAAkB,EAAE;aAC3B,CAAC,CAAC;QACL,CAAC;QAED,SAAS;QACT,IAAI,SAAS,CAAC,GAAG,EAAE,CAAC;YAClB,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,KAAK;gBACX,EAAE,EAAE,SAAS,CAAC,GAAG,CAAC,SAAS;gBAC3B,MAAM,EAAE,SAAS,CAAC,GAAG,CAAC,SAAS;oBAC7B,CAAC,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,SAAS,oBAAoB,SAAS,CAAC,GAAG,CAAC,QAAQ,GAAG;oBAC1E,CAAC,CAAC,IAAI,SAAS,CAAC,GAAG,CAAC,SAAS,oBAAoB,SAAS,CAAC,GAAG,CAAC,QAAQ,GAAG;gBAC5E,IAAI,EAAE,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,GAAG,CAAC,WAAW;aACtE,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,KAAK;gBACX,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,eAAe;gBACvB,IAAI,EAAE,mCAAmC;aAC1C,CAAC,CAAC;QACL,CAAC;QAED,cAAc;QACd,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC;QACtD,MAAM,aAAa,GAAG,EAAE,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;QAClD,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,UAAU;YAChB,EAAE,EAAE,aAAa;YACjB,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,qBAAqB;YACjE,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,gBAAgB;SACnD,CAAC,CAAC;QAEH,aAAa;QACb,MAAM,YAAY,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;QAC3C,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAE1B,gBAAgB;QAChB,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;QACvD,MAAM,aAAa,GAAG,EAAE,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;QAClD,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,YAAY;YAClB,EAAE,EAAE,aAAa;YACjB,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,WAAW;YAC7C,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,gBAAgB;SACnD,CAAC,CAAC;QAEH,iBAAiB;QACjB,MAAM,cAAc,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;QAC1D,MAAM,eAAe,GAAG,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;QACtD,IAAI,mBAAmB,GAAG,CAAC,CAAC;QAC5B,IAAI,eAAe,EAAE,CAAC;YACpB,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;gBACzD,mBAAmB,GAAG,OAAO;qBAC1B,KAAK,CAAC,IAAI,CAAC;qBACX,MAAM,CACL,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,iBAAiB,CAAC,CACnF,CAAC,MAAM,CAAC;YACb,CAAC;YAAC,MAAM,CAAC;gBACP,6BAA6B;YAC/B,CAAC;QACH,CAAC;QACD,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,eAAe;YACnB,MAAM,EAAE,eAAe;gBACrB,CAAC,CAAC,sBAAsB,mBAAmB,SAAS;gBACpD,CAAC,CAAC,sBAAsB;YAC1B,IAAI,EAAE,eAAe;gBACnB,CAAC,CAAC,SAAS;gBACX,CAAC,CAAC,iFAAiF;SACtF,CAAC,CAAC;QAEH,kBAAkB;QAClB,MAAM,GAAG,GAAG,IAAI,qBAAc,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5C,MAAM,iBAAiB,GAAG,MAAM,GAAG,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;QAC/D,MAAM,aAAa,GAAG,iBAAiB,CAAC,SAAS,IAAI,iBAAiB,CAAC,aAAa,CAAC;QACrF,MAAM,kBAAkB,GAAa,EAAE,CAAC;QACxC,IAAI,CAAC,iBAAiB,CAAC,SAAS;YAAE,kBAAkB,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QAChF,IAAI,CAAC,iBAAiB,CAAC,aAAa;YAAE,kBAAkB,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QACxF,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,cAAc;YACpB,EAAE,EAAE,aAAa;YACjB,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,8BAA8B,CAAC,CAAC,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC;YACtF,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,yBAAyB;SAC5D,CAAC,CAAC;QAEH,kEAAkE;QAClE,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;YAChB,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAC7C,MAAM,mBAAmB,GACvB,QAAQ,CAAC,MAAM,KAAK,CAAC,IAAI,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,IAAI,CAAC,aAAa,CAAC;YAE/E,IAAI,mBAAmB,EAAE,CAAC;gBACxB,qBAAS,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC;gBAC5E,IAAI,CAAC;oBACH,IAAA,yBAAkB,EAAC,QAAQ,CAAC,CAAC;oBAC7B,MAAM,QAAQ,GAAG,EAAE,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;oBAC7C,IAAI,QAAQ,EAAE,CAAC;wBACb,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,CAAC,CAAC;wBAClE,IAAI,aAAa,EAAE,CAAC;4BAClB,aAAa,CAAC,EAAE,GAAG,IAAI,CAAC;4BACxB,aAAa,CAAC,MAAM,GAAG,eAAe,CAAC;4BACvC,OAAO,aAAa,CAAC,IAAI,CAAC;wBAC5B,CAAC;wBACD,qBAAS,CAAC,OAAO,CAAC,mCAAmC,CAAC,CAAC;oBACzD,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,qBAAS,CAAC,KAAK,CAAC,sEAAsE,CAAC,CAAC;gBAC1F,CAAC;YACH,CAAC;iBAAM,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC/B,qBAAS,CAAC,IAAI,CAAC,kDAAkD,CAAC,CAAC;YACrE,CAAC;QACH,CAAC;QAED,cAAc;QACd,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,MAAM,IAAI,GAAqB;gBAC7B,IAAI,EAAE,EAAE,OAAO,EAAE,WAAW,EAAE,EAAE,EAAE,IAAI,EAAE;gBACxC,IAAI,EAAE;oBACJ,OAAO,EAAE,SAAS,CAAC,IAAI,EAAE,SAAS,IAAI,IAAI;oBAC1C,QAAQ,EAAE,mBAAY,CAAC,IAAI;oBAC3B,EAAE,EAAE,SAAS,CAAC,IAAI,EAAE,SAAS,IAAI,KAAK;iBACvC;gBACD,GAAG,EAAE;oBACH,OAAO,EAAE,SAAS,CAAC,GAAG,EAAE,SAAS,IAAI,IAAI;oBACzC,QAAQ,EAAE,mBAAY,CAAC,GAAG;oBAC1B,EAAE,EAAE,SAAS,CAAC,GAAG,EAAE,SAAS,IAAI,KAAK;iBACtC;gBACD,QAAQ,EAAE,EAAE,KAAK,EAAE,aAAa,EAAE,EAAE,EAAE,aAAa,EAAE;gBACrD,MAAM,EAAE;oBACN,MAAM,EAAE,YAAY,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI;oBAC5E,UAAU,EAAE,kBAAkB,CAAC,YAAY,CAAC;oBAC5C,EAAE,EAAE,YAAY,CAAC,EAAE;iBACpB;gBACD,QAAQ,EAAE;oBACR,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,CAAE,CAAC,EAAE;oBACtD,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,CAAE,CAAC,EAAE;oBACnD,GAAG,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,CAAE,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;iBAClF;gBACD,OAAO,EAAE;oBACP,eAAe,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,SAAS,CAAC,EAAE,EAAE,IAAI,KAAK;oBACtE,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,SAAS,CAAC,EAAE,EAAE,IAAI,KAAK;iBAC1D;gBACD,WAAW,EAAE;oBACX,SAAS,EAAE,iBAAiB,CAAC,SAAS;oBACtC,aAAa,EAAE,iBAAiB,CAAC,aAAa;oBAC9C,EAAE,EAAE,aAAa;iBAClB;aACF,CAAC;YAEF,qBAAS,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;YACpD,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAC9C,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAClC,OAAO;QACT,CAAC;QAED,gBAAgB;QAChB,qBAAS,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;QAErC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC;QAEhE,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,MAAM,IAAI,GAAG,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,IAAA,aAAG,EAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAA,aAAG,EAAC,SAAS,CAAC,CAAC;YACxD,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YAC1C,qBAAS,CAAC,KAAK,CAAC,GAAG,IAAI,IAAI,IAAI,KAAK,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;YACpD,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;gBACf,qBAAS,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAC7B,CAAC;QACH,CAAC;QAED,qBAAS,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAEpB,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAC7C,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,qBAAS,CAAC,OAAO,CAAC,wBAAwB,CAAC,CAAC;QAC9C,CAAC;aAAM,CAAC;YACN,qBAAS,CAAC,KAAK,CAAC,GAAG,QAAQ,CAAC,MAAM,SAAS,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC;QACtF,CAAC;QAED,qBAAS,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAC;QAC/D,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;AACP,CAAC;AAED,SAAS,WAAW,CAAC,QAAgB;IACnC,mCAAmC;IACnC,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC;QAC7B,OAAO;YACL,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,mCAAmC;SAC5C,CAAC;IACJ,CAAC;IAED,0CAA0C;IAC1C,MAAM,cAAc,GAAG,IAAI,CAAC,IAAI,CAC9B,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,EAAE,EACjD,SAAS,EACT,MAAM,EACN,KAAK,EACL,UAAU,CACX,CAAC;IACF,MAAM,cAAc,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,cAAc,CAAC;IAEvE,IAAI,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;QAClC,OAAO;YACL,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,gBAAgB,cAAc,GAAG;SAC1C,CAAC;IACJ,CAAC;IAED,uCAAuC;IACvC,MAAM,cAAc,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,OAAO,EAAE,aAAa,CAAC,CAAC;IACnE,IAAI,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;QAClC,IAAI,CAAC;YACH,MAAM,aAAa,GAAG,EAAE,CAAC,YAAY,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;YAC/D,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YACzC,IAAI,MAAM,EAAE,YAAY,EAAE,CAAC;gBACzB,IAAI,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC;oBACvC,OAAO;wBACL,IAAI,EAAE,SAAS;wBACf,EAAE,EAAE,IAAI;wBACR,MAAM,EAAE,gBAAgB,MAAM,CAAC,YAAY,GAAG;qBAC/C,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,wCAAwC;QAC1C,CAAC;IACH,CAAC;IAED,OAAO;QACL,IAAI,EAAE,SAAS;QACf,EAAE,EAAE,KAAK;QACT,MAAM,EAAE,gBAAgB;QACxB,IAAI,EAAE,uEAAuE;KAC9E,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,YAAoB;IAC9C,IAAI,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,YAAY,CAAC;YAAE,OAAO,CAAC,CAAC;QAC3C,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACnC,IAAI,CAAC,MAAM,EAAE,cAAc,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,cAAc,CAAC,EAAE,CAAC;YACrE,OAAO,CAAC,CAAC;QACX,CAAC;QACD,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;QACrC,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;YACzC,IAAI,OAAO,IAAI,CAAC,GAAG,KAAK,QAAQ,EAAE,CAAC;gBACjC,mDAAmD;gBACnD,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC;oBACpC,MAAM,OAAO,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;oBACzB,IAAI,OAAO,EAAE,CAAC;wBACZ,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;oBAC1B,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,UAAU,CAAC,IAAI,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,CAAC;IACX,CAAC;AACH,CAAC;AAED,SAAS,kBAAkB;IACzB,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,mBAAmB,CAAC;IAC9D,OAAO,8CAA8C,CAAC;AACxD,CAAC"}

package/dist/commands/exec.d.ts

@@ -0,0 +1,6 @@
+import { Command } from "commander";
+import { SubprocessRunner } from "@clef-sh/core";
+export declare function registerExecCommand(program: Command, deps: {
+    runner: SubprocessRunner;
+}): void;
+//# sourceMappingURL=exec.d.ts.map

package/dist/commands/exec.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"exec.d.ts","sourceRoot":"","sources":["../../src/commands/exec.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAML,gBAAgB,EACjB,MAAM,eAAe,CAAC;AAOvB,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE;IAAE,MAAM,EAAE,gBAAgB,CAAA;CAAE,GAAG,IAAI,CAgI9F"}

package/dist/commands/exec.js

@@ -0,0 +1,187 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.registerExecCommand = registerExecCommand;
+const path = __importStar(require("path"));
+const child_process_1 = require("child_process");
+const core_1 = require("@clef-sh/core");
+const formatter_1 = require("../output/formatter");
+function collect(value, previous) {
+    return previous.concat([value]);
+}
+function registerExecCommand(program, deps) {
+    program
+        .command("exec <target>")
+        .description("Run a command with decrypted secrets injected as environment variables.\n\n" +
+        "  target: namespace/environment (e.g. payments/production)\n\n" +
+        "Everything after -- is the command to run:\n" +
+        "  clef exec payments/production -- node server.js\n\n" +
+        "Exit codes:\n" +
+        "  The exit code matches the child process exactly.\n" +
+        "  1  if Clef itself fails (decryption error, bad arguments)")
+        .option("--only <keys>", "Comma-separated list of keys to inject (ignores all others)")
+        .option("--prefix <string>", "Prefix all injected key names (e.g. --prefix APP_)")
+        .option("--no-override", "Do not override existing environment variables")
+        .option("--also <target>", "Also inject secrets from another namespace/environment (repeatable)", collect, [])
+        .allowUnknownOption(true)
+        .action(async (target, options) => {
+        try {
+            // Parse everything after -- as the child command
+            const dashIndex = process.argv.indexOf("--");
+            if (dashIndex === -1) {
+                formatter_1.formatter.error("Missing command to execute. Use -- to separate the command:\n\n" +
+                    "  clef exec payments/production -- node server.js\n\n" +
+                    "The -- separator is required to distinguish Clef flags from the child command.");
+                process.exit(1);
+                return;
+            }
+            const childArgs = process.argv.slice(dashIndex + 1);
+            if (childArgs.length === 0) {
+                formatter_1.formatter.error("Missing command to execute after --.\n\n" +
+                    "  clef exec payments/production -- node server.js");
+                process.exit(1);
+                return;
+            }
+            const [namespace, environment] = parseTarget(target);
+            const repoRoot = program.opts().repo || process.cwd();
+            const parser = new core_1.ManifestParser();
+            const manifest = parser.parse(path.join(repoRoot, "clef.yaml"));
+            // Warn on protected environments (but do not block)
+            const envDef = manifest.environments.find((e) => e.name === environment);
+            if (envDef?.protected) {
+                formatter_1.formatter.warn(`Executing in protected environment '${environment}'.`);
+            }
+            const sopsClient = new core_1.SopsClient(deps.runner);
+            // Decrypt primary target
+            const primaryFilePath = path.join(repoRoot, manifest.file_pattern
+                .replace("{namespace}", namespace)
+                .replace("{environment}", environment));
+            const primaryDecrypted = await sopsClient.decrypt(primaryFilePath);
+            // Merge values: primary first, then --also targets in order (later overrides earlier)
+            let mergedValues = { ...primaryDecrypted.values };
+            for (const alsoTarget of options.also) {
+                try {
+                    const [alsoNs, alsoEnv] = parseTarget(alsoTarget);
+                    const alsoFilePath = path.join(repoRoot, manifest.file_pattern
+                        .replace("{namespace}", alsoNs)
+                        .replace("{environment}", alsoEnv));
+                    const alsoDecrypted = await sopsClient.decrypt(alsoFilePath);
+                    mergedValues = { ...mergedValues, ...alsoDecrypted.values };
+                }
+                catch (err) {
+                    throw new Error(`Failed to decrypt --also '${alsoTarget}': ${err.message}`);
+                }
+            }
+            const consumption = new core_1.ConsumptionClient();
+            const execOptions = {
+                only: options.only ? options.only.split(",").map((k) => k.trim()) : undefined,
+                prefix: options.prefix,
+                noOverride: !options.override,
+            };
+            const childEnv = consumption.prepareEnvironment({ values: mergedValues, metadata: primaryDecrypted.metadata }, process.env, execOptions);
+            // Spawn child process with inherited stdio — values injected via env, never via shell
+            const childCommand = childArgs[0];
+            const childCommandArgs = childArgs.slice(1);
+            const exitCode = await spawnChild(childCommand, childCommandArgs, childEnv);
+            process.exit(exitCode);
+        }
+        catch (err) {
+            if (err instanceof core_1.SopsMissingError || err instanceof core_1.SopsVersionError) {
+                formatter_1.formatter.formatDependencyError(err);
+                process.exit(1);
+                return;
+            }
+            // Never leak decrypted values in error messages
+            const message = err instanceof Error ? err.message : "Execution failed";
+            formatter_1.formatter.error(message);
+            process.exit(1);
+        }
+    });
+}
+function spawnChild(command, args, env) {
+    return new Promise((resolve) => {
+        let child;
+        try {
+            child = (0, child_process_1.spawn)(command, args, {
+                env,
+                stdio: "inherit",
+            });
+        }
+        catch {
+            formatter_1.formatter.error(`Failed to start command '${command}'. Ensure it exists and is executable.`);
+            resolve(1);
+            return;
+        }
+        child.on("error", () => {
+            formatter_1.formatter.error(`Failed to start command '${command}'. Ensure it exists and is executable.`);
+            resolve(1);
+        });
+        child.on("exit", (code, signal) => {
+            // Clean up signal handlers
+            process.off("SIGTERM", sigtermHandler);
+            process.off("SIGINT", sigintHandler);
+            if (signal) {
+                // Process was killed by a signal — map to conventional exit code
+                const signalCodes = {
+                    SIGHUP: 129,
+                    SIGINT: 130,
+                    SIGTERM: 143,
+                };
+                resolve(signalCodes[signal] ?? 128);
+            }
+            else {
+                resolve(code ?? 1);
+            }
+        });
+        // Forward signals to child with SIGKILL fallback
+        const sigtermHandler = () => {
+            child.kill("SIGTERM");
+            // Give child 5s to clean up, then force kill
+            /* istanbul ignore next -- timer callback only fires if child hangs; not testable without real timers */
+            setTimeout(() => child.kill("SIGKILL"), 5000).unref();
+        };
+        const sigintHandler = () => child.kill("SIGINT");
+        process.on("SIGTERM", sigtermHandler);
+        process.on("SIGINT", sigintHandler);
+    });
+}
+function parseTarget(target) {
+    const parts = target.split("/");
+    if (parts.length !== 2 || !parts[0] || !parts[1]) {
+        throw new Error(`Invalid target "${target}". Expected format: namespace/environment`);
+    }
+    return [parts[0], parts[1]];
+}
+//# sourceMappingURL=exec.js.map

package/dist/commands/exec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"exec.js","sourceRoot":"","sources":["../../src/commands/exec.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiBA,kDAgIC;AAjJD,2CAA6B;AAC7B,iDAAoD;AAEpD,wCAOuB;AACvB,mDAAgD;AAEhD,SAAS,OAAO,CAAC,KAAa,EAAE,QAAkB;IAChD,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;AAClC,CAAC;AAED,SAAgB,mBAAmB,CAAC,OAAgB,EAAE,IAAkC;IACtF,OAAO;SACJ,OAAO,CAAC,eAAe,CAAC;SACxB,WAAW,CACV,6EAA6E;QAC3E,gEAAgE;QAChE,8CAA8C;QAC9C,uDAAuD;QACvD,eAAe;QACf,sDAAsD;QACtD,6DAA6D,CAChE;SACA,MAAM,CAAC,eAAe,EAAE,6DAA6D,CAAC;SACtF,MAAM,CAAC,mBAAmB,EAAE,oDAAoD,CAAC;SACjF,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;SACzE,MAAM,CACL,iBAAiB,EACjB,qEAAqE,EACrE,OAAO,EACP,EAAE,CACH;SACA,kBAAkB,CAAC,IAAI,CAAC;SACxB,MAAM,CACL,KAAK,EACH,MAAc,EACd,OAA8E,EAC9E,EAAE;QACF,IAAI,CAAC;YACH,iDAAiD;YACjD,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAE7C,IAAI,SAAS,KAAK,CAAC,CAAC,EAAE,CAAC;gBACrB,qBAAS,CAAC,KAAK,CACb,iEAAiE;oBAC/D,uDAAuD;oBACvD,gFAAgF,CACnF,CAAC;gBACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;gBAChB,OAAO;YACT,CAAC;YAED,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC;YAEpD,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,qBAAS,CAAC,KAAK,CACb,0CAA0C;oBACxC,mDAAmD,CACtD,CAAC;gBACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;gBAChB,OAAO;YACT,CAAC;YAED,MAAM,CAAC,SAAS,EAAE,WAAW,CAAC,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;YACrD,MAAM,QAAQ,GAAI,OAAO,CAAC,IAAI,EAAE,CAAC,IAAe,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;YAElE,MAAM,MAAM,GAAG,IAAI,qBAAc,EAAE,CAAC;YACpC,MAAM,QAAQ,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC,CAAC;YAEhE,oDAAoD;YACpD,MAAM,MAAM,GAAG,QAAQ,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC;YACzE,IAAI,MAAM,EAAE,SAAS,EAAE,CAAC;gBACtB,qBAAS,CAAC,IAAI,CAAC,uCAAuC,WAAW,IAAI,CAAC,CAAC;YACzE,CAAC;YAED,MAAM,UAAU,GAAG,IAAI,iBAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAE/C,yBAAyB;YACzB,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAC/B,QAAQ,EACR,QAAQ,CAAC,YAAY;iBAClB,OAAO,CAAC,aAAa,EAAE,SAAS,CAAC;iBACjC,OAAO,CAAC,eAAe,EAAE,WAAW,CAAC,CACzC,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,UAAU,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;YAEnE,sFAAsF;YACtF,IAAI,YAAY,GAAG,EAAE,GAAG,gBAAgB,CAAC,MAAM,EAAE,CAAC;YAElD,KAAK,MAAM,UAAU,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;gBACtC,IAAI,CAAC;oBACH,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC;oBAClD,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAC5B,QAAQ,EACR,QAAQ,CAAC,YAAY;yBAClB,OAAO,CAAC,aAAa,EAAE,MAAM,CAAC;yBAC9B,OAAO,CAAC,eAAe,EAAE,OAAO,CAAC,CACrC,CAAC;oBACF,MAAM,aAAa,GAAG,MAAM,UAAU,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;oBAC7D,YAAY,GAAG,EAAE,GAAG,YAAY,EAAE,GAAG,aAAa,CAAC,MAAM,EAAE,CAAC;gBAC9D,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,MAAM,IAAI,KAAK,CACb,6BAA6B,UAAU,MAAO,GAAa,CAAC,OAAO,EAAE,CACtE,CAAC;gBACJ,CAAC;YACH,CAAC;YAED,MAAM,WAAW,GAAG,IAAI,wBAAiB,EAAE,CAAC;YAC5C,MAAM,WAAW,GAAG;gBAClB,IAAI,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;gBAC7E,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,UAAU,EAAE,CAAC,OAAO,CAAC,QAAQ;aAC9B,CAAC;YAEF,MAAM,QAAQ,GAAG,WAAW,CAAC,kBAAkB,CAC7C,EAAE,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,gBAAgB,CAAC,QAAQ,EAAE,EAC7D,OAAO,CAAC,GAAyC,EACjD,WAAW,CACZ,CAAC;YAEF,sFAAsF;YACtF,MAAM,YAAY,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;YAClC,MAAM,gBAAgB,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAE5C,MAAM,QAAQ,GAAG,MAAM,UAAU,CAAC,YAAY,EAAE,gBAAgB,EAAE,QAAQ,CAAC,CAAC;YAC5E,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG,YAAY,uBAAgB,IAAI,GAAG,YAAY,uBAAgB,EAAE,CAAC;gBACvE,qBAAS,CAAC,qBAAqB,CAAC,GAAG,CAAC,CAAC;gBACrC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;gBAChB,OAAO;YACT,CAAC;YACD,gDAAgD;YAChD,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,CAAC;YACxE,qBAAS,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YACzB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC,CACF,CAAC;AACN,CAAC;AAED,SAAS,UAAU,CAAC,OAAe,EAAE,IAAc,EAAE,GAA2B;IAC9E,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,IAAI,KAAmB,CAAC;QAExB,IAAI,CAAC;YACH,KAAK,GAAG,IAAA,qBAAK,EAAC,OAAO,EAAE,IAAI,EAAE;gBAC3B,GAAG;gBACH,KAAK,EAAE,SAAS;aACjB,CAAC,CAAC;QACL,CAAC;QAAC,MAAM,CAAC;YACP,qBAAS,CAAC,KAAK,CAAC,4BAA4B,OAAO,wCAAwC,CAAC,CAAC;YAC7F,OAAO,CAAC,CAAC,CAAC,CAAC;YACX,OAAO;QACT,CAAC;QAED,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACrB,qBAAS,CAAC,KAAK,CAAC,4BAA4B,OAAO,wCAAwC,CAAC,CAAC;YAC7F,OAAO,CAAC,CAAC,CAAC,CAAC;QACb,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE;YAChC,2BAA2B;YAC3B,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC;YACvC,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;YAErC,IAAI,MAAM,EAAE,CAAC;gBACX,iEAAiE;gBACjE,MAAM,WAAW,GAA2B;oBAC1C,MAAM,EAAE,GAAG;oBACX,MAAM,EAAE,GAAG;oBACX,OAAO,EAAE,GAAG;iBACb,CAAC;gBACF,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,IAAI,GAAG,CAAC,CAAC;YACtC,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC;YACrB,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,iDAAiD;QACjD,MAAM,cAAc,GAAG,GAAG,EAAE;YAC1B,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACtB,6CAA6C;YAC7C,wGAAwG;YACxG,UAAU,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;QACxD,CAAC,CAAC;QACF,MAAM,aAAa,GAAG,GAAG,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEjD,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC;QACtC,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,WAAW,CAAC,MAAc;IACjC,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAChC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;QACjD,MAAM,IAAI,KAAK,CAAC,mBAAmB,MAAM,2CAA2C,CAAC,CAAC;IACxF,CAAC;IACD,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AAC9B,CAAC"}

package/dist/commands/export.d.ts

@@ -0,0 +1,6 @@
+import { Command } from "commander";
+import { SubprocessRunner } from "@clef-sh/core";
+export declare function registerExportCommand(program: Command, deps: {
+    runner: SubprocessRunner;
+}): void;
+//# sourceMappingURL=export.d.ts.map

package/dist/commands/export.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"export.d.ts","sourceRoot":"","sources":["../../src/commands/export.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAML,gBAAgB,EACjB,MAAM,eAAe,CAAC;AAGvB,wBAAgB,qBAAqB,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE;IAAE,MAAM,EAAE,gBAAgB,CAAA;CAAE,GAAG,IAAI,CAgFhG"}