@cloneisyou/cli 0.1.4-win32-x64 → 0.1.4

package/LICENSE.md

@@ -1,23 +1,23 @@
-# Clone CLI Proprietary License
-
-Copyright (c) 2026 Clone Labs, Inc. All rights reserved.
-
-This package and its contents are proprietary to Clone Labs, Inc.
-
-Permission is granted only to Clone Labs, Inc., its employees, contractors, and
-other persons or entities expressly authorized in writing by Clone Labs, Inc. to
-install, copy, run, evaluate, modify, or distribute this package.
-
-No other license is granted. Without prior written permission from Clone Labs,
-Inc., you may not use, copy, modify, publish, distribute, sublicense, sell, host,
-make available as a service, reverse engineer, or create derivative works based
-on this package or any portion of it.
-
-Public availability of this package in a package registry does not grant public
-usage rights.
-
-THE PACKAGE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
-FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT. IN NO EVENT SHALL CLONE LABS,
-INC. BE LIABLE FOR ANY CLAIM, DAMAGES, OR OTHER LIABILITY ARISING FROM OR
-RELATED TO THE PACKAGE.
+# Clone CLI Proprietary License
+
+Copyright (c) 2026 Clone Labs, Inc. All rights reserved.
+
+This package and its contents are proprietary to Clone Labs, Inc.
+
+Permission is granted only to Clone Labs, Inc., its employees, contractors, and
+other persons or entities expressly authorized in writing by Clone Labs, Inc. to
+install, copy, run, evaluate, modify, or distribute this package.
+
+No other license is granted. Without prior written permission from Clone Labs,
+Inc., you may not use, copy, modify, publish, distribute, sublicense, sell, host,
+make available as a service, reverse engineer, or create derivative works based
+on this package or any portion of it.
+
+Public availability of this package in a package registry does not grant public
+usage rights.
+
+THE PACKAGE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT. IN NO EVENT SHALL CLONE LABS,
+INC. BE LIABLE FOR ANY CLAIM, DAMAGES, OR OTHER LIABILITY ARISING FROM OR
+RELATED TO THE PACKAGE.

package/README.md

@@ -1,88 +1,88 @@
-# Clone CLI
-
-Native npm launcher for the Clone CLI.
-
-Status: early alpha. This package is proprietary to Clone Labs, Inc. and
-licensed for Clone Labs, Inc. internal/company use only. Public registry
-visibility does not grant public usage, modification, redistribution, or
-commercial rights.
-
-## Install
-
-```sh
-npm install -g @cloneisyou/cli
-clone
-```
-
-## Distribution Model
-
-This package follows the native-launcher pattern used by tools such as Claude
-Code: the public npm package contains only a small JavaScript launcher and
-installer. It does not bundle Clone Labs, Inc.'s proprietary Python source.
-
-At runtime, the launcher resolves the native `clone` executable in this order:
-
-1. `CLONE_NATIVE_BINARY`, for internal development or manual installs.
-2. A matching npm optional dependency alias, such as
-   `@cloneisyou/cli-win32-x64`, which points to
-   `@cloneisyou/cli@<version>-win32-x64`.
-3. A private artifact mirror, but only when `CLONE_DOWNLOAD_BASE_URL` is set
-   explicitly.
-
-Clone Labs, Inc.'s GitHub repository and GitHub Releases are private. Public
-npm installs do not depend on GitHub Releases or GitHub Actions artifacts. The
-release workflow builds each native binary on its matching runner and publishes
-that platform package directly to npm before publishing the main launcher.
-
-The package metadata links to the private Clone Labs, Inc. repository and issue
-tracker. Access requires repository permissions.
-
-Expected private artifact names when `CLONE_DOWNLOAD_BASE_URL` is used:
-
-- `clone-darwin-arm64`
-- `clone-darwin-x64`
-- `clone-linux-x64`
-- `clone-win32-x64.exe`
-
-If a `manifest.json` is present at the release URL, the installer will use
-`platforms.<platform>.url` and verify `sha256` or `checksum` when provided.
-
-## Requirements
-
-- Node.js 18+
-- A supported platform: macOS arm64/x64, Linux x64, or Windows x64.
-
-Python is not required by this npm package once native binaries are published.
-
-## Local Data And Keys
-
-Clone stores local state under `~/.clone` by default. This includes session
-metadata, local memory/soul files, and optional context screenshots.
-
-If you run `clone login`, provider API keys are stored locally in:
-
-```text
-~/.clone/secrets.json
-```
-
-Environment variables such as `ANTHROPIC_API_KEY` and `OPENAI_API_KEY` take
-precedence over locally stored keys.
-
-## Configuration
-
-Useful environment variables:
-
-- `CLONE_NATIVE_BINARY`: explicit path to a native `clone` executable.
-- `CLONE_DOWNLOAD_BASE_URL`: explicit private artifact base URL for internal testing.
-- `CLONE_NPM_RUNTIME`: override the native binary cache directory.
-- `CLONE_HOME`: override Clone's data directory. Defaults to `~/.clone`.
-- `CLONE_DISABLE_TRAY=1`: disable the desktop tray/menu-bar recording indicator.
-- `CLONE_DISABLE_CONTEXT_WORKER=1`: disable background context screenshots.
-- `CLONE_SKIP_UPDATE_CHECK=1`: skip the npm `latest` version check before launching.
-- `CLONE_SKIP_NATIVE_INSTALL=1`: skip download attempts during install.
-
-Development smoke test:
-
-```sh
-npm --prefix apps/cli/npm run smoke
-```
+# Clone CLI
+
+Native npm launcher for the Clone CLI.
+
+Status: early alpha. This package is proprietary to Clone Labs, Inc. and
+licensed for Clone Labs, Inc. internal/company use only. Public registry
+visibility does not grant public usage, modification, redistribution, or
+commercial rights.
+
+## Install
+
+```sh
+npm install -g @cloneisyou/cli
+clone
+```
+
+## Distribution Model
+
+This package follows the native-launcher pattern used by tools such as Claude
+Code: the public npm package contains only a small JavaScript launcher and
+installer. It does not bundle Clone Labs, Inc.'s proprietary Python source.
+
+At runtime, the launcher resolves the native `clone` executable in this order:
+
+1. `CLONE_NATIVE_BINARY`, for internal development or manual installs.
+2. A matching npm optional dependency alias, such as
+   `@cloneisyou/cli-win32-x64`, which points to
+   `@cloneisyou/cli@<version>-win32-x64`.
+3. A private artifact mirror, but only when `CLONE_DOWNLOAD_BASE_URL` is set
+   explicitly.
+
+Clone Labs, Inc.'s GitHub repository and GitHub Releases are private. Public
+npm installs do not depend on GitHub Releases or GitHub Actions artifacts. The
+release workflow builds each native binary on its matching runner and publishes
+that platform package directly to npm before publishing the main launcher.
+
+The package metadata links to the private Clone Labs, Inc. repository and issue
+tracker. Access requires repository permissions.
+
+Expected private artifact names when `CLONE_DOWNLOAD_BASE_URL` is used:
+
+- `clone-darwin-arm64`
+- `clone-darwin-x64`
+- `clone-linux-x64`
+- `clone-win32-x64.exe`
+
+If a `manifest.json` is present at the release URL, the installer will use
+`platforms.<platform>.url` and verify `sha256` or `checksum` when provided.
+
+## Requirements
+
+- Node.js 18+
+- A supported platform: macOS arm64/x64, Linux x64, or Windows x64.
+
+Python is not required by this npm package once native binaries are published.
+
+## Local Data And Keys
+
+Clone stores local state under `~/.clone` by default. This includes session
+metadata, local memory/soul files, and optional context screenshots.
+
+If you run `clone login`, provider API keys are stored locally in:
+
+```text
+~/.clone/secrets.json
+```
+
+Environment variables such as `ANTHROPIC_API_KEY` and `OPENAI_API_KEY` take
+precedence over locally stored keys.
+
+## Configuration
+
+Useful environment variables:
+
+- `CLONE_NATIVE_BINARY`: explicit path to a native `clone` executable.
+- `CLONE_DOWNLOAD_BASE_URL`: explicit private artifact base URL for internal testing.
+- `CLONE_NPM_RUNTIME`: override the native binary cache directory.
+- `CLONE_HOME`: override Clone's data directory. Defaults to `~/.clone`.
+- `CLONE_DISABLE_TRAY=1`: disable the desktop tray/menu-bar recording indicator.
+- `CLONE_DISABLE_CONTEXT_WORKER=1`: disable background context screenshots.
+- `CLONE_SKIP_UPDATE_CHECK=1`: skip the npm `latest` version check before launching.
+- `CLONE_SKIP_NATIVE_INSTALL=1`: skip download attempts during install.
+
+Development smoke test:
+
+```sh
+npm --prefix apps/cli/npm run smoke
+```

package/bin/clone.js

@@ -0,0 +1,29 @@
+#!/usr/bin/env node
+"use strict";
+
+const { spawnSync } = require("node:child_process");
+const { ensureNative } = require("../scripts/native");
+const { checkForUpdate } = require("../scripts/update-check");
+
+main().catch((error) => {
+  process.stderr.write(`\nClone npm wrapper error:\n${error.message}\n`);
+  process.exit(1);
+});
+
+async function main() {
+  await checkForUpdate();
+
+  const executable = await ensureNative({ allowDownload: true });
+  const result = spawnSync(executable, process.argv.slice(2), {
+    stdio: "inherit",
+    env: process.env,
+  });
+
+  if (result.error) {
+    throw new Error(`failed to run Clone CLI: ${result.error.message}`);
+  }
+  if (result.signal) {
+    process.kill(process.pid, result.signal);
+  }
+  process.exit(result.status ?? 1);
+}

package/package.json

@@ -1,8 +1,9 @@
 {
   "name": "@cloneisyou/cli",
-  "version": "0.1.4-win32-x64",
-  "description": "Native Clone CLI binary for win32-x64",
+  "version": "0.1.4",
+  "description": "Native launcher for the Clone CLI",
   "license": "SEE LICENSE IN LICENSE.md",
+  "private": false,
   "author": "Clone Labs, Inc.",
   "homepage": "https://clone.is",
   "repository": {
@@ -10,17 +11,44 @@
     "url": "git+https://github.com/cloneisyou/clone.git",
     "directory": "apps/cli/npm"
   },
-  "os": ["win32"],
-  "cpu": ["x64"],
+  "bugs": {
+    "url": "https://github.com/cloneisyou/clone/issues"
+  },
+  "keywords": [
+    "clone",
+    "cli",
+    "agent",
+    "automation",
+    "capture",
+    "memory",
+    "terminal"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
   "bin": {
-    "clone": "vendor/win32-x64/clone/clone.exe"
+    "clone": "bin/clone.js"
+  },
+  "optionalDependencies": {
+    "@cloneisyou/cli-darwin-arm64": "npm:@cloneisyou/cli@0.1.4-darwin-arm64",
+    "@cloneisyou/cli-darwin-x64": "npm:@cloneisyou/cli@0.1.4-darwin-x64",
+    "@cloneisyou/cli-linux-x64": "npm:@cloneisyou/cli@0.1.4-linux-x64",
+    "@cloneisyou/cli-win32-x64": "npm:@cloneisyou/cli@0.1.4-win32-x64"
   },
   "files": [
-    "vendor",
+    "bin",
+    "scripts",
     "README.md",
     "LICENSE.md"
   ],
-  "publishConfig": {
-    "access": "public"
+  "scripts": {
+    "prepack": "node scripts/sync-platform-deps.js",
+    "postinstall": "node scripts/install-native.js",
+    "sync-platform-deps": "node scripts/sync-platform-deps.js",
+    "test": "node --test tests/*.test.js",
+    "smoke": "node -e \"const native=require('./scripts/native'); console.log(native.resolvePlatformKey())\" && npm pack --dry-run"
+  },
+  "engines": {
+    "node": ">=18"
   }
 }

package/scripts/install-native.js

@@ -0,0 +1,13 @@
+"use strict";
+
+const { ensureNative } = require("./native");
+
+ensureNative({ allowDownload: true, optional: true })
+  .then((executable) => {
+    if (executable) {
+      process.stderr.write(`▮ CLONE  native binary ready: ${executable}\n`);
+    }
+  })
+  .catch((error) => {
+    process.stderr.write(`▮ CLONE  native install skipped: ${error.message}\n`);
+  });

package/scripts/native.js

@@ -0,0 +1,244 @@
+"use strict";
+
+const crypto = require("node:crypto");
+const fs = require("node:fs");
+const https = require("node:https");
+const os = require("node:os");
+const path = require("node:path");
+const { pipeline } = require("node:stream/promises");
+
+const packageRoot = path.resolve(__dirname, "..");
+const packageJson = require(path.join(packageRoot, "package.json"));
+const runtimeRoot = path.resolve(
+  process.env.CLONE_NPM_RUNTIME ||
+    path.join(os.homedir(), ".clone", "npm-runtime", packageJson.version),
+);
+
+async function ensureNative({ allowDownload = true, optional = false } = {}) {
+  const existing = findNative();
+  if (existing) {
+    return existing;
+  }
+
+  if (process.env.CLONE_SKIP_NATIVE_INSTALL === "1" || !allowDownload) {
+    return failOrNull(missingNativeMessage(), optional);
+  }
+
+  if (!releaseBaseUrl()) {
+    return failOrNull(missingNativeMessage(), optional);
+  }
+
+  try {
+    return await downloadNative();
+  } catch (error) {
+    return failOrNull(`${missingNativeMessage()}\n\nDownload failed: ${error.message}`, optional);
+  }
+}
+
+function findNative() {
+  const explicit = process.env.CLONE_NATIVE_BINARY;
+  if (explicit && isExecutableFile(explicit)) {
+    return path.resolve(explicit);
+  }
+
+  const optionalPackageBinary = findOptionalPackageBinary();
+  if (optionalPackageBinary) {
+    return optionalPackageBinary;
+  }
+
+  const cached = cachedBinaryPath();
+  if (isExecutableFile(cached)) {
+    return cached;
+  }
+
+  return null;
+}
+
+function findOptionalPackageBinary() {
+  const packageName = `@cloneisyou/cli-${resolvePlatformKey()}`;
+  try {
+    const manifestPath = require.resolve(`${packageName}/package.json`, {
+      paths: [packageRoot],
+    });
+    const manifest = require(manifestPath);
+    const binField = typeof manifest.bin === "string" ? manifest.bin : manifest.bin?.clone;
+    if (!binField) {
+      return null;
+    }
+    const candidate = path.resolve(path.dirname(manifestPath), binField);
+    return isExecutableFile(candidate) ? candidate : null;
+  } catch {
+    return null;
+  }
+}
+
+async function downloadNative() {
+  const platform = resolvePlatformKey();
+  const manifest = await fetchManifest().catch(() => null);
+  const entry = manifest?.platforms?.[platform];
+  const downloadUrl = entry?.url || buildDefaultBinaryUrl(platform);
+  const expectedSha256 = entry?.sha256 || entry?.checksum || null;
+  const destination = cachedBinaryPath();
+  const temp = `${destination}.tmp-${process.pid}`;
+
+  fs.mkdirSync(path.dirname(destination), { recursive: true });
+  log(`installing native Clone CLI for ${platform}`);
+  await downloadFile(downloadUrl, temp);
+
+  if (expectedSha256) {
+    const actual = sha256File(temp);
+    if (actual.toLowerCase() !== expectedSha256.toLowerCase()) {
+      safeUnlink(temp);
+      throw new Error(`checksum mismatch for ${downloadUrl}`);
+    }
+  }
+
+  fs.renameSync(temp, destination);
+  if (process.platform !== "win32") {
+    fs.chmodSync(destination, 0o755);
+  }
+  return destination;
+}
+
+async function fetchManifest() {
+  const baseUrl = releaseBaseUrl();
+  const manifestUrl = `${baseUrl.replace(/\/$/, "")}/manifest.json`;
+  const text = await readUrl(manifestUrl);
+  return JSON.parse(text);
+}
+
+function buildDefaultBinaryUrl(platform) {
+  const baseUrl = releaseBaseUrl().replace(/\/$/, "");
+  const extension = process.platform === "win32" ? ".exe" : "";
+  return `${baseUrl}/clone-${platform}${extension}`;
+}
+
+function releaseBaseUrl() {
+  return process.env.CLONE_DOWNLOAD_BASE_URL || null;
+}
+
+function cachedBinaryPath() {
+  return path.join(runtimeRoot, "native", resolvePlatformKey(), binaryName());
+}
+
+function binaryName() {
+  return process.platform === "win32" ? "clone.exe" : "clone";
+}
+
+function resolvePlatformKey() {
+  const platform = process.platform;
+  const arch = process.arch;
+  const supported = new Set([
+    "darwin-arm64",
+    "darwin-x64",
+    "linux-x64",
+    "win32-x64",
+  ]);
+  const key = `${platform}-${arch}`;
+  if (!supported.has(key)) {
+    throw new Error(`unsupported platform: ${key}`);
+  }
+  return key;
+}
+
+function isExecutableFile(filePath) {
+  try {
+    return fs.statSync(filePath).isFile();
+  } catch {
+    return false;
+  }
+}
+
+async function readUrl(url) {
+  return new Promise((resolve, reject) => {
+    https
+      .get(url, (response) => {
+        if (isRedirect(response.statusCode)) {
+          readUrl(response.headers.location).then(resolve, reject);
+          return;
+        }
+        if (response.statusCode !== 200) {
+          reject(new Error(`${url} returned HTTP ${response.statusCode}`));
+          response.resume();
+          return;
+        }
+        response.setEncoding("utf8");
+        let body = "";
+        response.on("data", (chunk) => {
+          body += chunk;
+        });
+        response.on("end", () => resolve(body));
+      })
+      .on("error", reject);
+  });
+}
+
+async function downloadFile(url, destination) {
+  await new Promise((resolve, reject) => {
+    https
+      .get(url, (response) => {
+        if (isRedirect(response.statusCode)) {
+          downloadFile(response.headers.location, destination).then(resolve, reject);
+          response.resume();
+          return;
+        }
+        if (response.statusCode !== 200) {
+          reject(new Error(`${url} returned HTTP ${response.statusCode}`));
+          response.resume();
+          return;
+        }
+        pipeline(response, fs.createWriteStream(destination)).then(resolve, reject);
+      })
+      .on("error", reject);
+  });
+}
+
+function isRedirect(statusCode) {
+  return [301, 302, 303, 307, 308].includes(statusCode);
+}
+
+function sha256File(filePath) {
+  const hash = crypto.createHash("sha256");
+  hash.update(fs.readFileSync(filePath));
+  return hash.digest("hex");
+}
+
+function safeUnlink(filePath) {
+  try {
+    fs.unlinkSync(filePath);
+  } catch {
+    // Best-effort cleanup only.
+  }
+}
+
+function failOrNull(message, optional) {
+  if (optional) {
+    log(message);
+    return null;
+  }
+  throw new Error(message);
+}
+
+function missingNativeMessage() {
+  return [
+    "Clone native binary is not installed.",
+    "",
+    "This npm package intentionally does not include Clone's proprietary Python source.",
+    "Install options:",
+    "  1. Reinstall @cloneisyou/cli without --omit=optional so npm can install the matching platform package.",
+    "  2. For internal development, set CLONE_NATIVE_BINARY to an existing clone executable.",
+    "  3. For private artifact testing, set CLONE_DOWNLOAD_BASE_URL explicitly.",
+  ].join("\n");
+}
+
+function log(message) {
+  process.stderr.write(`▮ CLONE  ${message}\n`);
+}
+
+module.exports = {
+  ensureNative,
+  findNative,
+  resolvePlatformKey,
+  cachedBinaryPath,
+  releaseBaseUrl,
+};

package/scripts/sync-platform-deps.js

@@ -0,0 +1,18 @@
+"use strict";
+
+const fs = require("node:fs");
+const path = require("node:path");
+
+const packagePath = path.resolve(__dirname, "..", "package.json");
+const packageJson = JSON.parse(fs.readFileSync(packagePath, "utf8"));
+const platforms = ["darwin-arm64", "darwin-x64", "linux-x64", "win32-x64"];
+
+packageJson.optionalDependencies = Object.fromEntries(
+  platforms.map((platform) => [
+    `@cloneisyou/cli-${platform}`,
+    `npm:@cloneisyou/cli@${packageJson.version}-${platform}`,
+  ]),
+);
+
+fs.writeFileSync(packagePath, `${JSON.stringify(packageJson, null, 2)}\n`);
+console.error(`synced optional platform dependencies for ${packageJson.version}`);

package/scripts/update-check.js

@@ -0,0 +1,132 @@
+"use strict";
+
+const https = require("node:https");
+
+const packageJson = require("../package.json");
+const packageName = packageJson.name;
+const defaultTimeoutMs = 750;
+
+async function checkForUpdate({
+  currentVersion = packageJson.version,
+  env = process.env,
+  stderr = process.stderr,
+  fetchLatestVersion = defaultFetchLatestVersion,
+  timeoutMs = defaultTimeoutMs,
+} = {}) {
+  if (env.CLONE_SKIP_UPDATE_CHECK === "1") {
+    return;
+  }
+
+  try {
+    const latestVersion = await withTimeout(fetchLatestVersion(), timeoutMs);
+    if (compareVersions(latestVersion, currentVersion) <= 0) {
+      return;
+    }
+    stderr.write(updateMessage(currentVersion, latestVersion));
+  } catch {
+    // Update checks should never block normal CLI execution.
+  }
+}
+
+function updateMessage(currentVersion, latestVersion) {
+  return [
+    `[CLONE] update available: ${packageName} ${currentVersion} -> ${latestVersion}`,
+    `[CLONE] run: npm install -g ${packageName}@latest`,
+    "",
+  ].join("\n");
+}
+
+function defaultFetchLatestVersion() {
+  const url = `https://registry.npmjs.org/${encodeURIComponent(packageName)}/latest`;
+  return readJson(url).then((body) => body.version);
+}
+
+function readJson(url) {
+  return new Promise((resolve, reject) => {
+    const request = https
+      .get(url, (response) => {
+        if (isRedirect(response.statusCode)) {
+          response.resume();
+          readJson(response.headers.location).then(resolve, reject);
+          return;
+        }
+        if (response.statusCode !== 200) {
+          response.resume();
+          reject(new Error(`${url} returned HTTP ${response.statusCode}`));
+          return;
+        }
+
+        response.setEncoding("utf8");
+        let body = "";
+        response.on("data", (chunk) => {
+          body += chunk;
+        });
+        response.on("end", () => {
+          try {
+            resolve(JSON.parse(body));
+          } catch (error) {
+            reject(error);
+          }
+        });
+      })
+      .on("error", reject);
+
+    request.setTimeout(defaultTimeoutMs, () => {
+      request.destroy(new Error("update check timed out"));
+    });
+  });
+}
+
+function withTimeout(promise, timeoutMs) {
+  return new Promise((resolve, reject) => {
+    const timer = setTimeout(() => {
+      reject(new Error("update check timed out"));
+    }, timeoutMs);
+
+    Promise.resolve(promise).then(
+      (value) => {
+        clearTimeout(timer);
+        resolve(value);
+      },
+      (error) => {
+        clearTimeout(timer);
+        reject(error);
+      },
+    );
+  });
+}
+
+function compareVersions(left, right) {
+  const leftParts = parseStableVersion(left);
+  const rightParts = parseStableVersion(right);
+  if (!leftParts || !rightParts) {
+    return 0;
+  }
+
+  for (let index = 0; index < 3; index += 1) {
+    if (leftParts[index] > rightParts[index]) {
+      return 1;
+    }
+    if (leftParts[index] < rightParts[index]) {
+      return -1;
+    }
+  }
+  return 0;
+}
+
+function parseStableVersion(version) {
+  const match = /^(\d+)\.(\d+)\.(\d+)$/.exec(String(version));
+  if (!match) {
+    return null;
+  }
+  return match.slice(1).map((part) => Number.parseInt(part, 10));
+}
+
+function isRedirect(statusCode) {
+  return [301, 302, 303, 307, 308].includes(statusCode);
+}
+
+module.exports = {
+  checkForUpdate,
+  compareVersions,
+};