@codebakers/cli 1.5.0 → 2.0.0

package/dist/commands/login.js

@@ -8,6 +8,7 @@ const chalk_1 = __importDefault(require("chalk"));
 const ora_1 = __importDefault(require("ora"));
 const readline_1 = require("readline");
 const config_js_1 = require("../config.js");
+const api_js_1 = require("../lib/api.js");
 async function prompt(question) {
     const rl = (0, readline_1.createInterface)({
         input: process.stdin,
@@ -16,7 +17,7 @@ async function prompt(question) {
     return new Promise((resolve) => {
         rl.question(question, (answer) => {
             rl.close();
-            resolve(answer);
+            resolve(answer.trim());
         });
     });
 }
@@ -24,31 +25,26 @@ async function login() {
     console.log(chalk_1.default.blue('\n  CodeBakers Login\n'));
     console.log(chalk_1.default.gray('  Get your API key at https://codebakers.ai/dashboard\n'));
     const apiKey = await prompt('  Enter your API key: ');
-    if (!apiKey || !apiKey.startsWith('cb_')) {
-        console.log(chalk_1.default.red('\n  Invalid API key format. Keys start with "cb_"\n'));
+    if (!apiKey) {
+        console.log(chalk_1.default.red('\n  API key is required.\n'));
         process.exit(1);
     }
     const spinner = (0, ora_1.default)('Validating API key...').start();
     try {
-        const apiUrl = (0, config_js_1.getApiUrl)();
-        const response = await fetch(`${apiUrl}/api/content`, {
-            method: 'GET',
-            headers: {
-                Authorization: `Bearer ${apiKey}`,
-            },
-        });
-        if (!response.ok) {
-            const error = await response.json().catch(() => ({}));
-            throw new Error(error.error || 'Invalid API key');
-        }
+        await (0, api_js_1.validateApiKey)(apiKey);
         (0, config_js_1.setApiKey)(apiKey);
         spinner.succeed('Logged in successfully!');
         console.log(chalk_1.default.green('\n  You can now run `codebakers install` in your project.\n'));
     }
     catch (error) {
         spinner.fail('Login failed');
-        const message = error instanceof Error ? error.message : 'Unknown error';
-        console.log(chalk_1.default.red(`\n  Error: ${message}\n`));
+        if (error && typeof error === 'object' && 'recoverySteps' in error) {
+            console.log(chalk_1.default.red(`\n  ${(0, api_js_1.formatApiError)(error)}\n`));
+        }
+        else {
+            const message = error instanceof Error ? error.message : 'Unknown error';
+            console.log(chalk_1.default.red(`\n  Error: ${message}\n`));
+        }
         process.exit(1);
     }
 }

package/dist/commands/provision.d.ts

@@ -1,3 +1,44 @@
+/**
+ * Supabase regions - allow user to select closest region
+ */
+declare const SUPABASE_REGIONS: readonly [{
+    readonly id: "us-east-1";
+    readonly name: "US East (N. Virginia)";
+    readonly flag: "🇺🇸";
+}, {
+    readonly id: "us-west-1";
+    readonly name: "US West (N. California)";
+    readonly flag: "🇺🇸";
+}, {
+    readonly id: "eu-west-1";
+    readonly name: "EU West (Ireland)";
+    readonly flag: "🇮🇪";
+}, {
+    readonly id: "eu-west-2";
+    readonly name: "EU West (London)";
+    readonly flag: "🇬🇧";
+}, {
+    readonly id: "eu-central-1";
+    readonly name: "EU Central (Frankfurt)";
+    readonly flag: "🇩🇪";
+}, {
+    readonly id: "ap-southeast-1";
+    readonly name: "Asia Pacific (Singapore)";
+    readonly flag: "🇸🇬";
+}, {
+    readonly id: "ap-southeast-2";
+    readonly name: "Asia Pacific (Sydney)";
+    readonly flag: "🇦🇺";
+}, {
+    readonly id: "ap-northeast-1";
+    readonly name: "Asia Pacific (Tokyo)";
+    readonly flag: "🇯🇵";
+}, {
+    readonly id: "sa-east-1";
+    readonly name: "South America (São Paulo)";
+    readonly flag: "🇧🇷";
+}];
+type SupabaseRegion = typeof SUPABASE_REGIONS[number]['id'];
 export interface ProvisionResult {
     github?: {
         repoUrl: string;
@@ -8,10 +49,12 @@ export interface ProvisionResult {
         projectUrl: string;
         apiUrl: string;
         anonKey: string;
+        dbPassword: string;
     };
     vercel?: {
         projectId: string;
         projectUrl: string;
+        envVarsSet: boolean;
     };
 }
 /**
@@ -24,18 +67,26 @@ export declare function createGitHubRepo(projectName: string, description?: stri
 /**
  * Create a Supabase project
  */
-export declare function createSupabaseProject(projectName: string, organizationId?: string): Promise<{
+export declare function createSupabaseProject(projectName: string, options?: {
+    organizationId?: string;
+    region?: SupabaseRegion;
+}): Promise<{
     projectId: string;
     projectUrl: string;
     apiUrl: string;
     anonKey: string;
+    dbPassword: string;
 } | null>;
 /**
- * Create a Vercel project
+ * Create a Vercel project with environment variables
  */
-export declare function createVercelProject(projectName: string, gitRepoUrl?: string): Promise<{
+export declare function createVercelProject(projectName: string, options?: {
+    gitRepoUrl?: string;
+    envVars?: Record<string, string>;
+}): Promise<{
     projectId: string;
     projectUrl: string;
+    envVarsSet: boolean;
 } | null>;
 /**
  * Full provisioning flow - create all services
@@ -49,3 +100,4 @@ export declare function getConfiguredServices(): {
     supabase: boolean;
     vercel: boolean;
 };
+export {};

package/dist/commands/provision.js

@@ -10,9 +10,24 @@ exports.provisionAll = provisionAll;
 exports.getConfiguredServices = getConfiguredServices;
 const chalk_1 = __importDefault(require("chalk"));
 const ora_1 = __importDefault(require("ora"));
+const crypto_1 = __importDefault(require("crypto"));
 const child_process_1 = require("child_process");
 const readline_1 = require("readline");
 const config_js_1 = require("../config.js");
+/**
+ * Supabase regions - allow user to select closest region
+ */
+const SUPABASE_REGIONS = [
+    { id: 'us-east-1', name: 'US East (N. Virginia)', flag: '🇺🇸' },
+    { id: 'us-west-1', name: 'US West (N. California)', flag: '🇺🇸' },
+    { id: 'eu-west-1', name: 'EU West (Ireland)', flag: '🇮🇪' },
+    { id: 'eu-west-2', name: 'EU West (London)', flag: '🇬🇧' },
+    { id: 'eu-central-1', name: 'EU Central (Frankfurt)', flag: '🇩🇪' },
+    { id: 'ap-southeast-1', name: 'Asia Pacific (Singapore)', flag: '🇸🇬' },
+    { id: 'ap-southeast-2', name: 'Asia Pacific (Sydney)', flag: '🇦🇺' },
+    { id: 'ap-northeast-1', name: 'Asia Pacific (Tokyo)', flag: '🇯🇵' },
+    { id: 'sa-east-1', name: 'South America (São Paulo)', flag: '🇧🇷' },
+];
 function prompt(question) {
     const rl = (0, readline_1.createInterface)({
         input: process.stdin,
@@ -25,27 +40,86 @@ function prompt(question) {
         });
     });
 }
+/**
+ * Retry a function with exponential backoff
+ */
+async function withRetry(fn, options = {}) {
+    const { retries = 3, delay = 1000, onRetry } = options;
+    for (let attempt = 1; attempt <= retries; attempt++) {
+        try {
+            return await fn();
+        }
+        catch (error) {
+            if (attempt === retries) {
+                throw error;
+            }
+            const err = error instanceof Error ? error : new Error(String(error));
+            // Don't retry on authentication errors
+            if (err.message.includes('401') || err.message.includes('403') || err.message.includes('Invalid')) {
+                throw error;
+            }
+            onRetry?.(attempt, err);
+            await new Promise(resolve => setTimeout(resolve, delay * attempt));
+        }
+    }
+    throw new Error('Max retries exceeded');
+}
+/**
+ * Generate a cryptographically secure password
+ */
+function generateSecurePassword() {
+    // Generate 24 random bytes and convert to base64url (URL-safe, no special chars)
+    const bytes = crypto_1.default.randomBytes(24);
+    const password = bytes.toString('base64url');
+    // Ensure it meets typical password requirements (add special char and number)
+    return `${password}!1`;
+}
 /**
  * Check if a service key is configured, prompt if not
  */
 async function ensureServiceKey(service, instructions) {
     let key = (0, config_js_1.getServiceKey)(service);
     if (!key) {
-        console.log(chalk_1.default.yellow(`\n  No ${service} API key configured.\n`));
+        console.log(chalk_1.default.yellow(`\n  No ${config_js_1.SERVICE_KEY_LABELS[service]} API key configured.\n`));
         console.log(chalk_1.default.gray(instructions));
-        const inputKey = await prompt(`\n  ${service} API key (or press Enter to skip): `);
+        const inputKey = await prompt(`\n  ${config_js_1.SERVICE_KEY_LABELS[service]} API key (or press Enter to skip): `);
         if (inputKey) {
             (0, config_js_1.setServiceKey)(service, inputKey);
             key = inputKey;
-            console.log(chalk_1.default.green(`  ✓ ${service} key saved\n`));
+            console.log(chalk_1.default.green(`  ✓ ${config_js_1.SERVICE_KEY_LABELS[service]} key saved\n`));
         }
         else {
-            console.log(chalk_1.default.gray(`  Skipping ${service} provisioning.\n`));
+            console.log(chalk_1.default.gray(`  Skipping ${config_js_1.SERVICE_KEY_LABELS[service]} provisioning.\n`));
             return null;
         }
     }
     return key;
 }
+/**
+ * Prompt for Supabase region selection
+ */
+async function selectSupabaseRegion() {
+    console.log(chalk_1.default.white('\n  Select Supabase region (for lowest latency, pick closest to your users):\n'));
+    SUPABASE_REGIONS.forEach((region, index) => {
+        const isDefault = region.id === 'us-east-1';
+        console.log(chalk_1.default.gray(`    ${index + 1}. `) +
+            chalk_1.default.cyan(`${region.flag} ${region.name}`) +
+            (isDefault ? chalk_1.default.green(' (default)') : ''));
+    });
+    console.log('');
+    const input = await prompt(`  Enter 1-${SUPABASE_REGIONS.length} (or press Enter for default): `);
+    if (!input) {
+        return 'us-east-1';
+    }
+    const index = parseInt(input, 10) - 1;
+    if (index >= 0 && index < SUPABASE_REGIONS.length) {
+        const selected = SUPABASE_REGIONS[index];
+        console.log(chalk_1.default.green(`  ✓ Selected: ${selected.flag} ${selected.name}\n`));
+        return selected.id;
+    }
+    console.log(chalk_1.default.yellow('  Invalid selection, using default (US East).\n'));
+    return 'us-east-1';
+}
 /**
  * Create a GitHub repository
  */
@@ -55,7 +129,9 @@ async function createGitHubRepo(projectName, description = '') {
         (0, child_process_1.execSync)('gh --version', { stdio: 'pipe' });
     }
     catch {
-        console.log(chalk_1.default.yellow('  GitHub CLI (gh) not found. Install it from: https://cli.github.com\n'));
+        console.log(chalk_1.default.yellow('  GitHub CLI (gh) not found.\n'));
+        console.log(chalk_1.default.gray('  Install from: https://cli.github.com'));
+        console.log(chalk_1.default.gray('  Or skip GitHub and create manually later.\n'));
         return null;
     }
     // Check if authenticated
@@ -64,13 +140,16 @@ async function createGitHubRepo(projectName, description = '') {
     }
     catch {
         console.log(chalk_1.default.yellow('  Not logged into GitHub CLI.\n'));
-        console.log(chalk_1.default.gray('  Run: gh auth login\n'));
+        console.log(chalk_1.default.gray('  Run: gh auth login'));
+        console.log(chalk_1.default.gray('  Then try again.\n'));
         return null;
     }
     const spinner = (0, ora_1.default)('Creating GitHub repository...').start();
     try {
+        // Escape description for shell
+        const safeDescription = description.replace(/"/g, '\\"');
         // Create the repo
-        const result = (0, child_process_1.execSync)(`gh repo create ${projectName} --public --description "${description}" --source . --remote origin --push`, { encoding: 'utf-8', stdio: 'pipe' });
+        (0, child_process_1.execSync)(`gh repo create ${projectName} --public --description "${safeDescription}" --source . --remote origin --push`, { encoding: 'utf-8', stdio: 'pipe' });
         // Get the repo URL
         const repoUrl = (0, child_process_1.execSync)('gh repo view --json url -q .url', { encoding: 'utf-8' }).trim();
         const cloneUrl = `${repoUrl}.git`;
@@ -83,9 +162,11 @@ async function createGitHubRepo(projectName, description = '') {
         const message = error instanceof Error ? error.message : String(error);
         if (message.includes('already exists')) {
             console.log(chalk_1.default.yellow('  Repository already exists. Skipping.\n'));
+            console.log(chalk_1.default.gray('  Tip: You can link an existing repo with: gh repo view\n'));
         }
         else {
-            console.log(chalk_1.default.red(`  Error: ${message}\n`));
+            console.log(chalk_1.default.red(`  Error: ${message}`));
+            console.log(chalk_1.default.gray('  You can create the repository manually on GitHub.\n'));
         }
         return null;
     }
@@ -93,34 +174,39 @@ async function createGitHubRepo(projectName, description = '') {
 /**
  * Create a Supabase project
  */
-async function createSupabaseProject(projectName, organizationId) {
+async function createSupabaseProject(projectName, options) {
     const accessToken = await ensureServiceKey('supabase', '  Get your access token from: https://supabase.com/dashboard/account/tokens');
     if (!accessToken)
         return null;
+    // Select region if not provided
+    const region = options?.region || await selectSupabaseRegion();
     const spinner = (0, ora_1.default)('Creating Supabase project...').start();
     try {
+        let organizationId = options?.organizationId;
         // Get organization if not provided
         if (!organizationId) {
-            const orgsResponse = await fetch('https://api.supabase.com/v1/organizations', {
-                headers: {
-                    'Authorization': `Bearer ${accessToken}`,
+            spinner.text = 'Fetching organizations...';
+            const orgsResponse = await withRetry(() => fetch('https://api.supabase.com/v1/organizations', {
+                headers: { 'Authorization': `Bearer ${accessToken}` },
+            }).then(r => {
+                if (!r.ok)
+                    throw new Error(`Failed to fetch organizations (${r.status})`);
+                return r.json();
+            }), {
+                onRetry: (attempt) => {
+                    spinner.text = `Fetching organizations (retry ${attempt})...`;
                 },
             });
-            if (!orgsResponse.ok) {
-                throw new Error('Failed to fetch organizations. Check your access token.');
-            }
-            const orgs = await orgsResponse.json();
-            if (orgs.length === 0) {
-                throw new Error('No organizations found. Create one at supabase.com first.');
+            if (!orgsResponse || orgsResponse.length === 0) {
+                throw new Error('No organizations found. Create one at supabase.com/dashboard first.');
             }
-            organizationId = orgs[0].id;
+            organizationId = orgsResponse[0].id;
         }
-        // Generate a random password for the database
-        const dbPassword = Math.random().toString(36).slice(-16) +
-            Math.random().toString(36).slice(-16).toUpperCase() +
-            '!1';
+        spinner.text = 'Creating Supabase project...';
+        // Generate a cryptographically secure password
+        const dbPassword = generateSecurePassword();
         // Create the project
-        const createResponse = await fetch('https://api.supabase.com/v1/projects', {
+        const project = await withRetry(() => fetch('https://api.supabase.com/v1/projects', {
             method: 'POST',
             headers: {
                 'Authorization': `Bearer ${accessToken}`,
@@ -129,39 +215,49 @@ async function createSupabaseProject(projectName, organizationId) {
             body: JSON.stringify({
                 name: projectName,
                 organization_id: organizationId,
-                region: 'us-east-1',
+                region: region,
                 plan: 'free',
                 db_pass: dbPassword,
             }),
+        }).then(async (r) => {
+            if (!r.ok) {
+                const error = await r.json().catch(() => ({}));
+                throw new Error(error.message || `Failed to create project (${r.status})`);
+            }
+            return r.json();
+        }), {
+            onRetry: (attempt) => {
+                spinner.text = `Creating Supabase project (retry ${attempt})...`;
+            },
         });
-        if (!createResponse.ok) {
-            const error = await createResponse.json();
-            throw new Error(error.message || 'Failed to create project');
-        }
-        const project = await createResponse.json();
         spinner.succeed('Supabase project created!');
-        // Wait for project to be ready (it takes a moment)
+        // Wait for project to be ready
         const waitSpinner = (0, ora_1.default)('Waiting for project to be ready...').start();
         let projectReady = false;
         let attempts = 0;
         let projectDetails = {};
-        while (!projectReady && attempts < 30) {
+        while (!projectReady && attempts < 60) { // Up to 2 minutes
             await new Promise(resolve => setTimeout(resolve, 2000));
-            const statusResponse = await fetch(`https://api.supabase.com/v1/projects/${project.id}`, {
-                headers: {
-                    'Authorization': `Bearer ${accessToken}`,
-                },
-            });
-            if (statusResponse.ok) {
-                projectDetails = await statusResponse.json();
-                if (projectDetails.api_url) {
-                    projectReady = true;
+            try {
+                const statusResponse = await fetch(`https://api.supabase.com/v1/projects/${project.id}`, {
+                    headers: { 'Authorization': `Bearer ${accessToken}` },
+                });
+                if (statusResponse.ok) {
+                    projectDetails = await statusResponse.json();
+                    if (projectDetails.api_url) {
+                        projectReady = true;
+                    }
                 }
             }
+            catch {
+                // Ignore errors during polling
+            }
             attempts++;
+            waitSpinner.text = `Waiting for project to be ready... (${attempts * 2}s)`;
         }
         if (!projectReady) {
-            waitSpinner.warn('Project created but may not be fully ready yet.');
+            waitSpinner.warn('Project created but may need a few more minutes to be fully ready.');
+            console.log(chalk_1.default.gray('  You can check status at the project URL.\n'));
         }
         else {
             waitSpinner.succeed('Project ready!');
@@ -169,69 +265,128 @@ async function createSupabaseProject(projectName, organizationId) {
         const projectUrl = `https://supabase.com/dashboard/project/${project.id}`;
         console.log(chalk_1.default.gray(`  ${projectUrl}\n`));
         // Get the anon key
-        const keysResponse = await fetch(`https://api.supabase.com/v1/projects/${project.id}/api-keys`, {
-            headers: {
-                'Authorization': `Bearer ${accessToken}`,
-            },
-        });
         let anonKey = '';
-        if (keysResponse.ok) {
-            const keys = await keysResponse.json();
-            const anonKeyObj = keys.find((k) => k.name === 'anon');
-            anonKey = anonKeyObj?.api_key || '';
+        try {
+            const keysResponse = await fetch(`https://api.supabase.com/v1/projects/${project.id}/api-keys`, {
+                headers: { 'Authorization': `Bearer ${accessToken}` },
+            });
+            if (keysResponse.ok) {
+                const keys = await keysResponse.json();
+                const anonKeyObj = keys.find((k) => k.name === 'anon');
+                anonKey = anonKeyObj?.api_key || '';
+            }
+        }
+        catch {
+            console.log(chalk_1.default.yellow('  Note: Could not fetch anon key automatically.'));
+            console.log(chalk_1.default.gray('  Get it from: Settings → API in your Supabase dashboard.\n'));
         }
         return {
             projectId: project.id,
             projectUrl,
             apiUrl: projectDetails.api_url || `https://${project.id}.supabase.co`,
             anonKey,
+            dbPassword,
         };
     }
     catch (error) {
         spinner.fail('Failed to create Supabase project');
         const message = error instanceof Error ? error.message : String(error);
-        console.log(chalk_1.default.red(`  Error: ${message}\n`));
+        if (message.includes('limit')) {
+            console.log(chalk_1.default.red(`  Error: ${message}`));
+            console.log(chalk_1.default.gray('  Free tier allows 2 projects. Delete old ones or upgrade.\n'));
+        }
+        else {
+            console.log(chalk_1.default.red(`  Error: ${message}`));
+            console.log(chalk_1.default.gray('  Check your access token and try again.\n'));
+        }
         return null;
     }
 }
 /**
- * Create a Vercel project
+ * Create a Vercel project with environment variables
  */
-async function createVercelProject(projectName, gitRepoUrl) {
+async function createVercelProject(projectName, options) {
     const accessToken = await ensureServiceKey('vercel', '  Get your token from: https://vercel.com/account/tokens');
     if (!accessToken)
         return null;
     const spinner = (0, ora_1.default)('Creating Vercel project...').start();
     try {
         // Create the project
-        const createResponse = await fetch('https://api.vercel.com/v10/projects', {
+        const projectBody = {
+            name: projectName,
+            framework: 'nextjs',
+        };
+        // Link to GitHub repo if provided
+        if (options?.gitRepoUrl) {
+            projectBody.gitRepository = {
+                type: 'github',
+                repo: options.gitRepoUrl.replace('https://github.com/', ''),
+            };
+        }
+        const project = await withRetry(() => fetch('https://api.vercel.com/v10/projects', {
             method: 'POST',
             headers: {
                 'Authorization': `Bearer ${accessToken}`,
                 'Content-Type': 'application/json',
             },
-            body: JSON.stringify({
-                name: projectName,
-                framework: 'nextjs',
-                ...(gitRepoUrl && {
-                    gitRepository: {
-                        type: 'github',
-                        repo: gitRepoUrl.replace('https://github.com/', ''),
-                    },
-                }),
-            }),
+            body: JSON.stringify(projectBody),
+        }).then(async (r) => {
+            if (!r.ok) {
+                const error = await r.json().catch(() => ({}));
+                throw new Error(error.error?.message || `Failed to create project (${r.status})`);
+            }
+            return r.json();
+        }), {
+            onRetry: (attempt) => {
+                spinner.text = `Creating Vercel project (retry ${attempt})...`;
+            },
         });
-        if (!createResponse.ok) {
-            const error = await createResponse.json();
-            throw new Error(error.error?.message || 'Failed to create project');
-        }
-        const project = await createResponse.json();
         spinner.succeed('Vercel project created!');
         const projectUrl = `https://vercel.com/${project.accountId}/${project.name}`;
         console.log(chalk_1.default.gray(`  ${projectUrl}\n`));
+        // Set environment variables if provided
+        let envVarsSet = false;
+        if (options?.envVars && Object.keys(options.envVars).length > 0) {
+            const envSpinner = (0, ora_1.default)('Setting environment variables...').start();
+            try {
+                // Vercel expects env vars in a specific format
+                const envVarPromises = Object.entries(options.envVars).map(([key, value]) => fetch(`https://api.vercel.com/v10/projects/${project.id}/env`, {
+                    method: 'POST',
+                    headers: {
+                        'Authorization': `Bearer ${accessToken}`,
+                        'Content-Type': 'application/json',
+                    },
+                    body: JSON.stringify({
+                        key,
+                        value,
+                        type: key.startsWith('NEXT_PUBLIC_') ? 'plain' : 'encrypted',
+                        target: ['production', 'preview', 'development'],
+                    }),
+                }).then(r => {
+                    if (!r.ok) {
+                        console.log(chalk_1.default.yellow(`  Warning: Could not set ${key}`));
+                    }
+                    return r.ok;
+                }));
+                const results = await Promise.all(envVarPromises);
+                const successCount = results.filter(Boolean).length;
+                if (successCount === Object.keys(options.envVars).length) {
+                    envSpinner.succeed(`Set ${successCount} environment variables!`);
+                    envVarsSet = true;
+                }
+                else {
+                    envSpinner.warn(`Set ${successCount}/${Object.keys(options.envVars).length} environment variables`);
+                }
+            }
+            catch (error) {
+                envSpinner.warn('Could not set some environment variables');
+                console.log(chalk_1.default.gray('  Set them manually in the Vercel dashboard.\n'));
+            }
+        }
         return {
             projectId: project.id,
             projectUrl,
+            envVarsSet,
         };
     }
     catch (error) {
@@ -239,9 +394,11 @@ async function createVercelProject(projectName, gitRepoUrl) {
         const message = error instanceof Error ? error.message : String(error);
         if (message.includes('already exists')) {
             console.log(chalk_1.default.yellow('  Project already exists. Skipping.\n'));
+            console.log(chalk_1.default.gray('  You can link to existing project in Vercel dashboard.\n'));
         }
         else {
-            console.log(chalk_1.default.red(`  Error: ${message}\n`));
+            console.log(chalk_1.default.red(`  Error: ${message}`));
+            console.log(chalk_1.default.gray('  Check your token and try again.\n'));
         }
         return null;
     }
@@ -266,9 +423,20 @@ async function provisionAll(projectName, description = '') {
     if (supabase) {
         result.supabase = supabase;
     }
-    // 3. Vercel
+    // 3. Vercel (with environment variables from Supabase)
     console.log(chalk_1.default.white('  Step 3: Vercel Project\n'));
-    const vercel = await createVercelProject(projectName, result.github?.repoUrl);
+    // Prepare env vars for Vercel
+    const vercelEnvVars = {};
+    if (result.supabase) {
+        vercelEnvVars['NEXT_PUBLIC_SUPABASE_URL'] = result.supabase.apiUrl;
+        if (result.supabase.anonKey) {
+            vercelEnvVars['NEXT_PUBLIC_SUPABASE_ANON_KEY'] = result.supabase.anonKey;
+        }
+    }
+    const vercel = await createVercelProject(projectName, {
+        gitRepoUrl: result.github?.repoUrl,
+        envVars: Object.keys(vercelEnvVars).length > 0 ? vercelEnvVars : undefined,
+    });
     if (vercel) {
         result.vercel = vercel;
     }
@@ -289,7 +457,8 @@ async function provisionAll(projectName, description = '') {
         console.log(chalk_1.default.yellow('  ⏭️  Supabase: Skipped'));
     }
     if (result.vercel) {
-        console.log(chalk_1.default.green('  ✅ Vercel: ') + chalk_1.default.gray(result.vercel.projectUrl));
+        const envStatus = result.vercel.envVarsSet ? ' (env vars set!)' : '';
+        console.log(chalk_1.default.green('  ✅ Vercel: ') + chalk_1.default.gray(result.vercel.projectUrl) + chalk_1.default.green(envStatus));
     }
     else {
         console.log(chalk_1.default.yellow('  ⏭️  Vercel: Skipped'));