@codebakers/cli 2.8.0 → 3.0.0

package/src/lib/fingerprint.ts

@@ -0,0 +1,122 @@
+import * as os from 'os';
+import * as crypto from 'crypto';
+import { execSync } from 'child_process';
+
+/**
+ * Device fingerprinting for zero-friction trial system
+ * Creates a stable, unique identifier for each device to prevent trial abuse
+ */
+
+export interface DeviceFingerprint {
+  machineId: string;
+  deviceHash: string;
+  platform: string;
+  hostname: string;
+}
+
+/**
+ * Get a stable machine identifier based on OS
+ * - Windows: MachineGuid from registry
+ * - macOS: IOPlatformUUID from system
+ * - Linux: /etc/machine-id
+ */
+function getMachineId(): string {
+  try {
+    const platform = os.platform();
+
+    if (platform === 'win32') {
+      // Windows: Use MachineGuid from registry
+      const output = execSync(
+        'reg query "HKLM\\SOFTWARE\\Microsoft\\Cryptography" /v MachineGuid',
+        { encoding: 'utf-8', stdio: ['pipe', 'pipe', 'pipe'] }
+      );
+      const match = output.match(/MachineGuid\s+REG_SZ\s+(.+)/);
+      if (match && match[1]) {
+        return match[1].trim();
+      }
+    } else if (platform === 'darwin') {
+      // macOS: Use hardware UUID
+      const output = execSync(
+        'ioreg -rd1 -c IOPlatformExpertDevice | grep IOPlatformUUID',
+        { encoding: 'utf-8', stdio: ['pipe', 'pipe', 'pipe'] }
+      );
+      const match = output.match(/"IOPlatformUUID"\s*=\s*"(.+)"/);
+      if (match && match[1]) {
+        return match[1];
+      }
+    } else {
+      // Linux: Use machine-id
+      const output = execSync('cat /etc/machine-id', {
+        encoding: 'utf-8',
+        stdio: ['pipe', 'pipe', 'pipe'],
+      });
+      return output.trim();
+    }
+  } catch {
+    // Fallback handled below
+  }
+
+  // Fallback: Create a stable hash from hostname + username + home directory
+  // This is less reliable but works when we can't access system IDs
+  const fallbackData = [
+    os.hostname(),
+    os.userInfo().username,
+    os.homedir(),
+    os.platform(),
+    os.arch(),
+  ].join('|');
+
+  return crypto.createHash('sha256').update(fallbackData).digest('hex').slice(0, 36);
+}
+
+/**
+ * Get a complete device fingerprint
+ * The deviceHash is the primary identifier used for trial tracking
+ */
+export function getDeviceFingerprint(): DeviceFingerprint {
+  const machineId = getMachineId();
+
+  // Collect stable machine characteristics
+  const fingerprintData = {
+    machineId,
+    hostname: os.hostname(),
+    username: os.userInfo().username,
+    platform: os.platform(),
+    arch: os.arch(),
+    cpuModel: os.cpus()[0]?.model || 'unknown',
+    totalMemory: Math.floor(os.totalmem() / (1024 * 1024 * 1024)), // GB rounded
+    homeDir: os.homedir(),
+  };
+
+  // Create a stable hash from all characteristics
+  const deviceHash = crypto
+    .createHash('sha256')
+    .update(JSON.stringify(fingerprintData))
+    .digest('hex');
+
+  return {
+    machineId,
+    deviceHash,
+    platform: os.platform(),
+    hostname: os.hostname(),
+  };
+}
+
+/**
+ * Validate that we can create a fingerprint
+ * Used for diagnostics
+ */
+export function canCreateFingerprint(): { success: boolean; error?: string } {
+  try {
+    const fp = getDeviceFingerprint();
+    if (fp.deviceHash && fp.deviceHash.length === 64) {
+      return { success: true };
+    }
+    return { success: false, error: 'Invalid fingerprint generated' };
+  } catch (error) {
+    return {
+      success: false,
+      error: error instanceof Error ? error.message : 'Unknown error',
+    };
+  }
+}

package/src/mcp/server.ts

@@ -8,7 +8,7 @@ import {
   ErrorCode,
   McpError,
 } from '@modelcontextprotocol/sdk/types.js';
-import { getApiKey, getApiUrl, getExperienceLevel, setExperienceLevel, getServiceKey, setServiceKey, type ExperienceLevel } from '../config.js';
+import { getApiKey, getApiUrl, getExperienceLevel, setExperienceLevel, getServiceKey, setServiceKey, getTrialState, isTrialExpired, getTrialDaysRemaining, hasValidAccess, getAuthMode, type ExperienceLevel, type TrialState } from '../config.js';
 import { audit as runAudit } from '../commands/audit.js';
 import { heal as runHeal } from '../commands/heal.js';
 import { getCliVersion } from '../lib/api.js';
@@ -61,12 +61,16 @@ class CodeBakersServer {
   private server: Server;
   private apiKey: string | null;
   private apiUrl: string;
+  private trialState: TrialState | null;
+  private authMode: 'apiKey' | 'trial' | 'none';
   private autoUpdateChecked = false;
   private autoUpdateInProgress = false;
 
   constructor() {
     this.apiKey = getApiKey();
     this.apiUrl = getApiUrl();
+    this.trialState = getTrialState();
+    this.authMode = getAuthMode();
 
     this.server = new Server(
       {
@@ -88,12 +92,28 @@ class CodeBakersServer {
     });
   }
 
+  /**
+   * Get authorization headers for API requests
+   * Supports both API key (paid users) and trial ID (free users)
+   */
+  private getAuthHeaders(): Record<string, string> {
+    if (this.apiKey) {
+      return { 'Authorization': `Bearer ${this.apiKey}` };
+    }
+
+    if (this.trialState?.trialId) {
+      return { 'X-Trial-Id': this.trialState.trialId };
+    }
+
+    return {};
+  }
+
   /**
    * Automatically check for and apply pattern updates
    * Runs silently in background - no user intervention needed
    */
   private async checkAndAutoUpdate(): Promise<void> {
-    if (this.autoUpdateChecked || this.autoUpdateInProgress || !this.apiKey) {
+    if (this.autoUpdateChecked || this.autoUpdateInProgress || this.authMode === 'none') {
       return;
     }
 
@@ -131,7 +151,7 @@ class CodeBakersServer {
 
       // Fetch latest version
       const response = await fetch(`${this.apiUrl}/api/content/version`, {
-        headers: { 'Authorization': `Bearer ${this.apiKey}` },
+        headers: this.getAuthHeaders(),
       });
 
       if (!response.ok) {
@@ -153,7 +173,7 @@ class CodeBakersServer {
 
       // Fetch full content and update
       const contentResponse = await fetch(`${this.apiUrl}/api/content`, {
-        headers: { 'Authorization': `Bearer ${this.apiKey}` },
+        headers: this.getAuthHeaders(),
       });
 
       if (!contentResponse.ok) {
@@ -400,7 +420,7 @@ class CodeBakersServer {
     let latest: { version: string; moduleCount: number } | null = null;
     try {
       const response = await fetch(`${this.apiUrl}/api/content/version`, {
-        headers: this.apiKey ? { 'Authorization': `Bearer ${this.apiKey}` } : {},
+        headers: this.getAuthHeaders(),
       });
       if (response.ok) {
         latest = await response.json();
@@ -566,7 +586,7 @@ class CodeBakersServer {
         {
           name: 'scaffold_project',
           description:
-            'Create a new project from scratch with Next.js + Supabase + Drizzle. Use this when user wants to build something new and no project exists yet. Creates all files, installs dependencies, and sets up CodeBakers patterns automatically.',
+            'Create a new project from scratch with Next.js + Supabase + Drizzle. Use this when user wants to build something new and no project exists yet. Creates all files, installs dependencies, and sets up CodeBakers patterns automatically. Set fullDeploy=true for seamless idea-to-deployment (creates GitHub repo, Supabase project, and deploys to Vercel). When fullDeploy=true, first call returns explanation - then call again with deployConfirmed=true after user confirms.',
           inputSchema: {
             type: 'object' as const,
             properties: {
@@ -578,6 +598,14 @@ class CodeBakersServer {
                 type: 'string',
                 description: 'Brief description of what the project is for (used in PRD.md)',
               },
+              fullDeploy: {
+                type: 'boolean',
+                description: 'If true, enables full deployment flow (GitHub + Supabase + Vercel). First call returns explanation for user confirmation.',
+              },
+              deployConfirmed: {
+                type: 'boolean',
+                description: 'Set to true AFTER user confirms they want full deployment. Only set this after showing user the explanation and getting their approval.',
+              },
             },
             required: ['projectName'],
           },
@@ -871,13 +899,38 @@ class CodeBakersServer {
 
     // Handle tool calls
     this.server.setRequestHandler(CallToolRequestSchema, async (request) => {
-      if (!this.apiKey) {
+      // Check access: API key OR valid trial
+      if (this.authMode === 'none') {
         throw new McpError(
           ErrorCode.InvalidRequest,
-          'Not logged in. Run `codebakers login` first.'
+          'Not logged in. Run `codebakers go` to start a free trial, or `codebakers setup` if you have an account.'
         );
       }
 
+      // Check if trial expired
+      if (this.authMode === 'trial' && isTrialExpired()) {
+        const trialState = getTrialState();
+        if (trialState?.stage === 'anonymous') {
+          throw new McpError(
+            ErrorCode.InvalidRequest,
+            'Trial expired. Run `codebakers extend` to add 7 more days with GitHub, or `codebakers billing` to upgrade.'
+          );
+        } else {
+          throw new McpError(
+            ErrorCode.InvalidRequest,
+            'Trial expired. Run `codebakers billing` to upgrade to a paid plan.'
+          );
+        }
+      }
+
+      // Show warning if trial expiring soon
+      if (this.authMode === 'trial') {
+        const daysRemaining = getTrialDaysRemaining();
+        if (daysRemaining <= 2) {
+          console.error(`[CodeBakers] Trial expires in ${daysRemaining} day${daysRemaining !== 1 ? 's' : ''}. Run 'codebakers extend' or 'codebakers billing'.`);
+        }
+      }
+
       const { name, arguments: args } = request.params;
 
       switch (name) {
@@ -900,7 +953,7 @@ class CodeBakersServer {
           return this.handleGetPatternSection(args as { pattern: string; section: string });
 
         case 'scaffold_project':
-          return this.handleScaffoldProject(args as { projectName: string; description?: string });
+          return this.handleScaffoldProject(args as { projectName: string; description?: string; fullDeploy?: boolean; deployConfirmed?: boolean });
 
         case 'init_project':
           return this.handleInitProject(args as { projectName?: string });
@@ -969,7 +1022,7 @@ class CodeBakersServer {
       method: 'POST',
       headers: {
         'Content-Type': 'application/json',
-        Authorization: `Bearer ${this.apiKey}`,
+        ...this.getAuthHeaders(),
       },
       body: JSON.stringify({
         prompt: userRequest,
@@ -1095,9 +1148,7 @@ Show the user what their simple request was expanded into, then proceed with the
   private async handleListPatterns() {
     const response = await fetch(`${this.apiUrl}/api/patterns`, {
       method: 'GET',
-      headers: {
-        Authorization: `Bearer ${this.apiKey}`,
-      },
+      headers: this.getAuthHeaders(),
     });
 
     if (!response.ok) {
@@ -1156,7 +1207,7 @@ Show the user what their simple request was expanded into, then proceed with the
       method: 'POST',
       headers: {
         'Content-Type': 'application/json',
-        Authorization: `Bearer ${this.apiKey}`,
+        ...this.getAuthHeaders(),
       },
       body: JSON.stringify({ patterns }),
     });
@@ -1180,7 +1231,7 @@ Show the user what their simple request was expanded into, then proceed with the
       method: 'POST',
       headers: {
         'Content-Type': 'application/json',
-        Authorization: `Bearer ${this.apiKey}`,
+        ...this.getAuthHeaders(),
       },
       body: JSON.stringify({ query }),
     });
@@ -1376,10 +1427,15 @@ Show the user what their simple request was expanded into, then proceed with the
     };
   }
 
-  private async handleScaffoldProject(args: { projectName: string; description?: string }) {
-    const { projectName, description } = args;
+  private async handleScaffoldProject(args: { projectName: string; description?: string; fullDeploy?: boolean; deployConfirmed?: boolean }) {
+    const { projectName, description, fullDeploy, deployConfirmed } = args;
     const cwd = process.cwd();
 
+    // If fullDeploy requested but not confirmed, show explanation and ask for confirmation
+    if (fullDeploy && !deployConfirmed) {
+      return this.showFullDeployExplanation(projectName, description);
+    }
+
     // Check if directory has files
     const files = fs.readdirSync(cwd);
     const hasFiles = files.filter(f => !f.startsWith('.')).length > 0;
@@ -1462,7 +1518,7 @@ Show the user what their simple request was expanded into, then proceed with the
 
       const response = await fetch(`${this.apiUrl}/api/content`, {
         method: 'GET',
-        headers: { Authorization: `Bearer ${this.apiKey}` },
+        headers: this.getAuthHeaders(),
       });
 
       if (response.ok) {
@@ -1533,14 +1589,22 @@ phase: setup
 
       results.push('\n---\n');
       results.push('## ✅ Project Created Successfully!\n');
-      results.push('### Next Steps:\n');
-      results.push('1. **Set up Supabase:** Go to https://supabase.com and create a free project');
-      results.push('2. **Add credentials:** Copy your Supabase URL and anon key to `.env.local`');
-      results.push('3. **Start building:** Just tell me what features you want!\n');
-      results.push('### Example:\n');
-      results.push('> "Add user authentication with email/password"');
-      results.push('> "Create a dashboard with stats cards"');
-      results.push('> "Build a todo list with CRUD operations"');
+
+      // If fullDeploy is enabled and confirmed, proceed with cloud deployment
+      if (fullDeploy && deployConfirmed) {
+        results.push('## 🚀 Starting Full Deployment...\n');
+        const deployResults = await this.executeFullDeploy(projectName, cwd, description);
+        results.push(...deployResults);
+      } else {
+        results.push('### Next Steps:\n');
+        results.push('1. **Set up Supabase:** Go to https://supabase.com and create a free project');
+        results.push('2. **Add credentials:** Copy your Supabase URL and anon key to `.env.local`');
+        results.push('3. **Start building:** Just tell me what features you want!\n');
+        results.push('### Example:\n');
+        results.push('> "Add user authentication with email/password"');
+        results.push('> "Create a dashboard with stats cards"');
+        results.push('> "Build a todo list with CRUD operations"');
+      }
 
     } catch (error) {
       const message = error instanceof Error ? error.message : 'Unknown error';
@@ -1555,6 +1619,285 @@ phase: setup
     };
   }
 
+  /**
+   * Show explanation of what fullDeploy will do and ask for confirmation
+   */
+  private showFullDeployExplanation(projectName: string, description?: string) {
+    const explanation = `# 🚀 Full Deployment: ${projectName}
+
+## What This Will Do
+
+Full deployment creates a complete production-ready environment automatically:
+
+### 1. 📁 Local Project
+- Create Next.js + Supabase + Drizzle project
+- Install all dependencies
+- Set up CodeBakers patterns
+
+### 2. 🐙 GitHub Repository
+- Create a new private repository: \`${projectName}\`
+- Initialize git and push code
+- Set up .gitignore properly
+
+### 3. 🗄️ Supabase Project
+- Create a new Supabase project
+- Get database connection string
+- Get API keys (anon + service role)
+- Auto-configure .env.local
+
+### 4. 🔺 Vercel Deployment
+- Deploy to Vercel
+- Connect to GitHub for auto-deploys
+- Set all environment variables
+- Get your live URL
+
+---
+
+## Requirements
+
+Make sure you have these CLIs installed and authenticated:
+- \`gh\` - GitHub CLI (run: \`gh auth login\`)
+- \`supabase\` - Supabase CLI (run: \`supabase login\`)
+- \`vercel\` - Vercel CLI (run: \`vercel login\`)
+
+---
+
+## 🎯 Result
+
+After completion, you'll have:
+- ✅ GitHub repo with your code
+- ✅ Supabase project with database ready
+- ✅ Live URL on Vercel
+- ✅ Auto-deploys on every push
+
+---
+
+**⚠️ IMPORTANT: Ask the user to confirm before proceeding.**
+
+To proceed, call \`scaffold_project\` again with:
+\`\`\`json
+{
+  "projectName": "${projectName}",
+  "description": "${description || ''}",
+  "fullDeploy": true,
+  "deployConfirmed": true
+}
+\`\`\`
+
+Or if user declines, call without fullDeploy:
+\`\`\`json
+{
+  "projectName": "${projectName}",
+  "description": "${description || ''}"
+}
+\`\`\`
+`;
+
+    return {
+      content: [{
+        type: 'text' as const,
+        text: explanation,
+      }],
+    };
+  }
+
+  /**
+   * Execute full cloud deployment (GitHub + Supabase + Vercel)
+   */
+  private async executeFullDeploy(projectName: string, cwd: string, description?: string): Promise<string[]> {
+    const results: string[] = [];
+
+    // Check for required CLIs
+    const cliChecks = this.checkRequiredCLIs();
+    if (cliChecks.missing.length > 0) {
+      results.push('### ❌ Missing Required CLIs\n');
+      results.push('The following CLIs are required for full deployment:\n');
+      for (const cli of cliChecks.missing) {
+        results.push(`- **${cli.name}**: ${cli.installCmd}`);
+      }
+      results.push('\nInstall the missing CLIs and try again.');
+      return results;
+    }
+    results.push('✓ All required CLIs found\n');
+
+    // Step 1: Initialize Git and create GitHub repo
+    results.push('### Step 1: GitHub Repository\n');
+    try {
+      // Initialize git
+      execSync('git init', { cwd, stdio: 'pipe' });
+      execSync('git add .', { cwd, stdio: 'pipe' });
+      execSync('git commit -m "Initial commit from CodeBakers"', { cwd, stdio: 'pipe' });
+      results.push('✓ Initialized git repository');
+
+      // Create GitHub repo
+      const ghDescription = description || `${projectName} - Created with CodeBakers`;
+      execSync(`gh repo create ${projectName} --private --source=. --push --description "${ghDescription}"`, { cwd, stdio: 'pipe' });
+      results.push(`✓ Created GitHub repo: ${projectName}`);
+      results.push(`  → https://github.com/${this.getGitHubUsername()}/${projectName}\n`);
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : 'Unknown error';
+      results.push(`⚠️ GitHub setup failed: ${msg}`);
+      results.push('  You can create the repo manually: gh repo create\n');
+    }
+
+    // Step 2: Create Supabase project
+    results.push('### Step 2: Supabase Project\n');
+    try {
+      // Create Supabase project (this may take a while)
+      const orgId = this.getSupabaseOrgId();
+      if (orgId) {
+        execSync(`supabase projects create ${projectName} --org-id ${orgId} --region us-east-1 --db-password "${this.generatePassword()}"`, { cwd, stdio: 'pipe', timeout: 120000 });
+        results.push(`✓ Created Supabase project: ${projectName}`);
+
+        // Get project credentials
+        const projectsOutput = execSync('supabase projects list --output json', { cwd, encoding: 'utf-8' });
+        const projects = JSON.parse(projectsOutput);
+        const newProject = projects.find((p: { name: string }) => p.name === projectName);
+
+        if (newProject) {
+          // Update .env.local with Supabase credentials
+          const envPath = path.join(cwd, '.env.local');
+          let envContent = fs.readFileSync(envPath, 'utf-8');
+          envContent = envContent.replace('your-supabase-url', `https://${newProject.id}.supabase.co`);
+          envContent = envContent.replace('your-anon-key', newProject.anon_key || 'YOUR_ANON_KEY');
+          fs.writeFileSync(envPath, envContent);
+          results.push('✓ Updated .env.local with Supabase credentials\n');
+        }
+      } else {
+        results.push('⚠️ Could not detect Supabase organization');
+        results.push('  Run: supabase orgs list\n');
+      }
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : 'Unknown error';
+      results.push(`⚠️ Supabase setup failed: ${msg}`);
+      results.push('  Create project manually at: https://supabase.com/dashboard\n');
+    }
+
+    // Step 3: Deploy to Vercel
+    results.push('### Step 3: Vercel Deployment\n');
+    try {
+      // Link to Vercel (creates new project)
+      execSync('vercel link --yes', { cwd, stdio: 'pipe' });
+      results.push('✓ Linked to Vercel');
+
+      // Set environment variables from .env.local
+      const envPath = path.join(cwd, '.env.local');
+      if (fs.existsSync(envPath)) {
+        const envContent = fs.readFileSync(envPath, 'utf-8');
+        const envVars = envContent.split('\n')
+          .filter(line => line.includes('=') && !line.startsWith('#'))
+          .map(line => {
+            const [key, ...valueParts] = line.split('=');
+            return { key: key.trim(), value: valueParts.join('=').trim() };
+          });
+
+        for (const { key, value } of envVars) {
+          if (value && !value.includes('your-')) {
+            try {
+              execSync(`vercel env add ${key} production <<< "${value}"`, { cwd, stdio: 'pipe', shell: 'bash' });
+            } catch {
+              // Env var might already exist, try to update
+            }
+          }
+        }
+        results.push('✓ Set environment variables');
+      }
+
+      // Deploy to production
+      const deployOutput = execSync('vercel --prod --yes', { cwd, encoding: 'utf-8' });
+      const urlMatch = deployOutput.match(/https:\/\/[^\s]+\.vercel\.app/);
+      const deployUrl = urlMatch ? urlMatch[0] : 'Check Vercel dashboard';
+      results.push(`✓ Deployed to Vercel`);
+      results.push(`  → ${deployUrl}\n`);
+
+      // Connect to GitHub for auto-deploys
+      try {
+        execSync('vercel git connect --yes', { cwd, stdio: 'pipe' });
+        results.push('✓ Connected to GitHub for auto-deploys\n');
+      } catch {
+        results.push('⚠️ Could not auto-connect to GitHub\n');
+      }
+
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : 'Unknown error';
+      results.push(`⚠️ Vercel deployment failed: ${msg}`);
+      results.push('  Deploy manually: vercel --prod\n');
+    }
+
+    // Summary
+    results.push('---\n');
+    results.push('## 🎉 Full Deployment Complete!\n');
+    results.push('Your project is now live with:');
+    results.push('- GitHub repo with CI/CD ready');
+    results.push('- Supabase database configured');
+    results.push('- Vercel hosting with auto-deploys\n');
+    results.push('**Start building features - every push auto-deploys!**');
+
+    return results;
+  }
+
+  /**
+   * Check if required CLIs are installed
+   */
+  private checkRequiredCLIs(): { installed: string[]; missing: { name: string; installCmd: string }[] } {
+    const clis = [
+      { name: 'gh', cmd: 'gh --version', installCmd: 'npm install -g gh' },
+      { name: 'supabase', cmd: 'supabase --version', installCmd: 'npm install -g supabase' },
+      { name: 'vercel', cmd: 'vercel --version', installCmd: 'npm install -g vercel' },
+    ];
+
+    const installed: string[] = [];
+    const missing: { name: string; installCmd: string }[] = [];
+
+    for (const cli of clis) {
+      try {
+        execSync(cli.cmd, { stdio: 'pipe' });
+        installed.push(cli.name);
+      } catch {
+        missing.push({ name: cli.name, installCmd: cli.installCmd });
+      }
+    }
+
+    return { installed, missing };
+  }
+
+  /**
+   * Get GitHub username from gh CLI
+   */
+  private getGitHubUsername(): string {
+    try {
+      const output = execSync('gh api user --jq .login', { encoding: 'utf-8' });
+      return output.trim();
+    } catch {
+      return 'YOUR_USERNAME';
+    }
+  }
+
+  /**
+   * Get Supabase organization ID
+   */
+  private getSupabaseOrgId(): string | null {
+    try {
+      const output = execSync('supabase orgs list --output json', { encoding: 'utf-8' });
+      const orgs = JSON.parse(output);
+      return orgs[0]?.id || null;
+    } catch {
+      return null;
+    }
+  }
+
+  /**
+   * Generate a secure random password for Supabase
+   */
+  private generatePassword(): string {
+    const chars = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
+    let password = '';
+    for (let i = 0; i < 24; i++) {
+      password += chars.charAt(Math.floor(Math.random() * chars.length));
+    }
+    return password;
+  }
+
   private async handleInitProject(args: { projectName?: string }) {
     const cwd = process.cwd();
     const results: string[] = [];
@@ -1581,7 +1924,7 @@ phase: setup
     try {
       const response = await fetch(`${this.apiUrl}/api/content`, {
         method: 'GET',
-        headers: { Authorization: `Bearer ${this.apiKey}` },
+        headers: this.getAuthHeaders(),
       });
 
       if (!response.ok) {
@@ -2691,7 +3034,7 @@ Just describe what you want to build! I'll automatically:
         method: 'POST',
         headers: {
           'Content-Type': 'application/json',
-          Authorization: `Bearer ${this.apiKey}`,
+          ...this.getAuthHeaders(),
         },
         body: JSON.stringify({
           category,
@@ -2743,7 +3086,7 @@ Just describe what you want to build! I'll automatically:
         method: 'POST',
         headers: {
           'Content-Type': 'application/json',
-          Authorization: `Bearer ${this.apiKey}`,
+          ...this.getAuthHeaders(),
         },
         body: JSON.stringify({
           eventType,