@cognite/cli 1.3.0 → 1.3.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/_templates/app/new/root/AGENTS.md.ejs.t +26 -8
- package/dist/cli/cli.js +43 -43
- package/package.json +1 -1
|
@@ -77,9 +77,14 @@ async function updateState(next: AppState, api: HostAppAPI) {
|
|
|
77
77
|
|
|
78
78
|
## 3. Dependency Injection
|
|
79
79
|
|
|
80
|
-
|
|
80
|
+
**All non-stateless dependencies must be injected.** Never import and call a service, SDK client, or stateful module directly inside a component or hook — it makes the code untestable and tightly coupled.
|
|
81
81
|
|
|
82
|
-
|
|
82
|
+
What to inject: SDK clients, API services, analytics, timers (`Date.now`, `setTimeout`), random generators, external stores.
|
|
83
|
+
What not to inject: pure functions, constants, type utilities.
|
|
84
|
+
|
|
85
|
+
Use **narrow interfaces** — depend only on the subset of a service you actually need.
|
|
86
|
+
|
|
87
|
+
### React context (hooks and components)
|
|
83
88
|
|
|
84
89
|
```typescript
|
|
85
90
|
const defaultDeps = { useDataSource, useAnalytics };
|
|
@@ -91,7 +96,7 @@ export function useMyHook() {
|
|
|
91
96
|
}
|
|
92
97
|
```
|
|
93
98
|
|
|
94
|
-
### Factory overrides
|
|
99
|
+
### Factory overrides (plain functions)
|
|
95
100
|
|
|
96
101
|
```typescript
|
|
97
102
|
type Deps = { serviceFactory: () => SomeService };
|
|
@@ -260,25 +265,38 @@ Place reusable factories in `src/__mocks__/`. Use `.test` TLD for fake URLs (RFC
|
|
|
260
265
|
## 7. TypeScript Rules
|
|
261
266
|
|
|
262
267
|
- Never use `any`; prefer `unknown` or explicit strong types
|
|
263
|
-
- Never use `as
|
|
268
|
+
- Never use `as` casts — they silence the compiler without providing safety. Use type guards instead.
|
|
269
|
+
- Exception: `Partial<T> as T` is acceptable for test mocks only.
|
|
270
|
+
- All function parameters must have type annotations.
|
|
264
271
|
- Use direct React type imports: `import type { ComponentType, ReactNode } from 'react'`
|
|
265
272
|
|
|
266
273
|
```typescript
|
|
267
|
-
|
|
268
|
-
|
|
274
|
+
// ❌ Never
|
|
275
|
+
const x: any = data;
|
|
276
|
+
const y = data as SomeType;
|
|
277
|
+
const z = {} as unknown as Window;
|
|
278
|
+
function process(data) { ... } // missing parameter type
|
|
279
|
+
|
|
280
|
+
// ✅ Type guard
|
|
281
|
+
function isSomeType(value: unknown): value is SomeType {
|
|
282
|
+
return typeof value === 'object' && value !== null && 'id' in value;
|
|
269
283
|
}
|
|
284
|
+
if (isSomeType(data)) { /* TypeScript now knows */ }
|
|
285
|
+
|
|
286
|
+
// ✅ Test mock only
|
|
287
|
+
const mock = { postMessage: vi.fn() } as Partial<Window> as Window;
|
|
270
288
|
```
|
|
271
289
|
|
|
272
290
|
---
|
|
273
291
|
|
|
274
|
-
##
|
|
292
|
+
## 8. CogniteClient / authentication
|
|
275
293
|
|
|
276
294
|
Auth is handled by `CogniteSdkProvider` from `@cognite/app-sdk/react` (see `App.tsx`). Nested components get the client via `useCogniteSdk()`. To wire up or migrate auth, run the `/setup-flows-auth` skill.
|
|
277
295
|
|
|
278
296
|
---
|
|
279
297
|
|
|
280
298
|
|
|
281
|
-
##
|
|
299
|
+
## 9. Commits and pull requests
|
|
282
300
|
|
|
283
301
|
Use [Conventional Commits v1.0.0](https://www.conventionalcommits.org/en/v1.0.0/).
|
|
284
302
|
|
package/dist/cli/cli.js
CHANGED
|
@@ -1,13 +1,13 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
|
-
import{a as o,e as qe}from"../chunk-A5ASLC6T.js";import{writeSync as
|
|
2
|
+
import{a as o,e as qe}from"../chunk-A5ASLC6T.js";import{writeSync as is}from"fs";import{Command as ss}from"commander";var Qe="https://docs.cognite.com/cdf/access/";function _(e){return e!==null&&typeof e=="object"}o(_,"isRecord");function X(e){return e instanceof Error&&"status"in e&&typeof e.status=="number"}o(X,"isHttpError");function Bn(e){switch(e){case 401:return`Your credentials are invalid or expired. Check your client ID and secret.
|
|
3
3
|
See: ${Qe}`;case 403:return`You don't have the required CDF capabilities. Please contact your CDF admin.
|
|
4
|
-
See: ${Qe}`;default:return}}o(
|
|
5
|
-
${n}`),{cause:t}):null}o(B,"enrichedHttpError");function
|
|
4
|
+
See: ${Qe}`;default:return}}o(Bn,"httpStatusHint");function B(e){let t=e instanceof Error?e:new Error(String(e));if(!X(t))return null;let n=Bn(t.status);return n?Object.assign(new Error(`${t.message}
|
|
5
|
+
${n}`),{cause:t}):null}o(B,"enrichedHttpError");function Yn(e){if(!_(e))return null;let t=e.missing;if(Array.isArray(t))return t;let n=e.data;if(_(n)){let r=n.error;if(_(r)&&Array.isArray(r.missing))return r.missing;if(Array.isArray(n.missing))return n.missing}return null}o(Yn,"findMissingArray");function Jn(e,t){if(!X(e)||e.status!==400)return!1;let n=Yn(e);return n?n.some(r=>_(r)&&typeof r.externalId=="string"&&t.includes(r.externalId)):!1}o(Jn,"isMissingExternalIdError");function ye(e,t){return X(e)&&e.status===404||Jn(e,t)}o(ye,"isNotFoundError");var et=["DRAFT","PUBLISHED","DEPRECATED","ARCHIVED"],tt=["ACTIVE","PREVIEW"],he=class he extends Error{constructor(t,n){super(`Version ${n} of app ${t} not found`),this.name="AppVersionNotFoundError",this.appExternalId=t,this.version=n}};o(he,"AppVersionNotFoundError");var k=he;function nt(e,t){return e.includes(t)}o(nt,"includesValue");function zn(e){return nt(et,e)}o(zn,"isAppVersionLifecycleState");function Xn(e){return nt(tt,e)}o(Xn,"isAppVersionAlias");function Wn(e){return typeof e.version=="string"&&zn(e.lifecycleState)&&typeof e.entrypoint=="string"&&typeof e.createdTime=="number"&&typeof e.createdBy=="string"&&typeof e.appExternalId=="string"&&(e.alias===void 0||Xn(e.alias))&&(e.comment===void 0||typeof e.comment=="string")}o(Wn,"isAppVersion");function Ze(e){if(!_(e))throw new Error("Invalid version response: not an object");if(!Wn(e))throw new Error("Invalid version response: missing or malformed fields");return e}o(Ze,"parseAppVersion");var Ce=class Ce{constructor(t){this.client=t}get appsBasePath(){return`/api/v1/projects/${encodeURIComponent(this.client.project)}/apphosting/apps`}async createApp(t,n,r){try{await this.client.post(this.appsBasePath,{data:{items:[{externalId:t,name:n,description:r}]}})}catch(i){throw B(i)??i}}async uploadVersion(t,n,r,i,a="index.html"){console.log(`\u{1F4E4} Uploading version ${n}...`);let s=new FormData;s.append("file",new Blob([new Uint8Array(r)]),i),s.append("version",n),s.append("entryPath",a);let p=encodeURIComponent(t),c=`${this.appsBasePath}/${p}/versions`,l=await this.client.authenticate(),m=`${this.client.getBaseUrl()}${c}`,d=new AbortController,u=setTimeout(()=>d.abort(),300*1e3),C;try{C=await fetch(m,{method:"POST",headers:{Authorization:`Bearer ${l}`},body:s,signal:d.signal})}catch(g){throw g instanceof Error&&g.name==="AbortError"?new Error("Upload timed out after 5 minutes"):g}finally{clearTimeout(u)}if(!C.ok){let g=await C.text(),E=g;try{let A=JSON.parse(g);if(_(A)){let P=A.error;if(typeof P=="string")E=P;else if(_(P)){let x=P.message,f=P.code;E=typeof x=="string"?x:f!=null?`Unknown error (code: ${f})`:g}else{let x=A.message;E=typeof x=="string"?x:g}}}catch{}let S=C.headers.get("x-request-id"),y=S?` | X-Request-ID: ${S}`:"",R=Object.assign(new Error(`Upload failed: ${C.status} \u2014 ${E}${y}`),{status:C.status});throw B(R)??R}console.log(`\u2705 Version ${n} uploaded`)}async getVersion(t,n){let r=encodeURIComponent(t),i=encodeURIComponent(n),a=`${this.appsBasePath}/${r}/versions/${i}`;try{let s=await this.client.get(a);return Ze(s.data)}catch(s){throw ye(s,[t,n])?new k(t,n):B(s)??s}}async getActiveVersion(t){let n=encodeURIComponent(t),r=`${this.appsBasePath}/${n}/active`;try{let i=await this.client.get(r);return Ze(i.data)}catch(i){if(ye(i,[t]))return null;throw B(i)??i}}async updateVersions(t,n){let r=encodeURIComponent(t),i=`${this.appsBasePath}/${r}/versions/update`;try{await this.client.post(i,{data:{items:n}})}catch(a){throw B(a)??a}}};o(Ce,"AppHostingApi");var se=Ce;var we=class we{constructor(t){this.api=new se(t)}getVersion(t,n){return this.api.getVersion(t,n)}uploadVersion(t,n,r,i,a){return this.api.uploadVersion(t,n,r,i,a)}async ensureApp(t,n,r){console.log("\u{1F50D} Ensuring app exists...");try{await this.api.createApp(t,n,r),console.log(`\u2705 App '${t}' created`)}catch(i){if(X(i)&&i.status===409){console.log(`\u2705 App '${t}' already exists`);return}throw i}}async publishVersion(t,n){await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"}}}])}async publishAndActivate(t,n){console.log(`\u{1F680} Publishing and activating version ${n}...`),await this.api.updateVersions(t,[{version:n,update:{lifecycleState:{set:"PUBLISHED"},alias:{set:"ACTIVE"}}}]),console.log(`\u2705 Version ${n} is now PUBLISHED and ACTIVE`)}getActiveVersion(t){return this.api.getActiveVersion(t)}async deactivateVersion(t,n){await this.api.updateVersions(t,[{version:n,update:{alias:{setNull:!0}}}])}async activateVersion(t,n){let r=null;try{r=await this.api.getActiveVersion(t)}catch{r=null}let i=r&&r.version!==n?r.version:void 0;return await this.api.updateVersions(t,[{version:n,update:{alias:{set:"ACTIVE"}}}]),{supersededVersion:i}}async deploy(t,n,r,i,a,s,p=!1){console.log(`
|
|
6
6
|
\u{1F680} Deploying application via App Hosting API...
|
|
7
7
|
`);try{await this.ensureApp(t,n,r),await this.uploadVersion(t,i,a,s),p&&await this.publishAndActivate(t,i),console.log(`
|
|
8
|
-
\u2705 Deployment successful!`)}catch(c){let l=c instanceof Error?c.message:String(c);throw Object.assign(new Error(`Deployment failed: ${l}`),{cause:c})}}};o(we,"AppHostingClient");var h=we;import{existsSync as
|
|
9
|
-
${a}`)}let i=await r.json();if(!i.access_token)throw new Error("No access token returned from CDF authentication");return i.access_token},"getTokenCdf"),
|
|
10
|
-
${l}`)}let c=await p.json();if(!c.access_token)throw new Error("No access token returned from Entra ID authentication");return c.access_token},"getTokenEntra"),Ae=o(async(e,t=process.env)=>{if(t.COGNITE_TOKEN)return t.COGNITE_TOKEN;let{deployClientId:n,deploySecretName:r,idpType:i="cdf",tenantId:a,baseUrl:s}=e,p=
|
|
8
|
+
\u2705 Deployment successful!`)}catch(c){let l=c instanceof Error?c.message:String(c);throw Object.assign(new Error(`Deployment failed: ${l}`),{cause:c})}}};o(we,"AppHostingClient");var h=we;import{existsSync as ar,readFileSync as pr}from"fs";import{resolve as cr}from"path";import{array as qn,boolean as Qn,check as rt,forward as ot,literal as Zn,maxLength as er,minLength as tr,nonEmpty as Y,object as it,optional as M,picklist as nr,pipe as U,safeParse as rr,string as D,url as or}from"valibot";var ve=U(D(),Y("must not be empty")),Ee=U(D(),Y("must not be empty"),er(256,"must be 256 characters or fewer")),Se=U(D(),Y("must not be empty"),or("must be a valid URL")),Pe=U(D(),Y("must not be empty")),xe=U(D(),Y("must not be empty")),ir=U(it({org:Pe,project:xe,baseUrl:Se,deployClientId:M(D(),""),deploySecretName:M(D(),""),published:M(Qn(),!1),idpType:M(nr(["cdf","entra_id"]),"cdf"),tenantId:M(D())}),ot(rt(e=>e.idpType!=="entra_id"||!!e.tenantId,'must be set when idpType is "entra_id"'),["tenantId"]),ot(rt(e=>!e.deployClientId||!!e.deploySecretName,"must be set when deployClientId is set"),["deploySecretName"])),sr=it({name:ve,externalId:Ee,versionTag:U(D(),Y("must not be empty")),description:M(D(),""),deployments:U(qn(ir),tr(1,"must contain at least one deployment")),infra:M(Zn("appsApi"))});function be(e){let t=rr(sr,e);if(t.success)return t.output;let n=t.issues[0],r=n.path?.map(a=>a.key).join(".")??"",i=r?`"${r}" `:"";throw new Error(`app.json: ${i}${n.message}`)}o(be,"validateAppConfig");function w(e,t={}){let{validator:n=be,existsSync:r=ar,readFileSync:i=pr}=t,a=cr(e,"app.json");if(!r(a))throw new Error("No app.json found in current directory. Make sure you're running this command from your app's root directory.");let s=i(a,"utf-8"),p;try{p=JSON.parse(s)}catch{throw new Error("Failed to parse app.json \u2014 check that it contains valid JSON.")}return n(p)}o(w,"loadAppConfig");import{CogniteClient as Or}from"@cognite/sdk";import{CogniteClient as fr}from"@cognite/sdk";var lr=o(()=>{let e=process.env.DEPLOYMENT_SECRETS;if(!e)return{};try{let t=JSON.parse(e),n={};for(let[r,i]of Object.entries(t))if(typeof i=="string"){let a=r.toLowerCase().replace(/_/g,"-");n[a]=i}return n}catch(t){return console.error("Error parsing DEPLOYMENT_SECRETS:",t),{}}},"loadSecretsFromEnv"),mr=o(e=>{let t;if(process.env.DEPLOYMENT_SECRET&&(t=process.env.DEPLOYMENT_SECRET),t||(t=lr()[e]),t||(t=process.env[e]),!t)throw new Error(`Secret not found in environment: ${e}`);return t},"getSecretFromEnv"),dr=o(e=>{if(!e)return"";try{return new URL(e).hostname.replace(/\.cognitedata\.com$/,"")}catch{let t=e.replace(/^https?:\/\//,"");return t=t.split("/")[0],t=t.split(":")[0],t=t.replace(/\.cognitedata\.com$/,""),t}},"extractClusterFromUrl"),ur=o(async(e,t)=>{let n=`Basic ${btoa(`${e}:${t}`)}`,r=await fetch("https://auth.cognite.com/oauth2/token",{method:"POST",headers:{Authorization:n,"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({grant_type:"client_credentials"})});if(!r.ok){let a=await r.text();throw new Error(`Failed to get token from CDF: ${r.status} ${r.statusText}
|
|
9
|
+
${a}`)}let i=await r.json();if(!i.access_token)throw new Error("No access token returned from CDF authentication");return i.access_token},"getTokenCdf"),gr=o(async(e,t,n,r)=>{if(!r)throw new Error("Entra ID authentication requires 'baseUrl' to be set in deployment configuration");let i=dr(r);if(!i)throw new Error(`Entra ID authentication requires 'baseUrl' to be a valid CDF URL (e.g., https://cluster.cognitedata.com), got: ${r}`);let a=`https://login.microsoftonline.com/${n}/oauth2/v2.0/token`,s=`https://${i}.cognitedata.com/.default`,p=await fetch(a,{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({client_id:e,client_secret:t,scope:s,grant_type:"client_credentials"})});if(!p.ok){let l=await p.text();throw new Error(`Failed to get token from Entra ID: ${p.status} ${p.statusText}
|
|
10
|
+
${l}`)}let c=await p.json();if(!c.access_token)throw new Error("No access token returned from Entra ID authentication");return c.access_token},"getTokenEntra"),Ae=o(async(e,t=process.env)=>{if(t.COGNITE_TOKEN)return t.COGNITE_TOKEN;let{deployClientId:n,deploySecretName:r,idpType:i="cdf",tenantId:a,baseUrl:s}=e,p=mr(r);if(i==="entra_id"){if(!a)throw new Error("Entra ID authentication requires 'tenantId' in deployment configuration");return gr(n,p,a,s)}return ur(n,p)},"getToken");async function W(e,t,n=process.env,r){let i=await Ae(e,n),a=n.COGNITE_BASE_URL??e.baseUrl,s=(r??(p=>new fr(p)))({appId:t,project:e.project,baseUrl:a,oidcTokenProvider:o(async()=>i,"oidcTokenProvider")});return await s.authenticate(),s}o(W,"getSdk");import Sr from"os";import Pr from"path";import xr from"open";import{buildAuthorizationUrl as br,calculatePKCECodeChallenge as Ar,discovery as kr,None as Dr,randomPKCECodeVerifier as Ir,randomState as $r}from"openid-client";import yr from"https";import{authorizationCodeGrant as hr}from"openid-client";function st(e){return e.replace(/[&<>"']/g,t=>({"&":"&","<":"<",">":">",'"':""","'":"'"})[t]??t)}o(st,"escapeHtml");function ke(e,t,n){let r=st(t),i=st(n);return`<html><body style="font-family: system-ui; padding: 40px; text-align: center;">
|
|
11
11
|
<h1>${r}</h1><p>${i}</p><p>You can close this window.</p>${e==="success"?`<style>
|
|
12
12
|
@keyframes checkmark {
|
|
13
13
|
0% { transform: scale(0); }
|
|
@@ -16,27 +16,27 @@ ${l}`)}let c=await p.json();if(!c.access_token)throw new Error("No access token
|
|
|
16
16
|
}
|
|
17
17
|
h1 { animation: checkmark 0.5s ease-out; }
|
|
18
18
|
</style>`:""}
|
|
19
|
-
</body></html>`}o(ke,"generateHtml");async function
|
|
19
|
+
</body></html>`}o(ke,"generateHtml");async function Cr(e,t,n,r,i,a){let s=new URL(e.url??"/",`https://${e.headers.host??"localhost"}`);if(s.pathname!=="/")return t.writeHead(404),t.end("Not found"),{shouldClose:!1};try{console.log("\u{1F504} Exchanging authorization code for tokens...");let p=await a.authorizationCodeGrant(n,s,{pkceCodeVerifier:r,expectedState:i});return t.writeHead(200,{"Content-Type":"text/html"}),t.end(ke("success","Login Successful!","You can close this window and return to the terminal.")),{shouldClose:!0,tokens:p}}catch(p){let c=p instanceof Error?p:new Error(String(p));return t.writeHead(400,{"Content-Type":"text/html"}),t.end(ke("error","Authentication Error",c.message)),{shouldClose:!0,error:c}}}o(Cr,"handleCallback");function wr(e){let t=e/6e4,n=Math.round(t*10)/10;return`${n} ${n===1?"minute":"minutes"}`}o(wr,"formatTimeoutMinutes");function at(e,t,n,r,i,a={createServer:yr.createServer,setTimeout:globalThis.setTimeout,clearTimeout:globalThis.clearTimeout,authorizationCodeGrant:hr}){return new Promise((s,p)=>{let c,l=a.setTimeout(()=>{c?.close(),p(new Error(`Login timeout - no response received within ${wr(e.loginTimeout)}`))},e.loginTimeout);c=a.createServer(t,async(m,d)=>{try{let u=await Cr(m,d,n,r,i,a);u.shouldClose&&(a.clearTimeout(l),c?.close(),u.error?p(u.error):u.tokens?s(u.tokens):p(new Error("No tokens received")))}catch(u){a.clearTimeout(l),c?.close(),p(u instanceof Error?u:new Error(String(u)))}}),c.on("error",m=>{a.clearTimeout(l),m.code==="EADDRINUSE"?console.error(`\u274C Port ${e.port} is already in use.`):console.error(`\u274C Server error: ${m.message}`),p(m)}),c.listen(e.port,"127.0.0.1",()=>{console.log(`\u{1F310} Local HTTPS server started on https://localhost:${e.port}`)})})}o(at,"startCallbackServer");import{execFileSync as vr}from"child_process";import De from"fs";import pt from"path";function ct(e,t,n){return{key:n.readFileSync(e),cert:n.readFileSync(t)}}o(ct,"loadCertificates");function Er(e,t,n,r){console.log("\u{1F510} Generating self-signed certificate for HTTPS..."),r.existsSync(e)||r.mkdirSync(e,{recursive:!0});try{return r.execFileSync("openssl",["req","-x509","-newkey","rsa:2048","-nodes","-sha256","-subj","/CN=localhost","-keyout",t,"-out",n,"-days","365"],{stdio:["ignore","pipe","ignore"]}),console.log("\u2705 Certificate generated and saved locally"),ct(t,n,r)}catch{throw new Error(`Failed to generate self-signed certificate. Make sure openssl is installed.
|
|
20
20
|
On macOS: openssl is pre-installed
|
|
21
21
|
On Linux: sudo apt-get install openssl
|
|
22
|
-
On Windows: Install OpenSSL or use WSL`)}}o(
|
|
23
|
-
`),n.logger.log(`\u{1F4E1} Fetching OpenID configuration from ${t.authority}...`);let r=await n.discovery(new URL(t.authority),t.clientId,void 0,
|
|
22
|
+
On Windows: Install OpenSSL or use WSL`)}}o(Er,"generateCertificate");function lt(e,t={existsSync:De.existsSync,readFileSync:o(n=>De.readFileSync(n),"readFileSync"),mkdirSync:o((n,r)=>{De.mkdirSync(n,r)},"mkdirSync"),execFileSync:vr}){let n=pt.join(e,"localhost-key.pem"),r=pt.join(e,"localhost-cert.pem");return t.existsSync(n)&&t.existsSync(r)?ct(n,r,t):Er(e,n,r,t)}o(lt,"getOrCreateCertificates");var Tr={authority:"https://auth.cognite.com",clientId:"0404baaa-0a90-43a2-aba7-a110b53fb41c",redirectUri:"https://localhost:3000/",port:3e3,loginTimeout:300*1e3,certDir:Pr.join(Sr.homedir(),".cdf-login")},Fr={open:xr,getOrCreateCertificates:lt,startCallbackServer:at,discovery:kr,buildAuthorizationUrl:br,randomPKCECodeVerifier:Ir,calculatePKCECodeChallenge:Ar,randomState:$r,logger:console};async function dt(e,t=Tr,n){return n===void 0?mt(e,t,Fr):mt(e,t,n)}o(dt,"login");async function mt(e,t,n){n.logger.log(`\u{1F510} Starting CDF login flow...
|
|
23
|
+
`),n.logger.log(`\u{1F4E1} Fetching OpenID configuration from ${t.authority}...`);let r=await n.discovery(new URL(t.authority),t.clientId,void 0,Dr()),i=n.randomPKCECodeVerifier(),a=await n.calculatePKCECodeChallenge(i),s=n.randomState(),p={redirect_uri:t.redirectUri,scope:"openid profile email",code_challenge:a,code_challenge_method:"S256",state:s};e&&(p.organization_hint=e);let c=n.buildAuthorizationUrl(r,p).toString(),l=n.getOrCreateCertificates(t.certDir);e&&n.logger.log(`\u{1F3E2} Organization: ${e}`),n.logger.log(`\u{1F680} Opening browser for authentication...
|
|
24
24
|
`);try{await n.open(c)}catch(m){let d=m instanceof Error?m.message:String(m);n.logger.error("\u274C Failed to open browser automatically."),n.logger.error(` Reason: ${d}`),n.logger.error(`Please open this URL manually:
|
|
25
|
-
`),n.logger.error(c),n.logger.error("")}return n.startCallbackServer(t,l,r,i,s)}o(mt,"loginImpl");async function I(e,t,n={}){let{login:r=dt,getSdk:i=W,createClient:a=o(s=>new
|
|
25
|
+
`),n.logger.error(c),n.logger.error("")}return n.startCallbackServer(t,l,r,i,s)}o(mt,"loginImpl");async function I(e,t,n={}){let{login:r=dt,getSdk:i=W,createClient:a=o(s=>new Or(s),"createClient")}=n;if(t.interactive){let s=t.orgHint||e.org||void 0,p=await r(s),c=a({appId:t.appId,project:e.project,baseUrl:e.baseUrl,getToken:o(async()=>p.access_token,"getToken")});return await c.authenticate(),c}return i(e,t.appId)}o(I,"getClientForDeployment");import ut from"enquirer";var gt="Enter custom target...";function ft(e,t){let n=t.map((r,i)=>` ${i}: ${r.org}/${r.project}`).join(`
|
|
26
26
|
`);throw new Error(`Deployment "${e}" not found. Available deployments:
|
|
27
|
-
${n}`)}o(ft,"deploymentNotFoundError");function b(e,t){if(e.length===0)throw new Error("No deployments configured in app.json");if(t===void 0)return e[0];if(/^\d+$/.test(t)){let r=e[Number.parseInt(t)];if(r)return r;ft(t,e)}let n=e.find(r=>r.project===t||`${r.org}/${r.project}`===t);if(n)return n;ft(t,e)}o(b,"findDeployment");function
|
|
27
|
+
${n}`)}o(ft,"deploymentNotFoundError");function b(e,t){if(e.length===0)throw new Error("No deployments configured in app.json");if(t===void 0)return e[0];if(/^\d+$/.test(t)){let r=e[Number.parseInt(t)];if(r)return r;ft(t,e)}let n=e.find(r=>r.project===t||`${r.org}/${r.project}`===t);if(n)return n;ft(t,e)}o(b,"findDeployment");function $(e){let t=[];return e.deployClientId||t.push("deployClientId"),e.deploySecretName||t.push("deploySecretName"),t}o($,"getMissingCredentials");async function T(e,t){if(t.baseUrl&&t.project)return{org:t.org??"",project:t.project,baseUrl:t.baseUrl,deployClientId:"",deploySecretName:"",published:!1,idpType:"cdf"};if(t.deployment!==void 0)return b(e.deployments,t.deployment);let n=[...e.deployments.map(a=>`${a.org}/${a.project}`),gt],{selected:r}=await ut.prompt({type:"select",name:"selected",message:"Select deployment target",choices:n});if(r!==gt){let a=e.deployments.find(s=>`${s.org}/${s.project}`===r);if(a)return a;throw new Error(`Deployment "${r}" could not be resolved from app.json.`)}let i=await ut.prompt([{type:"input",name:"baseUrl",message:"CDF Base URL",initial:"https://api.cognitedata.com"},{type:"input",name:"project",message:"CDF Project",validate:o(a=>a?!0:"Project is required","validate")},{type:"input",name:"org",message:"Organization (for login hint)",initial:""}]);return{org:i.org||"",project:i.project,baseUrl:i.baseUrl,deployClientId:"",deploySecretName:"",published:!1,idpType:"cdf"}}o(T,"resolveDeployment");import{existsSync as Rr}from"fs";import{resolve as _r}from"path";import{config as Ur}from"dotenv";function F(e,t={existsSync:Rr,config:Ur}){let n=_r(e,".env");t.existsSync(n)&&(console.log(`Loading environment variables from ${n}`),t.config({path:n}))}o(F,"loadEnvFile");function O(e){e.infra!=="appsApi"&&(console.error(`
|
|
28
28
|
\u26A0\uFE0F Legacy infrastructure is no longer supported.
|
|
29
29
|
|
|
30
30
|
Your app.json is missing \`"infra": "appsApi"\`, which means it was created for
|
|
31
31
|
the old CDF Application Registry. This deploy path has been removed.
|
|
32
32
|
|
|
33
33
|
To migrate: add \`"infra": "appsApi"\` to your app.json, wire up the correct authentication and re-deploy.
|
|
34
|
-
`),process.exit(1))}o(O,"assertAppHostingInfra");async function
|
|
34
|
+
`),process.exit(1))}o(O,"assertAppHostingInfra");async function Lr(e){let t=process.cwd();F(t);let n=w(t);O(n);let r=e.interactive?await T(n,e):b(n.deployments,e.deployment);if(!e.interactive){let m=$(r);if(m.length>0)throw new Error(`Deployment ${r.org}/${r.project} is missing ${m.join(" and ")} in app.json. Use \`npx @cognite/cli@latest apps activate --interactive\` for browser-based authentication instead.`)}let i=await I(r,{interactive:e.interactive,appId:n.externalId,orgHint:e.org}),a=new h(i),{externalId:s,versionTag:p}=n,c;try{c=await a.getVersion(s,p)}catch(m){throw m instanceof k?new Error(`Version ${p} of ${s} has not been deployed yet. Run \`npx @cognite/cli apps deploy\` first.`):m}if(c.alias==="ACTIVE"){console.log(` ${s} @ ${p} is already ACTIVE \u2014 nothing to do.`);return}if(c.lifecycleState==="DEPRECATED"||c.lifecycleState==="ARCHIVED")throw new Error(`Cannot activate ${s} @ ${p}: version is ${c.lifecycleState} (terminal).`);c.lifecycleState==="DRAFT"&&(await a.publishVersion(s,p),console.log(`\u2713 Published ${s} @ ${p} is now PUBLISHED`));let{supersededVersion:l}=await a.activateVersion(s,p);console.log(`\u2713 Activated ${s} @ ${p} is now ACTIVE`),l&&console.log(` Superseded ${l} \u2192 PUBLISHED`)}o(Lr,"handleActivate");function yt(e){return e.command("activate").description("Activate the current app version (publish if needed, then set ACTIVE alias)").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
|
|
35
35
|
Examples:
|
|
36
36
|
npx @cognite/cli apps activate . Activate using env-var auth
|
|
37
|
-
npx @cognite/cli apps activate . --interactive Activate using browser auth (no secrets needed)`).action((t,n)=>
|
|
38
|
-
`),initial:!1};async function
|
|
39
|
-
`),i=`link .specify/memory/constitution.md in specifyDir=${n}`,Dt(r,{recursive:!0}),
|
|
37
|
+
npx @cognite/cli apps activate . --interactive Activate using browser auth (no secrets needed)`).action((t,n)=>Lr(n))}o(yt,"registerActivateCommand");import{readdirSync as eo}from"fs";import{basename as Tt,dirname as to,normalize as no,resolve as Q}from"path";import{fileURLToPath as ro,pathToFileURL as oo}from"url";import{Logger as io,runner as so}from"hygen";import{execFileSync as ae}from"child_process";function ht(e={}){let{execFileSync:t=ae}=e;try{return t("git",["--version"],{stdio:"ignore"}),!0}catch{return!1}}o(ht,"isGitInstalled");function Ct(e,t={}){let{execFileSync:n=ae}=t;try{return n("git",["-C",e,"status"],{stdio:"ignore"}),!0}catch{return!1}}o(Ct,"isInsideGitRepo");function wt(e,t={}){let{execFileSync:n=ae}=t;n("git",["-C",e,"init"],{stdio:"pipe"}),n("git",["-C",e,"add","."],{stdio:"pipe"}),n("git",["-C",e,"commit","-m","Initial commit","--no-gpg-sign","--no-verify"],{stdio:"pipe"})}o(wt,"gitInitAndCommit");function vt(e={}){let{execFileSync:t=ae}=e;try{return String(t("git",["config","--get","user.email"],{encoding:"utf-8",stdio:["ignore","pipe","ignore"]})).trim()||void 0}catch{return}}o(vt,"gitUserEmail");import{safeParse as Nr}from"valibot";function q(e,t){return n=>{let r=Nr(t,n);return r.success?!0:`${e} ${r.issues[0].message}`}}o(q,"toPromptValidator");var Et={name:q("App name",Ee),displayName:q("Display name",ve),baseUrl:q("Base URL",Se),org:q("Org",Pe),project:q("Project",xe)};function jr(e,t){return e?async n=>{let r=t(n);return r===!0?e(n):r}:t}o(jr,"composeValidators");function pe(e){return e.map(t=>{if(!(t.name in Et))return t;let n=Et[t.name];return{...t,validate:jr(t.validate,n)}})}o(pe,"applySchemaValidators");import{basename as Pt}from"path";import xt from"enquirer";function St(e){return e.replace(/[A-Z]/g,(t,n)=>n===0?t.toLowerCase():`-${t.toLowerCase()}`)}o(St,"kebabCase");var Kr={type:"confirm",name:"useSpecKit",message:["Enable spec-driven development?"," Adds the github/spec-kit slash commands (/speckit.specify, .clarify, .plan, .tasks, .implement)"," to your app for use in Claude Code or Cursor. They walk you through writing SPEC.md and"," generating a plan, tasks, and implementation."].join(`
|
|
38
|
+
`),initial:!1};async function Mr(e){return!!(await e([Kr])).useSpecKit}o(Mr,"promptForSpecKit");async function Vr(e,t,n){return e!==void 0?e:t?Mr(n):!1}o(Vr,"resolveSpecKit");function bt({isCurrentDir:e,dirName:t,onAppName:n,onUseSpecKit:r,presets:i={},specKit:a,prompt:s=xt.prompt.bind(xt)}){return()=>({prompt:o(async p=>{if(!Array.isArray(p))return s([p]);let c=Object.fromEntries(Object.entries(i).filter(f=>f[1]!==void 0)),l=Object.keys(c).length>0,m=e?Pt(process.cwd()):t?Pt(t):null,d=l&&m!==null,u=!d&&m?p.map(f=>f.name==="name"?{...f,initial:m}:f):p,C=pe(u),g=d?{...c,name:m}:c,E=new Set(Object.keys(g)),S=C.filter(f=>!E.has(f.name)),y=S.findIndex(f=>f.name==="baseUrl"),R;if(y!==-1){let f=S.filter(Gn=>Gn.name!=="baseUrl"),j=f.length>0?await s(f):{},ie=typeof j.cluster=="string"?j.cluster:"",K=typeof g.cluster=="string"?g.cluster:"",Mn=`https://${(ie||K).trim().replace(/\/+$/,"")||"api"}.cognitedata.com`,Vn=S[y],Hn=await s([{...Vn,initial:Mn}]);R={...j,...Hn}}else R=S.length>0?await s(S):{};let A={...g,...R},P=typeof A.name=="string"?A.name:"";P&&n(P);let x=await Vr(a,S.length>0,s);return r?.(x),{...A,name:P,useCurrentDir:e,directoryName:e?void 0:t??void 0,useSpecKit:x}},"prompt")})}o(bt,"createAppPrompter");async function At(e,t,n){let r=[];Object.values(t).some(a=>a!==void 0)&&n!==null&&r.push({key:"name",value:n,label:"directory"});for(let[a,s]of Object.entries(t))s!==void 0&&r.push({key:a,value:s,label:`--${St(a)}`});for(let{key:a,value:s,label:p}of r){let c=e.find(m=>m.name===a)?.validate;if(!c)continue;let l=await c(s);if(l!==!0)throw new Error(`Invalid ${p}: ${l}`)}}o(At,"validatePresets");import{cpSync as zr,mkdirSync as Dt,writeFileSync as Xr}from"fs";import{dirname as It,resolve as V}from"path";import{fileURLToPath as Wr}from"url";import{copyFileSync as Hr,symlinkSync as Gr}from"fs";import{dirname as Br,join as Yr}from"path";function Jr(e){if(e&&typeof e=="object"&&"code"in e&&typeof e.code=="string")return e.code}o(Jr,"errno");function kt(e){return e instanceof Error?e.message:String(e)}o(kt,"messageOf");function ce({target:e,linkPath:t,label:n,symlink:r=Gr,copyFile:i=Hr}){try{return r(e,t),!0}catch(a){let s=Jr(a);if(s==="EEXIST")return!0;let p=kt(a);if(s==="EPERM"||s==="EACCES")try{let c=Yr(Br(t),e);return i(c,t),console.log(`\u2139\uFE0F Wrote ${n} as a copy of ${e} (symlinks need Developer Mode or an elevated shell on Windows).`),!0}catch(c){return console.warn(`\u26A0\uFE0F Could not create ${n} symlink: ${p} (copy fallback also failed: ${kt(c)})`),!1}return console.warn(`\u26A0\uFE0F Could not create ${n} symlink:`,p),!1}}o(ce,"linkOrCopyOrWarn");var qr=V(It(Wr(import.meta.url)),"..","..","_vendor","spec-kit"),Qr={branch_numbering:"sequential"},Zr=[{from:"templates",to:".specify/templates"},{from:"scripts/bash",to:".specify/scripts/bash"},{from:"commands",to:".claude/commands"},{from:"commands",to:".cursor/commands"}];function $t({appDir:e,vendorDir:t=qr}){let n=V(e,".specify"),r=V(n,"memory"),i=`prepare spec-kit install for appDir=${e}`;try{for(let{from:a,to:s}of Zr){let p=V(e,s);i=`copy ${a} to ${s}`,Dt(It(p),{recursive:!0}),zr(V(t,a),p,{recursive:!0})}i=`write init-options.json under specifyDir=${n}`,Xr(V(n,"init-options.json"),`${JSON.stringify(Qr,null,2)}
|
|
39
|
+
`),i=`link .specify/memory/constitution.md in specifyDir=${n}`,Dt(r,{recursive:!0}),ce({target:"../../AGENTS.md",linkPath:V(r,"constitution.md"),label:".specify/memory/constitution.md"})}catch(a){let s=a instanceof Error?a.message:String(a);throw new Error(`installSpecKit failed while ${i} (appDir=${e}, vendorDir=${t}): ${s}`,{cause:a})}}o($t,"installSpecKit");var Ft=Q(to(ro(import.meta.url)),"..","..","_templates");async function ao(){let e=Q(Ft,"app","new","prompt.js");return(await import(oo(e).href)).default}o(ao,"loadPromptDefs");function po(e,t){return!e||t?null:no(e)}o(po,"resolveDirName");function co(e,t,n){if(e)return{cwd:process.cwd(),display:"."};let r=t??n;if(!r)throw new Error("App creation completed without a target directory or name.");return{cwd:Q(process.cwd(),r),display:r}}o(co,"resolveAppLocation");function lo(e,t,n){let r=` npm install
|
|
40
40
|
npm run dev`,i="To deploy your app:",a="npx @cognite/cli apps deploy --interactive",s=n?`
|
|
41
41
|
To start spec-driven development:
|
|
42
42
|
Run /speckit.specify in Claude Code or Cursor and describe your app.
|
|
@@ -63,8 +63,8 @@ ${i}
|
|
|
63
63
|
cd "${t}"
|
|
64
64
|
${a}
|
|
65
65
|
${p}
|
|
66
|
-
`)}o(
|
|
67
|
-
${r}`)}catch(t){let n=t instanceof Error?t.message:String(t);console.warn("\u26A0\uFE0F Could not pull skills:",n)}}o(
|
|
66
|
+
`)}o(lo,"printSuccessMessage");async function mo(e){try{let{execSkillsCli:t,pullAllArgs:n}=await import("../skills-GQ5TZKCM.js");console.log("\u{1F9E0} Pulling skills into your app..."),t(n(),{cwd:e,timeout:3e4,stdio:["pipe","pipe","inherit"]});let r=Q(e,".agents","skills"),i=0;try{i=eo(r).length}catch{console.warn(`Skills directory not found after pull \u2014 no skills may have been installed (expected: ${r})`)}let a=i>0?`${i} skills`:"skills";console.log(`\u2705 Installed ${a} successfully to
|
|
67
|
+
${r}`)}catch(t){let n=t instanceof Error?t.message:String(t);console.warn("\u26A0\uFE0F Could not pull skills:",n)}}o(mo,"pullSkillsInto");function uo(e,t={}){let{isGitInstalled:n=ht,isInsideGitRepo:r=Ct,gitInitAndCommit:i=wt}=t;if(!n()){console.warn("git not found \u2014 skipping git repository initialisation");return}if(!r(e)){console.log("Initialising git repository...");try{i(e)}catch(a){let p=(a&&typeof a=="object"&&"stderr"in a&&a.stderr?String(a.stderr).trim():"")||(a instanceof Error?a.message:String(a));console.warn("Could not initialise git repository:",p)}}}o(uo,"maybeInitGit");async function go(e,t){let n=e==="."||e==="./",r=po(e,n),i=null,a=!1,s={displayName:t.displayName,description:t.description,org:t.org,project:t.project,cluster:t.cluster,baseUrl:t.baseUrl},p=await ao(),c=pe(p),l=n?Tt(process.cwd()):r?Tt(r):null;await At(c,s,l);let m=bt({isCurrentDir:n,dirName:r,onAppName:o(u=>{i=u},"onAppName"),onUseSpecKit:o(u=>{a=u},"onUseSpecKit"),presets:s,specKit:t.specKit});await so(["app","new"],{templates:Ft,cwd:process.cwd(),logger:new io(console.log.bind(console)),createPrompter:m,debug:!!process.env.DEBUG});let d=co(n,r,i);ce({target:"AGENTS.md",linkPath:Q(d.cwd,"CLAUDE.md"),label:"CLAUDE.md"}),a&&$t({appDir:d.cwd}),await mo(d.cwd),uo(d.cwd),lo(n,d.display,a)}o(go,"handleCreate");function Ot(e){return e.command("create").description("Create a new application.").argument("[directory]","Target directory (. for current, or subdirectory name)").option("--display-name <name>","App display name (skips the prompt)").option("--description <description>","App description (skips the prompt)").option("--org <org>","Deployment org (skips the prompt)").option("--project <project>","Deployment project (skips the prompt)").option("--cluster <cluster>","CDF cluster, e.g. greenfield (skips the prompt)").option("--base-url <url>","CDF base URL, e.g. https://greenfield.cognitedata.com (skips the prompt; defaults to cluster-derived URL when omitted)").option("--spec-kit","Install spec-kit slash commands (skips the prompt)").option("--no-spec-kit","Skip spec-kit installation (skips the prompt)").addHelpText("after",`
|
|
68
68
|
Non-interactive use (CI, scripts, AI agents):
|
|
69
69
|
Pass [directory] plus --display-name, --description, --org, --project, --cluster, --base-url
|
|
70
70
|
to skip every prompt. Missing flags fall back to the interactive prompt.
|
|
@@ -77,17 +77,17 @@ Examples:
|
|
|
77
77
|
--display-name "My App" --description "My app" \\
|
|
78
78
|
--org cog-atlas --project atlas-greenfield --cluster greenfield \\
|
|
79
79
|
--base-url https://greenfield.cognitedata.com
|
|
80
|
-
Fully non-interactive`).action(
|
|
80
|
+
Fully non-interactive`).action(go)}o(Ot,"registerCreateCommand");import fo from"path";async function yo(e,t,n){let r=await I(e,{interactive:t.interactive,appId:n,orgHint:t.org});return new h(r)}o(yo,"defaultGetApiClient");async function ho(e,t,n={}){let{loadEnvFile:r=F,loadAppConfig:i=w,getApiClient:a=yo}=n,s=fo.resolve(process.cwd(),e);r(s);let p=i(s);O(p);let c=t.interactive?await T(p,t):b(p.deployments,t.deployment);if(!t.interactive){let u=$(c);if(u.length>0)throw new Error(`Deployment ${c.org}/${c.project} is missing ${u.join(" and ")} in app.json. Use \`npx @cognite/cli@latest apps deactivate --interactive\` for browser-based authentication instead.`)}let l=await a(c,t,p.externalId),{externalId:m}=p,d=await l.getActiveVersion(m);if(!d){console.log(` ${m} has no active version \u2014 nothing to deactivate.`);return}await l.deactivateVersion(m,d.version),console.log(`\u2713 Deactivated ${m} @ ${d.version} \u2014 active alias removed`)}o(ho,"handleDeactivate");function Rt(e){return e.command("deactivate").description("Deactivate the app by removing its active version from service").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
|
|
81
81
|
Examples:
|
|
82
82
|
npx @cognite/cli apps deactivate . Deactivate using env-var auth
|
|
83
|
-
npx @cognite/cli apps deactivate . --interactive Deactivate using browser auth (no secrets needed)`).action((t,n)=>
|
|
83
|
+
npx @cognite/cli apps deactivate . --interactive Deactivate using browser auth (no secrets needed)`).action((t,n)=>ho(t,n))}o(Rt,"registerDeactivateCommand");import{readFile as xo,unlink as bo}from"fs/promises";import{basename as Ao}from"path";import Ut from"fs";import So from"path";import L from"fs";import v from"path";import{parseAndValidateManifestConfig as Co}from"@cognite/app-sdk/vite";import{BlobReader as wo,Uint8ArrayWriter as vo,ZipWriter as Eo}from"@zip.js/zip.js";var Ie="package.json",$e="package-lock.json",_t="manifest.json",Te=".cognite",Fe=class Fe{constructor(t="dist"){this.distPath=v.isAbsolute(t)?t:v.join(process.cwd(),t),this.appRoot=v.dirname(this.distPath)}validateBuildDirectory(){if(!L.existsSync(this.distPath))throw new Error(`Build directory "${this.distPath}" not found. Run build first.`);let t=v.join(this.appRoot,Ie);if(!L.existsSync(t))throw new Error(`"${t}" not found. It is required for deployment.`);let n=v.join(this.appRoot,$e);if(!L.existsSync(n))throw new Error(`"${n}" not found. It is required for deployment.`)}async createZip(t="app.zip",n=!1){this.validateBuildDirectory(),console.log("\u{1F4E6} Packaging application...");let r=new Eo(new vo,{level:9}),i=o(async(c,l)=>{await r.add(l,new wo(await L.openAsBlob(c))),n&&console.log(` \u{1F4C4} ${l}`)},"addFile"),a=o(async c=>{let l=await L.promises.readdir(c,{withFileTypes:!0});for(let m of l){let d=v.join(c,m.name);m.isDirectory()?await a(d):await i(d,v.relative(this.distPath,d).replace(/\\/g,"/"))}},"addDir"),s;try{await a(this.distPath);let c=v.join(this.appRoot,Ie);await i(c,v.posix.join(Te,Ie));let l=v.join(this.appRoot,_t);if(L.existsSync(l)){let d=L.readFileSync(l,"utf-8");Co(d,l),await i(l,v.posix.join(Te,_t))}let m=v.join(this.appRoot,$e);await i(m,v.posix.join(Te,$e)),s=await r.close()}catch(c){let l=c instanceof Error?c.message:String(c);throw new Error(`Failed to create zip: ${l}`)}await L.promises.writeFile(t,s);let p=(s.byteLength/1024/1024).toFixed(2);return console.log(`\u2705 App packaged: ${t} (${p} MB)`),t}};o(Fe,"ApplicationPackager");var H=Fe;var Oe=o(async(e,t,n)=>{let r=await new H(`${n}/dist`).createZip("app.zip",!0);try{let{externalId:i,name:a,description:s,versionTag:p}=t,c=await W(e,n),l=new h(c),m=Ut.readFileSync(r),d=So.basename(r);await l.deploy(i,a,s,p,m,d,e.published)}finally{try{Ut.unlinkSync(r)}catch{}}},"deploy");import{execSync as Po}from"child_process";function Re(e,t=!0,n={execSync:Po}){console.log("\u{1F4E6} Building app with npm..."),n.execSync("npm run build",{cwd:e,stdio:t?"inherit":"pipe"}),console.log("\u2705 Build successful")}o(Re,"buildApp");function Lt(e,t){let{org:n,project:r,baseUrl:i}=e,a;try{a=new URL(i).hostname}catch{return null}let{externalId:s,versionTag:p}=t,c=new URLSearchParams({cluster:a,customAppVersion:p,workspace:"industrial-tools"});return`https://${n}.fusion.cognite.com/${r}/flows-apps/app/${encodeURIComponent(s)}?${c}`}o(Lt,"generateFusionUrl");function Nt(e,t,n){let r=n?"\u{1F680} Deploy (Interactive)":"\u{1F680} Deploy",i=n?`${t.project} @ ${t.baseUrl}`:`${t.org}/${t.project}`;console.log(["",r,"=".repeat(r.length),`App: ${e.name} (${e.externalId})`,`Version: ${e.versionTag}`,`Target: ${i}`,""].join(`
|
|
84
84
|
`))}o(Nt,"printDeployInfo");function jt(e,t){console.log(`
|
|
85
85
|
\u2705 Successfully deployed ${e.name} version ${e.versionTag} to ${t.org?`${t.org}/`:""}${t.project}`),console.log("\u{1F512} App is deployed in draft mode");let n=e.deployments.length>1?` -d ${t.project}`:"";console.log(`
|
|
86
86
|
To publish: npx @cognite/cli apps publish .${n}`),console.log(`To activate: npx @cognite/cli apps activate .${n}`);let r=Lt(t,e);r&&console.log(`
|
|
87
87
|
\u{1F517} Open your app:
|
|
88
|
-
${r}`)}o(jt,"printDeployResult");async function
|
|
89
|
-
\u{1F4E4} Deploying to ${t.org}/${t.project}...`),await i({...t,published:!1},{externalId:e.externalId,name:e.name,description:e.description,versionTag:e.versionTag},n),jt(e,t)}o(
|
|
90
|
-
\u{1F4E4} Deploying to ${t.project}...`);let a=await new H(`${n}/dist`).createZip("app.zip",!0);try{let s=await
|
|
88
|
+
${r}`)}o(jt,"printDeployResult");async function ko(e,t,n,r,i){let a=$(t);if(a.length>0)throw new Error(`Deployment ${t.org}/${t.project} is missing ${a.join(" and ")} in app.json. Use \`cognite apps deploy --interactive\` for browser-based authentication instead.`);Nt(e,t,!1),r.skipBuild||Re(n),console.log(`
|
|
89
|
+
\u{1F4E4} Deploying to ${t.org}/${t.project}...`),await i({...t,published:!1},{externalId:e.externalId,name:e.name,description:e.description,versionTag:e.versionTag},n),jt(e,t)}o(ko,"handleDeployNonInteractive");async function Do(e,t,n,r){Nt(e,t,!0),r.skipBuild||Re(n);let i=await I(t,{interactive:!0,appId:e.externalId,orgHint:r.org});console.log(`
|
|
90
|
+
\u{1F4E4} Deploying to ${t.project}...`);let a=await new H(`${n}/dist`).createZip("app.zip",!0);try{let s=await xo(a);await new h(i).deploy(e.externalId,e.name,e.description,e.versionTag,s,Ao(a),!1),jt(e,t)}finally{await bo(a).catch(()=>{})}}o(Do,"handleDeployInteractive");async function Io(e,t=process.cwd(),n={}){let{loadEnvFile:r=F,loadAppConfig:i=w,deploy:a=Oe}=n;r(t);let s=i(t);if(O(s),e.interactive){let c=await T(s,e);await Do(s,c,t,e);return}let p=b(s.deployments,e.deployment);await ko(s,p,t,e,a)}o(Io,"handleDeploy");function Kt(e){return e.command("deploy").description("Deploy your app to Cognite Data Fusion. Use --interactive for browser-based login (no env-var secrets required).").option("-d, --deployment <target>","Deployment target (index or project name)").option("--skip-build","Skip the build step",!1).option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
|
|
91
91
|
Environment (non-interactive):
|
|
92
92
|
deployClientId and deploySecretName are configured per deployment in app.json.
|
|
93
93
|
deploySecretName is the name of the environment variable that holds the client
|
|
@@ -101,43 +101,43 @@ Examples:
|
|
|
101
101
|
npx @cognite/cli apps deploy -d my-project Deploy to project by name
|
|
102
102
|
npx @cognite/cli apps deploy --skip-build Deploy without rebuilding
|
|
103
103
|
npx @cognite/cli apps deploy --interactive Browser auth, prompts for target
|
|
104
|
-
npx @cognite/cli apps deploy --interactive -d 0 Browser auth, target chosen non-interactively`).action(t=>
|
|
104
|
+
npx @cognite/cli apps deploy --interactive -d 0 Browser auth, target chosen non-interactively`).action(t=>Io(t))}o(Kt,"registerDeployCommand");async function $o(e){let t=process.cwd();F(t);let n=w(t);O(n);let r=e.interactive?await T(n,e):b(n.deployments,e.deployment);if(!e.interactive){let l=$(r);if(l.length>0)throw new Error(`Deployment ${r.org}/${r.project} is missing ${l.join(" and ")} in app.json. Use \`cognite apps publish --interactive\` for browser-based authentication instead.`)}let i=await I(r,{interactive:e.interactive,appId:n.externalId,orgHint:e.org}),a=new h(i),{externalId:s,versionTag:p}=n,c;try{c=await a.getVersion(s,p)}catch(l){throw l instanceof k?new Error(`Version ${p} of ${s} has not been deployed yet. Run \`npx @cognite/cli apps deploy\` first.`):l}if(c.alias==="ACTIVE"){console.log(` ${s} @ ${p} is already ACTIVE \u2014 nothing to do.`);return}if(c.lifecycleState==="PUBLISHED"){console.log(` ${s} @ ${p} is already PUBLISHED \u2014 nothing to do.`);return}if(c.lifecycleState==="DEPRECATED"||c.lifecycleState==="ARCHIVED")throw new Error(`Cannot publish ${s} @ ${p}: version is ${c.lifecycleState} (terminal).`);await a.publishVersion(s,p),console.log(`\u2713 Published ${s} @ ${p} is now PUBLISHED`),console.log(""),console.log("Run `npx @cognite/cli apps activate .` to make it active.")}o($o,"handlePublish");function Mt(e){return e.command("publish").description("Publish the current app version (transition DRAFT \u2192 PUBLISHED)").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
|
|
105
105
|
Examples:
|
|
106
106
|
npx @cognite/cli apps publish . Publish using env-var auth
|
|
107
|
-
npx @cognite/cli apps publish . --interactive Publish using browser auth (no secrets needed)`).action((t,n)=>$o(n))}o(Mt,"registerPublishCommand");function
|
|
107
|
+
npx @cognite/cli apps publish . --interactive Publish using browser auth (no secrets needed)`).action((t,n)=>$o(n))}o(Mt,"registerPublishCommand");function To(e){return e.alias==="ACTIVE"?"ACTIVE":e.lifecycleState}o(To,"describeStatus");async function Fo(e){let t=process.cwd();F(t);let n=w(t);O(n);let r=e.interactive?await T(n,e):b(n.deployments,e.deployment);if(!e.interactive){let s=$(r);if(s.length>0)throw new Error(`Deployment ${r.org}/${r.project} is missing ${s.join(" and ")} in app.json. Use \`cognite apps status --interactive\` for browser-based authentication instead.`)}let i=await I(r,{interactive:e.interactive,appId:n.externalId,orgHint:e.org}),a=new h(i);console.log(""),console.log(`App: ${n.name} (${n.externalId})`),console.log(`Version: ${n.versionTag} (local)`);try{let s=await a.getVersion(n.externalId,n.versionTag),p=To(s);console.log(`Status: ${p}`),s.lifecycleState==="DRAFT"&&(console.log(""),console.log("Run `npx @cognite/cli apps publish .` to publish this version."))}catch(s){if(s instanceof k){console.log("Status: not deployed yet"),console.log(""),console.log("Run `npx @cognite/cli apps deploy` to upload this version.");return}throw s}}o(Fo,"handleStatus");function Vt(e){return e.command("status").description("Show the deployment status of the current app version").argument("[path]","Path to the app folder (only `.` is currently supported)",".").option("-d, --deployment <target>","Deployment target from app.json (index or name)").option("--interactive","Use browser-based authentication instead of env-var credentials",!1).option("--base-url <url>","CDF base URL (only with --interactive)").option("--project <project>","CDF project name (only with --interactive)").option("--org <org>","Organization hint for login (only with --interactive)").addHelpText("after",`
|
|
108
108
|
Examples:
|
|
109
109
|
npx @cognite/cli apps status . Status using env-var auth
|
|
110
|
-
npx @cognite/cli apps status . --interactive Status using browser auth (no secrets needed)`).action((t,n)=>
|
|
110
|
+
npx @cognite/cli apps status . --interactive Status using browser auth (no secrets needed)`).action((t,n)=>Fo(n))}o(Vt,"registerStatusCommand");function Ht(e){let t=e.command("apps").description("Manage Fusion Custom Apps \u2014 create, deploy, and manage version lifecycle");return Ot(t),Kt(t),Vt(t),Mt(t),yt(t),Rt(t),qe(t),t}o(Ht,"registerAppsCommand");import{existsSync as vi,mkdirSync as Ei,writeFileSync as Si}from"fs";import{dirname as He,join as ge}from"path";import{generateSigningKeyPair as Pi}from"@cognite/app-sdk/codesigning";import{execFile as Ro}from"child_process";import{promisify as _o}from"util";import{platform as Oo}from"os";function G(e={}){let{platform:t=Oo}=e;return t()==="darwin"}o(G,"isMacOS");var Gt="cognite-flows",Uo=_o(Ro),Bt=o((e,t)=>Uo(e,t),"defaultExecFile"),Lo=-25300,No=Lo&255;function jo(e){if(!(e instanceof Error)||!("code"in e)||e.code!==No)return!1;let t="stderr"in e?String(e.stderr):"";return/could not be found/i.test(t)||t===""}o(jo,"isKeychainNotFoundError");async function Yt(e,t,n={}){if(!G(n))throw new Error("Keychain storage is only supported on macOS");let{execFile:r=Bt}=n;await r("security",["add-generic-password","-a",e,"-s",Gt,"-w",Buffer.from(t,"utf-8").toString("base64"),"-U"])}o(Yt,"storeKeyInKeychain");async function Jt(e,t={}){if(!G(t))return null;let{execFile:n=Bt}=t;try{let{stdout:r}=await n("security",["find-generic-password","-a",e,"-s",Gt,"-w"]);return Buffer.from(r.trim(),"base64").toString("utf-8")}catch(r){if(jo(r))return null;throw r}}o(Jt,"readKeyFromKeychain");import{pbkdf2 as Vo,randomBytes as Ho}from"crypto";import{promisify as Go}from"util";import{CompactEncrypt as Bo,base64url as Yo,compactDecrypt as Rc}from"jose";var Ko=new TextEncoder,Mo=new TextDecoder,zt={encode:o(e=>Ko.encode(e),"encode"),decode:o(e=>Mo.decode(e),"decode")};var Jo=Go(Vo),_e=6e5,zo="sha512",Xo="PBKDF2-HMAC-SHA512",Wo=16,qo="A256GCM",Qo=32,Xt=2e6;async function Zo(e,t,n){return await Jo(e,t,n,Qo,zo)}o(Zo,"deriveKey");async function Wt(e,t,n=_e){if(!Number.isInteger(n)||n<1||n>Xt)throw new Error(`Invalid iterations: must be an integer between 1 and ${Xt}`);let r=Ho(Wo),i=await Zo(t,r,n);return await new Bo(zt.encode(e)).setProtectedHeader({alg:"dir",enc:qo,kdf:Xo,kdf_iter:n,kdf_salt:Yo.encode(r)}).encrypt(i)}o(Wt,"encryptStringAsJwe");import{existsSync as ti,readdirSync as ni,readFileSync as ri}from"fs";import{join as le}from"path";import{homedir as ei}from"os";import{join as qt}from"path";function N(e={}){let{env:t=process.env,homedir:n=ei}=e,r=t.DUNE_HOME?.trim()||qt(n(),".dune");return{home:r,keysDir:qt(r,"keys")}}o(N,"getConfig");var ee=".pub.pem",Ue=".key.jwe",oi=".pem",Le=".meta.json";function Qt(e){switch(e.kind){case"keychain":return"Keychain";case"encrypted-file":return e.path;case"legacy-unencrypted-file":return`${e.path} (unencrypted \u2014 rotate)`;case"public-only":return"public-only (private key missing)"}}o(Qt,"formatLocalKeySource");function ii(e){return{existsSync:e.existsSync??ti,readdirSync:e.readdirSync??ni,readFileSync:e.readFileSync??((t,n)=>ri(t,n)),isMacOS:e.isMacOS??(()=>G()),readKeyFromKeychain:e.readKeyFromKeychain??(t=>Jt(t))}}o(ii,"resolveDeps");function si(e){try{let t=JSON.parse(e);if(typeof t=="object"&&t!==null&&!Array.isArray(t)&&"email"in t&&typeof t.email=="string")return t.email}catch{}}o(si,"readEmailFromMeta");function ai(e,t){return t.existsSync(e)?t.readdirSync(e).filter(n=>n.endsWith(ee)):[]}o(ai,"publicKeyEntries");function pi(e){return e.slice(0,-ee.length)}o(pi,"kidFromPublicKeyFilename");async function ci(e,t,n){if(n.isMacOS()&&await n.readKeyFromKeychain(e).catch(()=>null)!==null)return{kind:"keychain"};let r=le(t,`${e}${Ue}`);if(n.existsSync(r))return{kind:"encrypted-file",path:r};let i=le(t,`${e}${oi}`);return n.existsSync(i)?{kind:"legacy-unencrypted-file",path:i}:{kind:"public-only"}}o(ci,"resolveSource");async function Zt(e=N().keysDir,t={}){let n=ii(t),r=new Set,i=ai(e,n).flatMap(a=>{let s=pi(a);return!s||r.has(s)?[]:(r.add(s),[{kid:s,entry:a}])});return Promise.all(i.map(async({kid:a,entry:s})=>{let p=await ci(a,e,n),c=le(e,`${a}${Le}`),l;try{l=si(n.readFileSync(c,"utf8"))}catch{}return{kid:a,source:p,publicKeyPath:le(e,s),email:l}}))}o(Zt,"discoverLocalKeys");function en(e,t){let n=e.getUTCFullYear(),r=e.getUTCMonth()+t,i=new Date(Date.UTC(n,r+1,0)).getUTCDate(),a=Math.min(e.getUTCDate(),i);return new Date(Date.UTC(n,r,a))}o(en,"addMonthsClamped");function Ne(e){return e.toISOString().slice(0,10)}o(Ne,"formatIsoDate");function tn(e=new Date){return Ne(e)}o(tn,"todayIso");import li,{Chalk as mi}from"chalk";var je=new mi({level:0});function nn(e){return e.isTTY?li:je}o(nn,"chalkForStream");function di(e){return e.replace(/-----BEGIN [^-]+-----/g,"").replace(/-----END [^-]+-----/g,"").replace(/\s+/g,"")}o(di,"pemBodyOneLine");function rn(e,t=je,n=new Date){let r=e.issuedAt??tn(n),i=di(e.publicKeyPem),a=" ",s=o((c,l)=>`${a}${t.cyan(c)}${t.dim(":")} ${l}
|
|
111
111
|
`,"kv"),p="";return p+=`
|
|
112
112
|
${t.bold("Add this entry to")} ${t.magenta("services/app-hosting/config/signing-keys.yaml")} ${t.bold("under")} ${t.cyan("public_keys:")}
|
|
113
113
|
|
|
114
114
|
`,p+=`${t.dim("-")} ${t.cyan("kid")}${t.dim(":")} ${t.green(e.kid)}
|
|
115
|
-
`,p+=s("public_key",t.green(i)),p+=s("email",t.yellow(e.email)),p+=s("capabilities",`${t.dim("[")}${t.yellow("developer")}${t.dim("]")}`),p+=s("issued_at",t.green(r)),p+=s("expires",t.green(e.expires)),p+=s("revoked_at",t.dim("null")),p}o(rn,"renderRegistryEntry");import{email as
|
|
116
|
-
`,"passphraseMismatchMsg"),dn=`Passphrase confirmation failed after ${
|
|
115
|
+
`,p+=s("public_key",t.green(i)),p+=s("email",t.yellow(e.email)),p+=s("capabilities",`${t.dim("[")}${t.yellow("developer")}${t.dim("]")}`),p+=s("issued_at",t.green(r)),p+=s("expires",t.green(e.expires)),p+=s("revoked_at",t.dim("null")),p}o(rn,"renderRegistryEntry");import{email as ui,pipe as gi,safeParse as fi,string as yi}from"valibot";var hi=gi(yi(),ui());function te(e,t="email"){let n=e.trim();if(!n)throw new Error(`${t} is required`);if(!fi(hi,n).success)throw new Error(`${t} must look like an email (user@example.com); got "${e}"`);return n}o(te,"parseEmail");function ne(e,t="--expires"){let n=Number(e);if(!Number.isInteger(n)||n<1||n>12)throw new Error(`${t} must be an integer between 1 and 12 (months); got "${e}"`);return n}o(ne,"parseExpiryMonths");import gn from"enquirer";var me=3,on="Signing identity (kid) \u2014 e.g. jsmith-dev-001 (lowercase letters, digits, hyphens)",sn=`Key expiry in months (${1}-${12})`,an="Email address for the registry entry",pn=`Passphrase for the encrypted private key (min ${15} chars)`,cn="Confirm passphrase",ln=o(()=>`Passphrase must be at least ${15} characters`,"passphraseTooShortMsg"),mn=o(e=>`Passphrases do not match (attempt ${e}/${me}).
|
|
116
|
+
`,"passphraseMismatchMsg"),dn=`Passphrase confirmation failed after ${me} attempts`,un=o(e=>`A signing key with kid "${e}" already exists. Overwrite it?`,"confirmOverwriteMsg");async function ue(e){return gn.prompt(e)}o(ue,"defaultPrompt");function Ve(e){return t=>{try{return e(t),!0}catch(n){return n instanceof Error?n.message:"Invalid"}}}o(Ve,"parserAsValidator");var wi=/^[a-z0-9]([a-z0-9-]*[a-z0-9])?$/;function de(e){let t=e.trim();if(!t)throw new Error("--kid must not be empty");if(t.length>64)throw new Error("--kid must be 64 characters or fewer");if(!wi.test(t))throw new Error("--kid must contain only lowercase letters, digits, and hyphens, and must not start or end with a hyphen (e.g. jsmith-dev-001)");return t}o(de,"parseKid");async function fn(e={}){let{prompt:t=ue}=e,{kid:n}=await t({type:"input",name:"kid",message:on,validate:Ve(de)});return de(n)}o(fn,"promptKid");async function yn(e={}){let{prompt:t=ue}=e,{months:n}=await t({type:"input",name:"months",message:sn,initial:String(6),validate:Ve(r=>ne(r,"expiry"))});return ne(n,"expiry")}o(yn,"promptExpiryMonths");async function hn(e={}){let{prompt:t=ue,gitUserEmail:n=vt}=e,{email:r}=await t({type:"input",name:"email",message:an,initial:n(),validate:Ve(i=>te(i,"email"))});return te(r,"email")}o(hn,"promptEmail");async function Cn(e={}){let{prompt:t=ue,stderr:n=process.stderr}=e;for(let r=1;r<=me;r+=1){let{passphrase:i}=await t({type:"password",name:"passphrase",message:pn,validate:o(s=>s.length>=15?!0:ln(),"validate")}),{confirm:a}=await t({type:"password",name:"confirm",message:cn});if(i===a)return i;n.write(mn(r))}throw new Error(dn)}o(Cn,"promptPassphrase");async function wn(e,t={}){let{prompt:n=o(i=>gn.prompt(i),"prompt")}=t,{confirmed:r}=await n({type:"confirm",name:"confirmed",message:un(e),initial:!1});return r}o(wn,"promptConfirmOverwrite");function xi(e){return{writeFileSync:e.writeFileSync??Si,mkdirSync:e.mkdirSync??Ei,existsSync:e.existsSync??vi,generateSigningKeyPair:e.generateSigningKeyPair??Pi,encryptStringAsJwe:e.encryptStringAsJwe??Wt,storeKeyInKeychain:e.storeKeyInKeychain??Yt,isMacOS:e.isMacOS??G,promptKid:e.promptKid??fn,promptExpiryMonths:e.promptExpiryMonths??yn,promptEmail:e.promptEmail??hn,promptPassphrase:e.promptPassphrase??Cn,promptConfirmOverwrite:e.promptConfirmOverwrite??wn,discoverLocalKeys:e.discoverLocalKeys??(()=>Zt())}}o(xi,"resolveDeps");function En(e,t={}){let n=xi(t),r=e.command("keys").description("Manage code signing keys");r.command("generate").description("Generate an Ed25519 keypair for code signing").option("-o, --output <path>","Encrypted private key output path (forces file storage even on macOS)").option("--no-keychain","Skip macOS Keychain and write a passphrase-encrypted private key under ~/.dune/keys/ instead").option("-e, --expires <months>",`Validity in months (${1}-${12}); skips the interactive prompt`).option("--email <address>","Email address for the registry entry; skips the interactive prompt").option("--kid <identifier>","Signing identity name for the registry (e.g. jsmith-dev-001); skips the interactive prompt").option("--force","Overwrite an existing key without prompting for confirmation").action(i=>ki(i,n)),r.command("list").description("List local signing identities and their storage location").action(()=>bi(n))}o(En,"registerKeysCommand");async function bi(e){let t=await e.discoverLocalKeys();if(t.length===0){process.stdout.write(`No signing identities found.
|
|
117
117
|
`),process.stdout.write(`Run \`cognite keys generate\` to create one (storage: ${N().keysDir}).
|
|
118
118
|
`);return}let n=["KID","SOURCE","EMAIL"],r=t.map(s=>[s.kid,Qt(s.source),s.email??"\u2014"]),i=n.map((s,p)=>Math.max(s.length,...r.map(c=>c[p].length))),a=o(s=>s.map((p,c)=>p.padEnd(i[c])).join(" ").trimEnd(),"fmt");process.stdout.write(`${a(n)}
|
|
119
119
|
`);for(let s of r)process.stdout.write(`${a(s)}
|
|
120
|
-
`)}o(
|
|
121
|
-
`);return}let
|
|
120
|
+
`)}o(bi,"handleList");function vn(e,t,n){let r=ge(N().keysDir,`${e}${ee}`);return n.mkdirSync(He(r),{recursive:!0}),n.writeFileSync(r,t),r}o(vn,"writePublicKey");async function Ai(e,t,n,r,i,{force:a=!1}={}){let s=r??ge(N().keysDir,`${e}${Ue}`);if(i.mkdirSync(He(s),{recursive:!0}),!a&&i.existsSync(s))throw new Error(`Refusing to overwrite existing key at ${s}. Delete it first if you really want to regenerate: rm ${s}`);let p=await i.encryptStringAsJwe(t,n);return i.writeFileSync(s,p,{mode:384}),s}o(Ai,"writeEncryptedPrivateKey");async function ki(e,t,n=new Date){let{isMacOS:r,existsSync:i,mkdirSync:a,writeFileSync:s,generateSigningKeyPair:p,storeKeyInKeychain:c,promptExpiryMonths:l,promptKid:m,promptEmail:d,promptPassphrase:u,promptConfirmOverwrite:C}=t,g=e.keychain!==!1&&r()&&!e.output,E=e.expires!==void 0?ne(e.expires):await l(),S=Ne(en(n,E)),y=e.kid!==void 0?de(e.kid):await m(),R=ge(N().keysDir,`${y}${ee}`),A=i(R);if(A&&!e.force&&!await C(y)){process.stderr.write(`Aborted.
|
|
121
|
+
`);return}let P=e.email!==void 0?te(e.email,"--email"):await d(),x=g?null:await u();process.stderr.write(`
|
|
122
122
|
Generating Ed25519 keypair...
|
|
123
123
|
|
|
124
|
-
`);let{privateKeyPem:f,publicKeyPem:j}=await p(y);if(g){await c(y,f);let
|
|
124
|
+
`);let{privateKeyPem:f,publicKeyPem:j}=await p(y);if(g){await c(y,f);let z=vn(y,j,t);process.stderr.write(`Public key: ${z}
|
|
125
125
|
`),process.stderr.write(`Private key: macOS Keychain (service: cognite-dune, account: ${y})
|
|
126
|
-
`)}else{if(
|
|
127
|
-
`),process.stderr.write(`Private key: ${
|
|
126
|
+
`)}else{if(x===null)throw new Error("passphrase is required when not using Keychain");let z=await Ai(y,f,x,e.output,t,{force:A}),We=vn(y,j,t);process.stderr.write(`Public key: ${We}
|
|
127
|
+
`),process.stderr.write(`Private key: ${z} (JWE, AES-256-GCM, PBKDF2-SHA512 x${_e.toLocaleString()})
|
|
128
128
|
`),r()||process.stderr.write(` (macOS Keychain integration is the default on darwin; on this OS we use the file.)
|
|
129
|
-
`)}let
|
|
129
|
+
`)}let ie=ge(N().keysDir,`${y}${Le}`);a(He(ie),{recursive:!0}),s(ie,JSON.stringify({email:P}));let K=nn(process.stderr);process.stderr.write(`
|
|
130
130
|
Signing identity (kid): ${K.green(y)}
|
|
131
131
|
`),process.stderr.write(`Expires: ${S} (${E} month${E===1?"":"s"} from today)
|
|
132
|
-
`),process.stderr.write(rn({kid:y,publicKeyPem:j,email:
|
|
132
|
+
`),process.stderr.write(rn({kid:y,publicKeyPem:j,email:P,expires:S},K,n)),process.stderr.write(`
|
|
133
133
|
${K.bold("Next:")} open a PR against the ${K.magenta("infrastructure")} repo with that block, then \`${K.cyan(`cognite sign -s ${y}`)}\`
|
|
134
|
-
`)}o(
|
|
134
|
+
`)}o(ki,"handleGenerate");var Sn=1e3,Di=new Set(["baseUrl","url","project","deployment","source","path","name","displayName","description"]);function Ii(e){return Object.fromEntries(Object.entries(e).map(([t,n])=>typeof n=="boolean"?[t,n]:Di.has(t)?[t,n]:[t,"[REDACTED]"]))}o(Ii,"sanitize");function $i(e){let t=[],n=e;for(;n;)n.parent&&t.unshift(n.name()),n=n.parent;return t.join(" ")}o($i,"getCommandPath");function Pn(e){try{let t=e(process.cwd());return{appExternalId:t.externalId,appVersionTag:t.versionTag}}catch{return{}}}o(Pn,"tryLoadAppConfig");function Ge(e){return e.filter(t=>!t.startsWith("-")).join(" ")||"unknown"}o(Ge,"commandFromArgv");function xn(e,t,n=w){e.hook("postAction",async(r,i)=>{try{let a={command:$i(i),options:Ii(i.opts()),success:!0,...Pn(n)};t.track("Flows.CLI.Command",a),await t.flush(Sn)}catch{}})}o(xn,"instrument");async function bn(e,t,n=w){try{let r={command:Ge(t),options:{},success:!1,...Pn(n)};e.track("Flows.CLI.Command",r),await e.flush(Sn)}catch{}}o(bn,"trackFailure");var Ti="ERR_USE_AFTER_CLOSE";function kn(e){return e instanceof Error&&"code"in e&&e.code===Ti}o(kn,"isReadlineClosedError");function Fi(e){let t=Object.getPrototypeOf(e);return t===Object.prototype||t===null}o(Fi,"isPlainObject");function Be(e){return e==null||kn(e)?!0:e instanceof Error?!1:!!(typeof e=="object"&&e!==null&&Fi(e)&&Object.keys(e).length===0)}o(Be,"isPromptCancel");var An=!1;function Dn(){An||(An=!0,process.on("uncaughtException",e=>{kn(e)&&(console.error(`
|
|
135
135
|
Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}),process.on("unhandledRejection",e=>{Be(e)&&(console.error(`
|
|
136
|
-
Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}))}o(Dn,"installCancelHandler");import{homedir as
|
|
137
|
-
`),
|
|
138
|
-
`);let C=o(()=>{},"finish"),g=new Promise(E=>{C=E});p.add(g);try{d.track(l,u,C)}catch{C()}g.finally(()=>p.delete(g))},async flush(l=
|
|
139
|
-
`)}}}o(
|
|
140
|
-
`);return
|
|
141
|
-
${
|
|
142
|
-
`)},"onOutdated")})});Ht(J);En(J);var
|
|
143
|
-
Cancelled.`),process.exit(130)),await
|
|
136
|
+
Cancelled.`),process.exit(130)),console.error(e),process.exit(1)}))}o(Dn,"installCancelHandler");import{homedir as Li}from"os";import In from"mixpanel";var Oi="5c4d853e7c3b77b1eb4468d5329b278c",re="cognite-cli",Ri=2e3,$n={env:process.env,init:In.init.bind(In)},_i={track:o(()=>{},"track"),flush:o(async()=>{},"flush")};function Ye(e=process.env){return e.COGNITE_TELEMETRY_DISABLED==="1"||e.DO_NOT_TRACK==="1"}o(Ye,"isTelemetryDisabled");function Ui(e){return e.COGNITE_TELEMETRY_DEBUG==="1"}o(Ui,"isDebug");function Tn(e={}){let t=e.env??$n.env,n=e.init??$n.init,r=e.packageName,i=e.cliVersion,a=Ui(t);if(Ye(t))return a&&process.stderr.write(`[telemetry] disabled \u2014 noop tracker
|
|
137
|
+
`),_i;let s,p=new Set;function c(){if(s)return s;try{return s=n(Oi,{geolocate:!1,keepAlive:!1}),s}catch{return}}return o(c,"getClient"),{track(l,m={}){let d=c();if(!d)return;let u={...m,applicationId:re,...r&&{packageName:r},...i&&{cliVersion:i},nodeVersion:process.version,platform:process.platform};a&&process.stderr.write(`[telemetry] track ${l} ${JSON.stringify(u)}
|
|
138
|
+
`);let C=o(()=>{},"finish"),g=new Promise(E=>{C=E});p.add(g);try{d.track(l,u,C)}catch{C()}g.finally(()=>p.delete(g))},async flush(l=Ri){if(p.size===0)return;let m,d=new Promise(u=>{m=setTimeout(u,l),m.unref?.()});try{await Promise.race([Promise.allSettled([...p]),d])}finally{m&&clearTimeout(m)}a&&process.stderr.write(`[telemetry] flush done (${p.size} still pending)
|
|
139
|
+
`)}}}o(Tn,"createTelemetry");var Ni=Li();function oe(e,t=Ni){if(!t||t==="/")return e;let n=e.replaceAll(t,"~"),r=t.replaceAll("\\","/");return r!==t&&(n=n.replaceAll(r,"~")),n=n.replace(/(?<![A-Za-z0-9_])[A-Za-z]:[/\\]Users[/\\][^\s/\\]+(?=[/\\]|$)/g,"~"),n=n.replace(/(?<![A-Za-z0-9_])\/(?:Users|home)\/[^\s/]+(?=[/\\]|$)/g,"~"),n}o(oe,"redactHomedir");var ji=1e3,Ki="https://0a118cb02e3be57b1838bcfb5783a2bf@o4508040730968064.ingest.de.sentry.io/4510719268290640",Mi={captureError:o(async()=>{},"captureError"),flush:o(async()=>{},"flush")};function Vi(e){return e.packageName&&e.cliVersion?`${e.packageName}@${e.cliVersion}`:e.cliVersion??"unknown"}o(Vi,"buildRelease");var Hi="192.0.2.0";function Gi(e){return e?.map(t=>({...t,...t.filename!==void 0&&{filename:oe(t.filename)},...t.abs_path!==void 0&&{abs_path:oe(t.abs_path)},...t.module!==void 0&&{module:oe(t.module)}}))}o(Gi,"scrubStackFrames");function Bi(e){let t={...e.user,email:void 0,username:void 0,ip_address:Hi,id:void 0},n=e.exception?.values?.map(r=>({...r,value:r.value!==void 0?oe(r.value):r.value,...r.stacktrace!==void 0&&{stacktrace:{...r.stacktrace,frames:Gi(r.stacktrace.frames)}}}));return{...e,message:e.message!==void 0?oe(e.message):e.message,user:t,server_name:void 0,...n!==void 0&&{exception:{...e.exception,values:n}}}}o(Bi,"scrubPii");function Fn(e={}){let t=e.env??process.env;if(Ye(t))return Mi;let n=Vi(e),r="production",i=null,a=null;function s(){return{dsn:Ki,release:n,environment:r,defaultIntegrations:!1,integrations:[],sendDefaultPii:!1,enableLogs:!1,initialScope:{tags:{component:"cli",applicationId:re},contexts:{cli:{applicationId:re,node:process.version,platform:process.platform}}},beforeSend:Bi}}o(s,"buildInitOptions");async function p(){return i||(a||(a=(async()=>{try{let c=e.sdk??await import("@sentry/node");return c.init(s()),i=c,c}catch{return null}})()),a)}return o(p,"ensureSdk"),{async captureError(c,l){try{let m=await p();if(!m)return;let d={level:"fatal"};l?.command&&(d.tags={command:l.command},d.contexts={cli:{applicationId:re,node:process.version,platform:process.platform,command:l.command}}),m.captureException(c,d)}catch{}},async flush(c=ji){try{if(!i)return;await i.flush(c)}catch{}}}}o(Fn,"createErrorReporter");import{mkdirSync as Yi,readFileSync as Ji,writeFileSync as zi}from"fs";import{homedir as Xi}from"os";import{resolve as fe}from"path";import{debuglog as Wi}from"util";import{lt as qi,parse as On}from"semver";var Qi="https://registry.npmjs.org/@cognite/cli/latest",Zi=1500,Rn="upgrade-check.json",_n=fe(process.env.XDG_CACHE_HOME||fe(Xi(),".cache"),"@cognite","cli"),Je=Wi("cognite-flows");function es(e,t){return!e||!t||!On(e)||!On(t)?!1:qi(e,t)}o(es,"isOutdated");async function ts({timeout:e=Zi,registryUrl:t=Qi,fetchImpl:n=globalThis.fetch}={}){if(typeof n!="function")return null;try{let r=await n(t,{signal:AbortSignal.timeout(e)});if(!r?.ok)return null;let i=await r.json();return typeof i?.version=="string"?i.version:null}catch(r){return Je("fetchLatestVersion failed (%s): %O",t,r),null}}o(ts,"fetchLatestVersion");function ns(e=_n,t=864e5){try{let n=Ji(fe(e,Rn),"utf-8"),r=JSON.parse(n);return typeof r.latest!="string"||typeof r.fetchedAt!="number"||Date.now()-r.fetchedAt>t?null:{latest:r.latest,fetchedAt:r.fetchedAt}}catch(n){return Je("readUpgradeCheckCache failed (%s): %O",e,n),null}}o(ns,"readUpgradeCheckCache");function rs(e,t){try{Yi(e,{recursive:!0});let n={latest:t,fetchedAt:Date.now()};zi(fe(e,Rn),JSON.stringify(n))}catch(n){Je("writeUpgradeCheckCache failed (%s): %O",e,n)}}o(rs,"writeUpgradeCheckCache");async function os({cacheDir:e=_n,...t}={}){let n=await ts(t);n&&rs(e,n)}o(os,"startBackgroundUpgradeCheck");function Un(e,{onOutdated:t,cacheDir:n,...r}={}){let i=ns(n);if(i){es(e,i.latest)&&t?.(e,i.latest);return}os({cacheDir:n,...r})}o(Un,"preActionUpgradeCheck");import{default as im,chalkStderr as Ln}from"chalk";function Nn(e,t){let n=[`\u26A0 Update available: ${e} -> ${t}`," Run npx @cognite/cli@latest"],r=Math.max(...n.map(p=>[...p].length))+2,i="\u2500".repeat(r),a=o(p=>`\u2502 ${p}${" ".repeat(r-1-[...p].length)}\u2502`,"pad"),s=[`\u250C${i}\u2510`,...n.map(a),`\u2514${i}\u2518`].join(`
|
|
140
|
+
`);return Ln.bold.yellow(s)}o(Nn,"formatUpgradeWarning");function as(e){return e instanceof Error&&"code"in e&&typeof e.code=="string"&&e.code==="DEP0040"}o(as,"isDep0040Warning");var Xe=process,ps=Xe.emit.bind(Xe);Xe.emit=function(e,...t){return e==="warning"&&as(t[0])?!1:ps(e,...t)};Dn();var J=new ss;J.name("cognite").description("Build and deploy React apps to Cognite Data Fusion").version("1.3.1").showHelpAfterError().configureOutput({writeOut:o(e=>is(1,e),"writeOut")});J.hook("preAction",()=>{Un("1.3.1",{onOutdated:o((e,t)=>{console.warn(`
|
|
141
|
+
${Nn(e,t)}
|
|
142
|
+
`)},"onOutdated")})});Ht(J);En(J);var Kn=Tn({packageName:"@cognite/cli",cliVersion:"1.3.1"}),jn=Fn({packageName:"@cognite/cli",cliVersion:"1.3.1"});xn(J,Kn);var ze=process.argv.slice(2);J.parseAsync(ze,{from:"user"}).catch(async e=>{await bn(Kn,ze),Be(e)&&(console.error(`
|
|
143
|
+
Cancelled.`),process.exit(130)),await jn.captureError(e,{command:Ge(ze)}),await jn.flush(),console.error(e instanceof Error?`\u274C ${e.message}`:e),process.exit(1)});
|