@cryptiklemur/lattice 5.3.0 → 5.3.1

package/dist/server/daemon.js

@@ -14,7 +14,6 @@ import { startDiscovery } from "./mesh/discovery.js";
 import { startMeshConnections, onPeerConnected, onPeerDisconnected, onPeerMessage, getAllRemoteProjects } from "./mesh/connector.js";
 import { handleProxyRequest, handleProxyResponse } from "./mesh/proxy.js";
 import { verifyPassphrase, generateSessionToken, addSession, isValidSession } from "./auth/passphrase.js";
-import { ensureCerts } from "./tls.js";
 import { log } from "./logger.js";
 import { detectIdeProjectName } from "./handlers/settings.js";
 import "./handlers/session.js";
@@ -398,32 +397,29 @@ export async function startDaemon(portOverride, tlsOverride) {
     });
     var tlsOptions;
     if (config.tls) {
-        try {
-            var certs = ensureCerts();
-            tlsOptions = {
-                cert: readFileSync(certs.cert),
-                key: readFileSync(certs.key),
-            };
-            log.server("TLS enabled (cert: %s)", certs.cert);
-        }
-        catch (err) {
-            if (err?.code === "EACCES") {
-                console.error("[lattice] Permission denied reading TLS certs. Run 'lattice setup-tls' to fix permissions.");
+        var certsDir = join(getLatticeHome(), "certs");
+        var certPath = join(certsDir, "cert.pem");
+        var keyPath = join(certsDir, "key.pem");
+        if (existsSync(certPath) && existsSync(keyPath)) {
+            try {
+                tlsOptions = {
+                    cert: readFileSync(certPath),
+                    key: readFileSync(keyPath),
+                };
+                log.server("TLS enabled (cert: %s)", certPath);
             }
-            else {
-                console.error("[lattice] Failed to load TLS certs, falling back to HTTP:", err);
+            catch (err) {
+                if (err?.code === "EACCES") {
+                    console.error("[lattice] Permission denied reading TLS certs. Run 'lattice setup-tls' to fix permissions.");
+                }
+                else {
+                    console.error("[lattice] Failed to load TLS certs, falling back to HTTP:", err);
+                }
             }
         }
-    }
-    if (tlsOptions) {
-        var certsDir = join(getLatticeHome(), "certs");
-        log.server("TLS cert: %s", join(certsDir, "cert.pem"));
-        log.server("To trust the self-signed cert:");
-        log.server("  Linux:  sudo cp %s /usr/local/share/ca-certificates/lattice.crt && sudo update-ca-certificates", join(certsDir, "cert.pem"));
-        log.server("  macOS:  sudo security add-trusted-cert -d -r trustRoot -k /Library/Keychains/System.keychain %s", join(certsDir, "cert.pem"));
-        log.server("  Or use Tailscale HTTPS (no trust needed):");
-        log.server("  tailscale cert $(tailscale status --json | jq -r '.Self.DNSName' | sed 's/\\.$//')");
-        log.server("  Then copy: cp <hostname>.crt %s && cp <hostname>.key %s", join(certsDir, "cert.pem"), join(certsDir, "key.pem"));
+        else {
+            console.error("[lattice] TLS enabled but no certs found. Run 'lattice setup-tls' to generate them.");
+        }
     }
     var protocol = tlsOptions ? "https" : "http";
     var httpServer = tlsOptions

package/dist/server/index.js

@@ -4,7 +4,7 @@ delete process.env.CLAUDE_CODE_ENTRYPOINT;
 import { existsSync, readFileSync, writeFileSync, unlinkSync, openSync } from "node:fs";
 import { join, dirname } from "node:path";
 import { fileURLToPath } from "node:url";
-import { spawn } from "node:child_process";
+import { spawn, execSync } from "node:child_process";
 import { getLatticeHome, loadConfig } from "./config.js";
 var __filename_local = fileURLToPath(import.meta.url);
 var __dirname_local = dirname(__filename_local);
@@ -209,9 +209,18 @@ async function runDaemon() {
         }
     }
     catch { }
+    var tailscaleUrl;
+    try {
+        var tsResult = execSync("tailscale status --json", { encoding: "utf-8" });
+        var tsHostname = JSON.parse(tsResult).Self.DNSName.replace(/\.$/, "");
+        if (tsHostname) {
+            tailscaleUrl = protocol + "://" + tsHostname + ":" + config.port;
+        }
+    }
+    catch { }
     printBanner();
     await printQrCode(url);
-    printStatus(config, version, projectCount, sessionCount);
+    printStatus(config, version, projectCount, sessionCount, tailscaleUrl);
 }
 async function runStart() {
     var pid = readPid();

package/dist/server/tui.js

@@ -14,14 +14,18 @@ var BANNER = `
 export function printBanner() {
     console.log(BANNER);
 }
-export function printStatus(config, version, projectCount, sessionCount) {
+export function printStatus(config, version, projectCount, sessionCount, tailscaleUrl) {
     var protocol = config.tls ? "https" : "http";
     var url = protocol + "://localhost:" + config.port;
-    console.log("");
-    p.note("lattice v" + version + " — " + url + "\n" +
-        projectCount + " project" + (projectCount !== 1 ? "s" : "") +
+    var lines = "lattice v" + version + " — " + url + "\n";
+    if (tailscaleUrl) {
+        lines += tailscaleUrl + "\n";
+    }
+    lines += projectCount + " project" + (projectCount !== 1 ? "s" : "") +
         " · " + sessionCount + " session" + (sessionCount !== 1 ? "s" : "") + "\n" +
-        "Press Ctrl+C to stop", "Running");
+        "Press Ctrl+C to stop";
+    console.log("");
+    p.note(lines, "Running");
     console.log("");
 }
 export async function printQrCode(url) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cryptiklemur/lattice",
-  "version": "5.3.0",
+  "version": "5.3.1",
   "description": "Multi-machine agentic dashboard for Claude Code. Monitor sessions, manage MCP servers and skills, orchestrate across mesh-networked nodes.",
   "license": "MIT",
   "author": "Aaron Scherer <me@aaronscherer.me>",