@deeplake/hivemind 0.7.37 → 0.7.38

package/.claude-plugin/marketplace.json

@@ -6,18 +6,18 @@
   },
   "metadata": {
     "description": "Cloud-backed persistent shared memory for AI agents powered by Deeplake",
-    "version": "0.7.37"
+    "version": "0.7.38"
   },
   "plugins": [
     {
       "name": "hivemind",
       "description": "Persistent shared memory powered by Deeplake — captures all session activity and provides cross-session, cross-agent memory search",
-      "version": "0.7.37",
+      "version": "0.7.38",
       "source": {
         "source": "git-subdir",
         "url": "https://github.com/activeloopai/hivemind.git",
         "path": "claude-code",
-        "sha": "5f451351f845c391b9938499c232b96a149aedde"
+        "sha": "871fcb8d1cca4ab93ad139b93652a161d7bc3a8a"
       },
       "homepage": "https://github.com/activeloopai/hivemind"
     }

package/.claude-plugin/plugin.json

@@ -1,7 +1,7 @@
 {
   "name": "hivemind",
   "description": "Cloud-backed persistent memory powered by Deeplake — read, write, and share memory across Claude Code sessions and agents",
-  "version": "0.7.37",
+  "version": "0.7.38",
   "author": {
     "name": "Activeloop",
     "url": "https://deeplake.ai"

package/README.md

@@ -43,7 +43,17 @@ One command, all your agents:
 npm install -g @deeplake/hivemind && hivemind install
 ```
 
-The installer detects every supported assistant on your machine (table below), wires up the hooks, and opens a browser once for login. Restart them after install.
+The installer detects every supported assistant on your machine (table below), wires up the hooks, and shows a one-line consent prompt before opening a browser for sign-in. Restart your assistants after install.
+
+**Headless / CI installs** — pass an API token instead of using the browser flow:
+
+```bash
+HIVEMIND_TOKEN=<your-token> hivemind install
+# or
+hivemind install --token <your-token>
+```
+
+Get a token from your account settings on https://deeplake.ai. With no token in a non-interactive shell, the install completes with hooks but skips sign-in; run `hivemind login` later to enable shared memory.
 
 **Install for a specific assistant only:**
 

package/bundle/cli.js

@@ -63,6 +63,7 @@ import { existsSync, mkdirSync, readFileSync, writeFileSync, cpSync, symlinkSync
 import { join, dirname } from "node:path";
 import { homedir } from "node:os";
 import { fileURLToPath } from "node:url";
+import { createInterface } from "node:readline";
 var HOME = homedir();
 function pkgRoot() {
   let dir = fileURLToPath(new URL(".", import.meta.url));
@@ -140,6 +141,29 @@ function log(msg) {
 function warn(msg) {
   process.stderr.write(msg + "\n");
 }
+function confirm(message, defaultYes = true) {
+  const hint = defaultYes ? "[Y/n]" : "[y/N]";
+  const rl = createInterface({ input: process.stdin, output: process.stderr });
+  return new Promise((resolve2) => {
+    rl.question(`${message} ${hint} `, (answer) => {
+      rl.close();
+      const a = answer.trim().toLowerCase();
+      if (a === "")
+        resolve2(defaultYes);
+      else
+        resolve2(a === "y" || a === "yes");
+    });
+  });
+}
+function promptLine(message) {
+  const rl = createInterface({ input: process.stdin, output: process.stderr });
+  return new Promise((resolve2) => {
+    rl.question(message, (answer) => {
+      rl.close();
+      resolve2(answer.trim());
+    });
+  });
+}
 
 // dist/src/cli/install-claude.js
 var MARKETPLACE_NAME = "hivemind";
@@ -4067,6 +4091,19 @@ function deleteCredentials() {
 
 // dist/src/commands/auth.js
 var DEFAULT_API_URL = "https://api.deeplake.ai";
+function decodeJwtPayload(token) {
+  try {
+    const parts = token.split(".");
+    if (parts.length !== 3)
+      return null;
+    let payload = parts[1].replace(/-/g, "+").replace(/_/g, "/");
+    while (payload.length % 4)
+      payload += "=";
+    return JSON.parse(Buffer.from(payload, "base64").toString("utf8"));
+  } catch {
+    return null;
+  }
+}
 async function apiGet(path, token, apiUrl, orgId) {
   const headers = {
     Authorization: `Bearer ${token}`,
@@ -4197,17 +4234,32 @@ async function listMembers(token, orgId, apiUrl = DEFAULT_API_URL) {
 async function removeMember(userId, token, orgId, apiUrl = DEFAULT_API_URL) {
   await apiDelete(`/organizations/${orgId}/members/${userId}`, token, apiUrl, orgId);
 }
-async function login(apiUrl = DEFAULT_API_URL) {
-  const { token: authToken } = await deviceFlowLogin(apiUrl);
-  const user = await apiGet("/me", authToken, apiUrl);
+async function saveCredentialsFromToken(token, apiUrl, opts = {}) {
+  const user = await apiGet("/me", token, apiUrl);
   const userName = user.name || (user.email ? user.email.split("@")[0] : "unknown");
   process.stderr.write(`
 Logged in as: ${userName}
 `);
-  const orgs = await listOrgs(authToken, apiUrl);
+  const orgs = await listOrgs(token, apiUrl);
+  if (orgs.length === 0)
+    throw new Error("No organizations found for this account.");
+  const envOrgId = process.env.HIVEMIND_ORG_ID;
+  let preferredOrgId = envOrgId;
+  if (!preferredOrgId && opts.skipTokenMint) {
+    const claims = decodeJwtPayload(token);
+    const claimOrg = claims && typeof claims.org_id === "string" ? claims.org_id : void 0;
+    if (claimOrg)
+      preferredOrgId = claimOrg;
+  }
   let orgId;
   let orgName;
-  if (orgs.length === 1) {
+  const matched = preferredOrgId ? orgs.find((o) => o.id === preferredOrgId) : void 0;
+  if (matched) {
+    orgId = matched.id;
+    orgName = matched.name;
+    process.stderr.write(`Organization: ${orgName}
+`);
+  } else if (orgs.length === 1) {
     orgId = orgs[0].id;
     orgName = orgs[0].name;
     process.stderr.write(`Organization: ${orgName}
@@ -4218,17 +4270,26 @@ Logged in as: ${userName}
 `));
     orgId = orgs[0].id;
     orgName = orgs[0].name;
-    process.stderr.write(`
+    if (opts.skipTokenMint) {
+      process.stderr.write(`
+Using: ${orgName} (set HIVEMIND_ORG_ID to override)
+`);
+    } else {
+      process.stderr.write(`
 Using: ${orgName}
 `);
+    }
+  }
+  let apiToken = token;
+  if (!opts.skipTokenMint) {
+    const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
+    const tokenData = await apiPost("/users/me/tokens", {
+      name: tokenName,
+      duration: 365 * 24 * 3600,
+      organization_id: orgId
+    }, token, apiUrl);
+    apiToken = tokenData.token.token;
   }
-  const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
-  const tokenData = await apiPost("/users/me/tokens", {
-    name: tokenName,
-    duration: 365 * 24 * 3600,
-    organization_id: orgId
-  }, authToken, apiUrl);
-  const apiToken = tokenData.token.token;
   const creds = {
     token: apiToken,
     orgId,
@@ -4241,8 +4302,16 @@ Using: ${orgName}
   saveCredentials(creds);
   return creds;
 }
+async function login(apiUrl = DEFAULT_API_URL) {
+  const { token: authToken } = await deviceFlowLogin(apiUrl);
+  return saveCredentialsFromToken(authToken, apiUrl, { skipTokenMint: false });
+}
 
 // dist/src/cli/auth.js
+var DEFAULT_API_URL2 = "https://api.deeplake.ai";
+function resolveApiUrl() {
+  return process.env.HIVEMIND_API_URL ?? DEFAULT_API_URL2;
+}
 var CREDS_PATH = join14(HOME, ".deeplake", "credentials.json");
 function isLoggedIn() {
   return existsSync12(CREDS_PATH) && loadCredentials() !== null;
@@ -4253,14 +4322,27 @@ async function ensureLoggedIn() {
   log("");
   log("No Deeplake credentials found. Starting login...");
   try {
-    const apiUrl = process.env.HIVEMIND_API_URL ?? process.env.DEEPLAKE_API_URL ?? "https://api.deeplake.ai";
-    await login(apiUrl);
+    await login(resolveApiUrl());
   } catch (err) {
     warn(`Login failed: ${err.message}`);
     return false;
   }
   return isLoggedIn();
 }
+async function loginWithProvidedToken(flagToken) {
+  const token = flagToken ?? process.env.HIVEMIND_TOKEN;
+  if (!token)
+    return false;
+  try {
+    await saveCredentialsFromToken(token, resolveApiUrl(), { skipTokenMint: true });
+    const source = flagToken ? "--token flag" : "HIVEMIND_TOKEN";
+    log(`Signed in via ${source}.`);
+    return true;
+  } catch (err) {
+    warn(`Token authentication failed: ${err.message}`);
+    return false;
+  }
+}
 async function maybeShowOrgChoice() {
   const creds = loadCredentials();
   if (!creds)
@@ -4976,7 +5058,6 @@ var DeeplakeApi = class {
 };
 
 // dist/src/commands/session-prune.js
-import { createInterface } from "node:readline";
 function parseArgs(argv) {
   let before;
   let sessionId;
@@ -4996,15 +5077,6 @@ function parseArgs(argv) {
   }
   return { before, sessionId, all, yes };
 }
-function confirm(message) {
-  const rl = createInterface({ input: process.stdin, output: process.stderr });
-  return new Promise((resolve2) => {
-    rl.question(`${message} [y/N] `, (answer) => {
-      rl.close();
-      resolve2(answer.trim().toLowerCase() === "y");
-    });
-  });
-}
 function extractSessionId(path) {
   const m = path.match(/\/sessions\/[^/]+\/[^/]+_([^.]+)\.jsonl$/);
   return m ? m[1] : path.split("/").pop()?.replace(/\.jsonl$/, "") ?? path;
@@ -5100,7 +5172,7 @@ To delete, use: --all, --before <date>, or --session-id <id>`);
   }
   console.log();
   if (!yes) {
-    const ok = await confirm("Proceed with deletion?");
+    const ok = await confirm("Proceed with deletion?", false);
     if (!ok) {
       console.log("Aborted.");
       return;
@@ -7639,9 +7711,13 @@ var USAGE = `
 hivemind \u2014 one brain for every agent on your team
 
 Usage:
-  hivemind install   [--only <platforms>] [--skip-auth]
+  hivemind install   [--only <platforms>] [--skip-auth] [--token <value>]
       Auto-detect assistants on this machine and install hivemind into each.
       --only takes a comma-separated list: ${allPlatformIds().join(",")}
+      --token, or env HIVEMIND_TOKEN, signs in non-interactively (useful
+      for CI / scripted installs). Without it, a TTY install shows a
+      consent prompt; a headless install skips auth and prints a hint
+      for 'hivemind login'.
 
   hivemind uninstall [--only <platforms>]
       Auto-detect installed assistants and remove hivemind from each.
@@ -7730,6 +7806,78 @@ function parseOnly(args) {
 function hasFlag(args, flag) {
   return args.includes(flag);
 }
+function parseToken(args) {
+  const idx = args.findIndex((a) => a === "--token" || a.startsWith("--token="));
+  if (idx === -1)
+    return void 0;
+  const raw = args[idx].includes("=") ? args[idx].split("=", 2)[1] : args[idx + 1];
+  return raw && raw.length > 0 ? raw : void 0;
+}
+function hasEnvToken() {
+  return Boolean(process.env.HIVEMIND_TOKEN);
+}
+async function runAuthGate(args) {
+  const flagToken = parseToken(args);
+  const isTTY = Boolean(process.stdin.isTTY);
+  if (flagToken || hasEnvToken()) {
+    const ok = await loginWithProvidedToken(flagToken);
+    if (ok)
+      return;
+  }
+  if (!isTTY) {
+    log("");
+    log("No TTY detected \u2014 continuing without sign-in.");
+    log("To sign in:");
+    log("  1) Visit https://app.deeplake.ai/api-keys to create an API key");
+    log("  2) Rerun: HIVEMIND_TOKEN=<key> hivemind install");
+    log("Or run `hivemind login` after install.");
+    return;
+  }
+  log("");
+  log("\u{1F41D} One more step to unlock Hivemind");
+  log("");
+  log("To enable shared memory and auto-learning across your agents,");
+  log("we need to sign you in. Your traces will be securely stored in");
+  log("your private Hivemind, so all your agents can recall them.");
+  log("");
+  log("You can later connect your own cloud storage like S3/GCS/Azure Blob.");
+  log("");
+  const yes = await confirm("Sign in now?", true);
+  let signedIn = false;
+  if (yes) {
+    signedIn = await ensureLoggedIn();
+    if (!signedIn) {
+      warn("Login did not complete.");
+    }
+  }
+  if (!signedIn) {
+    log("");
+    log("Alternatively, sign in at https://app.deeplake.ai/api-keys, create");
+    log("an API key, and paste it here. Press Enter to skip and continue");
+    log("installing without sign-in (you can run `hivemind login` later).");
+    log("");
+    const MAX_PASTE_ATTEMPTS = 3;
+    for (let attempt = 1; attempt <= MAX_PASTE_ATTEMPTS; attempt++) {
+      const pasted = await promptLine("API key: ");
+      if (!pasted)
+        break;
+      signedIn = await loginWithProvidedToken(pasted);
+      if (signedIn)
+        break;
+      const remaining = MAX_PASTE_ATTEMPTS - attempt;
+      if (remaining > 0) {
+        log("");
+        log(`That key wasn't accepted (likely invalid or revoked). Try again (${remaining} attempt${remaining === 1 ? "" : "s"} left) or press Enter to skip.`);
+        log("");
+      }
+    }
+    if (!signedIn) {
+      log("");
+      log("Continuing install without sign-in. Run `hivemind login` later, or");
+      log("rerun with `HIVEMIND_TOKEN=<key> hivemind install`.");
+    }
+  }
+}
 async function runInstallAll(args) {
   const only = parseOnly(args);
   const skipAuth = hasFlag(args, "--skip-auth");
@@ -7744,11 +7892,7 @@ async function runInstallAll(args) {
   log(`Installing hivemind ${getVersion()} for: ${targets.join(", ")}`);
   log("");
   if (!skipAuth && !isLoggedIn()) {
-    const ok = await ensureLoggedIn();
-    if (!ok) {
-      warn("Skipping install because login did not complete.");
-      process.exit(1);
-    }
+    await runAuthGate(args);
   }
   for (const id of targets)
     runSingleInstall(id);

package/codex/bundle/commands/auth-login.js

@@ -96,6 +96,19 @@ function deleteCredentials() {
 
 // dist/src/commands/auth.js
 var DEFAULT_API_URL = "https://api.deeplake.ai";
+function decodeJwtPayload(token) {
+  try {
+    const parts = token.split(".");
+    if (parts.length !== 3)
+      return null;
+    let payload = parts[1].replace(/-/g, "+").replace(/_/g, "/");
+    while (payload.length % 4)
+      payload += "=";
+    return JSON.parse(Buffer.from(payload, "base64").toString("utf8"));
+  } catch {
+    return null;
+  }
+}
 async function apiGet(path, token, apiUrl, orgId) {
   const headers = {
     Authorization: `Bearer ${token}`,
@@ -226,17 +239,32 @@ async function listMembers(token, orgId, apiUrl = DEFAULT_API_URL) {
 async function removeMember(userId, token, orgId, apiUrl = DEFAULT_API_URL) {
   await apiDelete(`/organizations/${orgId}/members/${userId}`, token, apiUrl, orgId);
 }
-async function login(apiUrl = DEFAULT_API_URL) {
-  const { token: authToken } = await deviceFlowLogin(apiUrl);
-  const user = await apiGet("/me", authToken, apiUrl);
+async function saveCredentialsFromToken(token, apiUrl, opts = {}) {
+  const user = await apiGet("/me", token, apiUrl);
   const userName = user.name || (user.email ? user.email.split("@")[0] : "unknown");
   process.stderr.write(`
 Logged in as: ${userName}
 `);
-  const orgs = await listOrgs(authToken, apiUrl);
+  const orgs = await listOrgs(token, apiUrl);
+  if (orgs.length === 0)
+    throw new Error("No organizations found for this account.");
+  const envOrgId = process.env.HIVEMIND_ORG_ID;
+  let preferredOrgId = envOrgId;
+  if (!preferredOrgId && opts.skipTokenMint) {
+    const claims = decodeJwtPayload(token);
+    const claimOrg = claims && typeof claims.org_id === "string" ? claims.org_id : void 0;
+    if (claimOrg)
+      preferredOrgId = claimOrg;
+  }
   let orgId;
   let orgName;
-  if (orgs.length === 1) {
+  const matched = preferredOrgId ? orgs.find((o) => o.id === preferredOrgId) : void 0;
+  if (matched) {
+    orgId = matched.id;
+    orgName = matched.name;
+    process.stderr.write(`Organization: ${orgName}
+`);
+  } else if (orgs.length === 1) {
     orgId = orgs[0].id;
     orgName = orgs[0].name;
     process.stderr.write(`Organization: ${orgName}
@@ -247,17 +275,26 @@ Logged in as: ${userName}
 `));
     orgId = orgs[0].id;
     orgName = orgs[0].name;
-    process.stderr.write(`
+    if (opts.skipTokenMint) {
+      process.stderr.write(`
+Using: ${orgName} (set HIVEMIND_ORG_ID to override)
+`);
+    } else {
+      process.stderr.write(`
 Using: ${orgName}
 `);
+    }
+  }
+  let apiToken = token;
+  if (!opts.skipTokenMint) {
+    const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
+    const tokenData = await apiPost("/users/me/tokens", {
+      name: tokenName,
+      duration: 365 * 24 * 3600,
+      organization_id: orgId
+    }, token, apiUrl);
+    apiToken = tokenData.token.token;
   }
-  const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
-  const tokenData = await apiPost("/users/me/tokens", {
-    name: tokenName,
-    duration: 365 * 24 * 3600,
-    organization_id: orgId
-  }, authToken, apiUrl);
-  const apiToken = tokenData.token.token;
   const creds = {
     token: apiToken,
     orgId,
@@ -270,6 +307,10 @@ Using: ${orgName}
   saveCredentials(creds);
   return creds;
 }
+async function login(apiUrl = DEFAULT_API_URL) {
+  const { token: authToken } = await deviceFlowLogin(apiUrl);
+  return saveCredentialsFromToken(authToken, apiUrl, { skipTokenMint: false });
+}
 
 // dist/src/config.js
 import { readFileSync as readFileSync2, existsSync } from "node:fs";
@@ -969,8 +1010,40 @@ var DeeplakeApi = class {
   }
 };
 
-// dist/src/commands/session-prune.js
+// dist/src/cli/util.js
+import { existsSync as existsSync3, mkdirSync as mkdirSync4, readFileSync as readFileSync5, writeFileSync as writeFileSync4, cpSync, symlinkSync, unlinkSync as unlinkSync3, lstatSync } from "node:fs";
+import { join as join6, dirname } from "node:path";
+import { homedir as homedir5 } from "node:os";
+import { fileURLToPath } from "node:url";
 import { createInterface } from "node:readline";
+var HOME = homedir5();
+var PLATFORM_MARKERS = [
+  { id: "claude", markerDir: join6(HOME, ".claude") },
+  { id: "codex", markerDir: join6(HOME, ".codex") },
+  { id: "claw", markerDir: join6(HOME, ".openclaw") },
+  { id: "cursor", markerDir: join6(HOME, ".cursor") },
+  { id: "hermes", markerDir: join6(HOME, ".hermes") },
+  // pi (badlogic/pi-mono coding-agent) — config at ~/.pi/agent/. pi exposes
+  // a rich extension event API (session_start / input / tool_call /
+  // tool_result / message_end / session_shutdown / etc.) — Tier 1 capable.
+  { id: "pi", markerDir: join6(HOME, ".pi") }
+];
+function confirm(message, defaultYes = true) {
+  const hint = defaultYes ? "[Y/n]" : "[y/N]";
+  const rl = createInterface({ input: process.stdin, output: process.stderr });
+  return new Promise((resolve2) => {
+    rl.question(`${message} ${hint} `, (answer) => {
+      rl.close();
+      const a = answer.trim().toLowerCase();
+      if (a === "")
+        resolve2(defaultYes);
+      else
+        resolve2(a === "y" || a === "yes");
+    });
+  });
+}
+
+// dist/src/commands/session-prune.js
 function parseArgs(argv) {
   let before;
   let sessionId;
@@ -990,15 +1063,6 @@ function parseArgs(argv) {
   }
   return { before, sessionId, all, yes };
 }
-function confirm(message) {
-  const rl = createInterface({ input: process.stdin, output: process.stderr });
-  return new Promise((resolve2) => {
-    rl.question(`${message} [y/N] `, (answer) => {
-      rl.close();
-      resolve2(answer.trim().toLowerCase() === "y");
-    });
-  });
-}
 function extractSessionId(path) {
   const m = path.match(/\/sessions\/[^/]+\/[^/]+_([^.]+)\.jsonl$/);
   return m ? m[1] : path.split("/").pop()?.replace(/\.jsonl$/, "") ?? path;
@@ -1094,7 +1158,7 @@ To delete, use: --all, --before <date>, or --session-id <id>`);
   }
   console.log();
   if (!yes) {
-    const ok = await confirm("Proceed with deletion?");
+    const ok = await confirm("Proceed with deletion?", false);
     if (!ok) {
       console.log("Aborted.");
       return;

package/cursor/bundle/commands/auth-login.js

@@ -96,6 +96,19 @@ function deleteCredentials() {
 
 // dist/src/commands/auth.js
 var DEFAULT_API_URL = "https://api.deeplake.ai";
+function decodeJwtPayload(token) {
+  try {
+    const parts = token.split(".");
+    if (parts.length !== 3)
+      return null;
+    let payload = parts[1].replace(/-/g, "+").replace(/_/g, "/");
+    while (payload.length % 4)
+      payload += "=";
+    return JSON.parse(Buffer.from(payload, "base64").toString("utf8"));
+  } catch {
+    return null;
+  }
+}
 async function apiGet(path, token, apiUrl, orgId) {
   const headers = {
     Authorization: `Bearer ${token}`,
@@ -226,17 +239,32 @@ async function listMembers(token, orgId, apiUrl = DEFAULT_API_URL) {
 async function removeMember(userId, token, orgId, apiUrl = DEFAULT_API_URL) {
   await apiDelete(`/organizations/${orgId}/members/${userId}`, token, apiUrl, orgId);
 }
-async function login(apiUrl = DEFAULT_API_URL) {
-  const { token: authToken } = await deviceFlowLogin(apiUrl);
-  const user = await apiGet("/me", authToken, apiUrl);
+async function saveCredentialsFromToken(token, apiUrl, opts = {}) {
+  const user = await apiGet("/me", token, apiUrl);
   const userName = user.name || (user.email ? user.email.split("@")[0] : "unknown");
   process.stderr.write(`
 Logged in as: ${userName}
 `);
-  const orgs = await listOrgs(authToken, apiUrl);
+  const orgs = await listOrgs(token, apiUrl);
+  if (orgs.length === 0)
+    throw new Error("No organizations found for this account.");
+  const envOrgId = process.env.HIVEMIND_ORG_ID;
+  let preferredOrgId = envOrgId;
+  if (!preferredOrgId && opts.skipTokenMint) {
+    const claims = decodeJwtPayload(token);
+    const claimOrg = claims && typeof claims.org_id === "string" ? claims.org_id : void 0;
+    if (claimOrg)
+      preferredOrgId = claimOrg;
+  }
   let orgId;
   let orgName;
-  if (orgs.length === 1) {
+  const matched = preferredOrgId ? orgs.find((o) => o.id === preferredOrgId) : void 0;
+  if (matched) {
+    orgId = matched.id;
+    orgName = matched.name;
+    process.stderr.write(`Organization: ${orgName}
+`);
+  } else if (orgs.length === 1) {
     orgId = orgs[0].id;
     orgName = orgs[0].name;
     process.stderr.write(`Organization: ${orgName}
@@ -247,17 +275,26 @@ Logged in as: ${userName}
 `));
     orgId = orgs[0].id;
     orgName = orgs[0].name;
-    process.stderr.write(`
+    if (opts.skipTokenMint) {
+      process.stderr.write(`
+Using: ${orgName} (set HIVEMIND_ORG_ID to override)
+`);
+    } else {
+      process.stderr.write(`
 Using: ${orgName}
 `);
+    }
+  }
+  let apiToken = token;
+  if (!opts.skipTokenMint) {
+    const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
+    const tokenData = await apiPost("/users/me/tokens", {
+      name: tokenName,
+      duration: 365 * 24 * 3600,
+      organization_id: orgId
+    }, token, apiUrl);
+    apiToken = tokenData.token.token;
   }
-  const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
-  const tokenData = await apiPost("/users/me/tokens", {
-    name: tokenName,
-    duration: 365 * 24 * 3600,
-    organization_id: orgId
-  }, authToken, apiUrl);
-  const apiToken = tokenData.token.token;
   const creds = {
     token: apiToken,
     orgId,
@@ -270,6 +307,10 @@ Using: ${orgName}
   saveCredentials(creds);
   return creds;
 }
+async function login(apiUrl = DEFAULT_API_URL) {
+  const { token: authToken } = await deviceFlowLogin(apiUrl);
+  return saveCredentialsFromToken(authToken, apiUrl, { skipTokenMint: false });
+}
 
 // dist/src/config.js
 import { readFileSync as readFileSync2, existsSync } from "node:fs";
@@ -969,8 +1010,40 @@ var DeeplakeApi = class {
   }
 };
 
-// dist/src/commands/session-prune.js
+// dist/src/cli/util.js
+import { existsSync as existsSync3, mkdirSync as mkdirSync4, readFileSync as readFileSync5, writeFileSync as writeFileSync4, cpSync, symlinkSync, unlinkSync as unlinkSync3, lstatSync } from "node:fs";
+import { join as join6, dirname } from "node:path";
+import { homedir as homedir5 } from "node:os";
+import { fileURLToPath } from "node:url";
 import { createInterface } from "node:readline";
+var HOME = homedir5();
+var PLATFORM_MARKERS = [
+  { id: "claude", markerDir: join6(HOME, ".claude") },
+  { id: "codex", markerDir: join6(HOME, ".codex") },
+  { id: "claw", markerDir: join6(HOME, ".openclaw") },
+  { id: "cursor", markerDir: join6(HOME, ".cursor") },
+  { id: "hermes", markerDir: join6(HOME, ".hermes") },
+  // pi (badlogic/pi-mono coding-agent) — config at ~/.pi/agent/. pi exposes
+  // a rich extension event API (session_start / input / tool_call /
+  // tool_result / message_end / session_shutdown / etc.) — Tier 1 capable.
+  { id: "pi", markerDir: join6(HOME, ".pi") }
+];
+function confirm(message, defaultYes = true) {
+  const hint = defaultYes ? "[Y/n]" : "[y/N]";
+  const rl = createInterface({ input: process.stdin, output: process.stderr });
+  return new Promise((resolve2) => {
+    rl.question(`${message} ${hint} `, (answer) => {
+      rl.close();
+      const a = answer.trim().toLowerCase();
+      if (a === "")
+        resolve2(defaultYes);
+      else
+        resolve2(a === "y" || a === "yes");
+    });
+  });
+}
+
+// dist/src/commands/session-prune.js
 function parseArgs(argv) {
   let before;
   let sessionId;
@@ -990,15 +1063,6 @@ function parseArgs(argv) {
   }
   return { before, sessionId, all, yes };
 }
-function confirm(message) {
-  const rl = createInterface({ input: process.stdin, output: process.stderr });
-  return new Promise((resolve2) => {
-    rl.question(`${message} [y/N] `, (answer) => {
-      rl.close();
-      resolve2(answer.trim().toLowerCase() === "y");
-    });
-  });
-}
 function extractSessionId(path) {
   const m = path.match(/\/sessions\/[^/]+\/[^/]+_([^.]+)\.jsonl$/);
   return m ? m[1] : path.split("/").pop()?.replace(/\.jsonl$/, "") ?? path;
@@ -1094,7 +1158,7 @@ To delete, use: --all, --before <date>, or --session-id <id>`);
   }
   console.log();
   if (!yes) {
-    const ok = await confirm("Proceed with deletion?");
+    const ok = await confirm("Proceed with deletion?", false);
     if (!ok) {
       console.log("Aborted.");
       return;

package/hermes/bundle/commands/auth-login.js

@@ -96,6 +96,19 @@ function deleteCredentials() {
 
 // dist/src/commands/auth.js
 var DEFAULT_API_URL = "https://api.deeplake.ai";
+function decodeJwtPayload(token) {
+  try {
+    const parts = token.split(".");
+    if (parts.length !== 3)
+      return null;
+    let payload = parts[1].replace(/-/g, "+").replace(/_/g, "/");
+    while (payload.length % 4)
+      payload += "=";
+    return JSON.parse(Buffer.from(payload, "base64").toString("utf8"));
+  } catch {
+    return null;
+  }
+}
 async function apiGet(path, token, apiUrl, orgId) {
   const headers = {
     Authorization: `Bearer ${token}`,
@@ -226,17 +239,32 @@ async function listMembers(token, orgId, apiUrl = DEFAULT_API_URL) {
 async function removeMember(userId, token, orgId, apiUrl = DEFAULT_API_URL) {
   await apiDelete(`/organizations/${orgId}/members/${userId}`, token, apiUrl, orgId);
 }
-async function login(apiUrl = DEFAULT_API_URL) {
-  const { token: authToken } = await deviceFlowLogin(apiUrl);
-  const user = await apiGet("/me", authToken, apiUrl);
+async function saveCredentialsFromToken(token, apiUrl, opts = {}) {
+  const user = await apiGet("/me", token, apiUrl);
   const userName = user.name || (user.email ? user.email.split("@")[0] : "unknown");
   process.stderr.write(`
 Logged in as: ${userName}
 `);
-  const orgs = await listOrgs(authToken, apiUrl);
+  const orgs = await listOrgs(token, apiUrl);
+  if (orgs.length === 0)
+    throw new Error("No organizations found for this account.");
+  const envOrgId = process.env.HIVEMIND_ORG_ID;
+  let preferredOrgId = envOrgId;
+  if (!preferredOrgId && opts.skipTokenMint) {
+    const claims = decodeJwtPayload(token);
+    const claimOrg = claims && typeof claims.org_id === "string" ? claims.org_id : void 0;
+    if (claimOrg)
+      preferredOrgId = claimOrg;
+  }
   let orgId;
   let orgName;
-  if (orgs.length === 1) {
+  const matched = preferredOrgId ? orgs.find((o) => o.id === preferredOrgId) : void 0;
+  if (matched) {
+    orgId = matched.id;
+    orgName = matched.name;
+    process.stderr.write(`Organization: ${orgName}
+`);
+  } else if (orgs.length === 1) {
     orgId = orgs[0].id;
     orgName = orgs[0].name;
     process.stderr.write(`Organization: ${orgName}
@@ -247,17 +275,26 @@ Logged in as: ${userName}
 `));
     orgId = orgs[0].id;
     orgName = orgs[0].name;
-    process.stderr.write(`
+    if (opts.skipTokenMint) {
+      process.stderr.write(`
+Using: ${orgName} (set HIVEMIND_ORG_ID to override)
+`);
+    } else {
+      process.stderr.write(`
 Using: ${orgName}
 `);
+    }
+  }
+  let apiToken = token;
+  if (!opts.skipTokenMint) {
+    const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
+    const tokenData = await apiPost("/users/me/tokens", {
+      name: tokenName,
+      duration: 365 * 24 * 3600,
+      organization_id: orgId
+    }, token, apiUrl);
+    apiToken = tokenData.token.token;
   }
-  const tokenName = `deeplake-plugin-${(/* @__PURE__ */ new Date()).toISOString().slice(0, 10)}`;
-  const tokenData = await apiPost("/users/me/tokens", {
-    name: tokenName,
-    duration: 365 * 24 * 3600,
-    organization_id: orgId
-  }, authToken, apiUrl);
-  const apiToken = tokenData.token.token;
   const creds = {
     token: apiToken,
     orgId,
@@ -270,6 +307,10 @@ Using: ${orgName}
   saveCredentials(creds);
   return creds;
 }
+async function login(apiUrl = DEFAULT_API_URL) {
+  const { token: authToken } = await deviceFlowLogin(apiUrl);
+  return saveCredentialsFromToken(authToken, apiUrl, { skipTokenMint: false });
+}
 
 // dist/src/config.js
 import { readFileSync as readFileSync2, existsSync } from "node:fs";
@@ -969,8 +1010,40 @@ var DeeplakeApi = class {
   }
 };
 
-// dist/src/commands/session-prune.js
+// dist/src/cli/util.js
+import { existsSync as existsSync3, mkdirSync as mkdirSync4, readFileSync as readFileSync5, writeFileSync as writeFileSync4, cpSync, symlinkSync, unlinkSync as unlinkSync3, lstatSync } from "node:fs";
+import { join as join6, dirname } from "node:path";
+import { homedir as homedir5 } from "node:os";
+import { fileURLToPath } from "node:url";
 import { createInterface } from "node:readline";
+var HOME = homedir5();
+var PLATFORM_MARKERS = [
+  { id: "claude", markerDir: join6(HOME, ".claude") },
+  { id: "codex", markerDir: join6(HOME, ".codex") },
+  { id: "claw", markerDir: join6(HOME, ".openclaw") },
+  { id: "cursor", markerDir: join6(HOME, ".cursor") },
+  { id: "hermes", markerDir: join6(HOME, ".hermes") },
+  // pi (badlogic/pi-mono coding-agent) — config at ~/.pi/agent/. pi exposes
+  // a rich extension event API (session_start / input / tool_call /
+  // tool_result / message_end / session_shutdown / etc.) — Tier 1 capable.
+  { id: "pi", markerDir: join6(HOME, ".pi") }
+];
+function confirm(message, defaultYes = true) {
+  const hint = defaultYes ? "[Y/n]" : "[y/N]";
+  const rl = createInterface({ input: process.stdin, output: process.stderr });
+  return new Promise((resolve2) => {
+    rl.question(`${message} ${hint} `, (answer) => {
+      rl.close();
+      const a = answer.trim().toLowerCase();
+      if (a === "")
+        resolve2(defaultYes);
+      else
+        resolve2(a === "y" || a === "yes");
+    });
+  });
+}
+
+// dist/src/commands/session-prune.js
 function parseArgs(argv) {
   let before;
   let sessionId;
@@ -990,15 +1063,6 @@ function parseArgs(argv) {
   }
   return { before, sessionId, all, yes };
 }
-function confirm(message) {
-  const rl = createInterface({ input: process.stdin, output: process.stderr });
-  return new Promise((resolve2) => {
-    rl.question(`${message} [y/N] `, (answer) => {
-      rl.close();
-      resolve2(answer.trim().toLowerCase() === "y");
-    });
-  });
-}
 function extractSessionId(path) {
   const m = path.match(/\/sessions\/[^/]+\/[^/]+_([^.]+)\.jsonl$/);
   return m ? m[1] : path.split("/").pop()?.replace(/\.jsonl$/, "") ?? path;
@@ -1094,7 +1158,7 @@ To delete, use: --all, --before <date>, or --session-id <id>`);
   }
   console.log();
   if (!yes) {
-    const ok = await confirm("Proceed with deletion?");
+    const ok = await confirm("Proceed with deletion?", false);
     if (!ok) {
       console.log("Aborted.");
       return;

package/mcp/bundle/server.js

@@ -24379,6 +24379,7 @@ import { existsSync as existsSync3, mkdirSync as mkdirSync4, readFileSync as rea
 import { join as join6, dirname } from "node:path";
 import { homedir as homedir5 } from "node:os";
 import { fileURLToPath } from "node:url";
+import { createInterface } from "node:readline";
 var HOME = homedir5();
 function pkgRoot() {
   let dir = fileURLToPath(new URL(".", import.meta.url));

package/openclaw/dist/index.js

@@ -1543,7 +1543,7 @@ function extractLatestVersion(body) {
   return typeof v === "string" && v.length > 0 ? v : null;
 }
 function getInstalledVersion() {
-  return "0.7.37".length > 0 ? "0.7.37" : null;
+  return "0.7.38".length > 0 ? "0.7.38" : null;
 }
 function isNewer(latest, current) {
   const parse = (v) => v.replace(/-.*$/, "").split(".").map(Number);

package/openclaw/openclaw.plugin.json

@@ -52,5 +52,5 @@
       }
     }
   },
-  "version": "0.7.37"
+  "version": "0.7.38"
 }

package/openclaw/package.json

@@ -1,6 +1,6 @@
 {
   "name": "hivemind",
-  "version": "0.7.37",
+  "version": "0.7.38",
   "type": "module",
   "description": "Hivemind — cloud-backed persistent shared memory for AI agents, powered by DeepLake",
   "license": "Apache-2.0",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@deeplake/hivemind",
-  "version": "0.7.37",
+  "version": "0.7.38",
   "description": "Cloud-backed persistent shared memory for AI agents powered by Deeplake",
   "type": "module",
   "repository": {