@ebowwa/seedinstallation 0.2.4 → 0.4.0

package/dist/clone.js

@@ -1,74 +1,60 @@
-import { spawn } from "child_process";
-/**
- * Composable git clone with support for shallow, sparse, branch, and directory options.
- *
- * @example
- * // Basic clone
- * await clone({ repo: "https://github.com/org/repo.git" });
- *
- * // Shallow clone of a specific branch into a custom dir
- * await clone({ repo: "https://github.com/org/repo.git", ref: "main", depth: 1, dest: "my-repo" });
- *
- * // Sparse checkout — only pull specific subdirectories
- * await clone({ repo: "https://github.com/org/repo.git", sparse: ["src/lib", "src/types"], depth: 1 });
- */
-export async function clone(opts) {
-    const { repo, dest, ref, depth, sparse, cwd } = opts;
-    const repoName = dest ?? repoNameFrom(repo);
-    const targetDir = cwd ? `${cwd}/${repoName}` : repoName;
-    const args = ["git", "clone"];
-    if (depth)
-        args.push("--depth", String(depth));
-    if (ref && !sparse)
-        args.push("--branch", ref);
-    if (sparse)
-        args.push("--no-checkout", "--filter=blob:none");
-    args.push(repo, targetDir);
-    await run(args, cwd);
-    if (sparse) {
-        await run(["git", "sparse-checkout", "init", "--cone"], targetDir);
-        await run(["git", "sparse-checkout", "set", ...sparse], targetDir);
-        if (ref) {
-            await run(["git", "checkout", ref], targetDir);
-        }
-        else {
-            await run(["git", "checkout"], targetDir);
-        }
+var __defProp = Object.defineProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, {
+      get: all[name],
+      enumerable: true,
+      configurable: true,
+      set: (newValue) => all[name] = () => newValue
+    });
+};
+var __esm = (fn, res) => () => (fn && (res = fn(fn = 0)), res);
+
+// clone.ts
+async function clone(opts) {
+  const { repo, dest, ref, depth, sparse, cwd } = opts;
+  const repoName = dest ?? repoNameFrom(repo);
+  const targetDir = cwd ? `${cwd}/${repoName}` : repoName;
+  const args = ["git", "clone"];
+  if (depth)
+    args.push("--depth", String(depth));
+  if (ref && !sparse)
+    args.push("--branch", ref);
+  if (sparse)
+    args.push("--no-checkout", "--filter=blob:none");
+  args.push(repo, targetDir);
+  await run(args, cwd);
+  if (sparse) {
+    await run(["git", "sparse-checkout", "init", "--cone"], targetDir);
+    await run(["git", "sparse-checkout", "set", ...sparse], targetDir);
+    if (ref) {
+      await run(["git", "checkout", ref], targetDir);
+    } else {
+      await run(["git", "checkout"], targetDir);
     }
-    const commit = (await run(["git", "rev-parse", "--short", "HEAD"], targetDir)).trim();
-    const checkedRef = (await run(["git", "rev-parse", "--abbrev-ref", "HEAD"], targetDir)).trim();
-    const absPath = (await run(["git", "rev-parse", "--show-toplevel"], targetDir)).trim();
-    return { path: absPath, ref: checkedRef, commit };
+  }
+  const commit = (await run(["git", "rev-parse", "--short", "HEAD"], targetDir)).trim();
+  const checkedRef = (await run(["git", "rev-parse", "--abbrev-ref", "HEAD"], targetDir)).trim();
+  const absPath = (await run(["git", "rev-parse", "--show-toplevel"], targetDir)).trim();
+  return { path: absPath, ref: checkedRef, commit };
 }
-/** Extract repo name from a git URL */
 function repoNameFrom(url) {
-    return url.replace(/\.git$/, "").split("/").pop();
+  return url.replace(/\.git$/, "").split("/").pop();
 }
-/** Run a command and return stdout, throw on failure */
 async function run(args, cwd) {
-    return new Promise((resolve, reject) => {
-        const proc = spawn(args[0], args.slice(1), {
-            cwd: cwd || undefined,
-            stdio: ["ignore", "pipe", "pipe"],
-        });
-        let stdout = "";
-        let stderr = "";
-        proc.stdout?.on("data", (data) => {
-            stdout += data.toString();
-        });
-        proc.stderr?.on("data", (data) => {
-            stderr += data.toString();
-        });
-        proc.on("close", (code) => {
-            if (code === 0) {
-                resolve(stdout);
-            }
-            else {
-                reject(new Error(`${args.join(" ")} failed (exit ${code}): ${stderr}`));
-            }
-        });
-        proc.on("error", (err) => {
-            reject(new Error(`${args.join(" ")} failed: ${err.message}`));
-        });
-    });
+  const proc = Bun.spawn(args, {
+    cwd,
+    stdout: "pipe",
+    stderr: "pipe"
+  });
+  const exitCode = await proc.exited;
+  const stdout = await new Response(proc.stdout).text();
+  if (exitCode !== 0) {
+    const stderr = await new Response(proc.stderr).text();
+    throw new Error(`${args.join(" ")} failed (exit ${exitCode}): ${stderr}`);
+  }
+  return stdout;
 }
+export {
+  clone
+};

package/dist/device-auth.d.ts

@@ -3,7 +3,7 @@
  * Handles CLI tools that use device-code auth (Doppler, GitHub, Tailscale, etc.).
  * Works with both local and SSH contexts via ExecContext from sudo.ts.
  */
-import type { SudoOptions } from "./sudo.js";
+import type { SudoOptions } from "./sudo";
 export interface DeviceAuthConfig {
     /** CLI command name (e.g. "doppler", "gh", "tailscale") */
     cli: string;
@@ -39,9 +39,7 @@ export interface DeviceAuthResult {
     /** Error message if failed */
     error?: string;
 }
-export interface DeviceAuthPollOptions {
-    /** Execution context for running commands */
-    context: SudoOptions["context"];
+export interface DeviceAuthPollOptions extends SudoOptions {
     /** Max poll attempts (default: 60) */
     maxAttempts?: number;
     /** Poll interval in ms (default: 2000) */
@@ -68,7 +66,7 @@ export declare function stripAnsi(text: string): string;
  *   { context: { type: "ssh", host: "1.2.3.4" } }
  * );
  */
-export declare function deviceAuth(config: DeviceAuthConfig, opts: DeviceAuthPollOptions): Promise<DeviceAuthResult>;
+export declare function deviceAuth(config: DeviceAuthConfig, opts?: DeviceAuthPollOptions): Promise<DeviceAuthResult>;
 /**
  * Check if a CLI is already authenticated.
  */
@@ -83,3 +81,4 @@ export declare const dopplerConfig: DeviceAuthConfig;
 export declare const githubConfig: DeviceAuthConfig;
 /** Tailscale CLI device-auth config */
 export declare const tailscaleConfig: DeviceAuthConfig;
+//# sourceMappingURL=device-auth.d.ts.map

package/dist/device-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"device-auth.d.ts","sourceRoot":"","sources":["../device-auth.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAe,WAAW,EAAc,MAAM,QAAQ,CAAC;AAYnE,MAAM,WAAW,gBAAgB;IAC/B,2DAA2D;IAC3D,GAAG,EAAE,MAAM,CAAC;IACZ,4EAA4E;IAC5E,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,qDAAqD;IACrD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,8DAA8D;IAC9D,QAAQ,EAAE;QACR,uDAAuD;QACvD,GAAG,EAAE,MAAM,CAAC;QACZ,wDAAwD;QACxD,IAAI,EAAE,MAAM,CAAC;QACb,wDAAwD;QACxD,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,oFAAoF;IACpF,OAAO,EAAE,MAAM,CAAC;IAChB,gDAAgD;IAChD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,qCAAqC;IACrC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,MAAM,WAAW,gBAAgB;IAC/B,mCAAmC;IACnC,OAAO,EAAE,OAAO,CAAC;IACjB,qCAAqC;IACrC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,iCAAiC;IACjC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,qBAAsB,SAAQ,WAAW;IACxD,sCAAsC;IACtC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,0CAA0C;IAC1C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,gBAAgB,KAAK,IAAI,CAAC;CAC9D;AAMD,8CAA8C;AAC9C,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAK9C;AAMD;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAsB,UAAU,CAC9B,MAAM,EAAE,gBAAgB,EACxB,IAAI,GAAE,qBAA0B,GAC/B,OAAO,CAAC,gBAAgB,CAAC,CAgF3B;AAeD;;GAEG;AACH,wBAAsB,QAAQ,CAC5B,MAAM,EAAE,IAAI,CAAC,gBAAgB,EAAE,KAAK,GAAG,WAAW,GAAG,UAAU,CAAC,EAChE,IAAI,EAAE,WAAW,GAChB,OAAO,CAAC,OAAO,CAAC,CAKlB;AAMD;;GAEG;AACH,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,IAAI,CAAC,gBAAgB,EAAE,SAAS,GAAG,SAAS,CAAC,EACrD,IAAI,EAAE,WAAW,GAChB,OAAO,CAAC,IAAI,CAAC,CAaf;AAMD,qCAAqC;AACrC,eAAO,MAAM,aAAa,EAAE,gBAW3B,CAAC;AAEF,yCAAyC;AACzC,eAAO,MAAM,YAAY,EAAE,gBAW1B,CAAC;AAEF,uCAAuC;AACvC,eAAO,MAAM,eAAe,EAAE,gBAU7B,CAAC"}

package/dist/device-auth.js

@@ -1,176 +1,264 @@
-/**
- * Generic device-code authentication flow polling.
- * Handles CLI tools that use device-code auth (Doppler, GitHub, Tailscale, etc.).
- * Works with both local and SSH contexts via ExecContext from sudo.ts.
- */
-// Re-export helpers
+var __defProp = Object.defineProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, {
+      get: all[name],
+      enumerable: true,
+      configurable: true,
+      set: (newValue) => all[name] = () => newValue
+    });
+};
+var __esm = (fn, res) => () => (fn && (res = fn(fn = 0)), res);
+
+// sudo.ts
+var exports_sudo = {};
+__export(exports_sudo, {
+  writeFile: () => writeFile,
+  sudo: () => sudo,
+  serviceEnable: () => serviceEnable,
+  service: () => service,
+  pkgInstall: () => pkgInstall,
+  exec: () => exec
+});
+async function sudo(cmd, opts) {
+  const parts = Array.isArray(cmd) ? cmd : cmd.split(/\s+/);
+  const envPrefix = opts.env ? Object.entries(opts.env).map(([k, v]) => `${k}=${shellEscape(v)}`) : [];
+  const sudoCmd = ["sudo", ...envPrefix, ...parts];
+  return exec(sudoCmd, opts);
+}
+async function pkgInstall(packages, opts) {
+  const pm = opts.pm ?? "apt";
+  const envOverride = {
+    ...opts.env,
+    ...opts.nonInteractive !== false ? { DEBIAN_FRONTEND: "noninteractive" } : {}
+  };
+  await sudo(updateCmd[pm], { ...opts, env: envOverride, quiet: true });
+  return sudo([...installCmd[pm], ...packages], {
+    ...opts,
+    env: envOverride
+  });
+}
+async function writeFile(path, content, opts) {
+  const op = opts.append ? "-a" : "";
+  const teeCmd = `tee ${op} ${shellEscape(path)}`.trim();
+  const result = await execPipe(content, ["sudo", teeCmd], opts);
+  if (result.ok && opts.mode) {
+    await sudo(["chmod", opts.mode, path], opts);
+  }
+  if (result.ok && opts.owner) {
+    await sudo(["chown", opts.owner, path], opts);
+  }
+  return result;
+}
+async function service(name, action, opts) {
+  return sudo(["systemctl", action, name], opts);
+}
+async function serviceEnable(name, opts) {
+  return sudo(["systemctl", "enable", "--now", name], opts);
+}
+function buildSshPrefix(ctx) {
+  const parts = ["ssh", "-F", "/dev/null", "-o", "StrictHostKeyChecking=no", "-o", "UserKnownHostsFile=/dev/null"];
+  if (ctx.keyPath)
+    parts.push("-i", ctx.keyPath);
+  else if (ctx.key)
+    parts.push("-i", ctx.key);
+  if (ctx.port)
+    parts.push("-p", String(ctx.port));
+  parts.push(`${ctx.user ?? "root"}@${ctx.host}`);
+  return parts;
+}
 async function exec(args, opts) {
-    const { sudo } = await import("./sudo.js");
-    return sudo(args, opts);
-}
-// ---------------------------------------------------------------------------
-// ANSI stripping
-// ---------------------------------------------------------------------------
-/** Remove ANSI escape codes from a string. */
-export function stripAnsi(text) {
-    return text.replace(/[\u001b\u009b][[()#;?]*(?:[0-9]{1,4}(?:;[0-9]{0,4})*)?[0-9A-ORZcf-nqry=><]/g, "");
-}
-// ---------------------------------------------------------------------------
-// Device-code auth flow
-// ---------------------------------------------------------------------------
-/**
- * Initiate device-code authentication and poll for completion.
- *
- * @example
- * const result = await deviceAuth(
- *   {
- *     cli: "doppler",
- *     patterns: {
- *       url: /Go to:\s+(https:\/\/[^\s]+)/,
- *       code: /code:\s+([A-Z0-9-]+)/,
- *       success: /Status:\s*authenticated/i,
- *     },
- *     logFile: "/tmp/doppler-login.log",
- *   },
- *   { context: { type: "ssh", host: "1.2.3.4" } }
- * );
- */
-export async function deviceAuth(config, opts) {
-    const { cli, loginCmd, statusCmd, patterns, logFile, pidFile, statusFlags, } = config;
-    const maxAttempts = opts.maxAttempts ?? 60;
-    const intervalMs = opts.intervalMs ?? 2000;
-    // Step 1: Start login in background
-    const loginCmdStr = loginCmd ?? `${cli} login`;
-    const startResult = await exec([`bash`, `-lc`, `nohup ${loginCmdStr} > ${logFile} 2>&1 & echo $!`], opts);
-    if (!startResult.ok) {
-        return { success: false, error: `Failed to start login: ${startResult.stderr}` };
-    }
-    const pid = startResult.stdout.trim();
-    // Save PID if configured
-    if (pidFile) {
-        await exec(["bash", `-lc`, `echo ${pid} > ${pidFile}`], opts);
-    }
-    // Step 2: Wait a moment for log file to populate
-    await sleep(1000);
-    // Step 3: Extract URL and code from log file
-    const extractResult = await exec(["cat", logFile], { ...opts, quiet: false });
-    const logContent = stripAnsi(extractResult.stdout);
-    const urlMatch = patterns.url.exec(logContent);
-    const codeMatch = patterns.code.exec(logContent);
-    const url = urlMatch?.[1];
-    const code = codeMatch?.[1];
-    if (!url || !code) {
-        return {
-            success: false,
-            error: `Could not extract auth URL/code from log output. Log content:\n${logContent}`,
-        };
-    }
-    // Step 4: Poll for completion
-    for (let attempt = 1; attempt <= maxAttempts; attempt++) {
-        const statusCmdStr = statusCmd ?? `${cli} status`;
-        const statusArgs = ["bash", "-lc", statusCmdStr];
-        if (statusFlags?.length)
-            statusArgs.push(...statusFlags);
-        const statusResult = await exec(statusArgs, { ...opts, quiet: false });
-        const statusOutput = stripAnsi(statusResult.stdout);
-        if (patterns.success.test(statusOutput)) {
-            return {
-                success: true,
-                url,
-                code,
-                status: statusOutput,
-            };
-        }
-        opts.onPoll?.(attempt, { success: false, url, code, status: statusOutput });
-        await sleep(intervalMs);
-    }
+  const finalArgs = opts.context.type === "ssh" ? [...buildSshPrefix(opts.context), args.map(shellEscape).join(" ")] : args;
+  const proc = Bun.spawn(finalArgs, {
+    stdout: "pipe",
+    stderr: "pipe",
+    timeout: opts.timeout ?? 30000
+  });
+  const exitCode = await proc.exited;
+  const stdout = opts.quiet ? "" : await new Response(proc.stdout).text();
+  const stderr = await new Response(proc.stderr).text();
+  return { stdout, stderr, exitCode, ok: exitCode === 0 };
+}
+async function execPipe(input, args, opts) {
+  if (opts.context.type === "ssh") {
+    const sshPrefix = buildSshPrefix(opts.context);
+    const remoteCmd = args.join(" ");
+    const fullArgs = [...sshPrefix, remoteCmd];
+    const proc2 = Bun.spawn(fullArgs, {
+      stdin: new TextEncoder().encode(input),
+      stdout: "pipe",
+      stderr: "pipe",
+      timeout: opts.timeout ?? 30000
+    });
+    const exitCode2 = await proc2.exited;
+    const stdout2 = opts.quiet ? "" : await new Response(proc2.stdout).text();
+    const stderr2 = await new Response(proc2.stderr).text();
+    return { stdout: stdout2, stderr: stderr2, exitCode: exitCode2, ok: exitCode2 === 0 };
+  }
+  const proc = Bun.spawn(["sh", "-c", args.join(" ")], {
+    stdin: new TextEncoder().encode(input),
+    stdout: "pipe",
+    stderr: "pipe",
+    timeout: opts.timeout ?? 30000
+  });
+  const exitCode = await proc.exited;
+  const stdout = opts.quiet ? "" : await new Response(proc.stdout).text();
+  const stderr = await new Response(proc.stderr).text();
+  return { stdout, stderr, exitCode, ok: exitCode === 0 };
+}
+function shellEscape(s) {
+  if (/^[a-zA-Z0-9._\-\/=:@]+$/.test(s))
+    return s;
+  return `'${s.replace(/'/g, "'\\''")}'`;
+}
+var installCmd, updateCmd;
+var init_sudo = __esm(() => {
+  installCmd = {
+    apt: ["apt-get", "install", "-y"],
+    dnf: ["dnf", "install", "-y"],
+    apk: ["apk", "add", "--no-cache"]
+  };
+  updateCmd = {
+    apt: ["apt-get", "update", "-qq"],
+    dnf: ["dnf", "check-update"],
+    apk: ["apk", "update"]
+  };
+});
+
+// device-auth.ts
+async function exec2(args, opts) {
+  const { sudo: sudo2 } = await Promise.resolve().then(() => (init_sudo(), exports_sudo));
+  return sudo2(args, opts);
+}
+function stripAnsi(text) {
+  return text.replace(/[\u001b\u009b][[()#;?]*(?:[0-9]{1,4}(?:;[0-9]{0,4})*)?[0-9A-ORZcf-nqry=><]/g, "");
+}
+async function deviceAuth(config, opts = {}) {
+  const {
+    cli,
+    loginCmd,
+    statusCmd,
+    patterns,
+    logFile,
+    pidFile,
+    statusFlags
+  } = config;
+  const maxAttempts = opts.maxAttempts ?? 60;
+  const intervalMs = opts.intervalMs ?? 2000;
+  const loginCmdStr = loginCmd ?? `${cli} login`;
+  const startResult = await exec2([`bash`, `-lc`, `nohup ${loginCmdStr} > ${logFile} 2>&1 & echo $!`], opts);
+  if (!startResult.ok) {
+    return { success: false, error: `Failed to start login: ${startResult.stderr}` };
+  }
+  const pid = startResult.stdout.trim();
+  if (pidFile) {
+    await exec2(["bash", `-lc`, `echo ${pid} > ${pidFile}`], opts);
+  }
+  await sleep(1000);
+  const extractResult = await exec2(["cat", logFile], { ...opts, quiet: false });
+  const logContent = stripAnsi(extractResult.stdout);
+  const urlMatch = patterns.url.exec(logContent);
+  const codeMatch = patterns.code.exec(logContent);
+  const url = urlMatch?.[1];
+  const code = codeMatch?.[1];
+  if (!url || !code) {
     return {
-        success: false,
+      success: false,
+      error: `Could not extract auth URL/code from log output. Log content:
+${logContent}`
+    };
+  }
+  for (let attempt = 1;attempt <= maxAttempts; attempt++) {
+    const statusCmdStr = statusCmd ?? `${cli} status`;
+    const statusArgs = ["bash", "-lc", statusCmdStr];
+    if (statusFlags?.length)
+      statusArgs.push(...statusFlags);
+    const statusResult = await exec2(statusArgs, { ...opts, quiet: false });
+    const statusOutput = stripAnsi(statusResult.stdout);
+    if (patterns.success.test(statusOutput)) {
+      return {
+        success: true,
         url,
         code,
-        error: `Login did not complete after ${maxAttempts} attempts. Last status: ${await getStatusOutput(config, opts)}`,
-    };
+        status: statusOutput
+      };
+    }
+    opts.onPoll?.(attempt, { success: false, url, code, status: statusOutput });
+    await sleep(intervalMs);
+  }
+  return {
+    success: false,
+    url,
+    code,
+    error: `Login did not complete after ${maxAttempts} attempts. Last status: ${await getStatusOutput(config, opts)}`
+  };
 }
 async function getStatusOutput(config, opts) {
-    const statusCmdStr = config.statusCmd ?? `${config.cli} status`;
-    const result = await exec(["bash", "-lc", statusCmdStr], { ...opts, quiet: false });
-    return stripAnsi(result.stdout);
-}
-// ---------------------------------------------------------------------------
-// Status check
-// ---------------------------------------------------------------------------
-/**
- * Check if a CLI is already authenticated.
- */
-export async function isAuthed(config, opts) {
-    const statusCmdStr = config.statusCmd ?? `${config.cli} status`;
-    const result = await exec(["bash", "-lc", statusCmdStr], { ...opts, quiet: false });
-    const output = stripAnsi(result.stdout);
-    return config.patterns.success.test(output);
-}
-// ---------------------------------------------------------------------------
-// Cleanup
-// ---------------------------------------------------------------------------
-/**
- * Kill the background login process and clean up files.
- */
-export async function cleanupDeviceAuth(config, opts) {
-    if (config.pidFile) {
-        // Read PID and kill process
-        const pidResult = await exec(["cat", config.pidFile], { ...opts, quiet: true });
-        if (pidResult.ok) {
-            const pid = pidResult.stdout.trim();
-            await exec(["kill", pid], { ...opts, quiet: true });
-        }
-        await exec(["rm", "-f", config.pidFile], { ...opts, quiet: true });
+  const statusCmdStr = config.statusCmd ?? `${config.cli} status`;
+  const result = await exec2(["bash", "-lc", statusCmdStr], { ...opts, quiet: false });
+  return stripAnsi(result.stdout);
+}
+async function isAuthed(config, opts) {
+  const statusCmdStr = config.statusCmd ?? `${config.cli} status`;
+  const result = await exec2(["bash", "-lc", statusCmdStr], { ...opts, quiet: false });
+  const output = stripAnsi(result.stdout);
+  return config.patterns.success.test(output);
+}
+async function cleanupDeviceAuth(config, opts) {
+  if (config.pidFile) {
+    const pidResult = await exec2(["cat", config.pidFile], { ...opts, quiet: true });
+    if (pidResult.ok) {
+      const pid = pidResult.stdout.trim();
+      await exec2(["kill", pid], { ...opts, quiet: true });
     }
-    // Remove log file
-    await exec(["rm", "-f", config.logFile], { ...opts, quiet: true });
-}
-// ---------------------------------------------------------------------------
-// Common CLI presets
-// ---------------------------------------------------------------------------
-/** Doppler CLI device-auth config */
-export const dopplerConfig = {
-    cli: "doppler",
-    loginCmd: "doppler login -y",
-    statusCmd: "doppler configure get token --scope /",
-    patterns: {
-        url: /https:\/\/(?:cli|dashboard)\.doppler\.com\/[a-z\-\/]+/i,
-        code: /(?:Your authentication code is:|Your auth code is:)\s*([A-Z0-9_]+(?:-[A-Z0-9_]+)*)/i,
-        success: /.{10,}/, // Any output >10 chars means token exists (authenticated)
-    },
-    logFile: "/tmp/doppler-login.log",
-    pidFile: "/tmp/doppler-login.pid",
+    await exec2(["rm", "-f", config.pidFile], { ...opts, quiet: true });
+  }
+  await exec2(["rm", "-f", config.logFile], { ...opts, quiet: true });
+}
+var dopplerConfig = {
+  cli: "doppler",
+  loginCmd: "doppler login -y",
+  statusCmd: "doppler configure get token --scope /",
+  patterns: {
+    url: /https:\/\/(?:cli|dashboard)\.doppler\.com\/[a-z\-\/]+/i,
+    code: /(?:Your authentication code is:|Your auth code is:)\s*([A-Z0-9_]+(?:-[A-Z0-9_]+)*)/i,
+    success: /.{10,}/
+  },
+  logFile: "/tmp/doppler-login.log",
+  pidFile: "/tmp/doppler-login.pid"
 };
-/** GitHub CLI (gh) device-auth config */
-export const githubConfig = {
-    cli: "gh",
-    loginCmd: "GH_BROWSER=echo sh -c 'gh auth login -p https -h github.com < /dev/null'",
-    statusCmd: "gh auth status",
-    patterns: {
-        url: /(https:\/\/github\.com\/login\/device)/i,
-        code: /one-time code:\s*([A-Z0-9]{4}-[A-Z0-9]{4})/i,
-        success: /Logged in (?:as|to)/i,
-    },
-    logFile: "/tmp/gh-login.log",
-    pidFile: "/tmp/gh-login.pid",
+var githubConfig = {
+  cli: "gh",
+  loginCmd: "GH_BROWSER=echo sh -c 'gh auth login -p https -h github.com < /dev/null'",
+  statusCmd: "gh auth status",
+  patterns: {
+    url: /(https:\/\/github\.com\/login\/device)/i,
+    code: /one-time code:\s*([A-Z0-9]{4}-[A-Z0-9]{4})/i,
+    success: /Logged in (?:as|to)/i
+  },
+  logFile: "/tmp/gh-login.log",
+  pidFile: "/tmp/gh-login.pid"
 };
-/** Tailscale CLI device-auth config */
-export const tailscaleConfig = {
-    cli: "tailscale",
-    loginCmd: "tailscale up --authkey",
-    patterns: {
-        url: /https:\/\/login\.tailscale\.com\/[a-z0-9\/]+/,
-        code: /https:\/\/login\.tailscale\.com\/[a-z0-9\/]+/,
-        success: /Tailscale is running/i,
-    },
-    logFile: "/tmp/tailscale-login.log",
-    pidFile: "/tmp/tailscale-login.pid",
+var tailscaleConfig = {
+  cli: "tailscale",
+  loginCmd: "tailscale up --authkey",
+  patterns: {
+    url: /https:\/\/login\.tailscale\.com\/[a-z0-9\/]+/,
+    code: /https:\/\/login\.tailscale\.com\/[a-z0-9\/]+/,
+    success: /Tailscale is running/i
+  },
+  logFile: "/tmp/tailscale-login.log",
+  pidFile: "/tmp/tailscale-login.pid"
 };
-// ---------------------------------------------------------------------------
-// Utilities
-// ---------------------------------------------------------------------------
 function sleep(ms) {
-    return new Promise((resolve) => setTimeout(resolve, ms));
+  return new Promise((resolve) => setTimeout(resolve, ms));
 }
+export {
+  tailscaleConfig,
+  stripAnsi,
+  isAuthed,
+  githubConfig,
+  dopplerConfig,
+  deviceAuth,
+  cleanupDeviceAuth
+};

package/dist/index.d.ts

@@ -1,12 +1,13 @@
-export { clone } from "./clone.js";
-export type { CloneOptions, CloneResult } from "./clone.js";
-export { sudo, pkgInstall, writeFile, service, serviceEnable } from "./sudo.js";
-export type { ExecContext, SudoOptions, ExecResult, PkgOptions, PackageManager, WriteFileOptions, ServiceAction, } from "./sudo.js";
-export { installBun, addSystemPath, symlink, linkBinaries, getBunVersion, commandExists, } from "./runtime.js";
-export type { InstallBunOptions, PathOptions, SymlinkOptions, } from "./runtime.js";
-export { generateServiceUnit, createServiceUnit, enableService, disableService, startService, stopService, restartService, reloadService, getServiceStatus, enableAndStartService, serviceExists, getServiceLogs, } from "./systemd.js";
-export type { ServiceUnitOptions, ServiceResult, ServiceStatus, } from "./systemd.js";
-export { deviceAuth, isAuthed, cleanupDeviceAuth, stripAnsi, dopplerConfig, githubConfig, tailscaleConfig, } from "./device-auth.js";
-export type { DeviceAuthConfig, DeviceAuthResult, DeviceAuthPollOptions, } from "./device-auth.js";
-export { getBootstrapStatus, parseBootstrapStatus, initBootstrap, startPhase, completePhase, failPhase, completeBootstrap, failBootstrap, checkMarker, setMarker, removeMarker, waitForBootstrap, waitForMarker, } from "./bootstrap.js";
-export type { BootstrapPhase, BootstrapStatus, BootstrapPollOptions, } from "./bootstrap.js";
+export { clone } from "./clone";
+export type { CloneOptions, CloneResult } from "./clone";
+export { sudo, pkgInstall, writeFile, service, serviceEnable } from "./sudo";
+export type { ExecContext, SudoOptions, ExecResult, PkgOptions, PackageManager, WriteFileOptions, ServiceAction, } from "./sudo";
+export { installBun, addSystemPath, symlink, linkBinaries, getBunVersion, commandExists, } from "./runtime";
+export type { InstallBunOptions, PathOptions, SymlinkOptions, } from "./runtime";
+export { generateServiceUnit, createServiceUnit, enableService, disableService, startService, stopService, restartService, reloadService, getServiceStatus, enableAndStartService, serviceExists, getServiceLogs, hasSystemd, clearSystemdCache, safeSystemd, } from "./systemd";
+export type { ServiceUnitOptions, ServiceResult, ServiceStatus, SystemdCheckResult, SafeSystemdOptions, } from "./systemd";
+export { deviceAuth, isAuthed, cleanupDeviceAuth, stripAnsi, dopplerConfig, githubConfig, tailscaleConfig, } from "./device-auth";
+export type { DeviceAuthConfig, DeviceAuthResult, DeviceAuthPollOptions, } from "./device-auth";
+export { getBootstrapStatus, parseBootstrapStatus, initBootstrap, startPhase, completePhase, failPhase, completeBootstrap, failBootstrap, checkMarker, setMarker, removeMarker, waitForBootstrap, waitForMarker, } from "./bootstrap";
+export type { BootstrapPhase, BootstrapStatus, BootstrapPollOptions, } from "./bootstrap";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAC;AAChC,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAEzD,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,SAAS,EAAE,OAAO,EAAE,aAAa,EAAE,MAAM,QAAQ,CAAC;AAC7E,YAAY,EACV,WAAW,EACX,WAAW,EACX,UAAU,EACV,UAAU,EACV,cAAc,EACd,gBAAgB,EAChB,aAAa,GACd,MAAM,QAAQ,CAAC;AAGhB,OAAO,EACL,UAAU,EACV,aAAa,EACb,OAAO,EACP,YAAY,EACZ,aAAa,EACb,aAAa,GACd,MAAM,WAAW,CAAC;AACnB,YAAY,EACV,iBAAiB,EACjB,WAAW,EACX,cAAc,GACf,MAAM,WAAW,CAAC;AAGnB,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,aAAa,EACb,cAAc,EACd,YAAY,EACZ,WAAW,EACX,cAAc,EACd,aAAa,EACb,gBAAgB,EAChB,qBAAqB,EACrB,aAAa,EACb,cAAc,EAEd,UAAU,EACV,iBAAiB,EACjB,WAAW,GACZ,MAAM,WAAW,CAAC;AACnB,YAAY,EACV,kBAAkB,EAClB,aAAa,EACb,aAAa,EACb,kBAAkB,EAClB,kBAAkB,GACnB,MAAM,WAAW,CAAC;AAGnB,OAAO,EACL,UAAU,EACV,QAAQ,EACR,iBAAiB,EACjB,SAAS,EACT,aAAa,EACb,YAAY,EACZ,eAAe,GAChB,MAAM,eAAe,CAAC;AACvB,YAAY,EACV,gBAAgB,EAChB,gBAAgB,EAChB,qBAAqB,GACtB,MAAM,eAAe,CAAC;AAGvB,OAAO,EACL,kBAAkB,EAClB,oBAAoB,EACpB,aAAa,EACb,UAAU,EACV,aAAa,EACb,SAAS,EACT,iBAAiB,EACjB,aAAa,EACb,WAAW,EACX,SAAS,EACT,YAAY,EACZ,gBAAgB,EAChB,aAAa,GACd,MAAM,aAAa,CAAC;AACrB,YAAY,EACV,cAAc,EACd,eAAe,EACf,oBAAoB,GACrB,MAAM,aAAa,CAAC"}