@eide/foir-cli 0.16.0 → 0.18.0

package/dist/cli.js

@@ -2083,6 +2083,7 @@ function createSegmentsMethods(client) {
 
 // src/lib/rpc/experiments.ts
 import { create as create7 } from "@bufbuild/protobuf";
+import { timestampFromDate } from "@bufbuild/protobuf/wkt";
 import {
   ExperimentStatus,
   CreateExperimentRequestSchema,
@@ -2096,6 +2097,7 @@ import {
   ResumeExperimentRequestSchema,
   EndExperimentRequestSchema,
   GetExperimentStatsRequestSchema,
+  ExperimentMetricSpecSchema,
   ForceAssignExperimentRequestSchema,
   RemoveExperimentAssignmentRequestSchema,
   ApplyExperimentWinnerRequestSchema,
@@ -2105,6 +2107,7 @@ import {
   ExperimentGoalSchema,
   ExperimentFunnelStepSchema
 } from "@eide/foir-proto-ts/experiments/v1/experiments_pb";
+import { MetricAggregator as MetricAggregator2 } from "@eide/foir-proto-ts/experiments/v1/experiments_pb";
 import { ExperimentStatus as ExperimentStatus2 } from "@eide/foir-proto-ts/experiments/v1/experiments_pb";
 var STATUS_TO_PROTO = {
   draft: ExperimentStatus.DRAFT,
@@ -2138,9 +2141,22 @@ function createExperimentsMethods(client) {
         })
       );
     },
-    async getExperimentStats(experimentId) {
+    async getExperimentStats(experimentId, params = {}) {
       const resp = await client.getExperimentStats(
-        create7(GetExperimentStatsRequestSchema, { experimentId })
+        create7(GetExperimentStatsRequestSchema, {
+          experimentId,
+          from: params.from ? timestampFromDate(params.from) : void 0,
+          to: params.to ? timestampFromDate(params.to) : void 0,
+          metrics: params.metrics?.map(
+            (m) => create7(ExperimentMetricSpecSchema, {
+              name: m.name,
+              path: m.path,
+              aggregator: m.aggregator,
+              goalKey: m.goalKey
+            })
+          ) ?? [],
+          minSampleSize: params.minSampleSize
+        })
       );
       return resp.stats ?? null;
     },
@@ -7240,7 +7256,8 @@ function registerSegmentsCommands(program2, globalOpts) {
 import {
   ExperimentSchema,
   ExperimentStatsSchema,
-  ExperimentAssignmentSchema
+  ExperimentAssignmentSchema,
+  MetricAggregator as MetricAggregator3
 } from "@eide/foir-proto-ts/experiments/v1/experiments_pb";
 function registerExperimentsCommands(program2, globalOpts) {
   const experiments = program2.command("experiments").description("Manage experiments");
@@ -7380,13 +7397,37 @@ function registerExperimentsCommands(program2, globalOpts) {
         success("Experiment ended");
     })
   );
-  experiments.command("stats <id>").description("Get experiment statistics").action(
-    withErrorHandler(globalOpts, async (id) => {
-      const opts = globalOpts();
-      const client = await createPlatformClient(opts);
-      const result = await client.experiments.getExperimentStats(id);
-      formatOutputProto(ExperimentStatsSchema, result, opts);
-    })
+  experiments.command("stats <id>").description(
+    "Decision-grade experiment statistics: per-variant assignments, per-goal conversion + significance, and optional metric aggregations."
+  ).option("--from <iso8601>", "Lower bound on converted_at (defaults to experiment start)").option("--to <iso8601>", "Upper bound on converted_at (defaults to now)").option(
+    "--metric <spec>",
+    "Metric aggregation in name=path:aggregator[:goal_key] form (e.g. cart=cartValue:sum:checkout_complete). Repeatable.",
+    collectMetric,
+    []
+  ).option("--min-sample-size <n>", "Per-arm sample-size gate for is_significant (default 100)", parseInt).action(
+    withErrorHandler(
+      globalOpts,
+      async (id, cmdOpts) => {
+        const opts = globalOpts();
+        const client = await createPlatformClient(opts);
+        const metrics = cmdOpts.metric.map(parseMetricSpec);
+        const result = await client.experiments.getExperimentStats(id, {
+          from: cmdOpts.from ? new Date(cmdOpts.from) : void 0,
+          to: cmdOpts.to ? new Date(cmdOpts.to) : void 0,
+          metrics,
+          minSampleSize: cmdOpts.minSampleSize
+        });
+        if (opts.json || opts.jsonl) {
+          formatOutputProto(ExperimentStatsSchema, result, opts);
+          return;
+        }
+        if (!result) {
+          console.log("No stats \u2014 experiment not found or no data in window.");
+          return;
+        }
+        renderStatsTable(result);
+      }
+    )
   );
   experiments.command("force-assign <experimentId>").description(
     "Force a known identity into a specific variant (admin override)."
@@ -7487,6 +7528,206 @@ function registerExperimentsCommands(program2, globalOpts) {
     )
   );
 }
+function collectMetric(value, accumulator) {
+  return [...accumulator, value];
+}
+function parseMetricSpec(raw) {
+  const eq = raw.indexOf("=");
+  if (eq <= 0) {
+    throw new Error(
+      `--metric ${JSON.stringify(raw)}: expected name=path:aggregator[:goal_key]`
+    );
+  }
+  const name = raw.slice(0, eq);
+  const rest = raw.slice(eq + 1);
+  const parts = rest.split(":");
+  if (parts.length < 2 || parts.length > 3) {
+    throw new Error(
+      `--metric ${JSON.stringify(raw)}: expected path:aggregator[:goal_key] after =`
+    );
+  }
+  const path3 = parts[0];
+  const aggStr = parts[1];
+  const goalKey = parts[2];
+  if (!path3 || !aggStr) {
+    throw new Error(
+      `--metric ${JSON.stringify(raw)}: expected path:aggregator[:goal_key] after =`
+    );
+  }
+  return {
+    name,
+    path: path3,
+    aggregator: parseAggregator(aggStr),
+    goalKey: goalKey || void 0
+  };
+}
+function parseAggregator(s) {
+  switch (s.toLowerCase()) {
+    case "sum":
+      return MetricAggregator3.SUM;
+    case "avg":
+    case "mean":
+      return MetricAggregator3.AVG;
+    case "count":
+      return MetricAggregator3.COUNT;
+    case "min":
+      return MetricAggregator3.MIN;
+    case "max":
+      return MetricAggregator3.MAX;
+    case "p50":
+    case "median":
+      return MetricAggregator3.P50;
+    case "p95":
+      return MetricAggregator3.P95;
+  }
+  throw new Error(
+    `unknown aggregator ${JSON.stringify(s)}: expected one of sum, avg, count, min, max, p50, p95`
+  );
+}
+function renderStatsTable(s) {
+  const winFrom = s.windowFrom?.seconds ? new Date(Number(s.windowFrom.seconds) * 1e3).toISOString().slice(0, 19) : "?";
+  const winTo = s.windowTo?.seconds ? new Date(Number(s.windowTo.seconds) * 1e3).toISOString().slice(0, 19) : "?";
+  console.log("");
+  console.log(`Experiment ${s.experimentKey}  (id ${s.experimentId})`);
+  console.log(
+    `Window ${winFrom} \u2192 ${winTo}    grain: ${s.dailyGrain || "day"}    total assignments: ${s.totalAssignments}`
+  );
+  console.log("");
+  console.log("Variants");
+  console.log(
+    "  " + padCols(["variant", "control", "assignments", "share"], [16, 8, 12, 8])
+  );
+  console.log("  " + "-".repeat(48));
+  for (const v of s.variants) {
+    const share = s.totalAssignments > 0 ? (v.assignmentCount / s.totalAssignments * 100).toFixed(1) + "%" : "-";
+    console.log(
+      "  " + padCols(
+        [v.variantKey, v.isControl ? "\u2713" : "", String(v.assignmentCount), share],
+        [16, 8, 12, 8]
+      )
+    );
+  }
+  console.log("");
+  const familySize = familySizeOf(s);
+  for (const goal of s.goals) {
+    console.log(`Goal: ${goal.goalKey}${goal.isPrimary ? "  (primary)" : ""}`);
+    console.log(
+      "  " + padCols(
+        ["variant", "count", "unique", "rate", "lift", "p (raw)", "p (corr)", "sig"],
+        [16, 8, 8, 9, 9, 10, 10, 5]
+      )
+    );
+    console.log("  " + "-".repeat(75));
+    for (const v of s.variants) {
+      const cell = v.goalStats.find((g) => g.goalKey === goal.goalKey);
+      if (!cell) continue;
+      const rate = (cell.conversionRate * 100).toFixed(2) + "%";
+      if (v.isControl) {
+        console.log(
+          "  " + padCols(
+            [v.variantKey, String(cell.conversionEventCount), String(cell.uniqueConverters), rate, "-", "-", "-", "-"],
+            [16, 8, 8, 9, 9, 10, 10, 5]
+          )
+        );
+        continue;
+      }
+      const sig = cell.significance;
+      const rawP = sig?.pValue ?? 1;
+      const corrP = Math.min(1, rawP * familySize);
+      const lift = sig ? (sig.relativeLift >= 0 ? "+" : "") + (sig.relativeLift * 100).toFixed(1) + "%" : "-";
+      const sigFlag = corrP < 0.05 && sig?.isSignificant ? "\u2713" : "";
+      console.log(
+        "  " + padCols(
+          [
+            v.variantKey,
+            String(cell.conversionEventCount),
+            String(cell.uniqueConverters),
+            rate,
+            lift,
+            rawP.toFixed(4),
+            corrP.toFixed(4),
+            sigFlag
+          ],
+          [16, 8, 8, 9, 9, 10, 10, 5]
+        )
+      );
+    }
+    console.log("");
+  }
+  if (s.metricStats.length > 0) {
+    const byMetric = /* @__PURE__ */ new Map();
+    for (const m of s.metricStats) {
+      const list = byMetric.get(m.metricName) ?? [];
+      list.push(m);
+      byMetric.set(m.metricName, list);
+    }
+    for (const [name, rows] of byMetric) {
+      console.log(`Metric: ${name}`);
+      console.log(
+        "  " + padCols(
+          ["variant", "value", "n", "skipped", "lift", "p", "sig"],
+          [16, 12, 8, 8, 9, 8, 5]
+        )
+      );
+      console.log("  " + "-".repeat(70));
+      for (const m of rows) {
+        const sig = m.significance;
+        const lift = sig ? (sig.relativeLift >= 0 ? "+" : "") + (sig.relativeLift * 100).toFixed(1) + "%" : "-";
+        const p = sig ? sig.pValue.toFixed(4) : "-";
+        const sigFlag = sig?.isSignificant ? "\u2713" : "";
+        console.log(
+          "  " + padCols(
+            [
+              m.variantKey,
+              m.value.toFixed(2),
+              String(m.sampleSize),
+              String(m.skippedRowCount),
+              lift,
+              p,
+              sigFlag
+            ],
+            [16, 12, 8, 8, 9, 8, 5]
+          )
+        );
+      }
+      console.log("");
+    }
+  }
+  const winners = winnersOnPrimary(s, familySize);
+  if (winners.length > 0) {
+    console.log(`Significant on primary goal (Bonferroni-corrected): ${winners.join(", ")}`);
+  } else {
+    console.log("No variant has reached significance on the primary goal.");
+  }
+}
+function familySizeOf(s) {
+  const variantCount = s.variants.filter((v) => !v.isControl).length;
+  const goalCount = s.goals.length;
+  return Math.max(1, variantCount * goalCount);
+}
+function winnersOnPrimary(s, familySize) {
+  const primary = s.goals.find((g) => g.isPrimary);
+  if (!primary) return [];
+  const out = [];
+  for (const v of s.variants) {
+    if (v.isControl) continue;
+    const cell = v.goalStats.find((g) => g.goalKey === primary.goalKey);
+    if (!cell?.significance) continue;
+    const corrP = Math.min(1, cell.significance.pValue * familySize);
+    if (corrP < 0.05 && cell.significance.isSignificant) {
+      out.push(v.variantKey);
+    }
+  }
+  return out;
+}
+function padCols(values, widths) {
+  return values.map((v, i) => {
+    const w = widths[i] ?? 12;
+    const s = v ?? "";
+    if (s.length >= w) return s.slice(0, w);
+    return s + " ".repeat(w - s.length);
+  }).join(" ");
+}
 
 // src/commands/schedules.ts
 import { CronScheduleSchema } from "@eide/foir-proto-ts/schedules/v1/schedules_pb";
@@ -8874,7 +9115,9 @@ function classToLabel(n) {
 }
 
 // src/commands/secrets.ts
+import { existsSync as existsSync6 } from "fs";
 import { promises as fs5 } from "fs";
+import { resolve as resolvePath } from "path";
 function registerSecretsCommands(program2, globalOpts) {
   const secrets = program2.command("secrets").description("Manage vault secrets");
   secrets.command("put").description("Store a new secret and print its ref").option("--label <label>", "Optional human-readable label").option("--app <name>", "Owner: app name (defaults to project-owned)").option("--file <path>", "Read plaintext from file (binary-safe)").option("--value <plaintext>", "Plaintext value (string only; prefer --file for binary)").action(
@@ -8992,6 +9235,110 @@ function registerSecretsCommands(program2, globalOpts) {
       success(`Restored ${ref}`);
     })
   );
+  secrets.command("push").description(
+    "Reconcile foir.secrets.ts against the project vault: create missing secrets, optionally rotate existing ones"
+  ).option("--config <path>", "Path to foir.secrets.ts (default: auto-discover)").option("--plaintext <path>", "Path to local.foir.secrets.ts (default: auto-discover)").option("--rotate", "Rotate plaintext for secrets that already exist").option("--dry-run", "Show what would change without calling PutSecret/RotateSecret").action(
+    withErrorHandler(globalOpts, async (cmdOpts) => {
+      const opts = globalOpts();
+      const resolved = await requireProject2(opts);
+      const configPath = await resolveSecretsConfigPath(
+        typeof cmdOpts.config === "string" ? cmdOpts.config : void 0
+      );
+      const plaintextPath = await resolvePlaintextPath(
+        typeof cmdOpts.plaintext === "string" ? cmdOpts.plaintext : void 0
+      );
+      const declared = await loadConfig(configPath);
+      validateSecretsConfig(declared, configPath);
+      const plaintextSource = plaintextPath ? await loadConfig(plaintextPath) : {};
+      const dryRun = !!cmdOpts["dry-run"];
+      const rotate = !!cmdOpts.rotate;
+      const client = await createPlatformClient(opts);
+      const groups = groupDeclarations(declared.secrets);
+      const planEntries = [];
+      for (const group of groups) {
+        const existing = await client.secrets.list({
+          tenantId: resolved.project.tenantId,
+          projectId: resolved.project.id,
+          ownerKind: group.ownerKind,
+          ownerId: group.ownerId ?? "",
+          includeSoftDeleted: false
+        });
+        const existingByLabel = new Map(
+          existing.filter((s) => s.label).map((s) => [s.label, s])
+        );
+        for (const decl of group.decls) {
+          const remote = existingByLabel.get(decl.label);
+          if (remote && !rotate) {
+            planEntries.push({ decl, action: "skip", existingRef: remote.ref });
+            continue;
+          }
+          if (remote && rotate) {
+            planEntries.push({ decl, action: "rotate", existingRef: remote.ref });
+            continue;
+          }
+          planEntries.push({ decl, action: "create" });
+        }
+      }
+      const needsPlaintext = planEntries.filter(
+        (e) => e.action === "create" || e.action === "rotate"
+      );
+      const missingPlaintext = needsPlaintext.map((e) => e.decl.label).filter((label) => !(label in plaintextSource));
+      if (missingPlaintext.length > 0 && !dryRun) {
+        throw new Error(
+          `Missing plaintext for ${missingPlaintext.length} secret(s) in ${plaintextPath ?? "local.foir.secrets.ts"}: ${missingPlaintext.join(", ")}. Add an entry for each label, or pass --dry-run to preview without resolving plaintext.`
+        );
+      }
+      if (dryRun) {
+        formatPushPlan(planEntries, opts);
+        return;
+      }
+      const results = [];
+      for (const entry of planEntries) {
+        if (entry.action === "skip") {
+          results.push({ ...entry, ref: entry.existingRef });
+          continue;
+        }
+        const raw = plaintextSource[entry.decl.label];
+        if (raw === void 0) {
+          throw new Error(`unreachable: missing plaintext for ${entry.decl.label}`);
+        }
+        const plaintext = toUint8Array(raw);
+        if (entry.action === "create") {
+          const ref = await client.secrets.put({
+            tenantId: resolved.project.tenantId,
+            projectId: resolved.project.id,
+            ownerKind: ownerKindFromString(entry.decl.ownerKind),
+            ownerId: entry.decl.ownerId,
+            label: entry.decl.label,
+            plaintext
+          });
+          results.push({ ...entry, ref });
+        } else {
+          const newRef = await client.secrets.rotate(entry.existingRef, plaintext);
+          results.push({ ...entry, ref: newRef });
+        }
+      }
+      if (opts.json || opts.jsonl) {
+        formatOutput(
+          results.map((r) => ({
+            label: r.decl.label,
+            ownerKind: r.decl.ownerKind,
+            ownerId: r.decl.ownerId,
+            action: r.action,
+            ref: r.ref
+          })),
+          opts
+        );
+        return;
+      }
+      const created = results.filter((r) => r.action === "create").length;
+      const rotated = results.filter((r) => r.action === "rotate").length;
+      const skipped = results.filter((r) => r.action === "skip").length;
+      success(
+        `secrets push: ${created} created, ${rotated} rotated, ${skipped} unchanged`
+      );
+    })
+  );
   secrets.command("purge").description("Drop every soft-deleted secret past its TTL (admin-only)").option("--confirm", "Skip confirmation prompt").action(
     withErrorHandler(globalOpts, async (cmdOpts) => {
       const opts = globalOpts();
@@ -9054,6 +9401,121 @@ function tsToString(t) {
   const nanos = t.nanos ?? 0;
   return new Date(seconds * 1e3 + Math.floor(nanos / 1e6)).toISOString();
 }
+var SECRETS_CONFIG_NAMES = [
+  "foir.secrets.ts",
+  "foir.secrets.js",
+  "foir.secrets.mjs",
+  "foir.secrets.json"
+];
+var PLAINTEXT_CONFIG_NAMES = [
+  "local.foir.secrets.ts",
+  "local.foir.secrets.js",
+  "local.foir.secrets.mjs",
+  "local.foir.secrets.json"
+];
+async function resolveSecretsConfigPath(explicit) {
+  if (explicit) {
+    if (!existsSync6(explicit)) {
+      throw new Error(`Secrets config not found: ${explicit}`);
+    }
+    return resolvePath(explicit);
+  }
+  for (const name of SECRETS_CONFIG_NAMES) {
+    const path3 = resolvePath(process.cwd(), name);
+    if (existsSync6(path3)) return path3;
+  }
+  throw new Error(
+    `No secrets config found. Looked for: ${SECRETS_CONFIG_NAMES.join(", ")}.`
+  );
+}
+async function resolvePlaintextPath(explicit) {
+  if (explicit) {
+    if (!existsSync6(explicit)) {
+      throw new Error(`Plaintext file not found: ${explicit}`);
+    }
+    return resolvePath(explicit);
+  }
+  for (const name of PLAINTEXT_CONFIG_NAMES) {
+    const path3 = resolvePath(process.cwd(), name);
+    if (existsSync6(path3)) return path3;
+  }
+  return null;
+}
+function validateSecretsConfig(cfg, path3) {
+  if (!cfg || !Array.isArray(cfg.secrets)) {
+    throw new Error(`${path3}: default export must be { secrets: [...] }`);
+  }
+  const seen = /* @__PURE__ */ new Set();
+  for (const decl of cfg.secrets) {
+    if (!decl.label) {
+      throw new Error(`${path3}: every secret declaration needs a label`);
+    }
+    if (decl.ownerKind !== "project" && decl.ownerKind !== "app") {
+      throw new Error(
+        `${path3}: ownerKind must be "project" or "app" for label ${decl.label}, got ${decl.ownerKind}`
+      );
+    }
+    if (decl.ownerKind === "app" && !decl.ownerId) {
+      throw new Error(
+        `${path3}: app-owned secret ${decl.label} requires ownerId`
+      );
+    }
+    const dedupeKey = `${decl.ownerKind}|${decl.ownerId ?? ""}|${decl.label}`;
+    if (seen.has(dedupeKey)) {
+      throw new Error(`${path3}: duplicate secret declaration: ${dedupeKey}`);
+    }
+    seen.add(dedupeKey);
+  }
+}
+function groupDeclarations(decls) {
+  const byKey = /* @__PURE__ */ new Map();
+  for (const decl of decls) {
+    const key = `${decl.ownerKind}|${decl.ownerId ?? ""}`;
+    const existing = byKey.get(key);
+    if (existing) {
+      existing.decls.push(decl);
+    } else {
+      byKey.set(key, {
+        ownerKind: ownerKindFromString(decl.ownerKind),
+        ownerId: decl.ownerId,
+        decls: [decl]
+      });
+    }
+  }
+  return Array.from(byKey.values());
+}
+function ownerKindFromString(s) {
+  return s === "app" ? OwnerKind.APP : OwnerKind.PROJECT;
+}
+function toUint8Array(v) {
+  if (v instanceof Uint8Array) return v;
+  return new TextEncoder().encode(v);
+}
+function formatPushPlan(plan, opts) {
+  if (opts.json || opts.jsonl) {
+    formatOutput(
+      plan.map((e) => ({
+        label: e.decl.label,
+        ownerKind: e.decl.ownerKind,
+        ownerId: e.decl.ownerId,
+        action: e.action,
+        existingRef: e.action === "create" ? void 0 : e.existingRef
+      })),
+      opts
+    );
+    return;
+  }
+  if (plan.length === 0) {
+    warn("No secrets declared.");
+    return;
+  }
+  for (const entry of plan) {
+    const owner = entry.decl.ownerKind === "app" ? `app:${entry.decl.ownerId}` : "project";
+    const action = entry.action.padEnd(7);
+    const ref = entry.action === "create" ? "" : entry.existingRef;
+    console.log(`${action}  ${owner.padEnd(24)}  ${entry.decl.label.padEnd(32)}  ${ref}`);
+  }
+}
 
 // src/cli.ts
 var __filename = fileURLToPath(import.meta.url);

package/dist/lib/config-helpers.d.ts

@@ -354,5 +354,38 @@ declare function defineAuthProvider(provider: ApplyConfigAuthProviderInput): App
 declare function defineHook(hook: ApplyConfigHookInput): ApplyConfigHookInput;
 /** Define an editor placement (sidebar or main-editor tab). */
 declare function definePlacement(placement: ApplyConfigPlacementInput): ApplyConfigPlacementInput;
+type SecretOwnerKind = 'project' | 'app';
+/**
+ * One declared secret. `label` is the human-readable handle the
+ * reconciler uses to look the secret up in the vault — no opaque ref
+ * is committed. `ownerId` is required for app-owned secrets and ignored
+ * for project-owned ones.
+ */
+interface SecretDeclaration {
+    ownerKind: SecretOwnerKind;
+    ownerId?: string;
+    label: string;
+}
+/** Shape of a `foir.secrets.ts` default export. */
+interface FoirSecretsConfig {
+    secrets: SecretDeclaration[];
+}
+/**
+ * Type-safe identity helper for `foir.secrets.ts`:
+ *
+ * ```ts
+ * import { defineSecrets } from '@eide/foir-cli/configs';
+ * export default defineSecrets({
+ *   secrets: [
+ *     { ownerKind: 'project', label: 'deepl_api_key' },
+ *   ],
+ * });
+ * ```
+ *
+ * Plaintext lives in a sibling `local.foir.secrets.ts` (gitignored)
+ * keyed by label, or in env vars. Production never runs the
+ * reconciler — operators set production secrets through the admin UI.
+ */
+declare function defineSecrets(config: FoirSecretsConfig): FoirSecretsConfig;
 
-export { type AppInput, type AppPlacementFieldChoiceInput, type AppSinkMappingInput, type AppSourceMappingInput, type ApplyConfigApiKeyInput, type ApplyConfigAuthProviderInput, type ApplyConfigHookInput, type ApplyConfigInput, type ApplyConfigModelInput, type ApplyConfigOperationInput, type ApplyConfigPlacementInput, type ApplyConfigProjectInput, type ApplyConfigProjectSettingsInput, type ApplyConfigScheduleInput, type ApplyConfigSegmentInput, type ExpressionPrecondition, type FieldDefinitionInput, type Precondition, type QuotaRule, type SegmentPrecondition, type SelectFieldConfig, type SelectFieldDefinitionInput, defineAuthProvider, defineConfig, defineField, defineHook, defineModel, defineOperation, definePlacement, defineSchedule, defineSegment, defineSelectField };
+export { type AppInput, type AppPlacementFieldChoiceInput, type AppSinkMappingInput, type AppSourceMappingInput, type ApplyConfigApiKeyInput, type ApplyConfigAuthProviderInput, type ApplyConfigHookInput, type ApplyConfigInput, type ApplyConfigModelInput, type ApplyConfigOperationInput, type ApplyConfigPlacementInput, type ApplyConfigProjectInput, type ApplyConfigProjectSettingsInput, type ApplyConfigScheduleInput, type ApplyConfigSegmentInput, type ExpressionPrecondition, type FieldDefinitionInput, type FoirSecretsConfig, type Precondition, type QuotaRule, type SecretDeclaration, type SecretOwnerKind, type SegmentPrecondition, type SelectFieldConfig, type SelectFieldDefinitionInput, defineAuthProvider, defineConfig, defineField, defineHook, defineModel, defineOperation, definePlacement, defineSchedule, defineSecrets, defineSegment, defineSelectField };

package/dist/lib/config-helpers.js

@@ -29,6 +29,9 @@ function defineHook(hook) {
 function definePlacement(placement) {
   return placement;
 }
+function defineSecrets(config) {
+  return config;
+}
 export {
   defineAuthProvider,
   defineConfig,
@@ -38,6 +41,7 @@ export {
   defineOperation,
   definePlacement,
   defineSchedule,
+  defineSecrets,
   defineSegment,
   defineSelectField
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eide/foir-cli",
-  "version": "0.16.0",
+  "version": "0.18.0",
   "description": "Universal platform CLI for Foir platform",
   "type": "module",
   "publishConfig": {
@@ -50,7 +50,7 @@
     "@bufbuild/protovalidate": "^1.1.1",
     "@connectrpc/connect": "^2.0.0",
     "@connectrpc/connect-node": "^2.0.0",
-    "@eide/foir-proto-ts": "^0.44.0",
+    "@eide/foir-proto-ts": "^0.45.0",
     "chalk": "^5.3.0",
     "commander": "^12.1.0",
     "dotenv": "^16.4.5",