@eve-horizon/cli 0.2.42 → 0.2.44

package/assets/local-k8s/base/worker-deployment.yaml

@@ -45,6 +45,8 @@ spec:
               value: http://eve-api:4701
             - name: EVE_PUBLIC_API_URL
               value: http://api.eve.lvh.me
+            - name: EVE_SSO_URL
+              value: http://sso.eve.lvh.me
             - name: DATABASE_URL
               value: postgres://eve:eve@postgres.eve.svc.cluster.local:5432/eve
             - name: WORKER_PORT

package/dist/index.js

@@ -50320,6 +50320,24 @@ for cloud deployments. Credentials are stored globally per API URL.`,
       "eve skills install"
     ]
   },
+  user: {
+    description: "Look up user profiles and memberships.",
+    usage: "eve user <subcommand> [options]",
+    subcommands: {
+      show: {
+        description: "Show user profile with org and project memberships",
+        usage: "eve user show [user_id|me]",
+        options: [
+          "--json    Output as JSON"
+        ],
+        examples: [
+          "eve user show me",
+          "eve user show usr_abc123",
+          "eve user show me --json"
+        ]
+      }
+    }
+  },
   admin: {
     description: "Administrative commands for user, identity, and platform operations.",
     usage: "eve admin <subcommand> [options]",
@@ -50899,21 +50917,27 @@ Requires Docker Desktop; k3d and kubectl are auto-managed by the CLI.`,
     usage: "eve chat <subcommand> [options]",
     subcommands: {
       simulate: {
-        description: "Simulate an inbound chat message",
-        usage: "eve chat simulate --project <id> --team-id <team> --text <message>",
+        description: "Simulate an inbound chat message via the gateway",
+        usage: "eve chat simulate --team-id <team> --text <message>",
         options: [
-          "--project <id>      Project ID (uses profile default)",
-          "--provider <name>   Provider name (default: slack)",
-          "--team-id <id>      Slack team ID",
-          "--channel-id <id>   Channel ID",
-          "--user-id <id>      User ID",
-          "--thread-key <key>  Thread key override",
-          "--metadata <json>   Extra metadata JSON"
+          "--team-id <id>         Slack team ID (required)",
+          "--text <msg>           Message text (required)",
+          "--provider <name>      Provider name (default: slack)",
+          "--channel-id <id>      Channel ID",
+          "--user-id <id>         User ID",
+          "--external-email <e>   Email hint for Tier 1 identity auto-match",
+          "--dedupe-key <key>     Deduplication key",
+          "--event-type <type>    Event type (default: app_mention)",
+          "--thread-id <id>       Thread ID override",
+          "--metadata <json>      Extra metadata JSON",
+          "--project <id>         [deprecated] Legacy API simulate path"
         ]
       }
     },
     examples: [
-      'eve chat simulate --project proj_xxx --team-id T123 --text "hello"'
+      'eve chat simulate --team-id T123 --text "hello"',
+      'eve chat simulate --team-id T123 --text "@eve deploy" --external-email alice@example.com',
+      'eve chat simulate --team-id T123 --text "hello" --dedupe-key test-dedup-1'
     ]
   },
   docs: {
@@ -51460,6 +51484,7 @@ function showMainHelp() {
   console.log("  analytics  Org analytics (jobs, pipelines, env health)");
   console.log("  ollama     Manage inference targets, aliases, and model routes");
   console.log("  access     Access control: permissions, roles, bindings, policy-as-code sync");
+  console.log("  user       Look up user profiles and memberships");
   console.log("  admin      User and platform admin operations");
   console.log("  skills     Install skills from skills.txt (skills CLI)");
   console.log("  migrate    Migration helpers for upgrading config formats");
@@ -51863,8 +51888,52 @@ async function handleOrg(subcommand, positionals, flags, context2) {
         }
       }
     }
+    case "membership-requests": {
+      const action = positionals[0];
+      const orgId = typeof flags.org === "string" ? flags.org : context2.orgId;
+      if (!orgId) {
+        throw new Error("Missing org id. Provide --org or set a profile default.");
+      }
+      switch (action) {
+        case "approve": {
+          const requestId = positionals[1];
+          if (!requestId) {
+            throw new Error("Usage: eve org membership-requests approve <request_id> [--role member|admin]");
+          }
+          const role = getStringFlag(flags, ["role"]) ?? "member";
+          const email = getStringFlag(flags, ["email"]);
+          const body = { role };
+          if (email) body.email = email;
+          const response = await requestJson(context2, `/orgs/${orgId}/membership-requests/${requestId}/approve`, {
+            method: "POST",
+            body
+          });
+          outputJson(response, json, `\u2713 Membership request ${requestId} approved`);
+          return;
+        }
+        case "deny": {
+          const requestId = positionals[1];
+          if (!requestId) {
+            throw new Error("Usage: eve org membership-requests deny <request_id>");
+          }
+          const response = await requestJson(context2, `/orgs/${orgId}/membership-requests/${requestId}/deny`, {
+            method: "POST"
+          });
+          outputJson(response, json, `\u2713 Membership request ${requestId} denied`);
+          return;
+        }
+        case "list":
+        default: {
+          const status = getStringFlag(flags, ["status"]);
+          const query = status ? `?status=${status}` : "";
+          const response = await requestJson(context2, `/orgs/${orgId}/membership-requests${query}`);
+          outputJson(response, json);
+          return;
+        }
+      }
+    }
     default:
-      throw new Error("Usage: eve org <ensure|list|get|spend|update|delete|members>");
+      throw new Error("Usage: eve org <ensure|list|get|spend|update|delete|members|membership-requests>");
   }
 }
 function parseSinceValue(since) {
@@ -56602,6 +56671,8 @@ var configSchema = external_exports.object({
   EVE_GITHUB_WEBHOOK_SECRET: external_exports.string().optional(),
   EVE_GITHUB_TOKEN: external_exports.string().optional(),
   EVE_SLACK_SIGNING_SECRET: external_exports.string().optional(),
+  EVE_SLACK_CLIENT_ID: external_exports.string().optional(),
+  EVE_SLACK_CLIENT_SECRET: external_exports.string().optional(),
   EVE_INTERNAL_API_KEY: external_exports.string().optional(),
   EVE_ORG_FS_LINK_TOKEN_SECRET: external_exports.string().optional(),
   EVE_ORG_FS_LINK_TOKEN_TTL_SECONDS: external_exports.coerce.number().int().min(60).default(900),
@@ -57178,6 +57249,8 @@ var OrgMemberRequestSchema = external_exports.object({
 var OrgMemberResponseSchema = external_exports.object({
   org_id: OrgIdSchema,
   user_id: external_exports.string(),
+  email: external_exports.string(),
+  display_name: external_exports.string().nullable(),
   role: OrgMemberRoleSchema,
   created_at: external_exports.string(),
   updated_at: external_exports.string()
@@ -57403,6 +57476,8 @@ var ProjectMemberRequestSchema = external_exports.object({
 var ProjectMemberResponseSchema = external_exports.object({
   project_id: external_exports.string(),
   user_id: external_exports.string(),
+  email: external_exports.string(),
+  display_name: external_exports.string().nullable(),
   role: ProjectMemberRoleSchema,
   created_at: external_exports.string(),
   updated_at: external_exports.string()
@@ -59222,7 +59297,8 @@ var SlackConnectRequestSchema = external_exports.object({
   status: external_exports.string().optional()
 });
 var IntegrationTestResponseSchema = external_exports.object({
-  ok: external_exports.boolean()
+  ok: external_exports.boolean(),
+  detail: external_exports.string().optional()
 });
 var IntegrationResolveRequestSchema = external_exports.object({
   provider: external_exports.string().min(1),
@@ -59236,13 +59312,54 @@ var ExternalIdentityResolveRequestSchema = external_exports.object({
   provider: external_exports.string().min(1),
   account_id: external_exports.string().min(1),
   external_user_id: external_exports.string().min(1),
-  org_id: external_exports.string().min(1)
+  org_id: external_exports.string().min(1),
+  external_email: external_exports.string().email().optional()
 });
 var ExternalIdentityResolveResponseSchema = external_exports.object({
   external_identity_id: external_exports.string(),
   eve_user_id: external_exports.string().nullable(),
   membership_request_id: external_exports.string().nullable()
 });
+var MembershipRequestResponseSchema = external_exports.object({
+  id: external_exports.string(),
+  org_id: external_exports.string(),
+  external_identity_id: external_exports.string(),
+  status: external_exports.string(),
+  approved_by: external_exports.string().nullable(),
+  approved_at: external_exports.string().nullable(),
+  created_at: external_exports.string(),
+  updated_at: external_exports.string()
+});
+var MembershipRequestListResponseSchema = external_exports.object({
+  requests: external_exports.array(MembershipRequestResponseSchema)
+});
+var MembershipRequestApproveRequestSchema = external_exports.object({
+  role: external_exports.string().default("member"),
+  email: external_exports.string().email().optional()
+});
+var IdentityLinkTokenRequestSchema = external_exports.object({
+  provider: external_exports.string().min(1),
+  org_id: external_exports.string().min(1)
+});
+var IdentityLinkTokenResponseSchema = external_exports.object({
+  token: external_exports.string(),
+  expires_in: external_exports.number(),
+  instructions: external_exports.string()
+});
+var IdentityLinkRedeemRequestSchema = external_exports.object({
+  token: external_exports.string().min(1),
+  provider: external_exports.string().min(1),
+  account_id: external_exports.string().min(1),
+  external_user_id: external_exports.string().min(1)
+});
+var IdentityLinkRedeemResponseSchema = external_exports.object({
+  ok: external_exports.boolean(),
+  external_identity_id: external_exports.string().optional(),
+  error: external_exports.string().optional()
+});
+var IntegrationSettingsUpdateRequestSchema = external_exports.object({
+  settings: external_exports.record(external_exports.unknown())
+});
 
 // ../shared/dist/schemas/builds.js
 var CreateBuildSpecRequestSchema = external_exports.object({
@@ -67052,17 +67169,18 @@ async function handleStatus2(context2, json) {
 }
 async function handleHealth(context2, json) {
   try {
-    const health = await requestJson(context2, "/health");
+    const response = await requestRaw(context2, "/health", { allowError: true });
+    const health = response.data ?? {};
     if (json) {
       outputJson(health, json);
     } else {
-      const isHealthy = health.status === "ok" || health.status === "healthy";
+      const isHealthy = response.ok && (health.status === "ok" || health.status === "healthy");
       const icon = isHealthy ? "\u2713" : "\u2717";
-      const status = isHealthy ? "Healthy" : "Unhealthy";
+      const statusLabel = isHealthy ? "Healthy" : "Degraded";
       console.log("System Health Check");
       console.log("\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550");
       console.log("");
-      console.log(`  ${icon} API: ${status}`);
+      console.log(`  ${icon} API: ${statusLabel}`);
       if (health.database) {
         console.log(`      Database: ${health.database}`);
       }
@@ -67073,7 +67191,7 @@ async function handleHealth(context2, json) {
       if (isHealthy) {
         console.log("API is operational.");
       } else {
-        console.log("API is not healthy. Check server logs.");
+        console.log("API is degraded. Check server logs and database connectivity.");
       }
     }
   } catch (error) {
@@ -73475,6 +73593,7 @@ function parseSkillsManifest(manifestPath) {
   }
   const content = fs4.readFileSync(manifestPath, "utf-8");
   const sources = [];
+  const manifestDir = path6.dirname(manifestPath);
   for (const rawLine of content.split("\n")) {
     const line = rawLine.split("#")[0].trim();
     if (!line) continue;
@@ -73483,11 +73602,46 @@ function parseSkillsManifest(manifestPath) {
       const expanded = expandGlobPattern(line, manifestPath, explicitPrivateTarget);
       sources.push(...expanded);
     } else {
-      sources.push(parseSkillSource(line));
+      const parsed = parseSkillSource(line);
+      if (parsed.type === "local") {
+        const expanded = tryExpandLocalDirectory(parsed, manifestDir);
+        if (expanded) {
+          sources.push(...expanded);
+          continue;
+        }
+      }
+      sources.push(parsed);
     }
   }
   return sources;
 }
+function tryExpandLocalDirectory(skill, manifestDir) {
+  let source = skill.source;
+  if (source.startsWith("~")) {
+    source = source.replace(/^~/, process.env.HOME || "~");
+  }
+  const abs = path6.isAbsolute(source) ? source : path6.resolve(manifestDir, source);
+  try {
+    if (!fs4.existsSync(abs) || !fs4.statSync(abs).isDirectory()) return null;
+  } catch {
+    return null;
+  }
+  if (fs4.existsSync(path6.join(abs, "SKILL.md"))) return null;
+  const explicitPrivate = sourcePathExplicitlyTargetsPrivate(skill.source);
+  const skillDirs = findSkillDirs(abs, { fullDepth: true, excludePrivate: !explicitPrivate });
+  if (skillDirs.length === 0) return null;
+  return skillDirs.map((dir) => {
+    const name = path6.basename(dir);
+    const relativePath = path6.relative(manifestDir, dir);
+    const resolvedSource = relativePath.startsWith(".") ? relativePath : `./${relativePath}`;
+    return {
+      raw: skill.raw,
+      source: resolvedSource,
+      type: "local",
+      name
+    };
+  });
+}
 function parseSkillSource(line) {
   if (line.startsWith("https://") || line.startsWith("http://")) {
     const name2 = extractNameFromUrl(line);
@@ -74150,17 +74304,21 @@ async function handleUsers(flags, context2, json) {
   const rows = [];
   for (const user of users) {
     const base = {
-      id: user.id,
       email: user.email,
       name: user.display_name ?? "-",
       admin: user.is_admin ? "yes" : "",
       created: user.created_at?.split("T")[0] ?? ""
     };
-    if (user.memberships.length === 0) {
-      rows.push({ ...base, org: "-", role: "-" });
+    const hasOrg = user.memberships.length > 0;
+    const hasProj = (user.project_memberships ?? []).length > 0;
+    if (!hasOrg && !hasProj) {
+      rows.push({ ...base, scope: "-", target: "-", role: "-" });
     } else {
       for (const m of user.memberships) {
-        rows.push({ ...base, org: m.org_slug || m.org_name, role: m.role });
+        rows.push({ ...base, scope: "org", target: m.org_slug || m.org_name, role: m.role });
+      }
+      for (const pm of user.project_memberships ?? []) {
+        rows.push({ ...base, scope: "project", target: `${pm.org_slug}/${pm.project_slug}`, role: pm.role });
       }
     }
   }
@@ -74169,7 +74327,8 @@ async function handleUsers(flags, context2, json) {
     email: col("email", "Email"),
     name: col("name", "Name"),
     admin: col("admin", "Admin"),
-    org: col("org", "Org"),
+    scope: col("scope", "Scope"),
+    target: col("target", "Target"),
     role: col("role", "Role"),
     created: col("created", "Created")
   };
@@ -74178,7 +74337,8 @@ async function handleUsers(flags, context2, json) {
     pad3("Email", w.email),
     pad3("Name", w.name),
     pad3("Admin", w.admin),
-    pad3("Org", w.org),
+    pad3("Scope", w.scope),
+    pad3("Target", w.target),
     pad3("Role", w.role),
     pad3("Created", w.created)
   ].join("  ");
@@ -74189,7 +74349,8 @@ async function handleUsers(flags, context2, json) {
       pad3(row.email, w.email),
       pad3(row.name, w.name),
       pad3(row.admin, w.admin),
-      pad3(row.org, w.org),
+      pad3(row.scope, w.scope),
+      pad3(row.target, w.target),
       pad3(row.role, w.role),
       pad3(row.created, w.created)
     ].join("  "));
@@ -75627,8 +75788,24 @@ async function handleIntegrations(subcommand, positionals, flags, context2) {
     }
     case "slack": {
       const action = positionals[0];
+      if (action === "install-url") {
+        if (!orgId) {
+          throw new Error("Missing org id. Provide --org or set a profile default.");
+        }
+        const url = `${context2.apiUrl}/orgs/${orgId}/integrations/slack/authorize`;
+        if (json) {
+          outputJson({ url, org_id: orgId }, json);
+        } else {
+          console.log(`Slack install URL:
+
+  ${url}
+
+Share this URL with your Slack workspace admin.`);
+        }
+        return;
+      }
       if (action !== "connect") {
-        throw new Error("Usage: eve integrations slack connect --org <org_id> --team-id <team_id> [--token <token>]");
+        throw new Error("Usage: eve integrations slack <connect|install-url> --org <org_id>");
       }
       if (!orgId) {
         throw new Error("Missing org id. Provide --org or set a profile default.");
@@ -75681,8 +75858,35 @@ async function handleIntegrations(subcommand, positionals, flags, context2) {
       outputJson(response, json, response.ok ? "\u2713 Integration test ok" : "Integration test failed");
       return;
     }
+    case "update": {
+      const integrationId = positionals[0];
+      if (!integrationId) {
+        throw new Error("Usage: eve integrations update <integration_id> --setting key=value");
+      }
+      if (!orgId) {
+        throw new Error("Missing org id. Provide --org or set a profile default.");
+      }
+      const settingFlag = getStringFlag(flags, ["setting"]);
+      if (!settingFlag) {
+        throw new Error("Missing --setting flag. Usage: --setting admin_channel_id=C12345");
+      }
+      const eqIdx = settingFlag.indexOf("=");
+      if (eqIdx < 1) {
+        throw new Error("Invalid --setting format. Use key=value (e.g., admin_channel_id=C12345)");
+      }
+      const key = settingFlag.slice(0, eqIdx);
+      const value = settingFlag.slice(eqIdx + 1);
+      const settings = { [key]: value };
+      const response = await requestJson(
+        context2,
+        `/orgs/${orgId}/integrations/${integrationId}/settings`,
+        { method: "PATCH", body: { settings } }
+      );
+      outputJson(response, json, `\u2713 Integration ${integrationId} settings updated`);
+      return;
+    }
     default:
-      throw new Error("Usage: eve integrations <list|slack|test>");
+      throw new Error("Usage: eve integrations <list|slack|test|update>");
   }
 }
 
@@ -75691,26 +75895,66 @@ async function handleChat(subcommand, _positionals, flags, context2) {
   const json = Boolean(flags.json);
   switch (subcommand) {
     case "simulate": {
-      const projectId = getStringFlag(flags, ["project"]) ?? context2.projectId;
-      if (!projectId) {
-        throw new Error("Missing project id. Provide --project or set a profile default.");
-      }
-      const provider = getStringFlag(flags, ["provider"]) ?? "slack";
+      const projectId = getStringFlag(flags, ["project"]);
       const teamId = getStringFlag(flags, ["team-id"]);
       const text = getStringFlag(flags, ["text"]);
+      if (projectId) {
+        if (!teamId || !text) {
+          throw new Error("Usage: eve chat simulate --project <id> --team-id <team> --text <message>");
+        }
+        process.stderr.write("\u26A0 --project routes through the legacy API simulate path. Use --team-id without --project for gateway routing.\n");
+        const provider2 = getStringFlag(flags, ["provider"]) ?? "slack";
+        const channelId2 = getStringFlag(flags, ["channel-id"]);
+        const userId2 = getStringFlag(flags, ["user-id"]);
+        const threadKey = getStringFlag(flags, ["thread-key"]);
+        const metadataFlag2 = getStringFlag(flags, ["metadata"]);
+        let metadata;
+        if (metadataFlag2) {
+          try {
+            const parsed = JSON.parse(metadataFlag2);
+            if (parsed && typeof parsed === "object" && !Array.isArray(parsed)) {
+              metadata = parsed;
+            }
+          } catch {
+            throw new Error("Invalid --metadata (must be JSON object)");
+          }
+        }
+        const response2 = await requestJson(
+          context2,
+          `/projects/${projectId}/chat/simulate`,
+          {
+            method: "POST",
+            body: {
+              provider: provider2,
+              team_id: teamId,
+              channel_id: channelId2,
+              user_id: userId2,
+              text,
+              thread_key: threadKey,
+              metadata
+            }
+          }
+        );
+        outputJson(response2, json, `\u2713 Chat simulated (thread: ${response2.thread_id})`);
+        return;
+      }
       if (!teamId || !text) {
-        throw new Error("Usage: eve chat simulate --project <id> --team-id <team> --text <message>");
+        throw new Error("Usage: eve chat simulate --team-id <team> --text <message>");
       }
+      const provider = getStringFlag(flags, ["provider"]) ?? "slack";
       const channelId = getStringFlag(flags, ["channel-id"]);
       const userId = getStringFlag(flags, ["user-id"]);
-      const threadKey = getStringFlag(flags, ["thread-key"]);
+      const threadId = getStringFlag(flags, ["thread-id", "thread-key"]);
+      const externalEmail = getStringFlag(flags, ["external-email"]);
+      const dedupeKey = getStringFlag(flags, ["dedupe-key"]);
+      const eventType = getStringFlag(flags, ["event-type"]);
       const metadataFlag = getStringFlag(flags, ["metadata"]);
-      let metadata;
+      let metadataEmail;
       if (metadataFlag) {
         try {
           const parsed = JSON.parse(metadataFlag);
           if (parsed && typeof parsed === "object" && !Array.isArray(parsed)) {
-            metadata = parsed;
+            metadataEmail = typeof parsed.external_email === "string" ? parsed.external_email : void 0;
           }
         } catch {
           throw new Error("Invalid --metadata (must be JSON object)");
@@ -75718,21 +75962,33 @@ async function handleChat(subcommand, _positionals, flags, context2) {
       }
       const response = await requestJson(
         context2,
-        `/projects/${projectId}/chat/simulate`,
+        "/gateway/providers/simulate",
         {
           method: "POST",
           body: {
             provider,
-            team_id: teamId,
-            channel_id: channelId,
-            user_id: userId,
+            account_id: teamId,
+            channel_id: channelId || void 0,
+            user_id: userId || void 0,
             text,
-            thread_key: threadKey,
-            metadata
+            external_email: externalEmail ?? metadataEmail,
+            event_type: eventType || void 0,
+            thread_id: threadId || void 0,
+            dedupe_key: dedupeKey || void 0
           }
         }
       );
-      outputJson(response, json, `\u2713 Chat simulated (thread: ${response.thread_id})`);
+      const normalized = {
+        thread_id: response.route?.thread_id ?? null,
+        route_id: response.route?.route_id ?? null,
+        target: response.route?.target ?? null,
+        job_ids: response.route?.job_ids ?? [],
+        event_id: response.route?.event_id ?? null,
+        immediate_reply: response.immediate_reply,
+        duplicate: response.duplicate
+      };
+      const summary = response.duplicate ? "\u2713 Duplicate (deduplicated)" : response.route?.job_ids?.length ? `\u2713 Chat routed via gateway (thread: ${response.route.thread_id})` : response.immediate_reply ? `\u2713 Gateway reply: ${response.immediate_reply.text.slice(0, 80)}` : "\u2713 Chat simulated via gateway";
+      outputJson(normalized, json, summary);
       return;
     }
     default:
@@ -81119,6 +81375,77 @@ function printManualInstructions(result) {
   console.log('  6. Click "Add webhook"');
 }
 
+// src/commands/identity.ts
+async function handleIdentity(subcommand, positionals, flags, context2) {
+  const json = Boolean(flags.json);
+  switch (subcommand) {
+    case "link": {
+      const provider = positionals[0];
+      if (!provider) {
+        throw new Error("Usage: eve identity link <provider> --org <org_id>\n\nSupported providers: slack");
+      }
+      const orgId = getStringFlag(flags, ["org"]) ?? context2.orgId;
+      if (!orgId) {
+        throw new Error("Missing org id. Provide --org or set a profile default.");
+      }
+      const response = await requestJson(
+        context2,
+        "/users/me/identity-link-tokens",
+        {
+          method: "POST",
+          body: { provider, org_id: orgId }
+        }
+      );
+      if (json) {
+        outputJson(response, json);
+      } else {
+        console.log(response.instructions);
+      }
+      return;
+    }
+    default:
+      throw new Error("Usage: eve identity <link>");
+  }
+}
+
+// src/commands/user.ts
+async function handleUser(subcommand, positionals, flags, context2) {
+  const json = Boolean(flags.json);
+  switch (subcommand) {
+    case "show": {
+      const userId = positionals[0] ?? "me";
+      const user = await requestJson(context2, `/users/${userId}`);
+      if (json) {
+        outputJson(user, true);
+        return;
+      }
+      console.log(`User: ${user.email}`);
+      if (user.display_name) console.log(`Name: ${user.display_name}`);
+      console.log(`ID:   ${user.id}`);
+      if (user.is_admin) console.log(`Role: system_admin`);
+      console.log(`Since: ${user.created_at?.split("T")[0] ?? ""}`);
+      if (user.memberships.length > 0) {
+        console.log("\nOrg memberships:");
+        for (const m of user.memberships) {
+          console.log(`  ${m.org_slug || m.org_name}  ${m.role}`);
+        }
+      }
+      if ((user.project_memberships ?? []).length > 0) {
+        console.log("\nProject memberships:");
+        for (const pm of user.project_memberships) {
+          console.log(`  ${pm.org_slug}/${pm.project_slug}  ${pm.role}`);
+        }
+      }
+      if (user.memberships.length === 0 && (user.project_memberships ?? []).length === 0) {
+        console.log("\nNo memberships.");
+      }
+      return;
+    }
+    default:
+      throw new Error("Usage: eve user <show> [user_id|me]");
+  }
+}
+
 // src/index.ts
 function getCliVersion() {
   try {
@@ -81314,6 +81641,12 @@ async function main2() {
     case "github":
       await handleGithub(subcommand, rest, flags, context2);
       return;
+    case "identity":
+      await handleIdentity(subcommand, rest, flags, context2);
+      return;
+    case "user":
+      await handleUser(subcommand, rest, flags, context2);
+      return;
     default:
       showMainHelp();
   }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eve-horizon/cli",
-  "version": "0.2.42",
+  "version": "0.2.44",
   "description": "Eve Horizon CLI",
   "license": "MIT",
   "repository": {