npm - @getjack/jack - Versions diffs - 0.1.2 → 0.1.3 - Mend

@getjack/jack 0.1.2 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (91) hide show

package/package.json +54 -47
package/src/commands/agents.ts +145 -10
package/src/commands/down.ts +110 -102
package/src/commands/feedback.ts +189 -0
package/src/commands/init.ts +8 -12
package/src/commands/login.ts +88 -0
package/src/commands/logout.ts +14 -0
package/src/commands/logs.ts +21 -0
package/src/commands/mcp.ts +134 -7
package/src/commands/new.ts +43 -17
package/src/commands/open.ts +13 -6
package/src/commands/projects.ts +269 -143
package/src/commands/secrets.ts +413 -0
package/src/commands/services.ts +96 -123
package/src/commands/ship.ts +5 -1
package/src/commands/whoami.ts +31 -0
package/src/index.ts +218 -144
package/src/lib/agent-files.ts +34 -0
package/src/lib/agents.ts +390 -22
package/src/lib/asset-hash.ts +50 -0
package/src/lib/auth/client.ts +115 -0
package/src/lib/auth/constants.ts +5 -0
package/src/lib/auth/guard.ts +57 -0
package/src/lib/auth/index.ts +18 -0
package/src/lib/auth/store.ts +54 -0
package/src/lib/binding-validator.ts +136 -0
package/src/lib/build-helper.ts +211 -0
package/src/lib/cloudflare-api.ts +24 -0
package/src/lib/config.ts +5 -6
package/src/lib/control-plane.ts +295 -0
package/src/lib/debug.ts +3 -1
package/src/lib/deploy-mode.ts +93 -0
package/src/lib/deploy-upload.ts +92 -0
package/src/lib/errors.ts +2 -0
package/src/lib/github.ts +31 -1
package/src/lib/hooks.ts +4 -12
package/src/lib/intent.ts +88 -0
package/src/lib/jsonc.ts +125 -0
package/src/lib/local-paths.test.ts +902 -0
package/src/lib/local-paths.ts +258 -0
package/src/lib/managed-deploy.ts +175 -0
package/src/lib/managed-down.ts +159 -0
package/src/lib/mcp-config.ts +55 -34
package/src/lib/names.ts +9 -29
package/src/lib/project-operations.ts +676 -249
package/src/lib/project-resolver.ts +476 -0
package/src/lib/registry.ts +76 -37
package/src/lib/resources.ts +196 -0
package/src/lib/schema.ts +30 -1
package/src/lib/storage/file-filter.ts +1 -0
package/src/lib/storage/index.ts +5 -1
package/src/lib/telemetry.ts +14 -0
package/src/lib/tty.ts +15 -0
package/src/lib/zip-packager.ts +255 -0
package/src/mcp/resources/index.ts +8 -2
package/src/mcp/server.ts +32 -4
package/src/mcp/tools/index.ts +35 -13
package/src/mcp/types.ts +6 -0
package/src/mcp/utils.ts +1 -1
package/src/templates/index.ts +42 -4
package/src/templates/types.ts +13 -0
package/templates/CLAUDE.md +166 -0
package/templates/api/.jack.json +4 -0
package/templates/api/bun.lock +1 -0
package/templates/api/wrangler.jsonc +5 -0
package/templates/hello/.jack.json +28 -0
package/templates/hello/package.json +10 -0
package/templates/hello/src/index.ts +11 -0
package/templates/hello/tsconfig.json +11 -0
package/templates/hello/wrangler.jsonc +5 -0
package/templates/miniapp/.jack.json +15 -4
package/templates/miniapp/bun.lock +135 -40
package/templates/miniapp/index.html +1 -0
package/templates/miniapp/package.json +3 -1
package/templates/miniapp/public/.well-known/farcaster.json +7 -5
package/templates/miniapp/public/icon.png +0 -0
package/templates/miniapp/public/og.png +0 -0
package/templates/miniapp/schema.sql +8 -0
package/templates/miniapp/src/App.tsx +254 -3
package/templates/miniapp/src/components/ShareSheet.tsx +147 -0
package/templates/miniapp/src/hooks/useAI.ts +35 -0
package/templates/miniapp/src/hooks/useGuestbook.ts +11 -1
package/templates/miniapp/src/hooks/useShare.ts +76 -0
package/templates/miniapp/src/index.css +15 -0
package/templates/miniapp/src/lib/api.ts +2 -1
package/templates/miniapp/src/worker.ts +515 -1
package/templates/miniapp/wrangler.jsonc +15 -3
package/LICENSE +0 -190
package/README.md +0 -55
package/src/commands/cloud.ts +0 -230
package/templates/api/wrangler.toml +0 -3

package/src/commands/secrets.ts ADDED Viewed

@@ -0,0 +1,413 @@
+/**
+ * jack secrets - Manage project secrets securely
+ *
+ * Secrets are stored in Cloudflare and never written to disk.
+ * For managed projects: uses jack cloud control plane.
+ * For BYO projects: uses wrangler secret commands.
+ */
+import { password as passwordPrompt } from "@inquirer/prompts";
+import { $ } from "bun";
+import { getControlApiUrl } from "../lib/control-plane.ts";
+import { JackError, JackErrorCode } from "../lib/errors.ts";
+import { error, info, output, success, warn } from "../lib/output.ts";
+import { type Project, getProject } from "../lib/registry.ts";
+import { getProjectNameFromDir } from "../lib/storage/index.ts";
+interface SecretsOptions {
+	project?: string;
+}
+export default async function secrets(
+	subcommand?: string,
+	args: string[] = [],
+	options: SecretsOptions = {},
+): Promise<void> {
+	if (!subcommand) {
+		return showHelp();
+	}
+	switch (subcommand) {
+		case "set":
+		case "add":
+			return await setSecret(args, options);
+		case "list":
+		case "ls":
+			return await listSecrets(options);
+		case "rm":
+		case "remove":
+		case "delete":
+			return await removeSecret(args, options);
+		default:
+			error(`Unknown subcommand: ${subcommand}`);
+			info("Available: set, list, rm");
+			process.exit(1);
+	}
+}
+function showHelp(): void {
+	console.error("");
+	info("jack secrets - Manage project secrets");
+	console.error("");
+	console.error("Commands:");
+	console.error("  set <KEY>           Set a secret (interactive prompt)");
+	console.error("  set KEY=VALUE       Set a secret (warning: visible in shell history)");
+	console.error("  list                List secret names");
+	console.error("  rm <KEY>            Remove a secret");
+	console.error("");
+	console.error("Options:");
+	console.error("  --project, -p       Project name (auto-detected from cwd)");
+	console.error("");
+	console.error("Piping from stdin (for CI/CD):");
+	console.error("  echo $SECRET | jack secrets set KEY");
+	console.error("");
+}
+/**
+ * Resolve project and determine if it's managed or BYO
+ */
+async function resolveProjectContext(options: SecretsOptions): Promise<{
+	projectName: string;
+	project: Project | null;
+	isManaged: boolean;
+	projectId: string | null;
+}> {
+	let projectName: string;
+	if (options.project) {
+		projectName = options.project;
+	} else {
+		try {
+			projectName = await getProjectNameFromDir(process.cwd());
+		} catch {
+			error("Could not determine project");
+			info("Run from a project directory, or use --project <name>");
+			process.exit(1);
+		}
+	}
+	const project = await getProject(projectName);
+	const isManaged = project?.deploy_mode === "managed";
+	const projectId = project?.remote?.project_id ?? null;
+	return { projectName, project, isManaged, projectId };
+}
+/**
+ * Read a secret value interactively without echoing
+ * Uses @inquirer/prompts password for robust handling of typing, pasting, and TTY
+ */
+async function readSecretInteractive(keyName: string): Promise<string> {
+	try {
+		const value = await passwordPrompt({
+			message: `Enter value for ${keyName}`,
+			mask: "*",
+		});
+		return value;
+	} catch (err) {
+		// Handle Ctrl+C / Escape - inquirer throws ExitPromptError
+		if (err instanceof Error && err.name === "ExitPromptError") {
+			throw new Error("Cancelled");
+		}
+		throw err;
+	}
+}
+/**
+ * Read secret value from stdin (for piping in CI/CD)
+ */
+async function readSecretFromStdin(): Promise<string> {
+	const chunks: Buffer[] = [];
+	for await (const chunk of process.stdin) {
+		chunks.push(chunk);
+	}
+	return Buffer.concat(chunks).toString("utf-8").trim();
+}
+/**
+ * Set a secret value
+ */
+async function setSecret(args: string[], options: SecretsOptions): Promise<void> {
+	const arg = args[0];
+	if (!arg) {
+		error("Missing secret key");
+		info("Usage: jack secrets set <KEY> or jack secrets set KEY=VALUE");
+		process.exit(1);
+	}
+	let keyName: string;
+	let value: string | undefined;
+	// Check for KEY=VALUE format
+	const equalsIndex = arg.indexOf("=");
+	if (equalsIndex > 0) {
+		keyName = arg.slice(0, equalsIndex);
+		value = arg.slice(equalsIndex + 1);
+		// Warn about shell history exposure
+		warn("Value visible in shell history. Use interactive mode for sensitive secrets.");
+	} else {
+		keyName = arg;
+	}
+	// Validate key name
+	if (!/^[A-Z_][A-Z0-9_]*$/i.test(keyName)) {
+		error("Invalid secret name");
+		info(
+			"Must start with a letter or underscore, and contain only letters, numbers, and underscores",
+		);
+		process.exit(1);
+	}
+	// Get value if not provided inline
+	if (value === undefined) {
+		// Check if stdin is piped
+		if (!process.stdin.isTTY) {
+			value = await readSecretFromStdin();
+			if (!value) {
+				error("No value provided via stdin");
+				process.exit(1);
+			}
+		} else {
+			// Interactive prompt
+			try {
+				value = await readSecretInteractive(keyName);
+				if (!value) {
+					error("No value provided");
+					process.exit(1);
+				}
+			} catch (err) {
+				if (err instanceof Error && err.message === "Cancelled") {
+					info("Cancelled");
+					process.exit(0);
+				}
+				throw err;
+			}
+		}
+	}
+	const { projectName, isManaged, projectId } = await resolveProjectContext(options);
+	output.start("Setting secret...");
+	if (isManaged && projectId) {
+		// Managed mode: use control plane API
+		await setSecretManaged(projectId, keyName, value);
+	} else {
+		// BYO mode: use wrangler
+		await setSecretByo(projectName, keyName, value);
+	}
+	output.stop();
+	success(`Secret set: ${keyName}`);
+	// Warn about VITE_ prefix (informative, not blocking)
+	if (keyName.startsWith("VITE_")) {
+		info("Note: VITE_* variables are embedded at build time, not runtime.");
+		info("For frontend access, add to .env and redeploy.");
+	}
+}
+/**
+ * Set secret via control plane (managed mode)
+ */
+async function setSecretManaged(projectId: string, name: string, value: string): Promise<void> {
+	const { authFetch } = await import("../lib/auth/index.ts");
+	const response = await authFetch(`${getControlApiUrl()}/v1/projects/${projectId}/secrets`, {
+		method: "POST",
+		headers: { "Content-Type": "application/json" },
+		body: JSON.stringify({ name, value }),
+	});
+	if (!response.ok) {
+		const err = (await response.json().catch(() => ({ message: "Unknown error" }))) as {
+			message?: string;
+		};
+		output.stop();
+		throw new JackError(
+			JackErrorCode.INTERNAL_ERROR,
+			err.message || `Failed to set secret: ${response.status}`,
+		);
+	}
+}
+/**
+ * Set secret via wrangler (BYO mode)
+ */
+async function setSecretByo(projectName: string, name: string, value: string): Promise<void> {
+	// Use wrangler secret put with stdin
+	const result = await $`echo ${value} | wrangler secret put ${name}`.nothrow().quiet();
+	if (result.exitCode !== 0) {
+		output.stop();
+		const stderr = result.stderr.toString();
+		throw new JackError(
+			JackErrorCode.DEPLOY_FAILED,
+			`Failed to set secret: ${stderr}`,
+			"Make sure wrangler is configured and the project is deployed",
+		);
+	}
+}
+/**
+ * List secrets
+ */
+async function listSecrets(options: SecretsOptions): Promise<void> {
+	const { projectName, isManaged, projectId } = await resolveProjectContext(options);
+	output.start("Loading secrets...");
+	let secrets: Array<{ name: string }>;
+	if (isManaged && projectId) {
+		secrets = await listSecretsManaged(projectId);
+	} else {
+		secrets = await listSecretsByo(projectName);
+	}
+	output.stop();
+	if (secrets.length === 0) {
+		info("No secrets configured");
+		return;
+	}
+	console.error("");
+	for (const secret of secrets) {
+		console.error(`  ${secret.name}`);
+	}
+	console.error("");
+}
+/**
+ * List secrets via control plane (managed mode)
+ */
+async function listSecretsManaged(projectId: string): Promise<Array<{ name: string }>> {
+	const { authFetch } = await import("../lib/auth/index.ts");
+	const response = await authFetch(`${getControlApiUrl()}/v1/projects/${projectId}/secrets`);
+	if (!response.ok) {
+		const err = (await response.json().catch(() => ({ message: "Unknown error" }))) as {
+			message?: string;
+		};
+		output.stop();
+		throw new JackError(
+			JackErrorCode.INTERNAL_ERROR,
+			err.message || `Failed to list secrets: ${response.status}`,
+		);
+	}
+	const data = (await response.json()) as { secrets: Array<{ name: string }> };
+	return data.secrets;
+}
+/**
+ * List secrets via wrangler (BYO mode)
+ */
+async function listSecretsByo(_projectName: string): Promise<Array<{ name: string }>> {
+	const result = await $`wrangler secret list --format json`.nothrow().quiet();
+	if (result.exitCode !== 0) {
+		// If no secrets or project not deployed, return empty list
+		const stderr = result.stderr.toString();
+		if (stderr.includes("not found") || stderr.includes("does not exist")) {
+			return [];
+		}
+		output.stop();
+		throw new JackError(
+			JackErrorCode.DEPLOY_FAILED,
+			`Failed to list secrets: ${stderr}`,
+			"Make sure wrangler is configured and the project is deployed",
+		);
+	}
+	try {
+		const stdout = result.stdout.toString().trim();
+		if (!stdout) {
+			return [];
+		}
+		const secrets = JSON.parse(stdout) as Array<{ name: string; type: string }>;
+		return secrets.map((s) => ({ name: s.name }));
+	} catch {
+		// If JSON parsing fails, try line-by-line parsing
+		const lines = result.stdout.toString().trim().split("\n");
+		return lines.filter((line) => line.trim()).map((line) => ({ name: line.trim() }));
+	}
+}
+/**
+ * Remove a secret
+ */
+async function removeSecret(args: string[], options: SecretsOptions): Promise<void> {
+	const keyName = args[0];
+	if (!keyName) {
+		error("Missing secret key");
+		info("Usage: jack secrets rm <KEY>");
+		process.exit(1);
+	}
+	const { projectName, isManaged, projectId } = await resolveProjectContext(options);
+	output.start("Removing secret...");
+	if (isManaged && projectId) {
+		await removeSecretManaged(projectId, keyName);
+	} else {
+		await removeSecretByo(projectName, keyName);
+	}
+	output.stop();
+	success(`Secret removed: ${keyName}`);
+}
+/**
+ * Remove secret via control plane (managed mode)
+ */
+async function removeSecretManaged(projectId: string, name: string): Promise<void> {
+	const { authFetch } = await import("../lib/auth/index.ts");
+	const response = await authFetch(
+		`${getControlApiUrl()}/v1/projects/${projectId}/secrets/${encodeURIComponent(name)}`,
+		{ method: "DELETE" },
+	);
+	if (!response.ok) {
+		const err = (await response.json().catch(() => ({ message: "Unknown error" }))) as {
+			message?: string;
+		};
+		output.stop();
+		throw new JackError(
+			JackErrorCode.INTERNAL_ERROR,
+			err.message || `Failed to remove secret: ${response.status}`,
+		);
+	}
+}
+/**
+ * Remove secret via wrangler (BYO mode)
+ */
+async function removeSecretByo(_projectName: string, name: string): Promise<void> {
+	// Use yes | to auto-confirm the deletion
+	const result = await $`yes | wrangler secret delete ${name}`.nothrow().quiet();
+	if (result.exitCode !== 0) {
+		output.stop();
+		const stderr = result.stderr.toString();
+		throw new JackError(
+			JackErrorCode.DEPLOY_FAILED,
+			`Failed to remove secret: ${stderr}`,
+			"Make sure wrangler is configured and the project is deployed",
+		);
+	}
+}