npm - @gopherhole/cli - Versions diffs - 0.1.3 → 0.1.5 - Mend

@gopherhole/cli 0.1.3 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -68,7 +68,7 @@ The CLI stores configuration in:
 - Website: https://gopherhole.ai
 - Dashboard: https://gopherhole.ai/dashboard
-- Docs: https://gopherhole.ai/docs
+- Docs: https://docs.gopherhole.ai
 - GitHub: https://github.com/gopherhole
 ## License

package/dist/index.js CHANGED Viewed

@@ -69,7 +69,7 @@ ${chalk_1.default.bold('Examples:')}
   $ gopherhole agents list
 ${chalk_1.default.bold('Documentation:')}
-  https://gopherhole.ai/docs
+  https://docs.gopherhole.ai
 `)
     .version('0.1.0')
     .option('-v, --verbose', 'Enable verbose output for debugging')
@@ -320,7 +320,7 @@ ${chalk_1.default.bold('Example:')}
         }
         console.log(chalk_1.default.bold('\n📚 Next steps:\n'));
         console.log(`  • Dashboard:    ${chalk_1.default.cyan('https://gopherhole.ai/dashboard')}`);
-        console.log(`  • Docs:         ${chalk_1.default.cyan('https://gopherhole.ai/docs')}`);
+        console.log(`  • Docs:         ${chalk_1.default.cyan('https://docs.gopherhole.ai')}`);
         console.log(`  • Find agents:  ${chalk_1.default.cyan('gopherhole discover search')}`);
         console.log(`  • List yours:   ${chalk_1.default.cyan('gopherhole agents list')}`);
         console.log('');
@@ -553,7 +553,7 @@ ${chalk_1.default.bold('Examples:')}
         console.log(chalk_1.default.bold('\n  Quick test:'));
         console.log(chalk_1.default.white(`    curl -H "Authorization: Bearer ${data.apiKey}" \\
          https://gopherhole.ai/a2a -d '{"jsonrpc":"2.0","method":"agent/info","id":1}'`));
-        console.log(chalk_1.default.gray('\n  Full docs: https://gopherhole.ai/docs'));
+        console.log(chalk_1.default.gray('\n  Full docs: https://docs.gopherhole.ai'));
         console.log('');
     }
     catch (err) {
@@ -609,6 +609,124 @@ ${chalk_1.default.bold('Example:')}
         process.exit(1);
     }
 });
+agents
+    .command('regenerate-key <agentId>')
+    .description(`Regenerate API key for an agent
+${chalk_1.default.bold('Example:')}
+  $ gopherhole agents regenerate-key agent-abc123
+${chalk_1.default.yellow('⚠️  Warning:')} This will invalidate the current key.
+All connected agents using this key will stop working.
+`)
+    .option('-f, --force', 'Skip confirmation')
+    .option('--json', 'Output as JSON')
+    .action(async (agentId, options) => {
+    const sessionId = config.get('sessionId');
+    if (!sessionId) {
+        console.log(chalk_1.default.yellow('Not logged in.'));
+        console.log(chalk_1.default.gray('Run: gopherhole login'));
+        process.exit(1);
+    }
+    if (!options.force) {
+        const { confirm } = await inquirer_1.default.prompt([
+            {
+                type: 'confirm',
+                name: 'confirm',
+                message: `Regenerate API key for ${chalk_1.default.cyan(agentId)}? This will invalidate the current key.`,
+                default: false,
+            },
+        ]);
+        if (!confirm) {
+            console.log('Cancelled.');
+            return;
+        }
+    }
+    const spinner = (0, ora_1.default)('Regenerating API key...').start();
+    log('POST /agents/' + agentId + '/regenerate-key');
+    try {
+        const res = await fetch(`${API_URL}/agents/${agentId}/regenerate-key`, {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'X-Session-ID': sessionId,
+            },
+            body: JSON.stringify({}),
+        });
+        if (!res.ok) {
+            const err = await res.json();
+            logError('regenerate-key', err);
+            throw new Error(err.error || 'Failed to regenerate key');
+        }
+        const data = await res.json();
+        spinner.succeed('API key regenerated');
+        if (options.json) {
+            console.log(JSON.stringify({ apiKey: data.apiKey }, null, 2));
+        }
+        else {
+            console.log('');
+            console.log(chalk_1.default.bold('New API Key:'));
+            console.log(chalk_1.default.green(data.apiKey));
+            console.log('');
+            console.log(chalk_1.default.yellow('⚠️  Copy this key now — it won\'t be shown again!'));
+        }
+    }
+    catch (err) {
+        spinner.fail(chalk_1.default.red(err.message));
+        process.exit(1);
+    }
+});
+agents
+    .command('sync-card <agentId>')
+    .description(`Sync agent card from its /.well-known/agent.json URL
+${chalk_1.default.bold('What it does:')}
+  Fetches the agent card from the agent's URL and updates
+  the GopherHole registry. Use after updating your agent's
+  skills, description, or capabilities.
+${chalk_1.default.bold('Examples:')}
+  $ gopherhole agents sync-card agent-abc123
+  $ gopherhole agents sync-card my-agent
+`)
+    .action(async (agentId) => {
+    const sessionId = config.get('sessionId');
+    if (!sessionId) {
+        console.log(chalk_1.default.yellow('Not logged in.'));
+        console.log(chalk_1.default.gray('Run: gopherhole login'));
+        process.exit(1);
+    }
+    const spinner = (0, ora_1.default)('Syncing agent card...').start();
+    log('POST /agents/' + agentId + '/sync-card');
+    try {
+        const res = await fetch(`${API_URL}/agents/${agentId}/sync-card`, {
+            method: 'POST',
+            headers: { 'X-Session-ID': sessionId },
+        });
+        if (!res.ok) {
+            const err = await res.json();
+            logError('sync-card', err);
+            throw new Error(err.error || 'Failed to sync card');
+        }
+        const data = await res.json();
+        spinner.succeed('Agent card synced!');
+        if (data.card) {
+            console.log(chalk_1.default.bold('\n  Updated card:'));
+            console.log(`    Name:        ${brand.green(data.card.name)}`);
+            if (data.card.description) {
+                console.log(`    Description: ${chalk_1.default.gray(data.card.description.slice(0, 60))}${data.card.description.length > 60 ? '...' : ''}`);
+            }
+            if (data.card.skills?.length) {
+                console.log(`    Skills:      ${data.card.skills.length} (${data.card.skills.map((s) => s.name).join(', ')})`);
+            }
+            console.log('');
+        }
+    }
+    catch (err) {
+        spinner.fail(chalk_1.default.red(err.message));
+        process.exit(1);
+    }
+});
 // ========== INIT COMMAND ==========
 program
     .command('init')
@@ -773,7 +891,7 @@ main().catch(console.error);
     console.log(chalk_1.default.cyan('  npm start'));
     console.log('');
     console.log(chalk_1.default.gray(`Dashboard: https://gopherhole.ai/dashboard`));
-    console.log(chalk_1.default.gray(`Docs:      https://gopherhole.ai/docs`));
+    console.log(chalk_1.default.gray(`Docs:      https://docs.gopherhole.ai`));
     console.log('');
 });
 // ========== SEND COMMAND ==========
@@ -1105,6 +1223,196 @@ ${chalk_1.default.bold('Example:')}
         process.exit(1);
     }
 });
+// ========== ACCESS COMMANDS ==========
+const access = program
+    .command('access')
+    .description(`Manage access requests to your agents
+${chalk_1.default.bold('Examples:')}
+  $ gopherhole access list              # List pending requests
+  $ gopherhole access approve <id>      # Approve a request
+  $ gopherhole access reject <id>       # Reject a request
+`);
+access
+    .command('list')
+    .description('List access requests to your agents')
+    .option('--status <status>', 'Filter by status (pending, approved, rejected)', 'pending')
+    .option('--json', 'Output as JSON')
+    .action(async (options) => {
+    const sessionId = config.get('sessionId');
+    if (!sessionId) {
+        console.log(chalk_1.default.yellow('Not logged in.'));
+        console.log(chalk_1.default.gray('Run: gopherhole login'));
+        process.exit(1);
+    }
+    const spinner = (0, ora_1.default)('Fetching access requests...').start();
+    log('GET /access/inbound');
+    try {
+        const res = await fetch(`${API_URL}/access/inbound`, {
+            headers: { 'X-Session-ID': sessionId },
+        });
+        if (!res.ok) {
+            throw new Error('Failed to fetch access requests');
+        }
+        const data = await res.json();
+        spinner.stop();
+        // Filter by status
+        const filtered = options.status === 'all'
+            ? data.grants
+            : data.grants.filter((g) => g.status === options.status);
+        if (options.json) {
+            console.log(JSON.stringify(filtered, null, 2));
+            return;
+        }
+        if (filtered.length === 0) {
+            console.log(chalk_1.default.gray(`\nNo ${options.status} access requests.`));
+            return;
+        }
+        console.log(chalk_1.default.bold(`\n📋 ${options.status.charAt(0).toUpperCase() + options.status.slice(1)} Access Requests:\n`));
+        for (const grant of filtered) {
+            const statusColor = grant.status === 'pending' ? chalk_1.default.yellow :
+                grant.status === 'approved' ? chalk_1.default.green : chalk_1.default.red;
+            console.log(`  ${chalk_1.default.cyan(grant.id)}`);
+            console.log(`    From: ${grant.requester_agent_name || grant.requester_agent_id || 'Unknown'}`);
+            console.log(`    To:   ${grant.target_agent_name || grant.target_agent_id}`);
+            console.log(`    Status: ${statusColor(grant.status)}`);
+            if (grant.requested_reason) {
+                console.log(`    Reason: ${chalk_1.default.gray(grant.requested_reason)}`);
+            }
+            console.log(`    Requested: ${new Date(grant.requested_at).toLocaleString()}`);
+            console.log('');
+        }
+        if (options.status === 'pending' && filtered.length > 0) {
+            console.log(chalk_1.default.gray(`Approve: gopherhole access approve <id>`));
+            console.log(chalk_1.default.gray(`Reject:  gopherhole access reject <id>`));
+        }
+    }
+    catch (err) {
+        spinner.fail(chalk_1.default.red(err.message));
+        process.exit(1);
+    }
+});
+access
+    .command('approve <grantId>')
+    .description('Approve an access request')
+    .option('--price <amount>', 'Set custom price for this requester (e.g., 0.01)')
+    .option('--currency <code>', 'Currency code (default: USD)', 'USD')
+    .option('--unit <unit>', 'Price unit (request, message, task, month)', 'request')
+    .option('--json', 'Output as JSON')
+    .action(async (grantId, options) => {
+    const sessionId = config.get('sessionId');
+    if (!sessionId) {
+        console.log(chalk_1.default.yellow('Not logged in.'));
+        console.log(chalk_1.default.gray('Run: gopherhole login'));
+        process.exit(1);
+    }
+    const spinner = (0, ora_1.default)('Approving access request...').start();
+    log('PUT /access/' + grantId + '/approve');
+    try {
+        const body = {};
+        if (options.price) {
+            body.price_amount = parseFloat(options.price);
+            body.price_currency = options.currency;
+            body.price_unit = options.unit;
+        }
+        const res = await fetch(`${API_URL}/access/${grantId}/approve`, {
+            method: 'PUT',
+            headers: {
+                'Content-Type': 'application/json',
+                'X-Session-ID': sessionId,
+            },
+            body: JSON.stringify(body),
+        });
+        if (!res.ok) {
+            const err = await res.json();
+            throw new Error(err.error || 'Failed to approve');
+        }
+        spinner.succeed('Access request approved');
+        if (options.price) {
+            console.log(chalk_1.default.gray(`  Custom pricing: ${options.price} ${options.currency}/${options.unit}`));
+        }
+    }
+    catch (err) {
+        spinner.fail(chalk_1.default.red(err.message));
+        process.exit(1);
+    }
+});
+access
+    .command('reject <grantId>')
+    .description('Reject an access request')
+    .option('--reason <reason>', 'Reason for rejection')
+    .action(async (grantId, options) => {
+    const sessionId = config.get('sessionId');
+    if (!sessionId) {
+        console.log(chalk_1.default.yellow('Not logged in.'));
+        console.log(chalk_1.default.gray('Run: gopherhole login'));
+        process.exit(1);
+    }
+    const spinner = (0, ora_1.default)('Rejecting access request...').start();
+    log('PUT /access/' + grantId + '/reject');
+    try {
+        const res = await fetch(`${API_URL}/access/${grantId}/reject`, {
+            method: 'PUT',
+            headers: {
+                'Content-Type': 'application/json',
+                'X-Session-ID': sessionId,
+            },
+            body: JSON.stringify({ reason: options.reason }),
+        });
+        if (!res.ok) {
+            const err = await res.json();
+            throw new Error(err.error || 'Failed to reject');
+        }
+        spinner.succeed('Access request rejected');
+    }
+    catch (err) {
+        spinner.fail(chalk_1.default.red(err.message));
+        process.exit(1);
+    }
+});
+access
+    .command('revoke <grantId>')
+    .description('Revoke a previously approved access grant')
+    .option('-f, --force', 'Skip confirmation')
+    .action(async (grantId, options) => {
+    const sessionId = config.get('sessionId');
+    if (!sessionId) {
+        console.log(chalk_1.default.yellow('Not logged in.'));
+        console.log(chalk_1.default.gray('Run: gopherhole login'));
+        process.exit(1);
+    }
+    if (!options.force) {
+        const { confirm } = await inquirer_1.default.prompt([
+            {
+                type: 'confirm',
+                name: 'confirm',
+                message: `Revoke access grant ${chalk_1.default.cyan(grantId)}? The requester will lose access.`,
+                default: false,
+            },
+        ]);
+        if (!confirm) {
+            console.log('Cancelled.');
+            return;
+        }
+    }
+    const spinner = (0, ora_1.default)('Revoking access...').start();
+    log('DELETE /access/' + grantId);
+    try {
+        const res = await fetch(`${API_URL}/access/${grantId}`, {
+            method: 'DELETE',
+            headers: { 'X-Session-ID': sessionId },
+        });
+        if (!res.ok) {
+            const err = await res.json();
+            throw new Error(err.error || 'Failed to revoke');
+        }
+        spinner.succeed('Access revoked');
+    }
+    catch (err) {
+        spinner.fail(chalk_1.default.red(err.message));
+        process.exit(1);
+    }
+});
 // ========== STATUS COMMAND ==========
 program
     .command('status')

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@gopherhole/cli",
-  "version": "0.1.3",
+  "version": "0.1.5",
   "description": "GopherHole CLI - Connect AI agents to the world",
   "main": "dist/index.js",
   "bin": {

package/src/index.ts CHANGED Viewed

@@ -76,7 +76,7 @@ ${chalk.bold('Examples:')}
   $ gopherhole agents list
 ${chalk.bold('Documentation:')}
-  https://gopherhole.ai/docs
+  https://docs.gopherhole.ai
 `)
   .version('0.1.0')
   .option('-v, --verbose', 'Enable verbose output for debugging')
@@ -349,7 +349,7 @@ ${chalk.bold('Example:')}
       console.log(chalk.bold('\n📚 Next steps:\n'));
       console.log(`  • Dashboard:    ${chalk.cyan('https://gopherhole.ai/dashboard')}`);
-      console.log(`  • Docs:         ${chalk.cyan('https://gopherhole.ai/docs')}`);
+      console.log(`  • Docs:         ${chalk.cyan('https://docs.gopherhole.ai')}`);
       console.log(`  • Find agents:  ${chalk.cyan('gopherhole discover search')}`);
       console.log(`  • List yours:   ${chalk.cyan('gopherhole agents list')}`);
       console.log('');
@@ -618,7 +618,7 @@ ${chalk.bold('Examples:')}
       console.log(chalk.white(`    curl -H "Authorization: Bearer ${data.apiKey}" \\
          https://gopherhole.ai/a2a -d '{"jsonrpc":"2.0","method":"agent/info","id":1}'`));
-      console.log(chalk.gray('\n  Full docs: https://gopherhole.ai/docs'));
+      console.log(chalk.gray('\n  Full docs: https://docs.gopherhole.ai'));
       console.log('');
     } catch (err) {
       spinner.fail(chalk.red((err as Error).message));
@@ -680,6 +680,135 @@ ${chalk.bold('Example:')}
     }
   });
+agents
+  .command('regenerate-key <agentId>')
+  .description(`Regenerate API key for an agent
+${chalk.bold('Example:')}
+  $ gopherhole agents regenerate-key agent-abc123
+${chalk.yellow('⚠️  Warning:')} This will invalidate the current key.
+All connected agents using this key will stop working.
+`)
+  .option('-f, --force', 'Skip confirmation')
+  .option('--json', 'Output as JSON')
+  .action(async (agentId, options) => {
+    const sessionId = config.get('sessionId') as string;
+    if (!sessionId) {
+      console.log(chalk.yellow('Not logged in.'));
+      console.log(chalk.gray('Run: gopherhole login'));
+      process.exit(1);
+    }
+    if (!options.force) {
+      const { confirm } = await inquirer.prompt([
+        {
+          type: 'confirm',
+          name: 'confirm',
+          message: `Regenerate API key for ${chalk.cyan(agentId)}? This will invalidate the current key.`,
+          default: false,
+        },
+      ]);
+      if (!confirm) {
+        console.log('Cancelled.');
+        return;
+      }
+    }
+    const spinner = ora('Regenerating API key...').start();
+    log('POST /agents/' + agentId + '/regenerate-key');
+    try {
+      const res = await fetch(`${API_URL}/agents/${agentId}/regenerate-key`, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+          'X-Session-ID': sessionId,
+        },
+        body: JSON.stringify({}),
+      });
+      if (!res.ok) {
+        const err = await res.json();
+        logError('regenerate-key', err);
+        throw new Error(err.error || 'Failed to regenerate key');
+      }
+      const data = await res.json();
+      spinner.succeed('API key regenerated');
+      if (options.json) {
+        console.log(JSON.stringify({ apiKey: data.apiKey }, null, 2));
+      } else {
+        console.log('');
+        console.log(chalk.bold('New API Key:'));
+        console.log(chalk.green(data.apiKey));
+        console.log('');
+        console.log(chalk.yellow('⚠️  Copy this key now — it won\'t be shown again!'));
+      }
+    } catch (err) {
+      spinner.fail(chalk.red((err as Error).message));
+      process.exit(1);
+    }
+  });
+agents
+  .command('sync-card <agentId>')
+  .description(`Sync agent card from its /.well-known/agent.json URL
+${chalk.bold('What it does:')}
+  Fetches the agent card from the agent's URL and updates
+  the GopherHole registry. Use after updating your agent's
+  skills, description, or capabilities.
+${chalk.bold('Examples:')}
+  $ gopherhole agents sync-card agent-abc123
+  $ gopherhole agents sync-card my-agent
+`)
+  .action(async (agentId) => {
+    const sessionId = config.get('sessionId') as string;
+    if (!sessionId) {
+      console.log(chalk.yellow('Not logged in.'));
+      console.log(chalk.gray('Run: gopherhole login'));
+      process.exit(1);
+    }
+    const spinner = ora('Syncing agent card...').start();
+    log('POST /agents/' + agentId + '/sync-card');
+    try {
+      const res = await fetch(`${API_URL}/agents/${agentId}/sync-card`, {
+        method: 'POST',
+        headers: { 'X-Session-ID': sessionId },
+      });
+      if (!res.ok) {
+        const err = await res.json();
+        logError('sync-card', err);
+        throw new Error(err.error || 'Failed to sync card');
+      }
+      const data = await res.json();
+      spinner.succeed('Agent card synced!');
+      if (data.card) {
+        console.log(chalk.bold('\n  Updated card:'));
+        console.log(`    Name:        ${brand.green(data.card.name)}`);
+        if (data.card.description) {
+          console.log(`    Description: ${chalk.gray(data.card.description.slice(0, 60))}${data.card.description.length > 60 ? '...' : ''}`);
+        }
+        if (data.card.skills?.length) {
+          console.log(`    Skills:      ${data.card.skills.length} (${data.card.skills.map((s: any) => s.name).join(', ')})`);
+        }
+        console.log('');
+      }
+    } catch (err) {
+      spinner.fail(chalk.red((err as Error).message));
+      process.exit(1);
+    }
+  });
 // ========== INIT COMMAND ==========
 program
@@ -864,7 +993,7 @@ main().catch(console.error);
     console.log(chalk.cyan('  npm start'));
     console.log('');
     console.log(chalk.gray(`Dashboard: https://gopherhole.ai/dashboard`));
-    console.log(chalk.gray(`Docs:      https://gopherhole.ai/docs`));
+    console.log(chalk.gray(`Docs:      https://docs.gopherhole.ai`));
     console.log('');
   });
@@ -1231,6 +1360,224 @@ ${chalk.bold('Example:')}
     }
   });
+// ========== ACCESS COMMANDS ==========
+const access = program
+  .command('access')
+  .description(`Manage access requests to your agents
+${chalk.bold('Examples:')}
+  $ gopherhole access list              # List pending requests
+  $ gopherhole access approve <id>      # Approve a request
+  $ gopherhole access reject <id>       # Reject a request
+`);
+access
+  .command('list')
+  .description('List access requests to your agents')
+  .option('--status <status>', 'Filter by status (pending, approved, rejected)', 'pending')
+  .option('--json', 'Output as JSON')
+  .action(async (options) => {
+    const sessionId = config.get('sessionId') as string;
+    if (!sessionId) {
+      console.log(chalk.yellow('Not logged in.'));
+      console.log(chalk.gray('Run: gopherhole login'));
+      process.exit(1);
+    }
+    const spinner = ora('Fetching access requests...').start();
+    log('GET /access/inbound');
+    try {
+      const res = await fetch(`${API_URL}/access/inbound`, {
+        headers: { 'X-Session-ID': sessionId },
+      });
+      if (!res.ok) {
+        throw new Error('Failed to fetch access requests');
+      }
+      const data = await res.json();
+      spinner.stop();
+      // Filter by status
+      const filtered = options.status === 'all'
+        ? data.grants
+        : data.grants.filter((g: any) => g.status === options.status);
+      if (options.json) {
+        console.log(JSON.stringify(filtered, null, 2));
+        return;
+      }
+      if (filtered.length === 0) {
+        console.log(chalk.gray(`\nNo ${options.status} access requests.`));
+        return;
+      }
+      console.log(chalk.bold(`\n📋 ${options.status.charAt(0).toUpperCase() + options.status.slice(1)} Access Requests:\n`));
+      for (const grant of filtered) {
+        const statusColor = grant.status === 'pending' ? chalk.yellow :
+                           grant.status === 'approved' ? chalk.green : chalk.red;
+        console.log(`  ${chalk.cyan(grant.id)}`);
+        console.log(`    From: ${grant.requester_agent_name || grant.requester_agent_id || 'Unknown'}`);
+        console.log(`    To:   ${grant.target_agent_name || grant.target_agent_id}`);
+        console.log(`    Status: ${statusColor(grant.status)}`);
+        if (grant.requested_reason) {
+          console.log(`    Reason: ${chalk.gray(grant.requested_reason)}`);
+        }
+        console.log(`    Requested: ${new Date(grant.requested_at).toLocaleString()}`);
+        console.log('');
+      }
+      if (options.status === 'pending' && filtered.length > 0) {
+        console.log(chalk.gray(`Approve: gopherhole access approve <id>`));
+        console.log(chalk.gray(`Reject:  gopherhole access reject <id>`));
+      }
+    } catch (err) {
+      spinner.fail(chalk.red((err as Error).message));
+      process.exit(1);
+    }
+  });
+access
+  .command('approve <grantId>')
+  .description('Approve an access request')
+  .option('--price <amount>', 'Set custom price for this requester (e.g., 0.01)')
+  .option('--currency <code>', 'Currency code (default: USD)', 'USD')
+  .option('--unit <unit>', 'Price unit (request, message, task, month)', 'request')
+  .option('--json', 'Output as JSON')
+  .action(async (grantId, options) => {
+    const sessionId = config.get('sessionId') as string;
+    if (!sessionId) {
+      console.log(chalk.yellow('Not logged in.'));
+      console.log(chalk.gray('Run: gopherhole login'));
+      process.exit(1);
+    }
+    const spinner = ora('Approving access request...').start();
+    log('PUT /access/' + grantId + '/approve');
+    try {
+      const body: any = {};
+      if (options.price) {
+        body.price_amount = parseFloat(options.price);
+        body.price_currency = options.currency;
+        body.price_unit = options.unit;
+      }
+      const res = await fetch(`${API_URL}/access/${grantId}/approve`, {
+        method: 'PUT',
+        headers: {
+          'Content-Type': 'application/json',
+          'X-Session-ID': sessionId,
+        },
+        body: JSON.stringify(body),
+      });
+      if (!res.ok) {
+        const err = await res.json();
+        throw new Error(err.error || 'Failed to approve');
+      }
+      spinner.succeed('Access request approved');
+      if (options.price) {
+        console.log(chalk.gray(`  Custom pricing: ${options.price} ${options.currency}/${options.unit}`));
+      }
+    } catch (err) {
+      spinner.fail(chalk.red((err as Error).message));
+      process.exit(1);
+    }
+  });
+access
+  .command('reject <grantId>')
+  .description('Reject an access request')
+  .option('--reason <reason>', 'Reason for rejection')
+  .action(async (grantId, options) => {
+    const sessionId = config.get('sessionId') as string;
+    if (!sessionId) {
+      console.log(chalk.yellow('Not logged in.'));
+      console.log(chalk.gray('Run: gopherhole login'));
+      process.exit(1);
+    }
+    const spinner = ora('Rejecting access request...').start();
+    log('PUT /access/' + grantId + '/reject');
+    try {
+      const res = await fetch(`${API_URL}/access/${grantId}/reject`, {
+        method: 'PUT',
+        headers: {
+          'Content-Type': 'application/json',
+          'X-Session-ID': sessionId,
+        },
+        body: JSON.stringify({ reason: options.reason }),
+      });
+      if (!res.ok) {
+        const err = await res.json();
+        throw new Error(err.error || 'Failed to reject');
+      }
+      spinner.succeed('Access request rejected');
+    } catch (err) {
+      spinner.fail(chalk.red((err as Error).message));
+      process.exit(1);
+    }
+  });
+access
+  .command('revoke <grantId>')
+  .description('Revoke a previously approved access grant')
+  .option('-f, --force', 'Skip confirmation')
+  .action(async (grantId, options) => {
+    const sessionId = config.get('sessionId') as string;
+    if (!sessionId) {
+      console.log(chalk.yellow('Not logged in.'));
+      console.log(chalk.gray('Run: gopherhole login'));
+      process.exit(1);
+    }
+    if (!options.force) {
+      const { confirm } = await inquirer.prompt([
+        {
+          type: 'confirm',
+          name: 'confirm',
+          message: `Revoke access grant ${chalk.cyan(grantId)}? The requester will lose access.`,
+          default: false,
+        },
+      ]);
+      if (!confirm) {
+        console.log('Cancelled.');
+        return;
+      }
+    }
+    const spinner = ora('Revoking access...').start();
+    log('DELETE /access/' + grantId);
+    try {
+      const res = await fetch(`${API_URL}/access/${grantId}`, {
+        method: 'DELETE',
+        headers: { 'X-Session-ID': sessionId },
+      });
+      if (!res.ok) {
+        const err = await res.json();
+        throw new Error(err.error || 'Failed to revoke');
+      }
+      spinner.succeed('Access revoked');
+    } catch (err) {
+      spinner.fail(chalk.red((err as Error).message));
+      process.exit(1);
+    }
+  });
 // ========== STATUS COMMAND ==========
 program