@grantex/cli 0.1.5 → 0.1.7

package/README.md

@@ -2,9 +2,9 @@
 
 Command-line tool for the [Grantex](https://grantex.dev) delegated authorization protocol.
 
-Manage agents, grants, audit logs, webhooks, policies, anomalies, and compliance exports from your terminal.
+83 commands covering the full Grantex API — agents, grants, tokens, policies, budgets, audit, compliance, credentials, and more. All commands support `--json` for machine-readable output.
 
-> **[Homepage](https://grantex.dev)** | **[Docs](https://grantex.dev/docs)** | **[Sign Up Free](https://grantex.dev/dashboard/signup)** | **[GitHub](https://github.com/mishrasanjeev/grantex)**
+> **[Homepage](https://grantex.dev)** | **[Docs](https://docs.grantex.dev)** | **[CLI Docs](https://docs.grantex.dev/integrations/cli)** | **[GitHub](https://github.com/mishrasanjeev/grantex)**
 
 ## Install
 
@@ -14,122 +14,247 @@ npm install -g @grantex/cli
 
 ## Configure
 
-Point the CLI at your Grantex server and set your API key:
-
 ```bash
-# Interactive setup
 grantex config set --url https://grantex-auth-dd4mtrt2gq-uc.a.run.app --key YOUR_API_KEY
 
 # Or use environment variables
 export GRANTEX_URL=https://grantex-auth-dd4mtrt2gq-uc.a.run.app
 export GRANTEX_KEY=YOUR_API_KEY
+
+# Verify your setup
+grantex me
 ```
 
 Config is saved to `~/.grantex/config.json`. Environment variables override the config file.
 
+## JSON Output
+
+All commands support `--json` for machine-readable output — ideal for scripting, `jq`, and AI coding assistants (Claude Code, Cursor, Codex).
+
 ```bash
-# Verify your setup
-grantex config show
+grantex --json agents list | jq '.[0].agentId'
+grantex --json tokens verify <jwt> | jq '.valid'
 ```
 
+Set `NO_COLOR=1` to disable colored output.
+
 ## Commands
 
+### Core Flow
+
+```bash
+# 1. Register an agent
+grantex agents register --name "My Bot" --description "Reads email" --scopes email:read
+
+# 2. Start authorization
+grantex authorize --agent ag_... --principal user@example.com --scopes email:read
+
+# 3. Exchange code for token
+grantex tokens exchange --code <code> --agent-id ag_...
+
+# 4. Verify the token
+grantex tokens verify <jwt>
+
+# 5. Refresh when needed
+grantex tokens refresh --refresh-token <token> --agent-id ag_...
+
+# 6. Revoke when done
+grantex grants revoke grnt_...
+```
+
 ### Agents
 
 ```bash
 grantex agents list
-grantex agents register --name travel-booker --scopes calendar:read,payments:initiate
-grantex agents get ag_01ABC...
-grantex agents update ag_01ABC... --name new-name --scopes calendar:read,email:send
-grantex agents delete ag_01ABC...
+grantex agents register --name bot --description "..." --scopes email:read,calendar:write
+grantex agents get ag_...
+grantex agents update ag_... --name new-name --scopes email:read
+grantex agents delete ag_...
 ```
 
 ### Grants
 
 ```bash
-grantex grants list
-grantex grants list --agent ag_01ABC... --status active
-grantex grants revoke grnt_01XYZ...
+grantex grants list [--agent ag_... --status active]
+grantex grants get grnt_...
+grantex grants revoke grnt_...
+grantex grants delegate --grant-token <jwt> --agent-id ag_child... --scopes email:read
 ```
 
 ### Tokens
 
 ```bash
-grantex tokens verify <jwt-token>
+grantex tokens exchange --code <code> --agent-id ag_...
+grantex tokens verify <jwt>
+grantex tokens refresh --refresh-token <token> --agent-id ag_...
 grantex tokens revoke <jti>
 ```
 
-### Audit Log
+### Authorize
 
 ```bash
-grantex audit list
-grantex audit list --agent ag_01ABC... --action payment.initiated --since 2026-01-01
+grantex authorize --agent ag_... --principal user@example.com --scopes email:read
+grantex authorize --agent ag_... --principal user@example.com --scopes email:read \
+  --code-challenge <S256-challenge> --redirect-uri https://app.com/callback
+```
+
+### Audit
+
+```bash
+grantex audit list [--agent ag_... --grant grnt_... --action email.read --since 2026-01-01]
+grantex audit get alog_...
+grantex audit log --agent-id ag_... --agent-did did:grantex:ag_... --grant-id grnt_... \
+  --principal-id user@example.com --action email.read --status success
+```
+
+### Policies
+
+```bash
+grantex policies list
+grantex policies get pol_...
+grantex policies create --name "Allow Bot" --effect allow --agent-id ag_... --scopes email:read
+grantex policies update pol_... --priority 50
+grantex policies delete pol_...
+```
+
+### Budgets
+
+```bash
+grantex budgets allocate --grant-id grnt_... --amount 100 [--currency USD]
+grantex budgets debit --grant-id grnt_... --amount 25.50 --description "API call"
+grantex budgets balance grnt_...
+grantex budgets transactions grnt_...
+```
+
+### Usage
+
+```bash
+grantex usage current
+grantex usage history [--days 7]
 ```
 
 ### Webhooks
 
 ```bash
 grantex webhooks list
-grantex webhooks create --url https://example.com/hook --events grant.created,grant.revoked
-grantex webhooks delete wh_01XYZ...
+grantex webhooks create --url https://example.com/hook --events grant.created,token.issued
+grantex webhooks delete wh_...
 ```
 
-Supported events: `grant.created`, `grant.revoked`, `token.issued`
+### Events
 
-### Compliance
+```bash
+grantex events stream [--types grant.created,token.issued]
+grantex --json events stream  # One JSON object per line
+```
+
+### Domains
 
 ```bash
-# Summary stats
-grantex compliance summary
-grantex compliance summary --since 2026-01-01 --until 2026-02-01
+grantex domains list
+grantex domains add --domain auth.mycompany.com
+grantex domains verify dom_...
+grantex domains delete dom_...
+```
 
-# Export grants
-grantex compliance export grants --format json --output grants.json
+### Vault (Credential Storage)
 
-# Export audit log
-grantex compliance export audit --format json --output audit.json
+```bash
+grantex vault list [--principal user@example.com --service google]
+grantex vault get cred_...
+grantex vault store --principal-id user@example.com --service google --access-token ya29...
+grantex vault delete cred_...
+grantex vault exchange --grant-token <jwt> --service google
+```
 
-# Evidence pack (SOC 2, GDPR, etc.)
+### WebAuthn / FIDO2
+
+```bash
+grantex webauthn register-options --principal-id user@example.com
+grantex webauthn register-verify --challenge-id ch_... --response '{"id":"..."}' --device-name "MacBook"
+grantex webauthn list user@example.com
+grantex webauthn delete cred_...
+```
+
+### Verifiable Credentials
+
+```bash
+grantex credentials list [--grant-id grnt_... --status active]
+grantex credentials get vc_...
+grantex credentials verify --vc-jwt eyJ...
+grantex credentials present --sd-jwt eyJ... --nonce abc123
+```
+
+### Agent Passports (MPP)
+
+```bash
+grantex passports issue --agent-id ag_... --grant-id grnt_... --categories "compute,storage" --max-amount 100
+grantex passports list [--agent-id ag_...]
+grantex passports get pp_...
+grantex passports revoke pp_...
+```
+
+### Principal Sessions
+
+```bash
+grantex principal-sessions create --principal-id user@example.com [--expires-in 1h]
+```
+
+### Account
+
+```bash
+grantex me
+```
+
+### Compliance
+
+```bash
+grantex compliance summary [--since 2026-01-01 --until 2026-02-01]
+grantex compliance export grants --format json --output grants.json
+grantex compliance export audit --format json --output audit.json
 grantex compliance evidence-pack --framework soc2 --output evidence.json
 ```
 
-### Anomaly Detection
+### Anomalies
 
 ```bash
 grantex anomalies detect
-grantex anomalies list
-grantex anomalies list --unacknowledged
-grantex anomalies acknowledge anom_01XYZ...
+grantex anomalies list [--unacknowledged]
+grantex anomalies acknowledge anom_...
 ```
 
-## Local Development
-
-For local development with `docker compose`:
+### Billing
 
 ```bash
-grantex config set --url http://localhost:3001 --key dev-api-key-local
+grantex billing status
+grantex billing checkout pro --success-url https://app.com/ok --cancel-url https://app.com/cancel
+grantex billing portal --return-url https://app.com/settings
 ```
 
-## Requirements
+### SCIM
 
-- Node.js 18+
+```bash
+grantex scim tokens list | create --label "Okta" | revoke tok_...
+grantex scim users list | get usr_... | create --user-name john@co.com | update usr_... | delete usr_...
+```
 
-## Links
+### SSO
 
-- [Grantex Protocol](https://github.com/mishrasanjeev/grantex)
-- [TypeScript SDK](https://www.npmjs.com/package/@grantex/sdk)
-- [Self-Hosting Guide](https://github.com/mishrasanjeev/grantex/blob/main/docs/self-hosting.md)
-- [Developer Portal](https://grantex.dev/dashboard)
+```bash
+grantex sso get | configure --issuer-url ... --client-id ... | delete
+grantex sso login-url my-org
+grantex sso callback --code CODE --state STATE
+```
+
+## Local Development
 
-## Grantex Ecosystem
+```bash
+grantex config set --url http://localhost:3001 --key dev-api-key-local
+```
 
-This package is part of the [Grantex](https://grantex.dev) ecosystem. See also:
+## Requirements
 
-- [`@grantex/sdk`](https://www.npmjs.com/package/@grantex/sdk) — Core TypeScript SDK
-- [`grantex`](https://pypi.org/project/grantex/) — Python SDK
-- [`@grantex/langchain`](https://www.npmjs.com/package/@grantex/langchain) — LangChain integration
-- [`@grantex/mcp`](https://www.npmjs.com/package/@grantex/mcp) — MCP server for Claude Desktop / Cursor / Windsurf
-- [`@grantex/vercel-ai`](https://www.npmjs.com/package/@grantex/vercel-ai) — Vercel AI SDK integration
+- Node.js 18+
 
 ## License
 

package/dist/commands/agents.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"agents.d.ts","sourceRoot":"","sources":["../../src/commands/agents.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAKpC,wBAAgB,aAAa,IAAI,OAAO,CAqEvC"}
+{"version":3,"file":"agents.d.ts","sourceRoot":"","sources":["../../src/commands/agents.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAUpC,wBAAgB,aAAa,IAAI,OAAO,CAuGvC"}

package/dist/commands/agents.js

@@ -1,7 +1,11 @@
 import { Command } from 'commander';
 import chalk from 'chalk';
 import { requireClient } from '../client.js';
-import { printTable, printRecord, shortDate } from '../format.js';
+import { printTable, printRecord, shortDate, isJsonMode } from '../format.js';
+// The API returns `agentId` but the SDK type says `id`. Handle both.
+function agentId(a) {
+    return String(a.agentId ?? a.id ?? '');
+}
 export function agentsCommand() {
     const cmd = new Command('agents').description('Manage registered agents');
     cmd
@@ -11,11 +15,11 @@ export function agentsCommand() {
         const client = await requireClient();
         const { agents } = await client.agents.list();
         printTable(agents.map((a) => ({
-            ID: a.id,
+            ID: agentId(a),
             NAME: a.name,
             DID: a.did,
             CREATED: shortDate(a.createdAt),
-        })), ['ID', 'NAME', 'DID', 'CREATED']);
+        })), ['ID', 'NAME', 'DID', 'CREATED'], agents.map((a) => ({ ...a })));
     });
     cmd
         .command('register')
@@ -30,9 +34,14 @@ export function agentsCommand() {
             description: opts.description,
             scopes: opts.scopes.split(',').map((s) => s.trim()),
         });
-        console.log(chalk.green('✓') + ` Agent registered: ${agent.id}`);
+        if (isJsonMode()) {
+            console.log(JSON.stringify(agent, null, 2));
+            return;
+        }
+        const id = agentId(agent);
+        console.log(chalk.green('✓') + ` Agent registered: ${id}`);
         printRecord({
-            id: agent.id,
+            id,
             name: agent.name,
             did: agent.did,
             scopes: agent.scopes.join(', '),
@@ -42,11 +51,15 @@ export function agentsCommand() {
     cmd
         .command('get <agentId>')
         .description('Get details for a single agent')
-        .action(async (agentId) => {
+        .action(async (agentIdArg) => {
         const client = await requireClient();
-        const agent = await client.agents.get(agentId);
+        const agent = await client.agents.get(agentIdArg);
+        if (isJsonMode()) {
+            console.log(JSON.stringify(agent, null, 2));
+            return;
+        }
         printRecord({
-            id: agent.id,
+            id: agentId(agent),
             name: agent.name,
             did: agent.did,
             description: agent.description,
@@ -54,13 +67,39 @@ export function agentsCommand() {
             createdAt: shortDate(agent.createdAt),
         });
     });
+    cmd
+        .command('update <agentId>')
+        .description('Update an agent')
+        .option('--name <name>', 'New agent name')
+        .option('--description <desc>', 'New agent description')
+        .option('--scopes <scopes>', 'New comma-separated scopes')
+        .action(async (agentIdArg, opts) => {
+        const client = await requireClient();
+        const updates = {};
+        if (opts.name !== undefined)
+            updates.name = opts.name;
+        if (opts.description !== undefined)
+            updates.description = opts.description;
+        if (opts.scopes !== undefined)
+            updates.scopes = opts.scopes.split(',').map((s) => s.trim());
+        const agent = await client.agents.update(agentIdArg, updates);
+        if (isJsonMode()) {
+            console.log(JSON.stringify(agent, null, 2));
+            return;
+        }
+        console.log(chalk.green('✓') + ` Agent ${agentIdArg} updated.`);
+    });
     cmd
         .command('delete <agentId>')
         .description('Delete an agent')
-        .action(async (agentId) => {
+        .action(async (agentIdArg) => {
         const client = await requireClient();
-        await client.agents.delete(agentId);
-        console.log(chalk.green('✓') + ` Agent ${agentId} deleted.`);
+        await client.agents.delete(agentIdArg);
+        if (isJsonMode()) {
+            console.log(JSON.stringify({ deleted: agentIdArg }));
+            return;
+        }
+        console.log(chalk.green('✓') + ` Agent ${agentIdArg} deleted.`);
     });
     return cmd;
 }

package/dist/commands/agents.js.map

@@ -1 +1 @@
-{"version":3,"file":"agents.js","sourceRoot":"","sources":["../../src/commands/agents.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAElE,MAAM,UAAU,aAAa;IAC3B,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC,0BAA0B,CAAC,CAAC;IAE1E,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,iBAAiB,CAAC;SAC9B,MAAM,CAAC,KAAK,IAAI,EAAE;QACjB,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAC9C,UAAU,CACR,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACjB,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,GAAG,EAAE,CAAC,CAAC,GAAG;YACV,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SAChC,CAAC,CAAC,EACH,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,CAAC,CACjC,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,UAAU,CAAC;SACnB,WAAW,CAAC,sBAAsB,CAAC;SACnC,cAAc,CAAC,eAAe,EAAE,2BAA2B,CAAC;SAC5D,cAAc,CAAC,sBAAsB,EAAE,mBAAmB,CAAC;SAC3D,cAAc,CAAC,mBAAmB,EAAE,0CAA0C,CAAC;SAC/E,MAAM,CAAC,KAAK,EAAE,IAA2D,EAAE,EAAE;QAC5E,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC;YACzC,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;SACpD,CAAC,CAAC;QACH,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,sBAAsB,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC;QACjE,WAAW,CAAC;YACV,EAAE,EAAE,KAAK,CAAC,EAAE;YACZ,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;YAC/B,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;SACtC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,eAAe,CAAC;SACxB,WAAW,CAAC,gCAAgC,CAAC;SAC7C,MAAM,CAAC,KAAK,EAAE,OAAe,EAAE,EAAE;QAChC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC/C,WAAW,CAAC;YACV,EAAE,EAAE,KAAK,CAAC,EAAE;YACZ,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;YAC/B,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;SACtC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,kBAAkB,CAAC;SAC3B,WAAW,CAAC,iBAAiB,CAAC;SAC9B,MAAM,CAAC,KAAK,EAAE,OAAe,EAAE,EAAE;QAChC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACpC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,UAAU,OAAO,WAAW,CAAC,CAAC;IAC/D,CAAC,CAAC,CAAC;IAEL,OAAO,GAAG,CAAC;AACb,CAAC"}
+{"version":3,"file":"agents.js","sourceRoot":"","sources":["../../src/commands/agents.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE9E,qEAAqE;AACrE,SAAS,OAAO,CAAC,CAA0B;IACzC,OAAO,MAAM,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC;AACzC,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,CAAC,0BAA0B,CAAC,CAAC;IAE1E,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,iBAAiB,CAAC;SAC9B,MAAM,CAAC,KAAK,IAAI,EAAE;QACjB,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAC9C,UAAU,CACR,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACjB,EAAE,EAAE,OAAO,CAAC,CAAuC,CAAC;YACpD,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,GAAG,EAAE,CAAC,CAAC,GAAG;YACV,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SAChC,CAAC,CAAC,EACH,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,CAAC,EAChC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAC9B,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,UAAU,CAAC;SACnB,WAAW,CAAC,sBAAsB,CAAC;SACnC,cAAc,CAAC,eAAe,EAAE,2BAA2B,CAAC;SAC5D,cAAc,CAAC,sBAAsB,EAAE,mBAAmB,CAAC;SAC3D,cAAc,CAAC,mBAAmB,EAAE,0CAA0C,CAAC;SAC/E,MAAM,CAAC,KAAK,EAAE,IAA2D,EAAE,EAAE;QAC5E,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC;YACzC,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;SACpD,CAAC,CAAC;QACH,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC5C,OAAO;QACT,CAAC;QACD,MAAM,EAAE,GAAG,OAAO,CAAC,KAA2C,CAAC,CAAC;QAChE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,sBAAsB,EAAE,EAAE,CAAC,CAAC;QAC3D,WAAW,CAAC;YACV,EAAE;YACF,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;YAC/B,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;SACtC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,eAAe,CAAC;SACxB,WAAW,CAAC,gCAAgC,CAAC;SAC7C,MAAM,CAAC,KAAK,EAAE,UAAkB,EAAE,EAAE;QACnC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAClD,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC5C,OAAO;QACT,CAAC;QACD,WAAW,CAAC;YACV,EAAE,EAAE,OAAO,CAAC,KAA2C,CAAC;YACxD,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;YAC/B,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;SACtC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,kBAAkB,CAAC;SAC3B,WAAW,CAAC,iBAAiB,CAAC;SAC9B,MAAM,CAAC,eAAe,EAAE,gBAAgB,CAAC;SACzC,MAAM,CAAC,sBAAsB,EAAE,uBAAuB,CAAC;SACvD,MAAM,CAAC,mBAAmB,EAAE,4BAA4B,CAAC;SACzD,MAAM,CAAC,KAAK,EAAE,UAAkB,EAAE,IAA8D,EAAE,EAAE;QACnG,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,OAAO,GAA4B,EAAE,CAAC;QAC5C,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS;YAAE,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;QACtD,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS;YAAE,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC;QAC3E,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS;YAAE,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAC5F,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAC9D,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC5C,OAAO;QACT,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,UAAU,UAAU,WAAW,CAAC,CAAC;IAClE,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,kBAAkB,CAAC;SAC3B,WAAW,CAAC,iBAAiB,CAAC;SAC9B,MAAM,CAAC,KAAK,EAAE,UAAkB,EAAE,EAAE;QACnC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QACvC,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;YACrD,OAAO;QACT,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,UAAU,UAAU,WAAW,CAAC,CAAC;IAClE,CAAC,CAAC,CAAC;IAEL,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/commands/anomalies.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"anomalies.d.ts","sourceRoot":"","sources":["../../src/commands/anomalies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAgBpC,wBAAgB,gBAAgB,IAAI,OAAO,CAgD1C"}
+{"version":3,"file":"anomalies.d.ts","sourceRoot":"","sources":["../../src/commands/anomalies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAgBpC,wBAAgB,gBAAgB,IAAI,OAAO,CA0D1C"}

package/dist/commands/anomalies.js

@@ -1,7 +1,7 @@
 import { Command } from 'commander';
 import chalk from 'chalk';
 import { requireClient } from '../client.js';
-import { printTable } from '../format.js';
+import { printTable, isJsonMode } from '../format.js';
 const SEVERITY_COLOR = {
     high: chalk.red,
     medium: chalk.yellow,
@@ -18,6 +18,10 @@ export function anomaliesCommand() {
         .action(async () => {
         const client = await requireClient();
         const result = await client.anomalies.detect();
+        if (isJsonMode()) {
+            console.log(JSON.stringify(result, null, 2));
+            return;
+        }
         if (result.total === 0) {
             console.log(chalk.green('✓') + ' No anomalies detected.');
             return;
@@ -34,7 +38,7 @@ export function anomaliesCommand() {
         const result = await client.anomalies.list({
             ...(opts.unacknowledged ? { unacknowledged: true } : {}),
         });
-        printTable(result.anomalies.map(formatRow), ['ID', 'TYPE', 'SEVERITY', 'AGENT', 'DESCRIPTION']);
+        printTable(result.anomalies.map(formatRow), ['ID', 'TYPE', 'SEVERITY', 'AGENT', 'DESCRIPTION'], result.anomalies.map((a) => ({ ...a })));
     });
     cmd
         .command('acknowledge <anomalyId>')
@@ -42,6 +46,10 @@ export function anomaliesCommand() {
         .action(async (anomalyId) => {
         const client = await requireClient();
         await client.anomalies.acknowledge(anomalyId);
+        if (isJsonMode()) {
+            console.log(JSON.stringify({ acknowledged: anomalyId }));
+            return;
+        }
         console.log(chalk.green('✓') + ` Anomaly ${anomalyId} acknowledged.`);
     });
     return cmd;

package/dist/commands/anomalies.js.map

@@ -1 +1 @@
-{"version":3,"file":"anomalies.js","sourceRoot":"","sources":["../../src/commands/anomalies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAa,MAAM,cAAc,CAAC;AAGrD,MAAM,cAAc,GAA0C;IAC5D,IAAI,EAAI,KAAK,CAAC,GAAG;IACjB,MAAM,EAAE,KAAK,CAAC,MAAM;IACpB,GAAG,EAAK,KAAK,CAAC,IAAI;CACnB,CAAC;AAEF,SAAS,aAAa,CAAC,QAAgB;IACrC,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;AACpE,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,WAAW,CAAC,CAAC,WAAW,CAAC,mCAAmC,CAAC,CAAC;IAEtF,GAAG;SACA,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,yCAAyC,CAAC;SACtD,MAAM,CAAC,KAAK,IAAI,EAAE;QACjB,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;QAE/C,IAAI,MAAM,CAAC,KAAK,KAAK,CAAC,EAAE,CAAC;YACvB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,yBAAyB,CAAC,CAAC;YAC1D,OAAO;QACT,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,YAAY,MAAM,CAAC,KAAK,WAAW,MAAM,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;QACnF,UAAU,CACR,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,EAC/B,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,aAAa,CAAC,CACnD,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,uBAAuB,CAAC;SACpC,MAAM,CAAC,kBAAkB,EAAE,oCAAoC,CAAC;SAChE,MAAM,CAAC,KAAK,EAAE,IAAkC,EAAE,EAAE;QACnD,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC;YACzC,GAAG,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,EAAE,cAAc,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SACzD,CAAC,CAAC;QAEH,UAAU,CACR,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,EAC/B,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,aAAa,CAAC,CACnD,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,yBAAyB,CAAC;SAClC,WAAW,CAAC,wBAAwB,CAAC;SACrC,MAAM,CAAC,KAAK,EAAE,SAAiB,EAAE,EAAE;QAClC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QAC9C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,YAAY,SAAS,gBAAgB,CAAC,CAAC;IACxE,CAAC,CAAC,CAAC;IAEL,OAAO,GAAG,CAAC;AACb,CAAC;AAED,SAAS,SAAS,CAAC,CAAU;IAC3B,OAAO;QACL,EAAE,EAAW,CAAC,CAAC,EAAE;QACjB,IAAI,EAAS,CAAC,CAAC,IAAI;QACnB,QAAQ,EAAK,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC;QACtC,KAAK,EAAQ,CAAC,CAAC,OAAO,IAAI,GAAG;QAC7B,WAAW,EAAE,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW;KAC5F,CAAC;AACJ,CAAC"}
+{"version":3,"file":"anomalies.js","sourceRoot":"","sources":["../../src/commands/anomalies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAa,UAAU,EAAE,MAAM,cAAc,CAAC;AAGjE,MAAM,cAAc,GAA0C;IAC5D,IAAI,EAAI,KAAK,CAAC,GAAG;IACjB,MAAM,EAAE,KAAK,CAAC,MAAM;IACpB,GAAG,EAAK,KAAK,CAAC,IAAI;CACnB,CAAC;AAEF,SAAS,aAAa,CAAC,QAAgB;IACrC,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;AACpE,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,WAAW,CAAC,CAAC,WAAW,CAAC,mCAAmC,CAAC,CAAC;IAEtF,GAAG;SACA,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,yCAAyC,CAAC;SACtD,MAAM,CAAC,KAAK,IAAI,EAAE;QACjB,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;QAE/C,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC7C,OAAO;QACT,CAAC;QAED,IAAI,MAAM,CAAC,KAAK,KAAK,CAAC,EAAE,CAAC;YACvB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,yBAAyB,CAAC,CAAC;YAC1D,OAAO;QACT,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,YAAY,MAAM,CAAC,KAAK,WAAW,MAAM,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;QACnF,UAAU,CACR,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,EAC/B,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,aAAa,CAAC,CACnD,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,uBAAuB,CAAC;SACpC,MAAM,CAAC,kBAAkB,EAAE,oCAAoC,CAAC;SAChE,MAAM,CAAC,KAAK,EAAE,IAAkC,EAAE,EAAE;QACnD,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC;YACzC,GAAG,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,EAAE,cAAc,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SACzD,CAAC,CAAC;QAEH,UAAU,CACR,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,EAC/B,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,aAAa,CAAC,EAClD,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CACxC,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,yBAAyB,CAAC;SAClC,WAAW,CAAC,wBAAwB,CAAC;SACrC,MAAM,CAAC,KAAK,EAAE,SAAiB,EAAE,EAAE;QAClC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QAC9C,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,YAAY,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC;YACzD,OAAO;QACT,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,YAAY,SAAS,gBAAgB,CAAC,CAAC;IACxE,CAAC,CAAC,CAAC;IAEL,OAAO,GAAG,CAAC;AACb,CAAC;AAED,SAAS,SAAS,CAAC,CAAU;IAC3B,OAAO;QACL,EAAE,EAAW,CAAC,CAAC,EAAE;QACjB,IAAI,EAAS,CAAC,CAAC,IAAI;QACnB,QAAQ,EAAK,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC;QACtC,KAAK,EAAQ,CAAC,CAAC,OAAO,IAAI,GAAG;QAC7B,WAAW,EAAE,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW;KAC5F,CAAC;AACJ,CAAC"}

package/dist/commands/audit.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../src/commands/audit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAIpC,wBAAgB,YAAY,IAAI,OAAO,CA4CtC"}
+{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../src/commands/audit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAKpC,wBAAgB,YAAY,IAAI,OAAO,CAyHtC"}

package/dist/commands/audit.js

@@ -1,8 +1,9 @@
 import { Command } from 'commander';
+import chalk from 'chalk';
 import { requireClient } from '../client.js';
-import { printTable, shortDate } from '../format.js';
+import { printTable, printRecord, shortDate, isJsonMode } from '../format.js';
 export function auditCommand() {
-    const cmd = new Command('audit').description('View the audit log');
+    const cmd = new Command('audit').description('View and manage the audit log');
     cmd
         .command('list')
         .description('List audit entries')
@@ -28,7 +29,68 @@ export function auditCommand() {
             ACTION: e.action,
             STATUS: e.status,
             TIMESTAMP: shortDate(e.timestamp),
-        })), ['ID', 'AGENT', 'ACTION', 'STATUS', 'TIMESTAMP']);
+        })), ['ID', 'AGENT', 'ACTION', 'STATUS', 'TIMESTAMP'], entries.map((e) => ({ ...e })));
+    });
+    cmd
+        .command('get <entryId>')
+        .description('Get a single audit entry by ID')
+        .action(async (entryId) => {
+        const client = await requireClient();
+        const entry = await client.audit.get(entryId);
+        if (isJsonMode()) {
+            console.log(JSON.stringify(entry, null, 2));
+            return;
+        }
+        printRecord({
+            entryId: entry.entryId,
+            agentId: entry.agentId,
+            agentDid: entry.agentDid ?? '',
+            grantId: entry.grantId ?? '',
+            principalId: entry.principalId ?? '',
+            action: entry.action,
+            status: entry.status,
+            hash: entry.hash ?? '',
+            previousHash: entry.prevHash ?? '',
+            timestamp: shortDate(entry.timestamp),
+            metadata: JSON.stringify(entry.metadata ?? {}),
+        });
+    });
+    cmd
+        .command('log')
+        .description('Log a new audit entry')
+        .requiredOption('--agent-id <agentId>', 'Agent ID')
+        .requiredOption('--agent-did <agentDid>', 'Agent DID (e.g. did:grantex:ag_...)')
+        .requiredOption('--grant-id <grantId>', 'Grant ID')
+        .requiredOption('--principal-id <principalId>', 'Principal ID')
+        .requiredOption('--action <action>', 'Action name (e.g. email.read, payment.initiated)')
+        .option('--status <status>', 'Status: success, failure, or blocked')
+        .option('--metadata <json>', 'JSON metadata object')
+        .action(async (opts) => {
+        const client = await requireClient();
+        let metadata;
+        if (opts.metadata !== undefined) {
+            try {
+                metadata = JSON.parse(opts.metadata);
+            }
+            catch {
+                console.error('Error: --metadata must be valid JSON.');
+                process.exit(1);
+            }
+        }
+        const entry = await client.audit.log({
+            agentId: opts.agentId,
+            agentDid: opts.agentDid,
+            grantId: opts.grantId,
+            principalId: opts.principalId,
+            action: opts.action,
+            ...(opts.status !== undefined ? { status: opts.status } : {}),
+            ...(metadata !== undefined ? { metadata } : {}),
+        });
+        if (isJsonMode()) {
+            console.log(JSON.stringify(entry, null, 2));
+            return;
+        }
+        console.log(chalk.green('✓') + ` Audit entry logged: ${entry.entryId}`);
     });
     return cmd;
 }

package/dist/commands/audit.js.map

@@ -1 +1 @@
-{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../src/commands/audit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAErD,MAAM,UAAU,YAAY;IAC1B,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC,WAAW,CAAC,oBAAoB,CAAC,CAAC;IAEnE,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,oBAAoB,CAAC;SACjC,MAAM,CAAC,mBAAmB,EAAE,oBAAoB,CAAC;SACjD,MAAM,CAAC,mBAAmB,EAAE,oBAAoB,CAAC;SACjD,MAAM,CAAC,2BAA2B,EAAE,wBAAwB,CAAC;SAC7D,MAAM,CAAC,mBAAmB,EAAE,yBAAyB,CAAC;SACtD,MAAM,CAAC,eAAe,EAAE,kCAAkC,CAAC;SAC3D,MAAM,CAAC,eAAe,EAAE,mCAAmC,CAAC;SAC5D,MAAM,CACL,KAAK,EAAE,IAON,EAAE,EAAE;QACH,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC;YAC1C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9C,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1D,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC/C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC7C,CAAC,CAAC;QACH,UAAU,CACR,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAClB,EAAE,EAAE,CAAC,CAAC,OAAO;YACb,KAAK,EAAE,CAAC,CAAC,OAAO;YAChB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SAClC,CAAC,CAAC,EACH,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,CAAC,CACjD,CAAC;IACJ,CAAC,CACF,CAAC;IAEJ,OAAO,GAAG,CAAC;AACb,CAAC"}
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../src/commands/audit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE9E,MAAM,UAAU,YAAY;IAC1B,MAAM,GAAG,GAAG,IAAI,OAAO,CAAC,OAAO,CAAC,CAAC,WAAW,CAAC,+BAA+B,CAAC,CAAC;IAE9E,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,oBAAoB,CAAC;SACjC,MAAM,CAAC,mBAAmB,EAAE,oBAAoB,CAAC;SACjD,MAAM,CAAC,mBAAmB,EAAE,oBAAoB,CAAC;SACjD,MAAM,CAAC,2BAA2B,EAAE,wBAAwB,CAAC;SAC7D,MAAM,CAAC,mBAAmB,EAAE,yBAAyB,CAAC;SACtD,MAAM,CAAC,eAAe,EAAE,kCAAkC,CAAC;SAC3D,MAAM,CAAC,eAAe,EAAE,mCAAmC,CAAC;SAC5D,MAAM,CACL,KAAK,EAAE,IAON,EAAE,EAAE;QACH,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC;YAC1C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9C,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1D,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC/C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5C,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC7C,CAAC,CAAC;QACH,UAAU,CACR,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAClB,EAAE,EAAE,CAAC,CAAC,OAAO;YACb,KAAK,EAAE,CAAC,CAAC,OAAO;YAChB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;SAClC,CAAC,CAAC,EACH,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,CAAC,EAChD,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAC/B,CAAC;IACJ,CAAC,CACF,CAAC;IAEJ,GAAG;SACA,OAAO,CAAC,eAAe,CAAC;SACxB,WAAW,CAAC,gCAAgC,CAAC;SAC7C,MAAM,CAAC,KAAK,EAAE,OAAe,EAAE,EAAE;QAChC,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC9C,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC5C,OAAO;QACT,CAAC;QACD,WAAW,CAAC;YACV,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,EAAE;YAC9B,OAAO,EAAE,KAAK,CAAC,OAAO,IAAI,EAAE;YAC5B,WAAW,EAAE,KAAK,CAAC,WAAW,IAAI,EAAE;YACpC,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,IAAI,EAAE,KAAK,CAAC,IAAI,IAAI,EAAE;YACtB,YAAY,EAAE,KAAK,CAAC,QAAQ,IAAI,EAAE;YAClC,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC;YACrC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,IAAI,EAAE,CAAC;SAC/C,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEL,GAAG;SACA,OAAO,CAAC,KAAK,CAAC;SACd,WAAW,CAAC,uBAAuB,CAAC;SACpC,cAAc,CAAC,sBAAsB,EAAE,UAAU,CAAC;SAClD,cAAc,CAAC,wBAAwB,EAAE,qCAAqC,CAAC;SAC/E,cAAc,CAAC,sBAAsB,EAAE,UAAU,CAAC;SAClD,cAAc,CAAC,8BAA8B,EAAE,cAAc,CAAC;SAC9D,cAAc,CAAC,mBAAmB,EAAE,kDAAkD,CAAC;SACvF,MAAM,CAAC,mBAAmB,EAAE,sCAAsC,CAAC;SACnE,MAAM,CAAC,mBAAmB,EAAE,sBAAsB,CAAC;SACnD,MAAM,CACL,KAAK,EAAE,IAQN,EAAE,EAAE;QACH,MAAM,MAAM,GAAG,MAAM,aAAa,EAAE,CAAC;QAErC,IAAI,QAA6C,CAAC;QAClD,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;YAChC,IAAI,CAAC;gBACH,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAA4B,CAAC;YAClE,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,KAAK,CAAC,uCAAuC,CAAC,CAAC;gBACvD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC;YACnC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,GAAG,CAAC,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,MAA2C,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAClG,GAAG,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAChD,CAAC,CAAC;QAEH,IAAI,UAAU,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC5C,OAAO;QACT,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,wBAAwB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IAC1E,CAAC,CACF,CAAC;IAEJ,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/commands/authorize.d.ts

@@ -0,0 +1,3 @@
+import { Command } from 'commander';
+export declare function authorizeCommand(): Command;
+//# sourceMappingURL=authorize.d.ts.map

package/dist/commands/authorize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authorize.d.ts","sourceRoot":"","sources":["../../src/commands/authorize.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAKpC,wBAAgB,gBAAgB,IAAI,OAAO,CAiD1C"}

package/dist/commands/authorize.js

@@ -0,0 +1,42 @@
+import { Command } from 'commander';
+import chalk from 'chalk';
+import { requireClient } from '../client.js';
+import { printRecord, shortDate, isJsonMode } from '../format.js';
+export function authorizeCommand() {
+    const cmd = new Command('authorize').description('Start an authorization request');
+    cmd
+        .requiredOption('--agent <agentId>', 'Agent ID to authorize')
+        .requiredOption('--principal <principalId>', 'Principal (user) identifier')
+        .requiredOption('--scopes <scopes>', 'Comma-separated scopes to request')
+        .option('--redirect-uri <uri>', 'Redirect URI for callback')
+        .option('--expires-in <duration>', 'Expiry duration (e.g. 1h, 24h)')
+        .option('--code-challenge <challenge>', 'PKCE S256 code challenge')
+        .action(async (opts) => {
+        const client = await requireClient();
+        const res = await client.authorize({
+            agentId: opts.agent,
+            userId: opts.principal,
+            scopes: opts.scopes.split(',').map((s) => s.trim()),
+            ...(opts.redirectUri !== undefined ? { redirectUri: opts.redirectUri } : {}),
+            ...(opts.expiresIn !== undefined ? { expiresIn: opts.expiresIn } : {}),
+            ...(opts.codeChallenge !== undefined ? { codeChallenge: opts.codeChallenge, codeChallengeMethod: 'S256' } : {}),
+        });
+        if (isJsonMode()) {
+            console.log(JSON.stringify(res, null, 2));
+            return;
+        }
+        console.log(chalk.green('✓') + ` Authorization request created.`);
+        const display = {
+            authRequestId: res.authRequestId,
+            consentUrl: res.consentUrl,
+            expiresAt: shortDate(res.expiresAt),
+        };
+        if ('code' in res && res.code) {
+            display.code = res.code;
+            console.log(chalk.yellow('  (sandbox auto-approved — code returned directly)'));
+        }
+        printRecord(display);
+    });
+    return cmd;
+}
+//# sourceMappingURL=authorize.js.map