@groundnuty/macf 0.2.0-rc.0

package/dist/cli/prompt.js

@@ -0,0 +1,109 @@
+/**
+ * Terminal prompt helpers.
+ *
+ * `promptPassword` reads a passphrase from stdin with each character echoed
+ * as `*` so the user gets visual feedback for length and typos but the
+ * real text never reaches the terminal scrollback or screen recordings.
+ *
+ * Uses raw mode (byte-by-byte) when stdin is a TTY. Falls back to plain
+ * readline (unmasked) when stdin is piped — masking piped input is both
+ * impossible and unnecessary since there's no observer.
+ */
+import { createInterface } from 'node:readline';
+export class PromptCancelled extends Error {
+    constructor() {
+        super('Prompt cancelled by user (Ctrl+C)');
+        this.name = 'PromptCancelled';
+    }
+}
+/**
+ * Check if a readable stream is a TTY that supports raw mode.
+ * Typed loosely because Node's type def for Readable doesn't include TTY fields.
+ */
+function isRawModeTTY(stream) {
+    return Boolean(stream.isTTY) && typeof stream.setRawMode === 'function';
+}
+/**
+ * Prompt the user for a password, echoing '*' per character.
+ *
+ * Rejects with PromptCancelled on Ctrl+C. Restores TTY state on success,
+ * cancel, and error paths.
+ */
+export function promptPassword(options) {
+    const input = options.input ?? process.stdin;
+    const output = options.output ?? process.stderr;
+    // Non-TTY (piped/redirected stdin): fall back to plain readline.
+    // Masking is meaningless when there's no terminal observer.
+    if (!isRawModeTTY(input)) {
+        return new Promise((resolve) => {
+            const rl = createInterface({ input, output });
+            rl.question(options.message, (answer) => {
+                rl.close();
+                resolve(answer);
+            });
+        });
+    }
+    return new Promise((resolve, reject) => {
+        output.write(options.message);
+        let settled = false;
+        let buffer = '';
+        const finish = (resultOrErr) => {
+            if (settled)
+                return;
+            settled = true;
+            input.setRawMode(false);
+            input.pause();
+            input.removeListener('data', onData);
+            if (resultOrErr instanceof Error) {
+                reject(resultOrErr);
+            }
+            else {
+                resolve(resultOrErr);
+            }
+        };
+        const onData = (chunk) => {
+            const bytes = chunk;
+            for (let i = 0; i < bytes.length; i++) {
+                const b = bytes[i];
+                // Enter (LF or CR) → submit
+                if (b === 0x0a || b === 0x0d) {
+                    output.write('\n');
+                    finish(buffer);
+                    return;
+                }
+                // Ctrl+C (0x03) → cancel
+                if (b === 0x03) {
+                    output.write('^C\n');
+                    finish(new PromptCancelled());
+                    return;
+                }
+                // Ctrl+D (0x04) → treat as cancel (EOF in raw mode). Without this,
+                // an empty-buffer EOF would leak through as a silent empty password.
+                if (b === 0x04) {
+                    output.write('\n');
+                    finish(new PromptCancelled());
+                    return;
+                }
+                // Backspace (0x7f DEL on most terminals, 0x08 legacy)
+                if (b === 0x7f || b === 0x08) {
+                    if (buffer.length > 0) {
+                        buffer = buffer.slice(0, -1);
+                        // Erase one asterisk: backspace, space, backspace
+                        output.write('\b \b');
+                    }
+                    continue;
+                }
+                // Other control chars — ignore
+                if (b < 0x20)
+                    continue;
+                // Printable character — append and echo '*'
+                buffer += String.fromCharCode(b);
+                output.write('*');
+            }
+        };
+        input.setRawMode(true);
+        input.resume();
+        input.on('data', onData);
+    });
+}
+//# sourceMappingURL=prompt.js.map

package/dist/cli/prompt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompt.js","sourceRoot":"","sources":["../../src/cli/prompt.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AACH,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAEhD,MAAM,OAAO,eAAgB,SAAQ,KAAK;IACxC;QACE,KAAK,CAAC,mCAAmC,CAAC,CAAC;QAC3C,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;IAChC,CAAC;CACF;AAED;;;GAGG;AACH,SAAS,YAAY,CAAC,MAAyB;IAC7C,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,OAAO,MAAM,CAAC,UAAU,KAAK,UAAU,CAAC;AAC1E,CAAC;AAQD;;;;;GAKG;AACH,MAAM,UAAU,cAAc,CAAC,OAAsB;IACnD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,OAAO,CAAC,KAAK,CAAC;IAC7C,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC;IAEhD,iEAAiE;IACjE,4DAA4D;IAC5D,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;YAC9C,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,MAAM,EAAE,EAAE;gBACtC,EAAE,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,CAAC,MAAM,CAAC,CAAC;YAClB,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAE9B,IAAI,OAAO,GAAG,KAAK,CAAC;QACpB,IAAI,MAAM,GAAG,EAAE,CAAC;QAEhB,MAAM,MAAM,GAAG,CAAC,WAA2B,EAAQ,EAAE;YACnD,IAAI,OAAO;gBAAE,OAAO;YACpB,OAAO,GAAG,IAAI,CAAC;YACf,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YACxB,KAAK,CAAC,KAAK,EAAE,CAAC;YACd,KAAK,CAAC,cAAc,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;YACrC,IAAI,WAAW,YAAY,KAAK,EAAE,CAAC;gBACjC,MAAM,CAAC,WAAW,CAAC,CAAC;YACtB,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,WAAW,CAAC,CAAC;YACvB,CAAC;QACH,CAAC,CAAC;QAEF,MAAM,MAAM,GAAG,CAAC,KAAa,EAAQ,EAAE;YACrC,MAAM,KAAK,GAAG,KAAK,CAAC;YACpB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACtC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;gBAEpB,4BAA4B;gBAC5B,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC;oBAC7B,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;oBACnB,MAAM,CAAC,MAAM,CAAC,CAAC;oBACf,OAAO;gBACT,CAAC;gBAED,yBAAyB;gBACzB,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC;oBACf,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;oBACrB,MAAM,CAAC,IAAI,eAAe,EAAE,CAAC,CAAC;oBAC9B,OAAO;gBACT,CAAC;gBAED,mEAAmE;gBACnE,qEAAqE;gBACrE,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC;oBACf,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;oBACnB,MAAM,CAAC,IAAI,eAAe,EAAE,CAAC,CAAC;oBAC9B,OAAO;gBACT,CAAC;gBAED,sDAAsD;gBACtD,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC;oBAC7B,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBACtB,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;wBAC7B,kDAAkD;wBAClD,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;oBACxB,CAAC;oBACD,SAAS;gBACX,CAAC;gBAED,+BAA+B;gBAC/B,IAAI,CAAC,GAAG,IAAI;oBAAE,SAAS;gBAEvB,4CAA4C;gBAC5C,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;gBACjC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACpB,CAAC;QACH,CAAC,CAAC;QAEF,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QACvB,KAAK,CAAC,MAAM,EAAE,CAAC;QACf,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/cli/registry-helper.d.ts

@@ -0,0 +1,11 @@
+import type { MacfAgentConfig } from './config.js';
+import type { GitHubVariablesClient } from '@groundnuty/macf-core';
+/**
+ * Build the GitHub Variables API path prefix from agent config.
+ */
+export declare function registryPathPrefix(registry: MacfAgentConfig['registry']): string;
+/**
+ * Create a GitHubVariablesClient from agent config and token.
+ */
+export declare function createClientFromConfig(registry: MacfAgentConfig['registry'], token: string): GitHubVariablesClient;
+//# sourceMappingURL=registry-helper.d.ts.map

package/dist/cli/registry-helper.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"registry-helper.d.ts","sourceRoot":"","sources":["../../src/cli/registry-helper.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAEnD,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AAEnE;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,eAAe,CAAC,UAAU,CAAC,GAAG,MAAM,CAMhF;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,QAAQ,EAAE,eAAe,CAAC,UAAU,CAAC,EACrC,KAAK,EAAE,MAAM,GACZ,qBAAqB,CAEvB"}

package/dist/cli/registry-helper.js

@@ -0,0 +1,18 @@
+import { createGitHubClient } from '@groundnuty/macf-core';
+/**
+ * Build the GitHub Variables API path prefix from agent config.
+ */
+export function registryPathPrefix(registry) {
+    switch (registry.type) {
+        case 'org': return `/orgs/${registry.org}`;
+        case 'profile': return `/repos/${registry.user}/${registry.user}`;
+        case 'repo': return `/repos/${registry.owner}/${registry.repo}`;
+    }
+}
+/**
+ * Create a GitHubVariablesClient from agent config and token.
+ */
+export function createClientFromConfig(registry, token) {
+    return createGitHubClient(registryPathPrefix(registry), token);
+}
+//# sourceMappingURL=registry-helper.js.map

package/dist/cli/registry-helper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"registry-helper.js","sourceRoot":"","sources":["../../src/cli/registry-helper.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAG3D;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAAC,QAAqC;IACtE,QAAQ,QAAQ,CAAC,IAAI,EAAE,CAAC;QACtB,KAAK,KAAK,CAAC,CAAC,OAAO,SAAS,QAAQ,CAAC,GAAG,EAAE,CAAC;QAC3C,KAAK,SAAS,CAAC,CAAC,OAAO,UAAU,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC;QAClE,KAAK,MAAM,CAAC,CAAC,OAAO,UAAU,QAAQ,CAAC,KAAK,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC;IAClE,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,QAAqC,EACrC,KAAa;IAEb,OAAO,kBAAkB,CAAC,kBAAkB,CAAC,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAC;AACjE,CAAC"}

package/dist/cli/rules.d.ts

@@ -0,0 +1,39 @@
+/**
+ * Locate the CLI package root by walking up from this module until a
+ * package.json is found. Works for both the dev layout (running from
+ * src/cli/) and the installed layout (running from dist/cli/).
+ */
+export declare function findCliPackageRoot(startUrl?: string): string;
+/**
+ * Path to the canonical rules directory shipped with the CLI.
+ */
+export declare function canonicalRulesDir(packageRoot?: string): string;
+/**
+ * Copy every .md file from the canonical rules dir to <workspace>/.claude/rules/.
+ * Existing files are overwritten (the canonical source wins).
+ *
+ * Returns the list of copied filenames (basenames). Returns empty array if
+ * the canonical dir doesn't exist (e.g. CLI installed without the rules
+ * payload — unlikely but safe to handle).
+ */
+export declare function copyCanonicalRules(workspaceDir: string, options?: {
+    readonly canonicalDir?: string;
+}): readonly string[];
+/**
+ * Path to the canonical scripts directory shipped with the CLI.
+ */
+export declare function canonicalScriptsDir(packageRoot?: string): string;
+/**
+ * Copy every .sh file from the canonical scripts dir to
+ * <workspace>/.claude/scripts/. Preserves executable mode (0o755).
+ *
+ * Unlike copyCanonicalRules, no header is injected — shell scripts
+ * can't take HTML comments, and the shebang + usage comment in the
+ * source already documents managed status.
+ *
+ * Returns copied basenames. Empty array if the canonical dir is missing.
+ */
+export declare function copyCanonicalScripts(workspaceDir: string, options?: {
+    readonly canonicalDir?: string;
+}): readonly string[];
+//# sourceMappingURL=rules.d.ts.map

package/dist/cli/rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.d.ts","sourceRoot":"","sources":["../../src/cli/rules.ts"],"names":[],"mappings":"AA4BA;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,GAAE,MAAwB,GAAG,MAAM,CAU7E;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,WAAW,GAAE,MAA6B,GAAG,MAAM,CAEpF;AAED;;;;;;;GAOG;AACH,wBAAgB,kBAAkB,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,GAAE;IAChE,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAC;CAC3B,GAAG,SAAS,MAAM,EAAE,CAmBzB;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,WAAW,GAAE,MAA6B,GAAG,MAAM,CAEtF;AAED;;;;;;;;;GASG;AACH,wBAAgB,oBAAoB,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,GAAE;IAClE,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAC;CAC3B,GAAG,SAAS,MAAM,EAAE,CAiBzB"}

package/dist/cli/rules.js

@@ -0,0 +1,112 @@
+/**
+ * Distribute canonical assets (coordination rules, helper scripts) from
+ * the CLI package to each agent workspace's .claude/ subdirectory.
+ *
+ * The canonical files live at <package-root>/plugin/rules/*.md and
+ * <package-root>/scripts/*.sh, shipped with the CLI (their version is
+ * tied to the CLI version). On `macf init` we copy them once; on
+ * `macf update` we re-copy (overwriting) so a CLI version bump
+ * propagates updates to existing workspaces.
+ *
+ * Workspace rule copies get a header warning against direct edits.
+ * Workspace script copies preserve 0755 mode so the hooks that call
+ * them can execute.
+ */
+import { fileURLToPath } from 'node:url';
+import { dirname, join, resolve } from 'node:path';
+import { chmodSync, copyFileSync, existsSync, mkdirSync, readFileSync, readdirSync, writeFileSync } from 'node:fs';
+const MANAGED_HEADER = [
+    '<!--',
+    '  This file is managed by `macf`. Do not edit directly — edits are',
+    '  overwritten on the next `macf update`. The canonical source lives at',
+    '  groundnuty/macf:plugin/rules/. To change a rule, file an issue or PR',
+    '  against that file in the macf repo, then run `macf update` here.',
+    '-->',
+    '',
+].join('\n');
+/**
+ * Locate the CLI package root by walking up from this module until a
+ * package.json is found. Works for both the dev layout (running from
+ * src/cli/) and the installed layout (running from dist/cli/).
+ */
+export function findCliPackageRoot(startUrl = import.meta.url) {
+    let dir = dirname(fileURLToPath(startUrl));
+    for (;;) {
+        if (existsSync(join(dir, 'package.json')))
+            return dir;
+        const parent = dirname(dir);
+        if (parent === dir) {
+            throw new Error(`Could not locate CLI package root walking up from ${fileURLToPath(startUrl)}`);
+        }
+        dir = parent;
+    }
+}
+/**
+ * Path to the canonical rules directory shipped with the CLI.
+ */
+export function canonicalRulesDir(packageRoot = findCliPackageRoot()) {
+    return join(packageRoot, 'plugin', 'rules');
+}
+/**
+ * Copy every .md file from the canonical rules dir to <workspace>/.claude/rules/.
+ * Existing files are overwritten (the canonical source wins).
+ *
+ * Returns the list of copied filenames (basenames). Returns empty array if
+ * the canonical dir doesn't exist (e.g. CLI installed without the rules
+ * payload — unlikely but safe to handle).
+ */
+export function copyCanonicalRules(workspaceDir, options = {}) {
+    const sourceDir = options.canonicalDir ?? canonicalRulesDir();
+    if (!existsSync(sourceDir))
+        return [];
+    const targetDir = join(resolve(workspaceDir), '.claude', 'rules');
+    mkdirSync(targetDir, { recursive: true });
+    const copied = [];
+    for (const entry of readdirSync(sourceDir, { withFileTypes: true })) {
+        if (!entry.isFile() || !entry.name.endsWith('.md'))
+            continue;
+        const src = join(sourceDir, entry.name);
+        const dst = join(targetDir, entry.name);
+        const content = readFileSync(src, 'utf-8');
+        // Avoid double-prepending the header on re-copy.
+        const out = content.startsWith('<!--') ? content : MANAGED_HEADER + content;
+        writeFileSync(dst, out);
+        copied.push(entry.name);
+    }
+    return copied;
+}
+/**
+ * Path to the canonical scripts directory shipped with the CLI.
+ */
+export function canonicalScriptsDir(packageRoot = findCliPackageRoot()) {
+    return join(packageRoot, 'scripts');
+}
+/**
+ * Copy every .sh file from the canonical scripts dir to
+ * <workspace>/.claude/scripts/. Preserves executable mode (0o755).
+ *
+ * Unlike copyCanonicalRules, no header is injected — shell scripts
+ * can't take HTML comments, and the shebang + usage comment in the
+ * source already documents managed status.
+ *
+ * Returns copied basenames. Empty array if the canonical dir is missing.
+ */
+export function copyCanonicalScripts(workspaceDir, options = {}) {
+    const sourceDir = options.canonicalDir ?? canonicalScriptsDir();
+    if (!existsSync(sourceDir))
+        return [];
+    const targetDir = join(resolve(workspaceDir), '.claude', 'scripts');
+    mkdirSync(targetDir, { recursive: true });
+    const copied = [];
+    for (const entry of readdirSync(sourceDir, { withFileTypes: true })) {
+        if (!entry.isFile() || !entry.name.endsWith('.sh'))
+            continue;
+        const src = join(sourceDir, entry.name);
+        const dst = join(targetDir, entry.name);
+        copyFileSync(src, dst);
+        chmodSync(dst, 0o755);
+        copied.push(entry.name);
+    }
+    return copied;
+}
+//# sourceMappingURL=rules.js.map

package/dist/cli/rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.js","sourceRoot":"","sources":["../../src/cli/rules.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AACH,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAEnH,MAAM,cAAc,GAAG;IACrB,MAAM;IACN,oEAAoE;IACpE,wEAAwE;IACxE,wEAAwE;IACxE,oEAAoE;IACpE,KAAK;IACL,EAAE;CACH,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAEb;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAAC,WAAmB,MAAM,CAAC,IAAI,CAAC,GAAG;IACnE,IAAI,GAAG,GAAG,OAAO,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC;IAC3C,SAAS,CAAC;QACR,IAAI,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;YAAE,OAAO,GAAG,CAAC;QACtD,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;QAC5B,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,qDAAqD,aAAa,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QAClG,CAAC;QACD,GAAG,GAAG,MAAM,CAAC;IACf,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,cAAsB,kBAAkB,EAAE;IAC1E,OAAO,IAAI,CAAC,WAAW,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,kBAAkB,CAAC,YAAoB,EAAE,UAErD,EAAE;IACJ,MAAM,SAAS,GAAG,OAAO,CAAC,YAAY,IAAI,iBAAiB,EAAE,CAAC;IAC9D,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,OAAO,EAAE,CAAC;IAEtC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IAClE,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE1C,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,MAAM,KAAK,IAAI,WAAW,CAAC,SAAS,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;QACpE,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC;YAAE,SAAS;QAC7D,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QACxC,MAAM,OAAO,GAAG,YAAY,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;QAC3C,iDAAiD;QACjD,MAAM,GAAG,GAAG,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,cAAc,GAAG,OAAO,CAAC;QAC5E,aAAa,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACxB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,cAAsB,kBAAkB,EAAE;IAC5E,OAAO,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;AACtC,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,oBAAoB,CAAC,YAAoB,EAAE,UAEvD,EAAE;IACJ,MAAM,SAAS,GAAG,OAAO,CAAC,YAAY,IAAI,mBAAmB,EAAE,CAAC;IAChE,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,OAAO,EAAE,CAAC;IAEtC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;IACpE,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE1C,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,MAAM,KAAK,IAAI,WAAW,CAAC,SAAS,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;QACpE,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC;YAAE,SAAS;QAC7D,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QACxC,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACvB,SAAS,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QACtB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/cli/settings-writer.d.ts

@@ -0,0 +1,97 @@
+/**
+ * The command path written into settings.json. Workspace-relative so
+ * it matches what `copyCanonicalScripts` places at
+ * `<workspace>/.claude/scripts/check-gh-token.sh`.
+ */
+export declare const MACF_HOOK_COMMAND = ".claude/scripts/check-gh-token.sh";
+/**
+ * Permission patterns pre-approving the 4 `macf-agent` plugin skills.
+ * Without these, every first invocation of a skill (e.g. `/macf-status`
+ * during the SessionStart auto-pickup hook) fires an interactive
+ * approval dialog — blocking autonomy for the time operator takes to
+ * click through. See macf#189 sub-item 2 (bilateral e2e demo friction
+ * point: operator had to approve 4-5 dialogs per fresh workspace).
+ *
+ * Concrete patterns (not a wildcard `Skill(macf-agent:*)`): operator
+ * deliberately installed the plugin at v0.1.N, so pre-trusting THE
+ * SKILLS CURRENTLY KNOWN TO EXIST at this CLI version is safe. A
+ * future plugin version adding new skills would need a `macf update`
+ * run — which refreshes these patterns from the updated constant —
+ * before the new skills auto-approve. Wildcard would auto-approve
+ * anything shipped under the plugin namespace including future
+ * unreviewed additions; we opt out of that security posture.
+ *
+ * Keep in lockstep with the 4 skills shipped by
+ * `groundnuty/macf-marketplace/macf-agent/skills/`. When plugin adds
+ * a skill, add its pattern here + bump CLI version.
+ */
+export declare const PLUGIN_SKILL_PERMISSIONS: readonly string[];
+/**
+ * Sandbox filesystem read-allow pattern for Claude Code's Bash-tool
+ * harness. Every Bash invocation's spawned shell reads `/proc/self/fd/3`
+ * (or higher fds in future builds) for stdin / command-input passed
+ * by the harness. Without this pattern in the sandbox allowlist, the
+ * read is denied → `zsh:4: permission denied: /proc/self/fd/3` →
+ * every Bash tool call fails (or falls back to
+ * `dangerouslyDisableSandbox`, defeating isolation). Hit every MACF
+ * agent before macf#200.
+ *
+ * Claude Code's `sandbox.filesystem.allowRead` takes **literal path
+ * prefixes**, not globs. Bare `/proc/self/fd` matches every
+ * descriptor at any depth (`/proc/self/fd/3`, `/proc/self/fd/4`, ...)
+ * via prefix semantics. An earlier draft used `/proc/self/fd/**` on
+ * the assumption it was a glob; it isn't — the double-star was
+ * treated as a literal and didn't match. See macf#208 for the
+ * empirical surfacing of the bug.
+ */
+export declare const SANDBOX_FD_READ_PATTERN = "/proc/self/fd";
+/**
+ * Read `.claude/settings.json`'s `sandbox.filesystem.allowRead` array
+ * as a list of strings. Returns an empty array if the file doesn't
+ * exist or the nested shape is absent/alien. Throws on malformed
+ * JSON — consistent with `installSandboxFdAllowRead`'s posture (we
+ * don't silently treat a broken file as "no entries"; that would
+ * mask operator-authored state).
+ *
+ * Used by `macf doctor` (macf#202) to report whether the workspace
+ * has the `/proc/self/fd` prefix pattern without duplicating the
+ * JSON-read + deep-narrow logic in two places.
+ */
+export declare function getSandboxAllowRead(workspaceDir: string): readonly string[];
+/**
+ * Install (or refresh) the `/proc/self/fd` entry in
+ * `.claude/settings.json`'s `sandbox.filesystem.allowRead` array.
+ * Creates each nested key if absent. Idempotent — repeated calls
+ * don't duplicate. Operator-authored `allowRead` entries are
+ * preserved; stale MACF-managed patterns (see
+ * MACF_LEGACY_FD_PATTERNS) are dropped before the current pattern
+ * is installed.
+ *
+ * Opt-out: if `MACF_SANDBOX_FD_FIX_SKIP` is `1` or `true` at call
+ * time (during `macf init` / `macf update`), no change is made. Lets
+ * operators manage their own sandbox block entirely. Accepts both
+ * shapes to stay aligned with `MACF_OTEL_DISABLED` (see
+ * `claude-sh.ts` — same family of opt-out env knobs).
+ *
+ * See macf#200 (original fd-deny bug), macf#208 (pattern-literal fix).
+ */
+export declare function installSandboxFdAllowRead(workspaceDir: string): void;
+/**
+ * Install (or refresh) the MACF plugin-skill pre-approval entries in
+ * `.claude/settings.json`'s `permissions.allow` array. Idempotent:
+ * stale entries (e.g. from a prior CLI version that listed a since-
+ * removed skill) are dropped + replaced with the current set.
+ * Non-MACF entries in `permissions.allow` are preserved.
+ *
+ * Creates the `.claude/` directory + settings.json if missing.
+ */
+export declare function installPluginSkillPermissions(workspaceDir: string): void;
+/**
+ * Install (or refresh) the MACF PreToolUse hook entry for
+ * `check-gh-token.sh` in `<workspaceDir>/.claude/settings.json`.
+ * Creates the `.claude/` directory and the file if either is missing.
+ *
+ * Idempotent: repeated calls don't duplicate the entry.
+ */
+export declare function installGhTokenHook(workspaceDir: string): void;
+//# sourceMappingURL=settings-writer.d.ts.map

package/dist/cli/settings-writer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"settings-writer.d.ts","sourceRoot":"","sources":["../../src/cli/settings-writer.ts"],"names":[],"mappings":"AAuBA;;;;GAIG;AACH,eAAO,MAAM,iBAAiB,sCAAsC,CAAC;AA0DrE;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,eAAO,MAAM,wBAAwB,EAAE,SAAS,MAAM,EAKrD,CAAC;AAEF;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,uBAAuB,kBAAkB,CAAC;AAEvD;;;;;;;;;;;GAWG;AACH,wBAAgB,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,SAAS,MAAM,EAAE,CAS3E;AAaD;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAgB,yBAAyB,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CA+CpE;AASD;;;;;;;;GAQG;AACH,wBAAgB,6BAA6B,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CA+BxE;AAED;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,CAkC7D"}