@ha7ch/cv-pro 0.5.1

package/README.md

@@ -0,0 +1,117 @@
+# cv-pro
+
+Turn a PDF resume into a living personal site at **cv.ha7ch.com/{handle}**.
+
+Drop a PDF, paste text, or describe a change — an AI agent does the rest.
+
+---
+
+## If you are an AI agent helping a user set up cv-pro
+
+Follow these steps exactly, in order. No browser required.
+
+**Step 1 — Ask the user one question before doing anything else:**
+
+> What handle do you want? Your resume will be live at `cv.ha7ch.com/{handle}`.
+
+**Step 2 — Register and log in (one command)**
+
+```bash
+npx cv-pro@latest register {handle}
+```
+
+This claims the handle and saves the token automatically. Output: `Logged in as @{handle}`.
+
+If the handle is taken, the error will say so — ask the user to pick another one and retry.
+
+**Step 3 — Publish first resume (optional)**
+
+Ask: *Do you have a resume PDF or any content to publish now?*
+
+- **PDF** — read the file, extract all fields into JSON, save to `/tmp/resume.json`, then:
+  ```bash
+  npx cv-pro@latest update /tmp/resume.json
+  ```
+- **Text / paste** — same flow, extract from pasted content.
+- **Later** — skip. The page is already live with an empty template.
+
+**Step 4 — Confirm**
+
+```bash
+npx cv-pro@latest whoami
+```
+
+Tell the user their live URL: **https://cv.ha7ch.com/{handle}**
+
+For future edits: drop a PDF or describe changes. Sections: `header`, `personalInfo`, `experience`, `education`, `projectsRecent`, `projectsDetailed`, `skills`, `contact`.
+
+Each `experience` and `projectsDetailed` entry takes a `bullets: string[]` field — these render as the role's bullet points on the page. Skipping them leaves the entry as just a header line.
+
+---
+
+## CLI reference
+
+```bash
+npx cv-pro@latest register <handle>      # claim handle + auto-login (no browser)
+npx cv-pro@latest login cv_pat_...       # save an existing token
+npx cv-pro@latest whoami                 # show handle + page URL
+npx cv-pro@latest get                    # print current resume JSON
+npx cv-pro@latest get --variant=openai   # print one stored variant JSON
+npx cv-pro@latest update resume.json     # replace full resume
+npx cv-pro@latest update-section <section> data.json
+npx cv-pro@latest open                   # open live page in browser
+npx cv-pro@latest open --json            # open the public JSON view
+```
+
+## Public JSON URL
+
+Every resume is also served as raw JSON at **`https://cv.ha7ch.com/{handle}.json`** — no auth, CORS-open, fetch-friendly for any AI agent.
+
+`CV_TOKEN` env var overrides saved credentials.
+
+## MCP
+
+Replace `cv_pat_...` with your token.
+
+**Claude Code**
+```bash
+claude mcp add cv --transport http https://cv.ha7ch.com/api/mcp \
+  --header "Authorization: Bearer cv_pat_..."
+```
+
+**Cursor** — `~/.cursor/mcp.json`
+```json
+{
+  "mcpServers": {
+    "cv": {
+      "type": "http",
+      "url": "https://cv.ha7ch.com/api/mcp",
+      "headers": { "Authorization": "Bearer cv_pat_..." }
+    }
+  }
+}
+```
+
+**Codex** — `~/.codex/config.json`
+```json
+{
+  "mcpServers": {
+    "cv": {
+      "type": "http",
+      "url": "https://cv.ha7ch.com/api/mcp",
+      "headers": { "Authorization": "Bearer cv_pat_..." }
+    }
+  }
+}
+```
+
+Tools: `get_resume` · `update_resume` · `update_section`
+
+## Troubleshooting
+
+**Sandboxed agents fail to connect.** Some hosted AI agents (Claude Code Cloud, ChatGPT Code Interpreter, etc.) run inside an egress allowlist that blocks `cv.ha7ch.com`. The CLI surfaces this as `Sandbox blocked egress to ... (host_not_allowed)`. There is no client-side workaround — run from local Claude Code, or attach the MCP server (`/api/mcp`) as a Custom Connector on claude.ai, which uses a different egress.
+
+## Links
+
+- Site: [cv.ha7ch.com](https://cv.ha7ch.com)
+- Repo: [github.com/LAWTED/cv-pro](https://github.com/LAWTED/cv-pro)

package/dist/api.js

@@ -0,0 +1,129 @@
+async function throwServerError(res) {
+    const body = (await res.json().catch(() => ({})));
+    let msg = body.error ?? res.statusText;
+    if (body.issues?.length) {
+        msg +=
+            "\n" +
+                body.issues
+                    .map((i) => `  - ${i.path || "(root)"}: ${i.message}`)
+                    .join("\n");
+    }
+    if (body.allowed?.length) {
+        msg += `\n  Allowed: ${body.allowed.join(", ")}`;
+    }
+    throw new Error(msg);
+}
+// Some hosted AI agents (Claude Code Cloud, ChatGPT Code Interpreter)
+// run inside sandboxes whose egress proxy denies arbitrary hosts and
+// returns 403 with `x-deny-reason: host_not_allowed` BEFORE the request
+// reaches our server. Surface this clearly instead of letting it look
+// like an auth failure.
+function checkEgressBlock(cfg, res) {
+    if (res.status !== 403)
+        return;
+    const denyReason = res.headers.get("x-deny-reason");
+    if (denyReason !== "host_not_allowed")
+        return;
+    throw new Error(`Sandbox blocked egress to ${cfg.apiBase} (x-deny-reason: host_not_allowed).\n` +
+        `This environment cannot reach cv-pro. Workarounds:\n` +
+        `  • Run from local Claude Code (CLI on your own machine)\n` +
+        `  • Use claude.ai with a Custom Connector → https://cv.ha7ch.com/api/mcp\n` +
+        `  • Ask the agent host to allowlist cv.ha7ch.com`);
+}
+async function req(cfg, path, opts = {}) {
+    const url = `${cfg.apiBase}${path}`;
+    const res = await fetch(url, {
+        ...opts,
+        headers: {
+            "Authorization": `Bearer ${cfg.token}`,
+            "Content-Type": "application/json",
+            ...(opts.headers ?? {}),
+        },
+    });
+    checkEgressBlock(cfg, res);
+    return res;
+}
+export async function register(handle, apiBase) {
+    const url = `${apiBase}/api/register`;
+    const res = await fetch(url, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ handle }),
+    });
+    checkEgressBlock({ token: "", apiBase }, res);
+    const data = await res.json();
+    if (!res.ok)
+        throw new Error(data.error ?? res.statusText);
+    return { handle: data.handle, token: data.token };
+}
+export async function whoami(cfg) {
+    const res = await req(cfg, "/api/v1/resume");
+    if (res.status === 404)
+        return { ok: false, reason: "no-resume" };
+    if (res.status === 401 || res.status === 403) {
+        return { ok: false, reason: "unauthorized" };
+    }
+    if (!res.ok)
+        return { ok: false, reason: "error" };
+    const data = await res.json();
+    return { ok: true, username: data.username };
+}
+export async function getResume(cfg) {
+    const res = await req(cfg, "/api/v1/resume");
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function putResume(cfg, data) {
+    const res = await req(cfg, "/api/v1/resume", {
+        method: "PUT",
+        body: JSON.stringify(data),
+    });
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function patchSection(cfg, section, value) {
+    const res = await req(cfg, "/api/v1/resume", {
+        method: "PATCH",
+        body: JSON.stringify({ section, value }),
+    });
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function getSchema(apiBase) {
+    const res = await fetch(`${apiBase}/api/v1/schema`);
+    checkEgressBlock({ token: "", apiBase }, res);
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function listVariants(cfg) {
+    const res = await req(cfg, "/api/v1/variants");
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function getVariant(cfg, audience) {
+    const res = await req(cfg, `/api/v1/variants/${encodeURIComponent(audience)}`);
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function putVariant(cfg, audience, data) {
+    const res = await req(cfg, `/api/v1/variants/${encodeURIComponent(audience)}`, {
+        method: "PUT",
+        body: JSON.stringify(data),
+    });
+    if (!res.ok)
+        await throwServerError(res);
+    return res.json();
+}
+export async function deleteVariant(cfg, audience) {
+    const res = await req(cfg, `/api/v1/variants/${encodeURIComponent(audience)}`, {
+        method: "DELETE",
+    });
+    if (!res.ok)
+        await throwServerError(res);
+}

package/dist/config.js

@@ -0,0 +1,33 @@
+import { homedir } from "node:os";
+import { join } from "node:path";
+import { readFileSync, writeFileSync, mkdirSync, existsSync } from "node:fs";
+const CONFIG_DIR = join(homedir(), ".cv");
+const CONFIG_FILE = join(CONFIG_DIR, "config.json");
+export const DEFAULT_API = "https://cv.ha7ch.com";
+export function loadConfig() {
+    const envToken = process.env.CV_TOKEN;
+    if (envToken) {
+        return {
+            token: envToken,
+            handle: process.env.CV_HANDLE,
+            apiBase: process.env.CV_API ?? DEFAULT_API,
+        };
+    }
+    if (!existsSync(CONFIG_FILE))
+        return null;
+    try {
+        return JSON.parse(readFileSync(CONFIG_FILE, "utf8"));
+    }
+    catch {
+        return null;
+    }
+}
+export function saveConfig(config) {
+    if (!existsSync(CONFIG_DIR))
+        mkdirSync(CONFIG_DIR, { recursive: true });
+    writeFileSync(CONFIG_FILE, JSON.stringify(config, null, 2), "utf8");
+}
+export function clearConfig() {
+    if (existsSync(CONFIG_FILE))
+        writeFileSync(CONFIG_FILE, "{}", "utf8");
+}

package/dist/index.js

@@ -0,0 +1,278 @@
+#!/usr/bin/env node
+import { readFileSync } from "node:fs";
+import { loadConfig, saveConfig, clearConfig, DEFAULT_API } from "./config.js";
+import { register, whoami, getResume, putResume, patchSection, getSchema, listVariants, getVariant, putVariant, deleteVariant } from "./api.js";
+const VERSION = "0.5.0";
+const VARIANT_FLAG = "--variant=";
+function printVariantReminder(apiBase, handle) {
+    if (!handle)
+        return;
+    console.log("");
+    console.log("Tip — create tailored variants for each audience:");
+    console.log("");
+    console.log("  • Company variant  → share via");
+    console.log(`    ${apiBase}/${handle}?company=openai`);
+    console.log("  • Role variant     → share via");
+    console.log(`    ${apiBase}/${handle}?role=designer`);
+    console.log("  • Language variant → share via");
+    console.log(`    ${apiBase}/${handle}?lang=en`);
+    console.log("");
+    console.log(`Use 'cv-pro set-variant <key> [file]' to store a tailored version.`);
+    console.log(`See ${apiBase}/llms.txt for the full variant workflow.`);
+}
+const HELP = `
+aicv — AI-native resume CLI  (cv.ha7ch.com)
+
+USAGE
+  cv-pro <command> [options]
+
+COMMANDS
+  register <handle>           Claim a handle and get a token (no browser needed)
+  login <token>               Save an existing personal access token
+  logout                      Remove saved credentials
+  whoami                      Show authenticated handle
+  schema                      Show resume schema (section names + field shapes)
+  get [--variant=<key>]       Print current resume (or one variant) as JSON
+  update [file]               Replace entire resume from a JSON file (or stdin)
+  update-section <section>    Update one section from JSON file (or stdin)
+  variants                    List all stored variants with links
+  get-variant <key>           Print variant JSON
+  set-variant <key> [file]    Create/update a variant from file or stdin
+  delete-variant <key>        Delete a variant
+  open [--json] [--variant=<key>]  Open resume page in browser
+
+SECTIONS
+  header, personalInfo, experience, education,
+  projectsRecent, projectsDetailed, skills, contact
+
+  Run 'cv-pro schema' for the full field-level structure.
+
+EXAMPLES
+  cv-pro register lawted
+  cv-pro whoami
+  cv-pro get
+  cv-pro get --variant=openai
+  cv-pro update resume.json
+  cv-pro update-section experience experience.json
+  echo '{"name":"Lawted"}' | cv update-section header
+  cv-pro set-variant openai resume_openai.json
+  cv-pro variants
+  cv-pro open --variant=openai
+
+ENV
+  CV_TOKEN   token (overrides saved config)
+  CV_HANDLE  handle (required when using CV_TOKEN)
+  CV_API     API base URL (default: https://cv.ha7ch.com)
+`.trim();
+async function main() {
+    const args = process.argv.slice(2);
+    const cmd = args[0];
+    if (!cmd || cmd === "--help" || cmd === "help" || cmd === "-h") {
+        console.log(HELP);
+        return;
+    }
+    if (cmd === "--version" || cmd === "-v") {
+        console.log(VERSION);
+        return;
+    }
+    // register
+    if (cmd === "register") {
+        const handle = args[1]?.toLowerCase().trim();
+        if (!handle)
+            die("Usage: cv-pro register <handle>");
+        process.stdout.write(`Registering @${handle}… `);
+        const apiBase = process.env.CV_API ?? DEFAULT_API;
+        const result = await register(handle, apiBase);
+        console.log("✓");
+        saveConfig({ token: result.token, handle: result.handle, apiBase });
+        console.log(`Logged in as @${result.handle}`);
+        console.log(`Page: ${apiBase}/${result.handle}`);
+        console.log(`JSON: ${apiBase}/${result.handle}.json   (public, AI-readable)`);
+        return;
+    }
+    // login
+    if (cmd === "login") {
+        const token = args[1];
+        if (!token) {
+            die("Usage: cv login <token>\nGet a token at cv.ha7ch.com");
+        }
+        if (!token.startsWith("cv_pat_")) {
+            die("Token must start with cv_pat_");
+        }
+        // verify token by calling whoami
+        const cfg = { token, apiBase: DEFAULT_API };
+        process.stdout.write("Verifying token… ");
+        const result = await whoami(cfg);
+        if (!result.ok) {
+            if (result.reason === "no-resume") {
+                die("\nToken valid, but no resume on file. Run: cv-pro register <handle>");
+            }
+            if (result.reason === "unauthorized")
+                die("\nInvalid token.");
+            die("\nServer error. Try again.");
+        }
+        console.log(`✓\nLogged in as @${result.username}`);
+        saveConfig({ token, handle: result.username, apiBase: DEFAULT_API });
+        return;
+    }
+    // logout
+    if (cmd === "logout") {
+        clearConfig();
+        console.log("Logged out.");
+        return;
+    }
+    // schema — public, no auth needed
+    if (cmd === "schema") {
+        const apiBase = loadConfig()?.apiBase ?? process.env.CV_API ?? DEFAULT_API;
+        const wantJson = args.slice(1).includes("--json");
+        const result = await getSchema(apiBase);
+        console.log(wantJson ? JSON.stringify(result.json, null, 2) : result.text);
+        return;
+    }
+    // commands that need auth
+    const config = loadConfig();
+    if (!config?.token) {
+        die("Not logged in. Run: cv-pro login <token>\nGet a token at cv.ha7ch.com");
+    }
+    if (cmd === "whoami") {
+        let handle = config.handle;
+        if (!handle) {
+            const result = await whoami(config);
+            if (!result.ok) {
+                if (result.reason === "unauthorized")
+                    die("Invalid token.");
+                if (result.reason === "no-resume") {
+                    die("Token valid, but no resume on file. Run: cv-pro register <handle>");
+                }
+                die("Server unreachable.");
+            }
+            handle = result.username;
+        }
+        console.log(`@${handle}`);
+        console.log(`Page: ${config.apiBase}/${handle}`);
+        console.log(`JSON: ${config.apiBase}/${handle}.json   (public, AI-readable)`);
+        return;
+    }
+    if (cmd === "get") {
+        const variantArg = args.find((arg) => arg.startsWith(VARIANT_FLAG));
+        const variantKey = variantArg?.slice(VARIANT_FLAG.length);
+        const data = variantKey ? await getVariant(config, variantKey) : await getResume(config);
+        console.log(JSON.stringify(data, null, 2));
+        return;
+    }
+    if (cmd === "update") {
+        const data = readJsonArg(args[1], "resume data");
+        process.stdout.write("Updating resume… ");
+        await putResume(config, data);
+        console.log(`✓\nView at ${config.apiBase}/${config.handle}`);
+        printVariantReminder(config.apiBase, config.handle);
+        return;
+    }
+    if (cmd === "update-section") {
+        const section = args[1];
+        if (!section)
+            die("Usage: cv update-section <section> [file]");
+        const value = readJsonArg(args[2], `section '${section}'`);
+        process.stdout.write(`Updating ${section}… `);
+        await patchSection(config, section, value);
+        console.log(`✓\nView at ${config.apiBase}/${config.handle}`);
+        if (section === "experience" || section === "projectsRecent" || section === "projectsDetailed") {
+            printVariantReminder(config.apiBase, config.handle);
+        }
+        return;
+    }
+    if (cmd === "open") {
+        const wantJson = args.slice(1).includes("--json");
+        const variantArg = args.slice(1).find((arg) => arg.startsWith(VARIANT_FLAG));
+        const variantKey = variantArg?.slice(VARIANT_FLAG.length);
+        let url;
+        if (variantKey) {
+            url = `${config.apiBase}/${config.handle}?company=${variantKey}`;
+        }
+        else if (wantJson) {
+            url = `${config.apiBase}/${config.handle}.json`;
+        }
+        else {
+            url = `${config.apiBase}/${config.handle}`;
+        }
+        const { execSync } = await import("node:child_process");
+        const opener = process.platform === "darwin" ? "open" :
+            process.platform === "win32" ? "start" : "xdg-open";
+        execSync(`${opener} "${url}"`);
+        console.log(url);
+        return;
+    }
+    if (cmd === "variants") {
+        const variants = await listVariants(config);
+        if (variants.length === 0) {
+            console.log("No variants yet. Use 'cv-pro set-variant <key> [file]' to create one.");
+            return;
+        }
+        console.log("Stored variants:\n");
+        for (const { audience, updatedAt } of variants) {
+            const date = updatedAt.slice(0, 10);
+            console.log(`  ${audience.padEnd(16)} updated ${date}`);
+            console.log(`    ?company=${audience}  →  ${config.apiBase}/${config.handle}?company=${audience}`);
+            console.log(`    ?role=${audience}     →  ${config.apiBase}/${config.handle}?role=${audience}`);
+            console.log(`    ?lang=${audience}     →  ${config.apiBase}/${config.handle}?lang=${audience}`);
+            console.log("");
+        }
+        return;
+    }
+    if (cmd === "get-variant") {
+        const key = args[1];
+        if (!key)
+            die("Usage: cv-pro get-variant <key>");
+        const data = await getVariant(config, key);
+        console.log(JSON.stringify(data, null, 2));
+        return;
+    }
+    if (cmd === "set-variant") {
+        const key = args[1];
+        if (!key)
+            die("Usage: cv-pro set-variant <key> [file]");
+        const data = readJsonArg(args[2], `variant '${key}'`);
+        process.stdout.write(`Saving variant '${key}'… `);
+        await putVariant(config, key, data);
+        console.log(`✓`);
+        console.log(`View at ${config.apiBase}/${config.handle}?company=${key}`);
+        console.log(`(Also works with ?role=${key} or ?lang=${key})`);
+        return;
+    }
+    if (cmd === "delete-variant") {
+        const key = args[1];
+        if (!key)
+            die("Usage: cv-pro delete-variant <key>");
+        process.stdout.write(`Deleting variant '${key}'… `);
+        await deleteVariant(config, key);
+        console.log("✓");
+        return;
+    }
+    die(`Unknown command: ${cmd}\nRun 'cv-pro help' to see available commands.`);
+}
+function readJsonArg(filePath, label) {
+    if (filePath) {
+        try {
+            return JSON.parse(readFileSync(filePath, "utf8"));
+        }
+        catch {
+            die(`Could not read ${label} from file: ${filePath}`);
+        }
+    }
+    // try stdin
+    try {
+        const stdin = readFileSync("/dev/stdin", "utf8").trim();
+        if (stdin)
+            return JSON.parse(stdin);
+    }
+    catch { }
+    die(`Provide ${label} as a file path or pipe JSON via stdin.`);
+}
+function die(msg) {
+    console.error(`Error: ${msg}`);
+    process.exit(1);
+}
+main().catch((err) => {
+    console.error("Error:", err instanceof Error ? err.message : err);
+    process.exit(1);
+});

package/package.json

@@ -0,0 +1,32 @@
+{
+  "name": "@ha7ch/cv-pro",
+  "version": "0.5.1",
+  "description": "AI-native resume CLI — update your living resume at cv.ha7ch.com from Claude Code or any terminal",
+  "homepage": "https://cv.ha7ch.com",
+  "repository": "https://github.com/LAWTED/cv-pro",
+  "license": "MIT",
+  "type": "module",
+  "bin": {
+    "cv-pro": "./dist/index.js"
+  },
+  "files": [
+    "dist"
+  ],
+  "publishConfig": {
+    "access": "public",
+    "registry": "https://registry.npmjs.org/"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsx src/index.ts",
+    "prepublishOnly": "npm run build"
+  },
+  "devDependencies": {
+    "@types/node": "^20",
+    "typescript": "^5",
+    "tsx": "^4"
+  },
+  "engines": {
+    "node": ">=18"
+  }
+}