@hexabot-ai/cli 3.1.4-alpha.0 → 3.2.1-alpha.0

package/AGENTS.md

@@ -6,7 +6,7 @@ This file is the authoritative cheat-sheet for the Hexabot CLI. It summarizes th
 
 - **Entry point**: `src/index.ts` prints the banner (`printBanner()`) and calls `checkPrerequisites({ silent: true })` before instantiating the Commander program. That pre-flight verifies Node.js (see below) so user-facing commands can assume a supported runtime.
 - **CLI factory**: `createCliProgram()` (`src/cli.ts`) builds the `Command` instance, configures name/description/version (`getCliVersion()`), and registers `check`, `create`, `config`, `dev`, `docker`, `env`, `start`, and `migrate` commands.
-- **Prerequisite gate**: `checkPrerequisites()` / `checkNodeVersion()` / `checkDocker()` (`src/core/prerequisites.ts`) centralize system checks. The top-level bootstrap validates Node (>= 20.18.1) while Docker checks are performed by commands that actually need Docker.
+- **Prerequisite gate**: `checkPrerequisites()` / `checkNodeVersion()` / `checkDocker()` (`src/core/prerequisites.ts`) centralize system checks. The top-level bootstrap validates Node (>= 20.19.0) while Docker checks are performed by commands that actually need Docker.
 - **Project guard**: `assertHexabotProject()` / `isHexabotProject()` (`src/core/project.ts`) enforce that commands run inside a workspace whose `package.json` depends on `@hexabot-ai/api`. Docker-aware commands also call `ensureDockerFolder()` which ensures `<projectRoot>/docker/` exists before touching compose files.
 - **Service parsing**: `parseServices()` (`src/utils/services.ts`) normalizes the shared `--services` flag to a de-duped string array so Docker helpers can safely compose per-service overlays.
 

package/README.md

@@ -9,7 +9,7 @@ Not yet familiar with [Hexabot](https://hexabot.ai/)? It's a open-source chatbot
 
 ### Prerequisites
 
-- Node.js >= 20.18.1
+- Node.js >= 20.19.0
 - One package manager (`npm`, `pnpm`, `yarn`, or `bun`)
 - Docker Desktop/Engine (only required when you pass `--docker` or use `hexabot docker ...`)
 
@@ -155,10 +155,12 @@ For detailed information on how to get started, as well as in-depth user and dev
 
 You can also find specific documentation for different components of the project in the following locations:
 
-- [API Documentation](api/README.md)
-- [UI Documentation](frontend/README.md)
-- [Live Chat Widget Documentation](widget/README.md)
-- [NLU Engine Documentation](nlu/README.md)
+- [API Documentation](../api/README.md)
+- [UI Documentation](../frontend/README.md)
+- [Agentic Package Documentation](../agentic/README.md)
+- [Types Package Documentation](../types/README.md)
+- [Workflow Graph Documentation](../graph/README.md)
+- [Live Chat Widget Documentation](../widget/README.md)
 
 ## Contributing
 

package/dist/commands/__tests__/create.test.js

@@ -118,7 +118,9 @@ describe('registerCreateCommand', () => {
             .mockResolvedValueOnce('Anis')
             .mockResolvedValueOnce('Bot')
             .mockResolvedValueOnce('anis@example.com');
-        password.mockResolvedValueOnce('Admin#123');
+        password
+            .mockResolvedValueOnce('Admin#123')
+            .mockResolvedValueOnce('Admin#123');
         const program = new Command();
         registerCreateCommand(program);
         await program.parseAsync([
@@ -142,7 +144,7 @@ describe('registerCreateCommand', () => {
         });
         expect(exitSpy).not.toHaveBeenCalled();
         expect(input).toHaveBeenCalledTimes(3);
-        expect(password).toHaveBeenCalledTimes(1);
+        expect(password).toHaveBeenCalledTimes(2);
     });
     it('fails cleanly when create runs in a non-interactive terminal', async () => {
         setTTY(false);

package/dist/commands/create.js

@@ -135,6 +135,18 @@ const validateEmail = (value) => {
     }
     return true;
 };
+const validateAdminPassword = (value) => {
+    const trimmed = value.trim();
+    if (!trimmed) {
+        return 'Password is required.';
+    }
+    // Keep the rule simple and explicit for CLI UX. Complexity policies vary by org.
+    const minLength = 12;
+    if (trimmed.length < minLength) {
+        return `Password must be at least ${minLength} characters.`;
+    }
+    return true;
+};
 const assertInteractiveTerminal = () => {
     if (!process.stdin.isTTY || !process.stdout.isTTY) {
         throw new Error('hexabot create requires an interactive terminal to capture admin credentials.');
@@ -142,22 +154,36 @@ const assertInteractiveTerminal = () => {
 };
 const promptSeedAdminCredentials = async () => {
     assertInteractiveTerminal();
+    console.log('\n');
+    console.log(chalk.bold('Admin account (initial credentials)'));
+    console.log(chalk.gray('These details are used to seed the first admin user. You can change them later in your env file.'));
+    console.log('\n');
     const firstName = (await input({
-        message: 'Admin first name',
+        message: 'First name (e.g. Jhon)',
         validate: requireValue('First name'),
     })).trim();
     const lastName = (await input({
-        message: 'Admin last name',
+        message: 'Last name (e.g. Doe)',
         validate: requireValue('Last name'),
     })).trim();
     const email = (await input({
-        message: 'Admin email',
+        message: 'Email (e.g. admin@company.com)',
         validate: validateEmail,
     })).trim();
     const adminPassword = await password({
-        message: 'Admin password',
+        message: 'Password (min 12 chars)',
+        mask: '*',
+        validate: validateAdminPassword,
+    });
+    await password({
+        message: 'Confirm password',
         mask: '*',
-        validate: requireValue('Password'),
+        validate: (value) => {
+            if (value !== adminPassword) {
+                return 'Passwords do not match.';
+            }
+            return true;
+        },
     });
     return {
         firstName,

package/dist/core/prerequisites.js

@@ -5,7 +5,7 @@
  */
 import { execSync } from 'child_process';
 import chalk from 'chalk';
-const REQUIRED_NODE_VERSION = '20.18.1';
+const REQUIRED_NODE_VERSION = '20.19.0';
 export const checkPrerequisites = (options = {}) => {
     checkNodeVersion(options);
     if (options.docker) {
@@ -28,7 +28,7 @@ export const checkNodeVersion = (options = {}) => {
         return { ok: false, message };
     }
     catch (error) {
-        const message = "Node.js is not accessible or installed correctly. Install Node.js v20.18.1+ and ensure it's in your PATH.";
+        const message = "Node.js is not accessible or installed correctly. Install Node.js v20.19.0+ and ensure it's in your PATH.";
         handleFailure(message, options, error);
         return { ok: false, message, details: error.message };
     }

package/eslint.config.cjs

@@ -42,7 +42,7 @@ const createConfig = ({ headerYear = '2025' } = {}) => {
       languageOptions: {
         parser: tsParser,
         parserOptions: {
-          project: path.join(__dirname, 'tsconfig.json'),
+          project: path.join(__dirname, 'tsconfig.eslint.json'),
           tsconfigRootDir: __dirname,
           sourceType: 'module',
         },

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hexabot-ai/cli",
-  "version": "3.1.4-alpha.0",
+  "version": "3.2.1-alpha.0",
   "description": "Official Hexabot CLI for creating and managing AI chatbot/agent projects built with Hexabot.",
   "main": "dist/index.js",
   "type": "module",
@@ -8,7 +8,7 @@
     "hexabot": "dist/index.js"
   },
   "engines": {
-    "node": ">=20.18.1"
+    "node": ">=20.19.0"
   },
   "keywords": [],
   "author": "Hexastack",
@@ -55,8 +55,6 @@
     "start": "node dist/index.js",
     "dev": "tsx watch src/index.ts",
     "test": "cross-env NODE_OPTIONS=--experimental-vm-modules jest",
-    "release:patch": "npm version patch && git push origin main --tags",
-    "release:minor": "npm version minor && git push origin main --tags",
     "lint": "eslint \"src/**/*.ts\"",
     "lint:fix": "eslint \"src/**/*.ts\" --fix"
   }

package/src/commands/__tests__/create.test.ts

@@ -138,7 +138,9 @@ describe('registerCreateCommand', () => {
       .mockResolvedValueOnce('Anis')
       .mockResolvedValueOnce('Bot')
       .mockResolvedValueOnce('anis@example.com');
-    (password as any).mockResolvedValueOnce('Admin#123');
+    (password as any)
+      .mockResolvedValueOnce('Admin#123')
+      .mockResolvedValueOnce('Admin#123');
 
     const program = new Command();
     registerCreateCommand(program);
@@ -172,7 +174,7 @@ describe('registerCreateCommand', () => {
     });
     expect(exitSpy).not.toHaveBeenCalled();
     expect(input).toHaveBeenCalledTimes(3);
-    expect(password).toHaveBeenCalledTimes(1);
+    expect(password).toHaveBeenCalledTimes(2);
   });
 
   it('fails cleanly when create runs in a non-interactive terminal', async () => {

package/src/commands/create.ts

@@ -206,6 +206,20 @@ const validateEmail = (value: string) => {
 
   return true;
 };
+const validateAdminPassword = (value: string) => {
+  const trimmed = value.trim();
+  if (!trimmed) {
+    return 'Password is required.';
+  }
+
+  // Keep the rule simple and explicit for CLI UX. Complexity policies vary by org.
+  const minLength = 12;
+  if (trimmed.length < minLength) {
+    return `Password must be at least ${minLength} characters.`;
+  }
+
+  return true;
+};
 const assertInteractiveTerminal = () => {
   if (!process.stdin.isTTY || !process.stdout.isTTY) {
     throw new Error(
@@ -216,28 +230,48 @@ const assertInteractiveTerminal = () => {
 const promptSeedAdminCredentials = async (): Promise<AdminSeedCredentials> => {
   assertInteractiveTerminal();
 
+  console.log('\n');
+  console.log(chalk.bold('Admin account (initial credentials)'));
+  console.log(
+    chalk.gray(
+      'These details are used to seed the first admin user. You can change them later in your env file.',
+    ),
+  );
+  console.log('\n');
+
   const firstName = (
     await input({
-      message: 'Admin first name',
+      message: 'First name (e.g. Jhon)',
       validate: requireValue('First name'),
     })
   ).trim();
   const lastName = (
     await input({
-      message: 'Admin last name',
+      message: 'Last name (e.g. Doe)',
       validate: requireValue('Last name'),
     })
   ).trim();
   const email = (
     await input({
-      message: 'Admin email',
+      message: 'Email (e.g. admin@company.com)',
       validate: validateEmail,
     })
   ).trim();
   const adminPassword = await password({
-    message: 'Admin password',
+    message: 'Password (min 12 chars)',
     mask: '*',
-    validate: requireValue('Password'),
+    validate: validateAdminPassword,
+  });
+  await password({
+    message: 'Confirm password',
+    mask: '*',
+    validate: (value: string) => {
+      if (value !== adminPassword) {
+        return 'Passwords do not match.';
+      }
+
+      return true;
+    },
   });
 
   return {

package/src/core/prerequisites.ts

@@ -8,7 +8,7 @@ import { execSync } from 'child_process';
 
 import chalk from 'chalk';
 
-const REQUIRED_NODE_VERSION = '20.18.1';
+const REQUIRED_NODE_VERSION = '20.19.0';
 
 export interface PrerequisiteOptions {
   docker?: boolean;
@@ -51,7 +51,7 @@ export const checkNodeVersion = (
     return { ok: false, message };
   } catch (error) {
     const message =
-      "Node.js is not accessible or installed correctly. Install Node.js v20.18.1+ and ensure it's in your PATH.";
+      "Node.js is not accessible or installed correctly. Install Node.js v20.19.0+ and ensure it's in your PATH.";
 
     handleFailure(message, options, error);
 

package/test/__mocks__/chalk.ts

@@ -1,7 +1,13 @@
-const passthrough = (value: string) => value;
+/*
+ * Hexabot — Fair Core License (FCL-1.0-ALv2)
+ * Copyright (c) 2026 Hexastack.
+ * Full terms: see LICENSE.md.
+ */
 
+const passthrough = (value: string) => value;
 const chalkMock = {
   blue: passthrough,
+  bold: passthrough,
   yellow: passthrough,
   cyan: passthrough,
   red: passthrough,

package/tsconfig.eslint.json

@@ -0,0 +1,5 @@
+{
+  "extends": "./tsconfig.json",
+  "include": ["src/**/*.ts", "test/**/*.ts", "*.ts"],
+  "exclude": ["node_modules", "dist"]
+}