@imdeadpool/codex-account-switcher 0.1.8 → 0.1.9

package/README.md

@@ -60,6 +60,12 @@ codex-auth list --details
 # show current account name
 codex-auth current
 
+# check for a newer release and update globally
+codex-auth self-update
+
+# check only (no install)
+codex-auth self-update --check
+
 # remove accounts (interactive multi-select)
 codex-auth remove
 
@@ -96,6 +102,7 @@ codex-auth remove-login-hook
 - `codex-auth use [name]` – Accepts a name or launches an interactive selector with the current account pre-selected, writes `~/.codex/auth.json` as a regular file from the chosen snapshot, and records the active name.
 - `codex-auth list [--details]` – Lists all saved snapshots alphabetically and marks the active one with `*`. `--details` adds per-snapshot mapping metadata (email, account id, user id, and usage metadata) for easier session/account troubleshooting.
 - `codex-auth current` – Prints the active account name, or a friendly message if none is active.
+- `codex-auth self-update [--check]` – Checks npm for a newer release. Without flags, it installs the latest version globally when one is available.
 - `codex-auth remove [query|--all]` – Removes snapshots interactively or by selector. If the active account is removed, the best remaining account is activated automatically.
 - `codex-auth status` – Prints auto-switch state, managed service status, active thresholds, and usage mode.
 - `codex-auth config auto ...` – Enables/disables managed auto-switch and updates threshold percentages.
@@ -131,3 +138,4 @@ Notes:
 
 - Works on macOS/Linux/Windows (regular-file auth snapshot activation).
 - Requires Node 18+.
+- Running bare `codex-auth` shows the help screen and also displays an update notice when a newer npm release is available.

package/dist/commands/list.d.ts

@@ -5,4 +5,5 @@ export default class ListCommand extends BaseCommand {
         readonly details: import("@oclif/core/lib/interfaces").BooleanFlag<boolean>;
     };
     run(): Promise<void>;
+    private maybeOfferGlobalUpdate;
 }

package/dist/commands/list.js

@@ -1,13 +1,19 @@
 "use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
 const core_1 = require("@oclif/core");
+const prompts_1 = __importDefault(require("prompts"));
 const base_command_1 = require("../lib/base-command");
+const update_check_1 = require("../lib/update-check");
 class ListCommand extends base_command_1.BaseCommand {
     async run() {
         await this.runSafe(async () => {
             var _a, _b, _c, _d, _e, _f;
             const { flags } = await this.parse(ListCommand);
             const detailed = Boolean(flags.details);
+            await this.maybeOfferGlobalUpdate();
             if (!detailed) {
                 const accounts = await this.accounts.listAccountNames();
                 const current = await this.accounts.getCurrentAccountName();
@@ -34,6 +40,33 @@ class ListCommand extends base_command_1.BaseCommand {
             }
         });
     }
+    async maybeOfferGlobalUpdate() {
+        if (!process.stdin.isTTY || !process.stdout.isTTY)
+            return;
+        const currentVersion = this.config.version;
+        if (!currentVersion || typeof currentVersion !== "string")
+            return;
+        const latestVersion = await (0, update_check_1.fetchLatestNpmVersion)(update_check_1.PACKAGE_NAME);
+        if (!latestVersion || !(0, update_check_1.isVersionNewer)(currentVersion, latestVersion))
+            return;
+        this.log(`Update available for codex-auth: ${currentVersion} -> ${latestVersion}`);
+        const prompt = await (0, prompts_1.default)({
+            type: "confirm",
+            name: "install",
+            message: "Press Enter to update globally now",
+            initial: true,
+        });
+        if (!prompt.install) {
+            this.log(`Skipped update. Run manually: npm i -g ${update_check_1.PACKAGE_NAME}@latest`);
+            return;
+        }
+        const installExitCode = await (0, update_check_1.runGlobalNpmInstall)(update_check_1.PACKAGE_NAME);
+        if (installExitCode === 0) {
+            this.log("Global update completed.");
+            return;
+        }
+        this.warn(`Global update failed (exit code ${installExitCode}). Try: npm i -g ${update_check_1.PACKAGE_NAME}@latest`);
+    }
 }
 ListCommand.description = "List accounts managed under ~/.codex";
 ListCommand.flags = {

package/dist/commands/self-update.d.ts

@@ -0,0 +1,8 @@
+import { BaseCommand } from "../lib/base-command";
+export default class SelfUpdateCommand extends BaseCommand {
+    static description: string;
+    static flags: {
+        readonly check: import("@oclif/core/lib/interfaces").BooleanFlag<boolean>;
+    };
+    run(): Promise<void>;
+}

package/dist/commands/self-update.js

@@ -0,0 +1,40 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const core_1 = require("@oclif/core");
+const base_command_1 = require("../lib/base-command");
+const update_check_1 = require("../lib/update-check");
+class SelfUpdateCommand extends base_command_1.BaseCommand {
+    async run() {
+        await this.runSafe(async () => {
+            const { flags } = await this.parse(SelfUpdateCommand);
+            const currentVersion = this.config.version;
+            const latestVersion = await (0, update_check_1.fetchLatestNpmVersion)(update_check_1.PACKAGE_NAME);
+            if (!latestVersion) {
+                this.warn("Could not check npm for the latest release right now.");
+                return;
+            }
+            if (!(0, update_check_1.isVersionNewer)(currentVersion, latestVersion)) {
+                this.log(`codex-auth is up to date (${currentVersion}).`);
+                return;
+            }
+            this.log(`Update available: ${currentVersion} -> ${latestVersion}`);
+            if (flags.check) {
+                return;
+            }
+            const exitCode = await (0, update_check_1.runGlobalNpmInstall)(update_check_1.PACKAGE_NAME);
+            if (exitCode === 0) {
+                this.log("Global update completed.");
+                return;
+            }
+            this.warn(`Global update failed (exit code ${exitCode}). Run: npm i -g ${update_check_1.PACKAGE_NAME}@latest`);
+        });
+    }
+}
+SelfUpdateCommand.description = "Check for updates and upgrade codex-auth globally";
+SelfUpdateCommand.flags = {
+    check: core_1.Flags.boolean({
+        description: "Only check whether an update is available",
+        default: false,
+    }),
+};
+exports.default = SelfUpdateCommand;

package/dist/hooks/init/update-notifier.d.ts

@@ -0,0 +1,3 @@
+import type { Hook } from "@oclif/core";
+declare const hook: Hook.Init;
+export default hook;

package/dist/hooks/init/update-notifier.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const update_check_1 = require("../../lib/update-check");
+const hook = async function (options) {
+    if (options.id)
+        return;
+    if (options.argv.length > 0)
+        return;
+    if (!process.stdin.isTTY || !process.stdout.isTTY)
+        return;
+    const currentVersion = options.config.version;
+    if (!currentVersion)
+        return;
+    const latestVersion = await (0, update_check_1.fetchLatestNpmVersion)(update_check_1.PACKAGE_NAME);
+    if (!latestVersion || !(0, update_check_1.isVersionNewer)(currentVersion, latestVersion))
+        return;
+    this.log(`Update available for codex-auth: ${currentVersion} -> ${latestVersion}`);
+    this.log("Run `codex-auth self-update` to install the latest version.");
+};
+exports.default = hook;

package/dist/lib/accounts/account-service.d.ts

@@ -61,6 +61,7 @@ export declare class AccountService {
     private writeCurrentName;
     private readCurrentNameFile;
     private pathExists;
+    private filesMatch;
     private hydrateSnapshotMetadata;
     private resolveUniqueInferredName;
     private loadReconciledRegistry;

package/dist/lib/accounts/account-service.js

@@ -31,16 +31,26 @@ class AccountService {
                 autoSwitchDisabled: false,
             };
         }
+        const resolvedName = await this.resolveLoginAccountNameFromCurrentAuth();
         const activeName = await this.getCurrentAccountName();
         if (activeName) {
             const activeSnapshotPath = this.accountFilePath(activeName);
             if (await this.pathExists(activeSnapshotPath)) {
                 const activeSnapshot = await (0, auth_parser_1.parseAuthSnapshotFile)(activeSnapshotPath);
                 if (this.snapshotsShareIdentity(activeSnapshot, incomingSnapshot)) {
-                    return {
-                        synchronized: false,
-                        autoSwitchDisabled: false,
-                    };
+                    if (activeName === resolvedName.name) {
+                        return {
+                            synchronized: false,
+                            autoSwitchDisabled: false,
+                        };
+                    }
+                    const authMatchesActiveSnapshot = await this.filesMatch(authPath, activeSnapshotPath);
+                    if (authMatchesActiveSnapshot) {
+                        return {
+                            synchronized: false,
+                            autoSwitchDisabled: false,
+                        };
+                    }
                 }
             }
         }
@@ -49,7 +59,6 @@ class AccountService {
         if (autoSwitchDisabled) {
             await this.setAutoSwitchEnabled(false);
         }
-        const resolvedName = await this.resolveLoginAccountNameFromCurrentAuth();
         const savedName = await this.saveAccount(resolvedName.name);
         return {
             synchronized: true,
@@ -550,6 +559,15 @@ class AccountService {
             return false;
         }
     }
+    async filesMatch(firstPath, secondPath) {
+        try {
+            const [first, second] = await Promise.all([promises_1.default.readFile(firstPath), promises_1.default.readFile(secondPath)]);
+            return first.equals(second);
+        }
+        catch {
+            return false;
+        }
+    }
     async hydrateSnapshotMetadata(registry, accountName) {
         var _a;
         const parsed = await (0, auth_parser_1.parseAuthSnapshotFile)(this.accountFilePath(accountName));

package/dist/lib/update-check.d.ts

@@ -0,0 +1,5 @@
+export declare const PACKAGE_NAME = "@imdeadpool/codex-account-switcher";
+export declare function parseVersionTriplet(version: string): [number, number, number] | null;
+export declare function isVersionNewer(currentVersion: string, latestVersion: string): boolean;
+export declare function fetchLatestNpmVersion(packageName: string, timeoutMs?: number): Promise<string | null>;
+export declare function runGlobalNpmInstall(packageName: string, version?: "latest" | string): Promise<number>;

package/dist/lib/update-check.js

@@ -0,0 +1,84 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PACKAGE_NAME = void 0;
+exports.parseVersionTriplet = parseVersionTriplet;
+exports.isVersionNewer = isVersionNewer;
+exports.fetchLatestNpmVersion = fetchLatestNpmVersion;
+exports.runGlobalNpmInstall = runGlobalNpmInstall;
+const node_child_process_1 = require("node:child_process");
+const SEMVER_TRIPLET = /^v?(\d+)\.(\d+)\.(\d+)(?:[-+].*)?$/;
+exports.PACKAGE_NAME = "@imdeadpool/codex-account-switcher";
+function parseVersionTriplet(version) {
+    const match = version.trim().match(SEMVER_TRIPLET);
+    if (!match)
+        return null;
+    return [Number(match[1]), Number(match[2]), Number(match[3])];
+}
+function isVersionNewer(currentVersion, latestVersion) {
+    const current = parseVersionTriplet(currentVersion);
+    const latest = parseVersionTriplet(latestVersion);
+    if (!current || !latest)
+        return false;
+    for (let i = 0; i < 3; i += 1) {
+        if (latest[i] > current[i])
+            return true;
+        if (latest[i] < current[i])
+            return false;
+    }
+    return false;
+}
+async function fetchLatestNpmVersion(packageName, timeoutMs = 2500) {
+    return new Promise((resolve) => {
+        const child = (0, node_child_process_1.spawn)("npm", ["view", packageName, "version", "--json"], {
+            stdio: ["ignore", "pipe", "ignore"],
+        });
+        let output = "";
+        const timeout = setTimeout(() => {
+            child.kill("SIGTERM");
+            resolve(null);
+        }, timeoutMs);
+        child.stdout.on("data", (chunk) => {
+            output += chunk.toString();
+        });
+        child.on("error", () => {
+            clearTimeout(timeout);
+            resolve(null);
+        });
+        child.on("exit", (code) => {
+            clearTimeout(timeout);
+            if (code !== 0) {
+                resolve(null);
+                return;
+            }
+            const trimmed = output.trim();
+            if (!trimmed) {
+                resolve(null);
+                return;
+            }
+            try {
+                const parsed = JSON.parse(trimmed);
+                if (typeof parsed === "string" && parsed.trim().length > 0) {
+                    resolve(parsed.trim());
+                    return;
+                }
+            }
+            catch {
+                // fall through
+            }
+            resolve(trimmed.replace(/^"+|"+$/g, ""));
+        });
+    });
+}
+async function runGlobalNpmInstall(packageName, version = "latest") {
+    return new Promise((resolve) => {
+        const child = (0, node_child_process_1.spawn)("npm", ["i", "-g", `${packageName}@${version}`], {
+            stdio: "inherit",
+        });
+        child.on("error", () => {
+            resolve(1);
+        });
+        child.on("exit", (code) => {
+            resolve(typeof code === "number" ? code : 1);
+        });
+    });
+}

package/dist/tests/save-account-safety.test.js

@@ -19,9 +19,10 @@ function encodeBase64Url(input) {
         .replace(/=+$/g, "");
 }
 function buildAuthPayload(email, options) {
-    var _a, _b;
+    var _a, _b, _c;
     const accountId = (_a = options === null || options === void 0 ? void 0 : options.accountId) !== null && _a !== void 0 ? _a : "acct-1";
     const userId = (_b = options === null || options === void 0 ? void 0 : options.userId) !== null && _b !== void 0 ? _b : "user-1";
+    const tokenSeed = (_c = options === null || options === void 0 ? void 0 : options.tokenSeed) !== null && _c !== void 0 ? _c : email;
     const idTokenPayload = {
         email,
         "https://api.openai.com/auth": {
@@ -33,8 +34,8 @@ function buildAuthPayload(email, options) {
     const idToken = `${encodeBase64Url(JSON.stringify({ alg: "none" }))}.${encodeBase64Url(JSON.stringify(idTokenPayload))}.sig`;
     return JSON.stringify({
         tokens: {
-            access_token: `token-${email}`,
-            refresh_token: `refresh-${email}`,
+            access_token: `token-${tokenSeed}`,
+            refresh_token: `refresh-${tokenSeed}`,
             id_token: idToken,
             account_id: accountId,
         },
@@ -362,6 +363,34 @@ async function withIsolatedCodexDir(t, fn) {
         strict_1.default.equal(registry.autoSwitch.enabled, false);
     });
 });
+(0, node_test_1.default)("syncExternalAuthSnapshotIfNeeded re-keys active alias to inferred email name when external login identity matches", async (t) => {
+    await withIsolatedCodexDir(t, async ({ codexDir, accountsDir, authPath }) => {
+        const service = new account_service_1.AccountService();
+        const activeAlias = "team-primary";
+        const incomingEmail = "admin@kozpontihusbolt.hu";
+        const currentPath = node_path_1.default.join(codexDir, "current");
+        await promises_1.default.writeFile(node_path_1.default.join(accountsDir, `${activeAlias}.json`), buildAuthPayload(incomingEmail, {
+            accountId: "acct-team",
+            userId: "user-team",
+            tokenSeed: "pre-login",
+        }), "utf8");
+        await promises_1.default.writeFile(currentPath, `${activeAlias}\n`, "utf8");
+        await promises_1.default.writeFile(authPath, buildAuthPayload(incomingEmail, {
+            accountId: "acct-team",
+            userId: "user-team",
+            tokenSeed: "post-login",
+        }), "utf8");
+        const result = await service.syncExternalAuthSnapshotIfNeeded();
+        strict_1.default.deepEqual(result, {
+            synchronized: true,
+            savedName: incomingEmail,
+            autoSwitchDisabled: false,
+        });
+        strict_1.default.equal((await promises_1.default.readFile(currentPath, "utf8")).trim(), incomingEmail);
+        const inferredSnapshot = await (0, auth_parser_1.parseAuthSnapshotFile)(node_path_1.default.join(accountsDir, `${incomingEmail}.json`));
+        strict_1.default.equal(inferredSnapshot.email, incomingEmail);
+    });
+});
 (0, node_test_1.default)("syncExternalAuthSnapshotIfNeeded materializes auth symlink so external codex login can no longer overwrite snapshot files", async (t) => {
     if (process.platform === "win32") {
         t.skip("symlink conversion behavior is Unix-specific in this test");

package/dist/tests/update-check.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/tests/update-check.test.js

@@ -0,0 +1,29 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const node_test_1 = __importDefault(require("node:test"));
+const strict_1 = __importDefault(require("node:assert/strict"));
+const update_check_1 = require("../lib/update-check");
+(0, node_test_1.default)("parseVersionTriplet parses standard semver triplets", () => {
+    strict_1.default.deepEqual((0, update_check_1.parseVersionTriplet)("0.1.9"), [0, 1, 9]);
+    strict_1.default.deepEqual((0, update_check_1.parseVersionTriplet)("v1.20.3"), [1, 20, 3]);
+});
+(0, node_test_1.default)("parseVersionTriplet supports pre-release/build suffixes", () => {
+    strict_1.default.deepEqual((0, update_check_1.parseVersionTriplet)("1.2.3-beta.1"), [1, 2, 3]);
+    strict_1.default.deepEqual((0, update_check_1.parseVersionTriplet)("1.2.3+build"), [1, 2, 3]);
+});
+(0, node_test_1.default)("parseVersionTriplet rejects non-triplet versions", () => {
+    strict_1.default.equal((0, update_check_1.parseVersionTriplet)("1.2"), null);
+    strict_1.default.equal((0, update_check_1.parseVersionTriplet)("latest"), null);
+});
+(0, node_test_1.default)("isVersionNewer compares semver triplets correctly", () => {
+    strict_1.default.equal((0, update_check_1.isVersionNewer)("0.1.8", "0.1.9"), true);
+    strict_1.default.equal((0, update_check_1.isVersionNewer)("0.1.9", "0.1.9"), false);
+    strict_1.default.equal((0, update_check_1.isVersionNewer)("0.2.0", "0.1.9"), false);
+});
+(0, node_test_1.default)("isVersionNewer returns false when either version is invalid", () => {
+    strict_1.default.equal((0, update_check_1.isVersionNewer)("latest", "0.1.9"), false);
+    strict_1.default.equal((0, update_check_1.isVersionNewer)("0.1.8", "nightly"), false);
+});

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@imdeadpool/codex-account-switcher",
-  "version": "0.1.8",
+  "version": "0.1.9",
   "description": "A command-line tool that lets you manage and switch between multiple Codex accounts instantly, no more constant logins and logouts.",
   "license": "MIT",
   "bin": {
@@ -52,6 +52,9 @@
   },
   "oclif": {
     "bin": "codex-auth",
-    "commands": "./dist/commands"
+    "commands": "./dist/commands",
+    "hooks": {
+      "init": "./dist/hooks/init/update-notifier"
+    }
   }
 }