@integrity-labs/agt-cli 0.25.1 → 0.25.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/dist/bin/agt.js CHANGED
@@ -26,7 +26,7 @@ import {
26
26
  success,
27
27
  table,
28
28
  warn
29
- } from "../chunk-AAK2IU2Z.js";
29
+ } from "../chunk-U4DAVDAZ.js";
30
30
  import {
31
31
  CHANNEL_REGISTRY,
32
32
  DEPLOYMENT_TEMPLATES,
@@ -52,7 +52,7 @@ import {
52
52
  renderTemplate,
53
53
  resolveChannels,
54
54
  serializeManifestForSlackCli
55
- } from "../chunk-4K3ERUGE.js";
55
+ } from "../chunk-VWOXS4YP.js";
56
56
 
57
57
  // src/bin/agt.ts
58
58
  import { join as join10 } from "path";
@@ -3736,7 +3736,7 @@ import { execFileSync, execSync } from "child_process";
3736
3736
  import { existsSync as existsSync5, realpathSync } from "fs";
3737
3737
  import chalk17 from "chalk";
3738
3738
  import ora15 from "ora";
3739
- var cliVersion = true ? "0.25.1" : "dev";
3739
+ var cliVersion = true ? "0.25.2" : "dev";
3740
3740
  async function fetchLatestVersion() {
3741
3741
  const host2 = getHost();
3742
3742
  if (!host2) return null;
@@ -4268,7 +4268,7 @@ function handleError(err) {
4268
4268
  }
4269
4269
 
4270
4270
  // src/bin/agt.ts
4271
- var cliVersion2 = true ? "0.25.1" : "dev";
4271
+ var cliVersion2 = true ? "0.25.2" : "dev";
4272
4272
  var program = new Command();
4273
4273
  program.name("agt").description("Augmented CLI \u2014 agent provisioning and management").version(cliVersion2).option("--json", "Emit machine-readable JSON output (suppress spinners and colors)").option("--skip-update-check", "Skip the automatic update check on startup");
4274
4274
  program.hook("preAction", (thisCommand) => {
@@ -1,7 +1,7 @@
1
1
  import {
2
2
  KANBAN_LOOP_COMMAND,
3
3
  claudeModelAlias
4
- } from "./chunk-4K3ERUGE.js";
4
+ } from "./chunk-VWOXS4YP.js";
5
5
 
6
6
  // src/lib/persistent-session.ts
7
7
  import { spawn, execSync, execFileSync as execFileSync2 } from "child_process";
@@ -1174,4 +1174,4 @@ export {
1174
1174
  stopAllSessionsAndWait,
1175
1175
  getProjectDir
1176
1176
  };
1177
- //# sourceMappingURL=chunk-4FSQVXWB.js.map
1177
+ //# sourceMappingURL=chunk-M2RBM3M5.js.map
@@ -1,6 +1,7 @@
1
1
  import {
2
2
  CHANNEL_REGISTRY,
3
3
  DEFAULT_MODELS,
4
+ OAUTH_PROVIDERS,
4
5
  formatForOpenClawCli,
5
6
  getChannel,
6
7
  getFramework,
@@ -8,7 +9,7 @@ import {
8
9
  parseDeliveryTarget,
9
10
  registerFramework,
10
11
  wrapScheduledTaskPrompt
11
- } from "./chunk-4K3ERUGE.js";
12
+ } from "./chunk-VWOXS4YP.js";
12
13
 
13
14
  // ../../packages/core/dist/integrations/registry.js
14
15
  var INTEGRATION_REGISTRY = [
@@ -3393,129 +3394,6 @@ function safeWriteMcpJson(path, config) {
3393
3394
  return { written: true, errors: [] };
3394
3395
  }
3395
3396
 
3396
- // ../../packages/core/dist/integrations/oauth-providers.js
3397
- var OAUTH_PROVIDERS = {
3398
- "google-workspace": {
3399
- definitionId: "google-workspace",
3400
- authorizeUrl: "https://accounts.google.com/o/oauth2/v2/auth",
3401
- tokenUrl: "https://oauth2.googleapis.com/token",
3402
- revokeUrl: "https://oauth2.googleapis.com/revoke",
3403
- defaultScopes: [
3404
- "https://www.googleapis.com/auth/gmail.modify",
3405
- "https://www.googleapis.com/auth/calendar",
3406
- "https://www.googleapis.com/auth/drive",
3407
- "https://www.googleapis.com/auth/spreadsheets",
3408
- "https://www.googleapis.com/auth/documents",
3409
- "https://www.googleapis.com/auth/chat.messages",
3410
- "https://www.googleapis.com/auth/chat.spaces.readonly"
3411
- ],
3412
- supportsRefresh: true,
3413
- extraAuthorizeParams: {
3414
- access_type: "offline",
3415
- prompt: "consent"
3416
- },
3417
- clientAuthMethod: "body",
3418
- userInfoUrl: "https://www.googleapis.com/oauth2/v2/userinfo"
3419
- },
3420
- "github": {
3421
- definitionId: "github",
3422
- authorizeUrl: "https://github.com/login/oauth/authorize",
3423
- tokenUrl: "https://github.com/login/oauth/access_token",
3424
- defaultScopes: ["repo", "read:org", "gist", "workflow"],
3425
- supportsRefresh: true,
3426
- extraAuthorizeParams: {},
3427
- clientAuthMethod: "body",
3428
- userInfoUrl: "https://api.github.com/user"
3429
- },
3430
- "granola": {
3431
- // Granola MCP — remote streamable-HTTP at https://mcp.granola.ai/mcp.
3432
- // The AS is at mcp-auth.granola.ai and exposes RFC 8414 metadata at
3433
- // /.well-known/oauth-authorization-server. Auth is OAuth 2.0 with
3434
- // mandatory PKCE (S256) and a public client (no client_secret) issued
3435
- // via Dynamic Client Registration (RFC 7591). The bootstrap script
3436
- // (`packages/api/scripts/dcr-register.ts`) registers a client once at
3437
- // deploy time; OAUTH_GRANOLA_CLIENT_ID is set from its output.
3438
- definitionId: "granola",
3439
- authorizeUrl: "https://mcp-auth.granola.ai/oauth2/authorize",
3440
- tokenUrl: "https://mcp-auth.granola.ai/oauth2/token",
3441
- // Minimal scope set: `offline_access` earns the refresh_token so the
3442
- // refresh cron can rotate the bearer without operator action; `openid`
3443
- // is required for the OIDC code flow even when we don't request an
3444
- // id_token. Profile/email are intentionally omitted — we have no
3445
- // userInfoUrl wired up here, so requesting them would over-ask consent
3446
- // for fields the callback can't read.
3447
- defaultScopes: ["openid", "offline_access"],
3448
- supportsRefresh: true,
3449
- extraAuthorizeParams: {},
3450
- clientAuthMethod: "body",
3451
- pkce: "S256",
3452
- publicClient: true,
3453
- mcpUrl: "https://mcp.granola.ai/mcp"
3454
- },
3455
- "notion-cli": {
3456
- // Notion's public OAuth app. Tokens are workspace-scoped and long-lived —
3457
- // Notion does not issue refresh_tokens, so `supportsRefresh: false` and
3458
- // the refresh cron skips this provider entirely. Scopes are not part of
3459
- // Notion's authorize URL contract; consent is governed by what the user
3460
- // grants in the OAuth screen, so `defaultScopes` stays empty.
3461
- // `owner=user` forces the user-OAuth variant (vs internal integration).
3462
- // Requires OAUTH_NOTION_CLI_CLIENT_ID and OAUTH_NOTION_CLI_CLIENT_SECRET.
3463
- definitionId: "notion-cli",
3464
- authorizeUrl: "https://api.notion.com/v1/oauth/authorize",
3465
- tokenUrl: "https://api.notion.com/v1/oauth/token",
3466
- defaultScopes: [],
3467
- supportsRefresh: false,
3468
- extraAuthorizeParams: {
3469
- owner: "user"
3470
- },
3471
- clientAuthMethod: "basic"
3472
- },
3473
- "xero": {
3474
- definitionId: "xero",
3475
- authorizeUrl: "https://login.xero.com/identity/connect/authorize",
3476
- tokenUrl: "https://identity.xero.com/connect/token",
3477
- revokeUrl: "https://identity.xero.com/connect/revocation",
3478
- defaultScopes: [
3479
- "openid",
3480
- "profile",
3481
- "email",
3482
- "offline_access",
3483
- // Granular scopes (required for apps created after March 2, 2026 —
3484
- // do NOT revert to the broad `accounting.transactions` /
3485
- // `accounting.contacts` scopes, Xero rejects the manifest).
3486
- // The variant *without* `.read` is the read+write granular scope.
3487
- "accounting.settings.read",
3488
- // contacts: write enables agent-driven supplier/customer creation
3489
- // (required for bill creation since a bill must reference a contact).
3490
- "accounting.contacts",
3491
- // invoices: write enables bill creation (Type=ACCPAY invoices) and
3492
- // updates to sales invoices alongside the existing read access.
3493
- "accounting.invoices",
3494
- // attachments: write enables agents to attach the source PDF to a
3495
- // bill at creation time. Read-only would force a follow-up manual
3496
- // upload in Xero; write closes the loop.
3497
- "accounting.attachments",
3498
- // accounting.transactions.read → granular read-only replacements
3499
- // for the surfaces we don't yet need write access on.
3500
- "accounting.payments.read",
3501
- "accounting.banktransactions.read",
3502
- "accounting.manualjournals.read",
3503
- // accounting.reports.read → granular read-only replacements
3504
- "accounting.reports.balancesheet.read",
3505
- "accounting.reports.profitandloss.read",
3506
- "accounting.reports.trialbalance.read",
3507
- "accounting.reports.budgetsummary.read",
3508
- "accounting.reports.banksummary.read",
3509
- "accounting.reports.executivesummary.read",
3510
- "accounting.reports.aged.read"
3511
- ],
3512
- supportsRefresh: true,
3513
- extraAuthorizeParams: {},
3514
- clientAuthMethod: "basic",
3515
- userInfoUrl: "https://api.xero.com/connections"
3516
- }
3517
- };
3518
-
3519
3397
  // ../../packages/core/dist/provisioning/remote-mcp.js
3520
3398
  function envVarForToken(definitionId) {
3521
3399
  return `${definitionId.replace(/-/g, "_").toUpperCase()}_ACCESS_TOKEN`;
@@ -6710,4 +6588,4 @@ export {
6710
6588
  managerInstallSystemUnitCommand,
6711
6589
  managerUninstallSystemUnitCommand
6712
6590
  };
6713
- //# sourceMappingURL=chunk-AAK2IU2Z.js.map
6591
+ //# sourceMappingURL=chunk-U4DAVDAZ.js.map