@openape/apes 0.18.0 → 0.20.0

package/dist/cli.js

@@ -63,7 +63,7 @@ import {
 } from "./chunk-IDPV5SNB.js";
 
 // src/cli.ts
-import consola33 from "consola";
+import consola35 from "consola";
 
 // src/ape-shell.ts
 import path from "path";
@@ -93,7 +93,7 @@ function rewriteApeShellArgs(argv, argv0) {
 }
 
 // src/cli.ts
-import { defineCommand as defineCommand41, runMain } from "citty";
+import { defineCommand as defineCommand44, runMain } from "citty";
 
 // src/commands/auth/login.ts
 import { Buffer } from "buffer";
@@ -2327,7 +2327,7 @@ function generateKeyPairInMemory() {
 var spawnAgentCommand = defineCommand23({
   meta: {
     name: "spawn",
-    description: "Provision a local macOS agent end-to-end (OS user, keypair, IdP agent, ape-shell, Claude hook)"
+    description: "Provision a local macOS agent end-to-end (OS user, keypair, IdP agent, Claude hook)"
   },
   args: {
     name: {
@@ -2337,7 +2337,7 @@ var spawnAgentCommand = defineCommand23({
     },
     shell: {
       type: "string",
-      description: "Override login shell. Default: $(which ape-shell)"
+      description: "Login shell for the macOS user. Default: /bin/zsh. Pass $(which ape-shell) to opt into the grant-mediated REPL as login shell."
     },
     "no-claude-hook": {
       type: "boolean",
@@ -2364,10 +2364,7 @@ var spawnAgentCommand = defineCommand23({
     if (!idp) {
       throw new CliError("No IdP URL configured. Run `apes login` first.");
     }
-    const apeShell = args.shell ?? whichBinary("ape-shell");
-    if (!apeShell) {
-      throw new CliError("`ape-shell` not found on PATH. Install @openape/apes globally first.");
-    }
+    const loginShell = (args.shell ?? "/bin/zsh").toString();
     const apes = whichBinary("apes");
     if (!apes) {
       throw new CliError("`apes` not found on PATH. Install @openape/apes globally first.");
@@ -2378,10 +2375,10 @@ var spawnAgentCommand = defineCommand23({
         "`escapes` not found on PATH. spawn delegates the privileged setup phase to escapes; install it before running spawn."
       );
     }
-    if (!isShellRegistered(apeShell)) {
+    if (!isShellRegistered(loginShell)) {
       throw new CliError(
-        `${apeShell} is not registered in /etc/shells. macOS refuses to set it as a login shell. Run:
-  echo ${apeShell} | sudo tee -a /etc/shells
+        `${loginShell} is not registered in /etc/shells. macOS refuses to set it as a login shell. Run:
+  echo ${loginShell} | sudo tee -a /etc/shells
 and try again.`
       );
     }
@@ -2414,7 +2411,7 @@ and try again.`
       const script = buildSpawnSetupScript({
         name,
         homeDir,
-        shellPath: apeShell,
+        shellPath: loginShell,
         privateKeyPem: privatePem,
         publicKeySshLine: publicSshLine,
         authJson,
@@ -3701,7 +3698,7 @@ var mcpCommand = defineCommand32({
     if (transport !== "stdio" && transport !== "sse") {
       throw new Error('Transport must be "stdio" or "sse"');
     }
-    const { startMcpServer } = await import("./server-RPC46G4J.js");
+    const { startMcpServer } = await import("./server-XZHBOWRD.js");
     await startMcpServer(transport, port);
   }
 });
@@ -4172,11 +4169,81 @@ var utilsCommand = defineCommand37({
   }
 });
 
-// src/commands/dns-check.ts
+// src/commands/sessions/index.ts
+import { defineCommand as defineCommand40 } from "citty";
+
+// src/commands/sessions/list.ts
 import { defineCommand as defineCommand38 } from "citty";
 import consola31 from "consola";
+var sessionsListCommand = defineCommand38({
+  meta: {
+    name: "list",
+    description: "List your active refresh-token families (one per logged-in device)."
+  },
+  args: {
+    json: { type: "boolean", description: "JSON output" },
+    limit: { type: "string", description: "Max rows (default 50)" }
+  },
+  async run({ args }) {
+    const path2 = args.limit ? `/api/me/sessions?limit=${encodeURIComponent(String(args.limit))}` : "/api/me/sessions";
+    const result = await apiFetch(path2);
+    if (args.json) {
+      process.stdout.write(`${JSON.stringify(result, null, 2)}
+`);
+      return;
+    }
+    if (result.data.length === 0) {
+      consola31.info("No active sessions.");
+      return;
+    }
+    for (const f of result.data) {
+      const created = new Date(f.createdAt).toISOString();
+      const expires = new Date(f.expiresAt).toISOString();
+      console.log(`${f.familyId}  client=${f.clientId}  created=${created}  expires=${expires}`);
+    }
+  }
+});
+
+// src/commands/sessions/remove.ts
+import { defineCommand as defineCommand39 } from "citty";
+import consola32 from "consola";
+var sessionsRemoveCommand = defineCommand39({
+  meta: {
+    name: "remove",
+    description: "Revoke one of your active refresh-token families by id."
+  },
+  args: {
+    familyId: {
+      type: "positional",
+      required: true,
+      description: "Family id (from `apes sessions list`)."
+    }
+  },
+  async run({ args }) {
+    const id = String(args.familyId).trim();
+    if (!id) throw new CliError("familyId required");
+    await apiFetch(`/api/me/sessions/${encodeURIComponent(id)}`, { method: "DELETE" });
+    consola32.success(`Session ${id} revoked. The device using it will need to \`apes login\` again on its next refresh.`);
+  }
+});
+
+// src/commands/sessions/index.ts
+var sessionsCommand = defineCommand40({
+  meta: {
+    name: "sessions",
+    description: "Manage your active refresh-token sessions across devices"
+  },
+  subCommands: {
+    list: sessionsListCommand,
+    remove: sessionsRemoveCommand
+  }
+});
+
+// src/commands/dns-check.ts
+import { defineCommand as defineCommand41 } from "citty";
+import consola33 from "consola";
 import { resolveDDISA as resolveDDISA3 } from "@openape/core";
-var dnsCheckCommand = defineCommand38({
+var dnsCheckCommand = defineCommand41({
   meta: {
     name: "dns-check",
     description: "Validate DDISA DNS TXT records for a domain"
@@ -4190,7 +4257,7 @@ var dnsCheckCommand = defineCommand38({
   },
   async run({ args }) {
     const domain = args.domain;
-    consola31.start(`Checking _ddisa.${domain}...`);
+    consola33.start(`Checking _ddisa.${domain}...`);
     try {
       const result = await resolveDDISA3(domain);
       if (!result) {
@@ -4199,7 +4266,7 @@ var dnsCheckCommand = defineCommand38({
         console.log(`  _ddisa.${domain} TXT "v=ddisa1 idp=https://id.${domain}"`);
         throw new CliError(`No DDISA record found for ${domain}`);
       }
-      consola31.success(`_ddisa.${domain} \u2192 ${result.idp}`);
+      consola33.success(`_ddisa.${domain} \u2192 ${result.idp}`);
       console.log("");
       console.log(`  Version:  ${result.version || "ddisa1"}`);
       console.log(`  IdP URL:  ${result.idp}`);
@@ -4208,14 +4275,14 @@ var dnsCheckCommand = defineCommand38({
       if (result.priority !== void 0)
         console.log(`  Priority: ${result.priority}`);
       console.log("");
-      consola31.start(`Verifying IdP at ${result.idp}...`);
+      consola33.start(`Verifying IdP at ${result.idp}...`);
       const discoResp = await fetch(`${result.idp}/.well-known/openid-configuration`);
       if (!discoResp.ok) {
-        consola31.warn(`IdP discovery failed (${discoResp.status}). Is the IdP running at ${result.idp}?`);
+        consola33.warn(`IdP discovery failed (${discoResp.status}). Is the IdP running at ${result.idp}?`);
         return;
       }
       const disco = await discoResp.json();
-      consola31.success(`IdP is reachable`);
+      consola33.success(`IdP is reachable`);
       console.log(`  Issuer:   ${disco.issuer}`);
       console.log(`  DDISA:    v${disco.ddisa_version || "?"}`);
       if (disco.ddisa_auth_methods_supported) {
@@ -4233,7 +4300,7 @@ var dnsCheckCommand = defineCommand38({
 // src/commands/health.ts
 import { exec } from "child_process";
 import { promisify } from "util";
-import { defineCommand as defineCommand39 } from "citty";
+import { defineCommand as defineCommand42 } from "citty";
 var execAsync = promisify(exec);
 async function resolveApeShellPath() {
   try {
@@ -4269,7 +4336,7 @@ async function bestEffortGrantCount(idp) {
   }
 }
 async function runHealth(args) {
-  const version = true ? "0.18.0" : "0.0.0";
+  const version = true ? "0.20.0" : "0.0.0";
   const auth = loadAuth();
   if (!auth) {
     throw new CliError("Not logged in. Run `apes login` first.", 1);
@@ -4332,7 +4399,7 @@ async function runHealth(args) {
     throw new CliError(`IdP ${auth.idp} unreachable: ${idpProbe.error}`, 1);
   }
 }
-var healthCommand = defineCommand39({
+var healthCommand = defineCommand42({
   meta: {
     name: "health",
     description: "Report CLI diagnostic state (auth, IdP, grants, binaries)"
@@ -4350,8 +4417,8 @@ var healthCommand = defineCommand39({
 });
 
 // src/commands/workflows.ts
-import { defineCommand as defineCommand40 } from "citty";
-import consola32 from "consola";
+import { defineCommand as defineCommand43 } from "citty";
+import consola34 from "consola";
 
 // src/guides/index.ts
 var guides = [
@@ -4401,7 +4468,7 @@ var guides = [
 ];
 
 // src/commands/workflows.ts
-var workflowsCommand = defineCommand40({
+var workflowsCommand = defineCommand43({
   meta: {
     name: "workflows",
     description: "Discover workflow guides"
@@ -4422,7 +4489,7 @@ var workflowsCommand = defineCommand40({
     if (args.id) {
       const guide = guides.find((g) => g.id === String(args.id));
       if (!guide) {
-        consola32.info(`Available: ${guides.map((g) => g.id).join(", ")}`);
+        consola34.info(`Available: ${guides.map((g) => g.id).join(", ")}`);
         throw new CliError(`Guide not found: ${args.id}`);
       }
       if (args.json) {
@@ -4471,10 +4538,10 @@ if (shellRewrite) {
   if (shellRewrite.action === "rewrite") {
     process.argv = shellRewrite.argv;
   } else if (shellRewrite.action === "version") {
-    console.log(`ape-shell ${"0.18.0"} (OpenApe DDISA shell wrapper)`);
+    console.log(`ape-shell ${"0.20.0"} (OpenApe DDISA shell wrapper)`);
     process.exit(0);
   } else if (shellRewrite.action === "help") {
-    console.log(`ape-shell ${"0.18.0"} \u2014 OpenApe DDISA shell wrapper`);
+    console.log(`ape-shell ${"0.20.0"} \u2014 OpenApe DDISA shell wrapper`);
     console.log("");
     console.log("Usage:");
     console.log("  ape-shell                 Start interactive grant-mediated REPL");
@@ -4489,7 +4556,7 @@ if (shellRewrite) {
     console.log("  --help, -h      Show this help message");
     process.exit(0);
   } else if (shellRewrite.action === "interactive") {
-    const { runInteractiveShell } = await import("./orchestrator-FJVDWH45.js");
+    const { runInteractiveShell } = await import("./orchestrator-RWTALOSA.js");
     await runInteractiveShell();
     process.exit(0);
   } else {
@@ -4498,7 +4565,7 @@ if (shellRewrite) {
   }
 }
 var debug = process.argv.includes("--debug");
-var grantsCommand = defineCommand41({
+var grantsCommand = defineCommand44({
   meta: {
     name: "grants",
     description: "Grant management"
@@ -4519,7 +4586,7 @@ var grantsCommand = defineCommand41({
     "delegation-revoke": delegationRevokeCommand
   }
 });
-var configCommand = defineCommand41({
+var configCommand = defineCommand44({
   meta: {
     name: "config",
     description: "Configuration management"
@@ -4529,10 +4596,10 @@ var configCommand = defineCommand41({
     set: configSetCommand
   }
 });
-var main = defineCommand41({
+var main = defineCommand44({
   meta: {
     name: "apes",
-    version: "0.18.0",
+    version: "0.20.0",
     description: "Unified CLI for OpenApe"
   },
   subCommands: {
@@ -4541,6 +4608,7 @@ var main = defineCommand41({
     "register-user": registerUserCommand,
     "dns-check": dnsCheckCommand,
     utils: utilsCommand,
+    sessions: sessionsCommand,
     login: loginCommand,
     logout: logoutCommand,
     whoami: whoamiCommand,
@@ -4591,13 +4659,13 @@ runMain(main).catch((err) => {
     process.exit(err.exitCode);
   }
   if (err instanceof CliError) {
-    consola33.error(err.message);
+    consola35.error(err.message);
     process.exit(err.exitCode);
   }
   if (debug) {
-    consola33.error(err);
+    consola35.error(err);
   } else {
-    consola33.error(err instanceof ApiError ? err.message : err instanceof Error ? err.message : String(err));
+    consola35.error(err instanceof ApiError ? err.message : err instanceof Error ? err.message : String(err));
   }
   process.exit(1);
 });