@openthread/claude-code-plugin 0.1.0

package/.claude-plugin/plugin.json

@@ -0,0 +1,9 @@
+{
+  "name": "openthread-share",
+  "version": "0.1.0",
+  "description": "Share Claude Code conversations to OpenThread",
+  "icon": "icon.svg",
+  "author": {
+    "name": "OpenThread"
+  }
+}

package/README.md

@@ -0,0 +1,93 @@
+# @openthread/claude-code-plugin
+
+Share Claude Code conversations to [OpenThread](https://openthread.dev) -- a Reddit-like platform for AI conversation threads.
+
+[![npm version](https://img.shields.io/npm/v/@openthread/claude-code-plugin)](https://www.npmjs.com/package/@openthread/claude-code-plugin)
+[![license](https://img.shields.io/npm/l/@openthread/claude-code-plugin)](https://github.com/nicholasgriffintn/openthread/blob/main/LICENSE)
+[![downloads](https://img.shields.io/npm/dm/@openthread/claude-code-plugin)](https://www.npmjs.com/package/@openthread/claude-code-plugin)
+
+## Install
+
+```bash
+npm i -g @openthread/claude-code-plugin
+```
+
+The postinstall script registers the plugin with Claude Code automatically.
+
+## Quick Start
+
+```
+You> /share fixing auth bug
+
+Sharing conversation to OpenThread...
+Authenticated as @yourname
+Auto-generated title: "Debugging PKCE token refresh in auth middleware"
+Posted to c/ClaudeCode
+
+https://openthread.dev/c/ClaudeCode/posts/abc123
+```
+
+## Features
+
+- **One-command sharing** -- run `/share` inside any Claude Code session to publish the conversation to OpenThread.
+- **Quick mode** -- `/share <description>` auto-generates a title, selects a community, and posts immediately.
+- **Interactive mode** -- `/share` with no arguments prompts you to choose a title, community, and tags.
+- **Secure auth** -- PKCE OAuth flow with automatic token refresh. Credentials are stored locally.
+- **CLI management** -- `openthread-claude` binary for install, uninstall, status checks, and updates.
+
+## Usage
+
+### Quick mode
+
+```
+/share fixing auth bug
+```
+
+Provide a short description after `/share`. The plugin generates a title from the conversation context, picks the best-matching community, and posts without further prompts.
+
+### Interactive mode
+
+```
+/share
+```
+
+Run with no arguments to step through each field:
+
+1. Title (suggested from conversation, editable)
+2. Community (searchable list)
+3. Tags (optional, comma-separated)
+
+## CLI Commands
+
+| Command | Description |
+| --- | --- |
+| `openthread-claude install` | Register the plugin with Claude Code |
+| `openthread-claude uninstall` | Remove the plugin from Claude Code |
+| `openthread-claude status` | Show current auth and plugin state |
+| `openthread-claude update` | Pull the latest plugin version |
+
+## Configuration
+
+Environment variables override the default endpoints. Set them in your shell profile or `.env` file.
+
+| Variable | Default | Description |
+| --- | --- | --- |
+| `OPENTHREAD_API_URL` | `https://api.openthread.dev` | Backend API base URL |
+| `OPENTHREAD_WEB_URL` | `https://openthread.dev` | Web app base URL (used for post links) |
+
+## Manual Install
+
+If you prefer not to use npm:
+
+1. Download the latest release `.zip` from the [GitHub releases page](https://github.com/nicholasgriffintn/openthread/releases).
+2. Extract it to `~/.claude/plugins/openthread-share/`.
+3. Restart Claude Code. The plugin will be detected on next launch.
+
+```bash
+mkdir -p ~/.claude/plugins/openthread-share
+unzip openthread-claude-code-plugin.zip -d ~/.claude/plugins/openthread-share/
+```
+
+## License
+
+MIT

package/bin/cli.sh

@@ -0,0 +1,64 @@
+#!/usr/bin/env bash
+# CLI for managing the OpenThread Claude Code plugin
+set -euo pipefail
+
+PLUGIN_NAME="openthread-share"
+PLUGIN_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
+DEST_DIR="$HOME/.claude/plugins/$PLUGIN_NAME"
+
+usage() {
+  echo "Usage: openthread-claude <command>"
+  echo ""
+  echo "Commands:"
+  echo "  install     Install plugin to ~/.claude/plugins/"
+  echo "  uninstall   Remove plugin from ~/.claude/plugins/"
+  echo "  status      Check if plugin is installed"
+  echo "  update      Reinstall plugin (update to current version)"
+}
+
+install_plugin() {
+  mkdir -p "$DEST_DIR"
+
+  for dir in .claude-plugin commands skills scripts; do
+    if [ -d "$PLUGIN_DIR/$dir" ]; then
+      cp -r "$PLUGIN_DIR/$dir" "$DEST_DIR/"
+    fi
+  done
+
+  if [ -f "$PLUGIN_DIR/icon.svg" ]; then
+    cp "$PLUGIN_DIR/icon.svg" "$DEST_DIR/"
+  fi
+
+  chmod +x "$DEST_DIR/scripts/"*.sh 2>/dev/null || true
+
+  VERSION=$(python3 -c "import json; print(json.load(open('$DEST_DIR/.claude-plugin/plugin.json'))['version'])")
+  echo "✓ OpenThread plugin v$VERSION installed to $DEST_DIR"
+  echo "  Use /share in Claude Code to share conversations."
+}
+
+uninstall_plugin() {
+  if [ -d "$DEST_DIR" ]; then
+    rm -rf "$DEST_DIR"
+    echo "✓ OpenThread plugin removed from $DEST_DIR"
+  else
+    echo "Plugin is not installed."
+  fi
+}
+
+check_status() {
+  if [ -d "$DEST_DIR" ] && [ -f "$DEST_DIR/.claude-plugin/plugin.json" ]; then
+    VERSION=$(python3 -c "import json; print(json.load(open('$DEST_DIR/.claude-plugin/plugin.json'))['version'])")
+    echo "✓ OpenThread plugin v$VERSION is installed at $DEST_DIR"
+  else
+    echo "✗ OpenThread plugin is not installed."
+    echo "  Run: openthread-claude install"
+  fi
+}
+
+case "${1:-}" in
+  install)  install_plugin ;;
+  uninstall|remove) uninstall_plugin ;;
+  status)   check_status ;;
+  update)   install_plugin ;;
+  *)        usage ;;
+esac

package/bin/postinstall.js

@@ -0,0 +1,57 @@
+#!/usr/bin/env node
+// Auto-install plugin files to ~/.claude/plugins/ on npm install
+const { existsSync, mkdirSync, cpSync, chmodSync, readdirSync, readFileSync, writeFileSync } = require("fs");
+const { join, resolve } = require("path");
+const { homedir } = require("os");
+
+const PLUGIN_NAME = "openthread-share";
+const pluginSrc = resolve(__dirname, "..");
+const pluginDest = join(homedir(), ".claude", "plugins", PLUGIN_NAME);
+
+const DIRS_TO_COPY = [".claude-plugin", "commands", "skills", "scripts"];
+const FILES_TO_COPY = ["icon.svg"];
+
+try {
+  mkdirSync(pluginDest, { recursive: true });
+
+  for (const dir of DIRS_TO_COPY) {
+    const src = join(pluginSrc, dir);
+    if (existsSync(src)) {
+      cpSync(src, join(pluginDest, dir), { recursive: true });
+    }
+  }
+
+  for (const file of FILES_TO_COPY) {
+    const src = join(pluginSrc, file);
+    if (existsSync(src)) {
+      cpSync(src, join(pluginDest, file));
+    }
+  }
+
+  // Sync version from package.json → plugin.json
+  const pkgJsonPath = join(pluginSrc, "package.json");
+  const pluginJsonPath = join(pluginDest, ".claude-plugin", "plugin.json");
+  if (existsSync(pkgJsonPath) && existsSync(pluginJsonPath)) {
+    const version = JSON.parse(readFileSync(pkgJsonPath, "utf8")).version;
+    const pluginJson = JSON.parse(readFileSync(pluginJsonPath, "utf8"));
+    pluginJson.version = version;
+    writeFileSync(pluginJsonPath, JSON.stringify(pluginJson, null, 2) + "\n");
+  }
+
+  // Ensure scripts are executable
+  const scriptsDir = join(pluginDest, "scripts");
+  if (existsSync(scriptsDir)) {
+    for (const f of readdirSync(scriptsDir)) {
+      if (f.endsWith(".sh")) {
+        chmodSync(join(scriptsDir, f), 0o755);
+      }
+    }
+  }
+
+  const version = JSON.parse(readFileSync(join(pluginSrc, "package.json"), "utf8")).version;
+  console.log(`\x1b[32m✓\x1b[0m OpenThread plugin v${version} installed to ${pluginDest}`);
+  console.log(`  Use \x1b[1m/share\x1b[0m in Claude Code to share conversations.`);
+} catch (err) {
+  console.error(`Warning: Could not auto-install plugin: ${err.message}`);
+  console.error(`You can manually install by copying plugin files to ${pluginDest}`);
+}

package/commands/share.md

@@ -0,0 +1,13 @@
+---
+name: share
+description: Share the current conversation to OpenThread
+allowed-tools: Bash, Read, Write, AskUserQuestion
+---
+
+Share this Claude Code conversation to OpenThread using the `share-thread` skill.
+
+Arguments: $ARGUMENTS
+
+If arguments are provided, use quick mode — share directly without asking questions. Otherwise, ask the user for title, community, and tags.
+
+Follow the instructions in the `share-thread` skill to complete the sharing process.

package/icon.svg

@@ -0,0 +1,35 @@
+<svg width="128" height="128" viewBox="70 120 180 180" xmlns="http://www.w3.org/2000/svg">
+  <!-- Outer ring -->
+  <circle cx="160" cy="210" r="72" fill="none" stroke="#3B8BD4" stroke-width="2" opacity="0.18"/>
+
+  <!-- Chat bubble 1 (AI) -->
+  <rect x="100" y="168" width="84" height="52" rx="14" fill="#3B8BD4" opacity="0.15"/>
+  <rect x="100" y="168" width="84" height="52" rx="14" fill="none" stroke="#3B8BD4" stroke-width="1.5" opacity="0.55"/>
+  <path d="M108 220 L100 234 L120 220Z" fill="#3B8BD4" opacity="0.55"/>
+
+  <!-- Thread lines in bubble 1 -->
+  <line x1="114" y1="184" x2="170" y2="184" stroke="#3B8BD4" stroke-width="2" stroke-linecap="round" opacity="0.7"/>
+  <line x1="114" y1="196" x2="158" y2="196" stroke="#3B8BD4" stroke-width="2" stroke-linecap="round" opacity="0.4"/>
+  <line x1="114" y1="208" x2="148" y2="208" stroke="#3B8BD4" stroke-width="1.5" stroke-linecap="round" opacity="0.25"/>
+
+  <!-- Chat bubble 2 (user) -->
+  <rect x="140" y="236" width="72" height="44" rx="12" fill="#1D9E75" opacity="0.12"/>
+  <rect x="140" y="236" width="72" height="44" rx="12" fill="none" stroke="#1D9E75" stroke-width="1.5" opacity="0.5"/>
+  <path d="M204 264 L214 276 L198 264Z" fill="#1D9E75" opacity="0.5"/>
+
+  <!-- Thread lines in bubble 2 -->
+  <line x1="154" y1="251" x2="200" y2="251" stroke="#1D9E75" stroke-width="1.8" stroke-linecap="round" opacity="0.65"/>
+  <line x1="154" y1="263" x2="190" y2="263" stroke="#1D9E75" stroke-width="1.5" stroke-linecap="round" opacity="0.35"/>
+
+  <!-- Connector dots -->
+  <circle cx="160" cy="233" r="3" fill="#3B8BD4" opacity="0.5"/>
+  <circle cx="160" cy="235" r="1.5" fill="#1D9E75" opacity="0.5"/>
+
+  <!-- Upvote arrow -->
+  <path d="M113 153 L120 142 L127 153Z" fill="#EF9F27" stroke="#EF9F27" stroke-width="0.5" stroke-linejoin="round" opacity="0.75"/>
+  <line x1="120" y1="153" x2="120" y2="163" stroke="#EF9F27" stroke-width="2" stroke-linecap="round" opacity="0.75"/>
+
+  <!-- Score pill -->
+  <rect x="130" y="145" width="28" height="16" rx="8" fill="#EF9F27" opacity="0.15"/>
+  <rect x="130" y="145" width="28" height="16" rx="8" fill="none" stroke="#EF9F27" stroke-width="1" opacity="0.4"/>
+</svg>

package/package.json

@@ -0,0 +1,38 @@
+{
+  "name": "@openthread/claude-code-plugin",
+  "version": "0.1.0",
+  "description": "Share Claude Code conversations to OpenThread",
+  "bin": {
+    "openthread-claude": "bin/cli.sh"
+  },
+  "files": [
+    "bin/",
+    ".claude-plugin/",
+    "commands/",
+    "skills/",
+    "scripts/auth.sh",
+    "scripts/share.sh",
+    "scripts/token.sh",
+    "icon.svg"
+  ],
+  "scripts": {
+    "prepack": "node -e \"const fs=require('fs');const v=JSON.parse(fs.readFileSync('package.json','utf8')).version;const p=JSON.parse(fs.readFileSync('.claude-plugin/plugin.json','utf8'));p.version=v;fs.writeFileSync('.claude-plugin/plugin.json',JSON.stringify(p,null,2)+'\\n')\"",
+    "postinstall": "node bin/postinstall.js"
+  },
+  "keywords": [
+    "claude-code",
+    "claude",
+    "openthread",
+    "plugin",
+    "ai",
+    "conversation",
+    "share"
+  ],
+  "author": "OpenThread",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/nicholasgriffintn/openthread.git",
+    "directory": "apps/claude-code-plugin"
+  }
+}

package/scripts/auth.sh

@@ -0,0 +1,184 @@
+#!/usr/bin/env bash
+# OpenThread PKCE auth flow for Claude Code plugin
+# Opens browser, runs a local callback server, exchanges code for tokens
+set -euo pipefail
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+# shellcheck source=token.sh
+source "$SCRIPT_DIR/token.sh"
+
+API_BASE="${OPENTHREAD_API_URL:-https://api.openthread.dev}"
+WEB_BASE="${OPENTHREAD_WEB_URL:-https://openthread.dev}"
+EXTENSION_ID="claude-code"
+CALLBACK_PORT=18923
+REDIRECT_URI="http://localhost:${CALLBACK_PORT}/callback"
+
+# --- PKCE generation ---
+
+generate_pkce() {
+  # Generate a 32-byte random code_verifier (base64url, 43 chars)
+  CODE_VERIFIER=$(openssl rand -base64 32 | tr '+/' '-_' | tr -d '=')
+
+  # SHA-256 hash → base64url = code_challenge
+  CODE_CHALLENGE=$(printf '%s' "$CODE_VERIFIER" | openssl dgst -sha256 -binary | openssl base64 -A | tr '+/' '-_' | tr -d '=')
+}
+
+# --- Main auth flow ---
+
+main() {
+  echo "Starting OpenThread authentication..." >&2
+
+  generate_pkce
+
+  # Create a temp file for server output
+  AUTH_OUTPUT=$(mktemp)
+  trap 'rm -f "$AUTH_OUTPUT"' EXIT
+
+  # Start local callback server, capturing output
+  python3 -c "
+import http.server
+import urllib.parse
+
+class Handler(http.server.BaseHTTPRequestHandler):
+    def do_GET(self):
+        parsed = urllib.parse.urlparse(self.path)
+        params = urllib.parse.parse_qs(parsed.query)
+
+        if parsed.path == '/callback' and 'code' in params:
+            code = params['code'][0]
+            self.send_response(200)
+            self.send_header('Content-Type', 'text/html')
+            self.end_headers()
+            self.wfile.write(b'<html><body><h2>Authorization successful!</h2><p>You can close this tab and return to Claude Code.</p><script>window.close()</script></body></html>')
+            with open('$AUTH_OUTPUT', 'w') as f:
+                f.write(code)
+        else:
+            self.send_response(404)
+            self.end_headers()
+
+    def log_message(self, format, *args):
+        pass
+
+try:
+    server = http.server.HTTPServer(('127.0.0.1', ${CALLBACK_PORT}), Handler)
+    server.timeout = 120  # 2 minute timeout
+    server.handle_request()
+except OSError as e:
+    with open('$AUTH_OUTPUT', 'w') as f:
+        f.write('ERROR:' + str(e))
+" 2>/dev/null &
+  SERVER_PID=$!
+  sleep 0.3
+
+  # Check server started
+  if ! kill -0 "$SERVER_PID" 2>/dev/null; then
+    echo "ERROR: Could not start callback server on port ${CALLBACK_PORT}." >&2
+    echo "FALLBACK: Manual auth required." >&2
+    manual_auth
+    return $?
+  fi
+
+  # Build authorization URL and open browser
+  AUTH_URL="${WEB_BASE}/extension/callback?code_challenge=${CODE_CHALLENGE}&extension_id=${EXTENSION_ID}&redirect_uri=$(python3 -c "import urllib.parse; print(urllib.parse.quote('${REDIRECT_URI}', safe=''))")"
+
+  echo "Opening browser for authorization..." >&2
+
+  # Open browser (macOS: open, Linux: xdg-open)
+  if command -v open &>/dev/null; then
+    open "$AUTH_URL"
+  elif command -v xdg-open &>/dev/null; then
+    xdg-open "$AUTH_URL"
+  else
+    echo "Please open this URL in your browser:" >&2
+    echo "$AUTH_URL" >&2
+  fi
+
+  echo "Waiting for authorization (up to 2 minutes)..." >&2
+
+  # Wait for the server to receive the callback
+  wait "$SERVER_PID" 2>/dev/null || true
+
+  # Read the auth code from the temp file
+  if [ ! -s "$AUTH_OUTPUT" ]; then
+    echo "ERROR: No authorization code received (timed out or server error)." >&2
+    echo "FALLBACK: Manual auth required." >&2
+    manual_auth
+    return $?
+  fi
+
+  AUTH_CODE=$(cat "$AUTH_OUTPUT")
+
+  # Check for errors
+  if [[ "$AUTH_CODE" == ERROR:* ]]; then
+    echo "ERROR: Server failed: ${AUTH_CODE#ERROR:}" >&2
+    manual_auth
+    return $?
+  fi
+
+  # Exchange the code for tokens
+  exchange_code "$AUTH_CODE"
+}
+
+# --- Manual fallback ---
+
+manual_auth() {
+  generate_pkce
+
+  AUTH_URL="${WEB_BASE}/extension/callback?code_challenge=${CODE_CHALLENGE}&extension_id=${EXTENSION_ID}&redirect_uri=$(python3 -c "import urllib.parse; print(urllib.parse.quote('${REDIRECT_URI}', safe=''))")"
+
+  echo "" >&2
+  echo "Open this URL in your browser:" >&2
+  echo "$AUTH_URL" >&2
+  echo "" >&2
+  echo "After authorizing, copy the 'code' parameter from the redirect URL." >&2
+  echo -n "Paste the authorization code here: " >&2
+  read -r AUTH_CODE
+
+  if [ -z "$AUTH_CODE" ]; then
+    echo "ERROR: No code provided." >&2
+    return 1
+  fi
+
+  exchange_code "$AUTH_CODE"
+}
+
+# --- Token exchange ---
+
+exchange_code() {
+  local auth_code="$1"
+
+  echo "Exchanging authorization code for tokens..." >&2
+
+  RESPONSE=$(curl -s -w "\n%{http_code}" -X POST "${API_BASE}/api/auth/extension/token" \
+    -H "Content-Type: application/json" \
+    -d "{
+      \"code\": \"${auth_code}\",
+      \"codeVerifier\": \"${CODE_VERIFIER}\",
+      \"extensionId\": \"${EXTENSION_ID}\"
+    }")
+
+  HTTP_CODE=$(echo "$RESPONSE" | tail -1)
+  BODY=$(echo "$RESPONSE" | sed '$d')
+
+  if [ "$HTTP_CODE" != "200" ]; then
+    echo "ERROR: Token exchange failed (HTTP ${HTTP_CODE}):" >&2
+    echo "$BODY" >&2
+    return 1
+  fi
+
+  # Parse tokens from response
+  ACCESS_TOKEN=$(echo "$BODY" | python3 -c "import sys,json; d=json.load(sys.stdin)['data']; print(d['access_token'])")
+  REFRESH_TOKEN=$(echo "$BODY" | python3 -c "import sys,json; d=json.load(sys.stdin)['data']; print(d['refresh_token'])")
+  EXPIRES_IN=$(echo "$BODY" | python3 -c "import sys,json; d=json.load(sys.stdin)['data']; print(d['expires_in'])")
+
+  # Calculate expires_at (current epoch + expires_in)
+  EXPIRES_AT=$(( $(date +%s) + EXPIRES_IN ))
+
+  # Save tokens
+  save_tokens "$ACCESS_TOKEN" "$REFRESH_TOKEN" "$EXPIRES_AT"
+
+  echo "Authentication successful!" >&2
+  echo "$ACCESS_TOKEN"
+}
+
+main "$@"

package/scripts/share.sh

@@ -0,0 +1,240 @@
+#!/usr/bin/env bash
+# Share a Claude Code session to OpenThread
+# Usage:
+#   bash share.sh parse          <session_file>                                              — output compact markdown from JSONL
+#   bash share.sh import         <session_file> <title> <community_id> <tags> <token>        — parse JSONL & import as compact post
+#   bash share.sh import-export  <export_file>  <title> <community_id> <tags> <token>        — send /export text as body & import
+set -euo pipefail
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+API_BASE="${OPENTHREAD_API_URL:-https://api.openthread.dev}"
+
+# --- Parse JSONL session file into compact markdown body ---
+# Extracts only text blocks from assistant messages, skips thinking/tool_use/tool_result/etc.
+# Formats as markdown with ## User / ## Assistant headings separated by ---
+parse_session() {
+  local session_file="$1"
+
+  if [ ! -f "$session_file" ]; then
+    echo "ERROR: Session file not found: $session_file" >&2
+    return 1
+  fi
+
+  python3 - "$session_file" <<'PYEOF'
+import json
+import sys
+
+session_file = sys.argv[1]
+parts = []
+SKIP_TYPES = {"thinking", "tool_use", "tool_result", "web_fetch", "web_search", "error", "image"}
+
+with open(session_file, 'r') as f:
+    for line in f:
+        line = line.strip()
+        if not line:
+            continue
+        try:
+            entry = json.loads(line)
+        except json.JSONDecodeError:
+            continue
+
+        # Skip sidechain messages
+        if entry.get("isSidechain"):
+            continue
+
+        entry_type = entry.get("type", "")
+        if entry_type == "user":
+            role = "User"
+        elif entry_type == "assistant":
+            role = "Assistant"
+        else:
+            continue
+
+        message = entry.get("message", {})
+        if not isinstance(message, dict):
+            if isinstance(message, str) and message.strip():
+                parts.append(f"## {role}\n\n{message.strip()}")
+            continue
+
+        msg_content = message.get("content", "")
+
+        # If content is a string, keep it as-is
+        if isinstance(msg_content, str):
+            text = msg_content.strip()
+            if text:
+                parts.append(f"## {role}\n\n{text}")
+            continue
+
+        # Content is a list of blocks — keep only text blocks
+        if isinstance(msg_content, list):
+            kept = []
+            for block in msg_content:
+                if isinstance(block, str):
+                    kept.append(block)
+                elif isinstance(block, dict):
+                    btype = block.get("type", "")
+                    if btype in SKIP_TYPES:
+                        continue
+                    if btype == "text" and block.get("text", "").strip():
+                        kept.append(block["text"])
+            text = "\n\n".join(kept).strip()
+            if text:
+                parts.append(f"## {role}\n\n{text}")
+
+body = "\n\n---\n\n".join(parts)
+# Truncate to 500000 chars
+print(body[:500000])
+PYEOF
+}
+
+# --- Import to OpenThread ---
+import_post() {
+  local session_file="$1"
+  local title="$2"
+  local community_id="$3"
+  local tags_csv="$4"
+  local access_token="$5"
+
+  # Parse the session into compact markdown
+  local compact_body
+  compact_body=$(parse_session "$session_file")
+
+  if [ -z "$compact_body" ]; then
+    echo "ERROR: Failed to parse session file" >&2
+    return 1
+  fi
+
+  # Build tags array from comma-separated string
+  local tags_json="[]"
+  if [ -n "$tags_csv" ] && [ "$tags_csv" != "-" ]; then
+    tags_json=$(python3 -c "
+import json, sys
+tags = [t.strip() for t in sys.argv[1].split(',') if t.strip()]
+print(json.dumps(tags))
+" "$tags_csv")
+  fi
+
+  # Build the import payload with body (no rawThread)
+  local payload
+  payload=$(python3 -c "
+import json, sys
+body_text = sys.argv[1]
+payload = {
+    'title': sys.argv[2],
+    'communityId': sys.argv[3],
+    'body': body_text,
+    'tags': json.loads(sys.argv[4]),
+    'source': 'claude-code',
+    'provider': 'claude',
+}
+print(json.dumps(payload))
+" "$compact_body" "$title" "$community_id" "$tags_json")
+
+  # POST to import endpoint
+  RESPONSE=$(curl -s -w "\n%{http_code}" -X POST "${API_BASE}/api/posts/import" \
+    -H "Authorization: Bearer ${access_token}" \
+    -H "Content-Type: application/json" \
+    -d "$payload")
+
+  HTTP_CODE=$(echo "$RESPONSE" | tail -1)
+  BODY=$(echo "$RESPONSE" | sed '$d')
+
+  if [ "$HTTP_CODE" != "200" ] && [ "$HTTP_CODE" != "201" ]; then
+    echo "ERROR: Import failed (HTTP ${HTTP_CODE}):" >&2
+    echo "$BODY" >&2
+    return 1
+  fi
+
+  # Output the post data
+  echo "$BODY"
+}
+
+# --- Import /export text to OpenThread (send as body directly) ---
+import_export_post() {
+  local export_file="$1"
+  local title="$2"
+  local community_id="$3"
+  local tags_csv="$4"
+  local access_token="$5"
+
+  if [ ! -f "$export_file" ]; then
+    echo "ERROR: Export file not found: $export_file" >&2
+    return 1
+  fi
+
+  # Build tags array from comma-separated string
+  local tags_json="[]"
+  if [ -n "$tags_csv" ] && [ "$tags_csv" != "-" ]; then
+    tags_json=$(python3 -c "
+import json, sys
+tags = [t.strip() for t in sys.argv[1].split(',') if t.strip()]
+print(json.dumps(tags))
+" "$tags_csv")
+  fi
+
+  # Build the import payload with body (export text is already compact)
+  local payload
+  payload=$(python3 -c "
+import json, sys
+with open(sys.argv[1], 'r') as f:
+    export_text = f.read()
+# Truncate to 500000 chars
+export_text = export_text[:500000]
+payload = {
+    'title': sys.argv[2],
+    'communityId': sys.argv[3],
+    'body': export_text,
+    'tags': json.loads(sys.argv[4]),
+    'source': 'claude-code',
+    'provider': 'claude',
+}
+print(json.dumps(payload))
+" "$export_file" "$title" "$community_id" "$tags_json")
+
+  # POST to import endpoint
+  RESPONSE=$(curl -s -w "\n%{http_code}" -X POST "${API_BASE}/api/posts/import" \
+    -H "Authorization: Bearer ${access_token}" \
+    -H "Content-Type: application/json" \
+    -d "$payload")
+
+  HTTP_CODE=$(echo "$RESPONSE" | tail -1)
+  BODY=$(echo "$RESPONSE" | sed '$d')
+
+  if [ "$HTTP_CODE" != "200" ] && [ "$HTTP_CODE" != "201" ]; then
+    echo "ERROR: Import failed (HTTP ${HTTP_CODE}):" >&2
+    echo "$BODY" >&2
+    return 1
+  fi
+
+  # Output the post data
+  echo "$BODY"
+}
+
+# --- CLI interface ---
+case "${1:-}" in
+  parse)
+    if [ -z "${2:-}" ]; then
+      echo "Usage: share.sh parse <session_file>" >&2
+      exit 1
+    fi
+    parse_session "$2"
+    ;;
+  import)
+    if [ -z "${6:-}" ]; then
+      echo "Usage: share.sh import <session_file> <title> <community_id> <tags> <token>" >&2
+      exit 1
+    fi
+    import_post "$2" "$3" "$4" "${5:--}" "$6"
+    ;;
+  import-export)
+    if [ -z "${6:-}" ]; then
+      echo "Usage: share.sh import-export <export_file> <title> <community_id> <tags> <token>" >&2
+      exit 1
+    fi
+    import_export_post "$2" "$3" "$4" "${5:--}" "$6"
+    ;;
+  *)
+    echo "Usage: share.sh {parse|import|import-export} ..." >&2
+    exit 1
+    ;;
+esac

package/scripts/token.sh

@@ -0,0 +1,140 @@
+#!/usr/bin/env bash
+# Token management for OpenThread Claude Code plugin
+# Usage:
+#   source token.sh           — import functions
+#   bash token.sh refresh     — refresh the access token
+#   bash token.sh get         — print a valid access token (refreshing if needed)
+#   bash token.sh check       — exit 0 if authenticated, 1 if not
+set -euo pipefail
+
+API_BASE="${OPENTHREAD_API_URL:-https://api.openthread.dev}"
+EXTENSION_ID="claude-code"
+CREDENTIALS_DIR="$HOME/.config/openthread"
+CREDENTIALS_FILE="$CREDENTIALS_DIR/credentials.json"
+
+# --- Save tokens to credentials file ---
+save_tokens() {
+  local access_token="$1"
+  local refresh_token="$2"
+  local expires_at="$3"
+
+  mkdir -p "$CREDENTIALS_DIR"
+
+  cat > "$CREDENTIALS_FILE" <<EOF
+{
+  "access_token": "${access_token}",
+  "refresh_token": "${refresh_token}",
+  "expires_at": ${expires_at}
+}
+EOF
+
+  chmod 600 "$CREDENTIALS_FILE"
+}
+
+# --- Check if token is expired ---
+is_expired() {
+  if [ ! -f "$CREDENTIALS_FILE" ]; then
+    return 0  # No file = expired
+  fi
+
+  local expires_at
+  expires_at=$(python3 -c "import json; print(json.load(open('$CREDENTIALS_FILE'))['expires_at'])" 2>/dev/null || echo "0")
+  local now
+  now=$(date +%s)
+
+  # Consider expired if within 60 seconds of expiry
+  if [ "$now" -ge "$((expires_at - 60))" ]; then
+    return 0  # Expired
+  fi
+
+  return 1  # Still valid
+}
+
+# --- Get access token from credentials ---
+get_access_token() {
+  if [ ! -f "$CREDENTIALS_FILE" ]; then
+    echo "ERROR: Not authenticated. Run auth.sh first." >&2
+    return 1
+  fi
+
+  python3 -c "import json; print(json.load(open('$CREDENTIALS_FILE'))['access_token'])" 2>/dev/null
+}
+
+# --- Get refresh token from credentials ---
+get_refresh_token() {
+  if [ ! -f "$CREDENTIALS_FILE" ]; then
+    echo "ERROR: Not authenticated. Run auth.sh first." >&2
+    return 1
+  fi
+
+  python3 -c "import json; print(json.load(open('$CREDENTIALS_FILE'))['refresh_token'])" 2>/dev/null
+}
+
+# --- Refresh the access token ---
+refresh_token() {
+  local current_refresh
+  current_refresh=$(get_refresh_token) || return 1
+
+  RESPONSE=$(curl -s -w "\n%{http_code}" -X POST "${API_BASE}/api/auth/extension/refresh" \
+    -H "Content-Type: application/json" \
+    -d "{
+      \"refreshToken\": \"${current_refresh}\",
+      \"extensionId\": \"${EXTENSION_ID}\"
+    }")
+
+  HTTP_CODE=$(echo "$RESPONSE" | tail -1)
+  BODY=$(echo "$RESPONSE" | sed '$d')
+
+  if [ "$HTTP_CODE" != "200" ]; then
+    echo "ERROR: Token refresh failed (HTTP ${HTTP_CODE}):" >&2
+    echo "$BODY" >&2
+    return 1
+  fi
+
+  local new_access_token
+  new_access_token=$(echo "$BODY" | python3 -c "import sys,json; print(json.load(sys.stdin)['data']['access_token'])")
+  local expires_in
+  expires_in=$(echo "$BODY" | python3 -c "import sys,json; print(json.load(sys.stdin)['data']['expires_in'])")
+  local new_expires_at
+  new_expires_at=$(( $(date +%s) + expires_in ))
+
+  # Update credentials file (keep existing refresh token)
+  save_tokens "$new_access_token" "$current_refresh" "$new_expires_at"
+
+  echo "$new_access_token"
+}
+
+# --- Get a valid token (refresh if needed) ---
+get_valid_token() {
+  if is_expired; then
+    echo "Token expired, refreshing..." >&2
+    refresh_token
+  else
+    get_access_token
+  fi
+}
+
+# --- CLI interface ---
+if [ "${BASH_SOURCE[0]}" = "$0" ]; then
+  case "${1:-}" in
+    refresh)
+      refresh_token
+      ;;
+    get)
+      get_valid_token
+      ;;
+    check)
+      if [ -f "$CREDENTIALS_FILE" ] && ! is_expired; then
+        echo "Authenticated"
+        exit 0
+      else
+        echo "Not authenticated or token expired"
+        exit 1
+      fi
+      ;;
+    *)
+      echo "Usage: token.sh {refresh|get|check}" >&2
+      exit 1
+      ;;
+  esac
+fi

package/skills/share-thread/SKILL.md

@@ -0,0 +1,180 @@
+---
+name: share-thread
+description: Share the current Claude Code conversation to OpenThread
+---
+
+# Share Conversation to OpenThread (v2)
+
+This skill shares the current Claude Code conversation to OpenThread in 4 steps.
+
+## Configuration
+
+```
+API_BASE="${OPENTHREAD_API_URL:-http://localhost:3001}"
+WEB_BASE="${OPENTHREAD_WEB_URL:-http://localhost:3000}"
+PLUGIN_DIR=<directory containing this skill — find it relative to this file, e.g. apps/claude-code-plugin or ~/.claude/plugins/openthread-share>
+```
+
+## Step 1: Authenticate
+
+Get a valid access token using `token.sh get` (it auto-refreshes expired tokens):
+
+```bash
+ACCESS_TOKEN=$(bash "PLUGIN_DIR/scripts/token.sh" get 2>/dev/null)
+```
+
+**If that fails** (exit code non-zero, or empty output), the user isn't authenticated yet. Run the full auth flow:
+
+```bash
+ACCESS_TOKEN=$(bash "PLUGIN_DIR/scripts/auth.sh")
+```
+
+After this step you MUST have a non-empty `$ACCESS_TOKEN`. If both commands fail, stop and tell the user: "Authentication failed. Make sure the OpenThread server is running at `$API_BASE` and try again."
+
+## Step 2: Find the Session File
+
+Claude Code stores conversation transcripts as JSONL files at:
+
+```
+~/.claude/projects/<project-slug>/<session-uuid>.jsonl
+```
+
+The project slug is the current working directory with `/` replaced by `-` (e.g. `-Users-yogi-WebstormProjects-agent-post`).
+
+**Find your own session file** — the file corresponding to THIS conversation. You know your own session ID from the environment. Look it up directly:
+
+```bash
+SESSION_FILE="$HOME/.claude/projects/<project-slug>/<this-session-uuid>.jsonl"
+```
+
+If you cannot determine your own session ID, fall back to the ranked selection below.
+
+### Fallback: Ranked selection
+
+List JSONL files in the project directory, sorted by size descending:
+
+```bash
+ls -lhS "$HOME/.claude/projects/<project-slug>/"*.jsonl
+```
+
+Apply these filters in order:
+1. **Exclude files smaller than 50KB** — these are re-invocation sessions or sub-agent sessions, not real conversations
+2. **Prefer the most recently modified file** among the remaining candidates (use `ls -lt` to sort by modification time)
+3. If only one file remains after filtering, use it
+
+### Sanity check
+
+Before proceeding, verify the file has meaningful content — count the number of user/assistant message pairs:
+
+```bash
+python3 -c "
+import json, sys
+count = 0
+with open(sys.argv[1]) as f:
+    for line in f:
+        try:
+            e = json.loads(line)
+            if e.get('type') in ('user', 'assistant'):
+                count += 1
+        except: pass
+print(count)
+" "$SESSION_FILE"
+```
+
+The count should be at least 4 (2 user + 2 assistant messages). If it's less, skip to the next candidate file. If no candidates pass, stop and tell the user: "Could not find a session file with enough content to share."
+
+## Step 3: Prepare Metadata & Summary
+
+First, check if the `/share-thread` command was invoked with **arguments** (any text after the command name in the `ARGUMENTS:` field).
+
+### Quick Mode (arguments provided — DO NOT ask questions)
+
+**If the `ARGUMENTS:` field contains any text**, use quick mode. **Do NOT call `AskUserQuestion` at all.** Auto-generate everything:
+
+1. **Fetch communities**:
+   ```bash
+   curl -s -H "Authorization: Bearer $ACCESS_TOKEN" "$API_BASE/api/communities?limit=50"
+   ```
+   Response format: `{"data": [{"id": "uuid", "name": "Name", "slug": "slug"}, ...], "pagination": {...}}`
+
+2. **Auto-generate all metadata using these concrete rules:**
+
+   - **Title**: Generate a concise title (under 60 characters) summarizing the conversation's main task or topic. Derive it from the overall conversation arc, not just the first message. Use title case. Examples: "Building a Browser Extension Auth Flow", "Debugging Timezone Issues in Test Suite".
+
+   - **Community**: Pick the most topically relevant community from the fetched list using this decision tree:
+     - If the conversation is primarily about writing/debugging code → "Coding with AI"
+     - If the conversation is about the OpenThread project specifically → "OpenThread Meta" (if it exists)
+     - If the conversation involves creative writing, brainstorming, or non-technical topics → pick the closest match
+     - **Default**: "Coding with AI" (it's almost always correct for Claude Code sessions)
+
+   - **Tags**: Generate 2-4 lowercase tags based on technologies, task type, and topics discussed. Use comma-separated format. Examples: `typescript, api, authentication` or `react, debugging, state-management`. Include the primary programming language and the main activity (debugging, refactoring, feature, etc.).
+
+   - **Summary**: Generate a 2-3 sentence summary (under 500 characters). Write in past tense. Focus on what was accomplished, not implementation details. **Do NOT include** file paths, credentials, tokens, API keys, email addresses, or PII. Examples:
+     - "Implemented a privacy masking utility for shared threads that redacts sensitive data like tokens, API keys, and file paths before storage. Also added a summary field to the import endpoint."
+     - "Debugged a failing test suite caused by a timezone mismatch in date comparison logic. The fix involved normalizing timestamps to UTC before comparison."
+
+3. **Proceed directly to Step 4** — no user interaction.
+
+### Interactive Mode (NO arguments — ask the user)
+
+**If the `ARGUMENTS:` field is empty or not present**, use interactive mode:
+
+1. **Fetch communities** (same as above).
+
+2. **Ask the user** using `AskUserQuestion` with these questions:
+   - **Title**: Suggest a title derived from the conversation topic. Let the user accept or modify.
+   - **Community**: Present the fetched communities as selectable options.
+   - **Tags**: Suggest some tags and let the user accept, modify, or skip.
+
+3. **Generate a summary** following the same rules as quick mode above.
+
+4. **Proceed to Step 4.**
+
+## Step 4: Import the Post
+
+Run the import using `share.sh`:
+
+```bash
+bash "PLUGIN_DIR/scripts/share.sh" import \
+  "$SESSION_FILE" \
+  "$TITLE" \
+  "$COMMUNITY_ID" \
+  "$TAGS" \
+  "$ACCESS_TOKEN" \
+  "$SUMMARY"
+```
+
+Where `$TAGS` is a comma-separated string (e.g. `"typescript, api, auth"`).
+
+### Error Recovery
+
+Handle these error cases:
+
+- **422 Validation Error** (parse failure): The session file may be corrupt or wrong. Try the next candidate file from Step 2's ranked list. If no more candidates, tell the user.
+
+- **401 Unauthorized** (token expired mid-flow): Re-authenticate by running Step 1 again, then retry the import with the new token.
+
+- **Special character errors** in title/summary: If the import fails with a JSON parse error, the title or summary may contain characters that break shell escaping. Retry with simplified title/summary (remove quotes, backticks, and special characters).
+
+- **Network error**: Tell the user to check that the API server is running at `$API_BASE`.
+
+### On Success
+
+The response contains:
+```json
+{"data": {"id": "post-id", "slug": "post-slug", ...}}
+```
+
+Extract the post ID, then:
+
+1. **Display the URL**:
+   ```
+   Post shared successfully!
+   View it at: $WEB_BASE/post/$POST_ID
+   ```
+
+2. **Open in browser**:
+   ```bash
+   open "$WEB_BASE/post/$POST_ID"  # macOS
+   # xdg-open on Linux
+   ```