@orcalang/orca-lang 0.1.0

package/LICENSE

@@ -0,0 +1,176 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to the Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR
+      PURPOSE. You are solely responsible for determining the appropriateness
+      of using or redistributing the Work and assume any risks associated with
+      Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS

package/README.md

@@ -0,0 +1,128 @@
+# Orca
+
+**Orca (Orchestrated State Machine Language)** — an LLM-native code generation target that separates program topology (the state machine structure) from computation (individual action functions).
+
+The core insight: LLMs generate flat transition tables reliably, and Orca's topology verifier ensures structural correctness that LLMs struggle to guarantee on their own.
+
+## Quick Start
+
+```bash
+# Parse and verify a machine
+npx tsx src/index.ts verify examples/simple-toggle.orca.md
+
+# Compile to XState v5
+npx tsx src/index.ts compile xstate examples/payment-processor.orca.md
+
+# Compile to Mermaid diagram
+npx tsx src/index.ts compile mermaid examples/text-adventure.orca.md
+
+# Visualize (output Mermaid for rendering)
+npx tsx src/index.ts visualize examples/simple-toggle.orca.md
+```
+
+## Installation
+
+```bash
+npm install
+npm run build
+```
+
+## CLI Skills
+
+Orca's CLI exposes structured skills designed for LLM consumption:
+
+```bash
+orca /verify-orca examples/payment-processor.orca.md
+orca /compile-orca xstate examples/payment-processor.orca.md
+orca /generate-actions examples/payment-processor.orca.md typescript
+```
+
+## Architecture
+
+```
+Source (.orca.md) → Markdown Parser → AST → Verifier → Compiler → Output (XState/Mermaid)
+```
+
+- **`src/parser/`** — Two-phase markdown parser (structural → semantic)
+- **`src/verifier/`** — Topology checks (reachability, deadlock, completeness, determinism)
+- **`src/compiler/`** — XState v5 and Mermaid compilation targets
+- **`src/llm/`** — LLM provider abstraction (Anthropic, OpenAI, Grok, Ollama)
+- **`src/generators/`** — Code generator registry for action implementations
+
+## LLM Integration
+
+Orca uses its own LLM configuration, separate from the ambient context.
+
+### Setup
+
+1. **Copy the example env file:**
+   ```bash
+   cp .env.example .env
+   ```
+
+2. **Add your API key** to `.env`:
+   ```
+   ANTHROPIC_API_KEY=sk-ant-...
+   ```
+
+3. **Configure** in `orca.yaml`:
+   ```yaml
+   provider: anthropic
+   model: claude-sonnet-4-6
+   code_generator: typescript
+   ```
+
+### Supported Providers
+
+| Provider | Environment Variable | Notes |
+|----------|-------------------|-------|
+| Anthropic | `ANTHROPIC_API_KEY` | Default |
+| OpenAI | `OPENAI_API_KEY` | |
+| xAI (Grok) | `XAI_API_KEY` | |
+| Ollama | — | Set `base_url: http://localhost:11434` |
+
+### Authentication
+
+Orca supports two authentication methods:
+
+**1. API Key (simple)**
+```bash
+cp .env.example .env
+# Edit .env and add your API key
+```
+
+**2. OAuth (for organization/team billing)**
+```bash
+# Login with OAuth (supports Anthropic, MiniMax)
+orca login --provider anthropic
+
+# Check auth status
+orca auth
+
+# Logout
+orca logout
+```
+
+Credentials are stored in `~/.orca/auth_profiles.json`.
+
+### Generate Action Implementations
+
+```bash
+# Without LLM (template-based, no API key needed)
+orca actions examples/payment-processor.orca.md
+
+# With LLM (requires API key)
+orca /generate-actions --use-llm examples/payment-processor.orca.md typescript
+
+# Output to directory (one file per action)
+orca /generate-actions --use-llm examples/payment-processor.orca.md --output ./actions/
+
+# Output to single file (all actions combined)
+orca /generate-actions --use-llm examples/payment-processor.orca.md --output ./actions.ts
+```
+
+See [docs/orca-proposal.md](docs/orca-proposal.md) for the full design specification.
+
+## License
+
+Apache License 2.0 — see [LICENSE](LICENSE)

package/dist/auth/index.d.ts

@@ -0,0 +1,6 @@
+export * from './types.js';
+export * from './store.js';
+export * from './lock.js';
+export * from './refresh.js';
+export * from './providers/index.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,YAAY,CAAC;AAC3B,cAAc,WAAW,CAAC;AAC1B,cAAc,cAAc,CAAC;AAC7B,cAAc,sBAAsB,CAAC"}

package/dist/auth/index.js

@@ -0,0 +1,6 @@
+export * from './types.js';
+export * from './store.js';
+export * from './lock.js';
+export * from './refresh.js';
+export * from './providers/index.js';
+//# sourceMappingURL=index.js.map

package/dist/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,YAAY,CAAC;AAC3B,cAAc,WAAW,CAAC;AAC1B,cAAc,cAAc,CAAC;AAC7B,cAAc,sBAAsB,CAAC"}

package/dist/auth/lock.d.ts

@@ -0,0 +1,2 @@
+export declare function withFileLock<T>(resource: string, fn: () => Promise<T>): Promise<T>;
+//# sourceMappingURL=lock.d.ts.map

package/dist/auth/lock.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"lock.d.ts","sourceRoot":"","sources":["../../src/auth/lock.ts"],"names":[],"mappings":"AAkBA,wBAAsB,YAAY,CAAC,CAAC,EAClC,QAAQ,EAAE,MAAM,EAChB,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,GACnB,OAAO,CAAC,CAAC,CAAC,CAiDZ"}

package/dist/auth/lock.js

@@ -0,0 +1,59 @@
+import { existsSync, mkdirSync, unlinkSync } from 'fs';
+import { join } from 'path';
+import { homedir } from 'os';
+import { createHash } from 'crypto';
+const LOCK_DIR = join(homedir(), '.orca', 'locks');
+const LOCK_TIMEOUT_MS = 30000; // 30 seconds
+async function mkdirp(dir) {
+    if (!existsSync(dir)) {
+        mkdirSync(dir, { mode: 0o700, recursive: true });
+    }
+}
+export async function withFileLock(resource, fn) {
+    await mkdirp(LOCK_DIR);
+    // Create a unique lock file for this resource
+    const resourceHash = createHash('sha256').update(resource).digest('hex').slice(0, 16);
+    const lockFile = join(LOCK_DIR, `${resourceHash}.lock`);
+    const startTime = Date.now();
+    // Wait for lock
+    while (existsSync(lockFile)) {
+        if (Date.now() - startTime > LOCK_TIMEOUT_MS) {
+            throw new Error(`Timeout waiting for lock on ${resource}`);
+        }
+        await new Promise(resolve => setTimeout(resolve, 100));
+    }
+    // Acquire lock
+    const pid = process.pid.toString();
+    const lockContent = JSON.stringify({ pid, time: Date.now() });
+    // Use writeFileSync for atomic lock acquisition
+    // In a production system, you'd use a proper file locking mechanism
+    // This is a simplified version
+    try {
+        // Try to create the lock file exclusively
+        const { writeFileSync } = await import('fs');
+        writeFileSync(lockFile, lockContent, { flag: 'wx' });
+    }
+    catch (err) {
+        const error = err;
+        if (error.code === 'EEXIST') {
+            // Lock already exists, wait and retry
+            await new Promise(resolve => setTimeout(resolve, 100));
+            return withFileLock(resource, fn);
+        }
+        throw err;
+    }
+    // Execute the protected operation
+    try {
+        return await fn();
+    }
+    finally {
+        // Release lock
+        try {
+            unlinkSync(lockFile);
+        }
+        catch {
+            // Ignore cleanup errors
+        }
+    }
+}
+//# sourceMappingURL=lock.js.map

package/dist/auth/lock.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"lock.js","sourceRoot":"","sources":["../../src/auth/lock.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AACvD,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAC7B,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAEpC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;AACnD,MAAM,eAAe,GAAG,KAAK,CAAC,CAAC,aAAa;AAM5C,KAAK,UAAU,MAAM,CAAC,GAAW;IAC/B,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QACrB,SAAS,CAAC,GAAG,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACnD,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,QAAgB,EAChB,EAAoB;IAEpB,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;IAEvB,8CAA8C;IAC9C,MAAM,YAAY,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtF,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,EAAE,GAAG,YAAY,OAAO,CAAC,CAAC;IAExD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,gBAAgB;IAChB,OAAO,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,eAAe,EAAE,CAAC;YAC7C,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,EAAE,CAAC,CAAC;QAC7D,CAAC;QACD,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC;IACzD,CAAC;IAED,eAAe;IACf,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;IACnC,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;IAE9D,gDAAgD;IAChD,oEAAoE;IACpE,+BAA+B;IAC/B,IAAI,CAAC;QACH,0CAA0C;QAC1C,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,CAAC;QAC7C,aAAa,CAAC,QAAQ,EAAE,WAAW,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;IACvD,CAAC;IAAC,OAAO,GAAY,EAAE,CAAC;QACtB,MAAM,KAAK,GAAG,GAAwB,CAAC;QACvC,IAAI,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC5B,sCAAsC;YACtC,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC;YACvD,OAAO,YAAY,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QACpC,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,kCAAkC;IAClC,IAAI,CAAC;QACH,OAAO,MAAM,EAAE,EAAE,CAAC;IACpB,CAAC;YAAS,CAAC;QACT,eAAe;QACf,IAAI,CAAC;YACH,UAAU,CAAC,QAAQ,CAAC,CAAC;QACvB,CAAC;QAAC,MAAM,CAAC;YACP,wBAAwB;QAC1B,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/auth/providers/anthropic.d.ts

@@ -0,0 +1,14 @@
+import { OAuthProvider, TokenRefreshResult } from '../types.js';
+export declare const anthropicOAuthProvider: OAuthProvider;
+export declare function exchangeCodeForTokens(code: string, clientId: string, clientSecret: string, redirectUri: string): Promise<TokenRefreshResult>;
+export declare function refreshAccessToken(refreshToken: string, clientId: string, clientSecret: string): Promise<TokenRefreshResult>;
+export declare function buildAuthorizationUrl(clientId: string, redirectUri: string, state?: string): string;
+export declare function promptForCode(): Promise<string>;
+export declare function openBrowser(url: string): Promise<void>;
+export declare function getDeviceCode(): Promise<{
+    device_code: string;
+    user_code: string;
+    verification_uri: string;
+}>;
+export declare function pollForToken(deviceCode: string): Promise<TokenRefreshResult>;
+//# sourceMappingURL=anthropic.d.ts.map

package/dist/auth/providers/anthropic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic.d.ts","sourceRoot":"","sources":["../../../src/auth/providers/anthropic.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAKhE,eAAO,MAAM,sBAAsB,EAAE,aAA2B,CAAC;AAWjE,wBAAsB,qBAAqB,CACzC,IAAI,EAAE,MAAM,EACZ,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,kBAAkB,CAAC,CA2B7B;AAED,wBAAsB,kBAAkB,CACtC,YAAY,EAAE,MAAM,EACpB,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,kBAAkB,CAAC,CA0B7B;AAED,wBAAgB,qBAAqB,CACnC,QAAQ,EAAE,MAAM,EAChB,WAAW,EAAE,MAAM,EACnB,KAAK,CAAC,EAAE,MAAM,GACb,MAAM,CAYR;AAED,wBAAsB,aAAa,IAAI,OAAO,CAAC,MAAM,CAAC,CAYrD;AAED,wBAAsB,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAoB5D;AAED,wBAAsB,aAAa,IAAI,OAAO,CAAC;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAC;IAAC,gBAAgB,EAAE,MAAM,CAAA;CAAE,CAAC,CAiBnH;AAED,wBAAsB,YAAY,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC,CAmClF"}

package/dist/auth/providers/anthropic.js

@@ -0,0 +1,145 @@
+import * as readline from 'readline';
+const ANTHROPIC_AUTH_URL = 'https://api.anthropic.com/oauth/authorize';
+const ANTHROPIC_TOKEN_URL = 'https://api.anthropic.com/oauth/token';
+export const anthropicOAuthProvider = 'anthropic';
+export async function exchangeCodeForTokens(code, clientId, clientSecret, redirectUri) {
+    const response = await fetch(ANTHROPIC_TOKEN_URL, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        },
+        body: new URLSearchParams({
+            grant_type: 'authorization_code',
+            code,
+            client_id: clientId,
+            client_secret: clientSecret,
+            redirect_uri: redirectUri,
+        }),
+    });
+    if (!response.ok) {
+        const error = await response.json();
+        throw new Error(`Token exchange failed: ${error.error_description ?? error.error}`);
+    }
+    const data = await response.json();
+    return {
+        access: data.access_token,
+        refresh: data.refresh_token,
+        expires: Date.now() + data.expires_in * 1000,
+    };
+}
+export async function refreshAccessToken(refreshToken, clientId, clientSecret) {
+    const response = await fetch(ANTHROPIC_TOKEN_URL, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        },
+        body: new URLSearchParams({
+            grant_type: 'refresh_token',
+            refresh_token: refreshToken,
+            client_id: clientId,
+            client_secret: clientSecret,
+        }),
+    });
+    if (!response.ok) {
+        const error = await response.json();
+        throw new Error(`Token refresh failed: ${error.error_description ?? error.error}`);
+    }
+    const data = await response.json();
+    return {
+        access: data.access_token,
+        refresh: data.refresh_token,
+        expires: Date.now() + data.expires_in * 1000,
+    };
+}
+export function buildAuthorizationUrl(clientId, redirectUri, state) {
+    const params = new URLSearchParams({
+        client_id: clientId,
+        response_type: 'code',
+        redirect_uri: redirectUri,
+    });
+    if (state) {
+        params.set('state', state);
+    }
+    return `${ANTHROPIC_AUTH_URL}?${params.toString()}`;
+}
+export async function promptForCode() {
+    const rl = readline.createInterface({
+        input: process.stdin,
+        output: process.stdout,
+    });
+    return new Promise((resolve) => {
+        rl.question('Enter the authorization code: ', (code) => {
+            rl.close();
+            resolve(code.trim());
+        });
+    });
+}
+export async function openBrowser(url) {
+    const { exec } = await import('child_process');
+    // Try different commands based on platform
+    const commands = ['open', 'xdg-open', 'start'];
+    for (const cmd of commands) {
+        try {
+            await new Promise((resolve, reject) => {
+                exec(`${cmd} "${url}"`, (err) => {
+                    if (err)
+                        reject(err);
+                    else
+                        resolve();
+                });
+            });
+            return;
+        }
+        catch {
+            // Try next command
+        }
+    }
+    console.log(`Please open this URL in your browser:\n${url}`);
+}
+export async function getDeviceCode() {
+    const response = await fetch('https://api.anthropic.com/oauth/device/code', {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/x-www-form-urlencoded',
+        },
+        body: new URLSearchParams({
+            client_id: 'orca-cli',
+            scope: 'api:read api:write',
+        }),
+    });
+    if (!response.ok) {
+        throw new Error(`Device code request failed: ${response.statusText}`);
+    }
+    return response.json();
+}
+export async function pollForToken(deviceCode) {
+    const startTime = Date.now();
+    const interval = 5000; // 5 seconds
+    while (Date.now() - startTime < 300000) { // 5 minute timeout
+        await new Promise(resolve => setTimeout(resolve, interval));
+        const response = await fetch(ANTHROPIC_TOKEN_URL, {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/x-www-form-urlencoded',
+            },
+            body: new URLSearchParams({
+                grant_type: 'urn:ietf:params:oauth:grant-type:device_code',
+                device_code: deviceCode,
+                client_id: 'orca-cli',
+            }),
+        });
+        const data = await response.json();
+        if (data.access_token) {
+            return {
+                access: data.access_token,
+                refresh: data.refresh_token,
+                expires: Date.now() + data.expires_in * 1000,
+            };
+        }
+        if (data.error !== 'authorization_pending') {
+            throw new Error(`Device code polling failed: ${data.error_description ?? data.error}`);
+        }
+    }
+    throw new Error('Device code authorization timed out');
+}
+//# sourceMappingURL=anthropic.js.map

package/dist/auth/providers/anthropic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic.js","sourceRoot":"","sources":["../../../src/auth/providers/anthropic.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,QAAQ,MAAM,UAAU,CAAC;AAGrC,MAAM,kBAAkB,GAAG,2CAA2C,CAAC;AACvE,MAAM,mBAAmB,GAAG,uCAAuC,CAAC;AAEpE,MAAM,CAAC,MAAM,sBAAsB,GAAkB,WAAW,CAAC;AAWjE,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,IAAY,EACZ,QAAgB,EAChB,YAAoB,EACpB,WAAmB;IAEnB,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,mBAAmB,EAAE;QAChD,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;SACpD;QACD,IAAI,EAAE,IAAI,eAAe,CAAC;YACxB,UAAU,EAAE,oBAAoB;YAChC,IAAI;YACJ,SAAS,EAAE,QAAQ;YACnB,aAAa,EAAE,YAAY;YAC3B,YAAY,EAAE,WAAW;SAC1B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA4B,CAAC;QAC9D,MAAM,IAAI,KAAK,CAAC,0BAA0B,KAAK,CAAC,iBAAiB,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;IACtF,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA4B,CAAC;IAE7D,OAAO;QACL,MAAM,EAAE,IAAI,CAAC,YAAY;QACzB,OAAO,EAAE,IAAI,CAAC,aAAa;QAC3B,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI;KAC7C,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,YAAoB,EACpB,QAAgB,EAChB,YAAoB;IAEpB,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,mBAAmB,EAAE;QAChD,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;SACpD;QACD,IAAI,EAAE,IAAI,eAAe,CAAC;YACxB,UAAU,EAAE,eAAe;YAC3B,aAAa,EAAE,YAAY;YAC3B,SAAS,EAAE,QAAQ;YACnB,aAAa,EAAE,YAAY;SAC5B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA4B,CAAC;QAC9D,MAAM,IAAI,KAAK,CAAC,yBAAyB,KAAK,CAAC,iBAAiB,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;IACrF,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA4B,CAAC;IAE7D,OAAO;QACL,MAAM,EAAE,IAAI,CAAC,YAAY;QACzB,OAAO,EAAE,IAAI,CAAC,aAAa;QAC3B,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI;KAC7C,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,QAAgB,EAChB,WAAmB,EACnB,KAAc;IAEd,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;QACjC,SAAS,EAAE,QAAQ;QACnB,aAAa,EAAE,MAAM;QACrB,YAAY,EAAE,WAAW;KAC1B,CAAC,CAAC;IAEH,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IAC7B,CAAC;IAED,OAAO,GAAG,kBAAkB,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;AACtD,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa;IACjC,MAAM,EAAE,GAAG,QAAQ,CAAC,eAAe,CAAC;QAClC,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,MAAM,EAAE,OAAO,CAAC,MAAM;KACvB,CAAC,CAAC;IAEH,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,EAAE,CAAC,QAAQ,CAAC,gCAAgC,EAAE,CAAC,IAAI,EAAE,EAAE;YACrD,EAAE,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;QACvB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,GAAW;IAC3C,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC,CAAC;IAE/C,2CAA2C;IAC3C,MAAM,QAAQ,GAAG,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC;IAC/C,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;gBAC1C,IAAI,CAAC,GAAG,GAAG,KAAK,GAAG,GAAG,EAAE,CAAC,GAAG,EAAE,EAAE;oBAC9B,IAAI,GAAG;wBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;wBAChB,OAAO,EAAE,CAAC;gBACjB,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAAC,MAAM,CAAC;YACP,mBAAmB;QACrB,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,0CAA0C,GAAG,EAAE,CAAC,CAAC;AAC/D,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa;IACjC,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,6CAA6C,EAAE;QAC1E,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,mCAAmC;SACpD;QACD,IAAI,EAAE,IAAI,eAAe,CAAC;YACxB,SAAS,EAAE,UAAU;YACrB,KAAK,EAAE,oBAAoB;SAC5B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IACxE,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAAmF,CAAC;AAC1G,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,UAAkB;IACnD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,QAAQ,GAAG,IAAI,CAAC,CAAC,YAAY;IAEnC,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,MAAM,EAAE,CAAC,CAAC,mBAAmB;QAC3D,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC;QAE5D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,mBAAmB,EAAE;YAChD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,mCAAmC;aACpD;YACD,IAAI,EAAE,IAAI,eAAe,CAAC;gBACxB,UAAU,EAAE,8CAA8C;gBAC1D,WAAW,EAAE,UAAU;gBACvB,SAAS,EAAE,UAAU;aACtB,CAAC;SACH,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA4B,CAAC;QAE7D,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,OAAO;gBACL,MAAM,EAAE,IAAI,CAAC,YAAY;gBACzB,OAAO,EAAE,IAAI,CAAC,aAAa;gBAC3B,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI;aAC7C,CAAC;QACJ,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,KAAK,uBAAuB,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,+BAA+B,IAAI,CAAC,iBAAiB,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;QACzF,CAAC;IACH,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;AACzD,CAAC"}

package/dist/auth/providers/index.d.ts

@@ -0,0 +1,3 @@
+export { exchangeCodeForTokens as exchangeCodeForTokensAnthropic, refreshAccessToken as refreshAccessTokenAnthropic, buildAuthorizationUrl as buildAuthorizationUrlAnthropic, getDeviceCode, pollForToken, promptForCode, openBrowser, anthropicOAuthProvider, } from './anthropic.js';
+export { exchangeCodeForTokens as exchangeCodeForTokensMiniMax, refreshAccessToken as refreshAccessTokenMiniMax, buildAuthorizationUrl as buildAuthorizationUrlMiniMax, minimaxOAuthProvider, } from './minimax.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/auth/providers/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/auth/providers/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,qBAAqB,IAAI,8BAA8B,EACvD,kBAAkB,IAAI,2BAA2B,EACjD,qBAAqB,IAAI,8BAA8B,EACvD,aAAa,EACb,YAAY,EACZ,aAAa,EACb,WAAW,EACX,sBAAsB,GACvB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EACL,qBAAqB,IAAI,4BAA4B,EACrD,kBAAkB,IAAI,yBAAyB,EAC/C,qBAAqB,IAAI,4BAA4B,EACrD,oBAAoB,GACrB,MAAM,cAAc,CAAC"}

package/dist/auth/providers/index.js

@@ -0,0 +1,3 @@
+export { exchangeCodeForTokens as exchangeCodeForTokensAnthropic, refreshAccessToken as refreshAccessTokenAnthropic, buildAuthorizationUrl as buildAuthorizationUrlAnthropic, getDeviceCode, pollForToken, promptForCode, openBrowser, anthropicOAuthProvider, } from './anthropic.js';
+export { exchangeCodeForTokens as exchangeCodeForTokensMiniMax, refreshAccessToken as refreshAccessTokenMiniMax, buildAuthorizationUrl as buildAuthorizationUrlMiniMax, minimaxOAuthProvider, } from './minimax.js';
+//# sourceMappingURL=index.js.map

package/dist/auth/providers/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/auth/providers/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,qBAAqB,IAAI,8BAA8B,EACvD,kBAAkB,IAAI,2BAA2B,EACjD,qBAAqB,IAAI,8BAA8B,EACvD,aAAa,EACb,YAAY,EACZ,aAAa,EACb,WAAW,EACX,sBAAsB,GACvB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EACL,qBAAqB,IAAI,4BAA4B,EACrD,kBAAkB,IAAI,yBAAyB,EAC/C,qBAAqB,IAAI,4BAA4B,EACrD,oBAAoB,GACrB,MAAM,cAAc,CAAC"}

package/dist/auth/providers/minimax.d.ts

@@ -0,0 +1,6 @@
+import { OAuthProvider, TokenRefreshResult } from '../types.js';
+export declare const minimaxOAuthProvider: OAuthProvider;
+export declare function exchangeCodeForTokens(code: string, clientId: string, clientSecret: string, redirectUri: string): Promise<TokenRefreshResult>;
+export declare function refreshAccessToken(refreshToken: string, clientId: string, clientSecret: string): Promise<TokenRefreshResult>;
+export declare function buildAuthorizationUrl(clientId: string, redirectUri: string, state?: string): string;
+//# sourceMappingURL=minimax.d.ts.map

package/dist/auth/providers/minimax.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"minimax.d.ts","sourceRoot":"","sources":["../../../src/auth/providers/minimax.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAKhE,eAAO,MAAM,oBAAoB,EAAE,aAAyB,CAAC;AAW7D,wBAAsB,qBAAqB,CACzC,IAAI,EAAE,MAAM,EACZ,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,kBAAkB,CAAC,CA2B7B;AAED,wBAAsB,kBAAkB,CACtC,YAAY,EAAE,MAAM,EACpB,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,kBAAkB,CAAC,CA0B7B;AAED,wBAAgB,qBAAqB,CACnC,QAAQ,EAAE,MAAM,EAChB,WAAW,EAAE,MAAM,EACnB,KAAK,CAAC,EAAE,MAAM,GACb,MAAM,CAaR"}