@peekdev/cli 0.1.0-alpha.26 → 0.1.0-alpha.27

package/README.md

@@ -8,6 +8,9 @@
 [![downloads](https://img.shields.io/npm/dw/@peekdev/cli.svg)](https://www.npmjs.com/package/@peekdev/cli)
 [![license](https://img.shields.io/npm/l/@peekdev/cli.svg)](https://github.com/Cubenest/rrweb-stack/blob/main/LICENSE)
 [![CI](https://github.com/Cubenest/rrweb-stack/actions/workflows/ci.yml/badge.svg?branch=main)](https://github.com/Cubenest/rrweb-stack/actions/workflows/ci.yml)
+[![OpenSSF Scorecard](https://api.scorecard.dev/projects/github.com/Cubenest/rrweb-stack/badge)](https://scorecard.dev/viewer/?uri=github.com/Cubenest/rrweb-stack)
+[![node](https://img.shields.io/node/v/@peekdev/cli.svg)](https://www.npmjs.com/package/@peekdev/cli)
+![status: alpha](https://img.shields.io/badge/status-alpha-orange.svg)
 
 ![peek sessions list and drill-down — three real sessions, console + network errors, markdown-formatted output for AI paste](https://raw.githubusercontent.com/Cubenest/rrweb-stack/main/assets/peek-hero.gif)
 
@@ -29,7 +32,7 @@ peek init
 2. Detects your AI coding-agent client (Claude Code, Cursor, Cline, Windsurf, VS Code) and adds the `peek-mcp` server to its MCP configuration.
 3. Prints a one-line "install the extension" link.
 
-Then you install the [Peek Chrome extension](https://chromewebstore.google.com/) (CWS submission pending), open the side panel on the site you want to capture, and click **Enable on this site**. Your AI agent can now query the recording.
+Then you install the **Peek Chrome extension** (CWS listing pending — Phase 5; for now it loads unpacked, see [`@peekdev/extension`](https://github.com/Cubenest/rrweb-stack/tree/main/packages/peek-extension)), open the side panel on the site you want to capture, and click **Enable on this site**. Your AI agent can now query the recording.
 
 ## What this is NOT
 
@@ -61,7 +64,7 @@ After `peek init`, the `peek-mcp` server is available to your AI client as an MC
 - "find network requests with status >= 400 from the last 5 minutes of recording on `example.com`"
 - "generate a Playwright reproduction script from session `abc123`"
 
-The MCP server exposes 10 tools — listing, session summaries, console/network drill-down, user-action history, DOM reconstruction and history, Playwright-repro generation, and (with explicit per-action authorization) actions like clicks/inputs/navigation. See [`@peekdev/mcp`](https://github.com/Cubenest/rrweb-stack/tree/main/packages/peek-mcp) for the tool reference.
+The MCP server exposes 14 tools — listing, session summaries, console/network drill-down, user-action history, DOM reconstruction and history, Playwright-repro generation, non-destructive element highlighting, and (with explicit per-origin permission) actions like clicks/inputs/navigation plus a pause-and-hand-back-to-the-user input handoff. See [`@peekdev/mcp`](https://github.com/Cubenest/rrweb-stack/tree/main/packages/peek-mcp) for the tool reference.
 
 ## Privacy
 
@@ -119,9 +122,9 @@ The skill is idempotent on re-run (no-op when the on-disk content matches the bu
 }
 ```
 
-Commit it or add it to `.gitignore` — Cursor reads either. Cursor's docs document the global file as "tools available everywhere" and the project file as "project-specific tools" (see [docs.cursor.com/context/mcp](https://cursor.com/docs/context/mcp) for current merge semantics).
+Commit it or add it to `.gitignore` — Cursor reads either. Cursor's docs document the global file as "tools available everywhere" and the project file as "project-specific tools" (see [cursor.com/docs/context/mcp](https://cursor.com/docs/context/mcp) for current merge semantics).
 
-This is the same block `peek init` writes to the global file, so the two configs are interchangeable. You still need the [Peek Chrome extension](https://chromewebstore.google.com/) installed and the native messaging host registered — run `peek init --skip-clients` if you want the host installed without touching any MCP config.
+This is the same block `peek init` writes to the global file, so the two configs are interchangeable. You still need the **Peek Chrome extension** installed (CWS listing pending — Phase 5; loads unpacked for now, see [`@peekdev/extension`](https://github.com/Cubenest/rrweb-stack/tree/main/packages/peek-extension)) and the native messaging host registered — run `peek init --skip-clients` if you want the host installed without touching any MCP config.
 
 ## Versioning & compatibility
 
@@ -129,8 +132,10 @@ Semantic Versioning. Currently `0.1.0-alpha.x` — pre-release; the CLI surface
 
 `@peekdev/cli` depends on `@peekdev/mcp` as a workspace peer. Both are versioned and published together via Changesets + OIDC Trusted Publishing.
 
+Full release history: [CHANGELOG.md](https://github.com/Cubenest/rrweb-stack/blob/main/packages/peek-cli/CHANGELOG.md).
+
 ## License
 
-Apache 2.0. The bundled rrweb engine remains MIT-licensed; see `NOTICE`.
+Apache 2.0. The bundled rrweb engine remains MIT-licensed; see [`NOTICE`](https://github.com/Cubenest/rrweb-stack/blob/main/packages/peek-cli/NOTICE).
 
 Contributions are accepted under the [Developer Certificate of Origin (DCO)](https://developercertificate.org/) — sign your commits with `git commit -s`. See [CONTRIBUTING.md](https://github.com/Cubenest/rrweb-stack/blob/main/CONTRIBUTING.md) + [SECURITY.md](https://github.com/Cubenest/rrweb-stack/blob/main/SECURITY.md).

package/dist/lib/fs-atomic.d.ts

@@ -1,3 +1,14 @@
+/** Injectable seams (defaults are the real fs + a sync sleep). For tests. */
+export interface AtomicWriteDeps {
+    /** Rename implementation (default `fs.renameSync`). */
+    readonly rename?: (from: string, to: string) => void;
+    /** Synchronous backoff between retries (default {@link syncSleep}). */
+    readonly sleep?: (ms: number) => void;
+    /** Platform (default `process.platform`); retries happen ONLY on `win32`. */
+    readonly platform?: NodeJS.Platform;
+    /** Max rename attempts before giving up on a transient Windows lock (default 4). */
+    readonly maxRetries?: number;
+}
 /**
  * Write `content` to `path` atomically: write a temp file in the SAME directory
  * then `renameSync` over the target (rename is atomic on a single filesystem).
@@ -5,6 +16,11 @@
  * crash / full disk / OOM could leave as an empty or partial file — and
  * `~/.claude.json` is read on every Claude Code startup. Parent dirs are
  * created; on failure the temp file is best-effort removed.
+ *
+ * On Windows the final rename can transiently fail with EBUSY/EPERM/EACCES when
+ * the target or temp is briefly locked (editor open, antivirus scan); those are
+ * retried with a short backoff before giving up. On POSIX a single failed
+ * rename throws immediately (no spurious lock errors there).
  */
-export declare function atomicWriteFileSync(path: string, content: string): void;
+export declare function atomicWriteFileSync(path: string, content: string, deps?: AtomicWriteDeps): void;
 //# sourceMappingURL=fs-atomic.d.ts.map

package/dist/lib/fs-atomic.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"fs-atomic.d.ts","sourceRoot":"","sources":["../../src/lib/fs-atomic.ts"],"names":[],"mappings":"AAQA;;;;;;;GAOG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CAcvE"}
+{"version":3,"file":"fs-atomic.d.ts","sourceRoot":"","sources":["../../src/lib/fs-atomic.ts"],"names":[],"mappings":"AAuBA,6EAA6E;AAC7E,MAAM,WAAW,eAAe;IAC9B,uDAAuD;IACvD,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,KAAK,IAAI,CAAC;IACrD,uEAAuE;IACvE,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK,IAAI,CAAC;IACtC,6EAA6E;IAC7E,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC;IACpC,oFAAoF;IACpF,QAAQ,CAAC,UAAU,CAAC,EAAE,MAAM,CAAC;CAC9B;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,mBAAmB,CACjC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,IAAI,GAAE,eAAoB,GACzB,IAAI,CAmBN"}

package/dist/lib/fs-atomic.js

@@ -4,6 +4,19 @@
 import { randomBytes } from 'node:crypto';
 import { mkdirSync, renameSync, unlinkSync, writeFileSync } from 'node:fs';
 import { dirname } from 'node:path';
+/**
+ * Error codes that, on Windows, mean the rename target (or the freshly-written
+ * temp) is TRANSIENTLY locked — an editor with the config open, or antivirus
+ * scanning the new temp file — so `MoveFileEx` fails but a retry moments later
+ * usually succeeds. POSIX `rename(2)` replaces atomically even while the target
+ * is open and never hits these, so we only retry on win32. ENOSPC/ENOENT and
+ * friends are NOT in here — those aren't locks and must fail fast.
+ */
+const WINDOWS_TRANSIENT_RENAME_CODES = new Set(['EBUSY', 'EPERM', 'EACCES']);
+/** Synchronous sleep (atomicWriteFileSync is sync, so we can't await). */
+function syncSleep(ms) {
+    Atomics.wait(new Int32Array(new SharedArrayBuffer(4)), 0, 0, ms);
+}
 /**
  * Write `content` to `path` atomically: write a temp file in the SAME directory
  * then `renameSync` over the target (rename is atomic on a single filesystem).
@@ -11,13 +24,22 @@ import { dirname } from 'node:path';
  * crash / full disk / OOM could leave as an empty or partial file — and
  * `~/.claude.json` is read on every Claude Code startup. Parent dirs are
  * created; on failure the temp file is best-effort removed.
+ *
+ * On Windows the final rename can transiently fail with EBUSY/EPERM/EACCES when
+ * the target or temp is briefly locked (editor open, antivirus scan); those are
+ * retried with a short backoff before giving up. On POSIX a single failed
+ * rename throws immediately (no spurious lock errors there).
  */
-export function atomicWriteFileSync(path, content) {
+export function atomicWriteFileSync(path, content, deps = {}) {
+    const rename = deps.rename ?? renameSync;
+    const sleep = deps.sleep ?? syncSleep;
+    const platform = deps.platform ?? process.platform;
+    const maxRetries = deps.maxRetries ?? 4;
     mkdirSync(dirname(path), { recursive: true });
     const tmp = `${path}.peek-tmp-${randomBytes(4).toString('hex')}`;
     try {
         writeFileSync(tmp, content, 'utf8');
-        renameSync(tmp, path);
+        renameWithWindowsRetry(rename, tmp, path, platform, maxRetries, sleep);
     }
     catch (err) {
         try {
@@ -29,4 +51,25 @@ export function atomicWriteFileSync(path, content) {
         throw err;
     }
 }
+/** Rename, retrying transient Windows lock errors with backoff. POSIX: one shot. */
+function renameWithWindowsRetry(rename, from, to, platform, maxRetries, sleep) {
+    for (let attempt = 1;; attempt += 1) {
+        try {
+            rename(from, to);
+            return;
+        }
+        catch (err) {
+            const code = err?.code;
+            const retryable = platform === 'win32' &&
+                attempt < maxRetries &&
+                code !== undefined &&
+                WINDOWS_TRANSIENT_RENAME_CODES.has(code);
+            if (!retryable)
+                throw err;
+            // Brief, growing backoff (25ms → 50ms → 100ms…) so the lock holder (AV,
+            // editor) has a moment to release before the next MoveFileEx attempt.
+            sleep(25 * 2 ** (attempt - 1));
+        }
+    }
+}
 //# sourceMappingURL=fs-atomic.js.map

package/dist/lib/fs-atomic.js.map

@@ -1 +1 @@
-{"version":3,"file":"fs-atomic.js","sourceRoot":"","sources":["../../src/lib/fs-atomic.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,yEAAyE;AACzE,8CAA8C;AAE9C,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC3E,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC;;;;;;;GAOG;AACH,MAAM,UAAU,mBAAmB,CAAC,IAAY,EAAE,OAAe;IAC/D,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9C,MAAM,GAAG,GAAG,GAAG,IAAI,aAAa,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;IACjE,IAAI,CAAC;QACH,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;QACpC,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IACxB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,CAAC;YACH,UAAU,CAAC,GAAG,CAAC,CAAC;QAClB,CAAC;QAAC,MAAM,CAAC;YACP,qEAAqE;QACvE,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;AACH,CAAC"}
+{"version":3,"file":"fs-atomic.js","sourceRoot":"","sources":["../../src/lib/fs-atomic.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,yEAAyE;AACzE,8CAA8C;AAE9C,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC3E,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC;;;;;;;GAOG;AACH,MAAM,8BAA8B,GAAG,IAAI,GAAG,CAAC,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC;AAE7E,0EAA0E;AAC1E,SAAS,SAAS,CAAC,EAAU;IAC3B,OAAO,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,IAAI,iBAAiB,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;AACnE,CAAC;AAcD;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,mBAAmB,CACjC,IAAY,EACZ,OAAe,EACf,OAAwB,EAAE;IAE1B,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,IAAI,UAAU,CAAC;IACzC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,SAAS,CAAC;IACtC,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC;IACnD,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,IAAI,CAAC,CAAC;IAExC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9C,MAAM,GAAG,GAAG,GAAG,IAAI,aAAa,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;IACjE,IAAI,CAAC;QACH,aAAa,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;QACpC,sBAAsB,CAAC,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,QAAQ,EAAE,UAAU,EAAE,KAAK,CAAC,CAAC;IACzE,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,CAAC;YACH,UAAU,CAAC,GAAG,CAAC,CAAC;QAClB,CAAC;QAAC,MAAM,CAAC;YACP,qEAAqE;QACvE,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;AACH,CAAC;AAED,oFAAoF;AACpF,SAAS,sBAAsB,CAC7B,MAA0C,EAC1C,IAAY,EACZ,EAAU,EACV,QAAyB,EACzB,UAAkB,EAClB,KAA2B;IAE3B,KAAK,IAAI,OAAO,GAAG,CAAC,GAAI,OAAO,IAAI,CAAC,EAAE,CAAC;QACrC,IAAI,CAAC;YACH,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YACjB,OAAO;QACT,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,IAAI,GAAI,GAAyC,EAAE,IAAI,CAAC;YAC9D,MAAM,SAAS,GACb,QAAQ,KAAK,OAAO;gBACpB,OAAO,GAAG,UAAU;gBACpB,IAAI,KAAK,SAAS;gBAClB,8BAA8B,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YAC3C,IAAI,CAAC,SAAS;gBAAE,MAAM,GAAG,CAAC;YAC1B,wEAAwE;YACxE,sEAAsE;YACtE,KAAK,CAAC,EAAE,GAAG,CAAC,IAAI,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,CAAC;QACjC,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/skills/peek-skill.md

@@ -1,13 +1,13 @@
 ---
 name: peek
-description: Use when the user mentions a recent browser session, an error they just reproduced, "what was the user doing before X", DOM state at some past moment, or wants to turn a manual repro into a Playwright test. Peek exposes 10 MCP tools backed by a local SQLite store of rrweb-captured browser sessions.
+description: Use when the user mentions a recent browser session, an error they just reproduced, "what was the user doing before X", DOM state at some past moment, or wants to turn a manual repro into a Playwright test. Peek exposes 14 MCP tools backed by a local SQLite store of rrweb-captured browser sessions.
 ---
 
 # peek — local browser-session inspection
 
 Peek is an OSS browser companion for AI coding agents. A Chrome MV3
 extension records masked rrweb sessions to a local SQLite store
-(`~/.peek/sessions.db`); a stdio MCP server exposes 10 tools that let you
+(`~/.peek/sessions.db`); a stdio MCP server exposes 14 tools that let you
 inspect those sessions and (with consent) drive the live browser.
 
 Peek runs entirely on the user's machine. No telemetry, no cloud, no
@@ -38,9 +38,9 @@ Don't reach for peek when:
   not a live debugger
 - The question is about static code, not runtime behavior
 
-## The 10 tools
+## The 14 tools
 
-**Read tools (8) — work at permission Level 2+ for the origin:**
+**Read tools (8) — usable at permission Level 1 (Read-only) and above:**
 
 | Tool | When |
 |---|---|
@@ -53,12 +53,26 @@ Don't reach for peek when:
 | `query_dom_history` | Given a CSS selector + sessionId, returns every snapshot where that element changed. Good for "when did this element appear/disappear/change text". |
 | `generate_playwright_repro` | Turns a session (or a slice of one) into a runnable Playwright test stub. Selectors are best-effort from rrweb metadata; surface to the user for review before assuming they'll work. |
 
-**Write tools (2) — escalating consent required:**
+**Act tools (2) — Level 3+; every call is audit-logged to `~/.peek/audit.log`:**
 
 | Tool | When |
 |---|---|
-| `request_authorization` | Ask the user to authorize a specific action against a specific origin. Always call this BEFORE `execute_action` if the action is destructive (form submission, navigation away from the current page, anything that mutates state). |
-| `execute_action` | Performs a click / type / navigate in the user's live browser. Gated by the per-origin permission level — Level 3 covers safe reads, Level 4 covers actions with destructive-action consent, Level 5 is full automation. |
+| `request_authorization` | Ask the user to authorize a specific action against a specific origin via the side-panel banner. On Allow it returns a one-shot `confirmToken` to pass to `execute_action`. Call this BEFORE `execute_action` at Level 3, or to pre-authorize. |
+| `execute_action` | Performs a click / type / navigate in the user's live browser. Gated by the per-origin level: **Level 3** prompts a confirm banner per action (unless a `confirmToken` is passed); **Level 4** auto-allows non-destructive actions; below Level 3 it's denied. The destructive-action blocklist (delete/send/pay/…) always prompts, even at Level 4. |
+
+**Suggest tools (2) — Level 2+; non-mutating:**
+
+| Tool | When |
+|---|---|
+| `suggest_element` | Draw a non-destructive highlight overlay on a CSS selector (optional label) to point something out. Never clicks, types, or navigates. |
+| `clear_highlight` | Remove the highlight overlay drawn by `suggest_element`. |
+
+**Control tools (2) — Level 4 with the control shield up:**
+
+| Tool | When |
+|---|---|
+| `set_intent` | Set the agent's status-banner text on the control shield (e.g. "Applying to Senior Frontend · step 2/4") so the user can follow what you're doing. |
+| `request_user_input` | Pause the agent and hand the keyboard back to the user for one editable field (or a free-text prompt) — a CAPTCHA, an OTP, a final review — then resume. |
 
 ## Workflow
 
@@ -144,19 +158,23 @@ User: "Click the Save button on the page I have open."
 
 ## Permission model
 
-Peek uses a five-level per-origin model. The state lives in
-`~/.peek/permissions.json`; the user manages it via the extension's
-side panel and `peek audit` (CLI).
+Peek uses a five-level per-origin model (ADR-0010). The level lives in the
+extension (`chrome.storage.sync`, key `peek:permissionLevels`); the user
+manages it via the side panel's trust dial. A freshly-enabled origin defaults
+to **Level 1 (Read-only)**.
+
+- **Level 0 — Off** — tool surface disabled for the origin (recording suppressed)
+- **Level 1 — Read-only** (default) — all 8 read tools; no action execution
+- **Level 2 — Suggest-only** — read + non-mutating highlight overlay
+  (`suggest_element` / `clear_highlight`); no DOM mutation
+- **Level 3 — Act-with-confirm** — read + `execute_action` (click/type/navigate),
+  each prompting Allow once / Always for this site / Deny
+- **Level 4 — YOLO this session** — read + non-destructive actions auto-allowed
+  with no prompt; auto-expires on tab close or after 60 min; also unlocks
+  `set_intent` / `request_user_input` while the control shield is up
 
-- **Level 0** — no access (default for new origins)
-- **Level 1** — list-only (sessionId + origin + timestamps; no event content)
-- **Level 2** — read full session content (all 8 read tools usable)
-- **Level 3** — read + safe actions (clicks, typing in inputs; no
-  navigation away, no form submission)
-- **Level 4** — read + actions including destructive (with per-action
-  `request_authorization` consent)
-- **Level 5** — automation (Level 4 actions without per-action consent;
-  rare, opt-in only)
+There is no Level 5. The destructive-action blocklist (delete/send/pay/…) is a
+cross-level override that **always** prompts — including at Level 4 — not a level.
 
 If a tool returns `{ error: 'permission_denied', origin, currentLevel,
 requiredLevel }`, tell the user how to escalate (via the side panel)
@@ -166,7 +184,7 @@ and stop. Don't retry, don't suggest workarounds.
 
 - Never invent sessions. If `list_recent_sessions` returns empty, say so
   and suggest the user record a session via the extension.
-- Never invent tool names. The 10 above are the entire surface.
+- Never invent tool names. The 14 above are the entire surface.
 - Selector results from `generate_playwright_repro` are derived from
   rrweb event metadata. Surface them for review; don't claim a generated
   test is production-ready without the user confirming.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@peekdev/cli",
-  "version": "0.1.0-alpha.26",
+  "version": "0.1.0-alpha.27",
   "description": "peek command-line tool. A thin read-mostly client of the native host's ~/.peek/sessions.db: status, sessions list/show/export/delete, the `peek init` MCP-client wizard, and `peek audit log`.",
   "keywords": [
     "peek",
@@ -36,7 +36,7 @@
   ],
   "dependencies": {
     "better-sqlite3": "^12.10.0",
-    "@peekdev/mcp": "0.1.0-alpha.20"
+    "@peekdev/mcp": "0.1.0-alpha.21"
   },
   "devDependencies": {
     "@types/better-sqlite3": "^7.6.13",