@prave/cli 1.4.0 → 1.4.2

package/dist/commands/list.js

@@ -5,6 +5,7 @@ import { tokenTier } from '@prave/shared';
 import { track } from '../lib/analytics.js';
 import { api } from '../lib/api.js';
 import { CONFIG } from '../lib/config.js';
+import { nudgeIfAnonymous } from '../lib/nudge.js';
 import { log } from '../utils/logger.js';
 const TIER_EMOJI = {
     lean: '🟢',
@@ -68,6 +69,7 @@ export async function listCommand(opts = {}) {
             console.log(`  ${chalk.cyan('•')} ${name}`);
         }
         log.dim(`\n${localSlugs.length} local skill${localSlugs.length === 1 ? '' : 's'} in ${CONFIG.skillsDir}`);
+        await nudgeIfAnonymous('list');
         return;
     }
     // Enriched path — pull intelligence and merge by slug (best-effort).

package/dist/commands/run.js

@@ -1,5 +1,6 @@
 import { readdir, readFile, stat } from 'node:fs/promises';
 import { resolve, relative, basename, sep } from 'node:path';
+import { createInterface } from 'node:readline/promises';
 import { Buffer } from 'node:buffer';
 import chalk from 'chalk';
 import open from 'open';
@@ -62,11 +63,40 @@ export async function runDeployCommand(pathArg) {
     const creds0 = await requireAuth('prave run');
     if (!creds0)
         return;
-    // 1. Local secret-scan BEFORE we ship anything. Cheap defence in
+    // 1a. Look for .env / .env.production / .env.local etc. The scanner
+    // would otherwise hard-reject them on the upload. Offer to lift the
+    // values out of the bundle and pass them to the wizard so they end
+    // up encrypted on the run row instead of in the tarball.
+    const envFiles = await findEnvFiles(root);
+    let envVars = {};
+    const stripPaths = new Set();
+    if (envFiles.length > 0) {
+        const totalKeys = envFiles.reduce((n, f) => n + Object.keys(f.values).length, 0);
+        console.log();
+        console.log(chalk.bold(`Found ${envFiles.length} env file${envFiles.length === 1 ? '' : 's'} with ${totalKeys} variable${totalKeys === 1 ? '' : 's'}:`));
+        for (const f of envFiles) {
+            console.log(`  ${chalk.cyan('•')} ${f.path}  ${chalk.dim(`(${Object.keys(f.values).length} keys)`)}`);
+        }
+        console.log(chalk.dim('\nIf you continue, Prave strips these from the upload and passes the\n' +
+            'values to the browser wizard. They get AES-256-GCM-encrypted onto\n' +
+            'the run, decrypted only inside the sandbox at run-time.\n' +
+            'Decline to abort so you can clean up first.'));
+        const yes = await confirmYesNo('Strip & pass env vars to the wizard?');
+        if (!yes) {
+            log.error('Aborted. Remove the .env file(s) (or rename to .env.example) and re-run.');
+            process.exit(1);
+        }
+        for (const f of envFiles) {
+            stripPaths.add(f.path);
+            Object.assign(envVars, f.values);
+        }
+    }
+    // 1b. Local secret-scan BEFORE we ship anything. Cheap defence in
     // depth — even though the API scans again, surfacing the finding
     // pre-upload saves the user a round-trip and avoids briefly storing
-    // a secret-bearing tarball in our bucket.
-    const localFindings = await preflightScan(root);
+    // a secret-bearing tarball in our bucket. The env files we just
+    // accepted to lift out are excluded from the scan.
+    const localFindings = await preflightScan(root, stripPaths);
     if (localFindings.length > 0) {
         log.error('Bundle contains files that look like secrets:');
         for (const f of localFindings.slice(0, 10)) {
@@ -89,13 +119,28 @@ export async function runDeployCommand(pathArg) {
         initSpinner.fail(`Could not open deploy session: ${err.message}`);
         process.exit(1);
     }
+    // 2b. Ship env vars to the wizard before the upload so they're
+    // waiting when the browser opens. The wizard reads them once via
+    // /deploy/status and pre-fills its env-vars step.
+    if (Object.keys(envVars).length > 0) {
+        const envSpinner = ora('Sending env vars to the wizard…').start();
+        try {
+            await api.post(`/api/v1/deploy/env?session=${encodeURIComponent(session.session_id)}`, { env_vars: envVars }, true);
+            envSpinner.succeed(`Passed ${Object.keys(envVars).length} env var(s)`);
+        }
+        catch (err) {
+            envSpinner.fail(`Could not ship env vars: ${err.message}`);
+            process.exit(1);
+        }
+    }
     // 3. Pack the directory into a gzipped tar in memory. tar.create's
     // `cwd` option is critical — paths inside the archive must be
-    // RELATIVE to the project root, not absolute.
+    // RELATIVE to the project root, not absolute. Stripped paths are
+    // env files we already shipped via /deploy/env above.
     const packSpinner = ora('Bundling project…').start();
     let tarball;
     try {
-        tarball = await packDirectory(root);
+        tarball = await packDirectory(root, stripPaths);
         packSpinner.succeed(`Bundled ${formatBytes(tarball.length)}`);
     }
     catch (err) {
@@ -221,7 +266,7 @@ async function findSkillMd(root) {
         return null;
     }
 }
-async function preflightScan(root) {
+async function preflightScan(root, stripPaths = new Set()) {
     const inputs = [];
     let files = 0;
     let bytes = 0;
@@ -243,8 +288,13 @@ async function preflightScan(root) {
             }
             if (!entry.isFile())
                 continue;
-            files++;
             const rel = relative(root, abs).split(sep).join('/');
+            // The user already accepted to lift this env file out of the
+            // bundle in the previous step. Don't scan it (we know it has
+            // secrets — that's why we're lifting it).
+            if (stripPaths.has(rel))
+                continue;
+            files++;
             if (!isLikelyTextPath(rel)) {
                 inputs.push({ path: rel });
                 continue;
@@ -262,12 +312,17 @@ async function preflightScan(root) {
     await visit(root);
     return scanForSecrets(inputs).findings;
 }
-async function packDirectory(root) {
+async function packDirectory(root, stripPaths = new Set()) {
     // Top-level entries only — tar.create resolves them against `cwd`.
     const entries = (await readdir(root)).filter((n) => !TAR_IGNORE.has(n));
     if (entries.length === 0) {
         throw new Error('Project directory is empty.');
     }
+    // Normalise the strip-set against tar.create's relative-path format
+    // (POSIX forward slashes, no leading "./"). Paths sit one level
+    // beneath the archive's basename prefix, so we compare on the
+    // input-side relative path tar.create hands us.
+    const stripNormalised = new Set([...stripPaths].map((p) => p.replace(/\\/g, '/').replace(/^\.\//, '')));
     const stream = tar.create({
         gzip: true,
         cwd: root,
@@ -276,7 +331,10 @@ async function packDirectory(root) {
         // gets a `<project>/SKILL.md` shape, not a flat dump at the
         // archive root.
         prefix: basename(root),
-        filter: (_path) => true,
+        filter: (path) => {
+            const norm = path.replace(/\\/g, '/').replace(/^\.\//, '');
+            return !stripNormalised.has(norm);
+        },
     }, entries);
     const chunks = [];
     for await (const chunk of stream) {
@@ -284,6 +342,84 @@ async function packDirectory(root) {
     }
     return Buffer.concat(chunks);
 }
+/**
+ * Look for common `.env*` files at the project root. We don't scan
+ * deeper than top-level — a nested `.env` is almost certainly a
+ * shipping example, not the real secrets file. Returns an empty list
+ * when nothing's found.
+ */
+async function findEnvFiles(root) {
+    const entries = await readdir(root, { withFileTypes: true }).catch(() => []);
+    const findings = [];
+    for (const entry of entries) {
+        if (!entry.isFile())
+            continue;
+        const name = entry.name;
+        if (!isRealEnvFile(name))
+            continue;
+        try {
+            const raw = await readFile(`${root}${sep}${name}`, 'utf8');
+            const values = parseDotenv(raw);
+            if (Object.keys(values).length === 0)
+                continue;
+            findings.push({ path: name, values });
+        }
+        catch {
+            /* unreadable — skip */
+        }
+    }
+    return findings;
+}
+/**
+ * `.env`, `.env.local`, `.env.production`, `.env.development`, `.envrc`
+ * count as "real env files". Templates (`.env.example`, `.env.sample`,
+ * `.env.template`) are explicitly NOT lifted — those are meant to be
+ * shipped.
+ */
+function isRealEnvFile(name) {
+    if (name === '.env' || name === '.envrc')
+        return true;
+    if (!name.startsWith('.env.'))
+        return false;
+    const suffix = name.slice('.env.'.length);
+    if (/^(example|sample|template)$/i.test(suffix))
+        return false;
+    return true;
+}
+function parseDotenv(text) {
+    const out = {};
+    for (const raw of text.split('\n')) {
+        const line = raw.trim();
+        if (!line || line.startsWith('#'))
+            continue;
+        const eq = line.indexOf('=');
+        if (eq <= 0)
+            continue;
+        const key = line.slice(0, eq).trim();
+        let value = line.slice(eq + 1).trim();
+        if ((value.startsWith('"') && value.endsWith('"')) ||
+            (value.startsWith("'") && value.endsWith("'"))) {
+            value = value.slice(1, -1);
+        }
+        if (/^[A-Za-z_][A-Za-z0-9_]*$/.test(key))
+            out[key] = value;
+    }
+    return out;
+}
+async function confirmYesNo(question) {
+    // Non-interactive shells (pipes, CI) can't prompt — default to "no"
+    // so we never silently ship secrets in a script.
+    if (!process.stdout.isTTY || !process.stdin.isTTY)
+        return false;
+    const rl = createInterface({ input: process.stdin, output: process.stdout });
+    try {
+        const answer = (await rl.question(`${question} [Y/n] `)).trim().toLowerCase();
+        return answer === '' || answer === 'y' || answer === 'yes';
+    }
+    finally {
+        rl.close();
+    }
+}
 function formatBytes(n) {
     if (n < 1024)
         return `${n}B`;

package/dist/commands/search.js

@@ -1,6 +1,7 @@
 import chalk from 'chalk';
 import { track } from '../lib/analytics.js';
 import { api } from '../lib/api.js';
+import { nudgeIfAnonymous } from '../lib/nudge.js';
 import { log } from '../utils/logger.js';
 const SLUG_COL = 32;
 function formatInstalls(n) {
@@ -41,4 +42,5 @@ export async function searchCommand(query) {
     if (skills.length > 0) {
         console.log(chalk.dim('  → prave install <slug>'));
     }
+    await nudgeIfAnonymous('search');
 }

package/dist/commands/uninstall.js

@@ -2,15 +2,23 @@ import { rm } from 'node:fs/promises';
 import { join, resolve, sep } from 'node:path';
 import ora from 'ora';
 import { track } from '../lib/analytics.js';
+import { api, ApiError } from '../lib/api.js';
 import { CONFIG } from '../lib/config.js';
+import { loadCredentials } from '../lib/credentials.js';
 import { assertSlug, InvalidSlugError } from '../lib/slug.js';
 /**
- * `prave uninstall <slug>` — removes ~/.claude/skills/<slug> recursively.
- * No remote call: uninstalls are local-only; the install record stays
- * for analytics + history.
+ * `prave uninstall <slug>` — removes ~/.claude/skills/<slug> AND tells
+ * the server to drop the corresponding install record so the
+ * dashboard counter goes down.
  *
- * Slug is validated against [a-z0-9][a-z0-9-]{0,63} before any path math
- * so a hostile arg like `../../etc` cannot escape the skills directory.
+ * The remote DELETE is best-effort: a network failure or "not logged
+ * in" state still lets the local rm succeed (so the user isn't stuck
+ * with dead files when offline). The mismatch then heals on the next
+ * `prave sync` or manual dashboard cleanup.
+ *
+ * Slug is validated against [a-z0-9][a-z0-9-]{0,63} before any path
+ * math so a hostile arg like `../../etc` cannot escape the skills
+ * directory.
  */
 export async function uninstallCommand(slug) {
     track('cli_uninstall', { slug });
@@ -37,10 +45,33 @@ export async function uninstallCommand(slug) {
     const spinner = ora(`Removing ${slug}…`).start();
     try {
         await rm(dir, { recursive: true, force: true });
-        spinner.succeed(`Removed ${dir}`);
     }
     catch (err) {
-        spinner.fail(`Couldn’t remove ${slug}: ${err.message}`);
+        spinner.fail(`Couldn't remove ${slug}: ${err.message}`);
         process.exitCode = 1;
+        return;
+    }
+    // Best-effort server-side ledger sweep. We only attempt it when the
+    // user is logged in — anonymous CLI usage (running before
+    // `prave login`) still does the local rm and exits cleanly.
+    const creds = await loadCredentials();
+    if (creds) {
+        try {
+            await api.del(`/api/v1/skills/${encodeURIComponent(slug)}/install`, true);
+            spinner.succeed(`Removed ${slug} (local + server install record)`);
+        }
+        catch (err) {
+            // 404 = install record already absent (matches our idempotent
+            // server behaviour). Anything else is a soft warning.
+            if (err instanceof ApiError && err.status === 404) {
+                spinner.succeed(`Removed ${slug} (local; server had no install record)`);
+            }
+            else {
+                spinner.warn(`Removed ${slug} locally — server ledger update failed (${err.message}). Run \`prave sync\` later to reconcile.`);
+            }
+        }
+    }
+    else {
+        spinner.succeed(`Removed ${slug} (local only — not signed in)`);
     }
 }

package/dist/commands/whatdoes.js

@@ -3,6 +3,7 @@ import ora from 'ora';
 import { tokenTier } from '@prave/shared';
 import { track } from '../lib/analytics.js';
 import { api, ApiError } from '../lib/api.js';
+import { nudgeIfAnonymous } from '../lib/nudge.js';
 import { log } from '../utils/logger.js';
 const TIER_BADGE = {
     lean: chalk.green('🟢 Lean'),
@@ -71,6 +72,7 @@ export async function whatdoesCommand(skillName) {
         console.log(`🔗 Requires:      ${requires}`);
         console.log(`${data.conflicts.length > 0 ? chalk.yellow('⚠️ ') : '⚠️ '}Conflicts:     ${conflicts}`);
         console.log(chalk.dim(RULE));
+        await nudgeIfAnonymous('whatdoes');
     }
     catch (err) {
         spinner.stop();

package/dist/lib/nudge.js

@@ -0,0 +1,61 @@
+import chalk from 'chalk';
+import { loadCredentials } from './credentials.js';
+let alreadyNudged = false;
+export async function nudgeIfAnonymous(context = 'generic') {
+    if (alreadyNudged)
+        return;
+    if (process.env.PRAVE_QUIET === '1')
+        return;
+    if (process.env.PRAVE_TELEMETRY === '0')
+        return; // user opted out of analytics
+    // CI / non-interactive shells are unlikely to act on a nudge — and
+    // the noise breaks pipe-parsing scripts.
+    if (!process.stdout.isTTY)
+        return;
+    const creds = await loadCredentials();
+    if (creds)
+        return; // logged-in → no nudge
+    alreadyNudged = true;
+    const cta = chalk.cyan('prave login');
+    const url = chalk.dim('— takes 10 seconds, free forever');
+    const message = (() => {
+        switch (context) {
+            case 'search':
+                return `${chalk.dim('Save these to your library, get token costs + conflicts.')}\n${chalk.dim('→')} ${cta} ${url}`;
+            case 'whatdoes':
+                return `${chalk.dim('Want the full audit — triggers, conflicts, token cost?')}\n${chalk.dim('→')} ${cta} ${url}`;
+            case 'list':
+                return `${chalk.dim('Sign in to see AI descriptions, conflicts and token cost.')}\n${chalk.dim('→')} ${cta} ${url}`;
+            case 'overview':
+                return `${chalk.dim('Track this over time on prave.app.')}\n${chalk.dim('→')} ${cta} ${url}`;
+            case 'generic':
+            default:
+                return `${chalk.dim('Get the full Skill Intelligence on prave.app.')}\n${chalk.dim('→')} ${cta} ${url}`;
+        }
+    })();
+    // One blank line so the nudge isn't glued to the command's main
+    // output. Two `console.log` calls so the chalk styles survive the
+    // pipeline cleanly.
+    console.log();
+    console.log(message);
+}
+/**
+ * Post-install banner used by package.json's `postinstall` script.
+ * Runs once after `npm i -g @prave/cli`. Stays short — npm's install
+ * log is already crowded.
+ */
+export function printPostInstallBanner() {
+    if (process.env.CI)
+        return;
+    if (process.env.PRAVE_QUIET === '1')
+        return;
+    console.log();
+    console.log(chalk.bold(`  Prave CLI installed.`));
+    console.log();
+    console.log(`  ${chalk.cyan('prave login')}        ${chalk.dim('— create your free account (browser)')}`);
+    console.log(`  ${chalk.cyan('prave search <q>')}   ${chalk.dim('— find any Claude Skill')}`);
+    console.log(`  ${chalk.cyan('prave docs')}         ${chalk.dim('— open the docs')}`);
+    console.log();
+    console.log(chalk.dim('  Docs: https://prave.app/docs · Issues: github.com/eppstudio/prave'));
+    console.log();
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@prave/cli",
-  "version": "1.4.0",
+  "version": "1.4.2",
   "description": "Prave CLI — discover, install, version, test, and ship Claude Skills. The developer platform for the complete Skill lifecycle.",
   "type": "module",
   "keywords": [
@@ -43,7 +43,8 @@
   },
   "main": "dist/index.js",
   "files": [
-    "dist"
+    "dist",
+    "scripts/postinstall.mjs"
   ],
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.29.0",
@@ -53,7 +54,7 @@
     "ora": "^8.0.1",
     "tar": "^7.4.3",
     "undici": "^6.18.0",
-    "@prave/shared": "1.4.0"
+    "@prave/shared": "1.4.2"
   },
   "devDependencies": {
     "@types/node": "^20.12.7",
@@ -69,6 +70,7 @@
     "cli": "tsx src/index.ts",
     "build": "tsc -p tsconfig.json && node scripts/inject-config.mjs",
     "typecheck": "tsc -p tsconfig.json --noEmit",
-    "lint": "tsc -p tsconfig.json --noEmit"
+    "lint": "tsc -p tsconfig.json --noEmit",
+    "postinstall": "node scripts/postinstall.mjs || true"
   }
 }

package/scripts/postinstall.mjs

@@ -0,0 +1,31 @@
+#!/usr/bin/env node
+/**
+ * npm postinstall hook. Runs once after `npm i -g @prave/cli` (and on
+ * upgrades). Prints a small "you're set — what now?" banner so the
+ * thousands of CLI installs we're seeing actually find the dashboard
+ * + the docs.
+ *
+ * Silent in CI / non-interactive shells / when PRAVE_QUIET=1 is set.
+ * Also silent on dependent installs — npm sets `npm_config_global` to
+ * 'false' or unset when we're being installed as a dependency, and
+ * the banner is only useful for the global-install user.
+ */
+if (process.env.CI) process.exit(0)
+if (process.env.PRAVE_QUIET === '1') process.exit(0)
+// `npm_config_global` is `'true'` only for `npm i -g`. Skip for local
+// dependency installs (e.g. when our worker container builds).
+if (process.env.npm_config_global !== 'true') process.exit(0)
+
+const dim = (s) => `\x1b[2m${s}\x1b[0m`
+const bold = (s) => `\x1b[1m${s}\x1b[0m`
+const cyan = (s) => `\x1b[36m${s}\x1b[0m`
+
+console.log()
+console.log(`  ${bold('Prave CLI installed.')}`)
+console.log()
+console.log(`  ${cyan('prave login')}        ${dim('— create your free account (browser)')}`)
+console.log(`  ${cyan('prave search <q>')}   ${dim('— find any Claude Skill')}`)
+console.log(`  ${cyan('prave docs')}         ${dim('— open the docs')}`)
+console.log()
+console.log(dim('  Docs: https://prave.app/docs · Issues: github.com/eppstudio/prave'))
+console.log()