@pugi/cli 0.1.0-beta.5 → 0.1.0-beta.50

package/dist/runtime/commands/share.js

@@ -0,0 +1,316 @@
+/**
+ * `pugi share` / `/share` command handler — Leak L20 (2026-05-27).
+ *
+ * Exports the current session transcript as Markdown to either a GitHub
+ * Gist (default when `gh` is available + auth'd) or a pugi.io public URL
+ * (`--pugi`). Mirrors Claude Code's `/share` ergonomics — operator can
+ * pin a session for portfolio / debugging / team sharing without copy-
+ * pasting the REPL pane by hand.
+ *
+ * Subcommands / flags (see L20 spec):
+ *
+ *   pugi share                Default upload — picks gist when available,
+ *                              falls back to pugi.io.
+ *   pugi share --gist          Force gist target; refuses if `gh` is not
+ *                              installed / authenticated.
+ *   pugi share --pugi          Force pugi.io target.
+ *   pugi share --redact        Run PII scrubber first; shows finding
+ *                              counts in the privacy gate banner.
+ *   pugi share --preview       Print transcript to stdout WITHOUT
+ *                              upload. Always implies a redact step IF
+ *                              `--redact` is also set so the operator
+ *                              inspects the scrubbed shape, not the raw.
+ *   pugi share --yes           Skip the y/n confirmation prompt
+ *                              (CI / scripted callers). Default is
+ *                              ALWAYS to ask before uploading. Refuses
+ *                              if the heuristic detects an active
+ *                              `Bearer ` credential regardless of `--yes`.
+ *   pugi share --json          Emit the result envelope as JSON.
+ *
+ * Privacy gates (mandatory):
+ *
+ *   1. Active credential heuristic — refuses upload entirely when the
+ *      transcript contains a live `Bearer <token>` span. Operators who
+ *      want to share a debug session that captured an auth header MUST
+ *      run `--redact` first; the redactor masks the credential before
+ *      the upload path sees it.
+ *   2. Confirmation prompt — y/n question shown to the operator before
+ *      every upload. Bypassed with `--yes`. Refuses upload on `n` /
+ *      empty / Ctrl-C.
+ *   3. Redact preview — when `--redact` is set, the gate banner shows
+ *      the per-category finding counts BEFORE the upload prompt so the
+ *      operator sees what would leave the machine.
+ *
+ * Same handler powers both `pugi share` (top-level) and `/share`
+ * (in-REPL slash). The slash side wires `writeOutput` to the REPL's
+ * `appendSystemLine` and never hits stdout directly.
+ */
+import { existsSync, readFileSync } from 'node:fs';
+import { resolve } from 'node:path';
+import { createInterface } from 'node:readline/promises';
+import { formatTranscript } from '../../core/share/formatter.js';
+import { containsActiveCredential, redactPii, summariseFindings, } from '../../core/share/redactor.js';
+import { uploadShare, } from '../../core/share/uploader.js';
+export function parseShareFlags(args) {
+    const flags = {
+        target: 'auto',
+        redact: false,
+        preview: false,
+        yes: false,
+        json: false,
+    };
+    for (const arg of args) {
+        if (arg === '--gist')
+            flags.target = 'gist';
+        else if (arg === '--pugi')
+            flags.target = 'pugi';
+        else if (arg === '--redact')
+            flags.redact = true;
+        else if (arg === '--preview')
+            flags.preview = true;
+        else if (arg === '--yes' || arg === '-y')
+            flags.yes = true;
+        else if (arg === '--json')
+            flags.json = true;
+    }
+    return flags;
+}
+export async function runShareCommand(args, ctx) {
+    const flags = parseShareFlags(args);
+    const eventsPath = resolve(ctx.workspaceRoot, '.pugi/events.jsonl');
+    if (!existsSync(eventsPath)) {
+        ctx.writeOutput({
+            command: 'share',
+            status: 'no_session',
+            message: '.pugi/events.jsonl not found',
+        }, 'pugi share: no session log found. Run any pugi command first to create .pugi/events.jsonl.');
+        process.exitCode = 2;
+        return;
+    }
+    // Read + format. The formatter walks the events stream once; size cap
+    // is implicit (we do not chunk multi-GB files because session logs are
+    // capped at a few MB by the cost-tracker / compaction subsystems).
+    const eventsJsonl = readFileSync(eventsPath, 'utf8');
+    const sessionId = ctx.sessionId ?? deriveSessionIdFromEvents(eventsJsonl) ?? 'no-session';
+    const formatted = formatTranscript({
+        sessionId,
+        workspaceRoot: ctx.workspaceRoot,
+        cliVersion: ctx.cliVersion,
+        eventsJsonl,
+        now: ctx.now,
+    });
+    // Active-credential gate. Refuses even with `--yes`; redact-first IS
+    // the only path to share a transcript with a Bearer token. We check
+    // BEFORE redact so the operator's intent is clear in the gate banner.
+    const hasLiveCredential = containsActiveCredential(formatted.markdown);
+    if (hasLiveCredential && !flags.redact) {
+        ctx.writeOutput({
+            command: 'share',
+            status: 'refused_active_credential',
+            message: 'Transcript contains an active Bearer credential. Re-run with --redact to scrub it before sharing.',
+        }, 'pugi share: refused — transcript contains an active `Bearer ` credential. ' +
+            'Re-run with --redact to scrub it before sharing, or open .pugi/events.jsonl to inspect manually.');
+        process.exitCode = 4;
+        return;
+    }
+    // Optional redact pass. We run BEFORE the preview/upload decisions so
+    // the operator sees what would actually leave their machine.
+    let body = formatted.markdown;
+    let redactionSummary = null;
+    let redactionFindings = [];
+    if (flags.redact) {
+        const result = redactPii(body);
+        body = result.output;
+        redactionSummary = summariseFindings(result);
+        redactionFindings = result.findings;
+    }
+    // Preview path. Always non-destructive: prints the (possibly redacted)
+    // transcript + the redact summary, no upload, no prompt. Operators
+    // chain `--preview --redact` to see what would be shared before they
+    // commit, which is the L20 spec's "inspect first" affordance.
+    if (flags.preview) {
+        const payload = {
+            command: 'share',
+            status: 'preview',
+            sessionId,
+            turnCount: formatted.turnCount,
+            eventCount: formatted.eventCount,
+            redact: flags.redact,
+            redactionSummary,
+            redactionFindings,
+            markdown: body,
+        };
+        const text = [
+            redactionSummary ? `${redactionSummary}` : null,
+            '--- transcript preview (not uploaded) ---',
+            body,
+        ]
+            .filter((line) => line !== null)
+            .join('\n');
+        ctx.writeOutput(payload, text);
+        return;
+    }
+    // Resolve the target. `auto` picks gist if `gh` is available, else
+    // falls back to pugi.io. The probe is best-effort — a missing `gh`
+    // surfaces as `ghAvailable -> false` and we route to pugi without an
+    // error.
+    const resolvedTarget = await pickTarget(flags.target, ctx);
+    // Confirmation gate. Refused by default unless `--yes`.
+    if (!flags.yes) {
+        const promptText = redactionSummary
+            ? `${redactionSummary} Share session transcript to ${resolvedTarget}? [y/N] `
+            : `Share session transcript to ${resolvedTarget}? [y/N] `;
+        const answer = (await ((ctx.promptYesNo ?? defaultPromptYesNo)(promptText))).trim().toLowerCase();
+        if (answer !== 'y' && answer !== 'yes') {
+            ctx.writeOutput({
+                command: 'share',
+                status: 'cancelled',
+                target: resolvedTarget,
+                message: 'Operator declined the upload.',
+            }, 'pugi share: cancelled.');
+            return;
+        }
+    }
+    // Resolve pugi.io credentials lazily — gist target does not need them.
+    let credential = null;
+    if (resolvedTarget === 'pugi') {
+        credential = ctx.resolveCredential ? await safeResolveCredential(ctx.resolveCredential) : null;
+    }
+    const uploadReq = {
+        target: resolvedTarget,
+        sessionId,
+        markdown: body,
+        description: `Pugi session ${sessionId}`,
+        ...(credential?.apiUrl !== undefined ? { apiUrl: credential.apiUrl } : {}),
+        ...(credential?.apiToken !== undefined ? { apiToken: credential.apiToken } : {}),
+        ...(ctx.execaLike !== undefined ? { execaLike: ctx.execaLike } : {}),
+        ...(ctx.fetchLike !== undefined ? { fetchLike: ctx.fetchLike } : {}),
+    };
+    const result = await uploadShare(uploadReq);
+    emitUploadResult(ctx, sessionId, resolvedTarget, redactionSummary, redactionFindings, result);
+}
+/**
+ * Default-target selection. `--gist` / `--pugi` are honoured verbatim;
+ * `auto` consults the `gh` probe and picks gist when available. We
+ * deliberately do not cache the probe — it costs one syscall and the
+ * operator might `gh auth login` between two `pugi share` runs.
+ */
+async function pickTarget(requested, ctx) {
+    if (requested === 'gist')
+        return 'gist';
+    if (requested === 'pugi')
+        return 'pugi';
+    // auto
+    const probe = ctx.ghAvailable ?? defaultGhAvailable(ctx.execaLike);
+    return (await probe()) ? 'gist' : 'pugi';
+}
+function defaultGhAvailable(execaLike) {
+    return async () => {
+        if (!execaLike) {
+            // Production: try to spawn `gh --version`. The default execa shim
+            // in uploader.ts is the right one but importing it here would
+            // create a small cycle; instead we replicate the minimal probe.
+            try {
+                const { defaultExecaLike } = await import('../../core/share/uploader.js');
+                const result = await defaultExecaLike('gh', ['--version']);
+                return result.exitCode === 0;
+            }
+            catch {
+                return false;
+            }
+        }
+        try {
+            const result = await execaLike('gh', ['--version']);
+            return result.exitCode === 0;
+        }
+        catch {
+            return false;
+        }
+    };
+}
+async function defaultPromptYesNo(question) {
+    if (!process.stdin.isTTY) {
+        // Non-interactive caller without --yes: refuse rather than block on
+        // an empty stdin. Mirrors the install-trust pattern in skills.ts.
+        process.stdout.write(`${question}\n(non-interactive stdin; declining)\n`);
+        return 'n';
+    }
+    const rl = createInterface({ input: process.stdin, output: process.stdout });
+    try {
+        return await rl.question(question);
+    }
+    finally {
+        rl.close();
+    }
+}
+async function safeResolveCredential(resolver) {
+    try {
+        return await resolver();
+    }
+    catch {
+        return null;
+    }
+}
+/**
+ * Walk the JSONL log from the tail and pick the newest `session.created`
+ * id. Mirrors the helper in cost.ts so the two surfaces agree on what
+ * "current session" means.
+ */
+function deriveSessionIdFromEvents(raw) {
+    const lines = raw.split('\n').filter((line) => line.trim().length > 0);
+    for (let i = lines.length - 1; i >= 0; i -= 1) {
+        try {
+            const parsed = JSON.parse(lines[i]);
+            if (parsed.type === 'session' && parsed.name === 'created' && typeof parsed.sessionId === 'string') {
+                return parsed.sessionId;
+            }
+        }
+        catch {
+            // skip
+        }
+    }
+    return null;
+}
+function emitUploadResult(ctx, sessionId, target, redactionSummary, redactionFindings, result) {
+    if (result.ok) {
+        const payload = {
+            command: 'share',
+            status: 'ok',
+            sessionId,
+            target,
+            url: result.url,
+            remoteId: result.remoteId ?? null,
+            redact: redactionSummary !== null,
+            redactionSummary,
+            redactionFindings,
+        };
+        const text = [
+            redactionSummary,
+            `pugi share: uploaded to ${target}.`,
+            `URL: ${result.url}`,
+        ]
+            .filter((line) => line !== null)
+            .join('\n');
+        ctx.writeOutput(payload, text);
+        return;
+    }
+    const payload = {
+        command: 'share',
+        status: 'upload_failed',
+        sessionId,
+        target,
+        reason: result.reason,
+        message: result.message,
+        redact: redactionSummary !== null,
+        redactionSummary,
+    };
+    const text = [
+        redactionSummary,
+        `pugi share: ${result.reason} — ${result.message}`,
+    ]
+        .filter((line) => line !== null)
+        .join('\n');
+    ctx.writeOutput(payload, text);
+    process.exitCode = 3;
+}
+//# sourceMappingURL=share.js.map

package/dist/runtime/commands/status.js

@@ -0,0 +1,186 @@
+/**
+ * `pugi status` — concise session-state probe (Leak L34, 2026-05-27).
+ *
+ * Different from `pugi doctor` (environment health). The status
+ * command answers "what is this Pugi session doing right now?" —
+ * session id + age, cwd, permission mode, CLI version, token
+ * usage, dispatch counts, last command, compact boundaries, auth
+ * identity.
+ *
+ * # Module contract
+ *
+ *   - This file owns the WIRING from CLI flags + ambient process
+ *     state к the snapshot collector. The data collector itself
+ *     lives in `core/diagnostics/probes/status-snapshot.ts` and
+ *     has zero coupling к the CLI dispatch surface.
+ *
+ *   - `runStatusCommand` is the single entry point. Both the
+ *     top-level `pugi status` handler in `runtime/cli.ts` AND the
+ *     in-REPL `/status` slash command call it. The function
+ *     returns the `StatusSnapshot` so the REPL slash handler can
+ *     mount the Ink renderer without re-collecting fields.
+ *
+ *   - The credential resolver is captured behind a function so the
+ *     spec can stub it without monkey-patching `core/credentials.ts`.
+ *
+ *   - The permission state module is dynamic-imported with a
+ *     try/catch so this command lands cleanly before the L6
+ *     permission-mode work — when the module is absent the field
+ *     degrades к "unknown" instead of crashing the snapshot.
+ *
+ *   - Exit code is 0 unless the snapshot itself throws. The
+ *     command is intentionally informational — even a fully
+ *     "unavailable" snapshot (everything degraded к sentinels)
+ *     exits 0 so monitoring scripts can rely on a stable contract.
+ */
+import { existsSync, readFileSync, readdirSync, statSync } from 'node:fs';
+import { homedir } from 'node:os';
+import { resolveActiveCredential } from '../../core/credentials.js';
+import { PUGI_CLI_VERSION } from '../version.js';
+import { collectStatusSnapshot, } from '../../core/diagnostics/probes/status-snapshot.js';
+/**
+ * Default production filesystem stubs. Wraps node:fs so the
+ * snapshot collector can stay sync + structurally testable.
+ */
+const DEFAULT_FS = {
+    existsSync,
+    statSync,
+    readdirSync: (p) => readdirSync(p),
+    readFileSync: (p, encoding) => readFileSync(p, encoding),
+};
+/**
+ * Default credential resolver. Wraps `resolveActiveCredential` so
+ * the snapshot only sees the trimmed `ResolvedCredentialSummary`
+ * shape and не the full store record.
+ */
+function defaultResolveCredential(env, home) {
+    const cred = resolveActiveCredential(env, home);
+    if (!cred)
+        return null;
+    // Tier is не yet recorded в the credentials file — set к null
+    // until a future sprint surfaces `tier` on the stored record.
+    // The renderer hides the parenthetical when tier is null.
+    return {
+        apiUrl: cred.apiUrl,
+        label: cred.label ?? null,
+        tier: null,
+        identity: cred.label ?? null,
+    };
+}
+/**
+ * Default permission-mode loader. Dynamic-imports
+ * `core/permissions/state.ts` (L6 in the leak-parity roadmap);
+ * returns null when the module is absent OR malformed, which the
+ * snapshot field degrades к the "unknown" sentinel.
+ */
+async function defaultResolvePermissionMode() {
+    try {
+        const mod = (await import('../../core/permissions/state.js').catch(() => null));
+        if (!mod || typeof mod.getCurrentPermissionMode !== 'function') {
+            return null;
+        }
+        const mode = mod.getCurrentPermissionMode();
+        return typeof mode === 'string' && mode.length > 0 ? mode : null;
+    }
+    catch {
+        return null;
+    }
+}
+/**
+ * Collect the snapshot + emit the output via the supplied
+ * writeOutput sink. Returns the snapshot so REPL callers can
+ * route it к the Ink renderer instead of the plain-text fallback.
+ */
+export async function runStatusCommand(ctx) {
+    // Resolve the permission mode upfront — the snapshot is sync but
+    // the L6 loader is async (dynamic import). We materialise the
+    // value here and hand the snapshot a sync getter.
+    const permissionMode = ctx.resolvePermissionMode === undefined
+        ? await defaultResolvePermissionMode()
+        : null;
+    const deps = {
+        cwd: ctx.cwd,
+        home: ctx.home,
+        cliVersion: PUGI_CLI_VERSION,
+        now: ctx.now ?? Date.now,
+        liveSessionId: ctx.liveSessionId ?? null,
+        sessionStartedAtEpochMs: ctx.sessionStartedAtEpochMs ?? null,
+        liveTokensUsed: ctx.liveTokensUsed ?? null,
+        lastCommand: ctx.lastCommand ?? null,
+        lastCommandAtEpochMs: ctx.lastCommandAtEpochMs ?? null,
+        liveApiUrl: ctx.liveApiUrl ?? null,
+        workspaceLabel: ctx.workspaceLabel ?? null,
+        fs: ctx.fs ?? DEFAULT_FS,
+        resolveCredential: ctx.resolveCredential ?? (() => defaultResolveCredential(ctx.env, ctx.home)),
+        resolvePermissionMode: ctx.resolvePermissionMode ?? (() => permissionMode),
+    };
+    let snapshot;
+    try {
+        snapshot = collectStatusSnapshot(deps);
+    }
+    catch (error) {
+        // Defensive: the snapshot collector is fail-soft per field, but
+        // a structural crash (e.g. a hostile env that throws on
+        // `process.version` access) must не bring down `pugi status`.
+        // We synthesise a minimal envelope and surface the error в the
+        // text output so the operator can file a bug.
+        const message = error instanceof Error ? error.message : String(error);
+        snapshot = {
+            command: 'status',
+            fields: [
+                {
+                    key: 'session',
+                    label: 'Session',
+                    value: 'unknown',
+                    available: false,
+                    note: `snapshot collector crashed: ${message}`,
+                },
+            ],
+            meta: {
+                cliVersion: PUGI_CLI_VERSION,
+                nodeVersion: process.version,
+                cwd: ctx.cwd,
+                capturedAt: new Date((ctx.now ?? Date.now)()).toISOString(),
+            },
+        };
+    }
+    const text = renderStatusTable(snapshot);
+    ctx.writeOutput(snapshot, text);
+    // Always exit 0 — `pugi status` is informational, never a gate.
+    process.exitCode = 0;
+    return snapshot;
+}
+/**
+ * Plain-text table renderer. Lays out the snapshot as a two-column
+ * (LABEL / VALUE) table with the brand-voice header `Pugi status`.
+ * Matches the column-light pattern used by `renderDoctorTable` so
+ * narrow terminals stay legible without a layout library.
+ */
+export function renderStatusTable(snapshot) {
+    // Row syntax: `${Label}: ${value}` with exactly ONE space after the
+    // colon, then the value verbatim. The colon doubles as a visual
+    // anchor and the REPL spec assertions match on the single-space
+    // form (`Backend: https://api.pugi.io`) — multi-space column
+    // padding broke `.includes('Backend: https://...')` substring
+    // checks. Operators who want a column layout can run the Ink
+    // renderer (`<StatusTable>`); the plain-text fallback stays
+    // narrow-terminal friendly without padding columns.
+    const lines = [];
+    lines.push('Pugi status');
+    lines.push('═'.repeat(50));
+    for (const field of snapshot.fields) {
+        lines.push(`${field.label}: ${field.value}`);
+    }
+    lines.push('');
+    lines.push(`CLI ${snapshot.meta.cliVersion}  Node ${snapshot.meta.nodeVersion}  cwd ${snapshot.meta.cwd}`);
+    return lines.join('\n');
+}
+/**
+ * Default home dir resolver. Centralised so the CLI handler can
+ * call `runStatusCommand` without re-importing `os.homedir`
+ * everywhere.
+ */
+export function defaultStatusHome() {
+    return homedir();
+}
+//# sourceMappingURL=status.js.map

package/dist/runtime/commands/stickers.js

@@ -0,0 +1,82 @@
+/**
+ * `pugi stickers` — brand-personality gimmick command (Leak L33, 2026-05-27).
+ *
+ * Parity command with Claude Code's `/stickers` easter egg. Claude
+ * ships physical stickers OR shows ASCII brand art; Pugi's variant
+ * focuses на the ASCII branch — picks one of the curated pug-face
+ * variants at random and footers it with a rotating brand quote.
+ *
+ * # Module contract
+ *
+ *   - This file owns the WIRING from CLI flags + ambient state to the
+ *     art + quote pickers. The corpus + pure renderers live in
+ *     `tui/stickers-art.tsx` and have zero coupling к the CLI dispatch
+ *     surface.
+ *
+ *   - `runStickersCommand` is the single entry point. Both the top-
+ *     level `pugi stickers` handler в `runtime/cli.ts` AND the in-REPL
+ *     `/stickers` slash command call it. The function returns the
+ *     resolved `StickersResult` so the slash dispatcher can route the
+ *     output к the REPL's system pane without re-picking the art.
+ *
+ *   - Exit code is ALWAYS 0. The command is a brand surface — never a
+ *     gate. Even when the corpus is somehow exhausted (impossible
+ *     today, the lists are frozen), the handler synthesises a fallback
+ *     line and exits 0 instead of crashing.
+ *
+ *   - The random source is injected so the spec can pin the chosen
+ *     art + quote without monkey-patching `Math.random`.
+ */
+import { PUG_QUOTES, PUG_STICKERS, pickArtVariant, pickQuote, renderPugStickersText, } from '../../tui/stickers-art.js';
+/**
+ * Pick + render the sticker, hand it к the output sink, exit 0.
+ * Returns the picked result so the REPL slash handler can mount the
+ * Ink renderer without re-picking.
+ */
+export function runStickersCommand(ctx) {
+    const rng = ctx.rng ?? Math.random;
+    let art;
+    let quote;
+    try {
+        art = pickArtVariant(rng);
+        quote = pickQuote(rng);
+    }
+    catch {
+        // Defensive: the pickers are pure + the corpus is frozen, so this
+        // path is unreachable in production. If a future refactor swaps
+        // the corpus к an empty array we still want к exit 0 with a
+        // deterministic fallback so monitoring scripts that probe
+        // `pugi stickers` do not flap.
+        art = {
+            id: 'fallback',
+            caption: 'fallback',
+            art: '/\\___/\\\n( o o )\n( =^= )',
+        };
+        quote = 'Pugi: your engineering co-pilot.';
+    }
+    const text = renderPugStickersText(art, quote);
+    const result = {
+        command: 'stickers',
+        art,
+        quote,
+        text,
+        meta: {
+            artVariants: PUG_STICKERS.length,
+            quotes: PUG_QUOTES.length,
+        },
+    };
+    ctx.writeOutput(result, text);
+    // Brand surface — never a gate. The caller may have set a different
+    // exit code (e.g. dispatch loop reused this handler for an inline
+    // brand banner); we explicitly stamp 0 so `pugi stickers && echo ok`
+    // stays predictable.
+    process.exitCode = 0;
+    // Silence the unused-import warning in the rare case `ctx.asciiOnly`
+    // is added in a future surface without a switch. Today the flag is
+    // honoured by the CLI handler choosing the writeOutput sink — the
+    // result.text is the same regardless because the boxed renderer
+    // never lands в the plain stdout sink.
+    void ctx.asciiOnly;
+    return result;
+}
+//# sourceMappingURL=stickers.js.map