@revos/cli 0.1.0

package/README.md

@@ -0,0 +1,171 @@
+# RevOS CLI
+
+Command-line interface for managing RevOS resources.
+
+## Installation
+
+```bash
+pnpm add @revos/cli
+```
+
+## Usage
+
+```bash
+revos [command] [options]
+```
+
+## Global Options
+
+```
+-o, --org <id>  Override organization ID for this command
+    --json      Format output as JSON
+```
+
+## Commands
+
+### Project Initialization
+
+```bash
+revos init [project-name]
+```
+
+Scaffolds a new RevOS data engineering project. If `project-name` is omitted, uses the current directory name.
+
+**What it does:**
+
+1. Fetches your organizations and prompts you to select one (auto-selects if only one).
+2. Provisions a GCP service account for your org (idempotent) and writes the key to `~/.revos/{project-name}-gsa-creds.json`.
+3. Creates the project directory structure (medallion layout: bronze/silver/gold).
+4. Generates `.devcontainer/devcontainer.json` with Python 3.11, Node.js, Google Cloud SDK (`bq`), and dbt pre-installed. The Dev Container mounts `~/.revos/{project-name}-gsa-creds.json` automatically.
+5. Generates `dbt/profiles.yml` pre-configured for BigQuery.
+6. Generates `.gitignore` and `README.md`.
+7. Scaffolds AI companion files: `CLAUDE.md`, `AGENTS.md`, and `.claude/skills/`.
+
+**Requires:** `revos auth login` first.
+
+---
+
+### Authentication
+
+#### Login
+
+```bash
+revos auth login
+```
+
+#### Logout
+
+```bash
+revos auth logout
+```
+
+#### Show auth status
+
+```bash
+revos auth status [--json]
+```
+
+---
+
+### Organization Management
+
+#### List organizations
+
+```bash
+revos org list [--columns name,id] [--json]
+```
+
+#### Show current organization
+
+```bash
+revos org current [--json]
+```
+
+#### Switch organization
+
+```bash
+# Interactive mode
+revos org switch
+
+# Direct by ID
+revos org switch <org-id>
+```
+
+---
+
+### Overlays Management
+
+Overlay files contain only Cube definition data (dimensions, measures, joins, etc.). The overlay name is derived from the filename (without `.json`). A `description` field in the file is synced with the overlay's description on push.
+
+Example `my-overlay.json`:
+
+```json
+{
+  "description": "My custom overlay",
+  "sql_table": "my_table",
+  "dimensions": {
+    "id": { "sql": "id", "type": "number", "primary_key": true }
+  }
+}
+```
+
+#### Push overlays to API
+
+```bash
+revos overlays push [files...] [-d <dir>] [-f] [--json]
+
+Options:
+  -d, --dir <path>  Directory containing overlay files (default: "./overlays")
+  -f, --force       Force push even if remote is newer
+```
+
+#### Pull overlays from API
+
+```bash
+revos overlays pull [-d <dir>] [-n <name>...] [--json]
+
+Options:
+  -d, --dir <path>       Directory to save overlay files (default: "./overlays")
+  -n, --name <name>      Specific overlay names to pull (repeatable)
+```
+
+#### Show diff between local and remote
+
+```bash
+revos overlays diff [files...] [-d <dir>] [--json]
+```
+
+#### Check overlay status
+
+```bash
+revos overlays status [files...] [-d <dir>] [--columns name,status] [--json]
+```
+
+---
+
+## Output Formats
+
+Every command supports `--json` for machine-readable output:
+
+```bash
+revos org list --json
+revos auth status --json
+revos overlays status --json
+```
+
+List commands support `--columns` to limit displayed columns:
+
+```bash
+revos org list --columns name
+revos overlays status --columns name,status
+```
+
+---
+
+## Configuration
+
+| Variable        | Description                                              |
+| --------------- | -------------------------------------------------------- |
+| `REVOS_TOKEN`   | Authentication token (alternative to `revos auth login`) |
+| `REVOS_API_URL` | API endpoint (default: `https://api.revos.ai`)           |
+| `REVOS_ORG_ID`  | Organization ID override                                 |

package/bin/revos.js

@@ -0,0 +1,7 @@
+#!/usr/bin/env node
+
+import { run, flush, handle } from "@oclif/core";
+
+await run(process.argv.slice(2), import.meta.url)
+  .then(flush)
+  .catch(handle);

package/dist/adapters/oclif/commands/auth/login.d.mts

@@ -0,0 +1,15 @@
+import { t as AuthResult } from "../../../../types-DsQtGF-c.mjs";
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+import * as _$_oclif_core_interfaces0 from "@oclif/core/interfaces";
+
+//#region src/adapters/oclif/commands/auth/login.d.ts
+declare class AuthLogin extends BaseCommand<typeof AuthLogin> {
+  static description: string;
+  static flags: {
+    "clerk-domain": _$_oclif_core_interfaces0.OptionFlag<string | undefined, _$_oclif_core_interfaces0.CustomOptions>;
+    "clerk-client-id": _$_oclif_core_interfaces0.OptionFlag<string | undefined, _$_oclif_core_interfaces0.CustomOptions>;
+  };
+  run(): Promise<AuthResult>;
+}
+//#endregion
+export { AuthLogin as default };

package/dist/adapters/oclif/commands/auth/login.mjs

@@ -0,0 +1,69 @@
+import { A as getCredentialsPath, C as getUserInfo, D as tokenResponseToCredentials, N as saveCredentials, O as startOAuthServer, S as generatePKCEChallenge, T as setClerkConfig, b as buildAuthorizationUrl, m as unwrap, n as selectOrganization, p as createApiClient, x as exchangeCodeForTokens } from "../../../../core-Bif-kxlo.mjs";
+import { t as BaseCommand } from "../../../../base.command-BGM225ik.mjs";
+import chalk from "chalk";
+import { Flags } from "@oclif/core";
+import open from "open";
+//#region src/adapters/oclif/commands/auth/login.ts
+var AuthLogin = class extends BaseCommand {
+	static description = "Authenticate with RevOS via browser";
+	static flags = {
+		"clerk-domain": Flags.string({ description: "Custom Clerk domain URL" }),
+		"clerk-client-id": Flags.string({ description: "Custom Clerk OAuth client ID" })
+	};
+	async run() {
+		const { flags } = this;
+		if (flags["clerk-domain"] || flags["clerk-client-id"]) setClerkConfig({
+			clerkDomain: flags["clerk-domain"],
+			clerkClientId: flags["clerk-client-id"]
+		});
+		if (!this.jsonEnabled()) this.log("Starting authentication...\n");
+		const server = await startOAuthServer();
+		const redirectUri = `http://localhost:${server.port}/callback`;
+		const pkce = generatePKCEChallenge();
+		const authUrl = buildAuthorizationUrl(redirectUri, pkce);
+		if (!this.jsonEnabled()) {
+			this.log("Opening browser for authentication...");
+			this.log("If the browser doesn't open, visit this URL:\n");
+			this.log(`  ${authUrl}\n`);
+			this.log("Waiting for authentication... (Press Ctrl+C to cancel)\n");
+		}
+		await open(authUrl);
+		const callbackResult = await server.waitForCallback();
+		if (callbackResult.state !== pkce.state) throw new Error("Invalid state parameter. Authentication may have been tampered with.");
+		if (!this.jsonEnabled()) this.log("Received authorization code, exchanging for tokens...\n");
+		const tokenResponse = await exchangeCodeForTokens(callbackResult.code, redirectUri, pkce.codeVerifier);
+		const userInfo = await getUserInfo(tokenResponse.access_token);
+		const credentials = tokenResponseToCredentials(tokenResponse, userInfo);
+		saveCredentials(credentials);
+		if (!this.jsonEnabled()) {
+			this.log(chalk.green(`\nAuthenticated as ${userInfo.email || userInfo.sub}`));
+			this.log(`\nCredentials saved to ${getCredentialsPath()}`);
+		}
+		try {
+			const orgs = unwrap(await createApiClient({
+				apiUrl: process.env.REVOS_API_URL || "https://api.revos.ai",
+				token: tokenResponse.access_token
+			}).organizations.list());
+			if (orgs.length === 1) {
+				credentials.organizationId = orgs[0].id;
+				saveCredentials(credentials);
+				if (!this.jsonEnabled()) this.log(chalk.green(`\nAutomatically selected organization: ${orgs[0].name}`));
+			} else if (orgs.length > 1 && !this.jsonEnabled()) {
+				this.log(`\nYou belong to ${orgs.length} organizations.`);
+				const selected = await selectOrganization(orgs);
+				credentials.organizationId = selected.id;
+				saveCredentials(credentials);
+				this.log(chalk.green(`\nSelected organization: ${selected.name}`));
+			}
+		} catch {
+			if (!this.jsonEnabled()) this.log("\nRun 'revos org list' to see your organizations.");
+		}
+		return {
+			success: true,
+			email: userInfo.email,
+			userId: userInfo.sub
+		};
+	}
+};
+//#endregion
+export { AuthLogin as default };

package/dist/adapters/oclif/commands/auth/logout.d.mts

@@ -0,0 +1,11 @@
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+
+//#region src/adapters/oclif/commands/auth/logout.d.ts
+declare class AuthLogout extends BaseCommand<typeof AuthLogout> {
+  static description: string;
+  run(): Promise<{
+    deleted: boolean;
+  }>;
+}
+//#endregion
+export { AuthLogout as default };

package/dist/adapters/oclif/commands/auth/logout.mjs

@@ -0,0 +1,17 @@
+import { k as deleteCredentials } from "../../../../core-Bif-kxlo.mjs";
+import { t as BaseCommand } from "../../../../base.command-BGM225ik.mjs";
+//#region src/adapters/oclif/commands/auth/logout.ts
+var AuthLogout = class extends BaseCommand {
+	static description = "Remove stored authentication credentials";
+	async run() {
+		const deleted = deleteCredentials();
+		if (!this.jsonEnabled()) {
+			if (deleted) this.log("Logged out successfully. Credentials removed.");
+			else this.log("No stored credentials found.");
+			if (process.env.REVOS_TOKEN) this.warn("REVOS_TOKEN environment variable is still set. Unset it to fully log out:\n\n  unset REVOS_TOKEN");
+		}
+		return { deleted };
+	}
+};
+//#endregion
+export { AuthLogout as default };

package/dist/adapters/oclif/commands/auth/status.d.mts

@@ -0,0 +1,11 @@
+import { n as AuthStatusInfo } from "../../../../types-DsQtGF-c.mjs";
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+
+//#region src/adapters/oclif/commands/auth/status.d.ts
+declare class AuthStatus extends BaseCommand<typeof AuthStatus> {
+  static description: string;
+  run(): Promise<AuthStatusInfo>;
+  private renderStatus;
+}
+//#endregion
+export { AuthStatus as default };

package/dist/adapters/oclif/commands/auth/status.mjs

@@ -0,0 +1,58 @@
+import { A as getCredentialsPath, M as loadCredentials, j as isTokenExpired } from "../../../../core-Bif-kxlo.mjs";
+import { t as BaseCommand } from "../../../../base.command-BGM225ik.mjs";
+import chalk from "chalk";
+//#region src/adapters/oclif/commands/auth/status.ts
+var AuthStatus = class extends BaseCommand {
+	static description = "Show current authentication status";
+	async run() {
+		const envToken = process.env.REVOS_TOKEN;
+		const storedCredentials = loadCredentials();
+		let status;
+		if (envToken) status = {
+			authenticated: true,
+			source: "env"
+		};
+		else if (storedCredentials) {
+			const expired = isTokenExpired(storedCredentials);
+			status = {
+				authenticated: !expired,
+				source: "stored",
+				email: storedCredentials.email,
+				userId: storedCredentials.userId,
+				expiresAt: storedCredentials.expiresAt ? new Date(storedCredentials.expiresAt) : void 0,
+				credentialsPath: getCredentialsPath(),
+				organizationId: storedCredentials.organizationId
+			};
+			if (!this.jsonEnabled() && expired) this.warn("Token has expired. Please run 'revos auth login' to re-authenticate.");
+		} else status = { authenticated: false };
+		if (!this.jsonEnabled()) this.renderStatus(status);
+		return status;
+	}
+	renderStatus(status) {
+		if (!status.authenticated) {
+			this.log(chalk.yellow("Not authenticated"));
+			this.log(chalk.gray("\nRun 'revos auth login' to authenticate."));
+			return;
+		}
+		this.log(chalk.bold("Authentication Status:\n"));
+		this.log(chalk.green("  Status: Authenticated"));
+		if (status.source === "env") this.log(chalk.gray("  Source: REVOS_TOKEN environment variable"));
+		else this.log(chalk.gray("  Source: Stored credentials"));
+		if (status.email) this.log(`  User: ${status.email}`);
+		if (status.expiresAt) {
+			const diffMs = status.expiresAt.getTime() - Date.now();
+			if (diffMs > 0) {
+				const hours = Math.floor(diffMs / 36e5);
+				const minutes = Math.floor(diffMs % 36e5 / 6e4);
+				this.log(`  Expires: in ${hours > 0 ? `${hours}h ` : ""}${minutes}m`);
+			} else this.log(chalk.yellow("  Expires: Token expired"));
+		}
+		if (status.organizationId) {
+			const orgDisplay = status.organizationName ? `${status.organizationName} (${status.organizationId})` : status.organizationId;
+			this.log(`  Organization: ${orgDisplay}`);
+		}
+		if (status.credentialsPath) this.log(chalk.gray(`\n  Credentials: ${status.credentialsPath}`));
+	}
+};
+//#endregion
+export { AuthStatus as default };

package/dist/adapters/oclif/commands/init.d.mts

@@ -0,0 +1,13 @@
+import { t as BaseCommand } from "../../../base.command-BjFWMIzL.mjs";
+import * as _$_oclif_core_interfaces0 from "@oclif/core/interfaces";
+
+//#region src/adapters/oclif/commands/init.d.ts
+declare class Init extends BaseCommand<typeof Init> {
+  static description: string;
+  static args: {
+    name: _$_oclif_core_interfaces0.Arg<string | undefined, Record<string, unknown>>;
+  };
+  run(): Promise<void>;
+}
+//#endregion
+export { Init as default };

package/dist/adapters/oclif/commands/init.mjs

@@ -0,0 +1,41 @@
+import { P as ApiError, t as InitService, y as getConfig } from "../../../core-Bif-kxlo.mjs";
+import { TEMPLATES_DIR } from "../../../templates/index.mjs";
+import { t as BaseCommand } from "../../../base.command-BGM225ik.mjs";
+import * as path from "path";
+import chalk from "chalk";
+import { Args } from "@oclif/core";
+//#region src/adapters/oclif/commands/init.ts
+var Init = class extends BaseCommand {
+	static description = "Scaffold a new RevOS data engineering project";
+	static args = { name: Args.string({
+		description: "Project name (used as directory name)",
+		required: false
+	}) };
+	async run() {
+		const { apiUrl, token } = getConfig();
+		const projectName = this.args.name ?? path.basename(process.cwd());
+		if (!projectName || projectName.includes("/") || projectName.includes("\\") || projectName === "..") this.error(`Invalid project name: "${projectName}"`, { exit: 1 });
+		this.log(`\nInitializing project ${chalk.bold(projectName)}...\n`);
+		const result = await new InitService(TEMPLATES_DIR).run({
+			projectName,
+			targetDir: process.cwd(),
+			apiUrl,
+			token
+		}).catch((err) => {
+			if (err instanceof ApiError) {
+				this.log(chalk.red(`\nAPI error: ${err.status} ${err.statusText}`));
+				this.log(chalk.red(`URL: ${err.url}`));
+				this.log(chalk.red(`Body: ${JSON.stringify(err.body, null, 2)}`));
+			}
+			const message = err instanceof Error ? err.message : String(err);
+			this.error(message, { exit: 1 });
+		});
+		this.log(chalk.green(`\nOrganization: ${result.organization.name}`));
+		this.log(chalk.green(`\nProject created at ${result.projectDir}`));
+		this.log("\nGenerated files:");
+		for (const f of result.createdFiles) this.log(`  ${f}`);
+		this.log(`\nNext step: open ${chalk.bold(result.projectDir)} in VS Code and click ${chalk.bold("Reopen in Container")}.\n`);
+	}
+};
+//#endregion
+export { Init as default };

package/dist/adapters/oclif/commands/org/current.d.mts

@@ -0,0 +1,15 @@
+import { s as OrganizationInfo } from "../../../../types-DsQtGF-c.mjs";
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+
+//#region src/adapters/oclif/commands/org/current.d.ts
+interface CurrentOrgResult {
+  organizationId: string | null;
+  organization: OrganizationInfo | null;
+  source: "env" | "credentials" | null;
+}
+declare class OrgCurrent extends BaseCommand<typeof OrgCurrent> {
+  static description: string;
+  run(): Promise<CurrentOrgResult>;
+}
+//#endregion
+export { OrgCurrent as default };

package/dist/adapters/oclif/commands/org/current.mjs

@@ -0,0 +1,45 @@
+import { M as loadCredentials, m as unwrap, p as createApiClient, y as getConfig } from "../../../../core-Bif-kxlo.mjs";
+import { t as BaseCommand } from "../../../../base.command-BGM225ik.mjs";
+//#region src/adapters/oclif/commands/org/current.ts
+var OrgCurrent = class extends BaseCommand {
+	static description = "Show currently selected organization";
+	async run() {
+		const credentials = loadCredentials();
+		const envOrgId = process.env.REVOS_ORG_ID;
+		if (envOrgId) {
+			if (!this.jsonEnabled()) this.log(`Current organization (from REVOS_ORG_ID): ${envOrgId}`);
+			return {
+				organizationId: envOrgId,
+				organization: null,
+				source: "env"
+			};
+		}
+		if (!credentials?.organizationId) {
+			if (!this.jsonEnabled()) this.warn("No organization selected. Run 'revos org switch' to select one.");
+			return {
+				organizationId: null,
+				organization: null,
+				source: null
+			};
+		}
+		try {
+			const current = unwrap(await createApiClient(getConfig()).organizations.list()).find((o) => o.id === credentials.organizationId) ?? null;
+			if (!this.jsonEnabled()) if (current) this.log(`Current organization: ${current.name} (${current.id})`);
+			else this.log(`Current organization ID: ${credentials.organizationId}`);
+			return {
+				organizationId: credentials.organizationId,
+				organization: current,
+				source: "credentials"
+			};
+		} catch {
+			if (!this.jsonEnabled()) this.log(`Current organization ID: ${credentials.organizationId}`);
+			return {
+				organizationId: credentials.organizationId,
+				organization: null,
+				source: "credentials"
+			};
+		}
+	}
+};
+//#endregion
+export { OrgCurrent as default };

package/dist/adapters/oclif/commands/org/list.d.mts

@@ -0,0 +1,14 @@
+import { a as OrgListResult } from "../../../../types-DsQtGF-c.mjs";
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+import * as _$_oclif_core_interfaces0 from "@oclif/core/interfaces";
+
+//#region src/adapters/oclif/commands/org/list.d.ts
+declare class OrgList extends BaseCommand<typeof OrgList> {
+  static description: string;
+  static flags: {
+    columns: _$_oclif_core_interfaces0.OptionFlag<string | undefined, _$_oclif_core_interfaces0.CustomOptions>;
+  };
+  run(): Promise<OrgListResult>;
+}
+//#endregion
+export { OrgList as default };

package/dist/adapters/oclif/commands/org/list.mjs

@@ -0,0 +1,34 @@
+import { m as unwrap, p as createApiClient, y as getConfig } from "../../../../core-Bif-kxlo.mjs";
+import { t as BaseCommand } from "../../../../base.command-BGM225ik.mjs";
+import chalk from "chalk";
+import { Flags } from "@oclif/core";
+//#region src/adapters/oclif/commands/org/list.ts
+const ALL_COLUMNS = ["name", "id"];
+var OrgList = class extends BaseCommand {
+	static description = "List organizations you belong to";
+	static flags = { columns: Flags.string({
+		description: `Columns to display (comma-separated). Available: ${ALL_COLUMNS.join(", ")}`,
+		helpValue: "name,id"
+	}) };
+	async run() {
+		const { flags } = this;
+		const config = getConfig();
+		const organizations = unwrap(await createApiClient(config).organizations.list());
+		const result = {
+			organizations,
+			currentOrgId: config.organizationId
+		};
+		if (!this.jsonEnabled()) if (organizations.length === 0) this.warn("You don't belong to any organizations.");
+		else {
+			const cols = flags.columns?.split(",").map((c) => c.trim()).filter((c) => ALL_COLUMNS.includes(c)) ?? [...ALL_COLUMNS];
+			const rows = organizations.map((org) => ({
+				name: org.id === config.organizationId ? `${org.name} ${chalk.green("✓")}` : org.name,
+				id: org.id
+			}));
+			this.table(rows, { columns: cols.map((c) => ({ key: c })) });
+		}
+		return result;
+	}
+};
+//#endregion
+export { OrgList as default };

package/dist/adapters/oclif/commands/org/switch.d.mts

@@ -0,0 +1,13 @@
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+import * as _$_oclif_core_interfaces0 from "@oclif/core/interfaces";
+
+//#region src/adapters/oclif/commands/org/switch.d.ts
+declare class OrgSwitch extends BaseCommand<typeof OrgSwitch> {
+  static description: string;
+  static args: {
+    id: _$_oclif_core_interfaces0.Arg<string | undefined, Record<string, unknown>>;
+  };
+  run(): Promise<void>;
+}
+//#endregion
+export { OrgSwitch as default };

package/dist/adapters/oclif/commands/org/switch.mjs

@@ -0,0 +1,33 @@
+import { M as loadCredentials, N as saveCredentials, m as unwrap, n as selectOrganization, p as createApiClient, y as getConfig } from "../../../../core-Bif-kxlo.mjs";
+import { t as BaseCommand } from "../../../../base.command-BGM225ik.mjs";
+import chalk from "chalk";
+import { Args } from "@oclif/core";
+//#region src/adapters/oclif/commands/org/switch.ts
+var OrgSwitch = class extends BaseCommand {
+	static description = "Switch to a different organization";
+	static args = { id: Args.string({
+		description: "Organization ID",
+		required: false
+	}) };
+	async run() {
+		const { args } = this;
+		const organizations = unwrap(await createApiClient(getConfig()).organizations.list());
+		if (organizations.length === 0) this.error("You don't belong to any organizations.", { exit: 1 });
+		let selected;
+		if (args.id) {
+			selected = organizations.find((o) => o.id === args.id);
+			if (!selected) {
+				const available = organizations.map((o) => `  ${o.name}  (${o.id})`).join("\n");
+				this.error(`Organization "${args.id}" not found.\n\nAvailable organizations:\n${available}`, { exit: 1 });
+			}
+		} else selected = await selectOrganization(organizations);
+		const credentials = loadCredentials();
+		if (credentials) saveCredentials({
+			...credentials,
+			organizationId: selected.id
+		});
+		this.log(chalk.green(`Switched to organization: ${selected.name}`));
+	}
+};
+//#endregion
+export { OrgSwitch as default };

package/dist/adapters/oclif/commands/overlays/diff.d.mts

@@ -0,0 +1,19 @@
+import { o as DiffResult } from "../../../../types-DZssnweO.mjs";
+import { t as BaseCommand } from "../../../../base.command-BjFWMIzL.mjs";
+import * as _$_oclif_core_interfaces0 from "@oclif/core/interfaces";
+
+//#region src/adapters/oclif/commands/overlays/diff.d.ts
+declare class OverlaysDiff extends BaseCommand<typeof OverlaysDiff> {
+  static description: string;
+  static flags: {
+    dir: _$_oclif_core_interfaces0.OptionFlag<string, _$_oclif_core_interfaces0.CustomOptions>;
+  };
+  static args: {
+    files: _$_oclif_core_interfaces0.Arg<string[] | undefined, Record<string, unknown>>;
+  };
+  run(): Promise<DiffResult>;
+  private renderEntry;
+  private renderDataDiff;
+}
+//#endregion
+export { OverlaysDiff as default };