@simonfestl/husky-cli 1.10.0 → 1.13.0

package/README.md

@@ -143,6 +143,76 @@ husky e2e list --task <id>               # List artifacts
 husky e2e clean --older-than 7           # Clean old artifacts
 ```
 
+### PR Management (PR Agent)
+
+```bash
+husky pr list                          # List open PRs
+husky pr get <pr-number>               # Get PR details
+husky pr review <pr-number>            # Start review
+husky pr approve <pr-number>           # Approve PR
+husky pr request-changes <pr-number> --comment "..."
+husky pr merge <pr-number>             # Merge PR
+husky pr close <pr-number>             # Close PR
+```
+
+### Infrastructure (DevOps)
+
+```bash
+husky infra status                     # Overall infra status
+husky infra vms                        # List all VMs
+husky infra services                   # Cloud Run services
+husky infra logs <service>             # Service logs
+husky infra metrics                    # Resource metrics
+```
+
+### YouTube Summarization
+
+```bash
+husky youtube <url>                    # Summarize video with Gemini AI
+husky youtube <url> --remember         # Also store in Second Brain
+husky youtube <url> --json             # JSON output
+```
+
+### Image Generation
+
+```bash
+husky image "a futuristic city"        # Generate image with Imagen 3
+husky image "..." --output ./image.png # Save to file
+husky image "..." --aspect 16:9        # Aspect ratio
+```
+
+### Mermaid Diagrams
+
+```bash
+husky mermaid validate <file>          # Validate Mermaid syntax
+husky mermaid validate --stdin         # Validate from stdin
+```
+
+### Service Accounts
+
+```bash
+husky sa list                          # List service accounts
+husky sa create <name> --role worker   # Create service account
+husky sa get <id>                      # Get details
+husky sa delete <id>                   # Delete service account
+```
+
+### Agent Messaging
+
+```bash
+husky agent-msg send <to> "message"    # Send to another agent
+husky agent-msg inbox                  # Check inbox
+husky agent-msg read <id>              # Read message
+```
+
+### Preview Deployments
+
+```bash
+husky preview list                     # List PR previews
+husky preview get <pr-number>          # Get preview URL
+husky preview logs <pr-number>         # Preview logs
+```
+
 ### Business Strategy
 
 ```bash
@@ -249,6 +319,41 @@ husky config list
 husky config test
 ```
 
+### Authentication (Session Tokens)
+
+Session tokens provide short-lived JWT authentication for agents. They are created using `HUSKY_API_KEY` and auto-refresh when expired.
+
+```bash
+# Login (creates 1-hour session token)
+husky auth login --agent supervisor
+husky auth login --agent husky-worker-1
+
+# Check session status
+husky auth session
+husky auth session --json
+
+# Refresh token manually
+husky auth refresh
+husky auth refresh --agent supervisor
+
+# Logout (clear session)
+husky auth logout
+```
+
+**VM Startup Pattern:**
+```bash
+#!/bin/bash
+VM_NAME=$(hostname)
+husky auth login --agent "$VM_NAME"
+# All subsequent commands use Bearer token
+```
+
+**How it works:**
+1. `HUSKY_API_KEY` is used once to create a session token
+2. All subsequent API calls use `Authorization: Bearer <token>`
+3. Token auto-refreshes when expired or within 5 minutes of expiry
+4. Falls back to `x-api-key` if refresh fails
+
 ### Help & Documentation
 
 ```bash
@@ -328,6 +433,27 @@ husky --version
 
 ## Changelog
 
+### v1.12.0 (2026-01-12) - Session Token Authentication
+
+**New Features:**
+- `husky auth login --agent <name>` - Create session token from HUSKY_API_KEY
+- `husky auth logout` - Clear session token
+- `husky auth session` - Show session status (agent, role, expiry)
+- `husky auth refresh` - Manually refresh token
+
+**Improvements:**
+- All API calls now use Bearer token authentication (auto-refresh)
+- Token auto-refreshes when expired or within 5 minutes of expiry
+- Falls back to x-api-key for backwards compatibility
+- JWT_SECRET now required in production (fail-fast)
+
+**Documentation:**
+- Added missing command sections: pr, infra, youtube, image, mermaid, sa, agent-msg, preview
+- Updated architecture docs with session token flow
+
+**Code Quality:**
+- Removed `as any` type suppression in sop.ts
+
 ### v1.7.0 (2026-01-11) - E2E Agent Production Ready
 
 **New Features:**

package/dist/commands/auth.js

@@ -1,5 +1,5 @@
 import { Command } from "commander";
-import { getConfig } from "./config.js";
+import { getConfig, setSessionConfig, clearSessionConfig, getSessionConfig } from "./config.js";
 import { getPermissions, clearPermissionsCache, getCacheStatus, hasPermission, canAccessKnowledgeBase } from "../lib/permissions-cache.js";
 const API_KEY_ROLES = [
     "admin", "supervisor", "worker", "reviewer", "support",
@@ -260,3 +260,178 @@ authCommand
         process.exit(1);
     }
 });
+authCommand
+    .command("login")
+    .description("Create a session token for this agent")
+    .requiredOption("--agent <name>", "Agent name (must be registered in Firestore)")
+    .option("--json", "Output as JSON")
+    .action(async (options) => {
+    try {
+        const config = getConfig();
+        if (!config.apiUrl || !config.apiKey) {
+            console.error("API not configured. Run: husky config set api-url <url> && husky config set api-key <key>");
+            process.exit(1);
+        }
+        const url = new URL("/api/auth/session", config.apiUrl);
+        const res = await fetch(url.toString(), {
+            method: "POST",
+            headers: {
+                "x-api-key": config.apiKey,
+                "Content-Type": "application/json",
+            },
+            body: JSON.stringify({ agent: options.agent }),
+        });
+        if (!res.ok) {
+            const error = await res.json().catch(() => ({ error: res.statusText }));
+            if (res.status === 404) {
+                console.error(`Agent '${options.agent}' not found. Register the agent first.`);
+            }
+            else {
+                console.error(`Login failed: ${error.message || error.error || `HTTP ${res.status}`}`);
+            }
+            process.exit(1);
+        }
+        const session = await res.json();
+        setSessionConfig(session);
+        if (options.json) {
+            console.log(JSON.stringify({
+                success: true,
+                agent: session.agent,
+                role: session.role,
+                expiresAt: session.expiresAt,
+            }, null, 2));
+            return;
+        }
+        const expiresAt = new Date(session.expiresAt);
+        console.log("\n✅ Session created");
+        console.log("─".repeat(40));
+        console.log(`Agent:    ${session.agent}`);
+        console.log(`Role:     ${session.role}`);
+        console.log(`Expires:  ${expiresAt.toLocaleString()}`);
+        console.log("");
+        console.log("All API calls will now use this session token.");
+    }
+    catch (error) {
+        console.error(`Error: ${error instanceof Error ? error.message : "Unknown error"}`);
+        process.exit(1);
+    }
+});
+authCommand
+    .command("logout")
+    .description("Clear the current session token")
+    .option("--json", "Output as JSON")
+    .action(async (options) => {
+    const session = getSessionConfig();
+    if (!session) {
+        if (options.json) {
+            console.log(JSON.stringify({ success: false, message: "No active session" }));
+        }
+        else {
+            console.log("No active session to clear.");
+        }
+        return;
+    }
+    clearSessionConfig();
+    if (options.json) {
+        console.log(JSON.stringify({ success: true, agent: session.agent }));
+        return;
+    }
+    console.log(`✅ Session cleared for agent '${session.agent}'`);
+});
+authCommand
+    .command("session")
+    .description("Show current session status")
+    .option("--json", "Output as JSON")
+    .action(async (options) => {
+    const session = getSessionConfig();
+    if (!session || !session.token) {
+        if (options.json) {
+            console.log(JSON.stringify({ active: false }));
+        }
+        else {
+            console.log("No active session. Run: husky auth login --agent <name>");
+        }
+        return;
+    }
+    const expiresAt = session.expiresAt ? new Date(session.expiresAt) : null;
+    const now = new Date();
+    const isExpired = expiresAt ? expiresAt < now : true;
+    const expiresInMs = expiresAt ? expiresAt.getTime() - now.getTime() : 0;
+    const expiresInMinutes = Math.max(0, Math.floor(expiresInMs / 60000));
+    if (options.json) {
+        console.log(JSON.stringify({
+            active: !isExpired,
+            agent: session.agent,
+            role: session.role,
+            expiresAt: session.expiresAt,
+            expired: isExpired,
+            expiresInMinutes,
+        }, null, 2));
+        return;
+    }
+    console.log("\n🔐 Session Status");
+    console.log("─".repeat(40));
+    console.log(`Agent:    ${session.agent || "(unknown)"}`);
+    console.log(`Role:     ${session.role || "(unknown)"}`);
+    if (isExpired) {
+        console.log(`Status:   🔴 EXPIRED`);
+        console.log(`Expired:  ${expiresAt?.toLocaleString() || "(unknown)"}`);
+        console.log("");
+        console.log("Run: husky auth refresh --agent <name>");
+    }
+    else {
+        console.log(`Status:   🟢 ACTIVE`);
+        console.log(`Expires:  ${expiresAt?.toLocaleString()} (${expiresInMinutes} minutes)`);
+    }
+});
+authCommand
+    .command("refresh")
+    .description("Refresh the session token")
+    .option("--agent <name>", "Agent name (uses current session agent if not specified)")
+    .option("--json", "Output as JSON")
+    .action(async (options) => {
+    try {
+        const config = getConfig();
+        if (!config.apiUrl || !config.apiKey) {
+            console.error("API not configured. Run: husky config set api-url <url> && husky config set api-key <key>");
+            process.exit(1);
+        }
+        const currentSession = getSessionConfig();
+        const agentName = options.agent || currentSession?.agent;
+        if (!agentName) {
+            console.error("No agent specified and no active session. Use: husky auth refresh --agent <name>");
+            process.exit(1);
+        }
+        const url = new URL("/api/auth/session", config.apiUrl);
+        const res = await fetch(url.toString(), {
+            method: "POST",
+            headers: {
+                "x-api-key": config.apiKey,
+                "Content-Type": "application/json",
+            },
+            body: JSON.stringify({ agent: agentName }),
+        });
+        if (!res.ok) {
+            const error = await res.json().catch(() => ({ error: res.statusText }));
+            console.error(`Refresh failed: ${error.message || error.error || `HTTP ${res.status}`}`);
+            process.exit(1);
+        }
+        const session = await res.json();
+        setSessionConfig(session);
+        if (options.json) {
+            console.log(JSON.stringify({
+                success: true,
+                agent: session.agent,
+                role: session.role,
+                expiresAt: session.expiresAt,
+            }, null, 2));
+            return;
+        }
+        const expiresAt = new Date(session.expiresAt);
+        console.log(`✅ Session refreshed for '${session.agent}' (expires: ${expiresAt.toLocaleString()})`);
+    }
+    catch (error) {
+        console.error(`Error: ${error instanceof Error ? error.message : "Unknown error"}`);
+        process.exit(1);
+    }
+});

package/dist/commands/biz/emove.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Husky Biz Emove Command
+ *
+ * Manages emovedistribution.com (B2B e-mobility parts supplier) via web scraping
+ * WooCommerce platform integration (Spanish locale)
+ * - Parts search and catalog browsing
+ * - Order history and details
+ * - Invoice download
+ */
+import { Command } from "commander";
+export declare const emoveCommand: Command;
+export default emoveCommand;

package/dist/commands/biz/emove.js

@@ -0,0 +1,249 @@
+/**
+ * Husky Biz Emove Command
+ *
+ * Manages emovedistribution.com (B2B e-mobility parts supplier) via web scraping
+ * WooCommerce platform integration (Spanish locale)
+ * - Parts search and catalog browsing
+ * - Order history and details
+ * - Invoice download
+ */
+import { Command } from "commander";
+import { EmovePlaywrightClient } from "../../lib/biz/emove-playwright.js";
+import { getConfig, saveConfig } from "../config.js";
+import * as path from "path";
+import { homedir } from "os";
+export const emoveCommand = new Command("emove")
+    .description("Manage emovedistribution.com (e-mobility parts supplier - WooCommerce/ES)");
+// ============================================================================
+// husky biz emove login
+// ============================================================================
+emoveCommand
+    .command("login")
+    .description("Setup Emove credentials")
+    .requiredOption("-u, --username <username>", "Login username or email")
+    .requiredOption("-p, --password <password>", "Login password")
+    .option("--base-url <url>", "Base URL", "https://emovedistribution.com")
+    .action(async (options) => {
+    try {
+        // Save to config
+        const config = getConfig();
+        config.emoveUsername = options.username;
+        config.emovePassword = options.password;
+        if (options.baseUrl) {
+            config.emoveBaseUrl = options.baseUrl;
+        }
+        saveConfig(config);
+        console.log("Testing authentication...");
+        // Test login
+        const client = EmovePlaywrightClient.fromConfig();
+        try {
+            const result = await client.login();
+            if (result.success) {
+                console.log("✓ Successfully authenticated with emovedistribution.com");
+                console.log("\nYou can now use:");
+                console.log("  husky biz emove orders list");
+                console.log("  husky biz emove orders get <id>");
+                console.log("  husky biz emove invoice <order-id>");
+                console.log("  husky biz emove products <query>");
+            }
+            else {
+                console.error("✗ Login failed:", result.error);
+                process.exit(1);
+            }
+        }
+        finally {
+            await client.close();
+        }
+    }
+    catch (error) {
+        console.error("✗ Login failed:", error.message);
+        process.exit(1);
+    }
+});
+// ============================================================================
+// husky biz emove orders
+// ============================================================================
+const ordersSubcommand = new Command("orders")
+    .description("View supplier orders");
+ordersSubcommand
+    .command("list")
+    .description("List all orders from Emove")
+    .option("--json", "Output as JSON")
+    .action(async (options) => {
+    const client = EmovePlaywrightClient.fromConfig();
+    try {
+        const orders = await client.listOrders();
+        if (options.json) {
+            console.log(JSON.stringify(orders, null, 2));
+            return;
+        }
+        if (orders.length === 0) {
+            console.log("\n  No orders found.\n");
+            return;
+        }
+        console.log(`\n  📦 Emove Orders (${orders.length} found)\n`);
+        // Header
+        console.log(`  ${"Order #".padEnd(15)} │ ` +
+            `${"Date".padEnd(20)} │ ` +
+            `${"Status".padEnd(15)} │ ` +
+            `${"Total".padEnd(12)}`);
+        console.log("  " + "─".repeat(75));
+        // Orders
+        for (const order of orders) {
+            console.log(`  ${order.orderNumber.padEnd(15)} │ ` +
+                `${order.date.padEnd(20)} │ ` +
+                `${order.status.padEnd(15)} │ ` +
+                `${order.total || 'N/A'}`);
+        }
+        console.log("");
+    }
+    catch (error) {
+        console.error("Error:", error.message);
+        process.exit(1);
+    }
+    finally {
+        await client.close();
+    }
+});
+ordersSubcommand
+    .command("get <id>")
+    .description("Get order details")
+    .option("--json", "Output as JSON")
+    .action(async (id, options) => {
+    const client = EmovePlaywrightClient.fromConfig();
+    try {
+        const order = await client.getOrder(id);
+        if (options.json) {
+            console.log(JSON.stringify(order, null, 2));
+            return;
+        }
+        console.log(`\n  Order ${order.orderNumber}`);
+        console.log("  " + "─".repeat(60));
+        console.log(`  Status:   ${order.status}`);
+        console.log(`  Date:     ${order.date}`);
+        console.log(`  Total:    ${order.total || 'N/A'}`);
+        if (order.trackingNumber) {
+            console.log(`  Tracking: ${order.trackingNumber}`);
+        }
+        if (order.paymentMethod) {
+            console.log(`  Payment:  ${order.paymentMethod}`);
+        }
+        if (order.customer && order.customer.name) {
+            console.log(`\n  Shipping To:`);
+            console.log(`    ${order.customer.name}`);
+            if (order.customer.company) {
+                console.log(`    ${order.customer.company}`);
+            }
+            if (order.customer.address) {
+                console.log(`    ${order.customer.address}`);
+            }
+            if (order.customer.postcode && order.customer.city) {
+                console.log(`    ${order.customer.postcode} ${order.customer.city}`);
+            }
+            if (order.customer.email) {
+                console.log(`    ${order.customer.email}`);
+            }
+        }
+        if (order.items.length > 0) {
+            console.log(`\n  Items:`);
+            for (const item of order.items) {
+                const sku = item.sku ? `[${item.sku}]`.padEnd(18) : "".padEnd(18);
+                const name = item.name.slice(0, 35).padEnd(35);
+                console.log(`    ${item.quantity}x ${sku} ${name} (${item.total})`);
+            }
+        }
+        if (order.subtotal || order.shipping || order.tax) {
+            console.log(`\n  Totals:`);
+            if (order.subtotal)
+                console.log(`    Subtotal:  ${order.subtotal}`);
+            if (order.shipping)
+                console.log(`    Shipping:  ${order.shipping}`);
+            if (order.tax)
+                console.log(`    Tax:       ${order.tax}`);
+            if (order.total)
+                console.log(`    Total:     ${order.total}`);
+        }
+        if (order.invoiceUrl) {
+            console.log(`\n  📄 Invoice available`);
+            console.log(`     Download with: husky biz emove invoice ${order.id}`);
+        }
+        console.log("");
+    }
+    catch (error) {
+        console.error("Error:", error.message);
+        process.exit(1);
+    }
+    finally {
+        await client.close();
+    }
+});
+emoveCommand.addCommand(ordersSubcommand);
+// ============================================================================
+// husky biz emove invoice
+// ============================================================================
+emoveCommand
+    .command("invoice <order-id>")
+    .description("Download invoice PDF for order")
+    .option("-o, --output <path>", "Save path (default: ~/Downloads/emove-invoice-{id}.pdf)")
+    .action(async (orderId, options) => {
+    const client = EmovePlaywrightClient.fromConfig();
+    try {
+        const savePath = options.output ||
+            path.join(homedir(), 'Downloads', `emove-invoice-${orderId}.pdf`);
+        console.log(`Downloading invoice for order #${orderId}...`);
+        const success = await client.downloadInvoice(orderId, savePath);
+        if (success) {
+            console.log(`✓ Invoice saved to: ${savePath}`);
+        }
+        else {
+            console.error("✗ Invoice not available for this order");
+            process.exit(1);
+        }
+    }
+    catch (error) {
+        console.error("Error:", error.message);
+        process.exit(1);
+    }
+    finally {
+        await client.close();
+    }
+});
+// ============================================================================
+// husky biz emove products
+// ============================================================================
+emoveCommand
+    .command("products <query>")
+    .description("Search for parts in catalog")
+    .option("--json", "Output as JSON")
+    .action(async (query, options) => {
+    const client = EmovePlaywrightClient.fromConfig();
+    try {
+        const products = await client.searchProducts(query);
+        if (options.json) {
+            console.log(JSON.stringify(products, null, 2));
+            return;
+        }
+        if (products.length === 0) {
+            console.log(`\n  No products found for: "${query}"\n`);
+            return;
+        }
+        console.log(`\n  🔍 Search results for: "${query}" (${products.length} found)\n`);
+        for (const product of products) {
+            const sku = product.sku ? `[${product.sku}]` : '';
+            const price = product.price || 'Price hidden (login required)';
+            const stock = product.stockStatus || '';
+            console.log(`  ${product.name}`);
+            console.log(`    ${sku} ${price}${stock ? ' - ' + stock : ''}`);
+            console.log(`    ${product.url}`);
+            console.log("");
+        }
+    }
+    catch (error) {
+        console.error("Error:", error.message);
+        process.exit(1);
+    }
+    finally {
+        await client.close();
+    }
+});
+export default emoveCommand;

package/dist/commands/biz/skuterzone.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Husky Biz Skuterzone Command
+ *
+ * Manages skuterzonepro.com (B2B e-mobility parts supplier) via web scraping
+ * WooCommerce platform integration
+ * - Parts search and catalog browsing
+ * - Order history and details
+ * - Invoice download
+ */
+import { Command } from "commander";
+export declare const skuterzoneCommand: Command;
+export default skuterzoneCommand;