@specific.dev/cli 0.1.69 → 0.1.71

package/dist/cli.js

@@ -183842,6 +183842,18 @@ var RefreshTokenExpiredError = class extends Error {
 
 // src/lib/auth/workos.ts
 var WORKOS_CLIENT_ID = "client_01K4HSP8CE0R73V7Z67WE9CC86";
+function getTokenExpiresAt(accessToken) {
+  try {
+    const payload = accessToken.split(".")[1];
+    const decoded = JSON.parse(Buffer.from(payload, "base64url").toString());
+    if (typeof decoded.exp === "number") {
+      return decoded.exp * 1e3;
+    }
+    return null;
+  } catch {
+    return null;
+  }
+}
 async function initiateDeviceAuthorization() {
   const response = await fetch(
     "https://api.workos.com/user_management/authorize/device",
@@ -183906,6 +183918,157 @@ import React from "react";
 import { render, Box, Text } from "ink";
 import Spinner from "ink-spinner";
 
+// src/lib/auth/login-flow.ts
+function runLoginFlow(options2) {
+  const { setState, isReauthentication } = options2;
+  let cancelled = false;
+  async function run() {
+    try {
+      setState({ phase: "initiating" });
+      writeLog("auth", "Starting login flow");
+      if (isReauthentication) {
+        clearUserCredentials();
+      }
+      writeLog("auth", "Initiating device authorization with WorkOS");
+      const deviceAuth = await initiateDeviceAuthorization();
+      writeLog(
+        "auth",
+        `Device authorization received: user_code=${deviceAuth.user_code}`
+      );
+      if (cancelled) return;
+      setState({
+        phase: "waiting-for-browser",
+        userCode: deviceAuth.user_code,
+        verificationUri: deviceAuth.verification_uri_complete
+      });
+      const { default: open3 } = await Promise.resolve().then(() => (init_open(), open_exports));
+      await open3(deviceAuth.verification_uri_complete);
+      const token = await pollUntilToken(deviceAuth, () => cancelled);
+      if (cancelled || !token) return;
+      writeLog("auth", "Fetching user info and saving credentials...");
+      await saveCredentialsFromToken(token);
+      if (cancelled) return;
+      writeLog("auth", "Credentials written successfully");
+      setState({ phase: "success", email: token.user.email });
+      writeLog("auth", "Login flow completed successfully");
+    } catch (err) {
+      if (cancelled) return;
+      const message = err instanceof Error ? err.message : String(err);
+      writeLog("auth", `Login error: ${message}`);
+      setState({ phase: "error", message });
+    }
+  }
+  run();
+  return {
+    cancel: () => {
+      cancelled = true;
+    }
+  };
+}
+async function pollUntilToken(deviceAuth, isCancelled) {
+  let interval = deviceAuth.interval * 1e3;
+  const expiresAt = Date.now() + deviceAuth.expires_in * 1e3;
+  while (!isCancelled() && Date.now() < expiresAt) {
+    await sleep(interval);
+    if (isCancelled()) return null;
+    writeLog(
+      "auth",
+      `Polling for token (timeRemaining=${Math.round((expiresAt - Date.now()) / 1e3)}s)`
+    );
+    const response = await pollForToken(deviceAuth.device_code);
+    writeLog(
+      "auth",
+      `Poll response: ${JSON.stringify(response).substring(0, 200)}`
+    );
+    if (!("error" in response)) {
+      writeLog("auth", "Token received successfully from WorkOS");
+      return response;
+    }
+    if (response.error === "slow_down") {
+      interval += 1e3;
+      writeLog("auth", `Slowing down, new interval: ${interval}ms`);
+    } else if (response.error !== "authorization_pending") {
+      throw new Error(`Authentication failed: ${response.error}`);
+    }
+  }
+  if (!isCancelled()) {
+    throw new Error("Authentication timed out. Please try again.");
+  }
+  return null;
+}
+function sleep(ms) {
+  return new Promise((resolve10) => setTimeout(resolve10, ms));
+}
+
+// src/lib/auth/login.tsx
+function LoginUI({
+  state,
+  isReauthentication
+}) {
+  if (state.phase === "error") {
+    return /* @__PURE__ */ React.createElement(Text, { color: "red" }, "Error: ", state.message);
+  }
+  if (state.phase === "success") {
+    return /* @__PURE__ */ React.createElement(Text, { color: "green" }, isReauthentication ? "Re-authenticated" : "Logged in", " as ", state.email);
+  }
+  return /* @__PURE__ */ React.createElement(Box, { flexDirection: "column", gap: 1 }, isReauthentication && /* @__PURE__ */ React.createElement(Text, { color: "yellow" }, "Session expired. Please log in again."), /* @__PURE__ */ React.createElement(Text, { bold: true }, "Log in to Specific"), state.phase === "waiting-for-browser" ? /* @__PURE__ */ React.createElement(React.Fragment, null, /* @__PURE__ */ React.createElement(Box, { flexDirection: "column" }, /* @__PURE__ */ React.createElement(Text, null, "Your authentication code:", " ", /* @__PURE__ */ React.createElement(Text, { color: "cyan", bold: true }, state.userCode))), /* @__PURE__ */ React.createElement(Box, null, /* @__PURE__ */ React.createElement(Text, { color: "blue" }, /* @__PURE__ */ React.createElement(Spinner, { type: "dots" })), /* @__PURE__ */ React.createElement(Text, null, " Waiting for authentication in browser...")), /* @__PURE__ */ React.createElement(Text, { dimColor: true }, "If the browser didn't open, visit: ", state.verificationUri)) : /* @__PURE__ */ React.createElement(Box, null, /* @__PURE__ */ React.createElement(Text, { color: "blue" }, /* @__PURE__ */ React.createElement(Spinner, { type: "dots" })), /* @__PURE__ */ React.createElement(Text, null, " Initiating login...")));
+}
+function performLogin(options2 = {}) {
+  return new Promise((resolve10) => {
+    let currentState = { phase: "initiating" };
+    let flowHandle;
+    const instance = render(
+      /* @__PURE__ */ React.createElement(
+        LoginUI,
+        {
+          state: currentState,
+          isReauthentication: options2.isReauthentication
+        }
+      )
+    );
+    const cleanup = () => {
+      flowHandle?.cancel();
+      instance.unmount();
+    };
+    const handleExit = () => {
+      cleanup();
+      process.exit(0);
+    };
+    process.on("SIGINT", handleExit);
+    process.on("SIGTERM", handleExit);
+    flowHandle = runLoginFlow({
+      isReauthentication: options2.isReauthentication,
+      setState: (newState) => {
+        currentState = newState;
+        instance.rerender(
+          /* @__PURE__ */ React.createElement(
+            LoginUI,
+            {
+              state: currentState,
+              isReauthentication: options2.isReauthentication
+            }
+          )
+        );
+        if (newState.phase === "success") {
+          setTimeout(() => {
+            process.off("SIGINT", handleExit);
+            process.off("SIGTERM", handleExit);
+            instance.unmount();
+            resolve10({ success: true, userEmail: newState.email });
+          }, 100);
+        } else if (newState.phase === "error") {
+          setTimeout(() => {
+            process.off("SIGINT", handleExit);
+            process.off("SIGTERM", handleExit);
+            instance.unmount();
+            resolve10({ success: false, error: new Error(newState.message) });
+          }, 100);
+        }
+      }
+    });
+  });
+}
+
 // src/lib/api/client.ts
 var ApiClient = class {
   baseUrl;
@@ -184217,166 +184380,6 @@ var ApiClient = class {
   }
 };
 
-// src/lib/auth/login-flow.ts
-function runLoginFlow(options2) {
-  const { setState, isReauthentication } = options2;
-  let cancelled = false;
-  async function run() {
-    try {
-      setState({ phase: "initiating" });
-      writeLog("auth", "Starting login flow");
-      if (isReauthentication) {
-        clearUserCredentials();
-      }
-      writeLog("auth", "Initiating device authorization with WorkOS");
-      const deviceAuth = await initiateDeviceAuthorization();
-      writeLog(
-        "auth",
-        `Device authorization received: user_code=${deviceAuth.user_code}`
-      );
-      if (cancelled) return;
-      setState({
-        phase: "waiting-for-browser",
-        userCode: deviceAuth.user_code,
-        verificationUri: deviceAuth.verification_uri_complete
-      });
-      const { default: open3 } = await Promise.resolve().then(() => (init_open(), open_exports));
-      await open3(deviceAuth.verification_uri_complete);
-      const token = await pollUntilToken(deviceAuth, () => cancelled);
-      if (cancelled || !token) return;
-      writeLog("auth", "Fetching user info from platform API...");
-      const client2 = new ApiClient({ token: token.access_token });
-      const user = await client2.getMe();
-      writeLog("auth", `User info received: id=${user.id}`);
-      if (cancelled) return;
-      writeLog("auth", "Writing credentials to disk...");
-      writeUserCredentials({
-        accessToken: token.access_token,
-        refreshToken: token.refresh_token,
-        expiresAt: Date.now() + token.expires_in * 1e3,
-        userId: user.id
-      });
-      writeLog("auth", "Credentials written successfully");
-      setState({ phase: "success", email: token.user.email });
-      writeLog("auth", "Login flow completed successfully");
-    } catch (err) {
-      if (cancelled) return;
-      const message = err instanceof Error ? err.message : String(err);
-      writeLog("auth", `Login error: ${message}`);
-      setState({ phase: "error", message });
-    }
-  }
-  run();
-  return {
-    cancel: () => {
-      cancelled = true;
-    }
-  };
-}
-async function pollUntilToken(deviceAuth, isCancelled) {
-  let interval = deviceAuth.interval * 1e3;
-  const expiresAt = Date.now() + deviceAuth.expires_in * 1e3;
-  while (!isCancelled() && Date.now() < expiresAt) {
-    await sleep(interval);
-    if (isCancelled()) return null;
-    writeLog(
-      "auth",
-      `Polling for token (timeRemaining=${Math.round((expiresAt - Date.now()) / 1e3)}s)`
-    );
-    const response = await pollForToken(deviceAuth.device_code);
-    writeLog(
-      "auth",
-      `Poll response: ${JSON.stringify(response).substring(0, 200)}`
-    );
-    if (!("error" in response)) {
-      writeLog("auth", "Token received successfully from WorkOS");
-      return response;
-    }
-    if (response.error === "slow_down") {
-      interval += 1e3;
-      writeLog("auth", `Slowing down, new interval: ${interval}ms`);
-    } else if (response.error !== "authorization_pending") {
-      throw new Error(`Authentication failed: ${response.error}`);
-    }
-  }
-  if (!isCancelled()) {
-    throw new Error("Authentication timed out. Please try again.");
-  }
-  return null;
-}
-function sleep(ms) {
-  return new Promise((resolve10) => setTimeout(resolve10, ms));
-}
-
-// src/lib/auth/login.tsx
-function LoginUI({
-  state,
-  isReauthentication
-}) {
-  if (state.phase === "error") {
-    return /* @__PURE__ */ React.createElement(Text, { color: "red" }, "Error: ", state.message);
-  }
-  if (state.phase === "success") {
-    return /* @__PURE__ */ React.createElement(Text, { color: "green" }, isReauthentication ? "Re-authenticated" : "Logged in", " as ", state.email);
-  }
-  return /* @__PURE__ */ React.createElement(Box, { flexDirection: "column", gap: 1 }, isReauthentication && /* @__PURE__ */ React.createElement(Text, { color: "yellow" }, "Session expired. Please log in again."), /* @__PURE__ */ React.createElement(Text, { bold: true }, "Log in to Specific"), state.phase === "waiting-for-browser" ? /* @__PURE__ */ React.createElement(React.Fragment, null, /* @__PURE__ */ React.createElement(Box, { flexDirection: "column" }, /* @__PURE__ */ React.createElement(Text, null, "Your authentication code:", " ", /* @__PURE__ */ React.createElement(Text, { color: "cyan", bold: true }, state.userCode))), /* @__PURE__ */ React.createElement(Box, null, /* @__PURE__ */ React.createElement(Text, { color: "blue" }, /* @__PURE__ */ React.createElement(Spinner, { type: "dots" })), /* @__PURE__ */ React.createElement(Text, null, " Waiting for authentication in browser...")), /* @__PURE__ */ React.createElement(Text, { dimColor: true }, "If the browser didn't open, visit: ", state.verificationUri)) : /* @__PURE__ */ React.createElement(Box, null, /* @__PURE__ */ React.createElement(Text, { color: "blue" }, /* @__PURE__ */ React.createElement(Spinner, { type: "dots" })), /* @__PURE__ */ React.createElement(Text, null, " Initiating login...")));
-}
-function performLogin(options2 = {}) {
-  return new Promise((resolve10) => {
-    let currentState = { phase: "initiating" };
-    let flowHandle;
-    const instance = render(
-      /* @__PURE__ */ React.createElement(
-        LoginUI,
-        {
-          state: currentState,
-          isReauthentication: options2.isReauthentication
-        }
-      )
-    );
-    const cleanup = () => {
-      flowHandle?.cancel();
-      instance.unmount();
-    };
-    const handleExit = () => {
-      cleanup();
-      process.exit(0);
-    };
-    process.on("SIGINT", handleExit);
-    process.on("SIGTERM", handleExit);
-    flowHandle = runLoginFlow({
-      isReauthentication: options2.isReauthentication,
-      setState: (newState) => {
-        currentState = newState;
-        instance.rerender(
-          /* @__PURE__ */ React.createElement(
-            LoginUI,
-            {
-              state: currentState,
-              isReauthentication: options2.isReauthentication
-            }
-          )
-        );
-        if (newState.phase === "success") {
-          setTimeout(() => {
-            process.off("SIGINT", handleExit);
-            process.off("SIGTERM", handleExit);
-            instance.unmount();
-            resolve10({ success: true, userEmail: newState.email });
-          }, 100);
-        } else if (newState.phase === "error") {
-          setTimeout(() => {
-            process.off("SIGINT", handleExit);
-            process.off("SIGTERM", handleExit);
-            instance.unmount();
-            resolve10({ success: false, error: new Error(newState.message) });
-          }, 100);
-        }
-      }
-    });
-  });
-}
-
 // src/lib/auth/credentials.ts
 function getUserCredentialsDir() {
   return path6.join(os5.homedir(), ".specific");
@@ -184419,11 +184422,33 @@ function getUserId() {
   const credentials = readUserCredentials();
   return credentials?.userId ?? null;
 }
+async function saveCredentialsFromToken(token) {
+  const client2 = new ApiClient({ token: token.access_token });
+  const user = await client2.getMe();
+  const expiresAt = getTokenExpiresAt(token.access_token) ?? Date.now() + 3600 * 1e3;
+  writeUserCredentials({
+    accessToken: token.access_token,
+    refreshToken: token.refresh_token,
+    expiresAt,
+    userId: user.id
+  });
+}
 async function getValidAccessToken() {
   const credentials = readUserCredentials();
   if (!credentials) {
     throw new Error("Not logged in. Run 'specific login' first.");
   }
+  if (!credentials.userId) {
+    const result = await performLogin({ isReauthentication: true });
+    if (!result.success) {
+      throw result.error || new Error("Re-authentication failed");
+    }
+    const newCredentials = readUserCredentials();
+    if (!newCredentials) {
+      throw new Error("Failed to read credentials after re-authentication");
+    }
+    return newCredentials.accessToken;
+  }
   const now = Date.now();
   const bufferMs = 5 * 60 * 1e3;
   if (credentials.expiresAt - bufferMs > now) {
@@ -184431,10 +184456,12 @@ async function getValidAccessToken() {
   }
   try {
     const response = await refreshAccessToken(credentials.refreshToken);
+    const expiresAt = getTokenExpiresAt(response.access_token) ?? Date.now() + 3600 * 1e3;
     const updatedCredentials = {
       accessToken: response.access_token,
       refreshToken: response.refresh_token,
-      expiresAt: now + response.expires_in * 1e3
+      expiresAt,
+      userId: credentials.userId
     };
     writeUserCredentials(updatedCredentials);
     return updatedCredentials.accessToken;
@@ -184458,6 +184485,7 @@ async function getValidAccessToken() {
 var POSTHOG_HOST = "https://eu.i.posthog.com";
 var client = null;
 var anonymousId = null;
+var identified = false;
 function isEnabled() {
   return true;
 }
@@ -184491,16 +184519,29 @@ function getClient() {
 function trackEvent(event, properties) {
   const ph = getClient();
   if (!ph) return;
+  const userId = getUserId();
+  if (userId && !identified) {
+    identified = true;
+    ph.identify({
+      distinctId: userId,
+      properties: {
+        anonymous_id: getAnonymousId()
+      }
+    });
+    ph.alias({
+      distinctId: userId,
+      alias: getAnonymousId()
+    });
+  }
   ph.capture({
-    distinctId: getAnonymousId(),
+    distinctId: userId ?? getAnonymousId(),
     event,
     properties: {
       ...properties,
-      cli_version: "0.1.69",
+      cli_version: "0.1.71",
       platform: process.platform,
       node_version: process.version,
-      project_id: getProjectId(),
-      user_id: getUserId() ?? void 0
+      project_id: getProjectId()
     }
   });
 }
@@ -193090,11 +193131,7 @@ function DeployUI({ environment, config, skipBuildTest }) {
             }
           } else {
             const successResponse = response;
-            writeUserCredentials({
-              accessToken: successResponse.access_token,
-              refreshToken: successResponse.refresh_token,
-              expiresAt: Date.now() + successResponse.expires_in * 1e3
-            });
+            await saveCredentialsFromToken(successResponse);
             setState(
               (s) => s.projectId ? { phase: "testing-builds", projectId: s.projectId } : { phase: "loading-projects" }
             );
@@ -193472,7 +193509,8 @@ ${errorMsg}`
             ...s,
             phase: "error",
             deployment: status,
-            error: `Build "${failedBuild.serviceName}" failed: ${failedBuild.error}`
+            error: `Build "${failedBuild.serviceName}" failed: ${failedBuild.error}`,
+            buildOutput: failedBuild.output
           }));
           return;
         }
@@ -193652,6 +193690,7 @@ ${errorMsg}`
     phase,
     deployment,
     error,
+    buildOutput,
     tarballSize,
     pendingActions,
     missingSecrets,
@@ -193782,7 +193821,7 @@ ${errorMsg}`
       onSubmit: handleConfigSubmit,
       onCancel: handleConfigCancel
     }
-  ), phase === "error" && /* @__PURE__ */ React7.createElement(Box7, { marginTop: 1 }, deployment?.error ? /* @__PURE__ */ React7.createElement(StructuredError, { error: deployment.error }) : /* @__PURE__ */ React7.createElement(Text7, { color: "red" }, "Error: ", error)), phase === "success" && /* @__PURE__ */ React7.createElement(Box7, { marginTop: 1, flexDirection: "column" }, /* @__PURE__ */ React7.createElement(Text7, { color: "green" }, "Deployment successful!"), deployment?.publicUrls && Object.keys(deployment.publicUrls).length > 0 && /* @__PURE__ */ React7.createElement(Box7, { marginTop: 1, flexDirection: "column" }, /* @__PURE__ */ React7.createElement(Text7, { bold: true }, "Public URLs:"), Object.entries(deployment.publicUrls).map(([name, url]) => /* @__PURE__ */ React7.createElement(Text7, { key: name }, "  ", name, ": ", /* @__PURE__ */ React7.createElement(Text7, { color: "cyan" }, url))))));
+  ), phase === "error" && /* @__PURE__ */ React7.createElement(Box7, { marginTop: 1, flexDirection: "column" }, deployment?.error ? /* @__PURE__ */ React7.createElement(StructuredError, { error: deployment.error }) : /* @__PURE__ */ React7.createElement(Text7, { color: "red", bold: true }, error), buildOutput && /* @__PURE__ */ React7.createElement(Box7, { flexDirection: "column", marginTop: 1 }, /* @__PURE__ */ React7.createElement(Text7, { bold: true }, "Build output:"), /* @__PURE__ */ React7.createElement(Text7, null, buildOutput))), phase === "success" && /* @__PURE__ */ React7.createElement(Box7, { marginTop: 1, flexDirection: "column" }, /* @__PURE__ */ React7.createElement(Text7, { color: "green" }, "Deployment successful!"), deployment?.publicUrls && Object.keys(deployment.publicUrls).length > 0 && /* @__PURE__ */ React7.createElement(Box7, { marginTop: 1, flexDirection: "column" }, /* @__PURE__ */ React7.createElement(Text7, { bold: true }, "Public URLs:"), Object.entries(deployment.publicUrls).map(([name, url]) => /* @__PURE__ */ React7.createElement(Text7, { key: name }, "  ", name, ": ", /* @__PURE__ */ React7.createElement(Text7, { color: "cyan" }, url))))));
 }
 async function deployCommand(environment, options2) {
   const configPath = path23.join(process.cwd(), "specific.hcl");
@@ -194601,7 +194640,7 @@ function compareVersions(a, b) {
   return 0;
 }
 async function checkForUpdate() {
-  const currentVersion = "0.1.69";
+  const currentVersion = "0.1.71";
   const response = await fetch(`${BINARIES_BASE_URL}/latest?t=${Date.now()}`);
   if (!response.ok) {
     throw new Error(`Failed to check for updates: HTTP ${response.status}`);
@@ -194800,7 +194839,7 @@ function updateCommand() {
 var program = new Command();
 var env = "production";
 var envLabel = env !== "production" ? `[${env.toUpperCase()}] ` : "";
-program.name("specific").description(`${envLabel}Infrastructure-as-code for coding agents`).version("0.1.69").enablePositionalOptions();
+program.name("specific").description(`${envLabel}Infrastructure-as-code for coding agents`).version("0.1.71").enablePositionalOptions();
 program.command("init").description("Initialize project for use with a coding agent").option("--agent <name...>", "Agents to configure (cursor, claude, codex, other)").action((options2) => initCommand(options2));
 program.command("docs [topic]").description("Fetch LLM-optimized documentation").action(docsCommand);
 program.command("check").description("Validate specific.hcl configuration").action(checkCommand);

package/dist/postinstall.js

@@ -73,6 +73,7 @@ function getUserId() {
 var POSTHOG_HOST = "https://eu.i.posthog.com";
 var client = null;
 var anonymousId = null;
+var identified = false;
 function isEnabled() {
   return true;
 }
@@ -106,16 +107,29 @@ function getClient() {
 function trackEvent(event, properties) {
   const ph = getClient();
   if (!ph) return;
+  const userId = getUserId();
+  if (userId && !identified) {
+    identified = true;
+    ph.identify({
+      distinctId: userId,
+      properties: {
+        anonymous_id: getAnonymousId()
+      }
+    });
+    ph.alias({
+      distinctId: userId,
+      alias: getAnonymousId()
+    });
+  }
   ph.capture({
-    distinctId: getAnonymousId(),
+    distinctId: userId ?? getAnonymousId(),
     event,
     properties: {
       ...properties,
-      cli_version: "0.1.69",
+      cli_version: "0.1.71",
       platform: process.platform,
       node_version: process.version,
-      project_id: getProjectId(),
-      user_id: getUserId() ?? void 0
+      project_id: getProjectId()
     }
   });
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@specific.dev/cli",
-  "version": "0.1.69",
+  "version": "0.1.71",
   "description": "CLI for Specific infrastructure-as-code",
   "type": "module",
   "main": "dist/cli.js",