@tarout/cli 0.1.3 → 0.2.0

package/dist/index.js

@@ -1,7 +1,13 @@
 #!/usr/bin/env node
+import {
+  confirm,
+  input,
+  select
+} from "./chunk-VO4OYJW3.js";
 import {
   failSpinner,
   startSpinner,
+  stopSpinner,
   succeedSpinner,
   updateSpinner
 } from "./chunk-GSKD67K4.js";
@@ -9,9 +15,138 @@ import {
 // src/index.ts
 import { Command } from "commander";
 
-// src/lib/output.ts
-import chalk from "chalk";
-import Table from "cli-table3";
+// src/commands/apps.ts
+import open from "open";
+
+// src/lib/api.ts
+import { createTRPCProxyClient, httpBatchLink } from "@trpc/client";
+import superjson from "superjson";
+
+// src/lib/config.ts
+import Conf from "conf";
+import {
+  existsSync,
+  mkdirSync,
+  readFileSync,
+  rmSync,
+  writeFileSync
+} from "fs";
+import { join } from "path";
+var config = new Conf({
+  projectName: "tarout",
+  defaults: {
+    currentProfile: "default",
+    profiles: {}
+  }
+});
+function getConfig() {
+  return config.store;
+}
+function getCurrentProfile() {
+  const cfg = getConfig();
+  return cfg.profiles[cfg.currentProfile] || null;
+}
+function setProfile(name, profile) {
+  config.set(`profiles.${name}`, profile);
+}
+function setCurrentProfile(name) {
+  config.set("currentProfile", name);
+}
+function clearConfig() {
+  config.clear();
+}
+function isLoggedIn() {
+  const profile = getCurrentProfile();
+  return profile !== null && !!profile.token;
+}
+function getToken() {
+  const profile = getCurrentProfile();
+  return profile?.token || null;
+}
+function getApiUrl() {
+  const profile = getCurrentProfile();
+  return profile?.apiUrl || "https://tarout.sa";
+}
+function updateProfile(updates) {
+  const cfg = getConfig();
+  const currentProfileName = cfg.currentProfile;
+  const currentProfile = cfg.profiles[currentProfileName];
+  if (currentProfile) {
+    config.set(`profiles.${currentProfileName}`, {
+      ...currentProfile,
+      ...updates
+    });
+  }
+}
+var PROJECT_CONFIG_DIR = ".tarout";
+var PROJECT_CONFIG_FILE = "project.json";
+function getProjectConfigDir(basePath) {
+  const base = basePath || process.cwd();
+  return join(base, PROJECT_CONFIG_DIR);
+}
+function getProjectConfigPath(basePath) {
+  return join(getProjectConfigDir(basePath), PROJECT_CONFIG_FILE);
+}
+function isProjectLinked(basePath) {
+  return existsSync(getProjectConfigPath(basePath));
+}
+function getProjectConfig(basePath) {
+  const configPath = getProjectConfigPath(basePath);
+  if (!existsSync(configPath)) {
+    return null;
+  }
+  try {
+    const content = readFileSync(configPath, "utf-8");
+    return JSON.parse(content);
+  } catch {
+    return null;
+  }
+}
+function setProjectConfig(config2, basePath) {
+  const configDir = getProjectConfigDir(basePath);
+  const configPath = getProjectConfigPath(basePath);
+  if (!existsSync(configDir)) {
+    mkdirSync(configDir, { recursive: true });
+  }
+  writeFileSync(configPath, JSON.stringify(config2, null, 2), "utf-8");
+  const gitignorePath = join(configDir, ".gitignore");
+  if (!existsSync(gitignorePath)) {
+    writeFileSync(
+      gitignorePath,
+      "# Ignore local tarout config\n*\n!.gitignore\n",
+      "utf-8"
+    );
+  }
+}
+function removeProjectConfig(basePath) {
+  const configDir = getProjectConfigDir(basePath);
+  if (!existsSync(configDir)) {
+    return false;
+  }
+  try {
+    rmSync(configDir, { recursive: true, force: true });
+    return true;
+  } catch {
+    return false;
+  }
+}
+
+// src/utils/exit-codes.ts
+var ExitCode = {
+  SUCCESS: 0,
+  GENERAL_ERROR: 1,
+  INVALID_ARGUMENTS: 2,
+  AUTH_ERROR: 3,
+  NOT_FOUND: 4,
+  PERMISSION_DENIED: 5,
+  // Deployment-specific exit codes
+  DEPLOYMENT_FAILED: 10,
+  DEPLOYMENT_TIMEOUT: 11,
+  BUILD_FAILED: 12
+};
+function exit(code) {
+  process.exit(code);
+}
 
 // src/utils/json.ts
 function jsonSuccess(data, meta) {
@@ -36,6 +171,8 @@ function outputJson(response) {
 }
 
 // src/lib/output.ts
+import chalk from "chalk";
+import Table from "cli-table3";
 var globalOptions = {
   json: false,
   quiet: false,
@@ -152,174 +289,6 @@ function box(title, content) {
   console.log("");
 }
 
-// src/commands/auth.ts
-import open from "open";
-
-// src/lib/config.ts
-import Conf from "conf";
-var config = new Conf({
-  projectName: "tarout",
-  defaults: {
-    currentProfile: "default",
-    profiles: {}
-  }
-});
-function getConfig() {
-  return config.store;
-}
-function getCurrentProfile() {
-  const cfg = getConfig();
-  return cfg.profiles[cfg.currentProfile] || null;
-}
-function setProfile(name, profile) {
-  config.set(`profiles.${name}`, profile);
-}
-function setCurrentProfile(name) {
-  config.set("currentProfile", name);
-}
-function clearConfig() {
-  config.clear();
-}
-function isLoggedIn() {
-  const profile = getCurrentProfile();
-  return profile !== null && !!profile.token;
-}
-function getToken() {
-  const profile = getCurrentProfile();
-  return profile?.token || null;
-}
-function getApiUrl() {
-  const profile = getCurrentProfile();
-  return profile?.apiUrl || "https://tarout.sa";
-}
-function updateProfile(updates) {
-  const cfg = getConfig();
-  const currentProfileName = cfg.currentProfile;
-  const currentProfile = cfg.profiles[currentProfileName];
-  if (currentProfile) {
-    config.set(`profiles.${currentProfileName}`, {
-      ...currentProfile,
-      ...updates
-    });
-  }
-}
-
-// src/lib/auth-server.ts
-import express from "express";
-function startAuthServer() {
-  return new Promise((resolve) => {
-    const app = express();
-    let server;
-    let callbackResolver;
-    let callbackRejecter;
-    const callbackPromise = new Promise((res, rej) => {
-      callbackResolver = res;
-      callbackRejecter = rej;
-    });
-    app.get("/callback", (req, res) => {
-      const {
-        token,
-        userId,
-        userEmail,
-        userName,
-        organizationId,
-        organizationName,
-        environmentId,
-        environmentName,
-        error: error6
-      } = req.query;
-      if (error6) {
-        res.send(`
-          <!DOCTYPE html>
-          <html>
-            <head>
-              <title>Tarout CLI - Authentication Failed</title>
-              <style>
-                body { font-family: system-ui, sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; background: #f5f5f5; }
-                .container { text-align: center; padding: 40px; background: white; border-radius: 12px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
-                h1 { color: #dc2626; margin-bottom: 16px; }
-                p { color: #666; }
-              </style>
-            </head>
-            <body>
-              <div class="container">
-                <h1>Authentication Failed</h1>
-                <p>${error6}</p>
-                <p>You can close this window and try again.</p>
-              </div>
-            </body>
-          </html>
-        `);
-        callbackRejecter(new Error(String(error6)));
-        return;
-      }
-      if (!token || !userId || !userEmail || !organizationId || !organizationName || !environmentId || !environmentName) {
-        res.status(400).send("Missing required parameters");
-        callbackRejecter(new Error("Missing required parameters from auth callback"));
-        return;
-      }
-      res.send(`
-        <!DOCTYPE html>
-        <html>
-          <head>
-            <title>Tarout CLI - Authenticated</title>
-            <style>
-              body { font-family: system-ui, sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; background: #f5f5f5; }
-              .container { text-align: center; padding: 40px; background: white; border-radius: 12px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
-              h1 { color: #16a34a; margin-bottom: 16px; }
-              p { color: #666; }
-              .checkmark { font-size: 64px; margin-bottom: 16px; }
-            </style>
-          </head>
-          <body>
-            <div class="container">
-              <div class="checkmark">\u2713</div>
-              <h1>Authenticated!</h1>
-              <p>You can close this window and return to the terminal.</p>
-            </div>
-          </body>
-        </html>
-      `);
-      callbackResolver({
-        token: String(token),
-        userId: String(userId),
-        userEmail: String(userEmail),
-        userName: userName ? String(userName) : void 0,
-        organizationId: String(organizationId),
-        organizationName: String(organizationName),
-        environmentId: String(environmentId),
-        environmentName: String(environmentName)
-      });
-    });
-    server = app.listen(0, () => {
-      const address = server.address();
-      const port = typeof address === "object" && address ? address.port : 0;
-      resolve({
-        port,
-        waitForCallback: () => callbackPromise,
-        close: () => server.close()
-      });
-    });
-    setTimeout(() => {
-      callbackRejecter(new Error("Authentication timed out. Please try again."));
-      server.close();
-    }, 5 * 60 * 1e3);
-  });
-}
-
-// src/utils/exit-codes.ts
-var ExitCode = {
-  SUCCESS: 0,
-  GENERAL_ERROR: 1,
-  INVALID_ARGUMENTS: 2,
-  AUTH_ERROR: 3,
-  NOT_FOUND: 4,
-  PERMISSION_DENIED: 5
-};
-function exit(code) {
-  process.exit(code);
-}
-
 // src/lib/errors.ts
 var CliError = class extends Error {
   constructor(message, code = ExitCode.GENERAL_ERROR, suggestions) {
@@ -344,15 +313,31 @@ var InvalidArgumentError = class extends CliError {
     super(message, ExitCode.INVALID_ARGUMENTS);
   }
 };
+var DeploymentFailedError = class extends CliError {
+  constructor(message, deploymentId, errorAnalysis) {
+    super(message, ExitCode.DEPLOYMENT_FAILED);
+    this.deploymentId = deploymentId;
+    this.errorAnalysis = errorAnalysis;
+  }
+};
+var DeploymentTimeoutError = class extends CliError {
+  constructor(message = "Deployment timed out", deploymentId) {
+    super(message, ExitCode.DEPLOYMENT_TIMEOUT);
+    this.deploymentId = deploymentId;
+  }
+};
+var BuildFailedError = class extends CliError {
+  constructor(message, deploymentId, errorAnalysis) {
+    super(message, ExitCode.BUILD_FAILED);
+    this.deploymentId = deploymentId;
+    this.errorAnalysis = errorAnalysis;
+  }
+};
 function handleError(err) {
   if (err instanceof CliError) {
     if (isJsonMode()) {
       outputJson(
-        jsonError(
-          getErrorCode(err.code),
-          err.message,
-          err.suggestions
-        )
+        jsonError(getErrorCode(err.code), err.message, err.suggestions)
       );
     } else {
       error(err.message, err.suggestions);
@@ -384,7 +369,10 @@ function getErrorCode(exitCode) {
     [ExitCode.INVALID_ARGUMENTS]: "INVALID_ARGUMENTS",
     [ExitCode.AUTH_ERROR]: "AUTH_ERROR",
     [ExitCode.NOT_FOUND]: "NOT_FOUND",
-    [ExitCode.PERMISSION_DENIED]: "PERMISSION_DENIED"
+    [ExitCode.PERMISSION_DENIED]: "PERMISSION_DENIED",
+    [ExitCode.DEPLOYMENT_FAILED]: "DEPLOYMENT_FAILED",
+    [ExitCode.DEPLOYMENT_TIMEOUT]: "DEPLOYMENT_TIMEOUT",
+    [ExitCode.BUILD_FAILED]: "BUILD_FAILED"
   };
   return codes[exitCode] || "ERROR";
 }
@@ -420,155 +408,288 @@ function similarity(s1, s2) {
   }
   return 2 * intersection / (s1.length - 1 + s2.length - 1);
 }
-
-// src/commands/auth.ts
-function registerAuthCommands(program2) {
-  program2.command("login").description("Authenticate with Tarout via browser").option("--api-url <url>", "Custom API URL", "https://tarout.sa").action(async (options) => {
-    try {
-      if (isLoggedIn()) {
-        const profile = getCurrentProfile();
-        if (profile) {
-          log(`Already logged in as ${colors.cyan(profile.userEmail)}`);
-          log(`Organization: ${profile.organizationName}`);
-          log("");
-          log(`Run ${colors.dim("tarout logout")} to sign out first.`);
-          return;
-        }
-      }
-      const apiUrl = options.apiUrl;
-      log("");
-      log("Opening browser to authenticate...");
-      const authServer = await startAuthServer();
-      const callbackUrl = `http://localhost:${authServer.port}/callback`;
-      const authUrl = `${apiUrl}/cli-auth?callback=${encodeURIComponent(callbackUrl)}`;
-      await open(authUrl);
-      const spinner = startSpinner("Waiting for authentication...");
-      try {
-        const authData = await authServer.waitForCallback();
-        succeedSpinner("Authentication successful!");
-        authServer.close();
-        setProfile("default", {
-          token: authData.token,
-          apiUrl,
-          userId: authData.userId,
-          userEmail: authData.userEmail,
-          userName: authData.userName,
-          organizationId: authData.organizationId,
-          organizationName: authData.organizationName,
-          environmentId: authData.environmentId,
-          environmentName: authData.environmentName
-        });
-        setCurrentProfile("default");
-        if (isJsonMode()) {
-          outputData({
-            success: true,
-            user: {
-              id: authData.userId,
-              email: authData.userEmail,
-              name: authData.userName
-            },
-            organization: {
-              id: authData.organizationId,
-              name: authData.organizationName
-            },
-            environment: {
-              id: authData.environmentId,
-              name: authData.environmentName
-            }
-          });
-        } else {
-          log("");
-          success(`Logged in as ${colors.cyan(authData.userEmail)}`);
-          box("Account", [
-            `Organization: ${colors.bold(authData.organizationName)}`,
-            `Environment: ${colors.bold(authData.environmentName)}`
-          ]);
+var ERROR_PATTERNS = [
+  {
+    patterns: [
+      /npm ERR!/i,
+      /npm error/i,
+      /ERESOLVE/i,
+      /Could not resolve dependency/i,
+      /peer dep missing/i
+    ],
+    category: "npm_install",
+    type: "build_error",
+    possibleCauses: [
+      "Package version conflicts",
+      "Missing peer dependencies",
+      "Invalid package.json",
+      "Network issues during npm install",
+      "Private package without authentication"
+    ],
+    suggestedFixes: [
+      "Run `npm install` locally to reproduce the issue",
+      "Check for conflicting package versions in package.json",
+      "Try deleting package-lock.json and node_modules, then reinstall",
+      "Add missing peer dependencies explicitly",
+      "Check if private packages are properly authenticated"
+    ]
+  },
+  {
+    patterns: [
+      /yarn error/i,
+      /YN\d{4}/i,
+      /error An unexpected error occurred/i
+    ],
+    category: "yarn_install",
+    type: "build_error",
+    possibleCauses: [
+      "Package version conflicts",
+      "Corrupted yarn.lock file",
+      "Network issues during install",
+      "Incompatible yarn version"
+    ],
+    suggestedFixes: [
+      "Run `yarn install` locally to reproduce the issue",
+      "Delete yarn.lock and node_modules, then reinstall",
+      "Check for conflicting resolutions in package.json",
+      "Ensure yarn version matches the project requirements"
+    ]
+  },
+  {
+    patterns: [/pnpm ERR/i, /ERR_PNPM/i],
+    category: "pnpm_install",
+    type: "build_error",
+    possibleCauses: [
+      "Package version conflicts",
+      "Incompatible pnpm version",
+      "Corrupted pnpm-lock.yaml"
+    ],
+    suggestedFixes: [
+      "Run `pnpm install` locally to reproduce the issue",
+      "Delete pnpm-lock.yaml and node_modules, then reinstall",
+      "Check pnpm version compatibility"
+    ]
+  },
+  {
+    patterns: [/bun install/i, /error: .* failed to resolve/i],
+    category: "bun_install",
+    type: "build_error",
+    possibleCauses: [
+      "Package resolution failure",
+      "Incompatible bun version",
+      "Missing dependencies"
+    ],
+    suggestedFixes: [
+      "Run `bun install` locally to reproduce the issue",
+      "Delete bun.lockb and node_modules, then reinstall",
+      "Check bun version compatibility"
+    ]
+  },
+  {
+    patterns: [
+      /error TS\d+/i,
+      /TypeScript error/i,
+      /tsc.*error/i,
+      /Type .* is not assignable to/i,
+      /Cannot find module/i,
+      /Property .* does not exist/i
+    ],
+    category: "typescript",
+    type: "build_error",
+    possibleCauses: [
+      "TypeScript compilation errors in source code",
+      "Missing type definitions",
+      "Incompatible TypeScript version",
+      "Strict mode type errors"
+    ],
+    suggestedFixes: [
+      "Run `npx tsc --noEmit` locally to see all type errors",
+      "Fix the TypeScript errors in the indicated files",
+      "Install missing @types/* packages",
+      "Check tsconfig.json for strict mode settings"
+    ]
+  },
+  {
+    patterns: [
+      /COPY failed/i,
+      /RUN.*failed/i,
+      /failed to build/i,
+      /Error building image/i,
+      /Dockerfile/i
+    ],
+    category: "docker_build",
+    type: "build_error",
+    possibleCauses: [
+      "Invalid Dockerfile syntax",
+      "Missing files in build context",
+      "Failed RUN commands",
+      "Base image not found"
+    ],
+    suggestedFixes: [
+      "Test Docker build locally with `docker build .`",
+      "Check that all required files are in the build context",
+      "Verify Dockerfile syntax and commands",
+      "Ensure base image exists and is accessible"
+    ]
+  },
+  {
+    patterns: [
+      /build.*failed/i,
+      /Build failed/i,
+      /exit code 1/i,
+      /Command failed/i,
+      /Script.*failed/i
+    ],
+    category: "build_script",
+    type: "build_error",
+    possibleCauses: [
+      "Build script error in package.json",
+      "Missing build dependencies",
+      "Environment variable issues",
+      "Build command not found"
+    ],
+    suggestedFixes: [
+      "Run `npm run build` locally to reproduce the error",
+      "Check package.json build script for errors",
+      "Ensure all required environment variables are set",
+      "Verify build dependencies are installed"
+    ]
+  },
+  {
+    patterns: [
+      /out of memory/i,
+      /JavaScript heap out of memory/i,
+      /FATAL ERROR: .* allocation failed/i,
+      /OOMKilled/i
+    ],
+    category: "memory_limit",
+    type: "build_error",
+    possibleCauses: [
+      "Build process requires more memory than allocated",
+      "Memory leak in build process",
+      "Large dependency tree"
+    ],
+    suggestedFixes: [
+      "Increase memory allocation for the build",
+      "Optimize build process to use less memory",
+      "Consider splitting large bundles",
+      "Add NODE_OPTIONS=--max_old_space_size=4096"
+    ]
+  },
+  {
+    patterns: [/timed? ?out/i, /deadline exceeded/i, /timeout/i],
+    category: "timeout",
+    type: "build_error",
+    possibleCauses: [
+      "Build process took too long",
+      "Network timeout during dependency install",
+      "Slow external service calls"
+    ],
+    suggestedFixes: [
+      "Optimize build process for faster execution",
+      "Check for slow network requests during build",
+      "Consider caching dependencies",
+      "Increase build timeout if possible"
+    ]
+  },
+  {
+    patterns: [/permission denied/i, /EACCES/i, /EPERM/i],
+    category: "permission",
+    type: "build_error",
+    possibleCauses: [
+      "File permission issues",
+      "Attempting to write to read-only locations",
+      "Docker user permission mismatch"
+    ],
+    suggestedFixes: [
+      "Check file permissions in the project",
+      "Ensure Dockerfile uses correct user",
+      "Avoid writing to restricted directories"
+    ]
+  },
+  {
+    patterns: [
+      /ENOTFOUND/i,
+      /ECONNREFUSED/i,
+      /network error/i,
+      /fetch failed/i,
+      /getaddrinfo/i
+    ],
+    category: "network",
+    type: "build_error",
+    possibleCauses: [
+      "Network connectivity issues",
+      "DNS resolution failure",
+      "Registry unavailable",
+      "Firewall blocking connections"
+    ],
+    suggestedFixes: [
+      "Check if the package registry is accessible",
+      "Verify network configuration",
+      "Try again later if registry is temporarily down",
+      "Check for any proxy configuration issues"
+    ]
+  }
+];
+function analyzeDeploymentError(logs, errorMessage) {
+  const relevantLogLines = [];
+  let matchedPattern = null;
+  let maxMatches = 0;
+  const allLines = errorMessage ? [...logs, errorMessage] : logs;
+  for (const pattern of ERROR_PATTERNS) {
+    let matches = 0;
+    const matchedLines = [];
+    for (const line of allLines) {
+      for (const regex of pattern.patterns) {
+        if (regex.test(line)) {
+          matches++;
+          if (!matchedLines.includes(line)) {
+            matchedLines.push(line);
+          }
+          break;
         }
-      } catch (err) {
-        failSpinner("Authentication failed");
-        authServer.close();
-        throw err;
       }
-    } catch (err) {
-      handleError(err);
     }
-  });
-  program2.command("logout").description("Sign out and clear stored credentials").action(async () => {
-    try {
-      if (!isLoggedIn()) {
-        if (isJsonMode()) {
-          outputData({ success: true, message: "Already logged out" });
-        } else {
-          log("Already logged out.");
-        }
-        return;
-      }
-      const profile = getCurrentProfile();
-      clearConfig();
-      if (isJsonMode()) {
-        outputData({ success: true, message: "Logged out successfully" });
-      } else {
-        success(`Logged out from ${profile?.userEmail || "Tarout"}`);
-      }
-    } catch (err) {
-      handleError(err);
+    if (matches > maxMatches) {
+      maxMatches = matches;
+      matchedPattern = pattern;
+      relevantLogLines.length = 0;
+      relevantLogLines.push(...matchedLines.slice(0, 10));
     }
-  });
-  program2.command("whoami").description("Show current authenticated user").action(async () => {
-    try {
-      if (!isLoggedIn()) {
-        throw new AuthError();
-      }
-      const profile = getCurrentProfile();
-      if (!profile) {
-        throw new AuthError();
-      }
-      if (isJsonMode()) {
-        outputData({
-          user: {
-            id: profile.userId,
-            email: profile.userEmail,
-            name: profile.userName
-          },
-          organization: {
-            id: profile.organizationId,
-            name: profile.organizationName
-          },
-          environment: {
-            id: profile.environmentId,
-            name: profile.environmentName
-          },
-          apiUrl: profile.apiUrl
-        });
-      } else {
-        log("");
-        log(`${colors.bold("User")}`);
-        log(`  Email: ${colors.cyan(profile.userEmail)}`);
-        if (profile.userName) {
-          log(`  Name: ${profile.userName}`);
-        }
-        log("");
-        log(`${colors.bold("Organization")}`);
-        log(`  Name: ${profile.organizationName}`);
-        log(`  ID: ${colors.dim(profile.organizationId)}`);
-        log("");
-        log(`${colors.bold("Environment")}`);
-        log(`  Name: ${profile.environmentName}`);
-        log(`  ID: ${colors.dim(profile.environmentId)}`);
-        log("");
-      }
-    } catch (err) {
-      handleError(err);
+  }
+  const errorIndicators = [/error/i, /failed/i, /fatal/i, /exception/i];
+  for (const line of allLines) {
+    if (relevantLogLines.length < 15 && !relevantLogLines.includes(line) && errorIndicators.some((indicator) => indicator.test(line))) {
+      relevantLogLines.push(line);
     }
-  });
+  }
+  if (matchedPattern) {
+    return {
+      type: matchedPattern.type,
+      category: matchedPattern.category,
+      possibleCauses: matchedPattern.possibleCauses,
+      suggestedFixes: matchedPattern.suggestedFixes,
+      relevantLogLines
+    };
+  }
+  return {
+    type: "unknown",
+    category: "unknown",
+    possibleCauses: [
+      "Unable to automatically determine the cause",
+      "Check the log output for specific error messages"
+    ],
+    suggestedFixes: [
+      "Review the deployment logs for error messages",
+      "Try running the build locally to reproduce the issue",
+      "Check environment variables and configuration",
+      "Contact support if the issue persists"
+    ],
+    relevantLogLines
+  };
 }
 
-// src/commands/apps.ts
-import open2 from "open";
-
 // src/lib/api.ts
-import { createTRPCProxyClient, httpBatchLink } from "@trpc/client";
-import superjson from "superjson";
 var client = null;
 function createApiClient() {
   if (!isLoggedIn()) {
@@ -595,42 +716,6 @@ function getApiClient() {
   return client;
 }
 
-// src/utils/prompts.ts
-import inquirer from "inquirer";
-async function confirm(message, defaultValue = false) {
-  const { confirmed } = await inquirer.prompt([
-    {
-      type: "confirm",
-      name: "confirmed",
-      message,
-      default: defaultValue
-    }
-  ]);
-  return confirmed;
-}
-async function input(message, defaultValue) {
-  const { value } = await inquirer.prompt([
-    {
-      type: "input",
-      name: "value",
-      message,
-      default: defaultValue
-    }
-  ]);
-  return value;
-}
-async function select(message, choices) {
-  const { value } = await inquirer.prompt([
-    {
-      type: "list",
-      name: "value",
-      message,
-      choices
-    }
-  ]);
-  return value;
-}
-
 // src/commands/apps.ts
 function registerAppsCommands(program2) {
   const apps = program2.command("apps").description("Manage applications");
@@ -638,7 +723,7 @@ function registerAppsCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching applications...");
+      const _spinner = startSpinner("Fetching applications...");
       const applications = await client2.application.allByOrganization.query();
       succeedSpinner();
       if (isJsonMode()) {
@@ -664,7 +749,11 @@ function registerAppsCommands(program2) {
         ])
       );
       log("");
-      log(colors.dim(`${applications.length} application${applications.length === 1 ? "" : "s"}`));
+      log(
+        colors.dim(
+          `${applications.length} application${applications.length === 1 ? "" : "s"}`
+        )
+      );
     } catch (err) {
       handleError(err);
     }
@@ -684,7 +773,7 @@ function registerAppsCommands(program2) {
       }
       const slug = generateSlug(appName);
       const client2 = getApiClient();
-      const spinner = startSpinner("Creating application...");
+      const _spinner = startSpinner("Creating application...");
       const application = await client2.application.create.mutate({
         name: appName,
         appName: slug,
@@ -703,8 +792,12 @@ function registerAppsCommands(program2) {
         `Slug: ${application.appName}`
       ]);
       log("Next steps:");
-      log(`  1. Connect a source: ${colors.dim(`tarout apps info ${application.applicationId.slice(0, 8)}`)}`);
-      log(`  2. Deploy: ${colors.dim(`tarout deploy ${application.applicationId.slice(0, 8)}`)}`);
+      log(
+        `  1. Connect a source: ${colors.dim(`tarout apps info ${application.applicationId.slice(0, 8)}`)}`
+      );
+      log(
+        `  2. Deploy: ${colors.dim(`tarout deploy ${application.applicationId.slice(0, 8)}`)}`
+      );
       log("");
     } catch (err) {
       handleError(err);
@@ -714,7 +807,7 @@ function registerAppsCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Finding application...");
+      const _spinner = startSpinner("Finding application...");
       const apps2 = await client2.application.allByOrganization.query();
       const app = findApp(apps2, appIdentifier);
       if (!app) {
@@ -740,7 +833,7 @@ function registerAppsCommands(program2) {
           return;
         }
       }
-      const deleteSpinner = startSpinner("Deleting application...");
+      const _deleteSpinner = startSpinner("Deleting application...");
       await client2.application.delete.mutate({
         applicationId: app.applicationId
       });
@@ -758,7 +851,7 @@ function registerAppsCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching application...");
+      const _spinner = startSpinner("Fetching application...");
       const apps2 = await client2.application.allByOrganization.query();
       const appSummary = findApp(apps2, appIdentifier);
       if (!appSummary) {
@@ -835,7 +928,7 @@ function registerAppsCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Finding application...");
+      const _spinner = startSpinner("Finding application...");
       const apps2 = await client2.application.allByOrganization.query();
       const appSummary = findApp(apps2, appIdentifier);
       if (!appSummary) {
@@ -857,7 +950,9 @@ function registerAppsCommands(program2) {
         url = app.cloudServiceUrl;
       }
       if (!url) {
-        error("No URL found for this application. Deploy first or add a domain.");
+        error(
+          "No URL found for this application. Deploy first or add a domain."
+        );
         return;
       }
       if (isJsonMode()) {
@@ -865,7 +960,7 @@ function registerAppsCommands(program2) {
         return;
       }
       log(`Opening ${colors.cyan(url)}...`);
-      await open2(url);
+      await open(url);
     } catch (err) {
       handleError(err);
     }
@@ -888,89 +983,1268 @@ function formatDate(date) {
   );
   if (diffDays === 0) {
     return "Today";
-  } else if (diffDays === 1) {
+  }
+  if (diffDays === 1) {
     return "Yesterday";
-  } else if (diffDays < 7) {
+  }
+  if (diffDays < 7) {
     return `${diffDays}d ago`;
-  } else {
-    return d.toLocaleDateString("en-US", { month: "short", day: "numeric" });
   }
+  return d.toLocaleDateString("en-US", { month: "short", day: "numeric" });
 }
 
-// src/commands/deploy.ts
-function registerDeployCommands(program2) {
-  program2.command("deploy").argument("<app>", "Application ID or name").description("Deploy an application").option("-r, --region <region>", "Deployment region", "me-central1").option("-w, --wait", "Wait for deployment to complete").action(async (appIdentifier, options) => {
-    try {
-      if (!isLoggedIn()) throw new AuthError();
-      const client2 = getApiClient();
-      const spinner = startSpinner("Finding application...");
-      const apps = await client2.application.allByOrganization.query();
-      const app = findApp2(apps, appIdentifier);
-      if (!app) {
-        failSpinner();
-        const suggestions = findSimilar(
-          appIdentifier,
-          apps.map((a) => a.name)
+// src/commands/auth.ts
+import open2 from "open";
+
+// src/lib/auth-server.ts
+import express from "express";
+function startAuthServer() {
+  return new Promise((resolve) => {
+    const app = express();
+    let server;
+    let callbackResolver;
+    let callbackRejecter;
+    const callbackPromise = new Promise((res, rej) => {
+      callbackResolver = res;
+      callbackRejecter = rej;
+    });
+    app.get("/callback", (req, res) => {
+      const {
+        token,
+        userId,
+        userEmail,
+        userName,
+        organizationId,
+        organizationName,
+        environmentId,
+        environmentName,
+        error: error2
+      } = req.query;
+      if (error2) {
+        res.send(`
+          <!DOCTYPE html>
+          <html>
+            <head>
+              <title>Tarout CLI - Authentication Failed</title>
+              <style>
+                body { font-family: system-ui, sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; background: #f5f5f5; }
+                .container { text-align: center; padding: 40px; background: white; border-radius: 12px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
+                h1 { color: #dc2626; margin-bottom: 16px; }
+                p { color: #666; }
+              </style>
+            </head>
+            <body>
+              <div class="container">
+                <h1>Authentication Failed</h1>
+                <p>${error2}</p>
+                <p>You can close this window and try again.</p>
+              </div>
+            </body>
+          </html>
+        `);
+        callbackRejecter(new Error(String(error2)));
+        return;
+      }
+      if (!token || !userId || !userEmail || !organizationId || !organizationName || !environmentId || !environmentName) {
+        res.status(400).send("Missing required parameters");
+        callbackRejecter(
+          new Error("Missing required parameters from auth callback")
         );
-        throw new NotFoundError("Application", appIdentifier, suggestions);
+        return;
       }
-      updateSpinner(`Deploying ${app.name}...`);
-      const result = await client2.application.deployToCloud.mutate({
-        applicationId: app.applicationId,
-        region: options.region
-      });
-      if (options.wait) {
-        let attempts = 0;
-        const maxAttempts = 120;
-        while (attempts < maxAttempts) {
-          await sleep(5e3);
-          attempts++;
-          const fullApp = await client2.application.one.query({
-            applicationId: app.applicationId
-          });
-          updateSpinner(
-            `Deploying ${app.name}... (${attempts * 5}s)`
-          );
-          if (fullApp.applicationStatus === "done" || fullApp.applicationStatus === "running") {
-            succeedSpinner("Deployment successful!");
-            if (isJsonMode()) {
-              outputData({
-                deploymentId: result.deploymentId,
-                status: fullApp.applicationStatus,
-                url: fullApp.cloudServiceUrl
-              });
-            } else {
-              quietOutput(fullApp.cloudServiceUrl || result.deploymentId);
-              log("");
-              log(`URL: ${colors.cyan(fullApp.cloudServiceUrl || "Pending...")}`);
-              log("");
-            }
-            return;
-          }
-          if (fullApp.applicationStatus === "error") {
-            failSpinner("Deployment failed");
-            throw new CliError("Deployment failed. Check logs for details.", ExitCode.GENERAL_ERROR);
-          }
-        }
-        failSpinner("Deployment timed out");
-        throw new CliError("Deployment timed out after 10 minutes", ExitCode.GENERAL_ERROR);
-      } else {
-        succeedSpinner("Deployment started!");
-        if (isJsonMode()) {
+      res.send(`
+        <!DOCTYPE html>
+        <html>
+          <head>
+            <title>Tarout CLI - Authenticated</title>
+            <style>
+              body { font-family: system-ui, sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; background: #f5f5f5; }
+              .container { text-align: center; padding: 40px; background: white; border-radius: 12px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
+              h1 { color: #16a34a; margin-bottom: 16px; }
+              p { color: #666; }
+              .checkmark { font-size: 64px; margin-bottom: 16px; }
+            </style>
+          </head>
+          <body>
+            <div class="container">
+              <div class="checkmark">\u2713</div>
+              <h1>Authenticated!</h1>
+              <p>You can close this window and return to the terminal.</p>
+            </div>
+          </body>
+        </html>
+      `);
+      callbackResolver({
+        token: String(token),
+        userId: String(userId),
+        userEmail: String(userEmail),
+        userName: userName ? String(userName) : void 0,
+        organizationId: String(organizationId),
+        organizationName: String(organizationName),
+        environmentId: String(environmentId),
+        environmentName: String(environmentName)
+      });
+    });
+    server = app.listen(0, () => {
+      const address = server.address();
+      const port = typeof address === "object" && address ? address.port : 0;
+      resolve({
+        port,
+        waitForCallback: () => callbackPromise,
+        close: () => server.close()
+      });
+    });
+    setTimeout(
+      () => {
+        callbackRejecter(
+          new Error("Authentication timed out. Please try again.")
+        );
+        server.close();
+      },
+      5 * 60 * 1e3
+    );
+  });
+}
+
+// src/commands/auth.ts
+function registerAuthCommands(program2) {
+  program2.command("login").description("Authenticate with Tarout via browser").option("--api-url <url>", "Custom API URL", "https://tarout.sa").action(async (options) => {
+    try {
+      if (isLoggedIn()) {
+        const profile = getCurrentProfile();
+        if (profile) {
+          log(`Already logged in as ${colors.cyan(profile.userEmail)}`);
+          log(`Organization: ${profile.organizationName}`);
+          log("");
+          log(`Run ${colors.dim("tarout logout")} to sign out first.`);
+          return;
+        }
+      }
+      const apiUrl = options.apiUrl;
+      log("");
+      log("Opening browser to authenticate...");
+      const authServer = await startAuthServer();
+      const callbackUrl = `http://localhost:${authServer.port}/callback`;
+      const authUrl = `${apiUrl}/cli-auth?callback=${encodeURIComponent(callbackUrl)}`;
+      await open2(authUrl);
+      const _spinner = startSpinner("Waiting for authentication...");
+      try {
+        const authData = await authServer.waitForCallback();
+        succeedSpinner("Authentication successful!");
+        authServer.close();
+        setProfile("default", {
+          token: authData.token,
+          apiUrl,
+          userId: authData.userId,
+          userEmail: authData.userEmail,
+          userName: authData.userName,
+          organizationId: authData.organizationId,
+          organizationName: authData.organizationName,
+          environmentId: authData.environmentId,
+          environmentName: authData.environmentName
+        });
+        setCurrentProfile("default");
+        if (isJsonMode()) {
           outputData({
-            deploymentId: result.deploymentId,
-            status: "deploying"
+            success: true,
+            user: {
+              id: authData.userId,
+              email: authData.userEmail,
+              name: authData.userName
+            },
+            organization: {
+              id: authData.organizationId,
+              name: authData.organizationName
+            },
+            environment: {
+              id: authData.environmentId,
+              name: authData.environmentName
+            }
           });
         } else {
-          quietOutput(result.deploymentId);
-          log("");
-          log(`Deployment ID: ${colors.cyan(result.deploymentId)}`);
-          log("");
-          log("Deployment is running in the background.");
-          log(`Check status: ${colors.dim(`tarout deploy:status ${app.applicationId.slice(0, 8)}`)}`);
-          log(`View logs: ${colors.dim(`tarout logs ${app.applicationId.slice(0, 8)}`)}`);
           log("");
+          success(`Logged in as ${colors.cyan(authData.userEmail)}`);
+          box("Account", [
+            `Organization: ${colors.bold(authData.organizationName)}`,
+            `Environment: ${colors.bold(authData.environmentName)}`
+          ]);
+        }
+      } catch (err) {
+        failSpinner("Authentication failed");
+        authServer.close();
+        throw err;
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  program2.command("logout").description("Sign out and clear stored credentials").action(async () => {
+    try {
+      if (!isLoggedIn()) {
+        if (isJsonMode()) {
+          outputData({ success: true, message: "Already logged out" });
+        } else {
+          log("Already logged out.");
+        }
+        return;
+      }
+      const profile = getCurrentProfile();
+      clearConfig();
+      if (isJsonMode()) {
+        outputData({ success: true, message: "Logged out successfully" });
+      } else {
+        success(`Logged out from ${profile?.userEmail || "Tarout"}`);
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  program2.command("whoami").description("Show current authenticated user").action(async () => {
+    try {
+      if (!isLoggedIn()) {
+        throw new AuthError();
+      }
+      const profile = getCurrentProfile();
+      if (!profile) {
+        throw new AuthError();
+      }
+      if (isJsonMode()) {
+        outputData({
+          user: {
+            id: profile.userId,
+            email: profile.userEmail,
+            name: profile.userName
+          },
+          organization: {
+            id: profile.organizationId,
+            name: profile.organizationName
+          },
+          environment: {
+            id: profile.environmentId,
+            name: profile.environmentName
+          },
+          apiUrl: profile.apiUrl
+        });
+      } else {
+        log("");
+        log(`${colors.bold("User")}`);
+        log(`  Email: ${colors.cyan(profile.userEmail)}`);
+        if (profile.userName) {
+          log(`  Name: ${profile.userName}`);
+        }
+        log("");
+        log(`${colors.bold("Organization")}`);
+        log(`  Name: ${profile.organizationName}`);
+        log(`  ID: ${colors.dim(profile.organizationId)}`);
+        log("");
+        log(`${colors.bold("Environment")}`);
+        log(`  Name: ${profile.environmentName}`);
+        log(`  ID: ${colors.dim(profile.environmentId)}`);
+        log("");
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+}
+
+// src/lib/process.ts
+import { spawn } from "child_process";
+import { existsSync as existsSync2, readFileSync as readFileSync2 } from "fs";
+import { join as join2 } from "path";
+function readPackageJson(basePath) {
+  const base = basePath || process.cwd();
+  const packagePath = join2(base, "package.json");
+  if (!existsSync2(packagePath)) {
+    return null;
+  }
+  try {
+    const content = readFileSync2(packagePath, "utf-8");
+    return JSON.parse(content);
+  } catch {
+    return null;
+  }
+}
+function detectPackageManager(basePath) {
+  const base = basePath || process.cwd();
+  if (existsSync2(join2(base, "bun.lockb")) || existsSync2(join2(base, "bun.lock"))) {
+    return "bun";
+  }
+  if (existsSync2(join2(base, "pnpm-lock.yaml"))) {
+    return "pnpm";
+  }
+  if (existsSync2(join2(base, "yarn.lock"))) {
+    return "yarn";
+  }
+  if (existsSync2(join2(base, "package-lock.json"))) {
+    return "npm";
+  }
+  const pkg = readPackageJson(basePath);
+  if (pkg?.packageManager) {
+    if (pkg.packageManager.startsWith("bun")) return "bun";
+    if (pkg.packageManager.startsWith("pnpm")) return "pnpm";
+    if (pkg.packageManager.startsWith("yarn")) return "yarn";
+    if (pkg.packageManager.startsWith("npm")) return "npm";
+  }
+  return "npm";
+}
+var FRAMEWORKS = [
+  {
+    dependencies: ["next"],
+    info: {
+      name: "Next.js",
+      devCommand: "next dev",
+      buildCommand: "next build",
+      defaultPort: 3e3
+    }
+  },
+  {
+    dependencies: ["vite"],
+    info: {
+      name: "Vite",
+      devCommand: "vite",
+      buildCommand: "vite build",
+      defaultPort: 5173
+    }
+  },
+  {
+    dependencies: ["@remix-run/dev"],
+    info: {
+      name: "Remix",
+      devCommand: "remix dev",
+      buildCommand: "remix build",
+      defaultPort: 3e3
+    }
+  },
+  {
+    dependencies: ["nuxt"],
+    info: {
+      name: "Nuxt",
+      devCommand: "nuxt dev",
+      buildCommand: "nuxt build",
+      defaultPort: 3e3
+    }
+  },
+  {
+    dependencies: ["astro"],
+    info: {
+      name: "Astro",
+      devCommand: "astro dev",
+      buildCommand: "astro build",
+      defaultPort: 4321
+    }
+  },
+  {
+    dependencies: ["@angular/core"],
+    info: {
+      name: "Angular",
+      devCommand: "ng serve",
+      buildCommand: "ng build",
+      defaultPort: 4200
+    }
+  },
+  {
+    dependencies: ["svelte-kit", "@sveltejs/kit"],
+    info: {
+      name: "SvelteKit",
+      devCommand: "svelte-kit dev",
+      buildCommand: "svelte-kit build",
+      defaultPort: 5173
+    }
+  },
+  {
+    dependencies: ["svelte"],
+    info: {
+      name: "Svelte",
+      devCommand: "vite",
+      buildCommand: "vite build",
+      defaultPort: 5173
+    }
+  },
+  {
+    dependencies: ["react-scripts"],
+    info: {
+      name: "Create React App",
+      devCommand: "react-scripts start",
+      buildCommand: "react-scripts build",
+      defaultPort: 3e3
+    }
+  },
+  {
+    dependencies: ["gatsby"],
+    info: {
+      name: "Gatsby",
+      devCommand: "gatsby develop",
+      buildCommand: "gatsby build",
+      defaultPort: 8e3
+    }
+  },
+  {
+    dependencies: ["express"],
+    info: {
+      name: "Express",
+      devCommand: "node",
+      buildCommand: "echo 'No build required'",
+      defaultPort: 3e3
+    }
+  }
+];
+function detectFramework(pkg) {
+  const allDeps = {
+    ...pkg.dependencies,
+    ...pkg.devDependencies
+  };
+  for (const framework of FRAMEWORKS) {
+    for (const dep of framework.dependencies) {
+      if (dep in allDeps) {
+        return framework.info;
+      }
+    }
+  }
+  return null;
+}
+function getDevCommand(pkg, pm) {
+  const devScripts = ["dev", "start:dev", "serve", "start"];
+  for (const script of devScripts) {
+    if (pkg.scripts?.[script]) {
+      return `${pm} run ${script}`;
+    }
+  }
+  const framework = detectFramework(pkg);
+  if (framework) {
+    return `${pm === "npm" ? "npx" : pm} ${framework.devCommand}`;
+  }
+  return `${pm} run dev`;
+}
+function getBuildCommand(pkg, pm) {
+  if (pkg.scripts?.build) {
+    return `${pm} run build`;
+  }
+  const framework = detectFramework(pkg);
+  if (framework) {
+    return `${pm === "npm" ? "npx" : pm} ${framework.buildCommand}`;
+  }
+  return `${pm} run build`;
+}
+function getDefaultPort(pkg) {
+  const framework = detectFramework(pkg);
+  return framework?.defaultPort || 3e3;
+}
+function runCommand(command, env, options = {}) {
+  return new Promise((resolve) => {
+    const [cmd, ...args] = parseCommand(command);
+    const spawnOptions = {
+      cwd: options.cwd || process.cwd(),
+      env: {
+        ...process.env,
+        ...env
+      },
+      stdio: ["inherit", "pipe", "pipe"],
+      shell: true
+    };
+    const child = spawn(cmd, args, spawnOptions);
+    child.stdout?.on("data", (data) => {
+      const str = data.toString();
+      if (options.onStdout) {
+        options.onStdout(str);
+      } else {
+        process.stdout.write(str);
+      }
+    });
+    child.stderr?.on("data", (data) => {
+      const str = data.toString();
+      if (options.onStderr) {
+        options.onStderr(str);
+      } else {
+        process.stderr.write(str);
+      }
+    });
+    const handleSignal = () => {
+      child.kill("SIGINT");
+    };
+    process.on("SIGINT", handleSignal);
+    process.on("SIGTERM", handleSignal);
+    child.on("close", (code, signal) => {
+      process.off("SIGINT", handleSignal);
+      process.off("SIGTERM", handleSignal);
+      resolve({
+        exitCode: code ?? 1,
+        signal
+      });
+    });
+    child.on("error", (err) => {
+      process.off("SIGINT", handleSignal);
+      process.off("SIGTERM", handleSignal);
+      console.error(`Failed to start process: ${err.message}`);
+      resolve({
+        exitCode: 1,
+        signal: null
+      });
+    });
+  });
+}
+function parseCommand(command) {
+  const parts = [];
+  let current = "";
+  let inQuote = false;
+  let quoteChar = "";
+  for (const char of command) {
+    if ((char === '"' || char === "'") && !inQuote) {
+      inQuote = true;
+      quoteChar = char;
+    } else if (char === quoteChar && inQuote) {
+      inQuote = false;
+      quoteChar = "";
+    } else if (char === " " && !inQuote) {
+      if (current) {
+        parts.push(current);
+        current = "";
+      }
+    } else {
+      current += char;
+    }
+  }
+  if (current) {
+    parts.push(current);
+  }
+  return parts;
+}
+function envVarsToObject(variables) {
+  const result = {};
+  for (const v of variables) {
+    if (v.value !== null) {
+      result[v.key] = v.value;
+    }
+  }
+  return result;
+}
+
+// src/commands/build.ts
+function registerBuildCommand(program2) {
+  program2.command("build").description("Build locally with cloud environment variables").option("-a, --app <app>", "Application ID or name (overrides linked app)").option("-c, --command <command>", "Custom build command to run").action(async (options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const profile = getCurrentProfile();
+      if (!profile) throw new AuthError();
+      const client2 = getApiClient();
+      let applicationId;
+      let appName;
+      if (options.app) {
+        const _spinner = startSpinner("Finding application...");
+        const apps = await client2.application.allByOrganization.query();
+        const app = findApp2(apps, options.app);
+        if (!app) {
+          failSpinner();
+          const suggestions = findSimilar(
+            options.app,
+            apps.map((a) => a.name)
+          );
+          throw new NotFoundError("Application", options.app, suggestions);
         }
+        applicationId = app.applicationId;
+        appName = app.name;
+        succeedSpinner();
+      } else if (isProjectLinked()) {
+        const config2 = getProjectConfig();
+        if (!config2) {
+          throw new CliError(
+            "Project config is corrupted. Run 'tarout link' to relink."
+          );
+        }
+        applicationId = config2.applicationId;
+        appName = config2.name;
+      } else {
+        throw new InvalidArgumentError(
+          "No linked application. Run 'tarout link' first or use --app flag."
+        );
+      }
+      const pkg = readPackageJson();
+      if (!pkg) {
+        throw new CliError(
+          "No package.json found in current directory. Make sure you're in a Node.js project."
+        );
+      }
+      const pm = detectPackageManager();
+      let buildCommand = options.command;
+      if (!buildCommand) {
+        buildCommand = getBuildCommand(pkg, pm);
+      }
+      const _envSpinner = startSpinner(
+        `Fetching environment variables for ${appName}...`
+      );
+      let envVars = {};
+      try {
+        const variables = await client2.envVariable.list.query({
+          applicationId,
+          includeValues: true
+        });
+        envVars = envVarsToObject(variables);
+        succeedSpinner(
+          `Loaded ${Object.keys(envVars).length} environment variables`
+        );
+      } catch (err) {
+        failSpinner();
+        throw new CliError(
+          `Failed to fetch environment variables: ${err instanceof Error ? err.message : "Unknown error"}`
+        );
+      }
+      envVars.NODE_ENV = envVars.NODE_ENV || "production";
+      const framework = detectFramework(pkg);
+      if (isJsonMode()) {
+        const startTime2 = Date.now();
+        const result2 = await runCommand(buildCommand, envVars);
+        const duration2 = Math.round((Date.now() - startTime2) / 1e3);
+        outputData({
+          success: result2.exitCode === 0,
+          applicationId,
+          appName,
+          command: buildCommand,
+          framework: framework?.name || "Unknown",
+          envVarCount: Object.keys(envVars).length,
+          packageManager: pm,
+          exitCode: result2.exitCode,
+          duration: duration2
+        });
+        if (result2.exitCode !== 0) {
+          process.exit(result2.exitCode);
+        }
+        return;
+      }
+      log("");
+      log(colors.bold(`Building ${colors.cyan(appName)}`));
+      log("");
+      log(`  Framework:       ${colors.dim(framework?.name || "Unknown")}`);
+      log(`  Package Manager: ${colors.dim(pm)}`);
+      log(`  Command:         ${colors.dim(buildCommand)}`);
+      log(
+        `  Env Variables:   ${colors.dim(String(Object.keys(envVars).length))}`
+      );
+      log("");
+      log(colors.dim("\u2500".repeat(50)));
+      log("");
+      const startTime = Date.now();
+      const result = await runCommand(buildCommand, envVars);
+      const duration = Math.round((Date.now() - startTime) / 1e3);
+      log("");
+      log(colors.dim("\u2500".repeat(50)));
+      log("");
+      if (result.exitCode === 0) {
+        log(colors.success(`Build completed successfully in ${duration}s`));
+        log("");
+        log("Next steps:");
+        log(`  ${colors.dim("tarout deploy")}  - Deploy to cloud`);
+        log("");
+      } else {
+        log(
+          colors.error(
+            `Build failed with exit code ${result.exitCode} (${duration}s)`
+          )
+        );
+        log("");
+        log("Troubleshooting:");
+        log(`  ${colors.dim("1.")} Check the build output above for errors`);
+        log(`  ${colors.dim("2.")} Verify all dependencies are installed`);
+        log(
+          `  ${colors.dim("3.")} Make sure environment variables are correct`
+        );
+        log("");
+        throw new BuildFailedError(
+          `Build failed with exit code ${result.exitCode}`
+        );
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+}
+function findApp2(apps, identifier) {
+  const lowerIdentifier = identifier.toLowerCase();
+  return apps.find(
+    (app) => app.applicationId === identifier || app.applicationId.startsWith(identifier) || app.name.toLowerCase() === lowerIdentifier || app.appName?.toLowerCase() === lowerIdentifier
+  );
+}
+
+// src/commands/db.ts
+import { spawn as spawn2 } from "child_process";
+function registerDbCommands(program2) {
+  const db = program2.command("db").description("Manage databases");
+  db.command("list").alias("ls").description("List all databases").option("-t, --type <type>", "Filter by type (postgres, mysql, redis)").action(async (options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Fetching databases...");
+      const [postgres, mysql, redis] = await Promise.all([
+        client2.postgres.allByOrganization.query(),
+        client2.mysql.allByOrganization.query(),
+        client2.redis.allByOrganization.query()
+      ]);
+      succeedSpinner();
+      let databases = [];
+      if (!options.type || options.type === "postgres") {
+        databases = databases.concat(
+          postgres.map((db2) => ({
+            id: db2.postgresId,
+            name: db2.name,
+            type: "postgres",
+            status: db2.applicationStatus,
+            created: db2.createdAt
+          }))
+        );
+      }
+      if (!options.type || options.type === "mysql") {
+        databases = databases.concat(
+          mysql.map((db2) => ({
+            id: db2.mysqlId,
+            name: db2.name,
+            type: "mysql",
+            status: db2.applicationStatus,
+            created: db2.createdAt
+          }))
+        );
+      }
+      if (!options.type || options.type === "redis") {
+        databases = databases.concat(
+          redis.map((db2) => ({
+            id: db2.redisId,
+            name: db2.name,
+            type: "redis",
+            status: db2.applicationStatus,
+            created: db2.createdAt
+          }))
+        );
+      }
+      if (isJsonMode()) {
+        outputData(databases);
+        return;
+      }
+      if (databases.length === 0) {
+        log("");
+        log("No databases found.");
+        log("");
+        log(`Create one with: ${colors.dim("tarout db create <name>")}`);
+        return;
+      }
+      log("");
+      table(
+        ["ID", "NAME", "TYPE", "STATUS", "CREATED"],
+        databases.map((db2) => [
+          colors.cyan(db2.id.slice(0, 8)),
+          db2.name,
+          getTypeLabel(db2.type),
+          getStatusBadge(db2.status),
+          formatDate2(db2.created)
+        ])
+      );
+      log("");
+      log(
+        colors.dim(
+          `${databases.length} database${databases.length === 1 ? "" : "s"}`
+        )
+      );
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  db.command("create").argument("[name]", "Database name").description("Create a new database").option(
+    "-t, --type <type>",
+    "Database type (postgres, mysql, redis)",
+    "postgres"
+  ).option("-d, --description <description>", "Database description").action(async (name, options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const profile = getCurrentProfile();
+      if (!profile) throw new AuthError();
+      let dbName = name;
+      let dbType = options.type;
+      if (!dbName) {
+        dbName = await input("Database name:");
+      }
+      if (!options.type && !shouldSkipConfirmation()) {
+        dbType = await select("Database type:", [
+          { name: "PostgreSQL", value: "postgres" },
+          { name: "MySQL", value: "mysql" },
+          { name: "Redis", value: "redis" }
+        ]);
+      }
+      const slug = generateSlug2(dbName);
+      const client2 = getApiClient();
+      const _spinner = startSpinner(`Creating ${dbType} database...`);
+      let database;
+      switch (dbType) {
+        case "postgres":
+          database = await client2.postgres.create.mutate({
+            name: dbName,
+            appName: slug,
+            dockerImage: "postgres:17",
+            organizationId: profile.organizationId,
+            description: options.description
+          });
+          break;
+        case "mysql":
+          database = await client2.mysql.create.mutate({
+            name: dbName,
+            appName: slug,
+            dockerImage: "mysql:8",
+            organizationId: profile.organizationId,
+            description: options.description
+          });
+          break;
+        case "redis":
+          database = await client2.redis.create.mutate({
+            name: dbName,
+            appName: slug,
+            dockerImage: "redis:7",
+            organizationId: profile.organizationId,
+            description: options.description
+          });
+          break;
+        default:
+          throw new CliError(
+            `Unsupported database type: ${dbType}`,
+            ExitCode.INVALID_ARGUMENTS
+          );
+      }
+      succeedSpinner("Database created!");
+      const dbId = database.postgresId || database.mysqlId || database.redisId;
+      if (isJsonMode()) {
+        outputData(database);
+        return;
+      }
+      quietOutput(dbId);
+      box("Database Created", [
+        `ID: ${colors.cyan(dbId)}`,
+        `Name: ${database.name}`,
+        `Type: ${getTypeLabel(dbType)}`
+      ]);
+      log("Next steps:");
+      log(
+        `  View connection info: ${colors.dim(`tarout db info ${dbId.slice(0, 8)}`)}`
+      );
+      log("");
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  db.command("delete").alias("rm").argument("<db>", "Database ID or name").description("Delete a database").action(async (dbIdentifier) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Finding database...");
+      const allDbs = await getAllDatabases(client2);
+      const dbInfo = findDatabase(allDbs, dbIdentifier);
+      if (!dbInfo) {
+        failSpinner();
+        const suggestions = findSimilar(
+          dbIdentifier,
+          allDbs.map((d) => d.name)
+        );
+        throw new NotFoundError("Database", dbIdentifier, suggestions);
+      }
+      succeedSpinner();
+      if (!shouldSkipConfirmation()) {
+        log("");
+        log(`Database: ${colors.bold(dbInfo.name)}`);
+        log(`Type: ${getTypeLabel(dbInfo.type)}`);
+        log(`ID: ${colors.dim(dbInfo.id)}`);
+        log("");
+        const confirmed = await confirm(
+          `Are you sure you want to delete "${dbInfo.name}"? This cannot be undone.`,
+          false
+        );
+        if (!confirmed) {
+          log("Cancelled.");
+          return;
+        }
+      }
+      const _deleteSpinner = startSpinner("Deleting database...");
+      switch (dbInfo.type) {
+        case "postgres":
+          await client2.postgres.remove.mutate({ postgresId: dbInfo.id });
+          break;
+        case "mysql":
+          await client2.mysql.remove.mutate({ mysqlId: dbInfo.id });
+          break;
+        case "redis":
+          await client2.redis.remove.mutate({ redisId: dbInfo.id });
+          break;
+      }
+      succeedSpinner("Database deleted!");
+      if (isJsonMode()) {
+        outputData({ deleted: true, id: dbInfo.id });
+      } else {
+        quietOutput(dbInfo.id);
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  db.command("info").argument("<db>", "Database ID or name").description("Show database details and connection info").action(async (dbIdentifier) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Fetching database info...");
+      const allDbs = await getAllDatabases(client2);
+      const dbSummary = findDatabase(allDbs, dbIdentifier);
+      if (!dbSummary) {
+        failSpinner();
+        const suggestions = findSimilar(
+          dbIdentifier,
+          allDbs.map((d) => d.name)
+        );
+        throw new NotFoundError("Database", dbIdentifier, suggestions);
+      }
+      let dbDetails;
+      switch (dbSummary.type) {
+        case "postgres":
+          dbDetails = await client2.postgres.one.query({
+            postgresId: dbSummary.id
+          });
+          break;
+        case "mysql":
+          dbDetails = await client2.mysql.one.query({ mysqlId: dbSummary.id });
+          break;
+        case "redis":
+          dbDetails = await client2.redis.one.query({ redisId: dbSummary.id });
+          break;
+      }
+      succeedSpinner();
+      if (isJsonMode()) {
+        outputData(dbDetails);
+        return;
+      }
+      log("");
+      log(colors.bold(dbDetails.name));
+      log(colors.dim(dbSummary.id));
+      log("");
+      log(`${colors.bold("Status")}`);
+      log(`  ${getStatusBadge(dbDetails.applicationStatus)}`);
+      log(`  Type: ${getTypeLabel(dbSummary.type)}`);
+      log("");
+      log(`${colors.bold("Connection")}`);
+      if (dbSummary.type === "redis") {
+        if (dbDetails.cloudHost) {
+          log(`  Host: ${colors.cyan(dbDetails.cloudHost)}`);
+          log(`  Port: ${dbDetails.cloudPort || 6379}`);
+          if (dbDetails.cloudPassword) {
+            log(`  Password: ${colors.dim("********")}`);
+          }
+        } else {
+          log(`  ${colors.dim("Not yet deployed")}`);
+        }
+      } else {
+        if (dbDetails.cloudInstanceId || dbDetails.databaseName) {
+          log(`  Host: ${colors.cyan(dbDetails.cloudHost || "localhost")}`);
+          log(
+            `  Port: ${dbDetails.cloudPort || (dbSummary.type === "postgres" ? 5432 : 3306)}`
+          );
+          log(
+            `  Database: ${dbDetails.cloudDatabaseName || dbDetails.databaseName}`
+          );
+          log(
+            `  Username: ${dbDetails.cloudUsername || dbDetails.databaseUser}`
+          );
+          log(`  Password: ${colors.dim("********")}`);
+        } else {
+          log(`  ${colors.dim("Not yet deployed")}`);
+        }
+      }
+      log("");
+      if (dbDetails.cloudHost || dbDetails.databaseName) {
+        log(`${colors.bold("Connection String")}`);
+        const connStr = getConnectionString(dbSummary.type, dbDetails);
+        log(`  ${colors.cyan(connStr)}`);
+        log("");
+      }
+      log(`${colors.bold("Created")}`);
+      log(`  ${new Date(dbDetails.createdAt).toLocaleString()}`);
+      log("");
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  db.command("connect").argument("<db>", "Database ID or name").description("Open interactive database shell").action(async (dbIdentifier) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Connecting to database...");
+      const allDbs = await getAllDatabases(client2);
+      const dbSummary = findDatabase(allDbs, dbIdentifier);
+      if (!dbSummary) {
+        failSpinner();
+        const suggestions = findSimilar(
+          dbIdentifier,
+          allDbs.map((d) => d.name)
+        );
+        throw new NotFoundError("Database", dbIdentifier, suggestions);
+      }
+      let dbDetails;
+      switch (dbSummary.type) {
+        case "postgres":
+          dbDetails = await client2.postgres.one.query({
+            postgresId: dbSummary.id
+          });
+          break;
+        case "mysql":
+          dbDetails = await client2.mysql.one.query({ mysqlId: dbSummary.id });
+          break;
+        case "redis":
+          dbDetails = await client2.redis.one.query({ redisId: dbSummary.id });
+          break;
+      }
+      succeedSpinner();
+      if (!dbDetails.cloudHost && !dbDetails.databaseName) {
+        throw new CliError(
+          "Database not deployed yet. Deploy first.",
+          ExitCode.GENERAL_ERROR
+        );
+      }
+      const { command, args, env } = getConnectCommand(
+        dbSummary.type,
+        dbDetails
+      );
+      log("");
+      log(`Connecting to ${colors.bold(dbDetails.name)}...`);
+      log(colors.dim("Press Ctrl+D to exit"));
+      log("");
+      const child = spawn2(command, args, {
+        stdio: "inherit",
+        env: { ...process.env, ...env }
+      });
+      child.on("exit", (code) => {
+        process.exit(code || 0);
+      });
+    } catch (err) {
+      handleError(err);
+    }
+  });
+}
+async function getAllDatabases(client2) {
+  const [postgres, mysql, redis] = await Promise.all([
+    client2.postgres.allByOrganization.query(),
+    client2.mysql.allByOrganization.query(),
+    client2.redis.allByOrganization.query()
+  ]);
+  const databases = [];
+  for (const db of postgres) {
+    databases.push({
+      id: db.postgresId,
+      name: db.name,
+      type: "postgres",
+      status: db.applicationStatus
+    });
+  }
+  for (const db of mysql) {
+    databases.push({
+      id: db.mysqlId,
+      name: db.name,
+      type: "mysql",
+      status: db.applicationStatus
+    });
+  }
+  for (const db of redis) {
+    databases.push({
+      id: db.redisId,
+      name: db.name,
+      type: "redis",
+      status: db.applicationStatus
+    });
+  }
+  return databases;
+}
+function findDatabase(databases, identifier) {
+  const lowerIdentifier = identifier.toLowerCase();
+  return databases.find(
+    (db) => db.id === identifier || db.id.startsWith(identifier) || db.name.toLowerCase() === lowerIdentifier
+  );
+}
+function generateSlug2(name) {
+  return name.toLowerCase().replace(/[^a-z0-9]+/g, "-").replace(/^-+|-+$/g, "").slice(0, 63);
+}
+function formatDate2(date) {
+  const d = new Date(date);
+  return d.toLocaleDateString("en-US", { month: "short", day: "numeric" });
+}
+function getTypeLabel(type) {
+  const labels = {
+    postgres: colors.info("PostgreSQL"),
+    mysql: colors.warn("MySQL"),
+    redis: colors.error("Redis")
+  };
+  return labels[type] || type;
+}
+function getConnectionString(type, details) {
+  const host = details.cloudHost || "localhost";
+  const user = details.cloudUsername || details.databaseUser || "user";
+  const dbName = details.cloudDatabaseName || details.databaseName || "db";
+  switch (type) {
+    case "postgres": {
+      const pgPort = details.cloudPort || 5432;
+      return `postgresql://${user}:****@${host}:${pgPort}/${dbName}`;
+    }
+    case "mysql": {
+      const myPort = details.cloudPort || 3306;
+      return `mysql://${user}:****@${host}:${myPort}/${dbName}`;
+    }
+    case "redis": {
+      const redisPort = details.cloudPort || 6379;
+      return `redis://:****@${host}:${redisPort}`;
+    }
+    default:
+      return "";
+  }
+}
+function getConnectCommand(type, details) {
+  const host = details.cloudHost || "localhost";
+  const user = details.cloudUsername || details.databaseUser || "user";
+  const password = details.cloudPassword || details.databasePassword || "";
+  const dbName = details.cloudDatabaseName || details.databaseName || "db";
+  switch (type) {
+    case "postgres":
+      return {
+        command: "psql",
+        args: [
+          "-h",
+          host,
+          "-p",
+          String(details.cloudPort || 5432),
+          "-U",
+          user,
+          "-d",
+          dbName
+        ],
+        env: { PGPASSWORD: password }
+      };
+    case "mysql":
+      return {
+        command: "mysql",
+        args: [
+          "-h",
+          host,
+          "-P",
+          String(details.cloudPort || 3306),
+          "-u",
+          user,
+          `-p${password}`,
+          dbName
+        ],
+        env: {}
+      };
+    case "redis":
+      return {
+        command: "redis-cli",
+        args: [
+          "-h",
+          host,
+          "-p",
+          String(details.cloudPort || 6379),
+          ...password ? ["-a", password] : []
+        ],
+        env: {}
+      };
+    default:
+      throw new CliError(
+        `Unsupported database type: ${type}`,
+        ExitCode.INVALID_ARGUMENTS
+      );
+  }
+}
+
+// src/lib/websocket.ts
+import WebSocket from "ws";
+function streamDeploymentLogs(logPath, options) {
+  const token = getToken();
+  const apiUrl = getApiUrl();
+  const wsUrl = apiUrl.replace(/^http/, "ws");
+  const fullUrl = `${wsUrl}/listen-deployment?logPath=${encodeURIComponent(logPath)}`;
+  const ws = new WebSocket(fullUrl, {
+    headers: {
+      "x-api-key": token || ""
+    }
+  });
+  let buffer = "";
+  const done = new Promise((resolve) => {
+    ws.on("close", (code, reason) => {
+      if (buffer.length > 0) {
+        options.onData(buffer);
+      }
+      options.onClose?.(code, reason.toString());
+      resolve({ code, reason: reason.toString() });
+    });
+  });
+  ws.on("open", () => {
+    options.onOpen?.();
+  });
+  ws.on("message", (data) => {
+    buffer += data.toString();
+    const lines = buffer.split("\n");
+    buffer = lines.pop() || "";
+    for (const line of lines) {
+      if (line.length > 0) {
+        options.onData(line);
+      }
+    }
+  });
+  ws.on("error", (error2) => {
+    options.onError?.(error2);
+  });
+  const cleanup = () => {
+    if (ws.readyState === WebSocket.OPEN) {
+      ws.close();
+    }
+  };
+  return { cleanup, done };
+}
+
+// src/commands/deploy.ts
+function registerDeployCommands(program2) {
+  program2.command("deploy").argument("<app>", "Application ID or name").description("Deploy an application").option("-r, --region <region>", "Deployment region", "me-central1").option("-w, --wait", "Wait for deployment to complete and stream logs").action(async (appIdentifier, options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Finding application...");
+      const apps = await client2.application.allByOrganization.query();
+      const app = findApp3(apps, appIdentifier);
+      if (!app) {
+        failSpinner();
+        const suggestions = findSimilar(
+          appIdentifier,
+          apps.map((a) => a.name)
+        );
+        throw new NotFoundError("Application", appIdentifier, suggestions);
+      }
+      updateSpinner(`Deploying ${app.name}...`);
+      const result = await client2.application.deployToCloud.mutate({
+        applicationId: app.applicationId,
+        region: options.region
+      });
+      if (options.wait) {
+        await streamDeploymentWithLogs(
+          client2,
+          result.deploymentId,
+          app.name,
+          app.applicationId
+        );
+        return;
+      }
+      succeedSpinner("Deployment started!");
+      if (isJsonMode()) {
+        outputData({
+          deploymentId: result.deploymentId,
+          status: "deploying"
+        });
+      } else {
+        quietOutput(result.deploymentId);
+        log("");
+        log(`Deployment ID: ${colors.cyan(result.deploymentId)}`);
+        log("");
+        log("Deployment is running in the background.");
+        log(
+          `Check status: ${colors.dim(`tarout deploy:status ${app.applicationId.slice(0, 8)}`)}`
+        );
+        log(
+          `View logs: ${colors.dim(`tarout deploy:logs ${result.deploymentId.slice(0, 8)}`)}`
+        );
+        log("");
       }
     } catch (err) {
       handleError(err);
@@ -980,9 +2254,9 @@ function registerDeployCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching status...");
+      const _spinner = startSpinner("Fetching status...");
       const apps = await client2.application.allByOrganization.query();
-      const appSummary = findApp2(apps, appIdentifier);
+      const appSummary = findApp3(apps, appIdentifier);
       if (!appSummary) {
         failSpinner();
         const suggestions = findSimilar(
@@ -1029,9 +2303,9 @@ function registerDeployCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Cancelling deployment...");
+      const _spinner = startSpinner("Cancelling deployment...");
       const apps = await client2.application.allByOrganization.query();
-      const app = findApp2(apps, appIdentifier);
+      const app = findApp3(apps, appIdentifier);
       if (!app) {
         failSpinner();
         const suggestions = findSimilar(
@@ -1055,9 +2329,9 @@ function registerDeployCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching deployments...");
+      const _spinner = startSpinner("Fetching deployments...");
       const apps = await client2.application.allByOrganization.query();
-      const appSummary = findApp2(apps, appIdentifier);
+      const appSummary = findApp3(apps, appIdentifier);
       if (!appSummary) {
         failSpinner();
         const suggestions = findSimilar(
@@ -1070,7 +2344,10 @@ function registerDeployCommands(program2) {
         applicationId: appSummary.applicationId
       });
       succeedSpinner();
-      const limitedDeployments = deployments.slice(0, parseInt(options.limit, 10));
+      const limitedDeployments = deployments.slice(
+        0,
+        Number.parseInt(options.limit, 10)
+      );
       if (isJsonMode()) {
         outputData(limitedDeployments);
         return;
@@ -1079,7 +2356,9 @@ function registerDeployCommands(program2) {
         log("");
         log("No deployments found.");
         log("");
-        log(`Deploy with: ${colors.dim(`tarout deploy ${appSummary.applicationId.slice(0, 8)}`)}`);
+        log(
+          `Deploy with: ${colors.dim(`tarout deploy ${appSummary.applicationId.slice(0, 8)}`)}`
+        );
         return;
       }
       log("");
@@ -1089,24 +2368,277 @@ function registerDeployCommands(program2) {
           colors.cyan(d.deploymentId.slice(0, 8)),
           getStatusBadge(d.status),
           d.title || colors.dim("-"),
-          formatDate2(d.createdAt)
+          formatDate3(d.createdAt)
         ])
       );
       log("");
-      log(colors.dim(`${limitedDeployments.length} deployment${limitedDeployments.length === 1 ? "" : "s"}`));
+      log(
+        colors.dim(
+          `${limitedDeployments.length} deployment${limitedDeployments.length === 1 ? "" : "s"}`
+        )
+      );
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  program2.command("deploy:logs").argument("<deployment-id>", "Deployment ID").description("View deployment logs").option(
+    "-f, --follow",
+    "Stream logs in real-time (for running deployments)"
+  ).option("--no-stream", "Fetch logs via HTTP instead of WebSocket").action(async (deploymentId, options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Fetching deployment...");
+      let deployment;
+      try {
+        deployment = await client2.deployment.one.query({ deploymentId });
+      } catch {
+        failSpinner();
+        throw new NotFoundError("Deployment", deploymentId);
+      }
+      succeedSpinner();
+      const isRunning = deployment.status === "running";
+      const shouldStream = options.follow || isRunning && options.stream !== false;
+      if (shouldStream && deployment.logPath) {
+        log("");
+        log(
+          colors.dim(
+            `Streaming logs for deployment ${colors.cyan(deployment.deploymentId.slice(0, 8))}...`
+          )
+        );
+        log(colors.dim("Press Ctrl+C to stop"));
+        log("");
+        const logLines = [];
+        const errors = [];
+        let finalStatus = deployment.status;
+        const { cleanup, done } = streamDeploymentLogs(deployment.logPath, {
+          onData: (line) => {
+            logLines.push(line);
+            if (isErrorLine(line)) {
+              errors.push(line);
+            }
+            if (!isJsonMode()) {
+              printLogLine(line);
+            }
+          },
+          onError: (error2) => {
+            if (!isJsonMode()) {
+              log(colors.error(`WebSocket error: ${error2.message}`));
+            }
+          }
+        });
+        process.on("SIGINT", () => {
+          cleanup();
+          if (!isJsonMode()) {
+            log("");
+            log(colors.dim("Log streaming stopped"));
+          }
+          process.exit(0);
+        });
+        await done;
+        const finalDeployment = await client2.deployment.one.query({
+          deploymentId
+        });
+        finalStatus = finalDeployment.status;
+        if (isJsonMode()) {
+          const analysis = finalStatus === "error" ? analyzeDeploymentError(logLines, finalDeployment.errorMessage) : void 0;
+          outputData({
+            deploymentId: deployment.deploymentId,
+            status: finalStatus,
+            logs: logLines,
+            errors: errors.length > 0 ? errors : void 0,
+            errorAnalysis: analysis,
+            application: deployment.application
+          });
+        } else {
+          log("");
+          log(
+            `Final status: ${getStatusBadge(finalStatus)} ${finalStatus === "error" && finalDeployment.errorMessage ? `- ${finalDeployment.errorMessage}` : ""}`
+          );
+        }
+      } else {
+        const logsResult = await client2.deployment.getDeploymentLogs.query({
+          deploymentId,
+          offset: 0,
+          limit: 5e3
+        });
+        if (isJsonMode()) {
+          const errors = logsResult.lines.filter(isErrorLine);
+          const analysis = deployment.status === "error" ? analyzeDeploymentError(
+            logsResult.lines,
+            deployment.errorMessage
+          ) : void 0;
+          outputData({
+            deploymentId: deployment.deploymentId,
+            status: deployment.status,
+            logs: logsResult.lines,
+            totalLines: logsResult.totalLines,
+            errors: errors.length > 0 ? errors : void 0,
+            errorAnalysis: analysis,
+            application: deployment.application
+          });
+          return;
+        }
+        if (logsResult.lines.length === 0) {
+          log("");
+          log("No logs available for this deployment.");
+          return;
+        }
+        log("");
+        log(
+          colors.dim(
+            `Logs for deployment ${colors.cyan(deployment.deploymentId.slice(0, 8))} (${logsResult.totalLines} lines):`
+          )
+        );
+        log("");
+        for (const line of logsResult.lines) {
+          printLogLine(line);
+        }
+        if (logsResult.hasMore) {
+          log("");
+          log(
+            colors.dim(
+              `Showing ${logsResult.lines.length} of ${logsResult.totalLines} lines`
+            )
+          );
+        }
+        log("");
+        log(`Status: ${getStatusBadge(deployment.status)}`);
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  program2.command("deploy:rollback").argument("<app>", "Application ID or name").description("Rollback to a previous deployment").option("--to <deployment-id>", "Specific deployment ID to rollback to").option("--previous", "Rollback to the immediately previous deployment").option("-w, --wait", "Wait for rollback to complete").action(async (appIdentifier, options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Finding application...");
+      const apps = await client2.application.allByOrganization.query();
+      const appSummary = findApp3(apps, appIdentifier);
+      if (!appSummary) {
+        failSpinner();
+        const suggestions = findSimilar(
+          appIdentifier,
+          apps.map((a) => a.name)
+        );
+        throw new NotFoundError("Application", appIdentifier, suggestions);
+      }
+      const deployments = await client2.deployment.all.query({
+        applicationId: appSummary.applicationId
+      });
+      succeedSpinner();
+      const successfulDeployments = deployments.filter(
+        (d) => d.status === "done"
+      );
+      if (successfulDeployments.length === 0) {
+        log("");
+        log("No successful deployments found to rollback to.");
+        return;
+      }
+      let targetDeploymentId;
+      if (options.to) {
+        const targetDeployment = successfulDeployments.find(
+          (d) => d.deploymentId === options.to || d.deploymentId.startsWith(options.to)
+        );
+        if (!targetDeployment) {
+          throw new NotFoundError("Deployment", options.to);
+        }
+        targetDeploymentId = targetDeployment.deploymentId;
+      } else if (options.previous) {
+        if (successfulDeployments.length < 2) {
+          log("");
+          log("No previous deployment to rollback to.");
+          log("There must be at least 2 successful deployments.");
+          return;
+        }
+        targetDeploymentId = successfulDeployments[1].deploymentId;
+      } else {
+        log("");
+        log(
+          `Select a deployment to rollback to for ${colors.cyan(appSummary.name)}:`
+        );
+        log("");
+        const choices = successfulDeployments.slice(0, 10).map((d, index) => ({
+          name: `${colors.cyan(d.deploymentId.slice(0, 8))} - ${d.title || "Deployment"} (${formatDate3(d.createdAt)})${index === 0 ? colors.dim(" [current]") : ""}`,
+          value: d.deploymentId
+        }));
+        const { select: select2 } = await import("./prompts-B53LIJLG.js");
+        targetDeploymentId = await select2("Select deployment:", choices);
+      }
+      if (!options.yes) {
+        const targetDeployment = successfulDeployments.find(
+          (d) => d.deploymentId === targetDeploymentId
+        );
+        log("");
+        log(`Rolling back ${colors.cyan(appSummary.name)} to:`);
+        log(`  Deployment: ${colors.cyan(targetDeploymentId.slice(0, 8))}`);
+        log(`  Title: ${targetDeployment?.title || "Deployment"}`);
+        log(`  Created: ${formatDate3(targetDeployment?.createdAt)}`);
+        log("");
+        const { confirm: confirm2 } = await import("./prompts-B53LIJLG.js");
+        const confirmed = await confirm2(
+          "Are you sure you want to rollback?",
+          false
+        );
+        if (!confirmed) {
+          log("Cancelled.");
+          return;
+        }
+      }
+      const _rollbackSpinner = startSpinner("Initiating rollback...");
+      const result = await client2.deployment.rollback.mutate({
+        applicationId: appSummary.applicationId,
+        targetDeploymentId
+      });
+      if (options.wait) {
+        await streamDeploymentWithLogs(
+          client2,
+          result.deploymentId,
+          appSummary.name,
+          appSummary.applicationId
+        );
+        return;
+      }
+      succeedSpinner("Rollback initiated!");
+      if (isJsonMode()) {
+        outputData({
+          deploymentId: result.deploymentId,
+          rollbackFrom: targetDeploymentId,
+          status: "running"
+        });
+      } else {
+        quietOutput(result.deploymentId);
+        log("");
+        log(`Deployment ID: ${colors.cyan(result.deploymentId)}`);
+        log(`Rolling back to: ${colors.dim(targetDeploymentId.slice(0, 8))}`);
+        log("");
+        log("Rollback is running in the background.");
+        log(
+          `Check status: ${colors.dim(`tarout deploy:status ${appSummary.applicationId.slice(0, 8)}`)}`
+        );
+        log(
+          `View logs: ${colors.dim(`tarout deploy:logs ${result.deploymentId.slice(0, 8)}`)}`
+        );
+        log("");
+      }
     } catch (err) {
       handleError(err);
     }
   });
 }
 function registerLogsCommand(program2) {
-  program2.command("logs").argument("<app>", "Application ID or name").description("View application logs").option("-l, --level <level>", "Log level (ALL, ERROR, WARN, INFO, DEBUG)", "ALL").option("-f, --follow", "Stream logs continuously").option("-n, --limit <number>", "Number of logs to show", "100").option("--since <duration>", "Show logs since (e.g., 1h, 30m, 2d)").action(async (appIdentifier, options) => {
+  program2.command("logs").argument("<app>", "Application ID or name").description("View application logs").option(
+    "-l, --level <level>",
+    "Log level (ALL, ERROR, WARN, INFO, DEBUG)",
+    "ALL"
+  ).option("-f, --follow", "Stream logs continuously").option("-n, --limit <number>", "Number of logs to show", "100").option("--since <duration>", "Show logs since (e.g., 1h, 30m, 2d)").action(async (appIdentifier, options) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching logs...");
+      const _spinner = startSpinner("Fetching logs...");
       const apps = await client2.application.allByOrganization.query();
-      const app = findApp2(apps, appIdentifier);
+      const app = findApp3(apps, appIdentifier);
       if (!app) {
         failSpinner();
         const suggestions = findSimilar(
@@ -1128,7 +2660,7 @@ function registerLogsCommand(program2) {
       const logs = await client2.logs.getCloudRunLogs.query({
         applicationId: app.applicationId,
         level: options.level.toUpperCase(),
-        limit: parseInt(options.limit, 10),
+        limit: Number.parseInt(options.limit, 10),
         timeRange
       });
       succeedSpinner();
@@ -1149,7 +2681,9 @@ function registerLogsCommand(program2) {
         log("");
         log(colors.dim("Streaming logs... (Ctrl+C to stop)"));
         log("");
-        let lastTimestamp = logs.entries.length > 0 ? new Date(logs.entries[logs.entries.length - 1].timestamp).getTime() : Date.now();
+        let lastTimestamp = logs.entries.length > 0 ? new Date(
+          logs.entries[logs.entries.length - 1].timestamp
+        ).getTime() : Date.now();
         while (true) {
           await sleep(2e3);
           const newLogs = await client2.logs.getCloudRunLogs.query({
@@ -1177,13 +2711,13 @@ function registerLogsCommand(program2) {
     }
   });
 }
-function findApp2(apps, identifier) {
+function findApp3(apps, identifier) {
   const lowerIdentifier = identifier.toLowerCase();
   return apps.find(
     (app) => app.applicationId === identifier || app.applicationId.startsWith(identifier) || app.name.toLowerCase() === lowerIdentifier || app.appName?.toLowerCase() === lowerIdentifier
   );
 }
-function formatDate2(date) {
+function formatDate3(date) {
   const d = new Date(date);
   return d.toLocaleString("en-US", {
     month: "short",
@@ -1198,7 +2732,7 @@ function sleep(ms) {
 function parseDuration(duration) {
   const match = duration.match(/^(\d+)(s|m|h|d)$/);
   if (!match) return null;
-  const value = parseInt(match[1], 10);
+  const value = Number.parseInt(match[1], 10);
   const unit = match[2];
   const multipliers = {
     s: 1e3,
@@ -1221,425 +2755,469 @@ function printLogEntry(entry) {
     WARN: colors.warn,
     INFO: colors.info,
     DEBUG: colors.dim,
-    DEFAULT: colors.dim
-  };
-  const colorFn = levelColors[entry.severity] || levelColors.DEFAULT;
-  const level = entry.severity.padEnd(5);
-  console.log(`${colors.dim(timeStr)}  ${colorFn(level)}  ${entry.message}`);
-}
-
-// src/commands/env.ts
-import { readFileSync, writeFileSync, existsSync } from "fs";
-function registerEnvCommands(program2) {
-  const env = program2.command("env").argument("<app>", "Application ID or name").description("Manage environment variables");
-  env.command("list").alias("ls").description("List all environment variables").option("--reveal", "Show actual values (not masked)").action(async (options, command) => {
-    try {
-      if (!isLoggedIn()) throw new AuthError();
-      const appIdentifier = command.parent.args[0];
-      const client2 = getApiClient();
-      const spinner = startSpinner("Fetching environment variables...");
-      const apps = await client2.application.allByOrganization.query();
-      const app = findApp3(apps, appIdentifier);
-      if (!app) {
-        failSpinner();
-        const suggestions = findSimilar(
-          appIdentifier,
-          apps.map((a) => a.name)
-        );
-        throw new NotFoundError("Application", appIdentifier, suggestions);
-      }
-      const variables = await client2.envVariable.list.query({
-        applicationId: app.applicationId,
-        includeValues: options.reveal || false
-      });
-      succeedSpinner();
-      if (isJsonMode()) {
-        outputData(variables);
-        return;
-      }
-      if (variables.length === 0) {
-        log("");
-        log("No environment variables found.");
-        log("");
-        log(`Set one with: ${colors.dim(`tarout env ${app.name} set KEY=value`)}`);
-        return;
-      }
-      log("");
-      table(
-        ["KEY", "VALUE", "SECRET", "UPDATED"],
-        variables.map((v) => [
-          colors.cyan(v.key),
-          options.reveal ? v.value || colors.dim("-") : maskValue(v.value),
-          v.isSecret ? colors.warn("Yes") : "No",
-          formatDate3(v.updatedAt)
-        ])
-      );
-      log("");
-      log(colors.dim(`${variables.length} variable${variables.length === 1 ? "" : "s"}`));
-    } catch (err) {
-      handleError(err);
-    }
-  });
-  env.command("set").argument("<key=value>", "Variable to set (KEY=value format)").description("Set an environment variable").option("-s, --secret", "Mark as secret (default)", true).option("--no-secret", "Mark as non-secret").action(async (keyValue, options, command) => {
-    try {
-      if (!isLoggedIn()) throw new AuthError();
-      const appIdentifier = command.parent.parent.args[0];
-      const eqIndex = keyValue.indexOf("=");
-      if (eqIndex === -1) {
-        throw new InvalidArgumentError(
-          "Invalid format. Use KEY=value (e.g., API_KEY=secret123)"
-        );
-      }
-      const key = keyValue.slice(0, eqIndex);
-      const value = keyValue.slice(eqIndex + 1);
-      if (!key) {
-        throw new InvalidArgumentError("Key cannot be empty");
-      }
-      const client2 = getApiClient();
-      const spinner = startSpinner("Setting environment variable...");
-      const apps = await client2.application.allByOrganization.query();
-      const app = findApp3(apps, appIdentifier);
-      if (!app) {
-        failSpinner();
-        const suggestions = findSimilar(
-          appIdentifier,
-          apps.map((a) => a.name)
-        );
-        throw new NotFoundError("Application", appIdentifier, suggestions);
-      }
-      const existing = await client2.envVariable.list.query({
-        applicationId: app.applicationId,
-        includeValues: false
-      });
-      const existingVar = existing.find((v) => v.key === key);
-      if (existingVar) {
-        await client2.envVariable.update.mutate({
-          applicationId: app.applicationId,
-          key,
-          value,
-          isSecret: options.secret
-        });
-      } else {
-        await client2.envVariable.create.mutate({
-          applicationId: app.applicationId,
-          key,
-          value,
-          isSecret: options.secret
-        });
+    DEFAULT: colors.dim
+  };
+  const colorFn = levelColors[entry.severity] || levelColors.DEFAULT;
+  const level = entry.severity.padEnd(5);
+  console.log(`${colors.dim(timeStr)}  ${colorFn(level)}  ${entry.message}`);
+}
+async function streamDeploymentWithLogs(client2, deploymentId, appName, applicationId) {
+  stopSpinner();
+  let deployment;
+  try {
+    deployment = await client2.deployment.one.query({ deploymentId });
+  } catch {
+    throw new NotFoundError("Deployment", deploymentId);
+  }
+  const logLines = [];
+  const errors = [];
+  const startTime = Date.now();
+  let wsConnected = false;
+  let lastStatus = deployment.status;
+  if (!isJsonMode()) {
+    log("");
+    log(
+      `${colors.bold(appName)} - Deployment ${colors.cyan(deploymentId.slice(0, 8))}`
+    );
+    log(colors.dim("\u2500".repeat(50)));
+    log("");
+  }
+  let cleanup = null;
+  if (deployment.logPath) {
+    const stream = streamDeploymentLogs(deployment.logPath, {
+      onData: (line) => {
+        logLines.push(line);
+        if (isErrorLine(line)) {
+          errors.push(line);
+        }
+        if (!isJsonMode()) {
+          printLogLine(line);
+        }
+      },
+      onOpen: () => {
+        wsConnected = true;
+      },
+      onError: () => {
+        if (!isJsonMode() && wsConnected) {
+          log(colors.dim("[WebSocket reconnecting...]"));
+        }
       }
-      succeedSpinner(`Set ${key}`);
-      if (isJsonMode()) {
-        outputData({ key, updated: !!existingVar });
-      } else {
-        quietOutput(key);
+    });
+    cleanup = stream.cleanup;
+  }
+  const maxWaitMs = 6e5;
+  const pollIntervalMs = 3e3;
+  try {
+    while (Date.now() - startTime < maxWaitMs) {
+      await sleep(pollIntervalMs);
+      const updatedDeployment = await client2.deployment.one.query({
+        deploymentId
+      });
+      lastStatus = updatedDeployment.status;
+      if (lastStatus === "done") {
+        await sleep(500);
+        cleanup?.();
+        const finalApp = await client2.application.one.query({ applicationId });
+        const duration2 = Math.round((Date.now() - startTime) / 1e3);
+        if (isJsonMode()) {
+          outputData({
+            success: true,
+            data: {
+              deploymentId,
+              status: "done",
+              url: finalApp.cloudServiceUrl,
+              duration: duration2,
+              logs: logLines
+            }
+          });
+        } else {
+          log("");
+          log(colors.dim("\u2500".repeat(50)));
+          log(colors.success("\u2713 Deployment successful!"));
+          log("");
+          log(`URL: ${colors.cyan(finalApp.cloudServiceUrl || "Pending...")}`);
+          log(`Duration: ${colors.dim(`${duration2}s`)}`);
+          log("");
+        }
+        return;
       }
-    } catch (err) {
-      handleError(err);
-    }
-  });
-  env.command("unset").argument("<key>", "Variable key to remove").description("Remove an environment variable").action(async (key, options, command) => {
-    try {
-      if (!isLoggedIn()) throw new AuthError();
-      const appIdentifier = command.parent.parent.args[0];
-      const client2 = getApiClient();
-      const spinner = startSpinner("Removing environment variable...");
-      const apps = await client2.application.allByOrganization.query();
-      const app = findApp3(apps, appIdentifier);
-      if (!app) {
-        failSpinner();
-        const suggestions = findSimilar(
-          appIdentifier,
-          apps.map((a) => a.name)
+      if (lastStatus === "error" || lastStatus === "cancelled") {
+        cleanup?.();
+        const errorAnalysis = analyzeDeploymentError(
+          logLines,
+          updatedDeployment.errorMessage
+        );
+        const duration2 = Math.round((Date.now() - startTime) / 1e3);
+        if (isJsonMode()) {
+          outputData({
+            success: false,
+            error: {
+              code: errorAnalysis.category === "build_script" || errorAnalysis.category === "npm_install" || errorAnalysis.category === "typescript" ? "BUILD_FAILED" : "DEPLOYMENT_FAILED",
+              message: updatedDeployment.errorMessage || "Deployment failed",
+              deploymentId,
+              duration: duration2,
+              logs: logLines,
+              errors: errors.length > 0 ? errors : void 0,
+              errorAnalysis
+            }
+          });
+        } else {
+          log("");
+          log(colors.dim("\u2500".repeat(50)));
+          log(colors.error("\u2717 Deployment failed"));
+          log("");
+          if (updatedDeployment.errorMessage) {
+            log(`Error: ${colors.error(updatedDeployment.errorMessage)}`);
+          }
+          if (errorAnalysis.category !== "unknown") {
+            log("");
+            log(colors.bold("Error Analysis:"));
+            log(`  Category: ${errorAnalysis.category}`);
+            log(`  Type: ${errorAnalysis.type}`);
+            log("");
+            log(colors.bold("Possible Causes:"));
+            for (const cause of errorAnalysis.possibleCauses.slice(0, 3)) {
+              log(`  \u2022 ${cause}`);
+            }
+            log("");
+            log(colors.bold("Suggested Fixes:"));
+            for (const fix of errorAnalysis.suggestedFixes.slice(0, 3)) {
+              log(`  \u2022 ${fix}`);
+            }
+          }
+          log("");
+        }
+        if (errorAnalysis.category === "build_script" || errorAnalysis.category === "npm_install" || errorAnalysis.category === "typescript" || errorAnalysis.category === "docker_build") {
+          throw new BuildFailedError(
+            updatedDeployment.errorMessage || "Build failed",
+            deploymentId,
+            errorAnalysis
+          );
+        }
+        throw new DeploymentFailedError(
+          updatedDeployment.errorMessage || "Deployment failed",
+          deploymentId,
+          errorAnalysis
         );
-        throw new NotFoundError("Application", appIdentifier, suggestions);
       }
-      await client2.envVariable.delete.mutate({
-        applicationId: app.applicationId,
-        key
+    }
+    cleanup?.();
+    const duration = Math.round((Date.now() - startTime) / 1e3);
+    if (isJsonMode()) {
+      outputData({
+        success: false,
+        error: {
+          code: "DEPLOYMENT_TIMEOUT",
+          message: "Deployment timed out",
+          deploymentId,
+          duration,
+          logs: logLines,
+          errors: errors.length > 0 ? errors : void 0
+        }
       });
-      succeedSpinner(`Removed ${key}`);
-      if (isJsonMode()) {
-        outputData({ key, deleted: true });
-      } else {
-        quietOutput(key);
-      }
-    } catch (err) {
-      handleError(err);
+    } else {
+      log("");
+      log(colors.dim("\u2500".repeat(50)));
+      log(colors.warn("\u26A0 Deployment timed out"));
+      log("");
+      log(
+        `The deployment is still running. Check status with: ${colors.dim(`tarout deploy:status ${applicationId.slice(0, 8)}`)}`
+      );
+      log("");
     }
-  });
-  env.command("pull").description("Download environment variables as .env file").option("-o, --output <file>", "Output file path", ".env").option("--reveal", "Include actual secret values").action(async (options, command) => {
+    throw new DeploymentTimeoutError(
+      "Deployment timed out after 10 minutes",
+      deploymentId
+    );
+  } finally {
+    cleanup?.();
+  }
+}
+function isErrorLine(line) {
+  const errorPatterns = [
+    /error/i,
+    /ERR!/i,
+    /failed/i,
+    /fatal/i,
+    /exception/i,
+    /ENOENT/i,
+    /EACCES/i,
+    /EPERM/i
+  ];
+  return errorPatterns.some((pattern) => pattern.test(line));
+}
+function printLogLine(line) {
+  if (isErrorLine(line)) {
+    console.log(colors.error(line));
+  } else if (/warn/i.test(line)) {
+    console.log(colors.warn(line));
+  } else if (/step|stage|building|installing|deploying/i.test(line)) {
+    console.log(colors.info(line));
+  } else {
+    console.log(line);
+  }
+}
+
+// src/commands/dev.ts
+function registerDevCommand(program2) {
+  program2.command("dev").description(
+    "Run local development server with cloud environment variables"
+  ).option("-a, --app <app>", "Application ID or name (overrides linked app)").option("-p, --port <port>", "Port to run the dev server on").option("-c, --command <command>", "Custom dev command to run").action(async (options) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
-      const appIdentifier = command.parent.parent.args[0];
+      const profile = getCurrentProfile();
+      if (!profile) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Downloading environment variables...");
-      const apps = await client2.application.allByOrganization.query();
-      const app = findApp3(apps, appIdentifier);
-      if (!app) {
-        failSpinner();
-        const suggestions = findSimilar(
-          appIdentifier,
-          apps.map((a) => a.name)
-        );
-        throw new NotFoundError("Application", appIdentifier, suggestions);
-      }
-      if (existsSync(options.output) && !shouldSkipConfirmation()) {
+      let applicationId;
+      let appName;
+      if (options.app) {
+        const _spinner = startSpinner("Finding application...");
+        const apps = await client2.application.allByOrganization.query();
+        const app = findApp4(apps, options.app);
+        if (!app) {
+          failSpinner();
+          const suggestions = findSimilar(
+            options.app,
+            apps.map((a) => a.name)
+          );
+          throw new NotFoundError("Application", options.app, suggestions);
+        }
+        applicationId = app.applicationId;
+        appName = app.name;
         succeedSpinner();
-        const confirmed = await confirm(
-          `File ${options.output} already exists. Overwrite?`,
-          false
-        );
-        if (!confirmed) {
-          log("Cancelled.");
-          return;
+      } else if (isProjectLinked()) {
+        const config2 = getProjectConfig();
+        if (!config2) {
+          throw new CliError(
+            "Project config is corrupted. Run 'tarout link' to relink."
+          );
         }
-      }
-      const result = await client2.envVariable.export.query({
-        applicationId: app.applicationId,
-        format: "dotenv",
-        maskSecrets: !options.reveal
-      });
-      writeFileSync(options.output, result.content);
-      succeedSpinner(`Saved to ${options.output}`);
-      if (isJsonMode()) {
-        outputData({ file: options.output, content: result.content });
+        applicationId = config2.applicationId;
+        appName = config2.name;
       } else {
-        quietOutput(options.output);
+        throw new InvalidArgumentError(
+          "No linked application. Run 'tarout link' first or use --app flag."
+        );
       }
-    } catch (err) {
-      handleError(err);
-    }
-  });
-  env.command("push").description("Upload environment variables from .env file").option("-i, --input <file>", "Input file path", ".env").option("--replace", "Replace all existing variables (default: merge)").action(async (options, command) => {
-    try {
-      if (!isLoggedIn()) throw new AuthError();
-      const appIdentifier = command.parent.parent.args[0];
-      if (!existsSync(options.input)) {
-        throw new InvalidArgumentError(`File not found: ${options.input}`);
+      const pkg = readPackageJson();
+      if (!pkg) {
+        throw new CliError(
+          "No package.json found in current directory. Make sure you're in a Node.js project."
+        );
       }
-      const content = readFileSync(options.input, "utf-8");
-      const client2 = getApiClient();
-      const spinner = startSpinner("Uploading environment variables...");
-      const apps = await client2.application.allByOrganization.query();
-      const app = findApp3(apps, appIdentifier);
-      if (!app) {
+      const pm = detectPackageManager();
+      let devCommand = options.command;
+      if (!devCommand) {
+        devCommand = getDevCommand(pkg, pm);
+      }
+      const defaultPort = getDefaultPort(pkg);
+      const port = options.port || defaultPort;
+      const _envSpinner = startSpinner(
+        `Fetching environment variables for ${appName}...`
+      );
+      let envVars = {};
+      try {
+        const variables = await client2.envVariable.list.query({
+          applicationId,
+          includeValues: true
+        });
+        envVars = envVarsToObject(variables);
+        succeedSpinner(
+          `Loaded ${Object.keys(envVars).length} environment variables`
+        );
+      } catch (err) {
         failSpinner();
-        const suggestions = findSimilar(
-          appIdentifier,
-          apps.map((a) => a.name)
+        throw new CliError(
+          `Failed to fetch environment variables: ${err instanceof Error ? err.message : "Unknown error"}`
         );
-        throw new NotFoundError("Application", appIdentifier, suggestions);
       }
-      const result = await client2.envVariable.import.mutate({
-        applicationId: app.applicationId,
-        content,
-        format: "dotenv",
-        merge: !options.replace
-      });
-      succeedSpinner(`Imported ${result.imported} variables`);
+      if (options.port) {
+        envVars.PORT = String(port);
+      }
+      const framework = detectFramework(pkg);
       if (isJsonMode()) {
-        outputData(result);
-      } else {
-        quietOutput(String(result.imported));
-        if (result.skipped > 0) {
-          log(colors.dim(`Skipped ${result.skipped} (already exist)`));
-        }
+        outputData({
+          applicationId,
+          appName,
+          command: devCommand,
+          port,
+          framework: framework?.name || "Unknown",
+          envVarCount: Object.keys(envVars).length,
+          packageManager: pm
+        });
+        return;
+      }
+      log("");
+      log(colors.bold(`Running dev server for ${colors.cyan(appName)}`));
+      log("");
+      log(`  Framework:       ${colors.dim(framework?.name || "Unknown")}`);
+      log(`  Package Manager: ${colors.dim(pm)}`);
+      log(`  Command:         ${colors.dim(devCommand)}`);
+      log(`  Port:            ${colors.dim(String(port))}`);
+      log(
+        `  Env Variables:   ${colors.dim(String(Object.keys(envVars).length))}`
+      );
+      log("");
+      log(colors.dim("\u2500".repeat(50)));
+      log("");
+      const result = await runCommand(devCommand, envVars);
+      if (result.signal) {
+        log("");
+        log(colors.dim(`Process terminated by ${result.signal}`));
+      } else if (result.exitCode !== 0) {
+        log("");
+        log(colors.error(`Process exited with code ${result.exitCode}`));
+        process.exit(result.exitCode);
       }
     } catch (err) {
       handleError(err);
     }
   });
 }
-function findApp3(apps, identifier) {
+function findApp4(apps, identifier) {
   const lowerIdentifier = identifier.toLowerCase();
   return apps.find(
     (app) => app.applicationId === identifier || app.applicationId.startsWith(identifier) || app.name.toLowerCase() === lowerIdentifier || app.appName?.toLowerCase() === lowerIdentifier
   );
 }
-function maskValue(value) {
-  if (!value) return colors.dim("-");
-  if (value.length <= 4) return "****";
-  return value.slice(0, 2) + "****" + value.slice(-2);
-}
-function formatDate3(date) {
-  const d = new Date(date);
-  return d.toLocaleDateString("en-US", { month: "short", day: "numeric" });
-}
 
-// src/commands/db.ts
-import { spawn } from "child_process";
-function registerDbCommands(program2) {
-  const db = program2.command("db").description("Manage databases");
-  db.command("list").alias("ls").description("List all databases").option("-t, --type <type>", "Filter by type (postgres, mysql, redis)").action(async (options) => {
+// src/commands/domains.ts
+function registerDomainsCommands(program2) {
+  const domains = program2.command("domains").description("Manage custom domains");
+  domains.command("list").alias("ls").argument("[app]", "Application ID or name (optional)").description("List domains").action(async (appIdentifier) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching databases...");
-      const [postgres, mysql, redis] = await Promise.all([
-        client2.postgres.allByOrganization.query(),
-        client2.mysql.allByOrganization.query(),
-        client2.redis.allByOrganization.query()
-      ]);
-      succeedSpinner();
-      let databases = [];
-      if (!options.type || options.type === "postgres") {
-        databases = databases.concat(
-          postgres.map((db2) => ({
-            id: db2.postgresId,
-            name: db2.name,
-            type: "postgres",
-            status: db2.applicationStatus,
-            created: db2.createdAt
-          }))
-        );
-      }
-      if (!options.type || options.type === "mysql") {
-        databases = databases.concat(
-          mysql.map((db2) => ({
-            id: db2.mysqlId,
-            name: db2.name,
-            type: "mysql",
-            status: db2.applicationStatus,
-            created: db2.createdAt
-          }))
-        );
-      }
-      if (!options.type || options.type === "redis") {
-        databases = databases.concat(
-          redis.map((db2) => ({
-            id: db2.redisId,
-            name: db2.name,
-            type: "redis",
-            status: db2.applicationStatus,
-            created: db2.createdAt
-          }))
-        );
+      const _spinner = startSpinner("Fetching domains...");
+      let domainsList;
+      if (appIdentifier) {
+        const apps = await client2.application.allByOrganization.query();
+        const app = findApp5(apps, appIdentifier);
+        if (!app) {
+          failSpinner();
+          const suggestions = findSimilar(
+            appIdentifier,
+            apps.map((a) => a.name)
+          );
+          throw new NotFoundError("Application", appIdentifier, suggestions);
+        }
+        domainsList = await client2.domain.byApplicationId.query({
+          applicationId: app.applicationId
+        });
+      } else {
+        domainsList = await client2.domain.all.query({
+          includeUnlinked: true
+        });
       }
+      succeedSpinner();
       if (isJsonMode()) {
-        outputData(databases);
+        outputData(domainsList);
         return;
       }
-      if (databases.length === 0) {
+      if (domainsList.length === 0) {
         log("");
-        log("No databases found.");
+        log("No domains found.");
         log("");
-        log(`Create one with: ${colors.dim("tarout db create <name>")}`);
+        log(
+          `Add one with: ${colors.dim("tarout domains add <app> <domain>")}`
+        );
         return;
       }
       log("");
       table(
-        ["ID", "NAME", "TYPE", "STATUS", "CREATED"],
-        databases.map((db2) => [
-          colors.cyan(db2.id.slice(0, 8)),
-          db2.name,
-          getTypeLabel(db2.type),
-          getStatusBadge(db2.status),
-          formatDate4(db2.created)
+        ["DOMAIN", "APPLICATION", "VERIFIED", "SSL"],
+        domainsList.map((d) => [
+          colors.cyan(d.host),
+          d.application?.name || colors.dim("unlinked"),
+          d.isVerified ? colors.success("Yes") : colors.warn("No"),
+          d.certificateType || colors.dim("-")
         ])
       );
       log("");
       log(
-        colors.dim(`${databases.length} database${databases.length === 1 ? "" : "s"}`)
+        colors.dim(
+          `${domainsList.length} domain${domainsList.length === 1 ? "" : "s"}`
+        )
       );
     } catch (err) {
       handleError(err);
     }
   });
-  db.command("create").argument("[name]", "Database name").description("Create a new database").option("-t, --type <type>", "Database type (postgres, mysql, redis)", "postgres").option("-d, --description <description>", "Database description").action(async (name, options) => {
+  domains.command("add").argument("<app>", "Application ID or name").argument("<domain>", "Domain name (e.g., app.example.com)").description("Add a custom domain to an application").action(async (appIdentifier, domainName) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
-      const profile = getCurrentProfile();
-      if (!profile) throw new AuthError();
-      let dbName = name;
-      let dbType = options.type;
-      if (!dbName) {
-        dbName = await input("Database name:");
-      }
-      if (!options.type && !shouldSkipConfirmation()) {
-        dbType = await select("Database type:", [
-          { name: "PostgreSQL", value: "postgres" },
-          { name: "MySQL", value: "mysql" },
-          { name: "Redis", value: "redis" }
-        ]);
+      if (!isValidDomain(domainName)) {
+        throw new InvalidArgumentError(
+          `Invalid domain format: ${domainName}. Use format like: app.example.com`
+        );
       }
-      const slug = generateSlug2(dbName);
       const client2 = getApiClient();
-      const spinner = startSpinner(`Creating ${dbType} database...`);
-      let database;
-      switch (dbType) {
-        case "postgres":
-          database = await client2.postgres.create.mutate({
-            name: dbName,
-            appName: slug,
-            dockerImage: "postgres:17",
-            organizationId: profile.organizationId,
-            description: options.description
-          });
-          break;
-        case "mysql":
-          database = await client2.mysql.create.mutate({
-            name: dbName,
-            appName: slug,
-            dockerImage: "mysql:8",
-            organizationId: profile.organizationId,
-            description: options.description
-          });
-          break;
-        case "redis":
-          database = await client2.redis.create.mutate({
-            name: dbName,
-            appName: slug,
-            dockerImage: "redis:7",
-            organizationId: profile.organizationId,
-            description: options.description
-          });
-          break;
-        default:
-          throw new CliError(`Unsupported database type: ${dbType}`, ExitCode.INVALID_ARGUMENTS);
+      const _spinner = startSpinner("Finding application...");
+      const apps = await client2.application.allByOrganization.query();
+      const app = findApp5(apps, appIdentifier);
+      if (!app) {
+        failSpinner();
+        const suggestions = findSimilar(
+          appIdentifier,
+          apps.map((a) => a.name)
+        );
+        throw new NotFoundError("Application", appIdentifier, suggestions);
       }
-      succeedSpinner("Database created!");
-      const dbId = database.postgresId || database.mysqlId || database.redisId;
+      updateSpinner2("Adding domain...");
+      const domain = await client2.domain.create.mutate({
+        host: domainName,
+        applicationId: app.applicationId
+      });
+      succeedSpinner("Domain added!");
       if (isJsonMode()) {
-        outputData(database);
+        outputData(domain);
         return;
       }
-      quietOutput(dbId);
-      box("Database Created", [
-        `ID: ${colors.cyan(dbId)}`,
-        `Name: ${database.name}`,
-        `Type: ${getTypeLabel(dbType)}`
+      quietOutput(domain.domainId);
+      box("Domain Added", [
+        `Domain: ${colors.cyan(domainName)}`,
+        `Application: ${app.name}`,
+        `Status: ${domain.isVerified ? colors.success("Verified") : colors.warn("Pending verification")}`
       ]);
-      log("Next steps:");
-      log(`  View connection info: ${colors.dim(`tarout db info ${dbId.slice(0, 8)}`)}`);
-      log("");
+      if (!domain.isVerified) {
+        log("Next steps:");
+        log("  1. Add DNS record pointing to your app");
+        log(
+          `  2. Verify: ${colors.dim(`tarout domains verify ${domain.domainId.slice(0, 8)}`)}`
+        );
+        log("");
+      }
     } catch (err) {
       handleError(err);
     }
   });
-  db.command("delete").alias("rm").argument("<db>", "Database ID or name").description("Delete a database").action(async (dbIdentifier) => {
+  domains.command("remove").alias("rm").argument("<domain>", "Domain ID or hostname").description("Remove a domain").action(async (domainIdentifier) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Finding database...");
-      const allDbs = await getAllDatabases(client2);
-      const dbInfo = findDatabase(allDbs, dbIdentifier);
-      if (!dbInfo) {
+      const _spinner = startSpinner("Finding domain...");
+      const allDomains = await client2.domain.all.query({
+        includeUnlinked: true
+      });
+      const domain = findDomain(allDomains, domainIdentifier);
+      if (!domain) {
         failSpinner();
         const suggestions = findSimilar(
-          dbIdentifier,
-          allDbs.map((d) => d.name)
+          domainIdentifier,
+          allDomains.map((d) => d.host)
         );
-        throw new NotFoundError("Database", dbIdentifier, suggestions);
+        throw new NotFoundError("Domain", domainIdentifier, suggestions);
       }
       succeedSpinner();
       if (!shouldSkipConfirmation()) {
         log("");
-        log(`Database: ${colors.bold(dbInfo.name)}`);
-        log(`Type: ${getTypeLabel(dbInfo.type)}`);
-        log(`ID: ${colors.dim(dbInfo.id)}`);
+        log(`Domain: ${colors.bold(domain.host)}`);
+        if (domain.application) {
+          log(`Application: ${domain.application.name}`);
+        }
         log("");
         const confirmed = await confirm(
-          `Are you sure you want to delete "${dbInfo.name}"? This cannot be undone.`,
+          `Are you sure you want to remove "${domain.host}"?`,
           false
         );
         if (!confirmed) {
@@ -1647,345 +3225,217 @@ function registerDbCommands(program2) {
           return;
         }
       }
-      const deleteSpinner = startSpinner("Deleting database...");
-      switch (dbInfo.type) {
-        case "postgres":
-          await client2.postgres.remove.mutate({ postgresId: dbInfo.id });
-          break;
-        case "mysql":
-          await client2.mysql.remove.mutate({ mysqlId: dbInfo.id });
-          break;
-        case "redis":
-          await client2.redis.remove.mutate({ redisId: dbInfo.id });
-          break;
-      }
-      succeedSpinner("Database deleted!");
+      const _deleteSpinner = startSpinner("Removing domain...");
+      await client2.domain.delete.mutate({
+        domainId: domain.domainId
+      });
+      succeedSpinner("Domain removed!");
       if (isJsonMode()) {
-        outputData({ deleted: true, id: dbInfo.id });
+        outputData({ deleted: true, domainId: domain.domainId });
       } else {
-        quietOutput(dbInfo.id);
+        quietOutput(domain.domainId);
       }
     } catch (err) {
       handleError(err);
     }
   });
-  db.command("info").argument("<db>", "Database ID or name").description("Show database details and connection info").action(async (dbIdentifier) => {
+  domains.command("verify").argument("<domain>", "Domain ID or hostname").description("Verify domain DNS configuration").action(async (domainIdentifier) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching database info...");
-      const allDbs = await getAllDatabases(client2);
-      const dbSummary = findDatabase(allDbs, dbIdentifier);
-      if (!dbSummary) {
+      const _spinner = startSpinner("Finding domain...");
+      const allDomains = await client2.domain.all.query({
+        includeUnlinked: true
+      });
+      const domain = findDomain(allDomains, domainIdentifier);
+      if (!domain) {
         failSpinner();
         const suggestions = findSimilar(
-          dbIdentifier,
-          allDbs.map((d) => d.name)
+          domainIdentifier,
+          allDomains.map((d) => d.host)
         );
-        throw new NotFoundError("Database", dbIdentifier, suggestions);
-      }
-      let dbDetails;
-      switch (dbSummary.type) {
-        case "postgres":
-          dbDetails = await client2.postgres.one.query({ postgresId: dbSummary.id });
-          break;
-        case "mysql":
-          dbDetails = await client2.mysql.one.query({ mysqlId: dbSummary.id });
-          break;
-        case "redis":
-          dbDetails = await client2.redis.one.query({ redisId: dbSummary.id });
-          break;
+        throw new NotFoundError("Domain", domainIdentifier, suggestions);
       }
+      updateSpinner2("Verifying DNS configuration...");
+      const result = await client2.domain.validateDomain.mutate({
+        domainId: domain.domainId
+      });
       succeedSpinner();
       if (isJsonMode()) {
-        outputData(dbDetails);
+        outputData(result);
         return;
       }
       log("");
-      log(colors.bold(dbDetails.name));
-      log(colors.dim(dbSummary.id));
-      log("");
-      log(`${colors.bold("Status")}`);
-      log(`  ${getStatusBadge(dbDetails.applicationStatus)}`);
-      log(`  Type: ${getTypeLabel(dbSummary.type)}`);
-      log("");
-      log(`${colors.bold("Connection")}`);
-      if (dbSummary.type === "redis") {
-        if (dbDetails.cloudHost) {
-          log(`  Host: ${colors.cyan(dbDetails.cloudHost)}`);
-          log(`  Port: ${dbDetails.cloudPort || 6379}`);
-          if (dbDetails.cloudPassword) {
-            log(`  Password: ${colors.dim("********")}`);
-          }
-        } else {
-          log(`  ${colors.dim("Not yet deployed")}`);
-        }
+      if (result.isValid) {
+        success(`Domain ${colors.cyan(domain.host)} is verified!`);
+        log("");
+        log("DNS records are correctly configured.");
       } else {
-        if (dbDetails.cloudInstanceId || dbDetails.databaseName) {
-          log(`  Host: ${colors.cyan(dbDetails.cloudHost || "localhost")}`);
-          log(`  Port: ${dbDetails.cloudPort || (dbSummary.type === "postgres" ? 5432 : 3306)}`);
-          log(`  Database: ${dbDetails.cloudDatabaseName || dbDetails.databaseName}`);
-          log(`  Username: ${dbDetails.cloudUsername || dbDetails.databaseUser}`);
-          log(`  Password: ${colors.dim("********")}`);
-        } else {
-          log(`  ${colors.dim("Not yet deployed")}`);
-        }
-      }
-      log("");
-      if (dbDetails.cloudHost || dbDetails.databaseName) {
-        log(`${colors.bold("Connection String")}`);
-        const connStr = getConnectionString(dbSummary.type, dbDetails);
-        log(`  ${colors.cyan(connStr)}`);
+        error(`Domain ${domain.host} verification failed`);
         log("");
+        log("Please ensure DNS is configured correctly:");
+        log("");
+        log(`  ${colors.bold("Option 1: CNAME Record")}`);
+        log(`    Name: ${domain.host}`);
+        log(`    Value: ${colors.cyan("your-app.tarout.app")}`);
+        log("");
+        log(`  ${colors.bold("Option 2: A Record")}`);
+        log(`    Name: ${domain.host}`);
+        log(`    Value: ${colors.cyan("(your app's IP address)")}`);
+        log("");
+        log(colors.dim("DNS changes can take up to 48 hours to propagate."));
       }
-      log(`${colors.bold("Created")}`);
-      log(`  ${new Date(dbDetails.createdAt).toLocaleString()}`);
-      log("");
-    } catch (err) {
-      handleError(err);
-    }
-  });
-  db.command("connect").argument("<db>", "Database ID or name").description("Open interactive database shell").action(async (dbIdentifier) => {
-    try {
-      if (!isLoggedIn()) throw new AuthError();
-      const client2 = getApiClient();
-      const spinner = startSpinner("Connecting to database...");
-      const allDbs = await getAllDatabases(client2);
-      const dbSummary = findDatabase(allDbs, dbIdentifier);
-      if (!dbSummary) {
-        failSpinner();
-        const suggestions = findSimilar(
-          dbIdentifier,
-          allDbs.map((d) => d.name)
-        );
-        throw new NotFoundError("Database", dbIdentifier, suggestions);
-      }
-      let dbDetails;
-      switch (dbSummary.type) {
-        case "postgres":
-          dbDetails = await client2.postgres.one.query({ postgresId: dbSummary.id });
-          break;
-        case "mysql":
-          dbDetails = await client2.mysql.one.query({ mysqlId: dbSummary.id });
-          break;
-        case "redis":
-          dbDetails = await client2.redis.one.query({ redisId: dbSummary.id });
-          break;
-      }
-      succeedSpinner();
-      if (!dbDetails.cloudHost && !dbDetails.databaseName) {
-        throw new CliError("Database not deployed yet. Deploy first.", ExitCode.GENERAL_ERROR);
-      }
-      const { command, args, env } = getConnectCommand(dbSummary.type, dbDetails);
-      log("");
-      log(`Connecting to ${colors.bold(dbDetails.name)}...`);
-      log(colors.dim("Press Ctrl+D to exit"));
       log("");
-      const child = spawn(command, args, {
-        stdio: "inherit",
-        env: { ...process.env, ...env }
-      });
-      child.on("exit", (code) => {
-        process.exit(code || 0);
-      });
     } catch (err) {
       handleError(err);
     }
   });
 }
-async function getAllDatabases(client2) {
-  const [postgres, mysql, redis] = await Promise.all([
-    client2.postgres.allByOrganization.query(),
-    client2.mysql.allByOrganization.query(),
-    client2.redis.allByOrganization.query()
-  ]);
-  const databases = [];
-  for (const db of postgres) {
-    databases.push({
-      id: db.postgresId,
-      name: db.name,
-      type: "postgres",
-      status: db.applicationStatus
-    });
-  }
-  for (const db of mysql) {
-    databases.push({
-      id: db.mysqlId,
-      name: db.name,
-      type: "mysql",
-      status: db.applicationStatus
-    });
-  }
-  for (const db of redis) {
-    databases.push({
-      id: db.redisId,
-      name: db.name,
-      type: "redis",
-      status: db.applicationStatus
-    });
-  }
-  return databases;
-}
-function findDatabase(databases, identifier) {
+function findApp5(apps, identifier) {
   const lowerIdentifier = identifier.toLowerCase();
-  return databases.find(
-    (db) => db.id === identifier || db.id.startsWith(identifier) || db.name.toLowerCase() === lowerIdentifier
+  return apps.find(
+    (app) => app.applicationId === identifier || app.applicationId.startsWith(identifier) || app.name.toLowerCase() === lowerIdentifier || app.appName?.toLowerCase() === lowerIdentifier
   );
 }
-function generateSlug2(name) {
-  return name.toLowerCase().replace(/[^a-z0-9]+/g, "-").replace(/^-+|-+$/g, "").slice(0, 63);
-}
-function formatDate4(date) {
-  const d = new Date(date);
-  return d.toLocaleDateString("en-US", { month: "short", day: "numeric" });
-}
-function getTypeLabel(type) {
-  const labels = {
-    postgres: colors.info("PostgreSQL"),
-    mysql: colors.warn("MySQL"),
-    redis: colors.error("Redis")
-  };
-  return labels[type] || type;
+function findDomain(domains, identifier) {
+  const lowerIdentifier = identifier.toLowerCase();
+  return domains.find(
+    (d) => d.domainId === identifier || d.domainId.startsWith(identifier) || d.host.toLowerCase() === lowerIdentifier
+  );
 }
-function getConnectionString(type, details) {
-  const host = details.cloudHost || "localhost";
-  const user = details.cloudUsername || details.databaseUser || "user";
-  const dbName = details.cloudDatabaseName || details.databaseName || "db";
-  switch (type) {
-    case "postgres":
-      const pgPort = details.cloudPort || 5432;
-      return `postgresql://${user}:****@${host}:${pgPort}/${dbName}`;
-    case "mysql":
-      const myPort = details.cloudPort || 3306;
-      return `mysql://${user}:****@${host}:${myPort}/${dbName}`;
-    case "redis":
-      const redisPort = details.cloudPort || 6379;
-      return `redis://:****@${host}:${redisPort}`;
-    default:
-      return "";
-  }
+function isValidDomain(domain) {
+  const pattern = /^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{2,}$/;
+  return pattern.test(domain);
 }
-function getConnectCommand(type, details) {
-  const host = details.cloudHost || "localhost";
-  const user = details.cloudUsername || details.databaseUser || "user";
-  const password = details.cloudPassword || details.databasePassword || "";
-  const dbName = details.cloudDatabaseName || details.databaseName || "db";
-  switch (type) {
-    case "postgres":
-      return {
-        command: "psql",
-        args: [
-          "-h",
-          host,
-          "-p",
-          String(details.cloudPort || 5432),
-          "-U",
-          user,
-          "-d",
-          dbName
-        ],
-        env: { PGPASSWORD: password }
-      };
-    case "mysql":
-      return {
-        command: "mysql",
-        args: [
-          "-h",
-          host,
-          "-P",
-          String(details.cloudPort || 3306),
-          "-u",
-          user,
-          `-p${password}`,
-          dbName
-        ],
-        env: {}
-      };
-    case "redis":
-      return {
-        command: "redis-cli",
-        args: [
-          "-h",
-          host,
-          "-p",
-          String(details.cloudPort || 6379),
-          ...password ? ["-a", password] : []
-        ],
-        env: {}
-      };
-    default:
-      throw new CliError(`Unsupported database type: ${type}`, ExitCode.INVALID_ARGUMENTS);
-  }
+function updateSpinner2(text) {
+  import("./spinner-2NALE2OE.js").then(({ startSpinner: startSpinner2 }) => {
+    startSpinner2(text);
+  });
 }
 
-// src/commands/domains.ts
-function registerDomainsCommands(program2) {
-  const domains = program2.command("domains").description("Manage custom domains");
-  domains.command("list").alias("ls").argument("[app]", "Application ID or name (optional)").description("List domains").action(async (appIdentifier) => {
+// src/commands/env.ts
+import { existsSync as existsSync3, readFileSync as readFileSync3, writeFileSync as writeFileSync2 } from "fs";
+function registerEnvCommands(program2) {
+  const env = program2.command("env").argument("<app>", "Application ID or name").description("Manage environment variables");
+  env.command("list").alias("ls").description("List all environment variables").option("--reveal", "Show actual values (not masked)").action(async (options, command) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
+      const appIdentifier = command.parent.args[0];
       const client2 = getApiClient();
-      const spinner = startSpinner("Fetching domains...");
-      let domainsList;
-      if (appIdentifier) {
-        const apps = await client2.application.allByOrganization.query();
-        const app = findApp4(apps, appIdentifier);
-        if (!app) {
-          failSpinner();
-          const suggestions = findSimilar(
-            appIdentifier,
-            apps.map((a) => a.name)
-          );
-          throw new NotFoundError("Application", appIdentifier, suggestions);
-        }
-        domainsList = await client2.domain.byApplicationId.query({
-          applicationId: app.applicationId
-        });
-      } else {
-        domainsList = await client2.domain.all.query({
-          includeUnlinked: true
-        });
+      const _spinner = startSpinner("Fetching environment variables...");
+      const apps = await client2.application.allByOrganization.query();
+      const app = findApp6(apps, appIdentifier);
+      if (!app) {
+        failSpinner();
+        const suggestions = findSimilar(
+          appIdentifier,
+          apps.map((a) => a.name)
+        );
+        throw new NotFoundError("Application", appIdentifier, suggestions);
       }
+      const variables = await client2.envVariable.list.query({
+        applicationId: app.applicationId,
+        includeValues: options.reveal || false
+      });
       succeedSpinner();
       if (isJsonMode()) {
-        outputData(domainsList);
+        outputData(variables);
         return;
       }
-      if (domainsList.length === 0) {
+      if (variables.length === 0) {
         log("");
-        log("No domains found.");
+        log("No environment variables found.");
         log("");
-        log(`Add one with: ${colors.dim("tarout domains add <app> <domain>")}`);
+        log(
+          `Set one with: ${colors.dim(`tarout env ${app.name} set KEY=value`)}`
+        );
         return;
       }
       log("");
       table(
-        ["DOMAIN", "APPLICATION", "VERIFIED", "SSL"],
-        domainsList.map((d) => [
-          colors.cyan(d.host),
-          d.application?.name || colors.dim("unlinked"),
-          d.isVerified ? colors.success("Yes") : colors.warn("No"),
-          d.certificateType || colors.dim("-")
+        ["KEY", "VALUE", "SECRET", "UPDATED"],
+        variables.map((v) => [
+          colors.cyan(v.key),
+          options.reveal ? v.value || colors.dim("-") : maskValue(v.value),
+          v.isSecret ? colors.warn("Yes") : "No",
+          formatDate4(v.updatedAt)
         ])
       );
       log("");
-      log(colors.dim(`${domainsList.length} domain${domainsList.length === 1 ? "" : "s"}`));
+      log(
+        colors.dim(
+          `${variables.length} variable${variables.length === 1 ? "" : "s"}`
+        )
+      );
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  env.command("set").argument("<key=value>", "Variable to set (KEY=value format)").description("Set an environment variable").option("-s, --secret", "Mark as secret (default)", true).option("--no-secret", "Mark as non-secret").action(async (keyValue, options, command) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const appIdentifier = command.parent.parent.args[0];
+      const eqIndex = keyValue.indexOf("=");
+      if (eqIndex === -1) {
+        throw new InvalidArgumentError(
+          "Invalid format. Use KEY=value (e.g., API_KEY=secret123)"
+        );
+      }
+      const key = keyValue.slice(0, eqIndex);
+      const value = keyValue.slice(eqIndex + 1);
+      if (!key) {
+        throw new InvalidArgumentError("Key cannot be empty");
+      }
+      const client2 = getApiClient();
+      const _spinner = startSpinner("Setting environment variable...");
+      const apps = await client2.application.allByOrganization.query();
+      const app = findApp6(apps, appIdentifier);
+      if (!app) {
+        failSpinner();
+        const suggestions = findSimilar(
+          appIdentifier,
+          apps.map((a) => a.name)
+        );
+        throw new NotFoundError("Application", appIdentifier, suggestions);
+      }
+      const existing = await client2.envVariable.list.query({
+        applicationId: app.applicationId,
+        includeValues: false
+      });
+      const existingVar = existing.find((v) => v.key === key);
+      if (existingVar) {
+        await client2.envVariable.update.mutate({
+          applicationId: app.applicationId,
+          key,
+          value,
+          isSecret: options.secret
+        });
+      } else {
+        await client2.envVariable.create.mutate({
+          applicationId: app.applicationId,
+          key,
+          value,
+          isSecret: options.secret
+        });
+      }
+      succeedSpinner(`Set ${key}`);
+      if (isJsonMode()) {
+        outputData({ key, updated: !!existingVar });
+      } else {
+        quietOutput(key);
+      }
     } catch (err) {
       handleError(err);
     }
   });
-  domains.command("add").argument("<app>", "Application ID or name").argument("<domain>", "Domain name (e.g., app.example.com)").description("Add a custom domain to an application").action(async (appIdentifier, domainName) => {
+  env.command("unset").argument("<key>", "Variable key to remove").description("Remove an environment variable").action(async (key, _options, command) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
-      if (!isValidDomain(domainName)) {
-        throw new InvalidArgumentError(
-          `Invalid domain format: ${domainName}. Use format like: app.example.com`
-        );
-      }
+      const appIdentifier = command.parent.parent.args[0];
       const client2 = getApiClient();
-      const spinner = startSpinner("Finding application...");
+      const _spinner = startSpinner("Removing environment variable...");
       const apps = await client2.application.allByOrganization.query();
-      const app = findApp4(apps, appIdentifier);
+      const app = findApp6(apps, appIdentifier);
       if (!app) {
         failSpinner();
         const suggestions = findSimilar(
@@ -1994,57 +3444,40 @@ function registerDomainsCommands(program2) {
         );
         throw new NotFoundError("Application", appIdentifier, suggestions);
       }
-      updateSpinner2("Adding domain...");
-      const domain = await client2.domain.create.mutate({
-        host: domainName,
-        applicationId: app.applicationId
+      await client2.envVariable.delete.mutate({
+        applicationId: app.applicationId,
+        key
       });
-      succeedSpinner("Domain added!");
+      succeedSpinner(`Removed ${key}`);
       if (isJsonMode()) {
-        outputData(domain);
-        return;
-      }
-      quietOutput(domain.domainId);
-      box("Domain Added", [
-        `Domain: ${colors.cyan(domainName)}`,
-        `Application: ${app.name}`,
-        `Status: ${domain.isVerified ? colors.success("Verified") : colors.warn("Pending verification")}`
-      ]);
-      if (!domain.isVerified) {
-        log("Next steps:");
-        log(`  1. Add DNS record pointing to your app`);
-        log(`  2. Verify: ${colors.dim(`tarout domains verify ${domain.domainId.slice(0, 8)}`)}`);
-        log("");
+        outputData({ key, deleted: true });
+      } else {
+        quietOutput(key);
       }
     } catch (err) {
       handleError(err);
     }
   });
-  domains.command("remove").alias("rm").argument("<domain>", "Domain ID or hostname").description("Remove a domain").action(async (domainIdentifier) => {
+  env.command("pull").description("Download environment variables as .env file").option("-o, --output <file>", "Output file path", ".env").option("--reveal", "Include actual secret values").action(async (options, command) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
+      const appIdentifier = command.parent.parent.args[0];
       const client2 = getApiClient();
-      const spinner = startSpinner("Finding domain...");
-      const allDomains = await client2.domain.all.query({ includeUnlinked: true });
-      const domain = findDomain(allDomains, domainIdentifier);
-      if (!domain) {
+      const _spinner = startSpinner("Downloading environment variables...");
+      const apps = await client2.application.allByOrganization.query();
+      const app = findApp6(apps, appIdentifier);
+      if (!app) {
         failSpinner();
         const suggestions = findSimilar(
-          domainIdentifier,
-          allDomains.map((d) => d.host)
+          appIdentifier,
+          apps.map((a) => a.name)
         );
-        throw new NotFoundError("Domain", domainIdentifier, suggestions);
+        throw new NotFoundError("Application", appIdentifier, suggestions);
       }
-      succeedSpinner();
-      if (!shouldSkipConfirmation()) {
-        log("");
-        log(`Domain: ${colors.bold(domain.host)}`);
-        if (domain.application) {
-          log(`Application: ${domain.application.name}`);
-        }
-        log("");
+      if (existsSync3(options.output) && !shouldSkipConfirmation()) {
+        succeedSpinner();
         const confirmed = await confirm(
-          `Are you sure you want to remove "${domain.host}"?`,
+          `File ${options.output} already exists. Overwrite?`,
           false
         );
         if (!confirmed) {
@@ -2052,90 +3485,323 @@ function registerDomainsCommands(program2) {
           return;
         }
       }
-      const deleteSpinner = startSpinner("Removing domain...");
-      await client2.domain.delete.mutate({
-        domainId: domain.domainId
+      const result = await client2.envVariable.export.query({
+        applicationId: app.applicationId,
+        format: "dotenv",
+        maskSecrets: !options.reveal
       });
-      succeedSpinner("Domain removed!");
+      writeFileSync2(options.output, result.content);
+      succeedSpinner(`Saved to ${options.output}`);
       if (isJsonMode()) {
-        outputData({ deleted: true, domainId: domain.domainId });
+        outputData({ file: options.output, content: result.content });
       } else {
-        quietOutput(domain.domainId);
+        quietOutput(options.output);
       }
     } catch (err) {
       handleError(err);
     }
   });
-  domains.command("verify").argument("<domain>", "Domain ID or hostname").description("Verify domain DNS configuration").action(async (domainIdentifier) => {
+  env.command("push").description("Upload environment variables from .env file").option("-i, --input <file>", "Input file path", ".env").option("--replace", "Replace all existing variables (default: merge)").action(async (options, command) => {
     try {
       if (!isLoggedIn()) throw new AuthError();
+      const appIdentifier = command.parent.parent.args[0];
+      if (!existsSync3(options.input)) {
+        throw new InvalidArgumentError(`File not found: ${options.input}`);
+      }
+      const content = readFileSync3(options.input, "utf-8");
       const client2 = getApiClient();
-      const spinner = startSpinner("Finding domain...");
-      const allDomains = await client2.domain.all.query({ includeUnlinked: true });
-      const domain = findDomain(allDomains, domainIdentifier);
-      if (!domain) {
+      const _spinner = startSpinner("Uploading environment variables...");
+      const apps = await client2.application.allByOrganization.query();
+      const app = findApp6(apps, appIdentifier);
+      if (!app) {
         failSpinner();
         const suggestions = findSimilar(
-          domainIdentifier,
-          allDomains.map((d) => d.host)
+          appIdentifier,
+          apps.map((a) => a.name)
         );
-        throw new NotFoundError("Domain", domainIdentifier, suggestions);
+        throw new NotFoundError("Application", appIdentifier, suggestions);
       }
-      updateSpinner2("Verifying DNS configuration...");
-      const result = await client2.domain.validateDomain.mutate({
-        domainId: domain.domainId
+      const result = await client2.envVariable.import.mutate({
+        applicationId: app.applicationId,
+        content,
+        format: "dotenv",
+        merge: !options.replace
       });
-      succeedSpinner();
+      succeedSpinner(`Imported ${result.imported} variables`);
       if (isJsonMode()) {
         outputData(result);
+      } else {
+        quietOutput(String(result.imported));
+        if (result.skipped > 0) {
+          log(colors.dim(`Skipped ${result.skipped} (already exist)`));
+        }
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+}
+function findApp6(apps, identifier) {
+  const lowerIdentifier = identifier.toLowerCase();
+  return apps.find(
+    (app) => app.applicationId === identifier || app.applicationId.startsWith(identifier) || app.name.toLowerCase() === lowerIdentifier || app.appName?.toLowerCase() === lowerIdentifier
+  );
+}
+function maskValue(value) {
+  if (!value) return colors.dim("-");
+  if (value.length <= 4) return "****";
+  return `${value.slice(0, 2)}****${value.slice(-2)}`;
+}
+function formatDate4(date) {
+  const d = new Date(date);
+  return d.toLocaleDateString("en-US", { month: "short", day: "numeric" });
+}
+
+// src/commands/link.ts
+import { basename } from "path";
+function registerLinkCommands(program2) {
+  program2.command("link").argument(
+    "[app]",
+    "Application ID or name (optional, will prompt if not provided)"
+  ).description("Link local directory to a Tarout application").option("-y, --yes", "Skip confirmation prompts").action(async (appIdentifier, options) => {
+    try {
+      if (!isLoggedIn()) throw new AuthError();
+      const profile = getCurrentProfile();
+      if (!profile) throw new AuthError();
+      const client2 = getApiClient();
+      const cwd = process.cwd();
+      const dirName = basename(cwd);
+      if (isProjectLinked()) {
+        const existingConfig = getProjectConfig();
+        if (existingConfig && !shouldSkipConfirmation() && !options.yes) {
+          log("");
+          log(
+            `This directory is already linked to ${colors.cyan(existingConfig.name)}`
+          );
+          log(`Application ID: ${colors.dim(existingConfig.applicationId)}`);
+          log("");
+          const confirmed = await confirm(
+            "Do you want to relink to a different application?",
+            false
+          );
+          if (!confirmed) {
+            log("Cancelled.");
+            return;
+          }
+        }
+      }
+      const _spinner = startSpinner("Fetching applications...");
+      const apps = await client2.application.allByOrganization.query();
+      succeedSpinner();
+      if (apps.length === 0) {
+        log("");
+        log("No applications found in your organization.");
+        log("");
+        log(`Create one with: ${colors.dim("tarout apps create <name>")}`);
+        return;
+      }
+      let selectedApp = null;
+      if (appIdentifier) {
+        selectedApp = findApp7(apps, appIdentifier) || null;
+        if (!selectedApp) {
+          const suggestions = findSimilar(
+            appIdentifier,
+            apps.map((a) => a.name)
+          );
+          throw new NotFoundError("Application", appIdentifier, suggestions);
+        }
+      } else {
+        log("");
+        log(`Linking ${colors.cyan(dirName)} to a Tarout application`);
+        log("");
+        const choices = apps.map(
+          (app) => ({
+            name: `${app.name} ${colors.dim(`(${app.applicationId.slice(0, 8)})`)}`,
+            value: app.applicationId
+          })
+        );
+        const selectedId = await select("Select an application:", choices);
+        selectedApp = apps.find(
+          (a) => a.applicationId === selectedId
+        ) || null;
+      }
+      if (!selectedApp) {
+        log("No application selected.");
+        return;
+      }
+      setProjectConfig({
+        applicationId: selectedApp.applicationId,
+        name: selectedApp.name,
+        organizationId: profile.organizationId,
+        linkedAt: (/* @__PURE__ */ new Date()).toISOString()
+      });
+      if (isJsonMode()) {
+        outputData({
+          linked: true,
+          applicationId: selectedApp.applicationId,
+          name: selectedApp.name,
+          directory: cwd
+        });
         return;
       }
+      quietOutput(selectedApp.applicationId);
+      box("Project Linked", [
+        `Application: ${colors.cyan(selectedApp.name)}`,
+        `ID: ${colors.dim(selectedApp.applicationId)}`,
+        `Directory: ${colors.dim(cwd)}`
+      ]);
+      log("You can now use:");
+      log(
+        `  ${colors.dim("tarout dev")}     - Run dev server with cloud env vars`
+      );
+      log(
+        `  ${colors.dim("tarout build")}   - Build locally with cloud env vars`
+      );
+      log(`  ${colors.dim("tarout deploy")}  - Deploy to cloud`);
       log("");
-      if (result.isValid) {
-        success(`Domain ${colors.cyan(domain.host)} is verified!`);
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  program2.command("unlink").description("Unlink the current directory from Tarout").action(async () => {
+    try {
+      const config2 = getProjectConfig();
+      if (!config2) {
+        log("");
+        log("This directory is not linked to any Tarout application.");
+        log("");
+        log(`Link with: ${colors.dim("tarout link")}`);
+        return;
+      }
+      if (!shouldSkipConfirmation()) {
+        log("");
+        log(`Currently linked to: ${colors.cyan(config2.name)}`);
+        log(`Application ID: ${colors.dim(config2.applicationId)}`);
+        log("");
+        const confirmed = await confirm(
+          "Are you sure you want to unlink this directory?",
+          false
+        );
+        if (!confirmed) {
+          log("Cancelled.");
+          return;
+        }
+      }
+      const removed = removeProjectConfig();
+      if (isJsonMode()) {
+        outputData({
+          unlinked: removed,
+          applicationId: config2.applicationId,
+          name: config2.name
+        });
+        return;
+      }
+      if (removed) {
+        log("");
+        log(colors.success(`Unlinked from ${config2.name}`));
         log("");
-        log("DNS records are correctly configured.");
       } else {
-        error(`Domain ${domain.host} verification failed`);
         log("");
-        log("Please ensure DNS is configured correctly:");
+        log(colors.warn("Could not remove project configuration."));
         log("");
-        log(`  ${colors.bold("Option 1: CNAME Record")}`);
-        log(`    Name: ${domain.host}`);
-        log(`    Value: ${colors.cyan("your-app.tarout.app")}`);
+      }
+    } catch (err) {
+      handleError(err);
+    }
+  });
+  program2.command("status").description("Show link status for current directory").action(async () => {
+    try {
+      const config2 = getProjectConfig();
+      if (!config2) {
+        if (isJsonMode()) {
+          outputData({ linked: false });
+          return;
+        }
         log("");
-        log(`  ${colors.bold("Option 2: A Record")}`);
-        log(`    Name: ${domain.host}`);
-        log(`    Value: ${colors.cyan("(your app's IP address)")}`);
+        log("This directory is not linked to any Tarout application.");
+        log("");
+        log(`Link with: ${colors.dim("tarout link")}`);
+        return;
+      }
+      if (isLoggedIn()) {
+        const client2 = getApiClient();
+        const _spinner = startSpinner("Fetching application status...");
+        try {
+          const app = await client2.application.one.query({
+            applicationId: config2.applicationId
+          });
+          succeedSpinner();
+          if (isJsonMode()) {
+            outputData({
+              linked: true,
+              applicationId: config2.applicationId,
+              name: config2.name,
+              status: app.applicationStatus,
+              url: app.cloudServiceUrl,
+              linkedAt: config2.linkedAt
+            });
+            return;
+          }
+          log("");
+          log(colors.bold("Project Status"));
+          log("");
+          log(`Application: ${colors.cyan(app.name)}`);
+          log(`ID: ${colors.dim(config2.applicationId)}`);
+          log(`Status: ${getStatusIndicator(app.applicationStatus)}`);
+          if (app.cloudServiceUrl) {
+            log(`URL: ${colors.cyan(app.cloudServiceUrl)}`);
+          }
+          log(`Linked: ${new Date(config2.linkedAt).toLocaleString()}`);
+          log("");
+        } catch {
+          failSpinner();
+          log("");
+          log(colors.warn("Warning: Could not fetch application status."));
+          log("The application may have been deleted.");
+          log("");
+          log(`Unlink with: ${colors.dim("tarout unlink")}`);
+          log("");
+        }
+      } else {
+        if (isJsonMode()) {
+          outputData({
+            linked: true,
+            applicationId: config2.applicationId,
+            name: config2.name,
+            linkedAt: config2.linkedAt
+          });
+          return;
+        }
+        log("");
+        log(colors.bold("Project Status"));
+        log("");
+        log(`Application: ${colors.cyan(config2.name)}`);
+        log(`ID: ${colors.dim(config2.applicationId)}`);
+        log(`Linked: ${new Date(config2.linkedAt).toLocaleString()}`);
+        log("");
+        log(colors.dim("Log in to see full application status."));
         log("");
-        log(colors.dim("DNS changes can take up to 48 hours to propagate."));
       }
-      log("");
     } catch (err) {
       handleError(err);
     }
   });
 }
-function findApp4(apps, identifier) {
+function findApp7(apps, identifier) {
   const lowerIdentifier = identifier.toLowerCase();
   return apps.find(
     (app) => app.applicationId === identifier || app.applicationId.startsWith(identifier) || app.name.toLowerCase() === lowerIdentifier || app.appName?.toLowerCase() === lowerIdentifier
   );
 }
-function findDomain(domains, identifier) {
-  const lowerIdentifier = identifier.toLowerCase();
-  return domains.find(
-    (d) => d.domainId === identifier || d.domainId.startsWith(identifier) || d.host.toLowerCase() === lowerIdentifier
-  );
-}
-function isValidDomain(domain) {
-  const pattern = /^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]{2,}$/;
-  return pattern.test(domain);
-}
-function updateSpinner2(text) {
-  import("./spinner-2NALE2OE.js").then(({ startSpinner: startSpinner2 }) => {
-    startSpinner2(text);
-  });
+function getStatusIndicator(status) {
+  const indicators = {
+    running: colors.success("running"),
+    idle: colors.warn("idle"),
+    error: colors.error("error"),
+    deploying: colors.info("deploying"),
+    stopped: colors.dim("stopped")
+  };
+  return indicators[status.toLowerCase()] || status;
 }
 
 // src/commands/orgs.ts
@@ -2146,7 +3812,7 @@ function registerOrgsCommands(program2) {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
       const profile = getCurrentProfile();
-      const spinner = startSpinner("Fetching organizations...");
+      const _spinner = startSpinner("Fetching organizations...");
       const organizations = await client2.organization.all.query();
       succeedSpinner();
       if (isJsonMode()) {
@@ -2168,7 +3834,11 @@ function registerOrgsCommands(program2) {
         ])
       );
       log("");
-      log(colors.dim(`${organizations.length} organization${organizations.length === 1 ? "" : "s"}`));
+      log(
+        colors.dim(
+          `${organizations.length} organization${organizations.length === 1 ? "" : "s"}`
+        )
+      );
       log("");
       log(`Current: ${colors.bold(profile?.organizationName || "None")}`);
     } catch (err) {
@@ -2179,7 +3849,7 @@ function registerOrgsCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Switching organization...");
+      const _spinner = startSpinner("Switching organization...");
       const organizations = await client2.organization.all.query();
       const org = findOrg(organizations, orgIdentifier);
       if (!org) {
@@ -2225,7 +3895,7 @@ function registerEnvsCommands(program2) {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
       const profile = getCurrentProfile();
-      const spinner = startSpinner("Fetching environments...");
+      const _spinner = startSpinner("Fetching environments...");
       const environments = await client2.environment.all.query();
       succeedSpinner();
       if (isJsonMode()) {
@@ -2256,7 +3926,7 @@ function registerEnvsCommands(program2) {
     try {
       if (!isLoggedIn()) throw new AuthError();
       const client2 = getApiClient();
-      const spinner = startSpinner("Switching environment...");
+      const _spinner = startSpinner("Switching environment...");
       const environments = await client2.environment.all.query();
       const env = findEnv(environments, envIdentifier);
       if (!env) {
@@ -2322,4 +3992,7 @@ registerDbCommands(program);
 registerDomainsCommands(program);
 registerOrgsCommands(program);
 registerEnvsCommands(program);
+registerLinkCommands(program);
+registerDevCommand(program);
+registerBuildCommand(program);
 program.parse();