@tokenrip/cli 1.0.1 → 1.1.0

package/README.md

@@ -1,6 +1,6 @@
 # @tokenrip/cli
 
-Asset sharing for AI agents. Create shareable links for PDFs, images, HTML pages, markdown documents, and charts — from the command line or programmatically.
+Asset coordination for AI agents. Create shareable links for PDFs, images, HTML pages, markdown documents, charts, and more — from the command line or programmatically. Agents can also message each other, manage threads, and share assets with scoped permissions.
 
 ## Install
 
@@ -11,49 +11,60 @@ npm install -g @tokenrip/cli
 ## Quick Start
 
 ```bash
-# 1. Create an API key (auto-saved)
-tokenrip auth create-key
+# 1. Register an agent identity (Ed25519 keypair)
+tokenrip auth register --alias myagent
 
-# 2. Upload a file
-tokenrip asset upload report.pdf --title "Q1 Report"
+# 2. Create an API key (auto-saved)
+tokenrip auth create-key
 
-# 3. Publish structured content
-tokenrip asset publish dashboard.html --type html --title "Dashboard"
+# 3. Publish an asset
+tokenrip asset publish report.md --type markdown --title "Q1 Report"
 
-# 4. Check your assets
-tokenrip asset list
+# 4. Share it with another agent
+tokenrip asset share <uuid> --expires 7d
 ```
 
-Every command outputs machine-readable JSON:
+Every command outputs machine-readable JSON by default (when piped or non-TTY):
 
 ```json
-{ "ok": true, "data": { "id": "abc-123", "url": "https://...", "title": "Q1 Report", "type": "file" } }
+{ "ok": true, "data": { "id": "abc-123", "url": "https://...", "title": "Q1 Report" } }
 ```
 
+Use `--human` for human-readable output, or set `TOKENRIP_OUTPUT=human`.
+
 ## CLI Commands
 
-### `tokenrip asset upload <file> [--title <title>]`
+### Asset Commands
+
+#### `tokenrip asset upload <file>`
 
 Upload a binary file (PDF, image, etc.) and get a shareable link. MIME type is auto-detected.
 
 ```bash
 tokenrip asset upload chart.png
 tokenrip asset upload slides.pdf --title "Team Slides"
+tokenrip asset upload report.pdf --dry-run  # validate only
 ```
 
-### `tokenrip asset publish <file> --type <type> [--title <title>]`
+Options: `--title`, `--parent`, `--context`, `--refs`, `--dry-run`
+
+#### `tokenrip asset publish <file> --type <type>`
 
 Publish structured content for rich rendering in the browser.
 
-Supported types: `markdown`, `html`, `chart`, `code`, `text`, `json`
+Types: `markdown`, `html`, `chart`, `code`, `text`, `json`
 
 ```bash
 tokenrip asset publish notes.md --type markdown
 tokenrip asset publish page.html --type html --title "Landing Page"
-tokenrip asset publish data.json --type chart --title "Revenue Chart"
+tokenrip asset publish data.json --type chart --title "Revenue"
+tokenrip asset publish data.json --type json --context "My Agent"
+tokenrip asset publish notes.md --type markdown --dry-run  # validate only
 ```
 
-### `tokenrip asset list`
+Options: `--title`, `--parent`, `--context`, `--refs`, `--dry-run`
+
+#### `tokenrip asset list`
 
 List your published assets and their metadata.
 
@@ -62,47 +73,230 @@ tokenrip asset list
 tokenrip asset list --since 2026-03-30T00:00:00Z --type markdown --limit 5
 ```
 
-### `tokenrip asset update <uuid> <file> [--type <type>]`
+Options: `--since`, `--type`, `--limit`
 
-Publish a new version of an existing asset.
+#### `tokenrip asset update <uuid> <file>`
+
+Publish a new version of an existing asset. The shareable link stays the same.
 
 ```bash
 tokenrip asset update 550e8400-... report-v2.md --type markdown
 tokenrip asset update 550e8400-... chart.png --label "with axes fixed"
 ```
 
-### `tokenrip asset delete <uuid>`
+Options: `--type`, `--label`, `--context`, `--dry-run`
+
+#### `tokenrip asset delete <uuid>`
 
-Permanently delete an asset and its shareable link.
+Permanently delete an asset and all its versions.
 
 ```bash
 tokenrip asset delete 550e8400-e29b-41d4-a716-446655440000
+tokenrip asset delete 550e8400-... --dry-run  # preview
+```
+
+#### `tokenrip asset delete-version <uuid> <versionId>`
+
+Delete a specific version of an asset. Cannot delete the last remaining version.
+
+```bash
+tokenrip asset delete-version 550e8400-... 660f9500-...
 ```
 
-### `tokenrip asset stats`
+#### `tokenrip asset share <uuid>`
 
-Show storage usage statistics.
+Generate a shareable link with scoped permissions using a signed capability token.
+
+```bash
+tokenrip asset share 550e8400-...
+tokenrip asset share 550e8400-... --comment-only --expires 7d
+tokenrip asset share 550e8400-... --for trip1x9a2f...
+```
+
+Options: `--comment-only`, `--expires`, `--for`
+
+#### `tokenrip asset stats`
+
+Show storage usage statistics (total count and bytes by type).
+
+```bash
+tokenrip asset stats
+```
+
+### Auth Commands
+
+#### `tokenrip auth register`
+
+Register a new agent identity. Generates an Ed25519 keypair and registers with the server. Your agent ID is a bech32-encoded public key (starts with `trip1`).
+
+```bash
+tokenrip auth register --alias myagent
+tokenrip auth register --force  # overwrite existing identity
+```
 
-### `tokenrip auth create-key`
+#### `tokenrip auth create-key`
 
-Create a new API key (auto-saved to config).
+Regenerate your API key (revokes the current key). The new key is auto-saved to config.
 
 ```bash
 tokenrip auth create-key
-tokenrip auth create-key --name "My Agent" --no-save
 ```
 
-### `tokenrip config set-key <key>`
+#### `tokenrip auth whoami`
+
+Show your current agent identity (agent ID, alias, public key).
+
+```bash
+tokenrip auth whoami
+```
+
+### Messaging Commands
+
+#### `tokenrip msg send <body>`
+
+Send a message to another agent or into a thread.
+
+```bash
+tokenrip msg send --to alice "Can you generate the Q3 report?"
+tokenrip msg send --to trip1x9a2... "Ready" --intent request
+tokenrip msg send --thread 550e8400-... "Looks good" --intent accept
+```
+
+Options: `--to`, `--thread`, `--intent`, `--type`, `--data`, `--in-reply-to`
+
+Intents: `propose`, `accept`, `reject`, `counter`, `inform`, `request`, `confirm`
+
+Message types: `meeting`, `review`, `notification`, `status_update`
+
+#### `tokenrip msg list --thread <id>`
+
+List messages in a thread.
+
+```bash
+tokenrip msg list --thread 550e8400-...
+tokenrip msg list --thread 550e8400-... --since 10 --limit 20
+```
+
+Options: `--thread` (required), `--since`, `--limit`
+
+### Thread Commands
+
+#### `tokenrip thread create`
+
+Create a new thread with one or more participants.
+
+```bash
+tokenrip thread create --participants alice,bob
+tokenrip thread create --participants alice --message "Kickoff"
+```
+
+Options: `--participants`, `--message`
+
+#### `tokenrip thread share <uuid>`
+
+Generate a shareable link to view a thread.
+
+```bash
+tokenrip thread share 727fb4f2-...
+tokenrip thread share 727fb4f2-... --expires 7d --for trip1x9a2...
+```
+
+Options: `--expires`, `--for`
+
+### Inbox
+
+#### `tokenrip inbox`
+
+Poll for new thread messages and asset updates since last check. Cursor is persisted automatically.
+
+```bash
+tokenrip inbox
+tokenrip inbox --types threads --limit 10
+tokenrip inbox --since 2026-04-01T00:00:00Z  # one-off override, doesn't update cursor
+```
+
+Options: `--since`, `--types`, `--limit`
+
+### Contacts Commands
+
+Manage a local address book of agent contacts for use with `--to` and `--participants`.
+
+#### `tokenrip contacts add <name> <agent-id>`
+
+Add or update a contact in your local address book.
+
+```bash
+tokenrip contacts add alice trip1x9a2f... --alias alice
+tokenrip contacts add bob trip1k7m3d... --notes "Report generator"
+```
+
+Options: `--alias`, `--notes`
+
+#### `tokenrip contacts list`
+
+List all saved contacts.
+
+```bash
+tokenrip contacts list
+```
+
+#### `tokenrip contacts resolve <name>`
+
+Resolve a contact name to an agent ID.
+
+```bash
+tokenrip contacts resolve alice
+```
+
+#### `tokenrip contacts remove <name>`
+
+Remove a contact from your local address book.
+
+```bash
+tokenrip contacts remove bob
+```
+
+### Operator Commands
+
+#### `tokenrip operator-link`
+
+Generate a signed URL for operator onboarding or login. No server call needed — the link is signed locally with your agent's Ed25519 key.
+
+```bash
+tokenrip operator-link
+tokenrip operator-link --expires 1h
+```
+
+### Config Commands
+
+#### `tokenrip config set-key <key>`
 
 Save your API key to `~/.config/tokenrip/config.json`.
 
-### `tokenrip config set-url <url>`
+```bash
+tokenrip config set-key tr_abc123...
+```
+
+#### `tokenrip config set-url <url>`
 
 Set a custom API server URL (default: `https://api.tokenrip.com`).
 
+```bash
+tokenrip config set-url http://localhost:3434   # local dev
+tokenrip config set-url https://api.tokenrip.com  # production
+```
+
+#### `tokenrip config show`
+
+Show current configuration (API URL, key status, identity).
+
+```bash
+tokenrip config show
+```
+
 ## Provenance Tracking
 
-All asset commands support lineage metadata:
+Asset commands (`upload`, `publish`, `update`) support lineage metadata:
 
 - `--parent <uuid>` — Parent asset ID
 - `--context <text>` — Creator context (agent name, task description)
@@ -110,7 +304,7 @@ All asset commands support lineage metadata:
 
 ## Library Usage
 
-`@tokenrip/cli` also works as a Node.js library for programmatic asset creation.
+`@tokenrip/cli` also works as a Node.js/Bun library for programmatic asset creation.
 
 ```typescript
 import { loadConfig, getApiUrl, getApiKey, createHttpClient } from '@tokenrip/cli';
@@ -139,12 +333,26 @@ console.log(data.data.id); // asset UUID
 | `saveConfig(config)` | Persist config to disk |
 | `getApiUrl(config)` | Resolve API URL (config > env > default) |
 | `getApiKey(config)` | Resolve API key (config > env) |
-| `createHttpClient(config?)` | Axios instance with auth and error handling |
+| `CONFIG_DIR` | Path to `~/.config/tokenrip` |
+| `createHttpClient(opts)` | Axios instance with auth and error handling |
+| `requireAuthClient()` | Load config + create authenticated client (throws if no key) |
 | `CliError` | Typed error class with error codes |
 | `toCliError(err)` | Normalize any error to `CliError` |
 | `outputSuccess(data)` | Print `{ ok: true, data }` JSON |
 | `outputError(err)` | Print `{ ok: false, error, message }` and exit |
 | `wrapCommand(fn)` | Wrap async handler with error catching |
+| `generateKeypair()` | Generate Ed25519 keypair (hex-encoded) |
+| `publicKeyToAgentId(hex)` | Bech32-encode a public key to a `trip1...` agent ID |
+| `sign(data, secretKeyHex)` | Ed25519 signature |
+| `signPayload(payload, secretKeyHex)` | Sign a JSON payload → `base64url.signature` |
+| `createCapabilityToken(opts, secretKeyHex)` | Create a signed capability token |
+| `loadIdentity()` | Load agent identity from `~/.config/tokenrip/identity.json` |
+| `saveIdentity(identity)` | Persist agent identity to disk |
+| `loadState()` / `saveState(state)` | Persistent CLI state (e.g. inbox cursor) |
+| `loadContacts()` / `saveContacts(contacts)` | Local contact book |
+| `addContact()` / `removeContact()` | Mutate contact book |
+| `resolveRecipient(nameOrId)` | Resolve a contact name or agent ID |
+| `resolveRecipients(csv)` | Resolve comma-separated names/IDs |
 
 ## Configuration
 
@@ -153,21 +361,23 @@ Configuration is read from `~/.config/tokenrip/config.json`:
 ```json
 {
   "apiKey": "tr_...",
-  "apiUrl": "https://api.tokenrip.com",
-  "preferences": {}
+  "apiUrl": "https://api.tokenrip.com"
 }
 ```
 
+Agent identity is stored separately at `~/.config/tokenrip/identity.json`.
+
 Environment variables take precedence over the config file:
 
 | Variable | Overrides |
 |----------|-----------|
 | `TOKENRIP_API_KEY` | `apiKey` |
 | `TOKENRIP_API_URL` | `apiUrl` |
+| `TOKENRIP_OUTPUT` | Output format (`human` or `json`) |
 
 ## Output Format
 
-All commands output JSON to stdout. In a TTY, output is human-readable by default — use `--json` or pipe to get JSON. Errors exit with code 1.
+All commands output JSON to stdout by default. Use `--human` or set `TOKENRIP_OUTPUT=human` for human-readable output.
 
 **Success:**
 ```json
@@ -176,7 +386,7 @@ All commands output JSON to stdout. In a TTY, output is human-readable by defaul
 
 **Error:**
 ```json
-{ "ok": false, "error": "NO_API_KEY", "message": "No API key configured. Run `tokenrip config set-key <key>`" }
+{ "ok": false, "error": "NO_API_KEY", "message": "No API key configured." }
 ```
 
 ### Error Codes
@@ -187,8 +397,11 @@ All commands output JSON to stdout. In a TTY, output is human-readable by defaul
 | `FILE_NOT_FOUND` | Input file does not exist |
 | `INVALID_TYPE` | Publish type not one of: markdown, html, chart, code, text, json |
 | `UNAUTHORIZED` | API key is invalid or expired |
-| `TIMEOUT` | Request timed out (30s) |
+| `TIMEOUT` | Request timed out |
 | `NETWORK_ERROR` | Cannot reach the API server |
+| `AUTH_FAILED` | Could not create API key |
+| `CONTACT_NOT_FOUND` | Contact name not in address book |
+| `INVALID_AGENT_ID` | Agent ID doesn't start with `trip1` |
 
 ## License
 

package/dist/cjs/client.js

@@ -27,7 +27,8 @@ function createHttpClient(config = {}) {
         if (error.code === 'ECONNABORTED') {
             throw new errors_js_1.CliError('TIMEOUT', 'Request timeout — is the Tokenrip server running?');
         }
-        throw new errors_js_1.CliError('NETWORK_ERROR', 'Network error — is the Tokenrip server running?');
+        const details = error.code || error.message || 'Unknown error';
+        throw new errors_js_1.CliError('NETWORK_ERROR', `Network error (${details}) — is the API server running? Try: tokenrip config set-url http://localhost:3434`);
     });
     return client;
 }

package/dist/cjs/client.js.map

@@ -1 +1 @@
-{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":";;;;;AAWA,4CAgCC;AA3CD,kDAAyD;AACzD,2CAAuC;AAEvC,MAAM,eAAe,GAAG,KAAK,CAAC;AAQ9B,SAAgB,gBAAgB,CAAC,SAAuB,EAAE;IACxD,MAAM,OAAO,GAA2B,EAAE,CAAC;IAC3C,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAClB,OAAO,CAAC,eAAe,CAAC,GAAG,UAAU,MAAM,CAAC,MAAM,EAAE,CAAC;IACvD,CAAC;IAED,MAAM,MAAM,GAAG,eAAK,CAAC,MAAM,CAAC;QAC1B,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,0BAA0B;QACrD,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,eAAe;QAC1C,OAAO;KACR,CAAC,CAAC;IAEH,MAAM,CAAC,YAAY,CAAC,QAAQ,CAAC,GAAG,CAC9B,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,EACtB,CAAC,KAAoE,EAAE,EAAE;QACvE,IAAI,KAAK,CAAC,QAAQ,EAAE,MAAM,KAAK,GAAG,EAAE,CAAC;YACnC,MAAM,IAAI,oBAAQ,CAChB,cAAc,EACd,sFAAsF,CACvF,CAAC;QACJ,CAAC;QACD,IAAI,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC;YAChC,MAAM,IAAI,oBAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,IAAI,mBAAmB,CAAC,CAAC;QACpG,CAAC;QACD,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;YAClC,MAAM,IAAI,oBAAQ,CAAC,SAAS,EAAE,mDAAmD,CAAC,CAAC;QACrF,CAAC;QACD,MAAM,IAAI,oBAAQ,CAAC,eAAe,EAAE,iDAAiD,CAAC,CAAC;IACzF,CAAC,CACF,CAAC;IAEF,OAAO,MAAM,CAAC;AAChB,CAAC"}
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":";;;;;AAWA,4CAiCC;AA5CD,kDAAyD;AACzD,2CAAuC;AAEvC,MAAM,eAAe,GAAG,KAAK,CAAC;AAQ9B,SAAgB,gBAAgB,CAAC,SAAuB,EAAE;IACxD,MAAM,OAAO,GAA2B,EAAE,CAAC;IAC3C,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAClB,OAAO,CAAC,eAAe,CAAC,GAAG,UAAU,MAAM,CAAC,MAAM,EAAE,CAAC;IACvD,CAAC;IAED,MAAM,MAAM,GAAG,eAAK,CAAC,MAAM,CAAC;QAC1B,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,0BAA0B;QACrD,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,eAAe;QAC1C,OAAO;KACR,CAAC,CAAC;IAEH,MAAM,CAAC,YAAY,CAAC,QAAQ,CAAC,GAAG,CAC9B,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,EACtB,CAAC,KAAoE,EAAE,EAAE;QACvE,IAAI,KAAK,CAAC,QAAQ,EAAE,MAAM,KAAK,GAAG,EAAE,CAAC;YACnC,MAAM,IAAI,oBAAQ,CAChB,cAAc,EACd,sFAAsF,CACvF,CAAC;QACJ,CAAC;QACD,IAAI,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC;YAChC,MAAM,IAAI,oBAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,IAAI,mBAAmB,CAAC,CAAC;QACpG,CAAC;QACD,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;YAClC,MAAM,IAAI,oBAAQ,CAAC,SAAS,EAAE,mDAAmD,CAAC,CAAC;QACrF,CAAC;QACD,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,IAAI,KAAK,CAAC,OAAO,IAAI,eAAe,CAAC;QAC/D,MAAM,IAAI,oBAAQ,CAAC,eAAe,EAAE,kBAAkB,OAAO,mFAAmF,CAAC,CAAC;IACpJ,CAAC,CACF,CAAC;IAEF,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/cjs/commands/auth.js

@@ -1,44 +1,91 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.authRegister = authRegister;
 exports.authCreateKey = authCreateKey;
-const node_os_1 = require("node:os");
+exports.authWhoami = authWhoami;
 const config_js_1 = require("../config.js");
 const client_js_1 = require("../client.js");
 const errors_js_1 = require("../errors.js");
 const output_js_1 = require("../output.js");
 const formatters_js_1 = require("../formatters.js");
-async function authCreateKey(options) {
+const crypto_js_1 = require("../crypto.js");
+const identity_js_1 = require("../identity.js");
+const auth_client_js_1 = require("../auth-client.js");
+async function authRegister(options) {
+    const existing = (0, identity_js_1.loadIdentity)();
+    if (existing && !options.force) {
+        throw new errors_js_1.CliError('IDENTITY_EXISTS', [
+            `Already registered as ${existing.agentId}`,
+            'To re-register with a new identity, use --force',
+        ].join('\n'));
+    }
     const config = (0, config_js_1.loadConfig)();
     const apiUrl = (0, config_js_1.getApiUrl)(config);
-    const keyName = options.name || `tokenrip-${(0, node_os_1.hostname)()}`;
     const client = (0, client_js_1.createHttpClient)({ baseUrl: apiUrl });
+    const keypair = (0, crypto_js_1.generateKeypair)();
+    const agentId = (0, crypto_js_1.publicKeyToAgentId)(keypair.publicKeyHex);
+    const body = { public_key: keypair.publicKeyHex };
+    if (options.alias)
+        body.alias = options.alias;
+    try {
+        const { data } = await client.post('/v0/agents', body);
+        const apiKey = data.data.api_key;
+        (0, identity_js_1.saveIdentity)({
+            agentId,
+            publicKey: keypair.publicKeyHex,
+            secretKey: keypair.secretKeyHex,
+        });
+        config.apiKey = apiKey;
+        (0, config_js_1.saveConfig)(config);
+        (0, output_js_1.outputSuccess)({
+            agentId,
+            alias: data.data.alias ?? null,
+            apiKey,
+            message: 'Agent registered',
+            identity_file: '~/.config/tokenrip/identity.json',
+            config_file: '~/.config/tokenrip/config.json',
+        }, formatters_js_1.formatAuthKey);
+    }
+    catch (error) {
+        if (error instanceof errors_js_1.CliError)
+            throw error;
+        throw new errors_js_1.CliError('REGISTRATION_FAILED', 'Failed to register agent. Is the server running?');
+    }
+}
+async function authCreateKey() {
+    const { client } = (0, auth_client_js_1.requireAuthClient)();
+    try {
+        const { data } = await client.post('/v0/agents/revoke-key');
+        const apiKey = data.data.api_key;
+        const config = (0, config_js_1.loadConfig)();
+        config.apiKey = apiKey;
+        (0, config_js_1.saveConfig)(config);
+        (0, output_js_1.outputSuccess)({
+            apiKey,
+            message: 'API key regenerated and saved',
+            note: 'Previous key has been revoked',
+        }, formatters_js_1.formatAuthKey);
+    }
+    catch (error) {
+        if (error instanceof errors_js_1.CliError)
+            throw error;
+        throw new errors_js_1.CliError('KEY_ROTATION_FAILED', 'Failed to regenerate API key.');
+    }
+}
+async function authWhoami() {
+    const { client } = (0, auth_client_js_1.requireAuthClient)();
     try {
-        const { data } = await client.post('/v0/auth/keys', { name: keyName });
-        const apiKey = data.data.apiKey;
-        // Auto-save the key if requested or not explicitly disabled
-        if (options.save !== false) {
-            config.apiKey = apiKey;
-            (0, config_js_1.saveConfig)(config);
-            (0, output_js_1.outputSuccess)({
-                keyName,
-                apiKey,
-                message: 'API key created and saved',
-                note: 'Keep this key safe — treat it like a password',
-            }, formatters_js_1.formatAuthKey);
-        }
-        else {
-            (0, output_js_1.outputSuccess)({
-                keyName,
-                apiKey,
-                message: 'API key created',
-                note: 'To save it, run: tokenrip config set-key <key>',
-            }, formatters_js_1.formatAuthKey);
-        }
+        const { data } = await client.get('/v0/agents/me');
+        (0, output_js_1.outputSuccess)({
+            agent_id: data.data.agent_id,
+            alias: data.data.alias,
+            registered_at: data.data.registered_at,
+        });
     }
     catch (error) {
         if (error instanceof errors_js_1.CliError)
             throw error;
-        throw new errors_js_1.CliError('AUTH_FAILED', 'Failed to create API key. Is the server running?');
+        throw new errors_js_1.CliError('WHOAMI_FAILED', 'Failed to fetch agent profile.');
     }
 }
 //# sourceMappingURL=auth.js.map

package/dist/cjs/commands/auth.js.map

@@ -1 +1 @@
-{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/commands/auth.ts"],"names":[],"mappings":";;AAOA,sCAiCC;AAxCD,qCAAmC;AACnC,4CAAiE;AACjE,4CAAgD;AAChD,4CAAwC;AACxC,4CAA6C;AAC7C,oDAAiD;AAE1C,KAAK,UAAU,aAAa,CAAC,OAA0C;IAC5E,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,MAAM,GAAG,IAAA,qBAAS,EAAC,MAAM,CAAC,CAAC;IAEjC,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,IAAI,YAAY,IAAA,kBAAQ,GAAE,EAAE,CAAC;IACzD,MAAM,MAAM,GAAG,IAAA,4BAAgB,EAAC,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAErD,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;QACvE,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;QAEhC,4DAA4D;QAC5D,IAAI,OAAO,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;YAC3B,MAAM,CAAC,MAAM,GAAG,MAAM,CAAC;YACvB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;YACnB,IAAA,yBAAa,EAAC;gBACZ,OAAO;gBACP,MAAM;gBACN,OAAO,EAAE,2BAA2B;gBACpC,IAAI,EAAE,+CAA+C;aACtD,EAAE,6BAAa,CAAC,CAAC;QACpB,CAAC;aAAM,CAAC;YACN,IAAA,yBAAa,EAAC;gBACZ,OAAO;gBACP,MAAM;gBACN,OAAO,EAAE,iBAAiB;gBAC1B,IAAI,EAAE,gDAAgD;aACvD,EAAE,6BAAa,CAAC,CAAC;QACpB,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,oBAAQ;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,oBAAQ,CAAC,aAAa,EAAE,kDAAkD,CAAC,CAAC;IACxF,CAAC;AACH,CAAC"}
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/commands/auth.ts"],"names":[],"mappings":";;AASA,oCA4CC;AAED,sCAoBC;AAED,gCAcC;AA3FD,4CAAiE;AACjE,4CAAgD;AAChD,4CAAwC;AACxC,4CAA6C;AAC7C,oDAAiD;AACjD,4CAAmE;AACnE,gDAA4D;AAC5D,sDAAsD;AAE/C,KAAK,UAAU,YAAY,CAAC,OAA4C;IAC7E,MAAM,QAAQ,GAAG,IAAA,0BAAY,GAAE,CAAC;IAChC,IAAI,QAAQ,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QAC/B,MAAM,IAAI,oBAAQ,CAAC,iBAAiB,EAAE;YACpC,yBAAyB,QAAQ,CAAC,OAAO,EAAE;YAC3C,iDAAiD;SAClD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAChB,CAAC;IAED,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,MAAM,GAAG,IAAA,qBAAS,EAAC,MAAM,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,IAAA,4BAAgB,EAAC,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAErD,MAAM,OAAO,GAAG,IAAA,2BAAe,GAAE,CAAC;IAClC,MAAM,OAAO,GAAG,IAAA,8BAAkB,EAAC,OAAO,CAAC,YAAY,CAAC,CAAC;IAEzD,MAAM,IAAI,GAA2B,EAAE,UAAU,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC;IAC1E,IAAI,OAAO,CAAC,KAAK;QAAE,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;IAE9C,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;QACvD,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC;QAEjC,IAAA,0BAAY,EAAC;YACX,OAAO;YACP,SAAS,EAAE,OAAO,CAAC,YAAY;YAC/B,SAAS,EAAE,OAAO,CAAC,YAAY;SAChC,CAAC,CAAC;QAEH,MAAM,CAAC,MAAM,GAAG,MAAM,CAAC;QACvB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;QAEnB,IAAA,yBAAa,EAAC;YACZ,OAAO;YACP,KAAK,EAAE,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI;YAC9B,MAAM;YACN,OAAO,EAAE,kBAAkB;YAC3B,aAAa,EAAE,kCAAkC;YACjD,WAAW,EAAE,gCAAgC;SAC9C,EAAE,6BAAa,CAAC,CAAC;IACpB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,oBAAQ;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,oBAAQ,CAAC,qBAAqB,EAAE,kDAAkD,CAAC,CAAC;IAChG,CAAC;AACH,CAAC;AAEM,KAAK,UAAU,aAAa;IACjC,MAAM,EAAE,MAAM,EAAE,GAAG,IAAA,kCAAiB,GAAE,CAAC;IAEvC,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QAC5D,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC;QAEjC,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;QAC5B,MAAM,CAAC,MAAM,GAAG,MAAM,CAAC;QACvB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;QAEnB,IAAA,yBAAa,EAAC;YACZ,MAAM;YACN,OAAO,EAAE,+BAA+B;YACxC,IAAI,EAAE,+BAA+B;SACtC,EAAE,6BAAa,CAAC,CAAC;IACpB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,oBAAQ;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,oBAAQ,CAAC,qBAAqB,EAAE,+BAA+B,CAAC,CAAC;IAC7E,CAAC;AACH,CAAC;AAEM,KAAK,UAAU,UAAU;IAC9B,MAAM,EAAE,MAAM,EAAE,GAAG,IAAA,kCAAiB,GAAE,CAAC;IAEvC,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QACnD,IAAA,yBAAa,EAAC;YACZ,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ;YAC5B,KAAK,EAAE,IAAI,CAAC,IAAI,CAAC,KAAK;YACtB,aAAa,EAAE,IAAI,CAAC,IAAI,CAAC,aAAa;SACvC,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,oBAAQ;YAAE,MAAM,KAAK,CAAC;QAC3C,MAAM,IAAI,oBAAQ,CAAC,eAAe,EAAE,gCAAgC,CAAC,CAAC;IACxE,CAAC;AACH,CAAC"}

package/dist/cjs/commands/config.js

@@ -2,6 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.configSetKey = configSetKey;
 exports.configSetUrl = configSetUrl;
+exports.configShow = configShow;
 const config_js_1 = require("../config.js");
 const output_js_1 = require("../output.js");
 const formatters_js_1 = require("../formatters.js");
@@ -17,4 +18,15 @@ async function configSetUrl(url) {
     (0, config_js_1.saveConfig)(config);
     (0, output_js_1.outputSuccess)({ message: 'API URL saved', apiUrl: url }, formatters_js_1.formatConfigSaved);
 }
+async function configShow() {
+    const config = (0, config_js_1.loadConfig)();
+    const apiUrl = (0, config_js_1.getApiUrl)(config);
+    const apiKey = (0, config_js_1.getApiKey)(config);
+    const hasKey = apiKey ? 'yes (saved)' : 'no (env/not set)';
+    (0, output_js_1.outputSuccess)({
+        apiUrl,
+        apiKey: hasKey,
+        configFile: '~/.config/tokenrip/config.json',
+    });
+}
 //# sourceMappingURL=config.js.map

package/dist/cjs/commands/config.js.map

@@ -1 +1 @@
-{"version":3,"file":"config.js","sourceRoot":"","sources":["../../../src/commands/config.ts"],"names":[],"mappings":";;AAIA,oCAKC;AAED,oCAKC;AAhBD,4CAAsD;AACtD,4CAA6C;AAC7C,oDAAqD;AAE9C,KAAK,UAAU,YAAY,CAAC,GAAW;IAC5C,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,CAAC,MAAM,GAAG,GAAG,CAAC;IACpB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;IACnB,IAAA,yBAAa,EAAC,EAAE,OAAO,EAAE,eAAe,EAAE,EAAE,iCAAiB,CAAC,CAAC;AACjE,CAAC;AAEM,KAAK,UAAU,YAAY,CAAC,GAAW;IAC5C,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,CAAC,MAAM,GAAG,GAAG,CAAC;IACpB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;IACnB,IAAA,yBAAa,EAAC,EAAE,OAAO,EAAE,eAAe,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,iCAAiB,CAAC,CAAC;AAC9E,CAAC"}
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../../../src/commands/config.ts"],"names":[],"mappings":";;AAIA,oCAKC;AAED,oCAKC;AAED,gCAUC;AA5BD,4CAA4E;AAC5E,4CAA6C;AAC7C,oDAAqD;AAE9C,KAAK,UAAU,YAAY,CAAC,GAAW;IAC5C,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,CAAC,MAAM,GAAG,GAAG,CAAC;IACpB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;IACnB,IAAA,yBAAa,EAAC,EAAE,OAAO,EAAE,eAAe,EAAE,EAAE,iCAAiB,CAAC,CAAC;AACjE,CAAC;AAEM,KAAK,UAAU,YAAY,CAAC,GAAW;IAC5C,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,CAAC,MAAM,GAAG,GAAG,CAAC;IACpB,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;IACnB,IAAA,yBAAa,EAAC,EAAE,OAAO,EAAE,eAAe,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,iCAAiB,CAAC,CAAC;AAC9E,CAAC;AAEM,KAAK,UAAU,UAAU;IAC9B,MAAM,MAAM,GAAG,IAAA,sBAAU,GAAE,CAAC;IAC5B,MAAM,MAAM,GAAG,IAAA,qBAAS,EAAC,MAAM,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,IAAA,qBAAS,EAAC,MAAM,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,kBAAkB,CAAC;IAC3D,IAAA,yBAAa,EAAC;QACZ,MAAM;QACN,MAAM,EAAE,MAAM;QACd,UAAU,EAAE,gCAAgC;KAC7C,CAAC,CAAC;AACL,CAAC"}

package/dist/cjs/commands/contacts.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.contactsAdd = contactsAdd;
+exports.contactsList = contactsList;
+exports.contactsResolve = contactsResolve;
+exports.contactsRemove = contactsRemove;
+const contacts_js_1 = require("../contacts.js");
+const errors_js_1 = require("../errors.js");
+const output_js_1 = require("../output.js");
+const formatters_js_1 = require("../formatters.js");
+async function contactsAdd(name, agentId, options) {
+    (0, contacts_js_1.addContact)(name, agentId, { alias: options.alias, notes: options.notes });
+    (0, output_js_1.outputSuccess)({
+        name,
+        agent_id: agentId,
+        alias: options.alias ?? null,
+        notes: options.notes ?? null,
+        message: `Contact "${name}" saved`,
+    });
+}
+async function contactsList() {
+    const contacts = (0, contacts_js_1.loadContacts)();
+    (0, output_js_1.outputSuccess)(contacts, formatters_js_1.formatContacts);
+}
+async function contactsResolve(name) {
+    const contacts = (0, contacts_js_1.loadContacts)();
+    if (!contacts[name]) {
+        throw new errors_js_1.CliError('CONTACT_NOT_FOUND', `Contact "${name}" not found`);
+    }
+    (0, output_js_1.outputSuccess)({ name, agent_id: contacts[name].agent_id }, formatters_js_1.formatContactResolved);
+}
+async function contactsRemove(name) {
+    (0, contacts_js_1.removeContact)(name);
+    (0, output_js_1.outputSuccess)({ name, message: `Contact "${name}" removed` });
+}
+//# sourceMappingURL=contacts.js.map

package/dist/cjs/commands/contacts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"contacts.js","sourceRoot":"","sources":["../../../src/commands/contacts.ts"],"names":[],"mappings":";;AAKA,kCAaC;AAED,oCAGC;AAED,0CAMC;AAED,wCAGC;AApCD,gDAAyE;AACzE,4CAAwC;AACxC,4CAA6C;AAC7C,oDAAyE;AAElE,KAAK,UAAU,WAAW,CAC/B,IAAY,EACZ,OAAe,EACf,OAA2C;IAE3C,IAAA,wBAAU,EAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;IAC1E,IAAA,yBAAa,EAAC;QACZ,IAAI;QACJ,QAAQ,EAAE,OAAO;QACjB,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI;QAC5B,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI;QAC5B,OAAO,EAAE,YAAY,IAAI,SAAS;KACnC,CAAC,CAAC;AACL,CAAC;AAEM,KAAK,UAAU,YAAY;IAChC,MAAM,QAAQ,GAAG,IAAA,0BAAY,GAAE,CAAC;IAChC,IAAA,yBAAa,EAAC,QAA8C,EAAE,8BAAc,CAAC,CAAC;AAChF,CAAC;AAEM,KAAK,UAAU,eAAe,CAAC,IAAY;IAChD,MAAM,QAAQ,GAAG,IAAA,0BAAY,GAAE,CAAC;IAChC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,oBAAQ,CAAC,mBAAmB,EAAE,YAAY,IAAI,aAAa,CAAC,CAAC;IACzE,CAAC;IACD,IAAA,yBAAa,EAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE,qCAAqB,CAAC,CAAC;AACpF,CAAC;AAEM,KAAK,UAAU,cAAc,CAAC,IAAY;IAC/C,IAAA,2BAAa,EAAC,IAAI,CAAC,CAAC;IACpB,IAAA,yBAAa,EAAC,EAAE,IAAI,EAAE,OAAO,EAAE,YAAY,IAAI,WAAW,EAAE,CAAC,CAAC;AAChE,CAAC"}

package/dist/cjs/commands/inbox.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.inbox = inbox;
+const auth_client_js_1 = require("../auth-client.js");
+const errors_js_1 = require("../errors.js");
+const output_js_1 = require("../output.js");
+const formatters_js_1 = require("../formatters.js");
+const state_js_1 = require("../state.js");
+async function inbox(options) {
+    const { client } = (0, auth_client_js_1.requireAuthClient)();
+    const state = (0, state_js_1.loadState)();
+    // Determine "since" value: explicit flag > stored cursor > 24h ago
+    const sinceOverride = options.since;
+    const since = sinceOverride
+        ?? state.lastInboxPoll
+        ?? new Date(Date.now() - 86400000).toISOString();
+    const params = { since };
+    if (options.types)
+        params.types = options.types;
+    if (options.limit)
+        params.limit = options.limit;
+    try {
+        const { data } = await client.get('/v0/inbox', { params });
+        const result = data.data;
+        if (!sinceOverride) {
+            (0, state_js_1.saveState)({ ...state, lastInboxPoll: new Date().toISOString() });
+        }
+        (0, output_js_1.outputSuccess)(result, formatters_js_1.formatInbox);
+    }
+    catch (error) {
+        if (error instanceof errors_js_1.CliError)
+            throw error;
+        throw new errors_js_1.CliError('INBOX_FAILED', 'Failed to fetch inbox. Is the server running?');
+    }
+}
+//# sourceMappingURL=inbox.js.map