@uluops/setup 0.6.4 → 0.6.5

package/dist/steps/auth.js

@@ -87,7 +87,10 @@ async function readCredentialsFile() {
     return defaultProfile?.apiKey ?? defaultProfile?.api_key;
 }
 async function validateKey(apiKey) {
-    const url = "https://api.uluops.ai/api/v1/registry/users/me";
+    // Self-identity lives in ops-uluops-api (`/api/v1/auth/me`), not the
+    // registry-api users namespace. Registry-api `/users/:id` Zod-validates the
+    // id as UUID, so /users/me returns 400 with `id: ["Invalid uuid"]`.
+    const url = "https://api.uluops.ai/api/v1/auth/me";
     try {
         const res = await fetch(url, {
             headers: { Authorization: `Bearer ${apiKey}` },
@@ -99,8 +102,9 @@ async function validateKey(apiKey) {
         if (!res.ok) {
             throw new Error(`API returned ${res.status}. Try --skip-validation to continue offline.`);
         }
-        const data = (await res.json());
-        return { email: data.email ?? null };
+        // ops-uluops-api wraps user payloads as { data: { email, ... } }
+        const body = (await res.json());
+        return { email: body.data?.email ?? null };
     }
     catch (err) {
         // fetch() throws TypeError for network failures (ENOTFOUND, ECONNREFUSED).

package/dist/steps/mcp.d.ts

@@ -8,3 +8,15 @@ export interface McpResult {
 export declare function installMcp(profile: HarnessProfile, apiKey: string, scope: "global" | "local", dryRun: boolean): Promise<McpResult>;
 /** Remove UluOps MCP server entries from the harness config. */
 export declare function uninstallMcp(profile: HarnessProfile, configPath: string): Promise<void>;
+/**
+ * Append `entry` to a .gitignore file, creating it if missing.
+ *
+ * Discriminates ENOENT (file does not exist → create fresh) from other read
+ * errors (permission denied, I/O error, EISDIR → warn and skip). The previous
+ * implementation caught everything and wrote a single-line file, silently
+ * clobbering user content on any read failure.
+ *
+ * `reader` is injected for testing the error-discrimination behavior; defaults
+ * to the real fs reader.
+ */
+export declare function ensureGitignoreEntry(gitignorePath: string, entry: string, reader?: (path: string) => Promise<string>): Promise<void>;

package/dist/steps/mcp.js

@@ -38,20 +38,39 @@ async function backupConfig(harnessName, configPath) {
 }
 async function addToGitignore(localConfigFilename) {
     const root = await findProjectRoot();
-    const gitignorePath = join(root, ".gitignore");
     try {
         await access(join(root, ".git"));
     }
     catch {
         return;
     }
+    await ensureGitignoreEntry(join(root, ".gitignore"), localConfigFilename);
+}
+/**
+ * Append `entry` to a .gitignore file, creating it if missing.
+ *
+ * Discriminates ENOENT (file does not exist → create fresh) from other read
+ * errors (permission denied, I/O error, EISDIR → warn and skip). The previous
+ * implementation caught everything and wrote a single-line file, silently
+ * clobbering user content on any read failure.
+ *
+ * `reader` is injected for testing the error-discrimination behavior; defaults
+ * to the real fs reader.
+ */
+export async function ensureGitignoreEntry(gitignorePath, entry, reader = (p) => readFile(p, "utf-8")) {
+    let content;
     try {
-        const content = await readFile(gitignorePath, "utf-8");
-        if (content.includes(localConfigFilename))
-            return;
-        await atomicWrite(gitignorePath, content.trimEnd() + `\n${localConfigFilename}\n`);
+        content = await reader(gitignorePath);
     }
-    catch {
-        await atomicWrite(gitignorePath, `${localConfigFilename}\n`);
+    catch (err) {
+        if (err.code === "ENOENT") {
+            await atomicWrite(gitignorePath, `${entry}\n`);
+            return;
+        }
+        console.warn(`Warning: could not read ${gitignorePath} (${err.message}). Skipping .gitignore update.`);
+        return;
     }
+    if (content.includes(entry))
+        return;
+    await atomicWrite(gitignorePath, content.trimEnd() + `\n${entry}\n`);
 }

package/dist/steps/shell.js

@@ -24,12 +24,13 @@ export async function writeShellExport(profilePath, apiKey, dryRun) {
         return;
     }
     const startIdx = content.indexOf(FENCE_START);
-    const endIdx = content.indexOf(FENCE_END);
+    const endIdx = content.lastIndexOf(FENCE_END);
     if (!dryRun) {
         await backupProfile(profilePath);
     }
     if (startIdx !== -1 && endIdx !== -1 && endIdx > startIdx) {
-        // Replace existing fenced block (use last FENCE_END after FENCE_START to handle duplicates)
+        // Replace existing fenced block — using lastIndexOf for FENCE_END collapses
+        // any duplicate blocks left by earlier buggy installs into a single new block
         const before = content.slice(0, startIdx);
         const after = content.slice(endIdx + FENCE_END.length);
         if (!dryRun) {
@@ -52,7 +53,7 @@ export async function removeShellExport(profilePath) {
         return;
     }
     const startIdx = content.indexOf(FENCE_START);
-    const endIdx = content.indexOf(FENCE_END);
+    const endIdx = content.lastIndexOf(FENCE_END);
     if (startIdx !== -1 && endIdx !== -1 && endIdx > startIdx) {
         await backupProfile(profilePath);
         const before = content.slice(0, startIdx);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@uluops/setup",
-  "version": "0.6.4",
+  "version": "0.6.5",
   "description": "Zero-friction installer for UluOps agentic harnesses",
   "license": "MIT",
   "repository": {