@unifiedmemory/cli 1.1.0 → 1.3.0

package/.env.example

@@ -1,29 +1,44 @@
 # UnifiedMemory CLI Configuration
-# Copy this file to .env and fill in your values
+#
+# ============================================
+# IMPORTANT: This file is OPTIONAL
+# ============================================
+# The CLI includes production defaults for all values below.
+# This file is only needed if you want to override defaults
+# (e.g., for development, testing, or custom deployments).
+#
+# For normal usage, you can delete this file - the CLI will work without it.
+#
+# To use custom values:
+# 1. Copy this file to .env
+# 2. Uncomment and modify the values you want to override
+# 3. Leave other values commented to use the built-in defaults
 
 # ============================================
-# REQUIRED: Clerk OAuth Configuration
+# Clerk OAuth Configuration
 # ============================================
-# Get these from your Clerk dashboard: https://dashboard.clerk.com
-CLERK_CLIENT_ID=your_clerk_client_id_here
-CLERK_DOMAIN=your-app.clerk.accounts.dev
+# Production defaults are included in the CLI
+# Only override these if using a custom Clerk instance
+# CLERK_CLIENT_ID=custom_clerk_client_id
+# CLERK_DOMAIN=custom-app.clerk.accounts.dev
 
 # ============================================
-# REQUIRED: API Configuration
+# API Configuration
 # ============================================
-# Your UnifiedMemory API gateway URL
-API_ENDPOINT=https://your-api-gateway.zuplo.dev
+# Production default is included in the CLI
+# Only override this for local testing or custom deployments
+# API_ENDPOINT=https://custom-api-gateway.zuplo.dev
 
 # ============================================
-# OPTIONAL: OAuth Flow Configuration
+# OAuth Flow Configuration
 # ============================================
-# Customize the OAuth redirect URI and local server port
-# Default values work for most users
+# Defaults to localhost:3333 for the OAuth callback server
+# Customize only if you need a different port or URL
 # REDIRECT_URI=http://localhost:3333/callback
 # PORT=3333
 
 # ============================================
-# OPTIONAL: Clerk Client Secret
+# Clerk Client Secret (Optional)
 # ============================================
 # Not required for PKCE flow (recommended)
 # Only set this if specifically instructed

package/CHANGELOG.md

@@ -7,6 +7,59 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Changed
+
+- **lib/config.js** - Embedded production defaults for zero-configuration installation
+  - Added default values for `CLERK_CLIENT_ID`, `CLERK_DOMAIN`, and `API_ENDPOINT`
+  - Users no longer need to create `.env` files after `npm install`
+  - Environment variables can still override defaults for development/testing
+  - Simplified `validateConfig()` to remove "missing environment variables" errors
+  - CLI now works immediately after installation with no setup required
+
+- **.env.example** - Updated documentation to clarify optional nature
+  - Added prominent note that the file is OPTIONAL
+  - Explained that production defaults are included in the CLI
+  - Commented out all example values to emphasize optional overrides
+  - Clarified when overrides might be needed (development, testing, custom deployments)
+
+- **README.md** - Improved installation and configuration documentation
+  - Added "No configuration required!" note to installation section
+  - Renamed "Configuration" to "Advanced Configuration (Optional)"
+  - Removed "Missing environment variables" from troubleshooting
+  - Emphasized zero-friction installation experience
+
+## [1.2.0] - 2026-01-08
+
+### Added
+
+- **commands/init.js** - Smart default project name based on directory detection
+  - Project name prompt now defaults to the parent top-level directory name
+  - Automatically detects project root by walking up directories looking for markers:
+    - `.git` directory (Git repository)
+    - `package.json` (Node.js project)
+    - `pyproject.toml` (Python project)
+    - `Cargo.toml` (Rust project)
+    - `.um` directory (already initialized)
+  - Works correctly from nested subdirectories (e.g., `/project/src/components/`)
+  - Max depth limit of 5 levels prevents walking too far up (e.g., to home directory)
+  - Users can press Enter to accept default or type custom name
+  - Graceful fallback to current directory name if no markers found within 5 levels
+  - New helper functions: `findProjectRoot()` and `getDefaultProjectName()`
+  - No new dependencies - uses built-in Node.js `path` and `fs` modules
+
+- **commands/init.js, lib/provider-detector.js** - Auto-authorize MCP tools in Claude Code during init
+  - Dynamically fetches available MCP tools from the gateway during `um init`
+  - Prompts user once to pre-authorize all UnifiedMemory tools (search_notes, create_note, create_topic, etc.)
+  - If user agrees, adds tool permissions to `.claude/settings.local.json` in format `mcp__unifiedmemory__<toolname>`
+  - Future-proof: Automatically includes new tools as they're added to the MCP server
+  - Single yes/no question with clear explanation of what's being authorized
+  - Graceful error handling: Skips permission setup if API unavailable, continues with init
+  - Idempotent: Won't duplicate existing permissions if run multiple times
+  - Preserves existing permissions (e.g., Bash commands) when adding new ones
+  - New helper function: `fetchMCPToolPermissions()` in commands/init.js
+  - Updated `ClaudeProvider.updateClaudeSettings()` to write permissions array
+  - Eliminates need for manual "Allow" clicks on every MCP tool use
+
 ### Fixed
 
 - **commands/init.js** - Enhanced error handling for 401/403/network errors during project fetching

package/README.md

@@ -171,6 +171,8 @@ npm install -g @unifiedmemory/cli
 um --version
 ```
 
+**No configuration required!** The CLI includes production defaults and works immediately after installation.
+
 **Option 2: Use with npx (no installation)**
 ```bash
 npx @unifiedmemory/cli init
@@ -213,43 +215,35 @@ Tokens automatically refresh. If you see auth errors:
 um login
 ```
 
-### Missing environment variables
-If you see "Missing required environment variables" error:
-1. Copy `.env.example` to `.env` in the CLI installation directory
-2. Fill in your Clerk and API credentials
-3. See Configuration section below for details
+## Advanced Configuration (Optional)
 
-## Configuration
+**For most users, no configuration is needed!** The CLI includes production defaults and works out of the box.
 
-The CLI requires environment variables for Clerk OAuth and API access. These should never be hardcoded in your project.
+For development, testing, or custom deployments, you can override defaults by creating a `.env` file:
 
-**Step 1: Create `.env` file**
+**Step 1: Create `.env` file** (optional)
 ```bash
 # In the um-cli installation directory (find with: npm root -g)
 cp .env.example .env
 ```
 
-**Step 2: Add your credentials**
+**Step 2: Override the values you need** (optional)
 ```bash
-# Required: Clerk OAuth Configuration
-CLERK_CLIENT_ID=your_clerk_client_id_here
-CLERK_DOMAIN=your-app.clerk.accounts.dev
-
-# Required: API Configuration
-API_ENDPOINT=https://your-api-gateway.zuplo.dev
-```
+# Optional: Override production defaults
+CLERK_CLIENT_ID=custom_clerk_client_id
+CLERK_DOMAIN=custom-app.clerk.accounts.dev
+API_ENDPOINT=https://custom-api-gateway.zuplo.dev
 
-Get these values from:
-- **Clerk credentials**: [Clerk Dashboard](https://dashboard.clerk.com)
-- **API endpoint**: Your UnifiedMemory deployment
-
-**Optional configuration**:
-```bash
-# Customize OAuth redirect (defaults shown)
+# Optional: Customize OAuth redirect (defaults to localhost:3333)
 REDIRECT_URI=http://localhost:3333/callback
 PORT=3333
 ```
 
+**When you might need this**:
+- 🔧 **Development**: Testing with a local API backend
+- 🧪 **Testing**: Using a staging or test Clerk instance
+- 🏢 **Custom Deployment**: Running your own UnifiedMemory instance
+
 See `.env.example` for the complete template with documentation.
 
 ## Privacy & Security

package/commands/init.js

@@ -8,6 +8,52 @@ import { loadAndRefreshToken } from '../lib/token-validation.js';
 import { login } from './login.js';
 import { ProviderDetector } from '../lib/provider-detector.js';
 
+/**
+ * Find project root directory by looking for common markers
+ * @param {string} startDir - Directory to start searching from
+ * @returns {string} Project root directory path
+ */
+function findProjectRoot(startDir = process.cwd()) {
+  let currentDir = startDir;
+  const root = path.parse(currentDir).root;
+  let levelsUp = 0;
+  const MAX_DEPTH = 5; // Only walk up 5 levels to avoid finding distant markers
+
+  while (currentDir !== root && levelsUp < MAX_DEPTH) {
+    // Check for common project markers
+    const markers = [
+      path.join(currentDir, '.git'),
+      path.join(currentDir, 'package.json'),
+      path.join(currentDir, 'pyproject.toml'),
+      path.join(currentDir, 'Cargo.toml'),
+      path.join(currentDir, '.um'),
+    ];
+
+    // If any marker exists, this is the project root
+    for (const marker of markers) {
+      if (fs.existsSync(marker)) {
+        return currentDir;
+      }
+    }
+
+    // Move up one directory
+    currentDir = path.dirname(currentDir);
+    levelsUp++;
+  }
+
+  // Fallback: return the starting directory
+  return startDir;
+}
+
+/**
+ * Get default project name based on directory
+ * @returns {string} Default project name
+ */
+function getDefaultProjectName() {
+  const projectRoot = findProjectRoot();
+  return path.basename(projectRoot);
+}
+
 export async function init(options = {}) {
   console.log(chalk.cyan('\n🚀 UnifiedMemory Initialization\n'));
 
@@ -35,9 +81,15 @@ export async function init(options = {}) {
   // Step 3: Save project config
   await saveProjectConfig(authData, projectData);
 
+  // Step 3.5: Fetch available MCP tools for permissions
+  let mcpToolPermissions = null;
+  if (!options.skipConfigure) {
+    mcpToolPermissions = await fetchMCPToolPermissions(authData, projectData);
+  }
+
   // Step 4: Configure AI tools
   if (!options.skipConfigure) {
-    await configureProviders(authData, projectData);
+    await configureProviders(authData, projectData, mcpToolPermissions);
   }
 
   console.log(chalk.green('\n✅ Initialization complete!\n'));
@@ -228,11 +280,14 @@ async function selectOrCreateProject(authData, options) {
   }]);
 
   if (action === 'create') {
+    const defaultName = getDefaultProjectName();
+
     const { name, description } = await inquirer.prompt([
       {
         type: 'input',
         name: 'name',
         message: 'Project name:',
+        default: defaultName,
         validate: input => input.length > 0 || 'Name is required',
       },
       {
@@ -246,11 +301,14 @@ async function selectOrCreateProject(authData, options) {
   } else {
     if (projects.length === 0) {
       console.log(chalk.yellow('No projects found. Creating first project...'));
+      const defaultName = getDefaultProjectName();
+
       const { name, description } = await inquirer.prompt([
         {
           type: 'input',
           name: 'name',
           message: 'Project name:',
+          default: defaultName,
           validate: input => input.length > 0 || 'Name is required',
         },
         {
@@ -440,7 +498,66 @@ async function saveProjectConfig(authData, projectData) {
   }
 }
 
-async function configureProviders(authData, projectData) {
+/**
+ * Fetch MCP tools and prompt user for permission to pre-authorize
+ * @param {Object} authData - Auth data with tokens
+ * @param {Object} projectData - Project data
+ * @returns {Promise<Array<string>|null>} - Array of permission strings or null if declined
+ */
+async function fetchMCPToolPermissions(authData, projectData) {
+  try {
+    // Build auth headers (similar to lib/mcp-server.js)
+    const authHeaders = {
+      'Authorization': `Bearer ${authData.access_token}`,
+      'X-Org-Id': authData.org_id,
+      'X-User-Id': authData.user_id,
+    };
+
+    // Fetch tools from gateway
+    const { fetchRemoteMCPTools } = await import('../lib/mcp-proxy.js');
+    const projectContext = {
+      project_id: projectData.project_id,
+      org_id: authData.org_id,
+    };
+
+    const toolsResult = await fetchRemoteMCPTools(authHeaders, projectContext);
+    const tools = toolsResult.tools || [];
+
+    if (tools.length === 0) {
+      return null; // No tools available
+    }
+
+    // Format tool names for display
+    const toolNames = tools.map(t => t.name).join(', ');
+
+    // Prompt user
+    console.log(chalk.cyan('\n🔧 MCP Tool Permissions\n'));
+    console.log(chalk.gray(`Found ${tools.length} available tools: ${toolNames}`));
+
+    const { allowPermissions } = await inquirer.prompt([{
+      type: 'confirm',
+      name: 'allowPermissions',
+      message: 'Pre-authorize these UnifiedMemory tools in Claude Code? (Recommended)',
+      default: true,
+    }]);
+
+    if (!allowPermissions) {
+      console.log(chalk.yellow('⚠ Tools not pre-authorized. Claude will prompt for permission on first use.'));
+      return null;
+    }
+
+    // Convert tool names to permission format
+    const permissions = tools.map(tool => `mcp__unifiedmemory__${tool.name}`);
+    return permissions;
+
+  } catch (error) {
+    console.error(chalk.yellow(`⚠ Could not fetch MCP tools: ${error.message}`));
+    console.log(chalk.gray('Skipping permission setup. You can manually add permissions later.'));
+    return null;
+  }
+}
+
+async function configureProviders(authData, projectData, mcpToolPermissions = null) {
   console.log(chalk.cyan('\n🔧 Configuring AI code assistants...\n'));
 
   // Pass current directory for project-level configs (like Claude Code)
@@ -456,8 +573,8 @@ async function configureProviders(authData, projectData) {
 
   // NEW APPROACH: Configure local MCP server (no tokens in config files)
   for (const provider of detected) {
-    // Configure MCP server
-    const mcpSuccess = provider.configureMCP();
+    // Configure MCP server (pass permissions for Claude Code)
+    const mcpSuccess = provider.configureMCP(mcpToolPermissions);
 
     // Configure memory instructions
     const instructionsResult = provider.configureMemoryInstructions?.();
@@ -465,6 +582,11 @@ async function configureProviders(authData, projectData) {
     // Display results
     if (mcpSuccess) {
       console.log(chalk.green(`✓ Configured ${provider.name} MCP server`));
+
+      // Show permission status for Claude Code
+      if (provider.name === 'Claude Code' && mcpToolPermissions && mcpToolPermissions.length > 0) {
+        console.log(chalk.green(`  ✓ Pre-authorized ${mcpToolPermissions.length} MCP tools`));
+      }
     } else {
       console.log(chalk.red(`✗ Failed to configure ${provider.name} MCP`));
     }

package/lib/config.js

@@ -9,49 +9,37 @@ const __dirname = dirname(__filename);
 dotenvConfig({ path: join(__dirname, '..', '.env') });
 
 export const config = {
-  // Required: Clerk OAuth configuration
-  clerkClientId: process.env.CLERK_CLIENT_ID,
+  // Clerk OAuth configuration (production defaults, can be overridden via env vars)
+  clerkClientId: process.env.CLERK_CLIENT_ID || 'nULlnomaKB9rRGP2',
   clerkClientSecret: process.env.CLERK_CLIENT_SECRET, // Optional for PKCE flow
-  clerkDomain: process.env.CLERK_DOMAIN,
+  clerkDomain: process.env.CLERK_DOMAIN || 'clear-caiman-45.clerk.accounts.dev',
 
-  // Required: API configuration
-  apiEndpoint: process.env.API_ENDPOINT,
+  // API configuration (production default, can be overridden via env var)
+  apiEndpoint: process.env.API_ENDPOINT || 'https://rose-asp-main-1c0b114.d2.zuplo.dev',
 
-  // Optional: OAuth flow configuration (non-sensitive defaults OK)
+  // OAuth flow configuration (localhost defaults for callback server)
   redirectUri: process.env.REDIRECT_URI || 'http://localhost:3333/callback',
   port: parseInt(process.env.PORT || '3333', 10)
 };
 
-// Validation function - ensures required configuration is present
+// Validation function - validates configuration values
 export function validateConfig() {
-  const missing = [];
-
-  if (!config.clerkClientId) {
-    missing.push('CLERK_CLIENT_ID');
-  }
-
-  if (!config.clerkDomain) {
-    missing.push('CLERK_DOMAIN');
-  }
-
-  if (!config.apiEndpoint) {
-    missing.push('API_ENDPOINT');
-  }
-
-  if (missing.length > 0) {
-    throw new Error(
-      `Missing required environment variables: ${missing.join(', ')}\n\n` +
-      `Please create a .env file in the project root with these values.\n` +
-      `See .env.example for a template.`
-    );
-  }
-
-  // Validate URL format for apiEndpoint
+  // Validate URL format for apiEndpoint (now guaranteed to exist via defaults)
   try {
     new URL(config.apiEndpoint);
   } catch (e) {
     throw new Error(`API_ENDPOINT must be a valid URL (got: ${config.apiEndpoint})`);
   }
 
+  // Validate clerkDomain is not empty (basic sanity check)
+  if (!config.clerkDomain || config.clerkDomain.trim() === '') {
+    throw new Error('CLERK_DOMAIN cannot be empty');
+  }
+
+  // Validate clerkClientId is not empty (basic sanity check)
+  if (!config.clerkClientId || config.clerkClientId.trim() === '') {
+    throw new Error('CLERK_CLIENT_ID cannot be empty');
+  }
+
   return true;
 }

package/lib/provider-detector.js

@@ -59,9 +59,10 @@ class BaseProvider {
     }
   }
 
-  configureMCP() {
+  configureMCP(toolPermissions = null) {
     // NEW APPROACH: Configure local server instead of HTTP
     // No parameters needed - local server reads from filesystem
+    // toolPermissions parameter for Claude Code compatibility (unused in base class)
     const config = this.readConfig() || { mcpServers: {} };
 
     config.mcpServers = config.mcpServers || {};
@@ -136,19 +137,19 @@ class ClaudeProvider extends BaseProvider {
     }
   }
 
-  configureMCP() {
+  configureMCP(toolPermissions = null) {
     // Create .mcp.json at project root with local server config
     const success = super.configureMCP();
 
     if (success) {
       // Update .claude/settings.local.json to enable the MCP server
-      this.updateClaudeSettings();
+      this.updateClaudeSettings(toolPermissions);
     }
 
     return success;
   }
 
-  updateClaudeSettings() {
+  updateClaudeSettings(toolPermissions = null) {
     if (!this.settingsPath) return false;
 
     try {
@@ -169,6 +170,23 @@ class ClaudeProvider extends BaseProvider {
         settings.enabledMcpjsonServers.push('unifiedmemory');
       }
 
+      // Add tool permissions if provided
+      if (toolPermissions && Array.isArray(toolPermissions) && toolPermissions.length > 0) {
+        if (!settings.permissions) {
+          settings.permissions = { allow: [] };
+        }
+        if (!settings.permissions.allow) {
+          settings.permissions.allow = [];
+        }
+
+        // Add new permissions, avoiding duplicates
+        toolPermissions.forEach(permission => {
+          if (!settings.permissions.allow.includes(permission)) {
+            settings.permissions.allow.push(permission);
+          }
+        });
+      }
+
       // Write settings
       fs.ensureDirSync(this.claudeDir);
       fs.writeJSONSync(this.settingsPath, settings, { spaces: 2 });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@unifiedmemory/cli",
-  "version": "1.1.0",
+  "version": "1.3.0",
   "description": "UnifiedMemory CLI - AI code assistant integration",
   "main": "index.js",
   "type": "module",