@vibe-assurance/cli 1.0.6 → 1.1.0

package/bin/vibe.js

@@ -1,4 +1,4 @@
-#!/usr/bin/env node
+#!/usr/bin/env node
 
 // Load .env file if present (for local development)
 const path = require('path');
@@ -12,6 +12,7 @@ const login = require('../src/commands/login');
 const logout = require('../src/commands/logout');
 const mcpServer = require('../src/commands/mcp-server');
 const setupClaude = require('../src/commands/setup-claude');
+const { registerProjectCommands } = require('../src/commands/projects');
 
 program
   .name('vibe')
@@ -38,4 +39,7 @@ program
   .description('Configure Claude Code to use the Vibe Assurance MCP server')
   .action(setupClaude);
 
+// CR-2026-043: Register project management commands
+registerProjectCommands(program);
+
 program.parse();

package/nul

@@ -0,0 +1,2 @@
+dir: cannot access '/s': No such file or directory
+dir: cannot access '/b': No such file or directory

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vibe-assurance/cli",
-  "version": "1.0.6",
+  "version": "1.1.0",
   "description": "Vibe Assurance CLI - Connect AI coding agents to your governance platform via MCP",
   "main": "src/index.js",
   "bin": {
@@ -31,6 +31,7 @@
     "chalk": "^4.1.2",
     "commander": "^12.0.0",
     "dotenv": "^16.6.1",
+    "inquirer": "^8.2.6",
     "keytar": "^7.9.0",
     "open": "^8.4.2",
     "ora": "^5.4.1"

package/src/api/client.js

@@ -1,11 +1,12 @@
 const axios = require('axios');
-const { getCredentials, storeCredentials, deleteCredentials } = require('../config/credentials');
+const { getCredentials, storeCredentials, deleteCredentials, getProjectId } = require('../config/credentials');
 
 // Default to dev Azure URL, can be overridden via environment variable
 const API_BASE_URL = process.env.VIBE_API_URL || 'https://agent-platform-dev.azurewebsites.net';
 
 /**
  * Create an authenticated axios instance with token refresh handling
+ * CR-2026-043: Now includes X-Project-Id header for project scoping
  * @returns {Promise<import('axios').AxiosInstance>}
  */
 async function createClient() {
@@ -14,13 +15,23 @@ async function createClient() {
     throw new Error('Not authenticated. Run: vibe login');
   }
 
+  // CR-2026-043: Get current project ID for scoping
+  const projectId = await getProjectId();
+
+  const headers = {
+    'Authorization': `Bearer ${creds.accessToken}`,
+    'Content-Type': 'application/json',
+    'User-Agent': 'vibe-cli/1.0.0'
+  };
+
+  // CR-2026-043: Add project header if available
+  if (projectId) {
+    headers['X-Project-Id'] = projectId;
+  }
+
   const client = axios.create({
     baseURL: API_BASE_URL,
-    headers: {
-      'Authorization': `Bearer ${creds.accessToken}`,
-      'Content-Type': 'application/json',
-      'User-Agent': 'vibe-cli/1.0.0'
-    },
+    headers,
     timeout: 30000 // 30 second timeout
   });
 

package/src/commands/login.js

@@ -3,7 +3,9 @@ const http = require('http');
 const { URL } = require('url');
 const chalk = require('chalk');
 const ora = require('ora');
-const { storeCredentials, hasValidCredentials } = require('../config/credentials');
+const inquirer = require('inquirer');
+const axios = require('axios');
+const { storeCredentials, hasValidCredentials, setProjectId } = require('../config/credentials');
 const { API_BASE_URL } = require('../api/client');
 
 // Local callback server port (chosen to be unlikely to conflict)
@@ -140,6 +142,10 @@ async function login() {
     await authPromise;
     cleanup();
     spinner.succeed('Successfully authenticated!');
+
+    // CR-2026-043: Select project after successful login
+    await selectProject();
+
     console.log(chalk.green('\nYou are now logged in to Vibe Assurance.'));
     console.log('\nNext steps:');
     console.log('  1. Run `vibe setup-claude` to configure Claude Code');
@@ -153,6 +159,67 @@ async function login() {
   }
 }
 
+/**
+ * CR-2026-043: Select project after successful authentication
+ * Fetches user's projects and prompts for selection if multiple exist
+ */
+async function selectProject() {
+  const spinner = ora('Fetching your projects...').start();
+
+  try {
+    // Get credentials to make authenticated request
+    const { getCredentials } = require('../config/credentials');
+    const creds = await getCredentials();
+
+    // Fetch user profile which now includes projects (CR-2026-043 backend change)
+    const response = await axios.get(`${API_BASE_URL}/api/auth/me`, {
+      headers: {
+        'Authorization': `Bearer ${creds.accessToken}`,
+        'Content-Type': 'application/json'
+      }
+    });
+
+    const { projects, defaultProjectId } = response.data;
+    spinner.stop();
+
+    if (!projects || projects.length === 0) {
+      console.log(chalk.yellow('\nNo projects found. A default project will be created when you first use the API.'));
+      return;
+    }
+
+    if (projects.length === 1) {
+      // Auto-select single project
+      await setProjectId(projects[0]._id, projects[0].name);
+      console.log(chalk.green(`\n✓ Selected project: ${projects[0].name}`));
+      return;
+    }
+
+    // Multiple projects - prompt for selection
+    console.log(''); // Empty line for spacing
+    const choices = projects.map(p => ({
+      name: `${p.name}${p.isDefault ? chalk.dim(' (default)') : ''}`,
+      value: { id: p._id, name: p.name }
+    }));
+
+    const { selected } = await inquirer.prompt([{
+      type: 'list',
+      name: 'selected',
+      message: 'Select a project to work with:',
+      choices,
+      default: choices.findIndex(c => c.value.id === defaultProjectId)
+    }]);
+
+    await setProjectId(selected.id, selected.name);
+    console.log(chalk.green(`✓ Selected project: ${selected.name}`));
+
+  } catch (err) {
+    spinner.stop();
+    // Non-fatal error - user can still use CLI with default project
+    console.log(chalk.yellow('\nCould not fetch projects. Using default project.'));
+    console.log(chalk.dim(`  (You can run 'vibe project select' later to switch projects)`));
+  }
+}
+
 /**
  * Generate success HTML page
  * Matches the main app's branding with Tailwind CSS and emerald colors

package/src/commands/projects.js

@@ -0,0 +1,211 @@
+/**
+ * CR-2026-043: Project management commands
+ *
+ * Provides CLI commands for listing and switching between projects:
+ * - vibe projects      - List all accessible projects
+ * - vibe project current  - Show current project
+ * - vibe project select   - Switch to a different project
+ */
+
+const chalk = require('chalk');
+const ora = require('ora');
+const inquirer = require('inquirer');
+const api = require('../api/client');
+const { getProjectId, getProjectName, setProjectId, hasValidCredentials } = require('../config/credentials');
+
+/**
+ * List all accessible projects
+ * Command: vibe projects
+ */
+async function listProjects() {
+  // Check authentication
+  if (!await hasValidCredentials()) {
+    console.log(chalk.red('Not authenticated. Run: vibe login'));
+    process.exit(1);
+  }
+
+  const spinner = ora('Fetching projects...').start();
+
+  try {
+    const projects = await api.get('/api/projects');
+    const currentProjectId = await getProjectId();
+    spinner.stop();
+
+    if (!projects || projects.length === 0) {
+      console.log(chalk.yellow('\nNo projects found.'));
+      console.log(chalk.dim('Create a project in the Vibe Assurance web portal.'));
+      return;
+    }
+
+    console.log(chalk.bold('\nYour Projects:\n'));
+
+    for (const p of projects) {
+      const current = p._id === currentProjectId ? chalk.green(' ← current') : '';
+      const def = p.isDefault ? chalk.dim(' (default)') : '';
+
+      console.log(`  ${p.name}${def}${current}`);
+      console.log(chalk.dim(`    ID: ${p._id}`));
+      if (p.description) {
+        console.log(chalk.dim(`    ${p.description}`));
+      }
+      console.log('');
+    }
+  } catch (err) {
+    spinner.stop();
+    console.error(chalk.red('Failed to fetch projects:'), err.message);
+    process.exit(1);
+  }
+}
+
+/**
+ * Show current project
+ * Command: vibe project current
+ */
+async function showCurrentProject() {
+  // Check authentication
+  if (!await hasValidCredentials()) {
+    console.log(chalk.red('Not authenticated. Run: vibe login'));
+    process.exit(1);
+  }
+
+  const projectId = await getProjectId();
+  const projectName = await getProjectName();
+
+  if (!projectId) {
+    console.log(chalk.yellow('No project selected.'));
+    console.log(chalk.dim('Run "vibe login" or "vibe project select" to select a project.'));
+    return;
+  }
+
+  const spinner = ora('Fetching project details...').start();
+
+  try {
+    const project = await api.get(`/api/projects/${projectId}`);
+    spinner.stop();
+
+    console.log(chalk.bold('\nCurrent Project:\n'));
+    console.log(`  Name: ${project.name}`);
+    console.log(`  ID: ${project._id}`);
+    if (project.description) {
+      console.log(`  Description: ${project.description}`);
+    }
+    if (project.isDefault) {
+      console.log(chalk.dim('  (This is your default project)'));
+    }
+  } catch (err) {
+    spinner.stop();
+    // Fallback to cached info if API fails
+    if (projectName) {
+      console.log(chalk.bold('\nCurrent Project:\n'));
+      console.log(`  Name: ${projectName}`);
+      console.log(`  ID: ${projectId}`);
+      console.log(chalk.dim('  (Unable to fetch full details)'));
+    } else {
+      console.log(chalk.yellow(`Project ID: ${projectId}`));
+      console.log(chalk.dim('(Unable to fetch project details)'));
+    }
+  }
+}
+
+/**
+ * Select/switch project
+ * Command: vibe project select [projectId]
+ * @param {string} [projectIdArg] - Optional project ID or name to select
+ */
+async function selectProject(projectIdArg) {
+  // Check authentication
+  if (!await hasValidCredentials()) {
+    console.log(chalk.red('Not authenticated. Run: vibe login'));
+    process.exit(1);
+  }
+
+  const spinner = ora('Fetching projects...').start();
+
+  try {
+    const projects = await api.get('/api/projects');
+    spinner.stop();
+
+    if (!projects || projects.length === 0) {
+      console.log(chalk.yellow('No projects found.'));
+      return;
+    }
+
+    let selected;
+
+    if (projectIdArg) {
+      // Find by ID or name (case-insensitive)
+      selected = projects.find(p =>
+        p._id === projectIdArg ||
+        p.name.toLowerCase() === projectIdArg.toLowerCase()
+      );
+
+      if (!selected) {
+        console.log(chalk.red(`Project not found: ${projectIdArg}`));
+        console.log(chalk.dim('\nAvailable projects:'));
+        projects.forEach(p => console.log(chalk.dim(`  - ${p.name} (${p._id})`)));
+        process.exit(1);
+      }
+    } else {
+      // Interactive selection
+      const currentProjectId = await getProjectId();
+      const choices = projects.map(p => ({
+        name: `${p.name}${p.isDefault ? chalk.dim(' (default)') : ''}${p._id === currentProjectId ? chalk.green(' ← current') : ''}`,
+        value: p
+      }));
+
+      const result = await inquirer.prompt([{
+        type: 'list',
+        name: 'selected',
+        message: 'Select a project:',
+        choices
+      }]);
+
+      selected = result.selected;
+    }
+
+    // Store the selected project
+    await setProjectId(selected._id, selected.name);
+    console.log(chalk.green(`✓ Switched to project: ${selected.name}`));
+
+  } catch (err) {
+    spinner.stop();
+    console.error(chalk.red('Failed to switch project:'), err.message);
+    process.exit(1);
+  }
+}
+
+/**
+ * Register project commands with Commander
+ * @param {import('commander').Command} program - Commander program instance
+ */
+function registerProjectCommands(program) {
+  // vibe projects - List all projects
+  program
+    .command('projects')
+    .description('List your accessible projects')
+    .action(listProjects);
+
+  // vibe project - Project subcommands
+  const projectCmd = program
+    .command('project')
+    .description('Manage project context');
+
+  // vibe project current
+  projectCmd
+    .command('current')
+    .description('Show current project')
+    .action(showCurrentProject);
+
+  // vibe project select [projectId]
+  projectCmd
+    .command('select [projectId]')
+    .description('Switch to a different project (by ID or name)')
+    .action(selectProject);
+}
+
+module.exports = {
+  listProjects,
+  showCurrentProject,
+  selectProject,
+  registerProjectCommands
+};

package/src/config/credentials.js

@@ -121,9 +121,47 @@ async function hasValidCredentials() {
   return true;
 }
 
+/**
+ * CR-2026-043: Get stored project ID
+ * @returns {Promise<string|null>} Project ID or null if not set
+ */
+async function getProjectId() {
+  const creds = await getCredentials();
+  return creds?.projectId || null;
+}
+
+/**
+ * CR-2026-043: Get stored project name
+ * @returns {Promise<string|null>} Project name or null if not set
+ */
+async function getProjectName() {
+  const creds = await getCredentials();
+  return creds?.projectName || null;
+}
+
+/**
+ * CR-2026-043: Set project ID (updates existing credentials)
+ * @param {string} projectId - Project ID to store
+ * @param {string} projectName - Project name for display
+ * @returns {Promise<void>}
+ */
+async function setProjectId(projectId, projectName) {
+  const creds = await getCredentials();
+  if (creds) {
+    await storeCredentials({
+      ...creds,
+      projectId,
+      projectName
+    });
+  }
+}
+
 module.exports = {
   storeCredentials,
   getCredentials,
   deleteCredentials,
-  hasValidCredentials
+  hasValidCredentials,
+  getProjectId,
+  getProjectName,
+  setProjectId
 };

package/src/mcp/tools.js

@@ -226,7 +226,7 @@ const tools = [
 
   {
     name: 'vibe_update_artifact',
-    description: 'Update an existing artifact. You can update the status, content, title, or metadata.',
+    description: 'Update an existing artifact. You can update the status, content, title, or metadata. WARNING: If you provide a "files" array, it REPLACES ALL existing files. To safely add a single file without affecting others, use vibe_append_file instead.',
     inputSchema: {
       type: 'object',
       properties: {
@@ -249,7 +249,7 @@ const tools = [
         },
         files: {
           type: 'array',
-          description: 'Updated files array',
+          description: 'WARNING: This REPLACES ALL existing files. Use vibe_append_file to safely add a single file.',
           items: {
             type: 'object',
             properties: {
@@ -270,6 +270,32 @@ const tools = [
     }
   },
 
+  {
+    name: 'vibe_append_file',
+    description: 'Safely append or update a single file in an artifact WITHOUT affecting other files. Use this instead of vibe_update_artifact when you only need to add one file (e.g., adding verification-report.md to a CR). This is the SAFE way to add files - it will not destroy existing documentation.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        artifactId: {
+          type: 'string',
+          description: 'The artifact ID to add the file to (e.g., "CR-2025-024")'
+        },
+        name: {
+          type: 'string',
+          description: 'Filename to add or update (e.g., "verification-report.md")'
+        },
+        content: {
+          type: 'string',
+          description: 'Full file content (must be complete, not abbreviated)'
+        }
+      },
+      required: ['artifactId', 'name', 'content']
+    },
+    handler: async ({ artifactId, name, content }) => {
+      return await api.post(`/api/mcp/artifacts/${artifactId}/files`, { name, content });
+    }
+  },
+
   {
     name: 'vibe_list_artifacts',
     description: 'List your stored artifacts with optional filters. Use this to see what governance documents you have stored.',