@vibe-assurance/cli 1.7.1 → 1.7.3

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vibe-assurance/cli",
-  "version": "1.7.1",
+  "version": "1.7.3",
   "description": "Vibe Assurance CLI - Connect AI coding agents to your governance platform via MCP",
   "main": "src/index.js",
   "bin": {

package/src/commands/env.js

@@ -8,7 +8,7 @@
 
 const chalk = require('chalk');
 const ora = require('ora');
-const { getEnvironment, setEnvironment, isAdmin, hasValidCredentials } = require('../config/credentials');
+const { getEnvironment, setEnvironment, isAdmin, hasValidCredentials, deleteCredentials } = require('../config/credentials');
 const {
   ENVIRONMENTS,
   getEnvironmentConfig,
@@ -91,10 +91,12 @@ async function listEnvironments() {
 /**
  * CR-2026-061: Switch to a specific environment
  * Internal environments require admin role
+ * Switching environments clears credentials and requires re-login
  * @param {string} envName - Environment name (prod, dev, local)
  */
 async function switchEnvironment(envName) {
   const config = getEnvironmentConfig(envName);
+  const currentEnv = await getEnvironment();
 
   if (!config) {
     console.error(chalk.red(`Unknown environment: ${envName}`));
@@ -102,6 +104,12 @@ async function switchEnvironment(envName) {
     process.exit(1);
   }
 
+  // Already on this environment?
+  if (envName === currentEnv) {
+    console.log(chalk.yellow(`Already using ${config.name} environment.`));
+    return;
+  }
+
   // Check if internal environment - require admin
   if (isInternalOnly(envName)) {
     // Must be logged in first
@@ -125,6 +133,10 @@ async function switchEnvironment(envName) {
   const spinner = ora(`Switching to ${config.name}...`).start();
 
   try {
+    // Clear existing credentials - different environments have different auth
+    await deleteCredentials();
+
+    // Store only the new environment (no auth tokens)
     await setEnvironment(envName);
     spinner.succeed(`Switched to ${chalk.bold(config.name)}`);
 
@@ -134,11 +146,10 @@ async function switchEnvironment(envName) {
     if (config.internal) {
       console.log('');
       console.log(chalk.yellow('⚠ You are now using an internal environment.'));
-      console.log(chalk.dim('  Run `vibe env prod` to switch back to production.'));
     }
 
     console.log('');
-    console.log(chalk.dim('Note: You may need to run `vibe login` to authenticate with this environment.'));
+    console.log(chalk.cyan('You have been logged out. Run `vibe login` to authenticate with this environment.'));
     console.log('');
   } catch (err) {
     spinner.fail('Failed to switch environment');

package/src/commands/login.js

@@ -5,7 +5,7 @@ const chalk = require('chalk');
 const ora = require('ora');
 const inquirer = require('inquirer');
 const axios = require('axios');
-const { storeCredentials, hasValidCredentials, setProjectId, setUserInfo, getEnvironment } = require('../config/credentials');
+const { storeCredentials, getCredentials, hasValidCredentials, setProjectId, setUserInfo, getEnvironment } = require('../config/credentials');
 const { getApiBaseUrl } = require('../api/client');
 const { getEnvironmentConfig } = require('../config/environments');
 
@@ -87,8 +87,10 @@ async function login() {
               ? new Date(Date.now() + parseInt(expiresIn) * 1000)
               : new Date(Date.now() + 3600 * 1000); // Default 1 hour
 
-            // Store credentials securely
+            // CR-2026-061: Preserve environment when storing new credentials
+            const existingCreds = await getCredentials();
             await storeCredentials({
+              environment: existingCreds?.environment,  // Preserve environment
               accessToken,
               refreshToken,
               expiresAt: expiresAt.toISOString()