@vigilhq/cli 0.1.0

package/README.md

@@ -0,0 +1,62 @@
+# @vigilhq/cli
+
+Command-line interface for [Vigil](https://vigilhq.dev) — screen entities against global sanctions and PEP lists from your terminal.
+
+## Installation
+
+```bash
+npm install -g @vigilhq/cli
+```
+
+## Setup
+
+```bash
+export VIGIL_API_KEY=vgl_sk_live_...
+```
+
+Or pass `--api-key` to any command.
+
+## Usage
+
+### Screen an entity
+
+```bash
+vigil check "John Doe"
+vigil check "Acme Corp" --type organization
+vigil check "Jane Smith" --context transaction --dob 1990-01-15 --nationality CA
+vigil check "Entity" --json   # raw JSON output
+```
+
+### List watchlist sources
+
+```bash
+vigil lists
+```
+
+### Continuous monitoring
+
+```bash
+vigil monitor add "Acme Corp" --type organization
+vigil monitor list
+vigil monitor remove mon_abc123
+```
+
+### API key management
+
+```bash
+vigil keys list
+vigil keys create "production"
+vigil keys revoke key_abc123
+```
+
+## Options
+
+All commands support:
+
+- `--api-key <key>` — API key (default: `VIGIL_API_KEY` env var)
+- `--base-url <url>` — API base URL (default: `https://api.vigilhq.dev`)
+- `--json` — Output raw JSON (where applicable)
+
+## License
+
+MIT

package/dist/index.d.ts

@@ -0,0 +1,11 @@
+#!/usr/bin/env node
+/**
+ * Vigil CLI — Screen entities against global sanctions and PEP lists.
+ *
+ * Usage:
+ *   vigil check "John Doe"
+ *   vigil check "Osama bin Laden" --context transaction
+ *   vigil lists
+ *   VIGIL_API_KEY=vgl_sk_live_... vigil check "entity"
+ */
+export {};

package/dist/index.js

@@ -0,0 +1,377 @@
+#!/usr/bin/env node
+/**
+ * Vigil CLI — Screen entities against global sanctions and PEP lists.
+ *
+ * Usage:
+ *   vigil check "John Doe"
+ *   vigil check "Osama bin Laden" --context transaction
+ *   vigil lists
+ *   VIGIL_API_KEY=vgl_sk_live_... vigil check "entity"
+ */
+import { Command } from "commander";
+import chalk from "chalk";
+const program = new Command();
+program
+    .name("vigil")
+    .description("Vigil CLI — Compliance screening from the command line")
+    .version("0.1.0");
+// ── Check Command ──────────────────────────────────────
+program
+    .command("check <entity>")
+    .description("Screen an entity against sanctions and PEP lists")
+    .option("-c, --context <context>", "Check context (onboarding|transaction|monitoring)", "onboarding")
+    .option("-t, --type <type>", "Entity type (individual|organization|vessel|aircraft)")
+    .option("--dob <date>", "Date of birth (YYYY-MM-DD)")
+    .option("--nationality <code>", "ISO country code (e.g., US, GB)")
+    .option("--id <number>", "Government ID or passport number")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .option("--json", "Output raw JSON")
+    .action(async (entity, opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required. Set VIGIL_API_KEY or use --api-key"));
+        process.exit(1);
+    }
+    try {
+        const body = { entity, context: opts.context };
+        if (opts.type)
+            body.entity_type = opts.type;
+        if (opts.dob)
+            body.date_of_birth = opts.dob;
+        if (opts.nationality)
+            body.nationality = opts.nationality;
+        if (opts.id)
+            body.id_number = opts.id;
+        const resp = await fetch(`${opts.baseUrl}/v1/screen`, {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json",
+                Authorization: `Bearer ${apiKey}`,
+            },
+            body: JSON.stringify(body),
+        });
+        if (!resp.ok) {
+            const err = await resp.json().catch(() => ({ error: { message: resp.statusText } }));
+            console.error(chalk.red(`Error (${resp.status}): ${err.error?.message || resp.statusText}`));
+            process.exit(1);
+        }
+        const result = await resp.json();
+        if (opts.json) {
+            console.log(JSON.stringify(result, null, 2));
+            return;
+        }
+        // Pretty output
+        console.log();
+        console.log(chalk.bold(`  Entity:    ${entity}`));
+        // Sanctions status
+        if (result.sanctions?.match) {
+            const match = result.matches?.[0];
+            const source = match?.source ?? "UNKNOWN";
+            const programs = match?.programs?.join(", ") ?? "";
+            console.log(chalk.red(`  Sanctions: ⛔ MATCH — ${source} (${programs})`));
+        }
+        else {
+            console.log(chalk.green(`  Sanctions: ✅ CLEAR (${result.sanctions?.lists_checked ?? 0} lists checked)`));
+        }
+        // PEP status
+        if (result.pep?.match) {
+            console.log(chalk.yellow(`  PEP:       ⚠️  MATCH`));
+        }
+        else {
+            console.log(chalk.green(`  PEP:       ✅ CLEAR`));
+        }
+        // Risk score
+        const score = result.risk_score ?? 0;
+        const level = (result.risk_level ?? "unknown").toUpperCase();
+        const scoreColor = score >= 80 ? chalk.red :
+            score >= 50 ? chalk.yellow :
+                chalk.green;
+        console.log(scoreColor(`  Risk:      ${score}/100 (${level})`));
+        // Recommendation
+        const rec = (result.recommendation ?? "unknown").toUpperCase();
+        const recColor = rec === "BLOCK" ? chalk.red.bold :
+            rec === "REVIEW" ? chalk.yellow.bold :
+                chalk.green.bold;
+        console.log(recColor(`  Action:    ${rec}`));
+        // Timing
+        console.log(chalk.dim(`  Time:      ${result.screening_time_ms ?? 0}ms`));
+        console.log(chalk.dim(`  Audit:     ${result.id}`));
+        // Show matches if any
+        if (result.matches?.length > 0) {
+            console.log();
+            console.log(chalk.bold("  Matches:"));
+            for (const match of result.matches) {
+                console.log(chalk.dim(`    • ${match.matched_name} [${match.source}] — confidence: ${match.score}`));
+                if (match.aliases?.length > 0) {
+                    console.log(chalk.dim(`      Aliases: ${match.aliases.join(", ")}`));
+                }
+                if (match.programs?.length > 0) {
+                    console.log(chalk.dim(`      Programs: ${match.programs.join(", ")}`));
+                }
+            }
+        }
+        console.log();
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+// ── Lists Command ──────────────────────────────────────
+program
+    .command("lists")
+    .description("Show active watchlist sources and their status")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .action(async (opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required."));
+        process.exit(1);
+    }
+    try {
+        const resp = await fetch(`${opts.baseUrl}/v1/lists`, {
+            headers: { Authorization: `Bearer ${apiKey}` },
+        });
+        const data = await resp.json();
+        const sources = Array.isArray(data) ? data : data.sources ?? [];
+        console.log();
+        console.log(chalk.bold("  Active Watchlist Sources:"));
+        console.log();
+        for (const s of sources) {
+            const status = s.is_active ? chalk.green("●") : chalk.red("○");
+            console.log(`  ${status} ${chalk.bold(s.code)} — ${s.name}`);
+            console.log(chalk.dim(`    Entities: ${s.entity_count ?? 0} | Last updated: ${s.last_ingested_at ?? "never"}`));
+        }
+        console.log();
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+// ── Monitor Command ────────────────────────────────────
+const monitor = program
+    .command("monitor")
+    .description("Manage continuous monitoring of entities");
+monitor
+    .command("add <entity>")
+    .description("Add an entity to continuous monitoring")
+    .option("-t, --type <type>", "Entity type (individual|organization|vessel|aircraft)")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .option("--json", "Output raw JSON")
+    .action(async (entity, opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required. Set VIGIL_API_KEY or use --api-key"));
+        process.exit(1);
+    }
+    try {
+        const body = { entity };
+        if (opts.type)
+            body.entity_type = opts.type;
+        const resp = await fetch(`${opts.baseUrl}/v1/monitor/entities`, {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json",
+                Authorization: `Bearer ${apiKey}`,
+            },
+            body: JSON.stringify(body),
+        });
+        if (!resp.ok) {
+            const err = await resp.json().catch(() => ({ error: { message: resp.statusText } }));
+            console.error(chalk.red(`Error (${resp.status}): ${err.error?.message || resp.statusText}`));
+            process.exit(1);
+        }
+        const result = await resp.json();
+        if (opts.json) {
+            console.log(JSON.stringify(result, null, 2));
+            return;
+        }
+        console.log();
+        console.log(chalk.green(`  ✅ Added "${entity}" to continuous monitoring`));
+        console.log(chalk.dim(`  ID: ${result.id}`));
+        console.log();
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+monitor
+    .command("list")
+    .description("List all monitored entities")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .option("--json", "Output raw JSON")
+    .action(async (opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required."));
+        process.exit(1);
+    }
+    try {
+        const resp = await fetch(`${opts.baseUrl}/v1/monitor/entities`, {
+            headers: { Authorization: `Bearer ${apiKey}` },
+        });
+        const data = await resp.json();
+        if (opts.json) {
+            console.log(JSON.stringify(data, null, 2));
+            return;
+        }
+        const entities = Array.isArray(data) ? data : data.data ?? [];
+        console.log();
+        console.log(chalk.bold(`  Monitored Entities (${entities.length}):`));
+        console.log();
+        for (const e of entities) {
+            const status = e.last_result?.status === "match" ? chalk.red("⛔") : chalk.green("✅");
+            console.log(`  ${status} ${chalk.bold(e.entity)} ${chalk.dim(`[${e.id}]`)}`);
+            if (e.last_checked_at) {
+                console.log(chalk.dim(`    Last checked: ${e.last_checked_at}`));
+            }
+        }
+        console.log();
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+monitor
+    .command("remove <id>")
+    .description("Remove an entity from monitoring by ID")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .action(async (id, opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required."));
+        process.exit(1);
+    }
+    try {
+        const resp = await fetch(`${opts.baseUrl}/v1/monitor/entities/${id}`, {
+            method: "DELETE",
+            headers: { Authorization: `Bearer ${apiKey}` },
+        });
+        if (!resp.ok) {
+            const err = await resp.json().catch(() => ({ error: { message: resp.statusText } }));
+            console.error(chalk.red(`Error (${resp.status}): ${err.error?.message || resp.statusText}`));
+            process.exit(1);
+        }
+        console.log(chalk.green(`  ✅ Removed monitored entity ${id}`));
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+// ── Keys Command ───────────────────────────────────────
+const keys = program
+    .command("keys")
+    .description("Manage API keys");
+keys
+    .command("list")
+    .description("List all API keys")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .option("--json", "Output raw JSON")
+    .action(async (opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required."));
+        process.exit(1);
+    }
+    try {
+        const resp = await fetch(`${opts.baseUrl}/v1/keys`, {
+            headers: { Authorization: `Bearer ${apiKey}` },
+        });
+        const data = await resp.json();
+        if (opts.json) {
+            console.log(JSON.stringify(data, null, 2));
+            return;
+        }
+        const keyList = Array.isArray(data) ? data : data.data ?? [];
+        console.log();
+        console.log(chalk.bold(`  API Keys (${keyList.length}):`));
+        console.log();
+        for (const k of keyList) {
+            const status = k.revoked_at ? chalk.red("revoked") : chalk.green("active");
+            console.log(`  ${chalk.bold(k.name)} ${chalk.dim(k.key_prefix + "...")} [${status}]`);
+            console.log(chalk.dim(`    Created: ${k.created_at} | Last used: ${k.last_used_at ?? "never"}`));
+        }
+        console.log();
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+keys
+    .command("create <name>")
+    .description("Create a new API key")
+    .option("-e, --environment <env>", "Environment (live|test)", "live")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .action(async (name, opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required."));
+        process.exit(1);
+    }
+    try {
+        const resp = await fetch(`${opts.baseUrl}/v1/keys`, {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json",
+                Authorization: `Bearer ${apiKey}`,
+            },
+            body: JSON.stringify({ name, environment: opts.environment }),
+        });
+        if (!resp.ok) {
+            const err = await resp.json().catch(() => ({ error: { message: resp.statusText } }));
+            console.error(chalk.red(`Error (${resp.status}): ${err.error?.message || resp.statusText}`));
+            process.exit(1);
+        }
+        const result = await resp.json();
+        console.log();
+        console.log(chalk.green(`  ✅ API key created: ${chalk.bold(name)}`));
+        console.log(chalk.yellow(`  Key: ${result.key}`));
+        console.log(chalk.dim("  ⚠️  Save this key — it won't be shown again."));
+        console.log();
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+keys
+    .command("revoke <id>")
+    .description("Revoke an API key by ID")
+    .option("--api-key <key>", "API key (or set VIGIL_API_KEY env var)")
+    .option("--base-url <url>", "API base URL", "https://api.vigilhq.dev")
+    .action(async (id, opts) => {
+    const apiKey = opts.apiKey || process.env.VIGIL_API_KEY;
+    if (!apiKey) {
+        console.error(chalk.red("Error: API key required."));
+        process.exit(1);
+    }
+    try {
+        const resp = await fetch(`${opts.baseUrl}/v1/keys/${id}`, {
+            method: "DELETE",
+            headers: { Authorization: `Bearer ${apiKey}` },
+        });
+        if (!resp.ok) {
+            const err = await resp.json().catch(() => ({ error: { message: resp.statusText } }));
+            console.error(chalk.red(`Error (${resp.status}): ${err.error?.message || resp.statusText}`));
+            process.exit(1);
+        }
+        console.log(chalk.green(`  ✅ API key ${id} revoked`));
+    }
+    catch (err) {
+        console.error(chalk.red(`Error: ${err instanceof Error ? err.message : err}`));
+        process.exit(1);
+    }
+});
+program.parse();

package/package.json

@@ -0,0 +1,44 @@
+{
+  "name": "@vigilhq/cli",
+  "version": "0.1.0",
+  "description": "Vigil CLI — Screen entities against global sanctions and PEP lists from the command line",
+  "license": "MIT",
+  "type": "module",
+  "bin": {
+    "vigil": "./dist/index.js"
+  },
+  "scripts": {
+    "dev": "tsx src/index.ts",
+    "build": "tsc",
+    "typecheck": "tsc --noEmit"
+  },
+  "dependencies": {
+    "@vigilhq/sdk": "workspace:^",
+    "chalk": "^5.3.0",
+    "commander": "^12.0.0",
+    "ora": "^8.0.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.10.0",
+    "tsx": "^4.19.0",
+    "typescript": "^5.7.0"
+  },
+  "files": [
+    "dist"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/ymatagne/vigil",
+    "directory": "packages/cli"
+  },
+  "keywords": [
+    "vigil",
+    "sanctions",
+    "screening",
+    "compliance",
+    "cli"
+  ]
+}