@vm0/cli 9.82.2 → 9.83.0

package/{chunk-2RXB3R33.js → chunk-Z7ZCVASY.js}

@@ -47,7 +47,7 @@ if (DSN) {
   Sentry.init({
     dsn: DSN,
     environment: process.env.SENTRY_ENVIRONMENT ?? "production",
-    release: "9.82.2",
+    release: "9.83.0",
     sendDefaultPii: false,
     tracesSampleRate: 0,
     shutdownTimeout: 500,
@@ -66,7 +66,7 @@ if (DSN) {
     }
   });
   Sentry.setContext("cli", {
-    version: "9.82.2",
+    version: "9.83.0",
     command: process.argv.slice(2).join(" ")
   });
   Sentry.setContext("runtime", {
@@ -541,7 +541,7 @@ var apifyFirewall = {
   },
   apis: [
     {
-      base: "https://api.apify.com/v2",
+      base: "https://api.apify.com",
       auth: {
         headers: {
           Authorization: "Bearer ${{ secrets.APIFY_TOKEN }}"
@@ -645,7 +645,7 @@ var brevoFirewall = {
   },
   apis: [
     {
-      base: "https://api.brevo.com/v3",
+      base: "https://api.brevo.com",
       auth: {
         headers: {
           "api-key": "${{ secrets.BREVO_TOKEN }}"
@@ -857,7 +857,7 @@ var clickupFirewall = {
   },
   apis: [
     {
-      base: "https://api.clickup.com/api/v2",
+      base: "https://api.clickup.com/api",
       auth: {
         headers: {
           Authorization: "${{ secrets.CLICKUP_TOKEN }}"
@@ -883,7 +883,7 @@ var closeFirewall = {
   },
   apis: [
     {
-      base: "https://api.close.com/api/v1",
+      base: "https://api.close.com/api",
       auth: {
         headers: {
           Authorization: "Bearer ${{ secrets.CLOSE_TOKEN }}"
@@ -1481,6 +1481,36 @@ var falFirewall = {
     FAL_TOKEN: "Vm0PlaceHolder00:sk_live_Vm0PlaceHolder00000000000000"
   },
   apis: [
+    {
+      base: "https://fal.run",
+      auth: {
+        headers: {
+          Authorization: "Key ${{ secrets.FAL_TOKEN }}"
+        }
+      },
+      permissions: [
+        {
+          name: "unrestricted",
+          description: "Allow all endpoints",
+          rules: ["ANY /{path*}"]
+        }
+      ]
+    },
+    {
+      base: "https://queue.fal.run",
+      auth: {
+        headers: {
+          Authorization: "Key ${{ secrets.FAL_TOKEN }}"
+        }
+      },
+      permissions: [
+        {
+          name: "unrestricted",
+          description: "Allow all endpoints",
+          rules: ["ANY /{path*}"]
+        }
+      ]
+    },
     {
       base: "https://api.fal.ai",
       auth: {
@@ -5234,7 +5264,7 @@ var granolaFirewall = {
   },
   apis: [
     {
-      base: "https://api.granola.ai",
+      base: "https://public-api.granola.ai",
       auth: {
         headers: {
           Authorization: "Bearer ${{ secrets.GRANOLA_TOKEN }}"
@@ -6332,7 +6362,7 @@ var loopsFirewall = {
   },
   apis: [
     {
-      base: "https://app.loops.so/api/v1",
+      base: "https://app.loops.so/api",
       auth: {
         headers: {
           Authorization: "Bearer ${{ secrets.LOOPS_TOKEN }}"
@@ -6488,7 +6518,7 @@ var neonFirewall = {
   },
   apis: [
     {
-      base: "https://console.neon.tech/api/v2",
+      base: "https://console.neon.tech/api",
       auth: {
         headers: {
           Authorization: "Bearer ${{ secrets.NEON_TOKEN }}"
@@ -6514,7 +6544,7 @@ var notionFirewall = {
   },
   apis: [
     {
-      base: "https://api.notion.com/v1",
+      base: "https://api.notion.com",
       auth: {
         headers: {
           Authorization: "Bearer ${{ secrets.NOTION_TOKEN }}"
@@ -6529,68 +6559,73 @@ var notionFirewall = {
         {
           name: "insert_comments",
           description: "Create comments",
-          rules: ["POST /comments"]
+          rules: ["POST /v1/comments"]
         },
         {
           name: "insert_content",
           description: "Create pages, databases, blocks, data sources, and upload files",
           rules: [
-            "PATCH /blocks/{block_id}/children",
-            "POST /data_sources",
-            "POST /databases",
-            "POST /file_uploads",
-            "POST /file_uploads/{file_upload_id}/complete",
-            "POST /file_uploads/{file_upload_id}/send",
-            "POST /pages",
-            "POST /views",
-            "POST /views/{view_id}/queries"
+            "PATCH /v1/blocks/{block_id}/children",
+            "POST /v1/data_sources",
+            "POST /v1/databases",
+            "POST /v1/file_uploads",
+            "POST /v1/file_uploads/{file_upload_id}/complete",
+            "POST /v1/file_uploads/{file_upload_id}/send",
+            "POST /v1/pages",
+            "POST /v1/views",
+            "POST /v1/views/{view_id}/queries"
           ]
         },
         {
           name: "read_comments",
           description: "Read comments",
-          rules: ["GET /comments", "GET /comments/{comment_id}"]
+          rules: ["GET /v1/comments", "GET /v1/comments/{comment_id}"]
         },
         {
           name: "read_content",
           description: "Read pages, databases, blocks, data sources, and files",
           rules: [
-            "GET /blocks/{block_id}",
-            "GET /blocks/{block_id}/children",
-            "GET /data_sources/{data_source_id}",
-            "POST /data_sources/{data_source_id}/query",
-            "GET /data_sources/{data_source_id}/templates",
-            "GET /databases/{database_id}",
-            "GET /file_uploads",
-            "GET /file_uploads/{file_upload_id}",
-            "GET /pages/{page_id}",
-            "GET /pages/{page_id}/markdown",
-            "GET /pages/{page_id}/properties/{property_id}",
-            "POST /search",
-            "GET /views",
-            "GET /views/{view_id}",
-            "GET /views/{view_id}/queries/{query_id}"
+            "GET /v1/blocks/{block_id}",
+            "GET /v1/blocks/{block_id}/children",
+            "GET /v1/custom_emojis",
+            "GET /v1/data_sources/{data_source_id}",
+            "POST /v1/data_sources/{data_source_id}/query",
+            "GET /v1/data_sources/{data_source_id}/templates",
+            "GET /v1/databases/{database_id}",
+            "GET /v1/file_uploads",
+            "GET /v1/file_uploads/{file_upload_id}",
+            "GET /v1/pages/{page_id}",
+            "GET /v1/pages/{page_id}/markdown",
+            "GET /v1/pages/{page_id}/properties/{property_id}",
+            "POST /v1/search",
+            "GET /v1/views",
+            "GET /v1/views/{view_id}",
+            "GET /v1/views/{view_id}/queries/{query_id}"
           ]
         },
         {
           name: "read_users",
           description: "Read user information",
-          rules: ["GET /users", "GET /users/me", "GET /users/{user_id}"]
+          rules: [
+            "GET /v1/users",
+            "GET /v1/users/me",
+            "GET /v1/users/{user_id}"
+          ]
         },
         {
           name: "update_content",
           description: "Update and delete pages, databases, blocks, and data sources",
           rules: [
-            "PATCH /blocks/{block_id}",
-            "DELETE /blocks/{block_id}",
-            "PATCH /data_sources/{data_source_id}",
-            "PATCH /databases/{database_id}",
-            "PATCH /pages/{page_id}",
-            "PATCH /pages/{page_id}/markdown",
-            "POST /pages/{page_id}/move",
-            "PATCH /views/{view_id}",
-            "DELETE /views/{view_id}",
-            "DELETE /views/{view_id}/queries/{query_id}"
+            "PATCH /v1/blocks/{block_id}",
+            "DELETE /v1/blocks/{block_id}",
+            "PATCH /v1/data_sources/{data_source_id}",
+            "PATCH /v1/databases/{database_id}",
+            "PATCH /v1/pages/{page_id}",
+            "PATCH /v1/pages/{page_id}/markdown",
+            "POST /v1/pages/{page_id}/move",
+            "PATCH /v1/views/{view_id}",
+            "DELETE /v1/views/{view_id}",
+            "DELETE /v1/views/{view_id}/queries/{query_id}"
           ]
         }
       ]
@@ -6711,7 +6746,7 @@ var pdfcoFirewall = {
   },
   apis: [
     {
-      base: "https://api.pdf.co/v1",
+      base: "https://api.pdf.co",
       auth: {
         headers: {
           "x-api-key": "${{ secrets.PDFCO_TOKEN }}"
@@ -7197,7 +7232,7 @@ var shortioFirewall = {
       base: "https://api.short.io",
       auth: {
         headers: {
-          Authorization: "${{ secrets.SHORTIO_TOKEN }}"
+          Authorization: "Bearer ${{ secrets.SHORTIO_TOKEN }}"
         }
       },
       permissions: [
@@ -9095,8 +9130,8 @@ var builtinFirewalls = {
   confluence: confluenceFirewall,
   cronlytic: cronlyticFirewall,
   "customer-io": customerIoFirewall,
-  deepseek: deepseekFirewall,
   deel: deelFirewall,
+  deepseek: deepseekFirewall,
   devto: devtoFirewall,
   discord: discordFirewall,
   dropbox: dropboxFirewall,
@@ -9147,8 +9182,8 @@ var builtinFirewalls = {
   plausible: plausibleFirewall,
   podchaser: podchaserFirewall,
   posthog: posthogFirewall,
-  productlane: productlaneFirewall,
   "prisma-postgres": prismaPostgresFirewall,
+  productlane: productlaneFirewall,
   pushinator: pushinatorFirewall,
   qiita: qiitaFirewall,
   reddit: redditFirewall,
@@ -9849,7 +9884,8 @@ var logsListContract = c2.router({
       name: z5.string().optional(),
       org: z5.string().optional(),
       status: logStatusSchema.optional(),
-      triggerSource: triggerSourceSchema.optional()
+      triggerSource: triggerSourceSchema.optional(),
+      scheduleId: z5.string().uuid().optional()
     }),
     responses: {
       200: logsListResponseSchema,
@@ -11070,6 +11106,34 @@ var cliAuthTokenContract = c7.router({
     summary: "Exchange device code for access token"
   }
 });
+var apiErrorResponseSchema = z11.object({
+  error: z11.object({ message: z11.string(), code: z11.string() })
+});
+var cliAuthOrgContract = c7.router({
+  /**
+   * POST /api/cli/auth/org
+   * Switch active organization and get new CLI JWT
+   */
+  switchOrg: {
+    method: "POST",
+    path: "/api/cli/auth/org",
+    headers: authHeadersSchema,
+    body: z11.object({ slug: z11.string().min(1) }),
+    responses: {
+      200: z11.object({
+        access_token: z11.string(),
+        token_type: z11.literal("Bearer"),
+        expires_in: z11.number(),
+        org_slug: z11.string()
+      }),
+      400: oauthErrorSchema,
+      401: apiErrorResponseSchema,
+      403: apiErrorResponseSchema,
+      404: apiErrorResponseSchema
+    },
+    summary: "Switch active organization and get new CLI JWT"
+  }
+});
 
 // ../../packages/core/src/contracts/auth.ts
 import { z as z12 } from "zod";
@@ -11445,10 +11509,10 @@ var MODEL_PROVIDER_TYPES = {
     defaultModel: "claude-sonnet-4.6"
   }
 };
-var HIDDEN_PROVIDER_TYPES = /* @__PURE__ */ new Set([
-  "aws-bedrock",
-  "azure-foundry"
-]);
+var HIDDEN_PROVIDER_LIST = ["aws-bedrock", "azure-foundry"];
+var HIDDEN_PROVIDER_TYPES = new Set(
+  HIDDEN_PROVIDER_LIST
+);
 function getSelectableProviderTypes() {
   return Object.keys(MODEL_PROVIDER_TYPES).filter(
     (type) => !HIDDEN_PROVIDER_TYPES.has(type)
@@ -11869,7 +11933,7 @@ var chatThreadRunsContract = c11.router({
       runId: z18.string().min(1)
     }),
     responses: {
-      204: z18.void(),
+      204: c11.noBody(),
       401: apiErrorSchema,
       404: apiErrorSchema
     },
@@ -15443,6 +15507,19 @@ var onboardingStatusContract = c15.router({
     summary: "Get onboarding status for current user"
   }
 });
+var onboardingCompleteContract = c15.router({
+  complete: {
+    method: "POST",
+    path: "/api/zero/onboarding/complete",
+    headers: authHeadersSchema,
+    body: c15.noBody(),
+    responses: {
+      200: z24.object({ ok: z24.boolean() }),
+      401: apiErrorSchema
+    },
+    summary: "Mark member onboarding as complete"
+  }
+});
 
 // ../../packages/core/src/contracts/skills.ts
 import { z as z25 } from "zod";
@@ -16273,6 +16350,24 @@ var zeroSchedulesEnableContract = c24.router({
     summary: "Disable schedule (zero proxy)"
   }
 });
+var zeroScheduleRunContract = c24.router({
+  run: {
+    method: "POST",
+    path: "/api/zero/schedules/run",
+    headers: authHeadersSchema,
+    body: z31.object({
+      scheduleId: z31.string().uuid("Invalid schedule ID")
+    }),
+    responses: {
+      201: z31.object({ runId: z31.string() }),
+      400: apiErrorSchema,
+      401: apiErrorSchema,
+      404: apiErrorSchema,
+      409: apiErrorSchema
+    },
+    summary: "Execute a schedule immediately (run now)"
+  }
+});
 
 // ../../packages/core/src/contracts/zero-model-providers.ts
 import { z as z32 } from "zod";
@@ -16681,6 +16776,214 @@ var zeroUsageMembersContract = c30.router({
   }
 });
 
+// ../../packages/core/src/contracts/zero-team.ts
+import { z as z38 } from "zod";
+var c31 = initContract();
+var teamComposeItemSchema = z38.object({
+  id: z38.string(),
+  displayName: z38.string().nullable(),
+  description: z38.string().nullable(),
+  sound: z38.string().nullable(),
+  headVersionId: z38.string().nullable(),
+  updatedAt: z38.string()
+});
+var zeroTeamContract = c31.router({
+  list: {
+    method: "GET",
+    path: "/api/zero/team",
+    headers: authHeadersSchema,
+    responses: {
+      200: z38.array(teamComposeItemSchema),
+      401: apiErrorSchema,
+      403: apiErrorSchema,
+      404: apiErrorSchema
+    },
+    summary: "List all agents in the user's active org"
+  }
+});
+
+// ../../packages/core/src/contracts/zero-integrations-slack.ts
+import { z as z39 } from "zod";
+var c32 = initContract();
+var slackEnvironmentSchema = z39.object({
+  requiredSecrets: z39.array(z39.string()),
+  requiredVars: z39.array(z39.string()),
+  missingSecrets: z39.array(z39.string()),
+  missingVars: z39.array(z39.string())
+});
+var slackOrgStatusSchema = z39.object({
+  isConnected: z39.boolean(),
+  isInstalled: z39.boolean().optional(),
+  workspaceName: z39.string().nullable().optional(),
+  isAdmin: z39.boolean(),
+  installUrl: z39.string().nullable().optional(),
+  connectUrl: z39.string().nullable().optional(),
+  defaultAgentName: z39.string().nullable().optional(),
+  agentOrgSlug: z39.string().nullable().optional(),
+  environment: slackEnvironmentSchema.optional()
+});
+var zeroIntegrationsSlackContract = c32.router({
+  getStatus: {
+    method: "GET",
+    path: "/api/zero/integrations/slack",
+    headers: authHeadersSchema,
+    responses: {
+      200: slackOrgStatusSchema,
+      401: apiErrorSchema
+    },
+    summary: "Get org-scoped Slack workspace info"
+  },
+  disconnect: {
+    method: "DELETE",
+    path: "/api/zero/integrations/slack",
+    headers: authHeadersSchema,
+    body: c32.noBody(),
+    query: z39.object({
+      action: z39.string().optional()
+    }),
+    responses: {
+      200: z39.object({ ok: z39.boolean() }),
+      401: apiErrorSchema,
+      403: apiErrorSchema,
+      404: apiErrorSchema
+    },
+    summary: "Disconnect or uninstall Slack workspace"
+  }
+});
+
+// ../../packages/core/src/contracts/zero-slack-connect.ts
+import { z as z40 } from "zod";
+var c33 = initContract();
+var slackConnectStatusSchema = z40.object({
+  isConnected: z40.boolean(),
+  isAdmin: z40.boolean(),
+  workspaceName: z40.string().nullable().optional(),
+  defaultAgentName: z40.string().nullable().optional()
+});
+var slackConnectResponseSchema = z40.object({
+  success: z40.boolean(),
+  connectionId: z40.string(),
+  role: z40.string()
+});
+var zeroSlackConnectContract = c33.router({
+  getStatus: {
+    method: "GET",
+    path: "/api/zero/integrations/slack/connect",
+    headers: authHeadersSchema,
+    responses: {
+      200: slackConnectStatusSchema,
+      401: apiErrorSchema
+    },
+    summary: "Check user Slack connection status"
+  },
+  connect: {
+    method: "POST",
+    path: "/api/zero/integrations/slack/connect",
+    headers: authHeadersSchema,
+    body: z40.object({
+      workspaceId: z40.string().min(1),
+      slackUserId: z40.string().min(1),
+      channelId: z40.string().optional(),
+      threadTs: z40.string().optional()
+    }),
+    responses: {
+      200: slackConnectResponseSchema,
+      400: apiErrorSchema,
+      401: apiErrorSchema,
+      403: apiErrorSchema,
+      404: apiErrorSchema
+    },
+    summary: "Connect user to Slack workspace"
+  }
+});
+
+// ../../packages/core/src/contracts/zero-slack-channels.ts
+import { z as z41 } from "zod";
+var c34 = initContract();
+var slackChannelSchema = z41.object({
+  id: z41.string(),
+  name: z41.string()
+});
+var zeroSlackChannelsContract = c34.router({
+  list: {
+    method: "GET",
+    path: "/api/zero/slack/channels",
+    headers: authHeadersSchema,
+    responses: {
+      200: z41.object({ channels: z41.array(slackChannelSchema) }),
+      401: apiErrorSchema,
+      404: apiErrorSchema
+    },
+    summary: "List Slack channels where bot is a member"
+  }
+});
+
+// ../../packages/core/src/contracts/zero-queue-position.ts
+import { z as z42 } from "zod";
+var c35 = initContract();
+var queuePositionResponseSchema = z42.object({
+  position: z42.number(),
+  total: z42.number()
+});
+var zeroQueuePositionContract = c35.router({
+  getPosition: {
+    method: "GET",
+    path: "/api/zero/queue-position",
+    headers: authHeadersSchema,
+    query: z42.object({
+      runId: z42.string().min(1, "runId is required")
+    }),
+    responses: {
+      200: queuePositionResponseSchema,
+      400: apiErrorSchema,
+      401: apiErrorSchema,
+      404: apiErrorSchema
+    },
+    summary: "Get queue position for a run"
+  }
+});
+
+// ../../packages/core/src/contracts/zero-member-credit-cap.ts
+import { z as z43 } from "zod";
+var c36 = initContract();
+var memberCreditCapResponseSchema = z43.object({
+  userId: z43.string(),
+  creditCap: z43.number().nullable(),
+  creditEnabled: z43.boolean()
+});
+var zeroMemberCreditCapContract = c36.router({
+  get: {
+    method: "GET",
+    path: "/api/zero/org/members/credit-cap",
+    headers: authHeadersSchema,
+    query: z43.object({
+      userId: z43.string().min(1, "userId is required")
+    }),
+    responses: {
+      200: memberCreditCapResponseSchema,
+      400: apiErrorSchema,
+      401: apiErrorSchema
+    },
+    summary: "Get member credit cap"
+  },
+  set: {
+    method: "PUT",
+    path: "/api/zero/org/members/credit-cap",
+    headers: authHeadersSchema,
+    body: z43.object({
+      userId: z43.string().min(1),
+      creditCap: z43.number().int().positive().nullable()
+    }),
+    responses: {
+      200: memberCreditCapResponseSchema,
+      400: apiErrorSchema,
+      401: apiErrorSchema,
+      403: apiErrorSchema
+    },
+    summary: "Set or clear member credit cap"
+  }
+});
+
 // ../../packages/core/src/storage-names.ts
 function getInstructionsStorageName(agentName) {
   return `agent-instructions@${agentName}`;
@@ -17020,6 +17323,11 @@ async function getBaseUrl() {
 async function getClientConfig() {
   const baseUrl = await getBaseUrl();
   const baseHeaders = await getHeaders();
+  const token = await getActiveToken();
+  const isJwtToken = decodeCliTokenPayload(token) ?? decodeZeroTokenPayload(token);
+  if (isJwtToken) {
+    return { baseUrl, baseHeaders, jsonQuery: false };
+  }
   const activeOrg = await getActiveOrg();
   if (!activeOrg) {
     throw new Error(
@@ -17277,6 +17585,18 @@ async function deleteZeroOrg(slug) {
   }
   handleError(result, "Failed to delete organization");
 }
+async function switchZeroOrg(slug) {
+  const config = await getUserTokenClientConfig();
+  const client = initClient4(cliAuthOrgContract, config);
+  const result = await client.switchOrg({
+    headers: { authorization: `Bearer ${await getToken()}` },
+    body: { slug }
+  });
+  if (result.status === 200) {
+    return result.body;
+  }
+  handleError(result, "Failed to switch organization");
+}
 
 // src/lib/api/domains/zero-secrets.ts
 import { initClient as initClient5 } from "@ts-rest/core";
@@ -17914,6 +18234,7 @@ async function promptPassword(message) {
 
 export {
   configureGlobalProxyFromEnv,
+  decodeCliTokenPayload,
   decodeZeroTokenPayload,
   loadConfig,
   saveConfig,
@@ -17988,6 +18309,7 @@ export {
   removeZeroOrgMember,
   leaveZeroOrg,
   deleteZeroOrg,
+  switchZeroOrg,
   listZeroSecrets,
   setZeroSecret,
   deleteZeroSecret,
@@ -18032,4 +18354,4 @@ export {
   promptSelect,
   promptPassword
 };
-//# sourceMappingURL=chunk-2RXB3R33.js.map
+//# sourceMappingURL=chunk-Z7ZCVASY.js.map