@wcag-audit/cli 1.0.0-alpha.4 → 1.0.0-alpha.6

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wcag-audit/cli",
-  "version": "1.0.0-alpha.4",
+  "version": "1.0.0-alpha.6",
   "description": "Project-aware WCAG 2.1/2.2 auditor with AI-ready fix prompts for vibe-coding tools (Cursor, Claude Code, Windsurf).",
   "type": "module",
   "bin": {

package/src/cli.js

@@ -18,7 +18,7 @@ const program = new Command();
 program
   .name("wcag-audit")
   .description("WCAG 2.1/2.2 auditor for web projects — with AI-ready fixes for Cursor / Claude Code / Windsurf.")
-  .version("1.0.0-alpha.4");
+  .version("1.0.0-alpha.6");
 
 // ── init ─────────────────────────────────────────────────────────
 program

package/src/commands/doctor.js

@@ -5,7 +5,7 @@ import { readGlobalConfig } from "../config/global.js";
 import { validateLicense } from "../license/validate.js";
 import { detectFramework } from "../discovery/registry.js";
 
-const CLI_VERSION = "1.0.0-alpha.4";
+const CLI_VERSION = "1.0.0-alpha.6";
 
 export async function runDoctor({ cwd = process.cwd(), log = console.log } = {}) {
   const checks = [];

package/src/commands/init.js

@@ -1,9 +1,10 @@
 import enquirer from "enquirer";
 import { randomUUID } from "crypto";
 import { validateLicense } from "../license/validate.js";
+import { requestFreeLicense } from "../license/request-free.js";
 import { writeGlobalConfig } from "../config/global.js";
 
-const CLI_VERSION = "1.0.0-alpha.4";
+const CLI_VERSION = "1.0.0-alpha.6";
 
 // runInit can be called two ways:
 //   1. Interactive (no answers) — uses enquirer to prompt
@@ -13,7 +14,7 @@ export async function runInit({ answers, log = console.log } = {}) {
   log("Welcome to WCAG Audit CLI");
   log("");
 
-  const resolved = answers || (await promptUser());
+  const resolved = answers || (await promptUser({ log }));
 
   // 1. Validate license
   const machineId = randomUUID();
@@ -68,7 +69,42 @@ function defaultModelFor(provider) {
   }[provider] || "claude-sonnet-4-6";
 }
 
-async function promptUser() {
+async function promptUser({ log = console.log } = {}) {
+  // Step 1: Has a key? Or request free?
+  const { hasKey } = await enquirer.prompt([
+    {
+      type: "confirm",
+      name: "hasKey",
+      message: "Do you already have a license key?",
+      initial: true,
+    },
+  ]);
+
+  if (!hasKey) {
+    // Free-tier flow: ask for email, request a free key, wait for them
+    // to paste it from their inbox.
+    const { email } = await enquirer.prompt([
+      {
+        type: "input",
+        name: "email",
+        message: "Enter your email for a free license (1 audit/day):",
+        validate: (v) => (/@.+\./.test(v) ? true : "Enter a valid email"),
+      },
+    ]);
+    log("");
+    log(`Requesting free license for ${email}...`);
+    const machineId = randomUUID();
+    const result = await requestFreeLicense({ email, machineId });
+    if (!result.ok) {
+      log(`✗ ${result.error}`);
+      log("  You can try again or skip and use --help to paste a key later.");
+      throw new Error(result.error);
+    }
+    log(`✓ ${result.message}`);
+    log("");
+  }
+
+  // Step 2: Paste the key (works for both free and paid)
   const answers = await enquirer.prompt([
     {
       type: "input",

package/src/commands/scan.js

@@ -17,7 +17,7 @@ import { renderCursorRules } from "../output/cursor-rules.js";
 import { upsertAgentsMd } from "../output/agents-md.js";
 import { hashContent, readCacheEntry, writeCacheEntry } from "../cache/route-cache.js";
 
-const CLI_VERSION = "1.0.0-alpha.4";
+const CLI_VERSION = "1.0.0-alpha.6";
 
 export async function runScan({
   cwd = process.cwd(),
@@ -230,7 +230,7 @@ export async function runScan({
   if (outputs.has("markdown")) {
     const md = renderFindingsMarkdown({
       projectName,
-      generator: `@wcagaudit/cli v${CLI_VERSION}`,
+      generator: `@wcag-audit/cli v${CLI_VERSION}`,
       totalPages: routes.length,
       wcagVersion: globalCfg.defaults.wcagVersion,
       levels: globalCfg.defaults.conformanceLevel,

package/src/license/request-free.js

@@ -0,0 +1,46 @@
+// Free-tier license request. POSTs to /v1/license/free which creates a
+// User + License row (tier: "free") and emails the key to the user.
+// The key is NEVER returned in the response body — it's mailed out,
+// so users have to paste it from their inbox. This matches the
+// Chrome extension free-tier flow.
+
+const DEFAULT_API_URL = "https://wcagaudit.io/api/v1/license/free";
+
+export async function requestFreeLicense({ email, machineId, apiUrl } = {}) {
+  const url = apiUrl || process.env.WCAG_LICENSE_FREE_URL || DEFAULT_API_URL;
+
+  const trimmedEmail = (email || "").trim();
+  if (!trimmedEmail || !trimmedEmail.includes("@")) {
+    return {
+      ok: false,
+      error: "A valid email address is required",
+    };
+  }
+
+  try {
+    const res = await fetch(url, {
+      method: "POST",
+      headers: { "content-type": "application/json" },
+      body: JSON.stringify({ email: trimmedEmail, machineId }),
+    });
+
+    const body = await res.json().catch(() => ({}));
+
+    if (!res.ok) {
+      return {
+        ok: false,
+        error: body.error || `Free license request failed (HTTP ${res.status})`,
+      };
+    }
+
+    return {
+      ok: true,
+      message: body.message || "Check your email for your free license key",
+    };
+  } catch (err) {
+    return {
+      ok: false,
+      error: `Network error: ${err.message}`,
+    };
+  }
+}

package/src/license/request-free.test.js

@@ -0,0 +1,57 @@
+import { describe, it, expect, beforeEach, afterEach, vi } from "vitest";
+import { requestFreeLicense } from "./request-free.js";
+
+describe("requestFreeLicense", () => {
+  beforeEach(() => {
+    global.fetch = vi.fn();
+  });
+  afterEach(() => {
+    vi.restoreAllMocks();
+  });
+
+  it("rejects invalid email without hitting the network", async () => {
+    const result = await requestFreeLicense({ email: "not-an-email", machineId: "m1" });
+    expect(result.ok).toBe(false);
+    expect(result.error).toMatch(/email/i);
+    expect(global.fetch).not.toHaveBeenCalled();
+  });
+
+  it("rejects empty email", async () => {
+    const result = await requestFreeLicense({ email: "", machineId: "m1" });
+    expect(result.ok).toBe(false);
+    expect(global.fetch).not.toHaveBeenCalled();
+  });
+
+  it("returns ok when API returns 200", async () => {
+    global.fetch.mockResolvedValueOnce({
+      ok: true,
+      json: async () => ({ ok: true, message: "Check your email for your free license key" }),
+    });
+    const result = await requestFreeLicense({ email: "sai@example.com", machineId: "m1" });
+    expect(result.ok).toBe(true);
+    expect(result.message).toMatch(/email/i);
+    const [url, init] = global.fetch.mock.calls[0];
+    expect(url).toMatch(/\/v1\/license\/free$/);
+    const body = JSON.parse(init.body);
+    expect(body.email).toBe("sai@example.com");
+    expect(body.machineId).toBe("m1");
+  });
+
+  it("returns error on non-2xx", async () => {
+    global.fetch.mockResolvedValueOnce({
+      ok: false,
+      status: 429,
+      json: async () => ({ error: "Rate limit exceeded" }),
+    });
+    const result = await requestFreeLicense({ email: "sai@example.com", machineId: "m1" });
+    expect(result.ok).toBe(false);
+    expect(result.error).toMatch(/rate limit/i);
+  });
+
+  it("returns error when fetch throws", async () => {
+    global.fetch.mockRejectedValueOnce(new Error("ECONNREFUSED"));
+    const result = await requestFreeLicense({ email: "sai@example.com", machineId: "m1" });
+    expect(result.ok).toBe(false);
+    expect(result.error).toMatch(/network/i);
+  });
+});

package/src/output/agents-md.js

@@ -11,7 +11,7 @@ function buildSection(body) {
     WCAG_SECTION_START,
     "## WCAG Accessibility Fixes",
     "",
-    "The latest @wcagaudit/cli scan produced the fixes below.",
+    "The latest @wcag-audit/cli scan produced the fixes below.",
     "Apply them when editing the affected files.",
     "",
     body.trimEnd(),

package/src/output/cursor-rules.js

@@ -6,7 +6,7 @@
 export function renderCursorRules({ findings, projectName }) {
   const frontMatter = [
     "---",
-    "description: WCAG accessibility fixes generated by @wcagaudit/cli",
+    "description: WCAG accessibility fixes generated by @wcag-audit/cli",
     `globs: ${JSON.stringify(["src/app/**/*.tsx", "src/app/**/*.ts", "src/components/**/*.tsx"])}`,
     "alwaysApply: false",
     "---",

package/src/output/markdown.test.js

@@ -18,14 +18,14 @@ describe("renderFindingsMarkdown", () => {
   it("includes a header with project + generator metadata", () => {
     const md = renderFindingsMarkdown({
       projectName: "my-nextjs-app",
-      generator: "@wcagaudit/cli v1.0.0-alpha.1",
+      generator: "@wcag-audit/cli v1.0.0-alpha.1",
       totalPages: 47,
       wcagVersion: "2.2",
       levels: ["A", "AA"],
       findings: [],
     });
     expect(md).toMatch(/# WCAG Audit Findings — my-nextjs-app/);
-    expect(md).toMatch(/@wcagaudit\/cli v1\.0\.0-alpha\.1/);
+    expect(md).toMatch(/@wcag-audit\/cli v1\.0\.0-alpha\.1/);
     expect(md).toMatch(/Total pages audited: 47/);
     expect(md).toMatch(/WCAG 2\.2 Level A \+ AA/);
     expect(md).toMatch(/No issues found!/);