@westbayberry/dg 1.0.53 → 1.0.56

package/dist/packages/cli/src/ui/InitApp.js

@@ -0,0 +1,391 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InitApp = void 0;
+const jsx_runtime_1 = require("react/jsx-runtime");
+const react_1 = require("react");
+const ink_1 = require("ink");
+const useInit_1 = require("./hooks/useInit");
+const useTerminalSize_1 = require("./hooks/useTerminalSize");
+const Spinner_1 = require("./components/Spinner");
+const ProgressBar_1 = require("./components/ProgressBar");
+const Mascot_1 = require("./components/Mascot");
+const ScanResultCard_1 = require("./components/ScanResultCard");
+const DemoScanAnimation_1 = require("./components/DemoScanAnimation");
+const ProgressDots_1 = require("./components/ProgressDots");
+const wizard_demo_data_1 = require("../wizard-demo-data");
+const sanitize_1 = require("../sanitize");
+const node_path_1 = require("node:path");
+const YES_NO_PHASES = new Set([
+    "greet",
+    "confirm_hook",
+    "confirm_wrap",
+    "confirm_scan",
+]);
+function defaultYesNoCursor(phase) {
+    return phase === "confirm_wrap" ? 1 : 0;
+}
+const InitApp = ({ dryRun = false, firstRun = false, returning = false, onReachedDone, onScanRan, }) => {
+    const { state, canGoBack, runDetect, runInstallHook, runVerifyHook, runScan, dispatch } = (0, useInit_1.useInit)({ dryRun, firstRun });
+    const { exit } = (0, ink_1.useApp)();
+    (0, useTerminalSize_1.useTerminalSize)();
+    const [yesNoCursor, setYesNoCursor] = (0, react_1.useState)(defaultYesNoCursor(state.phase));
+    // Alt-screen management lives in src/alt-screen.ts — it is entered BEFORE
+    // `render()` is called so Ink's first paint lands in the alt buffer and its
+    // internal diff state matches reality from frame 1. Doing it from a useEffect
+    // here caused the "blank until keypress" bug (Ink painted the greet frame
+    // to the main buffer, the effect flipped buffers after, diff tracker went
+    // stale, no repaint until user input forced one).
+    // Defense against the run_scan → result_first_scan transition stall: after a
+    // long async scan, Ink has occasionally been observed to skip the repaint
+    // that replaces the ProgressBar with the result card. Bumping a trivial
+    // state value in a microtask on that specific transition gives Ink a clear
+    // reason to diff-and-paint. Cheap, and local to just this transition.
+    const prevPhaseRef = (0, react_1.useRef)(state.phase);
+    const [, forceTick] = (0, react_1.useState)(0);
+    (0, react_1.useEffect)(() => {
+        if (prevPhaseRef.current === "run_scan" && state.phase === "result_first_scan") {
+            Promise.resolve().then(() => forceTick((n) => n + 1));
+        }
+        prevPhaseRef.current = state.phase;
+    }, [state.phase]);
+    (0, react_1.useEffect)(() => {
+        if (YES_NO_PHASES.has(state.phase)) {
+            setYesNoCursor(defaultYesNoCursor(state.phase));
+        }
+    }, [state.phase]);
+    (0, react_1.useEffect)(() => {
+        if (state.phase === "detect") {
+            runDetect();
+        }
+    }, [state.phase, runDetect]);
+    (0, react_1.useEffect)(() => {
+        if (state.scanRan && onScanRan)
+            onScanRan();
+    }, [state.scanRan, onScanRan]);
+    (0, react_1.useEffect)(() => {
+        if (state.phase === "install_hook") {
+            runInstallHook();
+        }
+        if (state.phase === "verify_hook") {
+            void runVerifyHook();
+        }
+        if (state.phase === "run_scan") {
+            void runScan();
+        }
+        if (state.phase === "done") {
+            if (onReachedDone)
+                onReachedDone();
+        }
+    }, [state.phase, runInstallHook, runVerifyHook, runScan, dispatch, exit, onReachedDone]);
+    (0, ink_1.useInput)((input, key) => {
+        const ch = input.toLowerCase();
+        if (ch === "q" || key.escape) {
+            exit();
+            return;
+        }
+        if (ch === "b" && canGoBack) {
+            dispatch({ type: "go_back" });
+            return;
+        }
+        if (ch === "s") {
+            switch (state.phase) {
+                case "greet":
+                    dispatch({ type: "welcome_no" });
+                    return;
+                case "value_prop":
+                    dispatch({ type: "value_prop_continue" });
+                    return;
+                case "demo_result":
+                    dispatch({ type: "demo_acked" });
+                    return;
+                case "scenario":
+                    dispatch({ type: "scenario_acked" });
+                    return;
+                case "confirm_hook":
+                    dispatch({ type: "confirm_hook_no" });
+                    return;
+                case "confirm_wrap":
+                    dispatch({ type: "wrap_skipped" });
+                    return;
+                case "confirm_scan":
+                    dispatch({ type: "scan_skipped" });
+                    return;
+                case "show_app_link":
+                    dispatch({ type: "app_link_acked" });
+                    return;
+                case "result_first_scan":
+                    dispatch({ type: "first_scan_acked" });
+                    return;
+                case "what_happens_next":
+                    dispatch({ type: "what_happens_next_acked" });
+                    return;
+                case "pitch_app":
+                    dispatch({ type: "pitch_acked" });
+                    return;
+            }
+        }
+        if (YES_NO_PHASES.has(state.phase)) {
+            if (key.leftArrow || key.upArrow) {
+                setYesNoCursor(0);
+                return;
+            }
+            if (key.rightArrow || key.downArrow) {
+                setYesNoCursor(1);
+                return;
+            }
+        }
+        switch (state.phase) {
+            case "greet":
+                if (ch === "y") {
+                    dispatch({ type: "welcome_yes" });
+                }
+                else if (ch === "n") {
+                    dispatch({ type: "welcome_no" });
+                }
+                else if (key.return) {
+                    dispatch({ type: yesNoCursor === 0 ? "welcome_yes" : "welcome_no" });
+                }
+                return;
+            case "value_prop":
+                if (key.return) {
+                    dispatch({ type: "value_prop_continue" });
+                }
+                return;
+            case "demo_result":
+                if (key.return) {
+                    dispatch({ type: "demo_acked" });
+                }
+                return;
+            case "scenario":
+                if (key.return) {
+                    dispatch({ type: "scenario_acked" });
+                }
+                return;
+            case "confirm_hook":
+                if (ch === "y") {
+                    dispatch({ type: "confirm_hook_yes" });
+                }
+                else if (ch === "n") {
+                    dispatch({ type: "confirm_hook_no" });
+                }
+                else if (key.return) {
+                    dispatch({ type: yesNoCursor === 0 ? "confirm_hook_yes" : "confirm_hook_no" });
+                }
+                return;
+            case "confirm_wrap":
+                if (ch === "y") {
+                    dispatch({ type: "wrap_confirmed" });
+                }
+                else if (ch === "n") {
+                    dispatch({ type: "wrap_skipped" });
+                }
+                else if (key.return) {
+                    dispatch({ type: yesNoCursor === 0 ? "wrap_confirmed" : "wrap_skipped" });
+                }
+                return;
+            case "confirm_scan":
+                if (ch === "y") {
+                    dispatch({ type: "scan_confirmed" });
+                }
+                else if (ch === "n") {
+                    dispatch({ type: "scan_skipped" });
+                }
+                else if (key.return) {
+                    dispatch({ type: yesNoCursor === 0 ? "scan_confirmed" : "scan_skipped" });
+                }
+                return;
+            case "show_app_link":
+                if (key.return) {
+                    dispatch({ type: "app_link_acked" });
+                }
+                return;
+            case "result_first_scan":
+                if (key.return) {
+                    dispatch({ type: "first_scan_acked" });
+                }
+                return;
+            case "what_happens_next":
+                if (key.return) {
+                    dispatch({ type: "what_happens_next_acked" });
+                }
+                return;
+            case "pitch_app":
+                if (key.return) {
+                    dispatch({ type: "pitch_acked" });
+                }
+                return;
+            case "done":
+                if (key.return || ch === " " || ch === "q") {
+                    exit();
+                }
+                return;
+        }
+    });
+    const yesNoRow = (yesLabel = "Yes", noLabel = "No") => ((0, jsx_runtime_1.jsxs)(ink_1.Box, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { inverse: yesNoCursor === 0, bold: yesNoCursor === 0, color: "green", children: ` ${yesLabel} ` }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "   " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { inverse: yesNoCursor === 1, bold: yesNoCursor === 1, color: "red", children: ` ${noLabel} ` })] }));
+    const okButton = ((0, jsx_runtime_1.jsx)(ink_1.Box, { children: (0, jsx_runtime_1.jsx)(ink_1.Text, { inverse: true, bold: true, color: "green", children: ` OK ` }) }));
+    const isYesNo = YES_NO_PHASES.has(state.phase);
+    const stepHint = ((0, jsx_runtime_1.jsx)(ink_1.Box, { marginTop: 1, children: (0, jsx_runtime_1.jsxs)(ink_1.Text, { dimColor: true, children: [isYesNo ? "← → choose · Enter confirm · " : "", canGoBack ? "[b] back · " : "", "[s] skip \u00B7 [q] quit"] }) }));
+    const currentStep = (0, ProgressDots_1.phaseToStep)(state.phase);
+    const Scene = (props) => ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "row", paddingTop: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Box, { flexDirection: "column", marginRight: 1, children: (0, jsx_runtime_1.jsx)(Mascot_1.Mascot, { mood: props.mood, color: props.color }) }), (0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", borderStyle: "round", borderColor: props.color ?? "white", paddingX: 1, paddingY: 0, flexGrow: 1, children: [(0, jsx_runtime_1.jsx)(ProgressDots_1.ProgressDots, { current: currentStep }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), props.children] })] }));
+    const projectName = state.projects.length > 0
+        ? (0, sanitize_1.sanitize)((0, node_path_1.basename)(state.projects[0].path)) || "your project"
+        : "your project";
+    const hookTargetFile = state.hookInfo
+        ? (0, sanitize_1.sanitize)(state.hookInfo.targetFile)
+        : "";
+    const resultMood = (() => {
+        const r = state.scanResult;
+        if (!r)
+            return "idle";
+        if (r.status === "ok" && r.result) {
+            const action = r.result.result.action;
+            if (action === "block")
+                return "alarmed";
+            if (action === "warn")
+                return "alert";
+            return "happy";
+        }
+        if (r.status === "no_packages")
+            return "happy";
+        return "idle";
+    })();
+    switch (state.phase) {
+        case "greet":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "happy", color: "green", children: [returning ? ((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Hey, welcome back \uD83D\uDC4B I'm ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "green", children: "Dependency Guardian" }), "."] })) : ((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Hey \uD83D\uDC4B I'm ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "green", children: "Dependency Guardian" }), "."] })), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I watch the code that gets added to your project" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "so bad stuff doesn't sneak in." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), returning ? ((0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Want a refresher? Takes about a minute." })) : ((0, jsx_runtime_1.jsxs)(jsx_runtime_1.Fragment, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Looks like it's your first time here." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Want me to show you around? Takes about a minute." })] })), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), yesNoRow("Yes", "I know what I'm doing"), (0, jsx_runtime_1.jsx)(ink_1.Box, { marginTop: 1, children: (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "\u2190 \u2192 choose \u00B7 Enter confirm \u00B7 [q] quit anytime" }) })] }));
+        case "value_prop":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "worried", color: "yellow", children: [(0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["In ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "2025-2026" }), ", over ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "50,000" }), " packages on"] }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "npm" }), " and ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "PyPI" }), " have been caught doing bad"] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "things \u2014 stealing passwords, mining crypto," }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "installing backdoors." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "I scan both today, with 20+ more languages planned." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Want to see me catch one in the act?" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+        case "demo_scanning":
+            return ((0, jsx_runtime_1.jsx)(Scene, { mood: "scanning", color: "cyan", children: (0, jsx_runtime_1.jsx)(DemoScanAnimation_1.DemoScanAnimation, { onComplete: () => dispatch({ type: "demo_complete" }) }) }));
+        case "demo_result":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "alarmed", color: "red", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "red", children: "Got one." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ScanResultCard_1.ScanResultCard, { outcome: {
+                            kind: "demo",
+                            pkg: wizard_demo_data_1.DEMO_MALICIOUS_PACKAGE.package,
+                            score: wizard_demo_data_1.DEMO_MALICIOUS_PACKAGE.score,
+                            action: wizard_demo_data_1.DEMO_MALICIOUS_PACKAGE.action,
+                        } }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "This one's fake. The next one won't be." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+        case "scenario":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "explaining", color: "cyan", children: [(0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Here's the situation in ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: projectName }), "."] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "npm packages can ship \"install scripts\" \u2014 code that" }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["runs the moment you ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "npm install" }), " them."] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["To catch that, use ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "dg npm install" }), " or"] }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "dg pip install" }), " instead of the normal command."] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I scan the package first, before any code runs" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "on your machine." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I can also add a safety net to git so nothing" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "slips through at commit time." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+        case "detect":
+            if (!state.firstRun) {
+                return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "green", children: "Dependency Guardian" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "Looking around..." })] }));
+            }
+            return ((0, jsx_runtime_1.jsx)(Scene, { mood: "scanning", color: "cyan", children: (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Looking around..." }) }));
+        case "confirm_hook":
+            if (!state.hookInfo)
+                return (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "..." });
+            if (state.hookInfo.alreadyInstalled) {
+                return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "happy", color: "green", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "green", children: "Looks like you already did this step." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "The pre-commit hook is already installed in" }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: hookTargetFile }), "."] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Every commit that adds a package gets scanned." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+            }
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "curious", color: "green", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Git can run a safety check before each commit." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I'd add my scan to that check \u2014 one line of code." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "After that, every commit that adds a package" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "gets scanned first. If I find malware, the" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "commit stops before your code ships anywhere." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Want me to set it up?" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), yesNoRow("Yes", "No"), stepHint] }));
+        case "install_hook":
+            return ((0, jsx_runtime_1.jsx)(Scene, { mood: "scanning", color: "cyan", children: (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Adding the hook..." }) }));
+        case "verify_hook":
+            return ((0, jsx_runtime_1.jsx)(Scene, { mood: "scanning", color: "cyan", children: (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Testing it..." }) }));
+        case "confirm_wrap":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: state.hookError ? "alert" : "happy", color: state.hookError ? "yellow" : "green", children: [state.hookVerifyMs !== null ? ((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "green", children: ["\u2713 Hook works. ", (0, jsx_runtime_1.jsxs)(ink_1.Text, { bold: true, children: [state.hookVerifyMs, "ms"] }), "."] })) : null, state.hookError ? ((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "yellow", children: ["\u26A0 ", state.hookError] })) : null, (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { dimColor: true, children: ["I can also catch packages at ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "npm install" }), " time, before"] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "they hit your package.json. Adds one line to your shell config." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Want it?" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), yesNoRow(), stepHint] }));
+        case "confirm_scan":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "happy", color: "green", children: [(0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Can I scan ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: projectName }), " now?"] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I'll check what's already installed and show" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "you what I see." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), yesNoRow("Scan", "Skip"), stepHint] }));
+        case "run_scan": {
+            const p = state.scanProgress;
+            if (p && p.total > 0) {
+                // Free-float the progress bar (no Scene border) — it already has its
+                // own header + spinner and looks out of place nested in a card.
+                // No per-package label: scans arrive batch-at-a-time so any single
+                // package name shown is just an arbitrary pick from the last batch,
+                // not "what's scanning right now" — misleading rather than useful.
+                return (0, jsx_runtime_1.jsx)(ProgressBar_1.ProgressBar, { value: p.done, total: p.total });
+            }
+            return ((0, jsx_runtime_1.jsx)(Scene, { mood: "scanning", color: "cyan", children: (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Scanning..." }) }));
+        }
+        case "result_first_scan": {
+            const r = state.scanResult;
+            const okScan = r?.status === "ok" && r.result;
+            const empty = r?.status === "no_packages";
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: resultMood, color: resultMood === "alarmed" ? "red" : resultMood === "alert" ? "yellow" : "green", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "Done." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okScan ? ((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["I scanned ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: projectName }), "."] })) : empty ? ((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["I didn't find any packages to scan in ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: projectName }), "."] })) : ((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["I tried to scan ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: projectName }), " but ran into a snag."] })), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), state.scanResult ? ((0, jsx_runtime_1.jsx)(ScanResultCard_1.ScanResultCard, { outcome: { kind: "real", outcome: state.scanResult } })) : null, (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okScan && resultMood === "happy" ? ((0, jsx_runtime_1.jsx)(ink_1.Text, { color: "green", children: "You're already in good shape." })) : null, (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+        }
+        case "what_happens_next":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "explaining", color: "cyan", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "What happens from here." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "You commit normally. If I find nothing, you" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "won't even see me \u2014 the commit just goes through." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "If I find something bad, you'll see a card like" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "the demo I showed you. Read it. If it's a real" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "threat, investigate." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["If it's a false alarm, just add ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "--no-verify" }), ":"] }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["  ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "git commit -m \"your message\" --no-verify" })] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I won't be offended." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+        case "pitch_app":
+            return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "idle", color: "green", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: "One last thing." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "I'm watching your laptop. For your team," }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "there's a GitHub App that watches every pull" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "request the same way. Optional \u2014 install it" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "whenever:" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["  ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "https://github.com/apps/dependency-guardian" })] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton, stepHint] }));
+        case "show_app_link": {
+            const scan = state.scanResult;
+            const scanLine = [];
+            if (scan) {
+                if (scan.status === "ok" && scan.result) {
+                    const r = scan.result.result;
+                    const verdict = r.action === "block" ? "BLOCKED" : r.action === "warn" ? "WARNING" : "PASSED";
+                    const color = r.action === "block" ? "red" : r.action === "warn" ? "yellow" : "green";
+                    scanLine.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: color, children: ["\u2713 Scanned ", scan.result.scannedCount, " package", scan.result.scannedCount === 1 ? "" : "s", " in ", scan.result.durationMs, "ms \u2014 ", verdict, " (score ", r.score, "/100)"] }, "scan-summary"));
+                }
+                else if (scan.status === "no_packages") {
+                    scanLine.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { dimColor: true, children: ["\u2713 Scan ran \u2014 nothing to check yet (", scan.result?.durationMs ?? 0, "ms)"] }, "scan-empty"));
+                }
+                else if (scan.status === "trial_exhausted") {
+                    scanLine.push((0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", children: "\u26A0 Free trial scans used up \u2014 `dg login` to continue" }, "scan-trial"));
+                }
+                else if (scan.status === "error") {
+                    scanLine.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "yellow", children: ["\u26A0 Scan didn't finish: ", scan.message] }, "scan-err"));
+                }
+                scanLine.push((0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }, "sp"));
+            }
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "green", children: "Server-side coverage (optional)" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), scanLine, (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "The CLI protects you on this laptop. Install the GitHub App" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "too for server-side scanning on every PR." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", children: "https://github.com/apps/dependency-guardian/installations/new" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "Press Enter to continue." }), stepHint] }));
+        }
+        case "done": {
+            const lines = [];
+            // User said N at greet — skip straight to goodbye.
+            if (state.firstRun && state.skipped.has("scenario") && state.engaged) {
+                return ((0, jsx_runtime_1.jsxs)(Scene, { mood: "wink", color: "cyan", children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: "No worries." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), returning ? ((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Catch you later. ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "dg kitty" }), " any time."] })) : ((0, jsx_runtime_1.jsxs)(jsx_runtime_1.Fragment, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Running your command now. If you change your" }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["mind later, ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "dg kitty" }), " brings me back."] })] })), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), okButton] }));
+            }
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "green", children: "You're set." }, "header"));
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }, "sp1"));
+            if (state.hookInstalled && !state.skipped.has("install_hook")) {
+                lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["  ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "green", children: "\u2713" }), " I'm running on every commit"] }, "hook"));
+            }
+            else {
+                lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "  ○ Hook (skipped)" }, "hook"));
+            }
+            if (state.scanRan && state.scanResult) {
+                const scan = state.scanResult;
+                if (scan.status === "ok" && scan.result) {
+                    const r = scan.result.result;
+                    const tail = r.action === "block"
+                        ? (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "red", bold: true, children: "found something to block" })
+                        : r.action === "warn"
+                            ? (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "flagged a few things" })
+                            : (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "green", children: "all clean" });
+                    lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["  ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "green", children: "\u2713" }), " Scanned ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, children: scan.result.scannedCount }), " packages \u2014 ", tail] }, "scan"));
+                }
+                else if (scan.status === "no_packages") {
+                    lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "  ○ Nothing to scan yet" }, "scan"));
+                }
+                else {
+                    lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "yellow", children: ["  ⚠ ", scan.message ?? "scan didn't finish"] }, "scan"));
+                }
+            }
+            else if (state.skipped.has("run_scan")) {
+                lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "  ○ First scan (skipped)" }, "scan"));
+            }
+            lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["  ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "green", children: "\u2713" }), " You know how to bypass me if I'm wrong"] }, "bypass"));
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }, "sp2"));
+            lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Forget anything? ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "dg kitty" }), " brings me back."] }, "kitty"));
+            lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Full command list: ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "dg help" })] }, "help"));
+            lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Curious about more? ", (0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "cyan", children: "https://westbayberry.com/docs" })] }, "docs"));
+            if (state.hookError) {
+                lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }, "sp3"));
+                lines.push((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "yellow", children: ["Note: ", state.hookError] }, "err"));
+            }
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }, "sp4"));
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { bold: true, color: "green", children: "Build fast, don't get hacked." }, "signoff"));
+            if (state.dryRun) {
+                lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", children: "(dry run \u2014 no files were modified)" }, "dry"));
+            }
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }, "sp5"));
+            lines.push((0, jsx_runtime_1.jsx)(ink_1.Box, { children: (0, jsx_runtime_1.jsx)(ink_1.Text, { inverse: true, bold: true, color: "green", children: ` OK ` }) }, "ok-btn"));
+            if (!state.firstRun) {
+                return ((0, jsx_runtime_1.jsx)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: lines }));
+            }
+            return ((0, jsx_runtime_1.jsx)(Scene, { mood: state.hookError ? "worried" : "proud", color: state.hookError ? "yellow" : "green", children: lines }));
+        }
+    }
+};
+exports.InitApp = InitApp;

package/dist/packages/cli/src/ui/LoginApp.js

@@ -0,0 +1,51 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LoginApp = void 0;
+const jsx_runtime_1 = require("react/jsx-runtime");
+const react_1 = require("react");
+const ink_1 = require("ink");
+const useLogin_1 = require("./hooks/useLogin");
+const Spinner_1 = require("./components/Spinner");
+const LoginApp = () => {
+    const { state, openAndPoll } = (0, useLogin_1.useLogin)();
+    const { exit } = (0, ink_1.useApp)();
+    (0, react_1.useEffect)(() => {
+        if (state.phase === "success") {
+            process.exitCode = 0;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+        if (state.phase === "already_logged_in") {
+            process.exitCode = 0;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+        if (state.phase === "expired" || state.phase === "error") {
+            process.exitCode = 1;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+    }, [state, exit]);
+    (0, ink_1.useInput)((_input, key) => {
+        if (state.phase === "ready" && key.return) {
+            openAndPoll();
+        }
+    });
+    switch (state.phase) {
+        case "creating":
+            return (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Creating login session..." });
+        case "already_logged_in":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", children: "Already authenticated." }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { dimColor: true, children: ["Run ", "`dg logout`", " first to re-authenticate."] })] }));
+        case "ready":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Authenticate your account at:" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", children: state.verifyUrl }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "Press ENTER to open in the browser..." })] }));
+        case "waiting":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: "Authenticate your account at:" }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", children: state.verifyUrl }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Waiting for authorization..." })] }));
+        case "success":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "green", bold: true, children: ["Logged in as ", state.email] }), (0, jsx_runtime_1.jsx)(ink_1.Text, { dimColor: true, children: "Credentials saved." }), (0, jsx_runtime_1.jsx)(ink_1.Text, { children: " " }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Run ", "`dg scan`", " to scan your dependencies."] })] }));
+        case "expired":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", children: "Session expired." }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { dimColor: true, children: ["Run ", "`dg login`", " to try again."] })] }));
+        case "error":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", paddingLeft: 1, children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "red", bold: true, children: "Error: " }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "red", children: state.message })] }));
+    }
+};
+exports.LoginApp = LoginApp;

package/dist/packages/cli/src/ui/NpmWrapperApp.js

@@ -0,0 +1,73 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.NpmWrapperApp = void 0;
+const jsx_runtime_1 = require("react/jsx-runtime");
+const react_1 = require("react");
+const ink_1 = require("ink");
+const auth_1 = require("../auth");
+const useNpmWrapper_1 = require("./hooks/useNpmWrapper");
+const Spinner_1 = require("./components/Spinner");
+const ResultsView_1 = require("./components/ResultsView");
+const ConfirmPrompt_1 = require("./components/ConfirmPrompt");
+const ErrorView_1 = require("./components/ErrorView");
+const NpmWrapperApp = ({ npmArgs, config, }) => {
+    const { exit } = (0, ink_1.useApp)();
+    const { state, confirmInstall, rejectInstall } = (0, useNpmWrapper_1.useNpmWrapper)(npmArgs, config, exit);
+    (0, react_1.useEffect)(() => {
+        if (state.phase === "done") {
+            process.exitCode = state.exitCode;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+        if (state.phase === "trial_exhausted") {
+            process.exitCode = 1;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+        if (state.phase === "passthrough") {
+            // Nothing to render -- runNpm handles stdio directly
+        }
+    }, [state, exit]);
+    const handleConfirm = (0, react_1.useCallback)(() => {
+        confirmInstall();
+    }, [confirmInstall]);
+    const handleReject = (0, react_1.useCallback)(() => {
+        rejectInstall();
+    }, [rejectInstall]);
+    switch (state.phase) {
+        case "resolving":
+            return ((0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: `Resolving ${state.count} package${state.count !== 1 ? "s" : ""}...` }));
+        case "scanning":
+            return ((0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: `Scanning ${state.count} package${state.count !== 1 ? "s" : ""}...` }));
+        case "pass":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "green", children: ["\u2713", " ", state.count, " package", state.count !== 1 ? "s" : "", " scanned", " \u2014 ", "all clear"] }));
+        case "warn":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", children: [(0, jsx_runtime_1.jsx)(ResultsView_1.ResultsView, { result: state.result, config: config, durationMs: state.result.durationMs }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", children: "Warnings detected. Proceeding with install..." })] }));
+        case "blocked":
+            if (state.dgForce) {
+                return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", children: [(0, jsx_runtime_1.jsx)(ResultsView_1.ResultsView, { result: state.result, config: config, durationMs: state.result.durationMs }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "--dg-force: Bypassing block. Install at your own risk." })] }));
+            }
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", children: [(0, jsx_runtime_1.jsx)(ResultsView_1.ResultsView, { result: state.result, config: config, durationMs: state.result.durationMs }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "red", bold: true, children: ["BLOCKED:", " ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "red", children: "High-risk packages detected." })] }), (0, jsx_runtime_1.jsx)(ConfirmPrompt_1.ConfirmPrompt, { message: "Proceed with install anyway?", onConfirm: handleConfirm, onReject: handleReject })] }));
+        case "installing":
+            return (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Installing..." });
+        case "done":
+            // Will exit via useEffect
+            return null;
+        case "error":
+            if (state.proceed) {
+                return ((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "yellow", children: ["Warning: Scan failed (", state.message, "). Proceeding with install."] }));
+            }
+            return (0, jsx_runtime_1.jsx)(ErrorView_1.ErrorView, { error: new Error(state.message) });
+        case "passthrough":
+            return null;
+        case "trial_exhausted": {
+            let hasKey = false;
+            try {
+                hasKey = !!(0, auth_1.getStoredApiKey)();
+            }
+            catch { /* ignore — best-effort */ }
+            return ((0, jsx_runtime_1.jsx)(ink_1.Box, { flexDirection: "column", paddingLeft: 2, children: hasKey ? ((0, jsx_runtime_1.jsxs)(jsx_runtime_1.Fragment, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "Your API key may be invalid or expired." }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Run ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", bold: true, children: "dg logout" }), " then ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", bold: true, children: "dg login" }), " to re-authenticate."] })] })) : ((0, jsx_runtime_1.jsxs)(jsx_runtime_1.Fragment, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "Free trial scans used up." }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Run ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", bold: true, children: "dg login" }), " to create a free account and continue scanning."] })] })) }));
+        }
+    }
+};
+exports.NpmWrapperApp = NpmWrapperApp;

package/dist/packages/cli/src/ui/PipWrapperApp.js

@@ -0,0 +1,72 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PipWrapperApp = void 0;
+const jsx_runtime_1 = require("react/jsx-runtime");
+const react_1 = require("react");
+const ink_1 = require("ink");
+const auth_1 = require("../auth");
+const usePipWrapper_1 = require("./hooks/usePipWrapper");
+const Spinner_1 = require("./components/Spinner");
+const ResultsView_1 = require("./components/ResultsView");
+const ConfirmPrompt_1 = require("./components/ConfirmPrompt");
+const ErrorView_1 = require("./components/ErrorView");
+const PipWrapperApp = ({ pipArgs, config, }) => {
+    const { exit } = (0, ink_1.useApp)();
+    const { state, confirmInstall, rejectInstall } = (0, usePipWrapper_1.usePipWrapper)(pipArgs, config, exit);
+    (0, react_1.useEffect)(() => {
+        if (state.phase === "done") {
+            process.exitCode = state.exitCode;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+        if (state.phase === "trial_exhausted") {
+            process.exitCode = 1;
+            const timer = setTimeout(() => exit(), 0);
+            return () => clearTimeout(timer);
+        }
+        if (state.phase === "passthrough") {
+            // Nothing to render -- runPip handles stdio directly
+        }
+    }, [state, exit]);
+    const handleConfirm = (0, react_1.useCallback)(() => {
+        confirmInstall();
+    }, [confirmInstall]);
+    const handleReject = (0, react_1.useCallback)(() => {
+        rejectInstall();
+    }, [rejectInstall]);
+    switch (state.phase) {
+        case "resolving":
+            return ((0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: `Resolving ${state.count} package${state.count !== 1 ? "s" : ""} from PyPI...` }));
+        case "scanning":
+            return ((0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: `Scanning ${state.count} Python package${state.count !== 1 ? "s" : ""}...` }));
+        case "pass":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "green", children: ["\u2713", " ", state.count, " package", state.count !== 1 ? "s" : "", " scanned", " \u2014 ", "all clear"] }));
+        case "warn":
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", children: [(0, jsx_runtime_1.jsx)(ResultsView_1.ResultsView, { result: state.result, config: config, durationMs: state.result.durationMs }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", children: "Warnings detected. Proceeding with install..." })] }));
+        case "blocked":
+            if (state.dgForce) {
+                return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", children: [(0, jsx_runtime_1.jsx)(ResultsView_1.ResultsView, { result: state.result, config: config, durationMs: state.result.durationMs }), (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "--dg-force: Bypassing block. Install at your own risk." })] }));
+            }
+            return ((0, jsx_runtime_1.jsxs)(ink_1.Box, { flexDirection: "column", children: [(0, jsx_runtime_1.jsx)(ResultsView_1.ResultsView, { result: state.result, config: config, durationMs: state.result.durationMs }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "red", bold: true, children: ["BLOCKED:", " ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "red", children: "High-risk packages detected." })] }), (0, jsx_runtime_1.jsx)(ConfirmPrompt_1.ConfirmPrompt, { message: "Proceed with install anyway?", onConfirm: handleConfirm, onReject: handleReject })] }));
+        case "installing":
+            return (0, jsx_runtime_1.jsx)(Spinner_1.Spinner, { label: "Installing with pip..." });
+        case "done":
+            return null;
+        case "error":
+            if (state.proceed) {
+                return ((0, jsx_runtime_1.jsxs)(ink_1.Text, { color: "yellow", children: ["Warning: Scan failed (", state.message, "). Proceeding with install."] }));
+            }
+            return (0, jsx_runtime_1.jsx)(ErrorView_1.ErrorView, { error: new Error(state.message) });
+        case "passthrough":
+            return null;
+        case "trial_exhausted": {
+            let hasKey = false;
+            try {
+                hasKey = !!(0, auth_1.getStoredApiKey)();
+            }
+            catch { /* ignore — best-effort */ }
+            return ((0, jsx_runtime_1.jsx)(ink_1.Box, { flexDirection: "column", paddingLeft: 2, children: hasKey ? ((0, jsx_runtime_1.jsxs)(jsx_runtime_1.Fragment, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "Your API key may be invalid or expired." }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Run ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", bold: true, children: "dg logout" }), " then ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", bold: true, children: "dg login" }), " to re-authenticate."] })] })) : ((0, jsx_runtime_1.jsxs)(jsx_runtime_1.Fragment, { children: [(0, jsx_runtime_1.jsx)(ink_1.Text, { color: "yellow", bold: true, children: "Free trial scans used up." }), (0, jsx_runtime_1.jsxs)(ink_1.Text, { children: ["Run ", (0, jsx_runtime_1.jsx)(ink_1.Text, { color: "cyan", bold: true, children: "dg login" }), " to create a free account and continue scanning."] })] })) }));
+        }
+    }
+};
+exports.PipWrapperApp = PipWrapperApp;