copilotkit 1.0.2 → 2.0.0

package/package.json

@@ -1,112 +1,8 @@
 {
   "name": "copilotkit",
-  "version": "1.0.2",
-  "description": "CopilotKit CLI",
-  "keywords": [
-    "oclif"
-  ],
-  "homepage": "https://github.com/CopilotKit/CopilotKit/tree/main/packages/cli",
-  "bugs": "https://github.com/CopilotKit/CopilotKit/issues",
-  "license": "MIT",
-  "author": "CopilotKit",
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/CopilotKit/CopilotKit.git",
-    "directory": "packages/cli"
-  },
-  "bin": {
-    "copilotkit": "./bin/run.js",
-    "cpk": "./bin/run.js"
-  },
-  "files": [
-    "/bin",
-    "/dist",
-    "/oclif.manifest.json"
-  ],
+  "version": "2.0.0",
   "type": "module",
-  "main": "dist/index.js",
-  "types": "dist/index.d.ts",
-  "publishConfig": {
-    "access": "public"
-  },
-  "dependencies": {
-    "@oclif/core": "^4.2.0",
-    "@paralleldrive/cuid2": "^2.2.2",
-    "@segment/analytics-node": "^2.1.2",
-    "@sentry/node": "^7.116.0",
-    "@trpc/client": "^11.0.1",
-    "@trpc/server": "^11.0.1",
-    "ansis": "^3.3.2",
-    "axios": "^1.7.8",
-    "chalk": "^5.3.0",
-    "conf": "^13.1.0",
-    "cors": "^2.8.5",
-    "cross-spawn": "^7.0.6",
-    "execa": "^8.0.1",
-    "express": "^4.21.2",
-    "fs-extra": "^11.2.0",
-    "get-port": "^7.1.0",
-    "inquirer": "^12.3.0",
-    "localtunnel": "^2.0.2",
-    "open": "^10.1.0",
-    "ora": "^8.1.1",
-    "posthog-node": "^4.0.1",
-    "superjson": "^2.2.1",
-    "tar": "^7.4.3",
-    "zod": "^3.22.4"
-  },
-  "devDependencies": {
-    "@jest/globals": "30.0.0-beta.3",
-    "@oclif/prettier-config": "^0.2.1",
-    "@oclif/test": "^4",
-    "@types/chai": "^4.3.20",
-    "@types/cors": "^2.8.17",
-    "@types/cross-spawn": "^6.0.6",
-    "@types/express": "^5.0.0",
-    "@types/fs-extra": "^11.0.4",
-    "@types/jest": "^29.5.2",
-    "@types/localtunnel": "^2.0.4",
-    "@types/mocha": "^10",
-    "@types/node": "^18",
-    "@types/sinon": "^17.0.3",
-    "@types/sinon-chai": "^4.0.0",
-    "chai": "^4",
-    "jest": "^29.5.0",
-    "mocha": "^10",
-    "oclif": "^4",
-    "shx": "^0.3.3",
-    "sinon": "^19.0.2",
-    "sinon-chai": "^4.0.0",
-    "ts-jest": "^29.1.0",
-    "ts-node": "^10",
-    "tsup": "^8.0.2",
-    "typescript": "^5"
-  },
-  "oclif": {
-    "bin": "copilotkit",
-    "commands": "./dist/commands",
-    "dirname": "copilotkit",
-    "topicSeparator": " ",
-    "topics": {
-      "login": {
-        "description": "Authenticate with Copilot Cloud"
-      },
-      "tunnel": {
-        "description": "Create a local tunnel to expose your agent to the internet"
-      }
-    }
-  },
-  "engines": {
-    "node": ">=18.0.0"
-  },
-  "scripts": {
-    "clean": "shx rm -rf dist",
-    "extract-version": "node -p \"'// This is auto generated!\\nexport const LIB_VERSION = ' + JSON.stringify(require('./package.json').version) + ';'\" > src/utils/version.ts",
-    "prebuild": "pnpm run clean && pnpm run extract-version",
-    "build": "tsup",
-    "generate-manifest": "oclif manifest",
-    "test": "jest",
-    "version": "oclif readme && git add README.md",
-    "validate": "node validate-package.js"
+  "bin": {
+    "copilotkit": "./index.js"
   }
-}
+}

package/src/commands/docs.d.ts

@@ -0,0 +1,17 @@
+/** CopilotKit documentation URL opened by `copilotkit docs`. */
+export declare const COPILOTKIT_DOCS_URL = "https://docs.copilotkit.ai";
+/**
+ * Detects whether browser automation should be skipped for the current process.
+ *
+ * @param env - Process environment variables.
+ * @returns `true` when the command should print the URL instead of opening it.
+ */
+export declare function shouldSkipBrowserOpen(env?: NodeJS.ProcessEnv): boolean;
+/**
+ * Opens the CopilotKit documentation in the user's browser.
+ *
+ * In CI, or when browser opening fails, the command prints the URL so it can be
+ * opened manually.
+ */
+export declare function runDocs(): Promise<void>;
+//# sourceMappingURL=docs.d.ts.map

package/src/commands/docs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"docs.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/docs.ts"],"names":[],"mappings":"AAAA,gEAAgE;AAChE,eAAO,MAAM,mBAAmB,+BAA+B,CAAC;AAEhE;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,GAAG,GAAE,MAAM,CAAC,UAAwB,GAAG,OAAO,CAInF;AAED;;;;;GAKG;AACH,wBAAsB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAY7C"}

package/src/commands/init.d.ts

@@ -0,0 +1,103 @@
+import type { InitOptions, InitTemplateDefinition } from '../types.js';
+import { login, verifyAndRefresh } from '../services/auth.service.js';
+import { createApiClient } from '../services/api-client.js';
+import { scaffoldProject, copyEnvExample } from '../services/project-scaffold.js';
+import { getOpsApiUrl } from '../config.js';
+/**
+ * Flags accepted by the `copilotkit init` command.
+ */
+export interface InitFlags {
+    /** Human-readable project name (sets the directory name). */
+    name?: string;
+    /** Pre-select the Intelligence (threads) path. */
+    intelligence?: boolean;
+    /** Pre-select a framework (skips intelligence question). */
+    framework?: string;
+}
+/** Phases of the scaffolding flow rendered after options are collected. */
+type ScaffoldPhase = 'auth' | 'scaffold' | 'license' | 'git' | 'success' | 'error';
+/** Writes a license key into the project's .env file. */
+declare function writeLicenseKey(projectDir: string, licenseKey: string): void;
+/** Runs git init and creates an initial commit if identity is configured. */
+declare function initGit(projectDir: string): Promise<void>;
+/**
+ * Checks whether a command is available on PATH.
+ *
+ * @param command - Executable name to check.
+ * @param environment - Environment variables that provide PATH/PATHEXT.
+ * @param platform - Platform used to apply executable extension rules.
+ * @returns `true` when the command can be resolved.
+ */
+export declare function commandExists(command: string, environment?: NodeJS.ProcessEnv, platform?: NodeJS.Platform): boolean;
+/** Outcome from preparing environment files during scaffolding. */
+export interface InitScaffoldResult {
+    /** Absolute project directory created by init. */
+    projectDir: string;
+    /** Whether `.env` was created from `.env.example`. */
+    envCreatedFromExample: boolean;
+    /** Whether a license token was written to `.env`. */
+    licenseWritten: boolean;
+    /** Prerequisite commands missing from PATH. */
+    missingPrerequisites: string[];
+}
+/**
+ * Dependencies used by the `copilotkit init` scaffold flow.
+ *
+ * Extracted so the behavior split can be tested without rendering Ink or
+ * touching the network/filesystem.
+ */
+export interface InitScaffoldDependencies {
+    /** Verifies the current CLI session, refreshing persisted auth when valid. */
+    verifyAndRefresh: typeof verifyAndRefresh;
+    /** Launches the browser login flow when no valid CLI session exists. */
+    login: typeof login;
+    /** Reads the persisted CLI session token after authentication. */
+    getCliToken: () => string | null;
+    /** Creates an authenticated ops API client. */
+    createApiClient: typeof createApiClient;
+    /** Resolves the ops API base URL used by the API client. */
+    getOpsApiUrl: typeof getOpsApiUrl;
+    /** Downloads and copies the selected starter template. */
+    scaffoldProject: typeof scaffoldProject;
+    /** Initializes git in the scaffolded project directory. */
+    initGit: typeof initGit;
+    /** Copies `.env.example` to `.env` when present. */
+    copyEnvExample: typeof copyEnvExample;
+    /** Writes the issued license key into the scaffolded project. */
+    writeLicenseKey: typeof writeLicenseKey;
+    /** Checks whether a prerequisite command is available on PATH. */
+    commandExists: typeof commandExists;
+    /** Resolves the final project directory for the supplied project name. */
+    resolveProjectDir: (projectName: string) => string;
+}
+/**
+ * Builds the final onboarding copy from template metadata and scaffold results.
+ *
+ * @param templateDefinition - Selected template metadata.
+ * @param projectName - Directory name chosen by the user.
+ * @param result - Filesystem and prerequisite outcomes from scaffolding.
+ * @returns Lines rendered as post-init next steps.
+ */
+export declare function buildInitNextSteps(templateDefinition: InitTemplateDefinition, projectName: string, result: InitScaffoldResult): string[];
+/**
+ * Runs the `copilotkit init` scaffold steps for the resolved template.
+ *
+ * The template metadata decides whether auth and license issuance are required,
+ * allowing non-license templates to scaffold without touching auth at all.
+ *
+ * @param options - Fully resolved init options.
+ * @param dependencies - Injectable dependencies for IO and auth operations.
+ * @param onPhaseChange - Optional callback used by the Ink UI to update progress.
+ */
+export declare function scaffoldInitProject(options: InitOptions, dependencies?: InitScaffoldDependencies, onPhaseChange?: (phase: Exclude<ScaffoldPhase, 'success' | 'error'>) => void, onTerminalSessionInvalidation?: () => void): Promise<InitScaffoldResult>;
+/**
+ * Entry point for the `copilotkit init` command.
+ *
+ * Parses and validates flags, then renders the interactive Ink UI that
+ * guides the user through prompts and scaffolding.
+ *
+ * @param flags - Raw flags passed from the CLI argument parser.
+ */
+export declare function runInit(flags: InitFlags): Promise<void>;
+export {};
+//# sourceMappingURL=init.d.ts.map

package/src/commands/init.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"init.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/init.tsx"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAEV,WAAW,EACX,sBAAsB,EACvB,MAAM,aAAa,CAAC;AAOrB,OAAO,EAEL,KAAK,EAEL,gBAAgB,EACjB,MAAM,6BAA6B,CAAC;AACrC,OAAO,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAC5D,OAAO,EACL,eAAe,EAIf,cAAc,EACf,MAAM,iCAAiC,CAAC;AAWzC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAE5C;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,6DAA6D;IAC7D,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,kDAAkD;IAClD,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,4DAA4D;IAC5D,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,2EAA2E;AAC3E,KAAK,aAAa,GACd,MAAM,GACN,UAAU,GACV,SAAS,GACT,KAAK,GACL,SAAS,GACT,OAAO,CAAC;AAQZ,yDAAyD;AACzD,iBAAS,eAAe,CAAC,UAAU,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI,CAErE;AAED,6EAA6E;AAC7E,iBAAe,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAKxD;AAED;;;;;;;GAOG;AACH,wBAAgB,aAAa,CAC3B,OAAO,EAAE,MAAM,EACf,WAAW,GAAE,MAAM,CAAC,UAAwB,EAC5C,QAAQ,GAAE,MAAM,CAAC,QAA2B,GAC3C,OAAO,CA0BT;AAED,mEAAmE;AACnE,MAAM,WAAW,kBAAkB;IACjC,kDAAkD;IAClD,UAAU,EAAE,MAAM,CAAC;IACnB,sDAAsD;IACtD,qBAAqB,EAAE,OAAO,CAAC;IAC/B,qDAAqD;IACrD,cAAc,EAAE,OAAO,CAAC;IACxB,+CAA+C;IAC/C,oBAAoB,EAAE,MAAM,EAAE,CAAC;CAChC;AAED;;;;;GAKG;AACH,MAAM,WAAW,wBAAwB;IACvC,8EAA8E;IAC9E,gBAAgB,EAAE,OAAO,gBAAgB,CAAC;IAC1C,wEAAwE;IACxE,KAAK,EAAE,OAAO,KAAK,CAAC;IACpB,kEAAkE;IAClE,WAAW,EAAE,MAAM,MAAM,GAAG,IAAI,CAAC;IACjC,+CAA+C;IAC/C,eAAe,EAAE,OAAO,eAAe,CAAC;IACxC,4DAA4D;IAC5D,YAAY,EAAE,OAAO,YAAY,CAAC;IAClC,0DAA0D;IAC1D,eAAe,EAAE,OAAO,eAAe,CAAC;IACxC,2DAA2D;IAC3D,OAAO,EAAE,OAAO,OAAO,CAAC;IACxB,oDAAoD;IACpD,cAAc,EAAE,OAAO,cAAc,CAAC;IACtC,iEAAiE;IACjE,eAAe,EAAE,OAAO,eAAe,CAAC;IACxC,kEAAkE;IAClE,aAAa,EAAE,OAAO,aAAa,CAAC;IACpC,0EAA0E;IAC1E,iBAAiB,EAAE,CAAC,WAAW,EAAE,MAAM,KAAK,MAAM,CAAC;CACpD;AAiBD;;;;;;;GAOG;AACH,wBAAgB,kBAAkB,CAChC,kBAAkB,EAAE,sBAAsB,EAC1C,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE,kBAAkB,GACzB,MAAM,EAAE,CA6DV;AA0FD;;;;;;;;;GASG;AACH,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,WAAW,EACpB,YAAY,GAAE,wBAA0D,EACxE,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,OAAO,CAAC,aAAa,EAAE,SAAS,GAAG,OAAO,CAAC,KAAK,IAAI,EAC5E,6BAA6B,CAAC,EAAE,MAAM,IAAI,GACzC,OAAO,CAAC,kBAAkB,CAAC,CAsD7B;AAmOD;;;;;;;GAOG;AACH,wBAAsB,OAAO,CAAC,KAAK,EAAE,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,CAoB7D"}

package/src/commands/kite.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Runs the hidden Ink-based kite game command.
+ *
+ * @returns A promise that resolves after the game exits.
+ * @throws When Ink fails while running the game.
+ */
+export declare function runKite(): Promise<void>;
+//# sourceMappingURL=kite.d.ts.map

package/src/commands/kite.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"kite.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/kite.tsx"],"names":[],"mappings":"AAGA;;;;;GAKG;AACH,wBAAsB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAS7C"}

package/src/commands/license.d.ts

@@ -0,0 +1,17 @@
+import type { CliLicenseScope } from "../types.js";
+/**
+ * Parsed `copilotkit license` command variants.
+ */
+export type LicenseCommand = {
+    action: "create";
+} | {
+    action: "list";
+    scope: CliLicenseScope;
+};
+/**
+ * Entry point for the `copilotkit license` command.
+ *
+ * @param command - Resolved license command variant.
+ */
+export declare function runLicense(command: LicenseCommand): Promise<void>;
+//# sourceMappingURL=license.d.ts.map

package/src/commands/license.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"license.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/license.tsx"],"names":[],"mappings":"AAiBA,OAAO,KAAK,EAEV,eAAe,EAChB,MAAM,aAAa,CAAC;AAIrB;;GAEG;AACH,MAAM,MAAM,cAAc,GACtB;IAAE,MAAM,EAAE,QAAQ,CAAA;CAAE,GACpB;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,eAAe,CAAA;CAAE,CAAC;AAuT/C;;;;GAIG;AACH,wBAAsB,UAAU,CAAC,OAAO,EAAE,cAAc,GAAG,OAAO,CAAC,IAAI,CAAC,CAmBvE"}

package/src/commands/login.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Runs the ink-based login command.
+ *
+ * Renders {@link LoginFlow} inside an ink instance and returns a promise that
+ * resolves when the user authenticates successfully or rejects when the login
+ * attempt fails. A short delay before unmounting ensures all output is flushed
+ * to the terminal before the process continues.
+ *
+ * @returns A promise that resolves on successful login.
+ * @throws When the browser-based login flow fails.
+ */
+export declare function runLogin(): Promise<void>;
+//# sourceMappingURL=login.d.ts.map

package/src/commands/login.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"login.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/login.tsx"],"names":[],"mappings":"AAIA;;;;;;;;;;GAUG;AACH,wBAAsB,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC,CAmB9C"}

package/src/commands/logs.d.ts

@@ -0,0 +1,32 @@
+/** Supported `copilotkit logs` actions. */
+export interface LogsFlags {
+    lines?: number;
+    path?: boolean;
+    tail?: boolean;
+}
+/** Normalized `copilotkit logs` action after validating flag combinations. */
+type NormalizedLogsAction = {
+    type: 'path';
+} | {
+    lines: number;
+    type: 'tail';
+};
+/**
+ * Validates raw `copilotkit logs` flags and resolves the intended action.
+ *
+ * @param flags - Parsed command flags.
+ * @returns Normalized action to run.
+ */
+export declare function normalizeLogsFlags(flags: LogsFlags): NormalizedLogsAction;
+/**
+ * Runs the CLI logs command.
+ *
+ * `--path` prints the resolved log file path.
+ * `--tail` prints the most recent log lines.
+ * With no flags, this defaults to `--path`.
+ *
+ * @param flags - Parsed command flags.
+ */
+export declare function runLogs(flags: LogsFlags): Promise<void>;
+export {};
+//# sourceMappingURL=logs.d.ts.map

package/src/commands/logs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logs.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/logs.ts"],"names":[],"mappings":"AAEA,2CAA2C;AAC3C,MAAM,WAAW,SAAS;IACxB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED,8EAA8E;AAC9E,KAAK,oBAAoB,GACrB;IAAE,IAAI,EAAE,MAAM,CAAA;CAAE,GAChB;IAAE,KAAK,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAE,CAAC;AAEpC;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,SAAS,GAAG,oBAAoB,CAiBzE;AAED;;;;;;;;GAQG;AACH,wBAAsB,OAAO,CAAC,KAAK,EAAE,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,CAe7D"}

package/src/commands/version.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Prints the CLI's build identity: semantic version, GitHub Actions run id,
+ * and the commit sha the binary was built from.
+ *
+ * `buildNumber` and `commitSha` are `"dev"` for local (non-CI) builds.
+ */
+export declare function runVersion(): void;
+//# sourceMappingURL=version.d.ts.map

package/src/commands/version.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"version.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/commands/version.ts"],"names":[],"mappings":"AAEA;;;;;GAKG;AACH,wBAAgB,UAAU,IAAI,IAAI,CAKjC"}

package/src/config.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Build-time configuration injected via esbuild `define`.
+ *
+ * These values are replaced at build time with the corresponding
+ * environment variables. If not set during build, the build fails.
+ *
+ * {@link OPS_API_URL} can be overridden at runtime via the hidden
+ * `--ops-api-url` flag, which calls {@link setOpsApiUrl}.
+ */
+/** Base URL for the CopilotKit operations API. */
+export declare function getOpsApiUrl(): string;
+/** Override the ops API URL at runtime. */
+export declare function setOpsApiUrl(url: string): void;
+/** Base URL for the CopilotKit operations frontend (serves CLI auth page). */
+export declare function getOpsFrontendUrl(): string;
+/** Override the ops frontend URL at runtime. */
+export declare function setOpsFrontendUrl(url: string): void;
+/**
+ * Build identity for this CLI binary.
+ *
+ * - `version` — semantic version from `apps/cli/package.json`.
+ * - `buildNumber` — GitHub Actions run id of the build, or `"dev"` for local builds.
+ *   Maps back to a workflow run at github.com/<repo>/actions/runs/<buildNumber>.
+ * - `commitSha` — git commit the binary was built from, or `"dev"` for local builds.
+ */
+export declare function getBuildInfo(): {
+    version: string;
+    buildNumber: string;
+    commitSha: string;
+};
+//# sourceMappingURL=config.d.ts.map

package/src/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../../../apps/cli/src/config.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAaH,kDAAkD;AAClD,wBAAgB,YAAY,IAAI,MAAM,CAErC;AAED,2CAA2C;AAC3C,wBAAgB,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI,CAE9C;AAED,8EAA8E;AAC9E,wBAAgB,iBAAiB,IAAI,MAAM,CAE1C;AAED,gDAAgD;AAChD,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI,CAEnD;AAED;;;;;;;GAOG;AACH,wBAAgB,YAAY,IAAI;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;CACnB,CAMA"}

package/src/index.d.ts

@@ -0,0 +1,21 @@
+#!/usr/bin/env node
+/**
+ * Returns help text for a CLI argv list when it requests help.
+ */
+export declare function getHelpTextForArgs(argv: readonly string[]): string | null;
+/**
+ * Main CLI entrypoint.
+ */
+export declare function main(rawArgv?: string[]): Promise<void>;
+/**
+ * Detects whether this module is the process entrypoint.
+ *
+ * Package managers often execute bin shims through symlinks, so both sides are
+ * compared after resolving their real filesystem paths.
+ *
+ * @param entrypoint - The process entrypoint path, usually `process.argv[1]`.
+ * @param moduleUrl - The current module URL.
+ * @returns `true` when the entrypoint resolves to the current module.
+ */
+export declare function isDirectInvocation(entrypoint: string | undefined, moduleUrl: string): boolean;
+//# sourceMappingURL=index.d.ts.map

package/src/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../apps/cli/src/index.ts"],"names":[],"mappings":";AAoOA;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,SAAS,MAAM,EAAE,GAAG,MAAM,GAAG,IAAI,CAIzE;AAgPD;;GAEG;AACH,wBAAsB,IAAI,CAAC,OAAO,WAAwB,GAAG,OAAO,CAAC,IAAI,CAAC,CAiEzE;AAkBD;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAChC,UAAU,EAAE,MAAM,GAAG,SAAS,EAC9B,SAAS,EAAE,MAAM,GAChB,OAAO,CAMT"}

package/src/services/api-client.d.ts

@@ -0,0 +1,106 @@
+import type { AuthPayload, CliLicenseRecord, CliLicenseScope } from "../types.js";
+/**
+ * Error raised when ops-api returns a structured non-OK response.
+ */
+export declare class ApiClientError extends Error {
+    /** HTTP status returned by the API. */
+    readonly status: number;
+    /** Stable API error code when present. */
+    readonly code?: string;
+    /**
+     * @param status - HTTP status from the failed response.
+     * @param message - User-facing error message.
+     * @param code - Optional stable API error code.
+     */
+    constructor(status: number, message: string, code?: string);
+}
+/**
+ * Shape of the response from the session verification endpoint.
+ */
+export interface VerifySessionResponse {
+    /** The authenticated user record returned by ops-api. */
+    user: {
+        id: string;
+        email: string;
+        name: string | null;
+    };
+    /** The organization the user authenticated under. */
+    organization: {
+        clerkOrgId: string;
+        organizationName?: string;
+    };
+}
+/**
+ * HTTP client for the CopilotKit ops-api CLI endpoints.
+ *
+ * Encapsulates auth, session verification, logout, and license management
+ * requests against the configured `baseUrl`.
+ */
+export interface ApiClient {
+    /**
+     * Exchanges a Clerk short-lived token for a CLI session token.
+     *
+     * POSTs to `/api/cli/auth/session` without an auth header since this is
+     * a pre-login exchange. Throws if the response is not OK.
+     *
+     * @param clerkToken - The Clerk token returned from the browser OAuth flow.
+     * @returns The parsed {@link AuthPayload} containing the CLI session token.
+     */
+    exchangeClerkToken(clerkToken: string): Promise<AuthPayload>;
+    /**
+     * Verifies the current CLI session token against ops-api.
+     *
+     * GETs `/api/cli/auth/verify` with a Bearer authorization header.
+     * Throws with the server-provided auth guidance on non-OK responses.
+     *
+     * @returns The session user/org data.
+     */
+    verifySession(): Promise<VerifySessionResponse>;
+    /**
+     * Terminates the current CLI session on the server.
+     *
+     * POSTs to `/api/cli/auth/logout` with a Bearer authorization header.
+     */
+    logout(): Promise<void>;
+    /**
+     * Lists licenses for the authenticated organization or current user.
+     *
+     * GETs `/api/cli/license?scope=...` with a Bearer authorization header.
+     * Throws if the response is not OK.
+     *
+     * @param scope - Whether to list organization-wide or user-only licenses.
+     * @returns The parsed list of license metadata.
+     */
+    listLicenses(scope: CliLicenseScope): Promise<CliLicenseRecord[]>;
+    /**
+     * Issues a new license key for the current authenticated organization.
+     *
+     * POSTs to `/api/cli/license` with a Bearer authorization header. Throws if
+     * the response is not OK.
+     *
+     * @returns An object containing the newly issued `licenseKey`.
+     */
+    issueLicense(): Promise<{
+        licenseKey: string;
+    }>;
+    /**
+     * Registers the user's interest in threads access (mailing list signup).
+     *
+     * POSTs to `/api/cli/threads-interest`. The user is already authenticated,
+     * so this just records their opt-in on the server side.
+     */
+    requestThreadsAccess(): Promise<void>;
+}
+/**
+ * Creates an HTTP client bound to the given base URL and optional bearer token.
+ *
+ * Methods that require authentication use the supplied `token` as a Bearer
+ * credential. The `exchangeClerkToken` method intentionally omits the auth
+ * header because it is used before a session exists.
+ *
+ * @param baseUrl - The root URL of the ops-api instance (no trailing slash).
+ * @param token - Optional CLI session token for authenticated requests.
+ * @returns An {@link ApiClient} instance.
+ */
+export declare function createApiClient(baseUrl: string, token?: string): ApiClient;
+//# sourceMappingURL=api-client.d.ts.map

package/src/services/api-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-client.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/services/api-client.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,WAAW,EACX,gBAAgB,EAChB,eAAe,EAChB,MAAM,aAAa,CAAC;AAErB;;GAEG;AACH,qBAAa,cAAe,SAAQ,KAAK;IACvC,uCAAuC;IACvC,SAAgB,MAAM,EAAE,MAAM,CAAC;IAC/B,0CAA0C;IAC1C,SAAgB,IAAI,CAAC,EAAE,MAAM,CAAC;IAE9B;;;;OAIG;gBACS,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM;CAM3D;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,yDAAyD;IACzD,IAAI,EAAE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;KAAE,CAAC;IACzD,qDAAqD;IACrD,YAAY,EAAE;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;CACjE;AAmBD;;;;;GAKG;AACH,MAAM,WAAW,SAAS;IACxB;;;;;;;;OAQG;IACH,kBAAkB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;IAE7D;;;;;;;OAOG;IACH,aAAa,IAAI,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAEhD;;;;OAIG;IACH,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAExB;;;;;;;;OAQG;IACH,YAAY,CAAC,KAAK,EAAE,eAAe,GAAG,OAAO,CAAC,gBAAgB,EAAE,CAAC,CAAC;IAElE;;;;;;;OAOG;IACH,YAAY,IAAI,OAAO,CAAC;QAAE,UAAU,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAEhD;;;;;OAKG;IACH,oBAAoB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CACvC;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,SAAS,CA8E1E"}

package/src/services/auth.service.d.ts

@@ -0,0 +1,107 @@
+import * as http from "http";
+import { ApiClientError } from "./api-client.js";
+import type { VerifySessionResponse } from "./api-client.js";
+/**
+ * Result of a successful callback from the browser-based login flow.
+ */
+export interface CallbackResult {
+    /** Short-lived Clerk token returned from the frontend callback. */
+    clerkToken: string;
+}
+/**
+ * Starts a temporary HTTP server on a random port bound to 127.0.0.1 that
+ * handles the CLI auth callback from the browser.
+ *
+ * The browser redirects (GET) to `/callback?clerkToken=…&state=…` after
+ * sign-in. The server validates `state`, resolves the result promise with
+ * the received `clerkToken`, and responds with a small HTML page telling
+ * the user they can close the tab. A full-page navigation is used rather
+ * than `fetch` so the flow works in Safari 15+ and Chrome 130+, which
+ * block HTTPS → private-network `fetch` requests.
+ *
+ * @param expectedState - The CSRF state token to validate against the callback
+ *   payload.
+ * @returns A promise that resolves once the server is listening, providing the
+ *   bound `port`, a `resultPromise` that resolves/rejects based on the callback
+ *   payload, and the raw `server` handle for cleanup.
+ */
+export declare function startCallbackServer(expectedState: string): Promise<{
+    port: number;
+    resultPromise: Promise<CallbackResult>;
+    server: http.Server;
+}>;
+/**
+ * Launches the browser-based login flow, waits for the callback, exchanges
+ * the Clerk token for a CLI session token, persists the credentials, and
+ * returns the authenticated user and organization.
+ *
+ * Steps:
+ * 1. Generate a random CSRF state token.
+ * 2. Start a local callback server.
+ * 3. Open the browser to the ops-frontend CLI auth page.
+ * 4. Wait for the callback with the Clerk token.
+ * 5. Exchange the Clerk token for a CLI session via ops-api.
+ * 6. Persist credentials to the auth store.
+ *
+ * @returns The authenticated user and organization from the ops-api response.
+ */
+export declare function login(): Promise<{
+    user: {
+        id: string;
+        email: string;
+        name: string | null;
+    };
+    organization: {
+        clerkOrgId: string;
+        organizationName?: string;
+    };
+}>;
+export interface VerifyAndRefreshOptions {
+    /** When true, preserve the specific auth/session error instead of returning null. */
+    throwOnInvalid?: boolean;
+}
+/**
+ * User-facing guidance shown when a stored CLI session is no longer usable
+ * after the Clerk cutover and the user must authenticate again.
+ */
+export declare const TERMINAL_SESSION_INVALID_MESSAGE = "Existing CLI sessions are invalid after the Clerk cutover. Please log in again.";
+/**
+ * Checks whether an API error means the current stored CLI auth is no longer
+ * recoverable and must be cleared before the user logs in again.
+ *
+ * Treats all CLI session retirement errors, plus Clerk active-organization
+ * resolution failures, as terminal invalidation signals.
+ *
+ * @param error - Error raised by the API client.
+ * @returns `true` when local auth should be cleared and the user reauthenticated.
+ */
+export declare function isTerminalSessionInvalidationError(error: unknown): error is ApiClientError;
+/**
+ * Clears the local auth store when the error represents a terminal CLI auth
+ * invalidation that requires a fresh login.
+ *
+ * @param error - Error raised by the API client.
+ * @returns `true` when local auth was cleared.
+ */
+export declare function clearAuthOnTerminalSessionInvalidation(error: unknown): boolean;
+/**
+ * Verifies the stored CLI session token against ops-api and refreshes the
+ * locally persisted credentials if still valid.
+ *
+ * Returns `null` and clears the local auth store only when the server confirms
+ * the session is invalid. Missing local auth also returns `null`. Transport or
+ * server failures are rethrown so the caller can preserve the local session.
+ *
+ * @param options - Controls how invalid sessions are surfaced to the caller.
+ * @returns The fresh session user/org data, or `null` if unauthenticated.
+ */
+export declare function verifyAndRefresh(options?: VerifyAndRefreshOptions): Promise<VerifySessionResponse | null>;
+/**
+ * Terminates the current CLI session on ops-api (best-effort) and clears all
+ * locally stored credentials.
+ *
+ * Any network error from the server-side logout is swallowed; the local
+ * credentials are always cleared.
+ */
+export declare function logout(): Promise<void>;
+//# sourceMappingURL=auth.service.d.ts.map

package/src/services/auth.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.service.d.ts","sourceRoot":"","sources":["../../../../../apps/cli/src/services/auth.service.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B,OAAO,EAAE,cAAc,EAAmB,MAAM,iBAAiB,CAAC;AASlE,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAI7D;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,mEAAmE;IACnE,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAgB,mBAAmB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC;IAClE,IAAI,EAAE,MAAM,CAAC;IACb,aAAa,EAAE,OAAO,CAAC,cAAc,CAAC,CAAC;IACvC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC;CACrB,CAAC,CA8ID;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,KAAK,IAAI,OAAO,CAAC;IACrC,IAAI,EAAE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;KAAE,CAAC;IACzD,YAAY,EAAE;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;CACjE,CAAC,CA2GD;AAED,MAAM,WAAW,uBAAuB;IACtC,qFAAqF;IACrF,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED;;;GAGG;AACH,eAAO,MAAM,gCAAgC,oFACsC,CAAC;AAEpF;;;;;;;;;GASG;AACH,wBAAgB,kCAAkC,CAChD,KAAK,EAAE,OAAO,GACb,KAAK,IAAI,cAAc,CAOzB;AAED;;;;;;GAMG;AACH,wBAAgB,sCAAsC,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAO9E;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,gBAAgB,CACpC,OAAO,GAAE,uBAA4B,GACpC,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CA2BvC;AAED;;;;;;GAMG;AACH,wBAAsB,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC,CAa5C"}