devvami 1.4.1 → 1.5.0

package/src/services/security.js

@@ -1,8 +1,8 @@
-import { homedir } from 'node:os'
-import { join } from 'node:path'
-import { readFile, appendFile } from 'node:fs/promises'
-import { existsSync } from 'node:fs'
-import { which, exec, execOrThrow } from './shell.js'
+import {homedir} from 'node:os'
+import {join} from 'node:path'
+import {readFile, appendFile} from 'node:fs/promises'
+import {existsSync} from 'node:fs'
+import {which, exec, execOrThrow} from './shell.js'
 
 /** @import { Platform, PlatformInfo, SecurityTool, SecurityToolStatus, SetupStep, StepResult, GpgKey } from '../types.js' */
 
@@ -74,14 +74,20 @@ export async function checkToolStatus(platform) {
 
   for (const tool of TOOL_DEFINITIONS) {
     if (!tool.platforms.includes(platform)) {
-      results.push({ id: tool.id, displayName: tool.displayName, status: 'n/a', version: null, hint: null })
+      results.push({id: tool.id, displayName: tool.displayName, status: 'n/a', version: null, hint: null})
       continue
     }
 
     if (tool.id === 'aws-vault') {
       const path = await which('aws-vault')
       if (!path) {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'not-installed', version: null, hint: 'Install aws-vault' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'not-installed',
+          version: null,
+          hint: 'Install aws-vault',
+        })
         continue
       }
       const versionResult = await exec('aws-vault', ['--version'])
@@ -90,30 +96,60 @@ export async function checkToolStatus(platform) {
       if (platform !== 'macos') {
         const backend = process.env.AWS_VAULT_BACKEND
         if (backend !== 'pass') {
-          results.push({ id: tool.id, displayName: tool.displayName, status: 'misconfigured', version: version || null, hint: 'Add export AWS_VAULT_BACKEND=pass to your shell profile' })
+          results.push({
+            id: tool.id,
+            displayName: tool.displayName,
+            status: 'misconfigured',
+            version: version || null,
+            hint: 'Add export AWS_VAULT_BACKEND=pass to your shell profile',
+          })
           continue
         }
       }
-      results.push({ id: tool.id, displayName: tool.displayName, status: 'installed', version: version || null, hint: null })
+      results.push({
+        id: tool.id,
+        displayName: tool.displayName,
+        status: 'installed',
+        version: version || null,
+        hint: null,
+      })
       continue
     }
 
     if (tool.id === 'gpg') {
       const path = await which('gpg')
       if (!path) {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'not-installed', version: null, hint: 'Install gnupg via your package manager' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'not-installed',
+          version: null,
+          hint: 'Install gnupg via your package manager',
+        })
         continue
       }
       const versionResult = await exec('gpg', ['--version'])
       const match = versionResult.stdout.match(/gpg \(GnuPG\)\s+([\d.]+)/)
-      results.push({ id: tool.id, displayName: tool.displayName, status: 'installed', version: match ? match[1] : null, hint: null })
+      results.push({
+        id: tool.id,
+        displayName: tool.displayName,
+        status: 'installed',
+        version: match ? match[1] : null,
+        hint: null,
+      })
       continue
     }
 
     if (tool.id === 'pass') {
       const path = await which('pass')
       if (!path) {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'not-installed', version: null, hint: 'Install pass via your package manager' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'not-installed',
+          version: null,
+          hint: 'Install pass via your package manager',
+        })
         continue
       }
       const versionResult = await exec('pass', ['--version'])
@@ -121,19 +157,37 @@ export async function checkToolStatus(platform) {
       // Check if pass is initialized
       const lsResult = await exec('pass', ['ls'])
       if (lsResult.exitCode !== 0) {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'misconfigured', version: match ? match[1] : null, hint: 'Initialize pass with: pass init <gpg-key-id>' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'misconfigured',
+          version: match ? match[1] : null,
+          hint: 'Initialize pass with: pass init <gpg-key-id>',
+        })
         continue
       }
-      results.push({ id: tool.id, displayName: tool.displayName, status: 'installed', version: match ? match[1] : null, hint: null })
+      results.push({
+        id: tool.id,
+        displayName: tool.displayName,
+        status: 'installed',
+        version: match ? match[1] : null,
+        hint: null,
+      })
       continue
     }
 
     if (tool.id === 'osxkeychain') {
       const result = await exec('git', ['config', '--global', 'credential.helper'])
       if (result.stdout === 'osxkeychain') {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'installed', version: null, hint: null })
+        results.push({id: tool.id, displayName: tool.displayName, status: 'installed', version: null, hint: null})
       } else {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'not-installed', version: null, hint: 'Run: git config --global credential.helper osxkeychain' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'not-installed',
+          version: null,
+          hint: 'Run: git config --global credential.helper osxkeychain',
+        })
       }
       continue
     }
@@ -141,17 +195,29 @@ export async function checkToolStatus(platform) {
     if (tool.id === 'gcm') {
       const path = await which('git-credential-manager')
       if (!path) {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'not-installed', version: null, hint: 'Install Git Credential Manager' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'not-installed',
+          version: null,
+          hint: 'Install Git Credential Manager',
+        })
         continue
       }
       const versionResult = await exec('git-credential-manager', ['--version'])
       const version = versionResult.stdout.trim() || null
       const storeResult = await exec('git', ['config', '--global', 'credential.credentialStore'])
       if (storeResult.stdout !== 'gpg') {
-        results.push({ id: tool.id, displayName: tool.displayName, status: 'misconfigured', version, hint: 'Run: git config --global credential.credentialStore gpg' })
+        results.push({
+          id: tool.id,
+          displayName: tool.displayName,
+          status: 'misconfigured',
+          version,
+          hint: 'Run: git config --global credential.credentialStore gpg',
+        })
         continue
       }
-      results.push({ id: tool.id, displayName: tool.displayName, status: 'installed', version, hint: null })
+      results.push({id: tool.id, displayName: tool.displayName, status: 'installed', version, hint: null})
       continue
     }
   }
@@ -267,7 +333,7 @@ export function deriveOverallStatus(tools) {
  * @returns {SetupStep[]}
  */
 export function buildSteps(platformInfo, selection, context = {}) {
-  const { platform } = platformInfo
+  const {platform} = platformInfo
   const includeAws = selection === 'aws' || selection === 'both'
   const includeGit = selection === 'git' || selection === 'both'
 
@@ -291,7 +357,7 @@ export function buildSteps(platformInfo, selection, context = {}) {
               hintUrl: 'https://brew.sh',
             }
           }
-          return { status: 'success', message: 'Homebrew is available' }
+          return {status: 'success', message: 'Homebrew is available'}
         },
       })
 
@@ -303,10 +369,10 @@ export function buildSteps(platformInfo, selection, context = {}) {
         requiresConfirmation: true,
         run: async () => {
           const existing = await which('aws-vault')
-          if (existing) return { status: 'skipped', message: 'aws-vault already installed' }
+          if (existing) return {status: 'skipped', message: 'aws-vault already installed'}
           try {
             await execOrThrow('brew', ['install', 'aws-vault'])
-            return { status: 'success', message: 'aws-vault installed via Homebrew' }
+            return {status: 'success', message: 'aws-vault installed via Homebrew'}
           } catch {
             return {
               status: 'failed',
@@ -326,10 +392,10 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           const result = await exec('aws-vault', ['--version'])
           if (result.exitCode !== 0) {
-            return { status: 'failed', hint: 'aws-vault not found in PATH after install' }
+            return {status: 'failed', hint: 'aws-vault not found in PATH after install'}
           }
           const version = (result.stdout || result.stderr).trim()
-          return { status: 'success', message: `aws-vault ${version}` }
+          return {status: 'success', message: `aws-vault ${version}`}
         },
       })
     }
@@ -344,9 +410,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           try {
             await execOrThrow('git', ['config', '--global', 'credential.helper', 'osxkeychain'])
-            return { status: 'success', message: 'Git credential helper set to osxkeychain' }
+            return {status: 'success', message: 'Git credential helper set to osxkeychain'}
           } catch {
-            return { status: 'failed', hint: 'Run manually: git config --global credential.helper osxkeychain' }
+            return {status: 'failed', hint: 'Run manually: git config --global credential.helper osxkeychain'}
           }
         },
       })
@@ -360,9 +426,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           const result = await exec('git', ['config', '--global', 'credential.helper'])
           if (result.stdout !== 'osxkeychain') {
-            return { status: 'failed', hint: 'credential.helper is not set to osxkeychain' }
+            return {status: 'failed', hint: 'credential.helper is not set to osxkeychain'}
           }
-          return { status: 'success', message: 'osxkeychain is configured' }
+          return {status: 'success', message: 'osxkeychain is configured'}
         },
       })
     }
@@ -378,11 +444,11 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           const path = await which('gpg')
           if (!path) {
-            return { status: 'failed', hint: 'GPG not found — will be installed in the next step' }
+            return {status: 'failed', hint: 'GPG not found — will be installed in the next step'}
           }
           const result = await exec('gpg', ['--version'])
           const match = result.stdout.match(/gpg \(GnuPG\)\s+([\d.]+)/)
-          return { status: 'success', message: `GPG ${match ? match[1] : 'found'}` }
+          return {status: 'success', message: `GPG ${match ? match[1] : 'found'}`}
         },
       })
 
@@ -395,12 +461,12 @@ export function buildSteps(platformInfo, selection, context = {}) {
         skippable: true,
         run: async () => {
           const path = await which('gpg')
-          if (path) return { status: 'skipped', message: 'GPG already installed' }
+          if (path) return {status: 'skipped', message: 'GPG already installed'}
           try {
             await execOrThrow('sudo', ['apt-get', 'install', '-y', 'gnupg'])
-            return { status: 'success', message: 'GPG installed' }
+            return {status: 'success', message: 'GPG installed'}
           } catch {
-            return { status: 'failed', hint: 'Run manually: sudo apt-get install -y gnupg' }
+            return {status: 'failed', hint: 'Run manually: sudo apt-get install -y gnupg'}
           }
         },
       })
@@ -414,7 +480,7 @@ export function buildSteps(platformInfo, selection, context = {}) {
         gpgInteractive: true,
         run: async () => {
           const gpgId = context.gpgId
-          if (gpgId) return { status: 'skipped', message: `Using existing GPG key ${gpgId}` }
+          if (gpgId) return {status: 'skipped', message: `Using existing GPG key ${gpgId}`}
           // When gpgInteractive=true, the command layer stops the spinner and spawns
           // gpg --full-generate-key with stdio:inherit so the user sets a strong passphrase.
           // We never generate a key with an empty passphrase — that would leave the private
@@ -436,12 +502,12 @@ export function buildSteps(platformInfo, selection, context = {}) {
         requiresConfirmation: true,
         run: async () => {
           const path = await which('pass')
-          if (path) return { status: 'skipped', message: 'pass already installed' }
+          if (path) return {status: 'skipped', message: 'pass already installed'}
           try {
             await execOrThrow('sudo', ['apt-get', 'install', '-y', 'pass'])
-            return { status: 'success', message: 'pass installed' }
+            return {status: 'success', message: 'pass installed'}
           } catch {
-            return { status: 'failed', hint: 'Run manually: sudo apt-get install -y pass' }
+            return {status: 'failed', hint: 'Run manually: sudo apt-get install -y pass'}
           }
         },
       })
@@ -456,17 +522,17 @@ export function buildSteps(platformInfo, selection, context = {}) {
           // Skip if pass is already initialized
           const lsResult = await exec('pass', ['ls'])
           if (lsResult.exitCode === 0) {
-            return { status: 'skipped', message: 'pass store already initialized' }
+            return {status: 'skipped', message: 'pass store already initialized'}
           }
           const gpgId = context.gpgId
           if (!gpgId) {
-            return { status: 'failed', hint: 'No GPG key ID available — complete the create-gpg-key step first' }
+            return {status: 'failed', hint: 'No GPG key ID available — complete the create-gpg-key step first'}
           }
           try {
             await execOrThrow('pass', ['init', gpgId])
-            return { status: 'success', message: `pass initialized with key ${gpgId}` }
+            return {status: 'success', message: `pass initialized with key ${gpgId}`}
           } catch {
-            return { status: 'failed', hint: `Run manually: pass init ${gpgId}` }
+            return {status: 'failed', hint: `Run manually: pass init ${gpgId}`}
           }
         },
       })
@@ -479,12 +545,16 @@ export function buildSteps(platformInfo, selection, context = {}) {
         requiresConfirmation: true,
         run: async () => {
           const existing = await which('aws-vault')
-          if (existing) return { status: 'skipped', message: 'aws-vault already installed' }
+          if (existing) return {status: 'skipped', message: 'aws-vault already installed'}
           const arch = process.arch === 'arm64' ? 'arm64' : 'amd64'
           const url = `https://github.com/99designs/aws-vault/releases/latest/download/aws-vault-linux-${arch}`
           try {
-            await execOrThrow('sudo', ['sh', '-c', `curl -sSL '${url}' -o /usr/local/bin/aws-vault && chmod +x /usr/local/bin/aws-vault`])
-            return { status: 'success', message: 'aws-vault installed to /usr/local/bin/aws-vault' }
+            await execOrThrow('sudo', [
+              'sh',
+              '-c',
+              `curl -sSL '${url}' -o /usr/local/bin/aws-vault && chmod +x /usr/local/bin/aws-vault`,
+            ])
+            return {status: 'success', message: 'aws-vault installed to /usr/local/bin/aws-vault'}
           } catch {
             return {
               status: 'failed',
@@ -505,9 +575,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
           try {
             await appendToShellProfile('export AWS_VAULT_BACKEND=pass')
             await appendToShellProfile('export GPG_TTY=$(tty)')
-            return { status: 'success', message: 'AWS_VAULT_BACKEND=pass and GPG_TTY added to shell profile' }
+            return {status: 'success', message: 'AWS_VAULT_BACKEND=pass and GPG_TTY added to shell profile'}
           } catch {
-            return { status: 'failed', hint: 'Add manually to ~/.bashrc or ~/.zshrc: export AWS_VAULT_BACKEND=pass' }
+            return {status: 'failed', hint: 'Add manually to ~/.bashrc or ~/.zshrc: export AWS_VAULT_BACKEND=pass'}
           }
         },
       })
@@ -521,10 +591,10 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           const result = await exec('aws-vault', ['--version'])
           if (result.exitCode !== 0) {
-            return { status: 'failed', hint: 'aws-vault not found in PATH after install' }
+            return {status: 'failed', hint: 'aws-vault not found in PATH after install'}
           }
           const version = (result.stdout || result.stderr).trim()
-          return { status: 'success', message: `aws-vault ${version}` }
+          return {status: 'success', message: `aws-vault ${version}`}
         },
       })
     }
@@ -541,9 +611,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
           run: async () => {
             const bridgePath = '/mnt/c/Program Files/Git/mingw64/bin/git-credential-manager.exe'
             if (existsSync(bridgePath)) {
-              return { status: 'success', message: 'Windows GCM bridge found — using Windows Credential Manager' }
+              return {status: 'success', message: 'Windows GCM bridge found — using Windows Credential Manager'}
             }
-            return { status: 'skipped', message: 'Windows GCM not found — will install native Linux GCM' }
+            return {status: 'skipped', message: 'Windows GCM not found — will install native Linux GCM'}
           },
         })
       }
@@ -556,21 +626,25 @@ export function buildSteps(platformInfo, selection, context = {}) {
         requiresConfirmation: true,
         run: async () => {
           const existing = await which('git-credential-manager')
-          if (existing) return { status: 'skipped', message: 'Git Credential Manager already installed' }
+          if (existing) return {status: 'skipped', message: 'Git Credential Manager already installed'}
           try {
-            const latestResult = await exec('sh', ['-c', "curl -sSL https://api.github.com/repos/git-ecosystem/git-credential-manager/releases/latest | grep 'browser_download_url.*gcm.*linux.*amd64.*deb' | head -1 | cut -d '\"' -f 4"])
+            const latestResult = await exec('sh', [
+              '-c',
+              "curl -sSL https://api.github.com/repos/git-ecosystem/git-credential-manager/releases/latest | grep 'browser_download_url.*gcm.*linux.*amd64.*deb' | head -1 | cut -d '\"' -f 4",
+            ])
             const debUrl = latestResult.stdout.trim()
             if (!debUrl) throw new Error('Could not find GCM deb package URL')
             // Security: validate debUrl is a legitimate GitHub release asset URL before using it
             // This prevents command injection if the GitHub API response were tampered with (MITM / supply-chain)
-            const SAFE_DEB_URL = /^https:\/\/github\.com\/git-ecosystem\/git-credential-manager\/releases\/download\/[a-zA-Z0-9._\-/]+\.deb$/
+            const SAFE_DEB_URL =
+              /^https:\/\/github\.com\/git-ecosystem\/git-credential-manager\/releases\/download\/[a-zA-Z0-9._\-/]+\.deb$/
             if (!SAFE_DEB_URL.test(debUrl)) {
               throw new Error(`Unexpected GCM package URL format: "${debUrl}"`)
             }
             // Use array args — no shell interpolation of the URL
             await execOrThrow('curl', ['-sSL', debUrl, '-o', '/tmp/gcm.deb'])
             await execOrThrow('sudo', ['dpkg', '-i', '/tmp/gcm.deb'])
-            return { status: 'success', message: 'Git Credential Manager installed' }
+            return {status: 'success', message: 'Git Credential Manager installed'}
           } catch {
             return {
               status: 'failed',
@@ -590,9 +664,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           try {
             await execOrThrow('git-credential-manager', ['configure'])
-            return { status: 'success', message: 'Git Credential Manager configured' }
+            return {status: 'success', message: 'Git Credential Manager configured'}
           } catch {
-            return { status: 'failed', hint: 'Run manually: git-credential-manager configure' }
+            return {status: 'failed', hint: 'Run manually: git-credential-manager configure'}
           }
         },
       })
@@ -606,9 +680,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           try {
             await execOrThrow('git', ['config', '--global', 'credential.credentialStore', 'gpg'])
-            return { status: 'success', message: 'GCM credential store set to gpg' }
+            return {status: 'success', message: 'GCM credential store set to gpg'}
           } catch {
-            return { status: 'failed', hint: 'Run manually: git config --global credential.credentialStore gpg' }
+            return {status: 'failed', hint: 'Run manually: git config --global credential.credentialStore gpg'}
           }
         },
       })
@@ -622,9 +696,9 @@ export function buildSteps(platformInfo, selection, context = {}) {
         run: async () => {
           const result = await exec('git-credential-manager', ['--version'])
           if (result.exitCode !== 0) {
-            return { status: 'failed', hint: 'git-credential-manager not found in PATH' }
+            return {status: 'failed', hint: 'git-credential-manager not found in PATH'}
           }
-          return { status: 'success', message: `GCM ${result.stdout.trim()}` }
+          return {status: 'success', message: `GCM ${result.stdout.trim()}`}
         },
       })
     }

package/src/services/shell.js

@@ -1,4 +1,4 @@
-import { execa } from 'execa'
+import {execa} from 'execa'
 
 /** @import { ExecResult } from '../types.js' */
 
@@ -10,7 +10,7 @@ import { execa } from 'execa'
  * @returns {Promise<ExecResult>}
  */
 export async function exec(command, args = [], opts = {}) {
-  const result = await execa(command, args, { reject: false, ...opts })
+  const result = await execa(command, args, {reject: false, ...opts})
   return {
     stdout: result.stdout?.trim() ?? '',
     stderr: result.stderr?.trim() ?? '',
@@ -24,7 +24,7 @@ export async function exec(command, args = [], opts = {}) {
  * @returns {Promise<string|null>} Resolved path or null if not found
  */
 export async function which(binary) {
-  const result = await execa('which', [binary], { reject: false })
+  const result = await execa('which', [binary], {reject: false})
   if (result.exitCode !== 0 || !result.stdout) return null
   return result.stdout.trim()
 }
@@ -37,6 +37,6 @@ export async function which(binary) {
  * @returns {Promise<string>}
  */
 export async function execOrThrow(command, args = [], opts = {}) {
-  const result = await execa(command, args, { reject: true, ...opts })
+  const result = await execa(command, args, {reject: true, ...opts})
   return result.stdout?.trim() ?? ''
 }

package/src/services/skills-sh.js

@@ -1,4 +1,4 @@
-import { DvmiError } from '../utils/errors.js'
+import {DvmiError} from '../utils/errors.js'
 
 /** @import { Skill } from '../types.js' */
 
@@ -37,17 +37,11 @@ export async function searchSkills(query, limit = 50) {
   try {
     res = await fetch(url.toString())
   } catch {
-    throw new DvmiError(
-      'Unable to reach skills.sh API',
-      'Check your internet connection and try again',
-    )
+    throw new DvmiError('Unable to reach skills.sh API', 'Check your internet connection and try again')
   }
 
   if (!res.ok) {
-    throw new DvmiError(
-      `skills.sh API returned ${res.status}`,
-      'Try again later or visit https://skills.sh',
-    )
+    throw new DvmiError(`skills.sh API returned ${res.status}`, 'Try again later or visit https://skills.sh')
   }
 
   /** @type {unknown} */

package/src/services/speckit.js

@@ -1,6 +1,6 @@
-import { execa } from 'execa'
-import { which, exec } from './shell.js'
-import { DvmiError } from '../utils/errors.js'
+import {execa} from 'execa'
+import {which, exec} from './shell.js'
+import {DvmiError} from '../utils/errors.js'
 
 /** GitHub spec-kit package source for uv.
  * TODO: pin to a specific tagged release (e.g. #v1.x.x) once one is available upstream.
@@ -68,9 +68,6 @@ export async function runSpecifyInit(cwd, opts = {}) {
   })
 
   if (result.exitCode !== 0) {
-    throw new DvmiError(
-      '`specify init` exited with a non-zero code',
-      'Check the output above for details',
-    )
+    throw new DvmiError('`specify init` exited with a non-zero code', 'Check the output above for details')
   }
 }

package/src/services/version-check.js

@@ -1,8 +1,8 @@
-import { readFile } from 'node:fs/promises'
-import { join } from 'node:path'
-import { fileURLToPath } from 'node:url'
-import { loadConfig, saveConfig } from './config.js'
-import { exec } from './shell.js'
+import {readFile} from 'node:fs/promises'
+import {join} from 'node:path'
+import {fileURLToPath} from 'node:url'
+import {loadConfig, saveConfig} from './config.js'
+import {exec} from './shell.js'
 
 const PKG_PATH = join(fileURLToPath(import.meta.url), '..', '..', '..', 'package.json')
 const REPO = 'devvami/devvami'
@@ -22,7 +22,7 @@ export async function getCurrentVersion() {
  * @param {{ force?: boolean }} [opts]
  * @returns {Promise<string|null>}
  */
-export async function getLatestVersion({ force = false } = {}) {
+export async function getLatestVersion({force = false} = {}) {
   const config = await loadConfig()
   const now = Date.now()
   const lastCheck = config.lastVersionCheck ? new Date(config.lastVersionCheck).getTime() : 0
@@ -38,7 +38,7 @@ export async function getLatestVersion({ force = false } = {}) {
     // Il tag è nel formato "v1.0.0" — rimuove il prefisso "v"
     const latest = result.stdout.trim().replace(/^v/, '') || null
     if (latest) {
-      await saveConfig({ ...config, latestVersion: latest, lastVersionCheck: new Date().toISOString() })
+      await saveConfig({...config, latestVersion: latest, lastVersionCheck: new Date().toISOString()})
     }
     return latest
   } catch {
@@ -51,8 +51,8 @@ export async function getLatestVersion({ force = false } = {}) {
  * @param {{ force?: boolean }} [opts]
  * @returns {Promise<{ hasUpdate: boolean, current: string, latest: string|null }>}
  */
-export async function checkForUpdate({ force = false } = {}) {
-  const [current, latest] = await Promise.all([getCurrentVersion(), getLatestVersion({ force })])
+export async function checkForUpdate({force = false} = {}) {
+  const [current, latest] = await Promise.all([getCurrentVersion(), getLatestVersion({force})])
   const hasUpdate = Boolean(latest && latest !== current)
-  return { hasUpdate, current, latest }
+  return {hasUpdate, current, latest}
 }

package/src/types.js

@@ -332,6 +332,91 @@
  * @typedef {'macos'|'wsl2'|'linux'} Platform
  */
 
+// ──────────────────────────────────────────────────────────────────────────────
+// AI Config Sync TUI types
+// ──────────────────────────────────────────────────────────────────────────────
+
+/**
+ * @typedef {'mcp'|'command'|'skill'|'agent'} CategoryType
+ */
+
+/**
+ * @typedef {'vscode-copilot'|'claude-code'|'opencode'|'gemini-cli'|'copilot-cli'} EnvironmentId
+ */
+
+/**
+ * @typedef {Object} MCPParams
+ * @property {'stdio'|'sse'|'streamable-http'} transport - MCP transport type
+ * @property {string} [command] - Command to execute (required for stdio transport)
+ * @property {string[]} [args] - Command arguments
+ * @property {Record<string, string>} [env] - Environment variables
+ * @property {string} [url] - Server URL (required for sse/streamable-http transport)
+ */
+
+/**
+ * @typedef {Object} CommandParams
+ * @property {string} content - Prompt/command text content (multi-line)
+ * @property {string} [description] - Short description of the command
+ */
+
+/**
+ * @typedef {Object} SkillParams
+ * @property {string} content - Skill definition content (multi-line)
+ * @property {string} [description] - Short description of the skill
+ */
+
+/**
+ * @typedef {Object} AgentParams
+ * @property {string} instructions - Agent instructions (multi-line)
+ * @property {string} [description] - Short description of the agent
+ */
+
+/**
+ * @typedef {Object} CategoryEntry
+ * @property {string} id - UUID v4, auto-generated
+ * @property {string} name - Unique within its type; used as filename/key when deploying
+ * @property {CategoryType} type - Category type
+ * @property {boolean} active - true = deployed to environments, false = removed but kept in store
+ * @property {EnvironmentId[]} environments - Target environments for deployment
+ * @property {MCPParams|CommandParams|SkillParams|AgentParams} params - Type-specific parameters
+ * @property {string} createdAt - ISO 8601 timestamp
+ * @property {string} updatedAt - ISO 8601 timestamp
+ */
+
+/**
+ * @typedef {Object} AIConfigStore
+ * @property {number} version - Schema version
+ * @property {CategoryEntry[]} entries - All managed configuration entries
+ */
+
+/**
+ * @typedef {Object} PathStatus
+ * @property {string} path - Absolute path
+ * @property {boolean} exists - Whether the path exists on disk
+ * @property {boolean} readable - Whether the file could be parsed (for JSON/TOML files)
+ */
+
+/**
+ * @typedef {Object} CategoryCounts
+ * @property {number} mcp
+ * @property {number} command
+ * @property {number} skill
+ * @property {number} agent
+ */
+
+/**
+ * @typedef {Object} DetectedEnvironment
+ * @property {EnvironmentId} id - Environment identifier
+ * @property {string} name - Display name (e.g. "Claude Code")
+ * @property {boolean} detected - Whether any config files were found
+ * @property {PathStatus[]} projectPaths - Project-level paths and their existence status
+ * @property {PathStatus[]} globalPaths - Global-level paths and their existence status
+ * @property {string[]} unreadable - Paths that exist but failed to parse
+ * @property {CategoryType[]} supportedCategories - Category types this environment supports
+ * @property {CategoryCounts} counts - Per-category item counts from dvmi-managed entries
+ * @property {'project'|'global'|'both'} scope - Where detection occurred
+ */
+
 /**
  * @typedef {Object} PlatformInfo
  * @property {Platform} platform