echopai 2.3.0 → 2.5.0

package/dist/tools/raw.js

@@ -1,96 +0,0 @@
-/**
- * `echopai raw call <method> <path> [--data '{...}'] [--query k=v ...]`
- *
- * Raw HTTP passthrough — 给未 codegen 的端点 / debug / 应急用。
- * 跳过 Ajv pre-flight 校验、跳过 envelope 解析；行为 = curl + Bearer 注入 + base URL。
- *
- * 自动注入 X-Client / X-Client-Channel / X-Request-Id (与 spec-driven 调用同源)，
- * 这样 server 端 audit 能识别这是 CLI 流量。
- *
- * `echopai api call ...` 保留为 deprecated alias 一个 release (tools/api.ts)；
- * 下一个 major 移除。
- */
-import { Command } from "commander";
-import { fetch as undiciFetch } from "undici";
-import { resolveCredentials, AuthMissingError } from "../runtime/auth.js";
-import { buildHttpHeaders } from "../runtime/http.js";
-import { CLI_VERSION } from "../version.js";
-export function buildRawCallCommand() {
-    const call = new Command("call")
-        .description("Raw HTTP passthrough (arbitrary <method> <path>; debug / non-codegen endpoints)")
-        .argument("<method>", "HTTP method (GET|POST|PUT|PATCH|DELETE|HEAD)")
-        .argument("<path>", "URL path (relative; base URL injected from credential)")
-        .option("-d, --data <json>", "POST/PUT/PATCH body (JSON string)")
-        .option("-q, --query <kv...>", "Query string entries: k=v")
-        .option("--header <kv...>", "Extra headers: K=V");
-    call.action(async (method, urlPath, opts) => {
-        const m = method.toUpperCase();
-        if (!["GET", "POST", "PUT", "PATCH", "DELETE", "HEAD"].includes(m)) {
-            return die("invalid_args", `Unknown HTTP method: ${method}`, 1);
-        }
-        let creds;
-        try {
-            creds = resolveCredentials({});
-        }
-        catch (e) {
-            if (e instanceof AuthMissingError) {
-                return die("auth_missing", e.message, 1, e.recovery_hint);
-            }
-            throw e;
-        }
-        let url = creds.baseUrl + (urlPath.startsWith("/") ? urlPath : "/" + urlPath);
-        if (opts.query?.length) {
-            const qs = opts.query
-                .map((kv) => {
-                const idx = kv.indexOf("=");
-                if (idx === -1)
-                    return null;
-                return `${encodeURIComponent(kv.slice(0, idx))}=${encodeURIComponent(kv.slice(idx + 1))}`;
-            })
-                .filter((s) => s !== null)
-                .join("&");
-            if (qs)
-                url += (url.includes("?") ? "&" : "?") + qs;
-        }
-        // Use centralized header builder (Phase 1.1) — automatically injects
-        // X-Client / X-Client-Channel / X-Request-Id. Raw passthrough should
-        // still be tagged as CLI traffic in server audit.
-        const { headers } = buildHttpHeaders({
-            bearer: creds.key,
-            cliVersion: CLI_VERSION,
-        });
-        if (opts.header) {
-            for (const kv of opts.header) {
-                const idx = kv.indexOf("=");
-                if (idx === -1)
-                    continue;
-                headers.set(kv.slice(0, idx), kv.slice(idx + 1));
-            }
-        }
-        const init = { method: m, headers };
-        if (opts.data) {
-            if (!headers.has("content-type")) {
-                headers.set("content-type", "application/json");
-            }
-            init.body = opts.data;
-        }
-        const res = await undiciFetch(url, init);
-        const body = await res.text();
-        process.stdout.write(body + (body.endsWith("\n") ? "" : "\n"));
-        process.exit(res.status >= 400 && res.status < 500
-            ? 1
-            : res.status >= 500
-                ? 2
-                : 0);
-    });
-    return call;
-}
-function die(code, message, exitCode, recovery_hint) {
-    const env = {
-        error: { code, message, retryable: false },
-    };
-    if (recovery_hint)
-        env.error.recovery_hint = recovery_hint;
-    process.stderr.write(JSON.stringify(env) + "\n");
-    process.exit(exitCode);
-}

package/dist/tools/schema.js

@@ -1,58 +0,0 @@
-/**
- * `echopai schema [list | get <key> | export]`
- *
- * AI agent ingestion 路径：`echopai schema export | ai-tool` 一次拿全部命令的
- * input JSON Schema + path + method + 示例。
- */
-import { Command } from "commander";
-import { OPERATIONS, listOperations } from "../_generated/operations.js";
-import { HELP } from "../_generated/help.js";
-export function buildSchemaCommand() {
-    const cmd = new Command("schema").description("Inspect / export the CLI command surface");
-    cmd
-        .command("list")
-        .description("Print one line per command: cliKey, method, path, summary")
-        .action(() => {
-        for (const op of listOperations()) {
-            process.stdout.write(JSON.stringify({
-                cliKey: op.cliKey,
-                method: op.method,
-                path: op.path,
-                summary: op.summary,
-            }) + "\n");
-        }
-        process.exit(0);
-    });
-    cmd
-        .command("get <cliKey>")
-        .description("Print full operation def + help (input schema + example)")
-        .action((cliKey) => {
-        const op = OPERATIONS[cliKey];
-        if (!op) {
-            process.stderr.write(JSON.stringify({
-                error: {
-                    code: "schema_not_found",
-                    message: `No command with cliKey '${cliKey}'.`,
-                    recovery_hint: "Run `echopai schema list` for available keys.",
-                },
-            }) + "\n");
-            process.exit(1);
-        }
-        const help = HELP[cliKey] ?? null;
-        const out = { ...op, ...(help ? { example: help.example } : {}) };
-        process.stdout.write(JSON.stringify(out, null, 2) + "\n");
-        process.exit(0);
-    });
-    cmd
-        .command("export")
-        .description("NDJSON dump of full surface (one operation per line) — for AI agents")
-        .action(() => {
-        for (const op of listOperations()) {
-            const help = HELP[op.cliKey];
-            const merged = { ...op, ...(help ? { example: help.example } : {}) };
-            process.stdout.write(JSON.stringify(merged) + "\n");
-        }
-        process.exit(0);
-    });
-    return cmd;
-}

package/dist/tools/trace.js

@@ -1,54 +0,0 @@
-/**
- * `echopai trace [tail | get <request_id>]`
- *
- * 本地调用追溯 ring buffer (~/.echopai/trace.ndjson)。每次 CLI 调用结束都会
- * 写一条 NDJSON。用途：
- *   - 看最近 N 次调用 (tail)
- *   - 用 request_id 反查具体一次 (get)
- *
- * `ECHOPAI_NO_TRACE=1` 关闭写入；`ECHOPAI_TRACE_FILE=/path` 改路径（测试用）。
- */
-import { Command, Option } from "commander";
-import { getTraceByRequestId, resolveTraceFile, tailTraces, } from "../runtime/trace.js";
-export function buildTraceCommand() {
-    const cmd = new Command("trace").description("Inspect local CLI invocation trace (~/.echopai/trace.ndjson)");
-    cmd
-        .command("tail")
-        .description("Print last N trace records (NDJSON)")
-        .addOption(new Option("--lines <n>", "Number of records").default("20"))
-        .action((opts) => {
-        const n = Math.max(1, Math.floor(Number(opts.lines) || 20));
-        const records = tailTraces(n);
-        for (const r of records) {
-            process.stdout.write(JSON.stringify(r) + "\n");
-        }
-        process.exit(0);
-    });
-    cmd
-        .command("get <request_id>")
-        .description("Find a single trace record by request_id")
-        .action((requestId) => {
-        const r = getTraceByRequestId(requestId);
-        if (!r) {
-            process.stderr.write(JSON.stringify({
-                error: {
-                    code: "not_found",
-                    message: `No trace record with request_id '${requestId}'.`,
-                    retryable: false,
-                    recovery_hint: "Trace ring buffer holds ~50MB. Older records rotate to `trace.ndjson.1` and beyond that are lost.",
-                },
-            }) + "\n");
-            process.exit(1);
-        }
-        process.stdout.write(JSON.stringify(r, null, 2) + "\n");
-        process.exit(0);
-    });
-    cmd
-        .command("path")
-        .description("Print the resolved trace file path")
-        .action(() => {
-        process.stdout.write(resolveTraceFile() + "\n");
-        process.exit(0);
-    });
-    return cmd;
-}

package/dist/tools/upgrade.js

@@ -1,103 +0,0 @@
-/**
- * `echopai upgrade` — explicit "check for + show upgrade command" entry.
- *
- * Three flavors:
- *   - `echopai upgrade`               → 用 cache（无网络）+ 打印 envelope
- *                                       (current / latest / command)
- *   - `echopai upgrade --check`       → 强制走 npm registry，刷新 cache
- *   - `echopai upgrade --check --exec` → 刷新 cache 后真跑 `npm i -g echopai@latest`
- *                                       （透传 stdio；非 0 退出码传递）
- *
- * AI-first envelope on stdout（带 meta.checked_at），错误走 stderr JSON。
- * 永远不会 exec npm 除非显式 --exec。
- */
-import { spawnSync } from "node:child_process";
-import { Command, Option } from "commander";
-import { fetch } from "undici";
-import { CLI_VERSION, } from "../version.js";
-import { isNewer, readCachedUpdate, writeCachedUpdate, } from "../runtime/update_check.js";
-const REGISTRY_URL = "https://registry.npmjs.org/echopai/latest";
-const FETCH_TIMEOUT_MS = 5_000;
-async function fetchLatest() {
-    const ac = new AbortController();
-    const timer = setTimeout(() => ac.abort(), FETCH_TIMEOUT_MS);
-    try {
-        const res = await fetch(REGISTRY_URL, {
-            headers: { Accept: "application/json" },
-            signal: ac.signal,
-        });
-        if (!res.ok)
-            return null;
-        const body = (await res.json());
-        return typeof body?.version === "string" ? body.version : null;
-    }
-    catch {
-        return null;
-    }
-    finally {
-        clearTimeout(timer);
-    }
-}
-function emitJson(data, meta = {}) {
-    process.stdout.write(JSON.stringify({ data, meta }) + "\n");
-}
-function emitErr(code, message, exit = 2) {
-    process.stderr.write(JSON.stringify({ error: { code, message } }) + "\n");
-    process.exit(exit);
-}
-export function buildUpgradeCommand() {
-    const cmd = new Command("upgrade").description("Check for + show install command for the latest echopai release (no auto-exec unless --exec).");
-    cmd.addOption(new Option("--check", "Force fresh registry fetch (skip 24h cache)"));
-    cmd.addOption(new Option("--exec", "Actually run `npm i -g echopai@latest` (default: print command only)"));
-    cmd.action(async (opts) => {
-        let info = opts.check ? null : readCachedUpdate();
-        if (!info || opts.check) {
-            const latest = await fetchLatest();
-            if (!latest) {
-                emitErr("network_error", "Failed to reach npm registry (timeout or non-200). Try again later.");
-            }
-            info = {
-                checked_at: new Date().toISOString(),
-                current: CLI_VERSION,
-                latest,
-            };
-            writeCachedUpdate(info);
-        }
-        const newer = isNewer(info.latest, CLI_VERSION);
-        const installCmd = "npm i -g echopai@latest";
-        if (!newer) {
-            emitJson({
-                current: CLI_VERSION,
-                latest: info.latest,
-                status: "up_to_date",
-                message: `Already on the latest version (v${CLI_VERSION}).`,
-            }, { checked_at: info.checked_at, source: opts.check ? "registry" : "cache" });
-            process.exit(0);
-        }
-        // Newer available
-        if (opts.exec) {
-            // Run npm i -g with inherited stdio so user sees real-time progress.
-            // Don't shell-out — use direct args to avoid quoting issues.
-            const r = spawnSync("npm", ["i", "-g", `echopai@${info.latest}`], { stdio: "inherit" });
-            if (r.status === 0) {
-                emitJson({
-                    current: CLI_VERSION,
-                    latest: info.latest,
-                    status: "upgraded",
-                    message: `Upgraded to v${info.latest}. Re-run any command to load the new version.`,
-                }, { checked_at: info.checked_at, exec: true });
-                process.exit(0);
-            }
-            emitErr("exec_failed", `npm i -g failed with exit ${r.status ?? "unknown"}. Run manually: ${installCmd}`);
-        }
-        emitJson({
-            current: CLI_VERSION,
-            latest: info.latest,
-            status: "update_available",
-            command: installCmd,
-            message: `v${info.latest} is available. Run: ${installCmd}  (or pass --exec to run it now)`,
-        }, { checked_at: info.checked_at, source: opts.check ? "registry" : "cache" });
-        process.exit(0);
-    });
-    return cmd;
-}

package/dist/tools/welcome.js

@@ -1,225 +0,0 @@
-/**
- * `echopai` (bare) / `echopai welcome` — onboarding screen.
- *
- * Goal: give a TTY user a Claude-Code-style landing page when they type
- * `echopai` with no args. Banner → auth status → grouped command examples
- * → pointers to deeper help. AI / CI / non-TTY callers fall back to
- * commander's plain help (handled by the bin.ts dispatcher).
- *
- * No network calls. We probe credentials locally (env / config file) only —
- * a live `whoami` would slow the screen and is the wrong default for the
- * "user just typed `echopai`" path. `echopai status` / `echopai whoami`
- * cover the live-check use case.
- */
-import { Command } from "commander";
-import { resolveCredentials, AuthMissingError } from "../runtime/auth.js";
-import { bold, cyan, dim, green, isTtyHuman, yellow } from "../runtime/tty.js";
-import { maybeEmitUpdateBanner } from "../runtime/update_check.js";
-import { CLI_VERSION } from "../version.js";
-function maskKey(key) {
-    // eps_live_<lookup>_<secret> → keep prefix + first 4 of lookup + masked tail.
-    if (key.length <= 16)
-        return "***";
-    return key.slice(0, 13) + "***";
-}
-function snapshotAuth() {
-    try {
-        const creds = resolveCredentials({});
-        if (creds.profile) {
-            return {
-                state: "profile",
-                profile: creds.profile,
-                keyHint: maskKey(creds.key),
-                baseUrl: creds.baseUrl,
-            };
-        }
-        return { state: "env", keyHint: maskKey(creds.key), baseUrl: creds.baseUrl };
-    }
-    catch (e) {
-        if (e instanceof AuthMissingError)
-            return { state: "missing" };
-        throw e;
-    }
-}
-/** Right-pad a string to width `w`, ignoring ANSI escapes for length. */
-function padRight(s, w) {
-    // strip ANSI for length measurement
-    // eslint-disable-next-line no-control-regex
-    const visible = s.replace(/\x1b\[[0-9;]*m/g, "");
-    const pad = Math.max(0, w - visible.length);
-    return s + " ".repeat(pad);
-}
-const COMMAND_GROUPS = [
-    {
-        title: "🔍 快速检索",
-        items: [
-            { cmd: "echopai lookup --text 贵州茅台", note: "中文名 / 拼音首字母 → canonical_code" },
-            { cmd: "echopai digest --code SSE:600519", note: "一键研究摘要（5 桶 fan-out，容忍部分失败）" },
-            { cmd: "echopai search --query \"AI 算力\"", note: "题材 / 概念语义搜索" },
-        ],
-    },
-    {
-        title: "📈 实时行情",
-        items: [
-            { cmd: "echopai quote --codes \"SSE:600519,SZSE:000001\"", note: "1-200 只实时报价" },
-            { cmd: "echopai market status", note: "A 股会话状态（pre-open/open/lunch/closed）+ 节假日" },
-            { cmd: "echopai market movers --sort pct --top 20", note: "/market 涨幅榜 top 20（pct/pct_asc/speed/amount/turnover/total_mv）" },
-            { cmd: "echopai market movers --sort speed --top 30", note: "3 分钟涨速榜（短线脉冲）" },
-            { cmd: "echopai market movers --sort amount --exchange SSE", note: "上证成交额榜" },
-            { cmd: "echopai sentiment", note: "市场情绪总览（实时；涨跌停 / 宽度 / 分化）" },
-            { cmd: "echopai sentiment overview --date 2026-05-20", note: "任意历史日的情绪聚合（最后一分钟）" },
-            { cmd: "echopai sentiment breadth --date 2026-05-20", note: "全天 ~241 分钟时序（任意日）" },
-            { cmd: "echopai sentiment turnover --date 2026-05-20 --days 5", note: "成交额时序 + 5 日同分钟同比" },
-            { cmd: "echopai hot", note: "机构推荐热股榜" },
-            { cmd: "echopai scan", note: "全市场快照（约 5800 只）" },
-        ],
-    },
-    {
-        title: "🚀 涨停板",
-        items: [
-            { cmd: "echopai limit-up summary", note: "涨停数 / 炸板数 / 跌停数 / 连板梯队" },
-            { cmd: "echopai limit-up pool", note: "当日涨停股逐股明细（连板 / 封单 / 一字板）" },
-            { cmd: "echopai limit-up history --days 30", note: "近 N 日涨停 / 最高连板趋势" },
-        ],
-    },
-    {
-        title: "🧩 概念板块",
-        items: [
-            { cmd: "echopai concepts list --sort pct", note: "概念涨幅榜（pct/amount/limit_up/stock_count/speed）" },
-            { cmd: "echopai concepts list --sort speed", note: "概念 3 分钟涨速榜（客户端排序 speed_3min）" },
-            { cmd: "echopai concepts alerts", note: "当前激活概念异动（big_move / limit_up_cluster）" },
-            { cmd: "echopai concepts show <concept_id>", note: "单概念 meta + 成份股 + 最新行情" },
-            { cmd: "echopai concepts daily-bars <concept_id> --from ... --to ...", note: "概念指数 K 线（链式等权 base 1000）" },
-            { cmd: "echopai concepts news <concept_id>", note: "概念关联新闻（ILIKE）" },
-            { cmd: "echopai concepts views <concept_id>", note: "概念关联券商观点（主源研究）" },
-        ],
-    },
-    {
-        title: "💰 财务数据",
-        items: [
-            { cmd: "echopai financials quote-snapshot --code SSE:600519", note: "估值快照 14 字段（PE/PB/PS/换手率/股息率/量比）★头牌★" },
-            { cmd: "echopai financials pit --code SSE:600519 --date 2024-11-01", note: "Point-in-time 财务指标（回测防穿越）" },
-            { cmd: "echopai financials reports --code SSE:600519 --kind annual", note: "最近 N 期财务报告（~25 字段/期）" },
-            { cmd: "echopai financials series --code SSE:600519 --metric roe_simple", note: "单指标历史时间序列" },
-        ],
-    },
-    {
-        title: "📰 市场观点/研究/资讯",
-        items: [
-            { cmd: "echopai views --code SSE:600519", note: "★主源★ 卖方研报 / 分析师观点" },
-            { cmd: "echopai news search --query AI --since-hours 24", note: "辅源新闻 / 简讯（短时窗）" },
-            { cmd: "echopai announcements feed --type annual_report", note: "全市场公告 feed（cninfo，按 published_at desc）" },
-            { cmd: "echopai announcements stock --code SSE:600519 --since-days 30", note: "单股公告历史窗口（最长 5 年）" },
-            { cmd: "echopai announcements detail <uuid>", note: "单条公告完整正文 + meta" },
-        ],
-    },
-    {
-        title: "📊 K 线",
-        items: [
-            { cmd: "echopai chart --code SSE:600519 --from 2026-01-01 --to 2026-05-01", note: "单只 K 线（日线 / 分钟线）" },
-            { cmd: "echopai bars-batch --codes A,B,C --from ... --to ...", note: "批量 K 线（≤100 只）" },
-        ],
-    },
-    {
-        title: "🤖 AI 集成",
-        items: [
-            { cmd: "echopai mcp serve", note: "启动 MCP stdio 服务（Claude Desktop / Cursor / Claude Code）" },
-            { cmd: "echopai schema export", note: "导出全部 operation schema 给 agent 喂养" },
-        ],
-    },
-];
-const POINTERS = [
-    { cmd: "echopai --help", note: "完整命令树" },
-    { cmd: "echopai <verb> --help", note: "查看单个命令的参数和示例" },
-    { cmd: "echopai whoami", note: "在线检查 token 能力 / scopes" },
-    { cmd: "echopai doctor", note: "诊断鉴权 / 网络连通性" },
-    { cmd: "echopai status", note: "查看本地 profile + 鉴权状态" },
-    { cmd: "echopai upgrade [--exec]", note: "检查新版（24h cache），--exec 直接 npm i -g 升级" },
-];
-const BANNER_PLAIN = [
-    "  ███████  ██████ ██   ██  ██████  ██████   █████  ██",
-    "  ██      ██      ██   ██ ██    ██ ██   ██ ██   ██ ██",
-    "  █████   ██      ███████ ██    ██ ██████  ███████ ██",
-    "  ██      ██      ██   ██ ██    ██ ██      ██   ██ ██",
-    "  ███████  ██████ ██   ██  ██████  ██      ██   ██ ██",
-];
-export function renderWelcome(now = () => new Date()) {
-    const lines = [];
-    const auth = snapshotAuth();
-    // Banner
-    lines.push("");
-    for (const row of BANNER_PLAIN)
-        lines.push(cyan(row));
-    lines.push("");
-    lines.push(`  ${bold("EchoPai CLI")} ${dim("v" + CLI_VERSION)}  ${dim("·")}  ${dim("面向 AI Agent 的 A 股数据接入终端")}`);
-    lines.push("");
-    // Auth status
-    if (auth.state === "missing") {
-        lines.push(`  ${yellow("●")} ${bold("未登录")} ${dim("—")} 运行 ${cyan("`echopai login --key eps_live_<lookup>_<secret>`")} 或设置环境变量 ${cyan("ECHOPAI_KEY")}`);
-    }
-    else if (auth.state === "env") {
-        lines.push(`  ${green("●")} ${bold("已登录")}（环境变量 ${cyan("ECHOPAI_KEY")}）${dim(`(${auth.keyHint})`)}  →  ${dim(auth.baseUrl)}`);
-    }
-    else {
-        lines.push(`  ${green("●")} ${bold("已登录")} profile ${cyan(auth.profile)} ${dim(`(${auth.keyHint})`)}  →  ${dim(auth.baseUrl)}`);
-    }
-    lines.push("");
-    // Command groups
-    lines.push(`  ${dim("── 常用命令 ─────────────────────────────────────────────────")}`);
-    lines.push("");
-    // Reserve column 1 for cmd, column 2 for note. Compute padding from the
-    // widest cmd across all groups to keep alignment stable.
-    const widest = Math.min(72, COMMAND_GROUPS.flatMap((g) => g.items)
-        .map((it) => it.cmd.length)
-        .reduce((a, b) => Math.max(a, b), 0));
-    for (const group of COMMAND_GROUPS) {
-        lines.push(`  ${bold(group.title)}`);
-        for (const it of group.items) {
-            const cmd = cyan(it.cmd);
-            lines.push(`    ${padRight(cmd, widest + 4)}  ${dim(it.note)}`);
-        }
-        lines.push("");
-    }
-    // Pointers
-    lines.push(`  ${dim("── 更多 ─────────────────────────────────────────────────────")}`);
-    lines.push("");
-    for (const it of POINTERS) {
-        lines.push(`    ${padRight(cyan(it.cmd), widest + 4)}  ${dim(it.note)}`);
-    }
-    lines.push("");
-    lines.push(`  ${dim("官网: https://www.echopai.com  ·  反馈: service@echopai.com")}`);
-    lines.push("");
-    // Timestamp footer so users know this isn't a stale cache
-    const ts = now().toISOString().replace("T", " ").slice(0, 19);
-    lines.push(`  ${dim("生成于 " + ts + " UTC · Ctrl+C 退出")}`);
-    lines.push("");
-    return lines.join("\n");
-}
-/** Print welcome screen to stdout (no exit — caller decides). */
-export function printWelcome() {
-    process.stdout.write(renderWelcome());
-    // Surface available update from local cache (worker refreshes it in the
-    // background). No network call here — fast even when there's nothing to say.
-    maybeEmitUpdateBanner();
-}
-/**
- * Decide whether bare `echopai` (no args, no flags) should show the welcome
- * screen. False for AI / CI / piped output — they get commander's plain help.
- */
-export function shouldShowWelcome(argv) {
-    // node + script + (no extra args)
-    if (argv.length !== 2)
-        return false;
-    if (!isTtyHuman)
-        return false;
-    if (process.env.CI)
-        return false;
-    return true;
-}
-export function buildWelcomeCommand() {
-    return new Command("welcome")
-        .description("显示欢迎屏（banner + 常用命令 + 鉴权状态）")
-        .action(() => {
-        printWelcome();
-    });
-}

package/dist/tools/whoami.js

@@ -1,132 +0,0 @@
-/**
- * `echopai whoami`
- *
- * 调 /v1/auth/whoami 拿 token 自省 + 派生 operation 可用性：
- *   available:    token 至少有一个 op.scopesAny 中的 scope (或 scopesAny 为空)
- *   unavailable:  op.scopesAny 非空且全部 miss → missing_scopes_any 全部列出
- *
- * 输出标准 envelope；缓存 5min in-process (whoami_cache.ts)。
- *
- * 该命令是 Phase 4 MCP `tools/list` 推导逻辑的同源——MCP server 启动时调用
- * 同一个 getWhoami() 拿能力图。
- */
-import { Command, Option } from "commander";
-import { listOperations } from "../_generated/operations.js";
-import { resolveCredentials, AuthMissingError } from "../runtime/auth.js";
-import { CallApiError } from "../runtime/errors.js";
-import { isTtyHuman, renderError } from "../runtime/tty.js";
-import { clearWhoamiCache, getWhoami } from "../runtime/whoami_cache.js";
-import { CLI_VERSION } from "../version.js";
-export function deriveOperationAvailability(scopes, ops = listOperations()) {
-    const available = [];
-    const unavailable = [];
-    for (const op of ops) {
-        const required = op.scopesAny;
-        const summary = { cliKey: op.cliKey, method: op.method, path: op.path };
-        if (!required || required.length === 0) {
-            available.push(summary);
-            continue;
-        }
-        const hit = required.some((s) => scopes.has(s));
-        if (hit) {
-            available.push(summary);
-        }
-        else {
-            unavailable.push({ ...summary, missing_scopes_any: required.slice() });
-        }
-    }
-    return { available, unavailable };
-}
-export function buildWhoamiOutput(whoami, channel, ops = listOperations()) {
-    const scopeSet = new Set(whoami.scopes);
-    const { available, unavailable } = deriveOperationAvailability(scopeSet, ops);
-    const out = {
-        kind: whoami.kind,
-        scopes: whoami.scopes,
-        channel,
-        operations: { available, unavailable },
-    };
-    if (whoami.app_id)
-        out.app_id = whoami.app_id;
-    if (whoami.org_id)
-        out.org_id = whoami.org_id;
-    if (whoami.app_slug)
-        out.app_slug = whoami.app_slug;
-    if (whoami.audience)
-        out.audience = whoami.audience;
-    if (whoami.api_version)
-        out.api_version = whoami.api_version;
-    if (whoami.allowed_clients)
-        out.allowed_clients = whoami.allowed_clients;
-    if (whoami.feature_flags && Object.keys(whoami.feature_flags).length > 0) {
-        out.feature_flags = whoami.feature_flags;
-    }
-    if (whoami.rate_limit?.qps != null)
-        out.rate_limit_qps = whoami.rate_limit.qps;
-    if (whoami.rate_limit?.monthly_quota != null) {
-        out.monthly_quota = whoami.rate_limit.monthly_quota;
-    }
-    return out;
-}
-export function buildWhoamiCommand() {
-    const cmd = new Command("whoami").description("Show current token capabilities (kind / scopes / available operations)");
-    cmd.addOption(new Option("--no-cache", "Bypass 5-minute whoami cache"));
-    cmd.addOption(new Option("--key <key>", "Override credential (env / config)"));
-    cmd.addOption(new Option("--profile <name>", "Use a specific profile"));
-    cmd.action(async (opts) => {
-        let creds;
-        try {
-            creds = resolveCredentials({
-                ...(opts.key ? { key: opts.key } : {}),
-                ...(opts.profile ? { profile: opts.profile } : {}),
-            });
-        }
-        catch (e) {
-            if (e instanceof AuthMissingError) {
-                emitError("auth_missing", e.message, e.recovery_hint, 1);
-            }
-            throw e;
-        }
-        if (opts.cache === false)
-            clearWhoamiCache();
-        let whoami;
-        try {
-            whoami = await getWhoami({ baseUrl: creds.baseUrl, bearer: creds.key, cliVersion: CLI_VERSION }, { force: opts.cache === false });
-        }
-        catch (e) {
-            if (e instanceof CallApiError) {
-                emitError(e.code, e.message, e.recovery_hint, e.httpStatus && e.httpStatus < 500 ? 1 : 2, e.requestId);
-            }
-            throw e;
-        }
-        const data = buildWhoamiOutput(whoami, "cli");
-        const envelope = {
-            data,
-            meta: {
-                cli_version: CLI_VERSION,
-                ...(whoami.api_version ? { api_version: whoami.api_version } : {}),
-            },
-        };
-        process.stdout.write(JSON.stringify(envelope) + "\n");
-        process.exit(0);
-    });
-    return cmd;
-}
-function emitError(code, message, recoveryHint, exitCode, requestId) {
-    const env = {
-        error: {
-            code,
-            message,
-            retryable: false,
-            ...(recoveryHint ? { recovery_hint: recoveryHint } : {}),
-            ...(requestId ? { request_id: requestId } : {}),
-        },
-    };
-    if (isTtyHuman) {
-        process.stderr.write(renderError(env) + "\n");
-    }
-    else {
-        process.stderr.write(JSON.stringify(env) + "\n");
-    }
-    process.exit(exitCode);
-}