gh-manager-cli 1.13.2 → 1.15.0

package/CHANGELOG.md

@@ -1,3 +1,27 @@
+# [1.15.0](https://github.com/wiiiimm/gh-manager-cli/compare/v1.14.0...v1.15.0) (2025-09-02)
+
+
+### Features
+
+* implement GitHub Device Authorization Grant flow ([#13](https://github.com/wiiiimm/gh-manager-cli/issues/13)) ([d259534](https://github.com/wiiiimm/gh-manager-cli/commit/d259534a8a0e5c21270da17df4256aec6b0b216c))
+
+# [1.14.0](https://github.com/wiiiimm/gh-manager-cli/compare/v1.13.2...v1.14.0) (2025-09-02)
+
+
+### Bug Fixes
+
+* correct TextInput import from ink-text-input package ([1040eca](https://github.com/wiiiimm/gh-manager-cli/commit/1040ecac07b0976eaf916ee5593d0bc867590eda))
+* update both visibility and isPrivate fields when changing visibility ([4b96234](https://github.com/wiiiimm/gh-manager-cli/commit/4b962345a1e490b3a675575c8726e7040e0c0ed3))
+* use REST API for changing repository visibility ([0bd1475](https://github.com/wiiiimm/gh-manager-cli/commit/0bd1475f22d5802d919491ad507d4b38f158da5e))
+
+
+### Features
+
+* add enterprise support with Internal visibility and Ctrl+V visibility change ([9f457af](https://github.com/wiiiimm/gh-manager-cli/commit/9f457af4558458a23f321c14b42f0701fefecc0f))
+* add repository visibility change with Ctrl+V ([d51b5e8](https://github.com/wiiiimm/gh-manager-cli/commit/d51b5e8b28c78f6ba58056a3254fc1aa218d9838))
+* add support for Internal visibility in enterprise accounts ([781575a](https://github.com/wiiiimm/gh-manager-cli/commit/781575aee55a70f869aad7d724fd50b6bd052221))
+* respect visibility filter when changing repository visibility ([25c963c](https://github.com/wiiiimm/gh-manager-cli/commit/25c963ca89038c84e0c8711f69d71785eb3a7355))
+
 ## [1.13.2](https://github.com/wiiiimm/gh-manager-cli/compare/v1.13.1...v1.13.2) (2025-09-01)
 
 

package/README.md

@@ -1,3 +1,7 @@
+<p align="center">
+  <img src="docs/assets/logo-horizontal.png" alt="gh-manager-cli logo" width="400" />
+</p>
+
 # gh-manager-cli
 
 [![npm version](https://img.shields.io/npm/v/gh-manager-cli.svg)](https://www.npmjs.com/package/gh-manager-cli)
@@ -41,34 +45,36 @@ Interactive terminal app to browse and manage your personal GitHub repositories.
 npx gh-manager-cli
 ```
 
-On first run, you'll be prompted for a GitHub Personal Access Token.
+On first run, you'll be prompted to authenticate with GitHub (OAuth recommended).
 
 ## Features
 
 ### Core Repository Management
-- **Token Authentication**: Secure PAT storage with validation and persistence
+- **Authentication**: GitHub OAuth (recommended) or Personal Access Token with secure storage
 - **Repository Listing**: Browse all your personal repositories with metadata (stars, forks, language, etc.)
 - **Live Pagination**: Infinite scroll with automatic page prefetching
 - **Interactive Sorting**: Modal-based sort selection (updated, pushed, name, stars) with direction toggle
 - **Smart Search**: Server-side search through repository names and descriptions (3+ characters)
-- **Visibility Filtering**: Modal-based visibility filter (All, Public, Private, Internal for enterprise) with server-side filtering
+- **Visibility Filtering**: Modal-based visibility filter (All, Public, Private/Internal for enterprise) with smart filtering
 - **Fork Status Tracking**: Toggle display of commits behind upstream for forked repositories
 - **Repository Actions**:
   - View detailed info (`I`) - Shows repository metadata, language, size, and timestamps
   - Open in browser (Enter/`O`)
   - Delete repository (`Del` or `Backspace`) with secure two-step confirmation
   - Archive/unarchive repositories (`Ctrl+A`) with confirmation prompts
+  - Change repository visibility (`Ctrl+V`) - Switch between Public, Private, and Internal (enterprise only)
   - Sync forks with upstream (`Ctrl+S`) with automatic conflict detection
 
 ### User Interface & Experience
 - **Keyboard Navigation**: Full keyboard control (arrow keys, PageUp/Down, `Ctrl+G`/`G`)
 - **Display Density**: Toggle between compact/cozy/comfy spacing (`T`)
-- **Visual Indicators**: Fork status, private/archived badges, language colors, visibility status
-- **Interactive Modals**: Sort selection, visibility filtering, and organization switching via modal dialogs
+- **Visual Indicators**: Fork status, private/internal/archived badges, language colors, visibility status
+- **Enterprise Support**: Full support for GitHub Enterprise with Internal repository visibility
+- **Organization Context**: Switch between personal and organization accounts with ENT badge for enterprise orgs
+- **Interactive Modals**: Sort selection, visibility filtering, organization switching, and visibility change dialogs
 - **Balanced Layout**: Repository items with spacing above and below for better visual hierarchy
 - **Loading States**: Contextual loading screens for sorting and refreshing operations
 - **Rate Limit Monitoring**: Live API usage display with visual warnings
-- **Improved Layout**: Balanced spacing above and below repository items for better visual hierarchy
 
 ### Technical Features
 - **Preference Persistence**: UI settings (sort, density, visibility filter, fork tracking) saved between sessions
@@ -140,18 +146,41 @@ pnpm link
 gh-manager-cli
 ```
 
-## Token & Security
+## Authentication
+
+The app supports two authentication methods:
+
+### 1. GitHub OAuth (Recommended) 🎯
+
+The easiest and most secure way to authenticate:
 
-The app needs a GitHub token to read your repositories.
+- **Device Flow**: No need to handle callback URLs - just enter a code on GitHub's website
+- **Browser-based**: Opens GitHub's authorization page automatically
+- **Secure**: No client secrets or sensitive data in the app
+- **Full Permissions**: Automatically requests all necessary scopes for complete functionality
+- **User-friendly**: No manual token management required
+
+When you first run the app, select **"GitHub OAuth (Recommended)"** from the authentication options. The app will:
+1. Display a device code for you to enter on GitHub
+2. Open your browser to GitHub's device authorization page
+3. Wait for you to authorize the app
+4. Securely store the OAuth token for future use
+
+### 2. Personal Access Token (PAT)
+
+Alternative method for users who prefer manual token management:
 
 - Provide via env var: `GITHUB_TOKEN` or `GH_TOKEN`, or enter when prompted on first run.
-- Recommended: classic PAT with `repo` scope for listing both public and private repos (read is sufficient).
+- Recommended: classic PAT with `repo` scope for listing both public and private repos.
 - Validation: a minimal `viewer { login }` request verifies the token.
-- Storage: token is saved as JSON in your OS user config directory with POSIX perms `0600`.
+
+### Token Storage & Security
+
+- Storage: tokens are saved as JSON in your OS user config directory with POSIX perms `0600`.
   - macOS: `~/Library/Preferences/gh-manager-cli/config.json`
   - Linux: `~/.config/gh-manager-cli/config.json`
   - Windows: `%APPDATA%\gh-manager-cli\config.json`
-- Revocation: you can revoke the PAT at any time in your GitHub settings.
+- Revocation: you can revoke tokens at any time in your GitHub settings.
 
 Note: Tokens are stored in plaintext on disk with restricted permissions. Future work may add OS keychain support.
 
@@ -192,7 +221,7 @@ Launch the app, then use the keys below:
 - **Sort Direction**: `D` to toggle ascending/descending
 - **Display Density**: `T` to toggle compact/cozy/comfy
 - **Fork Status**: `F` to toggle showing commits behind upstream
-- **Visibility Filter**: `V` opens modal (All, Public, Private, Internal for enterprise)
+- **Visibility Filter**: `V` opens modal (All, Public, Private/Internal for enterprise)
 
 ### Navigation & Account
 - **Open in browser**: Enter or `O`
@@ -205,6 +234,7 @@ Launch the app, then use the keys below:
 - **Repository info**: `I` to view detailed metadata (size, language, timestamps)
 - **Cache info**: `K` to inspect Apollo cache status
 - **Archive/Unarchive**: `Ctrl+A` with confirmation prompt
+- **Change visibility**: `Ctrl+V` to change repository visibility (Public/Private/Internal)
 - **Delete repository**: `Del` or `Backspace` (with two-step confirmation modal)
   - Type confirmation code → confirm (Y/Enter)
   - Cancel: press `C` or Esc
@@ -329,13 +359,16 @@ REPOS_PER_FETCH=5 GH_MANAGER_DEBUG=1 npx gh-manager-cli-cli
 For the up-to-date task board, see [TODOs.md](./TODOs.md).
 
 Recently implemented:
+- ✅ OAuth login flow as an alternative to Personal Access Token
 - ✅ Density toggle for row spacing (compact/cozy/comfy)
-- ✅ Repo actions (archive/unarchive, delete) with confirmations
-- ✅ Organization support and switching (press `W`)
-- ✅ Enhanced server-side search with improved UX
+- ✅ Repo actions (archive/unarchive, delete, change visibility) with confirmations
+- ✅ Organization support and switching (press `W`) with enterprise detection
+- ✅ Enhanced server-side search with improved UX and organization context support
 - ✅ Smart infinite scroll with 80% prefetch trigger
 - ✅ Modal-based sort and visibility filtering
-- ✅ Server-side visibility filtering for accurate pagination
+- ✅ GitHub Enterprise support with Internal repository visibility
+- ✅ Change repository visibility modal (`Ctrl+V`)
+- ✅ Compact filter modals for better screen space utilization
 
 Highlights on deck:
 - Optional OS keychain storage via `keytar`

package/dist/{chunk-BOS4OCY4.js → chunk-OKP742N4.js}

@@ -139,6 +139,26 @@ async function fetchViewerOrganizations(client) {
   const res = await client(query);
   return res.viewer.organizations.nodes;
 }
+async function checkOrganizationIsEnterprise(client, orgLogin) {
+  try {
+    const query = (
+      /* GraphQL */
+      `
+      query CheckOrgEnterprise($orgLogin: String!) {
+        organization(login: $orgLogin) {
+          enterpriseOwners(first: 1) {
+            totalCount
+          }
+        }
+      }
+    `
+    );
+    const res = await client(query, { orgLogin });
+    return res.organization?.enterpriseOwners?.totalCount > 0;
+  } catch (error) {
+    return false;
+  }
+}
 async function fetchViewerReposPage(client, first, after, orderBy, includeForkTracking = true, ownerAffiliations = ["OWNER"], organizationLogin, privacy) {
   const sortField = orderBy?.field || "UPDATED_AT";
   const sortDirection = orderBy?.direction || "DESC";
@@ -453,8 +473,9 @@ async function fetchViewerReposPageUnified(token, first, after, orderBy, include
   const octo = makeClient(token);
   return fetchViewerReposPage(octo, first, after, orderBy, includeForkTracking, ownerAffiliations, organizationLogin, privacy);
 }
-async function searchRepositoriesUnified(token, viewer, text, first, after, sortKey = "UPDATED_AT", sortDir = "DESC", includeForkTracking = true, fetchPolicy = "network-only") {
-  const q = `${text} user:${viewer} in:name,description fork:true`;
+async function searchRepositoriesUnified(token, viewer, text, first, after, sortKey = "UPDATED_AT", sortDir = "DESC", includeForkTracking = true, fetchPolicy = "network-only", organizationLogin) {
+  const searchContext = organizationLogin ? `org:${organizationLogin}` : `user:${viewer}`;
+  const q = `${text} ${searchContext} in:name,description fork:true`;
   try {
     const ap = await makeApolloClient(token);
     const queryDoc = ap.gql`
@@ -565,6 +586,48 @@ async function unarchiveRepositoryById(client, repositoryId) {
   );
   await client(mutation, { repositoryId });
 }
+async function changeRepositoryVisibility(client, repositoryId, visibility, token) {
+  const query = (
+    /* GraphQL */
+    `
+    query GetRepoDetails($id: ID!) {
+      node(id: $id) {
+        ... on Repository {
+          nameWithOwner
+          owner {
+            login
+          }
+          name
+        }
+      }
+    }
+  `
+  );
+  const result = await client(query, { id: repositoryId });
+  const repo = result.node;
+  if (!repo || !repo.nameWithOwner) {
+    throw new Error("Repository not found");
+  }
+  const [owner, name] = repo.nameWithOwner.split("/");
+  const response = await fetch(`https://api.github.com/repos/${owner}/${name}`, {
+    method: "PATCH",
+    headers: {
+      "Authorization": `token ${token}`,
+      "Accept": "application/vnd.github+json",
+      "Content-Type": "application/json",
+      "User-Agent": "gh-manager-cli"
+    },
+    body: JSON.stringify({
+      visibility: visibility.toLowerCase()
+      // API expects lowercase
+    })
+  });
+  if (!response.ok) {
+    const error = await response.text();
+    throw new Error(`Failed to change visibility: ${error}`);
+  }
+  return { nameWithOwner: repo.nameWithOwner };
+}
 async function getRepositoryFromCache(token, repositoryId) {
   try {
     const ap = await makeApolloClient(token);
@@ -755,6 +818,21 @@ async function updateCacheAfterArchive(token, repositoryId, isArchived) {
   } catch {
   }
 }
+async function updateCacheAfterVisibilityChange(token, repositoryId, visibility) {
+  try {
+    const ap = await makeApolloClient(token);
+    if (!ap || !ap.client) return;
+    const isPrivate = visibility === "PRIVATE";
+    ap.client.cache.modify({
+      id: `Repository:${repositoryId}`,
+      fields: {
+        visibility: () => visibility,
+        isPrivate: () => isPrivate
+      }
+    });
+  } catch {
+  }
+}
 async function updateCacheWithRepository(token, repository) {
   try {
     const ap = await makeApolloClient(token);
@@ -860,18 +938,21 @@ export {
   makeClient,
   getViewerLogin,
   fetchViewerOrganizations,
+  checkOrganizationIsEnterprise,
   fetchViewerReposPage,
   fetchViewerReposPageUnified,
   searchRepositoriesUnified,
   deleteRepositoryRest,
   archiveRepositoryById,
   unarchiveRepositoryById,
+  changeRepositoryVisibility,
   getRepositoryFromCache,
   fetchRepositoryById,
   syncForkWithUpstream,
   purgeApolloCacheFiles,
   updateCacheAfterDelete,
   updateCacheAfterArchive,
+  updateCacheAfterVisibilityChange,
   updateCacheWithRepository,
   inspectCacheStatus
 };

package/dist/{github-GO2ZQWZN.js → github-YDCON2PN.js}

@@ -1,6 +1,8 @@
 #!/usr/bin/env node
 import {
   archiveRepositoryById,
+  changeRepositoryVisibility,
+  checkOrganizationIsEnterprise,
   deleteRepositoryRest,
   fetchRepositoryById,
   fetchViewerOrganizations,
@@ -16,10 +18,13 @@ import {
   unarchiveRepositoryById,
   updateCacheAfterArchive,
   updateCacheAfterDelete,
+  updateCacheAfterVisibilityChange,
   updateCacheWithRepository
-} from "./chunk-BOS4OCY4.js";
+} from "./chunk-OKP742N4.js";
 export {
   archiveRepositoryById,
+  changeRepositoryVisibility,
+  checkOrganizationIsEnterprise,
   deleteRepositoryRest,
   fetchRepositoryById,
   fetchViewerOrganizations,
@@ -35,5 +40,6 @@ export {
   unarchiveRepositoryById,
   updateCacheAfterArchive,
   updateCacheAfterDelete,
+  updateCacheAfterVisibilityChange,
   updateCacheWithRepository
 };