gh-manager-cli 1.14.0 → 1.15.1

package/CHANGELOG.md

@@ -1,3 +1,17 @@
+## [1.15.1](https://github.com/wiiiimm/gh-manager-cli/compare/v1.15.0...v1.15.1) (2025-09-02)
+
+
+### Bug Fixes
+
+* standardise keyboard shortcut capitalisation in error messages ([44d7998](https://github.com/wiiiimm/gh-manager-cli/commit/44d7998f3bad752a18c2a54c0adef18b69f9ecca))
+
+# [1.15.0](https://github.com/wiiiimm/gh-manager-cli/compare/v1.14.0...v1.15.0) (2025-09-02)
+
+
+### Features
+
+* implement GitHub Device Authorization Grant flow ([#13](https://github.com/wiiiimm/gh-manager-cli/issues/13)) ([d259534](https://github.com/wiiiimm/gh-manager-cli/commit/d259534a8a0e5c21270da17df4256aec6b0b216c))
+
 # [1.14.0](https://github.com/wiiiimm/gh-manager-cli/compare/v1.13.2...v1.14.0) (2025-09-02)
 
 

package/README.md

@@ -1,3 +1,7 @@
+<p align="center">
+  <img src="docs/assets/logo-horizontal.png" alt="gh-manager-cli logo" width="400" />
+</p>
+
 # gh-manager-cli
 
 [![npm version](https://img.shields.io/npm/v/gh-manager-cli.svg)](https://www.npmjs.com/package/gh-manager-cli)
@@ -41,12 +45,12 @@ Interactive terminal app to browse and manage your personal GitHub repositories.
 npx gh-manager-cli
 ```
 
-On first run, you'll be prompted for a GitHub Personal Access Token.
+On first run, you'll be prompted to authenticate with GitHub (OAuth recommended).
 
 ## Features
 
 ### Core Repository Management
-- **Token Authentication**: Secure PAT storage with validation and persistence
+- **Authentication**: GitHub OAuth (recommended) or Personal Access Token with secure storage
 - **Repository Listing**: Browse all your personal repositories with metadata (stars, forks, language, etc.)
 - **Live Pagination**: Infinite scroll with automatic page prefetching
 - **Interactive Sorting**: Modal-based sort selection (updated, pushed, name, stars) with direction toggle
@@ -142,18 +146,41 @@ pnpm link
 gh-manager-cli
 ```
 
-## Token & Security
+## Authentication
+
+The app supports two authentication methods:
+
+### 1. GitHub OAuth (Recommended) 🎯
+
+The easiest and most secure way to authenticate:
 
-The app needs a GitHub token to read your repositories.
+- **Device Flow**: No need to handle callback URLs - just enter a code on GitHub's website
+- **Browser-based**: Opens GitHub's authorization page automatically
+- **Secure**: No client secrets or sensitive data in the app
+- **Full Permissions**: Automatically requests all necessary scopes for complete functionality
+- **User-friendly**: No manual token management required
+
+When you first run the app, select **"GitHub OAuth (Recommended)"** from the authentication options. The app will:
+1. Display a device code for you to enter on GitHub
+2. Open your browser to GitHub's device authorization page
+3. Wait for you to authorize the app
+4. Securely store the OAuth token for future use
+
+### 2. Personal Access Token (PAT)
+
+Alternative method for users who prefer manual token management:
 
 - Provide via env var: `GITHUB_TOKEN` or `GH_TOKEN`, or enter when prompted on first run.
-- Recommended: classic PAT with `repo` scope for listing both public and private repos (read is sufficient).
+- Recommended: classic PAT with `repo` scope for listing both public and private repos.
 - Validation: a minimal `viewer { login }` request verifies the token.
-- Storage: token is saved as JSON in your OS user config directory with POSIX perms `0600`.
+
+### Token Storage & Security
+
+- Storage: tokens are saved as JSON in your OS user config directory with POSIX perms `0600`.
   - macOS: `~/Library/Preferences/gh-manager-cli/config.json`
   - Linux: `~/.config/gh-manager-cli/config.json`
   - Windows: `%APPDATA%\gh-manager-cli\config.json`
-- Revocation: you can revoke the PAT at any time in your GitHub settings.
+- Revocation: you can revoke tokens at any time in your GitHub settings.
 
 Note: Tokens are stored in plaintext on disk with restricted permissions. Future work may add OS keychain support.
 
@@ -332,6 +359,7 @@ REPOS_PER_FETCH=5 GH_MANAGER_DEBUG=1 npx gh-manager-cli-cli
 For the up-to-date task board, see [TODOs.md](./TODOs.md).
 
 Recently implemented:
+- ✅ OAuth login flow as an alternative to Personal Access Token
 - ✅ Density toggle for row spacing (compact/cozy/comfy)
 - ✅ Repo actions (archive/unarchive, delete, change visibility) with confirmations
 - ✅ Organization support and switching (press `W`) with enterprise detection

package/dist/index.js

@@ -27,7 +27,7 @@ var require_package = __commonJS({
   "package.json"(exports, module) {
     module.exports = {
       name: "gh-manager-cli",
-      version: "1.14.0",
+      version: "1.15.1",
       private: false,
       description: "Interactive CLI to manage your GitHub repos (personal) with Ink",
       license: "MIT",
@@ -62,7 +62,8 @@ var require_package = __commonJS({
         test: "vitest run",
         "test:watch": "vitest",
         "test:coverage": "vitest run --coverage",
-        "brew:sha": "bash scripts/brew-sha.sh"
+        "brew:sha": "bash scripts/brew-sha.sh",
+        "assets:png": "bash scripts/convert-svg-to-png.sh"
       },
       engines: {
         node: ">=18"
@@ -78,6 +79,7 @@ var require_package = __commonJS({
         ink: "^6.2.3",
         "ink-spinner": "^5.0.0",
         "ink-text-input": "^6.0.0",
+        open: "^10.1.0",
         react: "^19.1.1"
       },
       devDependencies: {
@@ -85,13 +87,13 @@ var require_package = __commonJS({
         "@semantic-release/git": "^10.0.1",
         "@types/node": "^24.3.0",
         "@types/react": "^19.1.12",
+        "@vitest/coverage-v8": "^2.1.3",
         "ink-testing-library": "^3.0.0",
         pkg: "^5.8.1",
         "semantic-release": "^24.2.7",
         tsup: "^8.5.0",
         typescript: "^5.9.2",
-        vitest: "^2.1.3",
-        "@vitest/coverage-v8": "^2.1.3"
+        vitest: "^2.1.3"
       },
       repository: {
         type: "git",
@@ -150,12 +152,12 @@ var require_package = __commonJS({
 
 // src/index.tsx
 var import_package = __toESM(require_package(), 1);
-import { render, Box as Box15, Text as Text16 } from "ink";
+import { render, Box as Box17, Text as Text18 } from "ink";
 import "dotenv/config";
 
 // src/ui/App.tsx
-import { useEffect as useEffect8, useMemo as useMemo2, useState as useState11 } from "react";
-import { Box as Box14, Text as Text15, useApp as useApp2, useStdout as useStdout2, useInput as useInput11 } from "ink";
+import { useEffect as useEffect8, useMemo as useMemo2, useState as useState12 } from "react";
+import { Box as Box16, Text as Text17, useApp as useApp2, useStdout as useStdout2, useInput as useInput12 } from "ink";
 import TextInput5 from "ink-text-input";
 
 // src/config.ts
@@ -192,15 +194,19 @@ function getStoredToken() {
   const cfg = readConfig();
   return cfg.token;
 }
-function storeToken(token) {
+function storeToken(token, source = "pat") {
   const existing = readConfig();
-  writeConfig({ ...existing, token, tokenVersion: 1 });
+  writeConfig({ ...existing, token, tokenVersion: 1, tokenSource: source });
 }
 function clearStoredToken() {
   const existing = readConfig();
-  const { token, tokenVersion, ...rest } = existing;
+  const { token, tokenVersion, tokenSource, ...rest } = existing;
   writeConfig({ ...rest });
 }
+function getTokenSource() {
+  const cfg = readConfig();
+  return cfg.tokenSource || "pat";
+}
 function getUIPrefs() {
   const cfg = readConfig();
   return cfg.ui || {};
@@ -211,6 +217,191 @@ function storeUIPrefs(patch) {
   writeConfig({ ...existing, ui: mergedUI });
 }
 
+// src/oauth.ts
+import open from "open";
+
+// src/constants.ts
+var OAUTH_CONFIG = {
+  // GitHub OAuth App Client ID (public, safe to include in client)
+  // You'll need to register an OAuth App on GitHub and replace this with your client ID
+  // Note: Device flow doesn't use callback URLs, but GitHub requires one during app setup
+  CLIENT_ID: "Ov23li1pOAO5GZmxBF1L",
+  // gh-manager-cli OAuth App
+  // GitHub Device Authorization Grant endpoints
+  DEVICE_CODE_URL: "https://github.com/login/device/code",
+  TOKEN_URL: "https://github.com/login/oauth/access_token",
+  // Required OAuth scopes for the application
+  // Comprehensive scopes for full functionality:
+  // 'repo' - Full control of private repositories (includes repo:status, repo_deployment, public_repo, repo:invite)
+  // 'read:org' - Read organisation data including teams and membership
+  // 'user' - Read user profile data (includes user:email, user:follow)
+  // 'delete_repo' - Delete repositories
+  // 'workflow' - Update GitHub Actions workflow files
+  // 'write:packages' - Upload packages to GitHub Package Registry
+  // 'read:packages' - Download packages from GitHub Package Registry
+  SCOPES: [
+    "repo",
+    // Full repository access (private and public)
+    "read:org",
+    // Read organisation information
+    "user",
+    // Read user profile data
+    "delete_repo",
+    // Delete repositories
+    "workflow",
+    // Manage GitHub Actions workflows
+    "write:packages",
+    // Write to package registry
+    "read:packages"
+    // Read from package registry
+  ],
+  // Device flow configuration
+  DEVICE_FLOW_TIMEOUT_MS: 9e5,
+  // 15 minutes (GitHub's maximum)
+  POLLING_INTERVAL_MS: 5e3
+  // 5 seconds (GitHub's default)
+};
+
+// src/oauth.ts
+async function pollForAccessToken(deviceCodeResponse) {
+  try {
+    const token = await pollForToken(deviceCodeResponse);
+    if (token) {
+      try {
+        const client = makeClient(token);
+        const login = await getViewerLogin(client);
+        return {
+          success: true,
+          token,
+          login
+        };
+      } catch (error) {
+        return {
+          success: false,
+          error: `Token validation failed: ${error.message}`
+        };
+      }
+    }
+    return {
+      success: false,
+      error: "Failed to obtain access token"
+    };
+  } catch (error) {
+    return {
+      success: false,
+      error: `Polling failed: ${error.message}`
+    };
+  }
+}
+async function requestDeviceCode() {
+  const response = await fetch(OAUTH_CONFIG.DEVICE_CODE_URL, {
+    method: "POST",
+    headers: {
+      "Accept": "application/json",
+      "Content-Type": "application/json"
+    },
+    body: JSON.stringify({
+      client_id: OAUTH_CONFIG.CLIENT_ID,
+      scope: OAUTH_CONFIG.SCOPES.join(" ")
+    })
+  });
+  if (!response.ok) {
+    throw new Error(`HTTP error ${response.status}: ${await response.text()}`);
+  }
+  const data = await response.json();
+  if (data.error) {
+    throw new Error(`${data.error}: ${data.error_description || "Unknown error"}`);
+  }
+  return data;
+}
+async function pollForToken(deviceCodeResponse) {
+  const startTime = Date.now();
+  const timeout = OAUTH_CONFIG.DEVICE_FLOW_TIMEOUT_MS;
+  const interval = Math.max(deviceCodeResponse.interval || 5, 5) * 1e3;
+  if (process.env.GH_MANAGER_DEBUG) {
+    console.log(`\u{1F504} Starting polling with interval ${interval}ms, timeout ${timeout}ms`);
+  }
+  while (Date.now() - startTime < timeout) {
+    await sleep(interval);
+    try {
+      if (process.env.GH_MANAGER_DEBUG) {
+        console.log("\u{1F504} Polling GitHub for access token...");
+      }
+      const response = await fetch(OAUTH_CONFIG.TOKEN_URL, {
+        method: "POST",
+        headers: {
+          "Accept": "application/json",
+          "Content-Type": "application/json"
+        },
+        body: JSON.stringify({
+          client_id: OAUTH_CONFIG.CLIENT_ID,
+          device_code: deviceCodeResponse.device_code,
+          grant_type: "urn:ietf:params:oauth:grant-type:device_code"
+        })
+      });
+      if (!response.ok) {
+        const errorText = await response.text();
+        if (process.env.GH_MANAGER_DEBUG) {
+          console.log(`\u274C HTTP error ${response.status}: ${errorText}`);
+        }
+        throw new Error(`HTTP error ${response.status}: ${errorText}`);
+      }
+      const data = await response.json();
+      if (process.env.GH_MANAGER_DEBUG) {
+        console.log("\u{1F4E8} GitHub response:", JSON.stringify(data, null, 2));
+      }
+      if (data.access_token) {
+        if (process.env.GH_MANAGER_DEBUG) {
+          console.log("\u2705 Authorization successful! Token received.");
+        }
+        return data.access_token;
+      }
+      if (data.error) {
+        if (process.env.GH_MANAGER_DEBUG) {
+          console.log(`\u26A0\uFE0F GitHub error: ${data.error}`);
+        }
+        switch (data.error) {
+          case "authorization_pending":
+            continue;
+          case "slow_down":
+            if (process.env.GH_MANAGER_DEBUG) {
+              console.log("\u{1F40C} GitHub requested slow down, waiting extra 5 seconds");
+            }
+            await sleep(5e3);
+            continue;
+          case "expired_token":
+            throw new Error("The device code has expired. Please try again.");
+          case "access_denied":
+            throw new Error("Authorization was denied.");
+          default:
+            throw new Error(`${data.error}: ${data.error_description || "Unknown error"}`);
+        }
+      }
+      if (process.env.GH_MANAGER_DEBUG) {
+        console.log("\u{1F914} Unexpected response format, continuing to poll...");
+      }
+    } catch (error) {
+      if (process.env.GH_MANAGER_DEBUG) {
+        console.log("\u274C Polling error:", error.message);
+      }
+      if (error.message.includes("access_denied") || error.message.includes("expired_token")) {
+        throw error;
+      }
+      if (process.env.GH_MANAGER_DEBUG) {
+        console.log("\u{1F504} Continuing to poll despite error...");
+      }
+    }
+  }
+  throw new Error("OAuth flow timed out. Please try again.");
+}
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+async function openGitHubAuthorizationPage() {
+  const authUrl = `https://github.com/settings/connections/applications/${OAUTH_CONFIG.CLIENT_ID}`;
+  await open(authUrl);
+}
+
 // src/ui/RepoList.tsx
 import React10, { useEffect as useEffect7, useMemo, useState as useState10, useRef } from "react";
 import { Box as Box13, Text as Text14, useApp, useInput as useInput10, useStdout } from "ink";
@@ -286,42 +477,59 @@ function OrgSwitcher({ token, currentContext, onSelect, onClose }) {
   const [error, setError] = useState(null);
   const [cursor, setCursor] = useState(0);
   const [enterpriseOrgs, setEnterpriseOrgs] = useState(/* @__PURE__ */ new Set());
+  const [showReauthorizeOption, setShowReauthorizeOption] = useState(false);
+  const [refreshing, setRefreshing] = useState(false);
   const isPersonalContext = currentContext === "personal";
-  useEffect(() => {
-    const loadOrgs = async () => {
-      try {
-        setLoading(true);
-        const client = await import("./github-YDCON2PN.js").then((m) => m.makeClient(token));
-        const orgs = await fetchViewerOrganizations(client);
-        setOrganizations(orgs);
-        const entOrgs = /* @__PURE__ */ new Set();
-        for (const org of orgs) {
-          const isEnt = await checkOrganizationIsEnterprise(client, org.login);
-          if (isEnt) {
-            entOrgs.add(org.login);
-          }
+  const loadOrgs = async () => {
+    try {
+      setLoading(true);
+      setError(null);
+      const client = await import("./github-YDCON2PN.js").then((m) => m.makeClient(token));
+      const orgs = await fetchViewerOrganizations(client);
+      setOrganizations(orgs);
+      const entOrgs = /* @__PURE__ */ new Set();
+      for (const org of orgs) {
+        const isEnt = await checkOrganizationIsEnterprise(client, org.login);
+        if (isEnt) {
+          entOrgs.add(org.login);
         }
-        setEnterpriseOrgs(entOrgs);
-        if (!isPersonalContext) {
-          const orgLogin2 = currentContext.login;
-          const index = orgs.findIndex((org) => org.login === orgLogin2);
-          if (index !== -1) {
-            setCursor(index + 1);
-          }
+      }
+      setEnterpriseOrgs(entOrgs);
+      if (!isPersonalContext) {
+        const orgLogin2 = currentContext.login;
+        const index = orgs.findIndex((org) => org.login === orgLogin2);
+        if (index !== -1) {
+          setCursor(index + 1);
         }
-      } catch (e) {
-        setError(e.message || "Failed to load organizations");
-      } finally {
-        setLoading(false);
       }
-    };
+    } catch (e) {
+      setError(e.message || "Failed to load organisations");
+    } finally {
+      setLoading(false);
+      setRefreshing(false);
+    }
+  };
+  useEffect(() => {
     loadOrgs();
-  }, [token, currentContext, isPersonalContext]);
+  }, []);
   useInput((input, key) => {
     if (key.escape) {
       onClose();
       return;
     }
+    if (input?.toLowerCase() === "r" && !refreshing && !loading) {
+      setRefreshing(true);
+      loadOrgs();
+      return;
+    }
+    if (key.ctrl && input === "w") {
+      process.nextTick(() => {
+        openGitHubAuthorizationPage().catch((err) => {
+          setError("Failed to open GitHub authorisation page");
+        });
+      });
+      return;
+    }
     if (key.return) {
       if (cursor === 0) {
         onSelect("personal");
@@ -343,8 +551,11 @@ function OrgSwitcher({ token, currentContext, onSelect, onClose }) {
   });
   const totalItems = organizations.length + 1;
   return /* @__PURE__ */ jsxs(Box, { flexDirection: "column", borderStyle: "round", borderColor: "cyan", paddingX: 2, paddingY: 1, width: 50, children: [
-    /* @__PURE__ */ jsx(Text, { bold: true, children: "Switch Account" }),
-    loading ? /* @__PURE__ */ jsx(Text, { color: "yellow", children: "Loading..." }) : error ? /* @__PURE__ */ jsx(Text, { color: "red", children: error }) : /* @__PURE__ */ jsxs(Box, { flexDirection: "column", marginTop: 1, children: [
+    /* @__PURE__ */ jsxs(Text, { bold: true, children: [
+      "Switch Account ",
+      refreshing && /* @__PURE__ */ jsx(Text, { color: "yellow", children: "(Refreshing...)" })
+    ] }),
+    loading && !refreshing ? /* @__PURE__ */ jsx(Text, { color: "yellow", children: "Loading..." }) : error ? /* @__PURE__ */ jsx(Text, { color: "red", children: error }) : /* @__PURE__ */ jsxs(Box, { flexDirection: "column", marginTop: 1, children: [
       /* @__PURE__ */ jsx(Box, { children: /* @__PURE__ */ jsx(Text, { children: cursor === 0 ? chalk.bgCyan.black(" \u2192 ") + " " + chalk.bold("Personal Account") + (isPersonalContext ? chalk.green(" \u2713") : "") : "   " + chalk.gray("Personal Account") + (isPersonalContext ? chalk.green(" \u2713") : "") }) }),
       organizations.map((org, index) => {
         const isEnterprise = enterpriseOrgs.has(org.login);
@@ -352,9 +563,17 @@ function OrgSwitcher({ token, currentContext, onSelect, onClose }) {
         const isActiveContext = !isPersonalContext && currentContext.login === org.login;
         return /* @__PURE__ */ jsx(Box, { children: /* @__PURE__ */ jsx(Text, { children: isCurrent ? chalk.bgCyan.black(" \u2192 ") + " " + chalk.bold(org.name || org.login) + (isEnterprise ? chalk.yellow(" (ENT)") : "") + chalk.gray(` (@${org.login})`) + (isActiveContext ? chalk.green(" \u2713") : "") : "   " + chalk.gray(org.name || org.login) + (isEnterprise ? chalk.gray(" (ENT)") : "") + chalk.gray(` (@${org.login})`) + (isActiveContext ? chalk.green(" \u2713") : "") }) }, org.id);
       }),
-      organizations.length === 0 && /* @__PURE__ */ jsx(Text, { color: "gray", dimColor: true, children: "No organizations found" })
+      organizations.length === 0 && /* @__PURE__ */ jsx(Text, { color: "gray", dimColor: true, children: "No organisations found" })
     ] }),
-    /* @__PURE__ */ jsx(Box, { marginTop: 1, children: /* @__PURE__ */ jsx(Text, { color: "gray", dimColor: true, children: "\u2191\u2193/Enter \u2022 Esc" }) })
+    /* @__PURE__ */ jsxs(Box, { marginTop: 1, flexDirection: "column", children: [
+      /* @__PURE__ */ jsx(Text, { color: "gray", dimColor: true, children: "\u2191\u2193/Enter \u2022 R Refresh \u2022 Esc" }),
+      /* @__PURE__ */ jsx(Box, { height: 1, children: /* @__PURE__ */ jsx(Text, { children: " " }) }),
+      /* @__PURE__ */ jsxs(Text, { color: "cyan", children: [
+        "Not seeing your organisations? Press ",
+        /* @__PURE__ */ jsx(Text, { bold: true, color: "yellow", children: "Ctrl+W" }),
+        " to manage GitHub access"
+      ] })
+    ] })
   ] });
 }
 
@@ -810,7 +1029,7 @@ var ChangeVisibilityModal = ({
               children: /* @__PURE__ */ jsx10(Text10, { children: chalk9.bgGray.white.bold(" Cancel ") })
             }
           ) }),
-          /* @__PURE__ */ jsx10(Box9, { marginTop: 1, flexDirection: "row", justifyContent: "center", children: /* @__PURE__ */ jsx10(Text10, { color: "gray", children: "Press Enter or C/Esc to Cancel" }) })
+          /* @__PURE__ */ jsx10(Box9, { marginTop: 1, flexDirection: "row", justifyContent: "center", children: /* @__PURE__ */ jsx10(Text10, { color: "gray", children: "Press Enter to Cancel \u2022 C to cancel" }) })
         ] }) : /* @__PURE__ */ jsxs9(Fragment4, { children: [
           /* @__PURE__ */ jsx10(Text10, { color: borderColor, children: "\u26A0\uFE0F  Change repository visibility?" }),
           /* @__PURE__ */ jsx10(Box9, { height: 1, children: /* @__PURE__ */ jsx10(Text10, { children: " " }) }),
@@ -852,7 +1071,9 @@ var ChangeVisibilityModal = ({
           ] }),
           /* @__PURE__ */ jsx10(Box9, { marginTop: 1, flexDirection: "row", justifyContent: "center", children: /* @__PURE__ */ jsxs9(Text10, { color: "gray", children: [
             availableOptions.length > 1 ? "\u2191\u2193 Select Option \u2022 " : "",
-            "\u2190 \u2192 Navigate \u2022 Enter to Confirm \u2022 C/Esc to Cancel"
+            "\u2190 \u2192 Navigate \u2022 Press Enter to ",
+            focusedButton === "option" ? "Change" : "Cancel",
+            " \u2022 Y to confirm \u2022 C to cancel"
           ] }) })
         ] }),
         /* @__PURE__ */ jsx10(Box9, { marginTop: 1, children: /* @__PURE__ */ jsx10(
@@ -951,7 +1172,10 @@ function RepoListHeader({
   visibilityFilter = "all",
   isEnterprise = false
 }) {
+  const contextLabel = ownerContext === "personal" ? "Personal Account" : ownerContext?.type === "organization" ? `Organization: ${ownerContext.name ?? ownerContext.login}` : "";
+  const visibilityLabel = visibilityFilter === "public" ? "Public" : visibilityFilter === "private" ? isEnterprise ? "Private/Internal" : "Private" : visibilityFilter === "internal" ? "Internal" : "";
   return /* @__PURE__ */ jsxs12(Box12, { flexDirection: "row", gap: 2, marginBottom: 1, children: [
+    contextLabel && /* @__PURE__ */ jsx13(Text13, { children: contextLabel }),
     /* @__PURE__ */ jsxs12(Text13, { color: "gray", dimColor: true, children: [
       "Sort: ",
       sortKey,
@@ -962,9 +1186,9 @@ function RepoListHeader({
       "Fork Status - Commits Behind: ",
       forkTracking ? "ON" : "OFF"
     ] }),
-    visibilityFilter !== "all" && /* @__PURE__ */ jsxs12(Text13, { color: "yellow", children: [
+    !!visibilityLabel && /* @__PURE__ */ jsxs12(Text13, { color: "yellow", children: [
       "Visibility: ",
-      visibilityFilter === "public" ? "Public" : visibilityFilter === "private" ? isEnterprise ? "Private/Internal" : "Private" : ""
+      visibilityLabel
     ] }),
     filter && !searchActive && /* @__PURE__ */ jsxs12(Text13, { color: "cyan", children: [
       'Filter: "',
@@ -1955,9 +2179,9 @@ function RepoList({ token, maxVisibleRows, onLogout, viewerLogin, onOrgContextCh
       ] }) }),
       /* @__PURE__ */ jsx14(Box13, { borderStyle: "single", borderColor: "red", paddingX: 1, paddingY: 1, marginX: 1, height: contentHeight + containerPadding + 2, flexDirection: "column", children: /* @__PURE__ */ jsx14(Box13, { height: contentHeight, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs13(Box13, { flexDirection: "column", alignItems: "center", children: [
         /* @__PURE__ */ jsx14(Text14, { color: "red", children: error }),
-        /* @__PURE__ */ jsx14(Box13, { marginTop: 1, children: /* @__PURE__ */ jsx14(Text14, { color: "gray", dimColor: true, children: "Press 'r' to retry or 'q' to quit" }) })
+        /* @__PURE__ */ jsx14(Box13, { marginTop: 1, children: /* @__PURE__ */ jsx14(Text14, { color: "gray", dimColor: true, children: "Press R to retry or Q to quit" }) })
       ] }) }) }),
-      /* @__PURE__ */ jsx14(Box13, { marginTop: 1, paddingX: 1, children: /* @__PURE__ */ jsx14(Text14, { color: "gray", children: "Press 'r' to retry \u2022 'q' to quit" }) })
+      /* @__PURE__ */ jsx14(Box13, { marginTop: 1, paddingX: 1, children: /* @__PURE__ */ jsx14(Text14, { color: "gray", children: "Press R to retry \u2022 Q to quit" }) })
     ] });
   }
   if (loading && items.length === 0 || sortingLoading) {
@@ -2416,21 +2640,165 @@ function RepoList({ token, maxVisibleRows, onLogout, viewerLogin, onOrgContextCh
   ] });
 }
 
-// src/ui/App.tsx
+// src/ui/components/auth/AuthMethodSelector.tsx
+import { useState as useState11 } from "react";
+import { Box as Box14, Text as Text15, useInput as useInput11 } from "ink";
+import chalk12 from "chalk";
 import { jsx as jsx15, jsxs as jsxs14 } from "react/jsx-runtime";
+function AuthMethodSelector({ onSelect, onQuit }) {
+  const [selectedIndex, setSelectedIndex] = useState11(0);
+  const methods = [
+    {
+      key: "oauth",
+      label: "GitHub OAuth",
+      description: "Login via GitHub in your browser (recommended)"
+    },
+    {
+      key: "pat",
+      label: "Personal Access Token",
+      description: "Manually enter a GitHub Personal Access Token"
+    }
+  ];
+  useInput11((input, key) => {
+    if (key.escape || input?.toLowerCase() === "q") {
+      if (onQuit) {
+        onQuit();
+      } else {
+        process.exit(0);
+      }
+    } else if (key.upArrow) {
+      setSelectedIndex((prev) => Math.max(0, prev - 1));
+    } else if (key.downArrow) {
+      setSelectedIndex((prev) => Math.min(methods.length - 1, prev + 1));
+    } else if (key.return) {
+      onSelect(methods[selectedIndex].key);
+    } else if (input === "1") {
+      onSelect("oauth");
+    } else if (input === "2") {
+      onSelect("pat");
+    }
+  });
+  return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", borderStyle: "single", borderColor: "cyan", paddingX: 2, paddingY: 1, children: [
+    /* @__PURE__ */ jsx15(Text15, { bold: true, marginBottom: 1, children: "Choose Authentication Method" }),
+    /* @__PURE__ */ jsx15(Box14, { flexDirection: "column", marginY: 1, children: methods.map((method, index) => {
+      const isSelected = index === selectedIndex;
+      const prefix = isSelected ? chalk12.cyan("\u203A") : " ";
+      const numberPrefix = `${index + 1}.`;
+      return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", marginBottom: 1, children: [
+        /* @__PURE__ */ jsx15(Text15, { children: /* @__PURE__ */ jsxs14(Text15, { color: isSelected ? "cyan" : void 0, bold: isSelected, children: [
+          prefix,
+          " ",
+          numberPrefix,
+          " ",
+          method.label
+        ] }) }),
+        /* @__PURE__ */ jsxs14(Text15, { color: "gray", dimColor: true, children: [
+          "   ",
+          method.description
+        ] })
+      ] }, method.key);
+    }) }),
+    /* @__PURE__ */ jsx15(Text15, { color: "gray", dimColor: true, marginTop: 1, children: "Use arrow keys to navigate, Enter to select, or press 1/2 \u2022 Q/Esc to quit" })
+  ] });
+}
+
+// src/ui/components/auth/OAuthProgress.tsx
+import { Box as Box15, Text as Text16 } from "ink";
+import Spinner from "ink-spinner";
+import { jsx as jsx16, jsxs as jsxs15 } from "react/jsx-runtime";
+function OAuthProgress({ status, error, deviceCode }) {
+  const statusMessages = {
+    initializing: {
+      message: "Initializing GitHub Device Flow...",
+      showSpinner: true
+    },
+    device_code_requested: {
+      message: "Requesting device authorization code...",
+      showSpinner: true
+    },
+    browser_opening: {
+      message: "Opening browser for GitHub authentication...",
+      showSpinner: true
+    },
+    waiting_for_authorization: {
+      message: "Waiting for you to authorize in your browser...",
+      showSpinner: true
+    },
+    polling_for_token: {
+      message: "Polling GitHub for access token...",
+      showSpinner: true
+    },
+    validating_token: {
+      message: "Validating token with GitHub...",
+      showSpinner: true
+    },
+    success: {
+      message: "Authentication successful!",
+      showSpinner: false
+    },
+    error: {
+      message: "Authentication failed",
+      showSpinner: false
+    }
+  };
+  const { message, showSpinner } = statusMessages[status];
+  return /* @__PURE__ */ jsxs15(Box15, { flexDirection: "column", borderStyle: "single", borderColor: status === "error" ? "red" : "cyan", paddingX: 2, paddingY: 1, children: [
+    /* @__PURE__ */ jsx16(Text16, { bold: true, marginBottom: 1, children: "GitHub OAuth Authentication" }),
+    /* @__PURE__ */ jsx16(Box15, { marginY: 1, children: showSpinner ? /* @__PURE__ */ jsxs15(Box15, { children: [
+      /* @__PURE__ */ jsx16(Text16, { color: "green", children: /* @__PURE__ */ jsx16(Spinner, { type: "dots" }) }),
+      /* @__PURE__ */ jsxs15(Text16, { children: [
+        " ",
+        message
+      ] })
+    ] }) : /* @__PURE__ */ jsxs15(Text16, { color: status === "error" ? "red" : "green", children: [
+      status === "error" ? "\u2717" : "\u2713",
+      " ",
+      message
+    ] }) }),
+    (status === "waiting_for_authorization" || status === "polling_for_token") && deviceCode && /* @__PURE__ */ jsxs15(Box15, { marginY: 1, flexDirection: "column", children: [
+      /* @__PURE__ */ jsx16(Text16, { bold: true, color: "cyan", marginBottom: 1, children: "\u{1F4CB} Please complete these steps:" }),
+      /* @__PURE__ */ jsxs15(Box15, { marginBottom: 1, children: [
+        /* @__PURE__ */ jsx16(Text16, { children: "1. Visit: " }),
+        /* @__PURE__ */ jsx16(Text16, { bold: true, color: "blue", children: deviceCode.verification_uri })
+      ] }),
+      /* @__PURE__ */ jsxs15(Box15, { marginBottom: 1, flexDirection: "column", children: [
+        /* @__PURE__ */ jsx16(Text16, { children: "2. Enter this code:" }),
+        /* @__PURE__ */ jsx16(Box15, { borderStyle: "single", borderColor: "yellow", paddingX: 2, paddingY: 1, marginTop: 1, children: /* @__PURE__ */ jsx16(Text16, { bold: true, color: "yellow", children: deviceCode.user_code }) })
+      ] }),
+      status === "waiting_for_authorization" && /* @__PURE__ */ jsx16(Text16, { color: "gray", marginTop: 1, children: "Your browser should open automatically." }),
+      status === "polling_for_token" && /* @__PURE__ */ jsxs15(Box15, { flexDirection: "column", marginTop: 1, children: [
+        /* @__PURE__ */ jsx16(Text16, { color: "gray", children: "Waiting for you to complete authorization in your browser..." }),
+        /* @__PURE__ */ jsx16(Text16, { color: "gray", dimColor: true, marginTop: 1, children: "This will timeout in 15 minutes. Press Esc to cancel." })
+      ] })
+    ] }),
+    status === "error" && error && /* @__PURE__ */ jsxs15(Box15, { marginY: 1, flexDirection: "column", children: [
+      /* @__PURE__ */ jsx16(Text16, { color: "red", children: error }),
+      /* @__PURE__ */ jsx16(Text16, { color: "gray", marginTop: 1, children: "Press Esc to go back and try again." })
+    ] }),
+    status === "success" && /* @__PURE__ */ jsx16(Text16, { color: "gray", marginTop: 1, children: "Returning to application..." })
+  ] });
+}
+
+// src/ui/App.tsx
+import { jsx as jsx17, jsxs as jsxs16 } from "react/jsx-runtime";
 var packageJson = require_package();
 function App() {
   const { exit } = useApp2();
   const { stdout } = useStdout2();
-  const [mode, setMode] = useState11("checking");
-  const [token, setToken] = useState11(null);
-  const [input, setInput] = useState11("");
-  const [error, setError] = useState11(null);
-  const [viewer, setViewer] = useState11(null);
-  const [rateLimitReset, setRateLimitReset] = useState11(null);
-  const [wasRateLimited, setWasRateLimited] = useState11(false);
-  const [orgContext, setOrgContext] = useState11("personal");
-  const [dims, setDims] = useState11(() => {
+  const [mode, setMode] = useState12("checking");
+  const [token, setToken] = useState12(null);
+  const [input, setInput] = useState12("");
+  const [error, setError] = useState12(null);
+  const [viewer, setViewer] = useState12(null);
+  const [rateLimitReset, setRateLimitReset] = useState12(null);
+  const [wasRateLimited, setWasRateLimited] = useState12(false);
+  const [orgContext, setOrgContext] = useState12("personal");
+  const [authMethod, setAuthMethod] = useState12("pat");
+  const [oauthStatus, setOAuthStatus] = useState12("initializing");
+  const [tokenSource, setTokenSource] = useState12("pat");
+  const [deviceCodeResponse, setDeviceCodeResponse] = useState12(null);
+  const [oauthDeviceCode, setOauthDeviceCode] = useState12(null);
+  const [dims, setDims] = useState12(() => {
     const cols = stdout?.columns ?? 100;
     const rows = stdout?.rows ?? 30;
     return { cols, rows };
@@ -2450,6 +2818,8 @@ function App() {
   useEffect8(() => {
     const env = getTokenFromEnv();
     const stored = getStoredToken();
+    const source = getTokenSource();
+    setTokenSource(source);
     if (env) {
       setToken(env);
       setMode("validating");
@@ -2457,15 +2827,66 @@ function App() {
       setToken(stored);
       setMode("validating");
     } else {
-      setMode("prompt");
+      setMode("auth_method_selection");
     }
   }, []);
+  useEffect8(() => {
+    if (mode !== "oauth_flow") return;
+    (async () => {
+      try {
+        setOAuthStatus("initializing");
+        await new Promise((resolve) => setTimeout(resolve, 500));
+        setOAuthStatus("device_code_requested");
+        const deviceCodeResp = await requestDeviceCode();
+        setDeviceCodeResponse(deviceCodeResp);
+        setOauthDeviceCode({
+          user_code: deviceCodeResp.user_code,
+          verification_uri: deviceCodeResp.verification_uri
+        });
+        await new Promise((resolve) => setTimeout(resolve, 500));
+        setOAuthStatus("browser_opening");
+        const open2 = (await import("open")).default;
+        await open2(deviceCodeResp.verification_uri);
+        setOAuthStatus("waiting_for_authorization");
+        await new Promise((resolve) => setTimeout(resolve, 2e3));
+        setOAuthStatus("polling_for_token");
+        const tokenResult = await pollForAccessToken(deviceCodeResp);
+        if (tokenResult.success && tokenResult.token) {
+          setOAuthStatus("validating_token");
+          storeToken(tokenResult.token, "oauth");
+          setToken(tokenResult.token);
+          setTokenSource("oauth");
+          if (tokenResult.login) {
+            setViewer(tokenResult.login);
+            setOAuthStatus("success");
+            await new Promise((resolve) => setTimeout(resolve, 1e3));
+            setMode("ready");
+          } else {
+            throw new Error("Failed to get user login from token");
+          }
+        } else {
+          throw new Error(tokenResult.error || "Failed to obtain access token");
+        }
+      } catch (error2) {
+        setOAuthStatus("error");
+        setError(error2.message);
+      }
+    })();
+  }, [mode]);
+  const handleAuthMethodSelect = (method) => {
+    setAuthMethod(method);
+    if (method === "pat") {
+      setMode("prompt");
+    } else if (method === "oauth") {
+      setMode("oauth_flow");
+    }
+  };
   useEffect8(() => {
     (async () => {
       if (mode !== "validating" || !token) return;
       const timeoutId = setTimeout(() => {
         setError("Token validation timed out. Please check your network connection.");
-        setMode("prompt");
+        setMode("auth_method_selection");
         setToken(null);
       }, 15e3);
       try {
@@ -2529,8 +2950,9 @@ function App() {
         } else {
           setError(errorMessage);
           setInput("");
-          setMode("prompt");
           setToken(null);
+          clearStoredToken();
+          setMode("auth_method_selection");
         }
       }
     })();
@@ -2538,6 +2960,7 @@ function App() {
   const onSubmitToken = async () => {
     if (!input.trim()) return;
     setToken(input.trim());
+    setTokenSource("pat");
     setError(null);
     setMode("validating");
   };
@@ -2550,12 +2973,20 @@ function App() {
     setToken(null);
     setViewer(null);
     setInput("");
-    setMode("prompt");
+    setTokenSource("pat");
+    setMode("auth_method_selection");
   };
-  useInput11((input2, key) => {
-    if (mode === "prompt" && key.escape) {
+  useInput12((input2, key) => {
+    if ((mode === "prompt" || mode === "auth_method_selection") && key.escape) {
       exit();
     }
+    if (mode === "oauth_flow" && key.escape) {
+      setMode("auth_method_selection");
+      setError(null);
+      setOAuthStatus("initializing");
+      setOauthDeviceCode(null);
+      setDeviceCodeResponse(null);
+    }
     if (mode === "rate_limited") {
       const ch = (input2 || "").toLowerCase();
       if (key.escape || ch === "q") {
@@ -2567,29 +2998,29 @@ function App() {
       }
     }
     if (mode === "validating" && key.escape) {
-      if (wasRateLimited) {
+      if (wasRateLimited || rateLimitReset) {
         setMode("rate_limited");
       } else {
-        setMode("prompt");
-        setToken(null);
-        setInput("");
+        setMode("auth_method_selection");
       }
+      setToken(null);
+      setInput("");
     }
   });
   const verticalPadding = Math.floor(dims.rows * 0.15);
-  const header = useMemo2(() => /* @__PURE__ */ jsxs14(Box14, { flexDirection: "row", justifyContent: "space-between", marginBottom: 1, children: [
-    /* @__PURE__ */ jsxs14(Box14, { flexDirection: "row", gap: 1, children: [
-      /* @__PURE__ */ jsxs14(Text15, { bold: true, color: "cyan", children: [
+  const header = useMemo2(() => /* @__PURE__ */ jsxs16(Box16, { flexDirection: "row", justifyContent: "space-between", marginBottom: 1, children: [
+    /* @__PURE__ */ jsxs16(Box16, { flexDirection: "row", gap: 1, children: [
+      /* @__PURE__ */ jsxs16(Text17, { bold: true, color: "cyan", children: [
         "  ",
         "GitHub Repository Manager"
       ] }),
-      /* @__PURE__ */ jsxs14(Text15, { color: "gray", dimColor: true, children: [
+      /* @__PURE__ */ jsxs16(Text17, { color: "gray", dimColor: true, children: [
         "v",
         packageJson.version
       ] }),
-      process.env.GH_MANAGER_DEBUG === "1" && /* @__PURE__ */ jsx15(Text15, { backgroundColor: "blue", color: "white", children: " debug mode " })
+      process.env.GH_MANAGER_DEBUG === "1" && /* @__PURE__ */ jsx17(Text17, { backgroundColor: "blue", color: "white", children: " debug mode " })
     ] }),
-    viewer && /* @__PURE__ */ jsx15(Text15, { color: "gray", children: orgContext !== "personal" && orgContext.login ? `${orgContext.login}/@${viewer}  ` : `@${viewer}  ` })
+    viewer && /* @__PURE__ */ jsx17(Text17, { color: "gray", children: orgContext !== "personal" && orgContext.login ? `${orgContext.login}/@${viewer}  ` : `@${viewer}  ` })
   ] }), [viewer, orgContext]);
   if (mode === "rate_limited") {
     const formatResetTime = (resetTime) => {
@@ -2612,55 +3043,70 @@ function App() {
         return "Unknown";
       }
     };
-    return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+    return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
       header,
-      /* @__PURE__ */ jsx15(Box14, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs14(Box14, { borderStyle: "single", borderColor: "yellow", paddingX: 3, paddingY: 2, flexDirection: "column", width: Math.min(dims.cols - 8, 80), children: [
-        /* @__PURE__ */ jsx15(Text15, { bold: true, color: "yellow", marginBottom: 1, children: "\u26A0\uFE0F  Rate Limit Exceeded" }),
-        /* @__PURE__ */ jsx15(Text15, { color: "gray", marginBottom: 1, children: "You've hit GitHub's API rate limit for your token." }),
-        /* @__PURE__ */ jsx15(Text15, { color: "gray", marginBottom: 1, children: "This happens when you make too many requests in a short time." }),
-        rateLimitReset && /* @__PURE__ */ jsxs14(Box14, { marginTop: 1, marginBottom: 1, children: [
-          /* @__PURE__ */ jsxs14(Text15, { children: [
-            /* @__PURE__ */ jsx15(Text15, { color: "cyan", children: "Reset in:" }),
+      /* @__PURE__ */ jsx17(Box16, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs16(Box16, { borderStyle: "single", borderColor: "yellow", paddingX: 3, paddingY: 2, flexDirection: "column", width: Math.min(dims.cols - 8, 80), children: [
+        /* @__PURE__ */ jsx17(Text17, { bold: true, color: "yellow", marginBottom: 1, children: "\u26A0\uFE0F  Rate Limit Exceeded" }),
+        /* @__PURE__ */ jsx17(Text17, { color: "gray", marginBottom: 1, children: "You've hit GitHub's API rate limit for your token." }),
+        /* @__PURE__ */ jsx17(Text17, { color: "gray", marginBottom: 1, children: "This happens when you make too many requests in a short time." }),
+        rateLimitReset && /* @__PURE__ */ jsxs16(Box16, { marginTop: 1, marginBottom: 1, children: [
+          /* @__PURE__ */ jsxs16(Text17, { children: [
+            /* @__PURE__ */ jsx17(Text17, { color: "cyan", children: "Reset in:" }),
             " ",
-            /* @__PURE__ */ jsx15(Text15, { bold: true, children: formatResetTime(rateLimitReset) })
+            /* @__PURE__ */ jsx17(Text17, { bold: true, children: formatResetTime(rateLimitReset) })
           ] }),
-          /* @__PURE__ */ jsxs14(Text15, { color: "gray", dimColor: true, children: [
+          /* @__PURE__ */ jsxs16(Text17, { color: "gray", dimColor: true, children: [
             "(",
             new Date(rateLimitReset).toLocaleTimeString(),
             ")"
           ] })
         ] }),
-        /* @__PURE__ */ jsxs14(Box14, { marginTop: 2, flexDirection: "column", gap: 1, children: [
-          /* @__PURE__ */ jsx15(Text15, { bold: true, children: "What would you like to do?" }),
-          /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", paddingLeft: 2, children: [
-            /* @__PURE__ */ jsxs14(Text15, { children: [
-              /* @__PURE__ */ jsx15(Text15, { color: "cyan", bold: true, children: "R" }),
+        /* @__PURE__ */ jsxs16(Box16, { marginTop: 2, flexDirection: "column", gap: 1, children: [
+          /* @__PURE__ */ jsx17(Text17, { bold: true, children: "What would you like to do?" }),
+          /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", paddingLeft: 2, children: [
+            /* @__PURE__ */ jsxs16(Text17, { children: [
+              /* @__PURE__ */ jsx17(Text17, { color: "cyan", bold: true, children: "R" }),
               " - Retry now ",
               rateLimitReset && formatResetTime(rateLimitReset) !== "Now (should be reset)" ? "(likely to fail until reset)" : "(should work now)"
             ] }),
-            /* @__PURE__ */ jsxs14(Text15, { children: [
-              /* @__PURE__ */ jsx15(Text15, { color: "cyan", bold: true, children: "L" }),
-              " - Logout and use a different token"
+            /* @__PURE__ */ jsxs16(Text17, { children: [
+              /* @__PURE__ */ jsx17(Text17, { color: "cyan", bold: true, children: "L" }),
+              " - Logout and choose authentication method"
             ] }),
-            /* @__PURE__ */ jsxs14(Text15, { children: [
-              /* @__PURE__ */ jsx15(Text15, { color: "gray", bold: true, children: "Q/Esc" }),
+            /* @__PURE__ */ jsxs16(Text17, { children: [
+              /* @__PURE__ */ jsx17(Text17, { color: "gray", bold: true, children: "Q/Esc" }),
               " - Quit application"
             ] })
           ] })
         ] }),
-        /* @__PURE__ */ jsx15(Text15, { color: "gray", dimColor: true, marginTop: 2, children: "Tip: Using multiple tokens or waiting between requests can help avoid rate limits." })
+        /* @__PURE__ */ jsx17(Text17, { color: "gray", dimColor: true, marginTop: 2, children: "Tip: Using multiple tokens or waiting between requests can help avoid rate limits." })
       ] }) })
     ] });
   }
+  if (mode === "auth_method_selection") {
+    return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+      header,
+      /* @__PURE__ */ jsx17(Box16, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", alignItems: "center", children: [
+        /* @__PURE__ */ jsx17(AuthMethodSelector, { onSelect: handleAuthMethodSelect }),
+        error && /* @__PURE__ */ jsx17(Text17, { color: "red", marginTop: 1, children: error })
+      ] }) })
+    ] });
+  }
+  if (mode === "oauth_flow") {
+    return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+      header,
+      /* @__PURE__ */ jsx17(Box16, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsx17(OAuthProgress, { status: oauthStatus, error: error || void 0, deviceCode: oauthDeviceCode || void 0 }) })
+    ] });
+  }
   if (mode === "prompt") {
-    return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+    return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
       header,
-      /* @__PURE__ */ jsx15(Box14, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs14(Box14, { borderStyle: "single", borderColor: "cyan", paddingX: 2, paddingY: 1, flexDirection: "column", children: [
-        /* @__PURE__ */ jsx15(Text15, { bold: true, marginBottom: 1, children: "Authentication Required" }),
-        /* @__PURE__ */ jsx15(Text15, { color: "gray", marginBottom: 1, children: "Enter your GitHub Personal Access Token" }),
-        /* @__PURE__ */ jsxs14(Box14, { children: [
-          /* @__PURE__ */ jsx15(Text15, { children: "Token: " }),
-          /* @__PURE__ */ jsx15(
+      /* @__PURE__ */ jsx17(Box16, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs16(Box16, { borderStyle: "single", borderColor: "cyan", paddingX: 2, paddingY: 1, flexDirection: "column", children: [
+        /* @__PURE__ */ jsx17(Text17, { bold: true, marginBottom: 1, children: "Authentication Required" }),
+        /* @__PURE__ */ jsx17(Text17, { color: "gray", marginBottom: 1, children: "Enter your GitHub Personal Access Token" }),
+        /* @__PURE__ */ jsxs16(Box16, { children: [
+          /* @__PURE__ */ jsx17(Text17, { children: "Token: " }),
+          /* @__PURE__ */ jsx17(
             TextInput5,
             {
               value: input,
@@ -2670,30 +3116,30 @@ function App() {
             }
           )
         ] }),
-        error && /* @__PURE__ */ jsx15(Text15, { color: "red", marginTop: 1, children: error }),
-        /* @__PURE__ */ jsx15(Text15, { color: "gray", dimColor: true, marginTop: 1, children: "The token will be stored securely in your local config" }),
-        /* @__PURE__ */ jsx15(Text15, { color: "gray", dimColor: true, marginTop: 1, children: "Press Esc to quit" })
+        error && /* @__PURE__ */ jsx17(Text17, { color: "red", marginTop: 1, children: error }),
+        /* @__PURE__ */ jsx17(Text17, { color: "gray", dimColor: true, marginTop: 1, children: "The token will be stored securely in your local config" }),
+        /* @__PURE__ */ jsx17(Text17, { color: "gray", dimColor: true, marginTop: 1, children: "Press Esc to go back" })
       ] }) })
     ] });
   }
   if (mode === "validating" || mode === "checking") {
-    return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+    return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
       header,
-      /* @__PURE__ */ jsx15(Box14, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", alignItems: "center", children: [
-        /* @__PURE__ */ jsx15(Text15, { color: "yellow", children: "Validating token..." }),
-        mode === "validating" && /* @__PURE__ */ jsx15(Text15, { color: "gray", dimColor: true, marginTop: 1, children: "Press Esc to cancel" })
+      /* @__PURE__ */ jsx17(Box16, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", alignItems: "center", children: [
+        /* @__PURE__ */ jsx17(Text17, { color: "yellow", children: "Validating token..." }),
+        mode === "validating" && /* @__PURE__ */ jsx17(Text17, { color: "gray", dimColor: true, marginTop: 1, children: "Press Esc to cancel" })
       ] }) })
     ] });
   }
   if (mode === "error") {
-    return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+    return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
       header,
-      /* @__PURE__ */ jsx15(Box14, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsx15(Text15, { color: "red", children: error ?? "Unexpected error" }) })
+      /* @__PURE__ */ jsx17(Box16, { flexGrow: 1, justifyContent: "center", alignItems: "center", children: /* @__PURE__ */ jsx17(Text17, { color: "red", children: error ?? "Unexpected error" }) })
     ] });
   }
-  return /* @__PURE__ */ jsxs14(Box14, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
+  return /* @__PURE__ */ jsxs16(Box16, { flexDirection: "column", height: dims.rows, paddingX: 2, paddingTop: verticalPadding, paddingBottom: verticalPadding, children: [
     header,
-    /* @__PURE__ */ jsx15(
+    /* @__PURE__ */ jsx17(
       RepoList,
       {
         token,
@@ -2707,7 +3153,7 @@ function App() {
 }
 
 // src/index.tsx
-import { jsx as jsx16, jsxs as jsxs15 } from "react/jsx-runtime";
+import { jsx as jsx18, jsxs as jsxs17 } from "react/jsx-runtime";
 var argv = process.argv.slice(2);
 if (argv.includes("--version") || argv.includes("-v")) {
   const version = import_package.default?.version || "0.0.0";
@@ -2742,8 +3188,8 @@ process.on("unhandledRejection", (reason) => {
   process.exit(1);
 });
 render(
-  /* @__PURE__ */ jsxs15(Box15, { flexDirection: "column", children: [
-    /* @__PURE__ */ jsx16(App, {}),
-    /* @__PURE__ */ jsx16(Text16, { color: "gray" })
+  /* @__PURE__ */ jsxs17(Box17, { flexDirection: "column", children: [
+    /* @__PURE__ */ jsx18(App, {}),
+    /* @__PURE__ */ jsx18(Text18, { color: "gray" })
   ] })
 );

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "gh-manager-cli",
-  "version": "1.14.0",
+  "version": "1.15.1",
   "private": false,
   "description": "Interactive CLI to manage your GitHub repos (personal) with Ink",
   "license": "MIT",
@@ -35,7 +35,8 @@
     "test": "vitest run",
     "test:watch": "vitest",
     "test:coverage": "vitest run --coverage",
-    "brew:sha": "bash scripts/brew-sha.sh"
+    "brew:sha": "bash scripts/brew-sha.sh",
+    "assets:png": "bash scripts/convert-svg-to-png.sh"
   },
   "engines": {
     "node": ">=18"
@@ -51,6 +52,7 @@
     "ink": "^6.2.3",
     "ink-spinner": "^5.0.0",
     "ink-text-input": "^6.0.0",
+    "open": "^10.1.0",
     "react": "^19.1.1"
   },
   "devDependencies": {
@@ -58,13 +60,13 @@
     "@semantic-release/git": "^10.0.1",
     "@types/node": "^24.3.0",
     "@types/react": "^19.1.12",
+    "@vitest/coverage-v8": "^2.1.3",
     "ink-testing-library": "^3.0.0",
     "pkg": "^5.8.1",
     "semantic-release": "^24.2.7",
     "tsup": "^8.5.0",
     "typescript": "^5.9.2",
-    "vitest": "^2.1.3",
-    "@vitest/coverage-v8": "^2.1.3"
+    "vitest": "^2.1.3"
   },
   "repository": {
     "type": "git",