gsd-pi 2.3.8 → 2.3.9

package/README.md

@@ -48,6 +48,8 @@ GSD v2 solves all of these because it's not a prompt framework anymore — it's
 
 ### Migrating from v1
 
+> **Note:** Migration works best with a `ROADMAP.md` file for milestone structure. Without one, milestones are inferred from the `phases/` directory.
+
 If you have projects with `.planning` directories from the original Get Shit Done, you can migrate them to GSD-2's `.gsd` format:
 
 ```bash
@@ -198,7 +200,7 @@ Both terminals read and write the same `.gsd/` files on disk. Your decisions in
 
 ### First launch
 
-On first run, GSD prompts for optional API keys (Brave Search, Google Gemini, Context7, Jina) for web research and documentation tools. All optional — press Enter to skip any.
+On first run, GSD prompts for optional API keys (Brave Search, Google Gemini, Context7, Jina, Tavily) for web research and documentation tools. All optional — press Enter to skip any.
 
 ### Commands
 
@@ -326,7 +328,7 @@ GSD ships with 13 extensions, all loaded automatically:
 |-----------|-----------------|
 | **GSD** | Core workflow engine, auto mode, commands, dashboard |
 | **Browser Tools** | Playwright-based browser for UI verification |
-| **Search the Web** | Brave Search + Jina page extraction |
+| **Search the Web** | Brave Search, Tavily, or Jina page extraction |
 | **Google Search** | Gemini-powered web search with AI-synthesized answers |
 | **Context7** | Up-to-date library/framework documentation |
 | **Background Shell** | Long-running process management with readiness detection |
@@ -386,6 +388,7 @@ gsd (CLI binary)
 
 Optional:
 - Brave Search API key (web research)
+- Tavily API key (web research — alternative to Brave)
 - Google Gemini API key (web research via Gemini Search grounding)
 - Context7 API key (library docs)
 - Jina API key (page extraction)

package/dist/cli.js

@@ -1,4 +1,4 @@
-import { AuthStorage, DefaultResourceLoader, ModelRegistry, SettingsManager, SessionManager, createAgentSession, InteractiveMode, runPrintMode, } from '@mariozechner/pi-coding-agent';
+import { AuthStorage, DefaultResourceLoader, ModelRegistry, SettingsManager, SessionManager, createAgentSession, InteractiveMode, runPrintMode, runRpcMode, } from '@mariozechner/pi-coding-agent';
 import { existsSync, readdirSync, renameSync, readFileSync } from 'node:fs';
 import { join } from 'node:path';
 import { agentDir, sessionsDir, authFilePath } from './app-paths.js';
@@ -33,6 +33,24 @@ function parseCliArgs(argv) {
         else if (arg === '--tools' && i + 1 < args.length) {
             flags.tools = args[++i].split(',');
         }
+        else if (arg === '--version' || arg === '-v') {
+            process.stdout.write((process.env.GSD_VERSION || '0.0.0') + '\n');
+            process.exit(0);
+        }
+        else if (arg === '--help' || arg === '-h') {
+            process.stdout.write(`GSD v${process.env.GSD_VERSION || '0.0.0'} — Get Shit Done\n\n`);
+            process.stdout.write('Usage: gsd [options] [message...]\n\n');
+            process.stdout.write('Options:\n');
+            process.stdout.write('  --mode <text|json|rpc>   Output mode (default: interactive)\n');
+            process.stdout.write('  --print, -p              Single-shot print mode\n');
+            process.stdout.write('  --model <id>             Override model (e.g. claude-opus-4-6)\n');
+            process.stdout.write('  --no-session             Disable session persistence\n');
+            process.stdout.write('  --extension <path>       Load additional extension\n');
+            process.stdout.write('  --tools <a,b,c>          Restrict available tools\n');
+            process.stdout.write('  --version, -v            Print version and exit\n');
+            process.stdout.write('  --help, -h               Print this help and exit\n');
+            process.exit(0);
+        }
         else if (!arg.startsWith('--') && !arg.startsWith('-')) {
             flags.messages.push(arg);
         }
@@ -130,8 +148,12 @@ if (isPrintMode) {
         }
     }
     const mode = cliFlags.mode || 'text';
+    if (mode === 'rpc') {
+        await runRpcMode(session);
+        process.exit(0);
+    }
     await runPrintMode(session, {
-        mode: mode === 'rpc' ? 'json' : mode,
+        mode,
         messages: cliFlags.messages,
     });
     process.exit(0);
@@ -224,5 +246,13 @@ if (enabledModelPatterns && enabledModelPatterns.length > 0) {
         session.setScopedModels(scopedModels);
     }
 }
+if (!process.stdin.isTTY) {
+    process.stderr.write('[gsd] Error: Interactive mode requires a terminal (TTY).\n');
+    process.stderr.write('[gsd] Non-interactive alternatives:\n');
+    process.stderr.write('[gsd]   gsd --print "your message"     Single-shot prompt\n');
+    process.stderr.write('[gsd]   gsd --mode rpc                 JSON-RPC over stdin/stdout\n');
+    process.stderr.write('[gsd]   gsd --mode text "message"      Text output mode\n');
+    process.exit(1);
+}
 const interactiveMode = new InteractiveMode(session);
 await interactiveMode.run();

package/dist/logo.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Shared GSD block-letter ASCII logo.
+ *
+ * Single source of truth — imported by:
+ *   - scripts/postinstall.js (via dist/logo.js)
+ *   - src/onboarding.ts (via ./logo.js)
+ */
+/** Raw logo lines — no ANSI codes, no leading newline. */
+export declare const GSD_LOGO: readonly string[];
+/**
+ * Render the logo block with a color function applied to each line.
+ *
+ * @param color — e.g. `(s) => `\x1b[36m${s}\x1b[0m`` or picocolors.cyan
+ * @returns Ready-to-write string with leading/trailing newlines.
+ */
+export declare function renderLogo(color: (s: string) => string): string;

package/dist/logo.js

@@ -0,0 +1,25 @@
+/**
+ * Shared GSD block-letter ASCII logo.
+ *
+ * Single source of truth — imported by:
+ *   - scripts/postinstall.js (via dist/logo.js)
+ *   - src/onboarding.ts (via ./logo.js)
+ */
+/** Raw logo lines — no ANSI codes, no leading newline. */
+export const GSD_LOGO = [
+    '   ██████╗ ███████╗██████╗ ',
+    '  ██╔════╝ ██╔════╝██╔══██╗',
+    '  ██║  ███╗███████╗██║  ██║',
+    '  ██║   ██║╚════██║██║  ██║',
+    '  ╚██████╔╝███████║██████╔╝',
+    '   ╚═════╝ ╚══════╝╚═════╝ ',
+];
+/**
+ * Render the logo block with a color function applied to each line.
+ *
+ * @param color — e.g. `(s) => `\x1b[36m${s}\x1b[0m`` or picocolors.cyan
+ * @returns Ready-to-write string with leading/trailing newlines.
+ */
+export function renderLogo(color) {
+    return '\n' + GSD_LOGO.map(color).join('\n') + '\n';
+}

package/dist/onboarding.d.ts

@@ -0,0 +1,43 @@
+/**
+ * Unified first-run onboarding wizard.
+ *
+ * Replaces the raw API-key-only wizard with a branded, clack-based experience
+ * that guides users through LLM provider authentication before the TUI launches.
+ *
+ * Flow: logo → choose LLM provider → authenticate (OAuth or API key) →
+ *       optional tool keys → summary → TUI launches.
+ *
+ * All steps are skippable. All errors are recoverable. Never crashes boot.
+ */
+import type { AuthStorage } from '@mariozechner/pi-coding-agent';
+/**
+ * Determine if the onboarding wizard should run.
+ *
+ * Returns true when:
+ * - No LLM provider has credentials in authStorage
+ * - We're on a TTY (interactive terminal)
+ *
+ * Returns false (skip wizard) when:
+ * - Any LLM provider is already authed (returning user)
+ * - Not a TTY (piped input, subagent, CI)
+ */
+export declare function shouldRunOnboarding(authStorage: AuthStorage): boolean;
+/**
+ * Run the unified onboarding wizard.
+ *
+ * Walks the user through:
+ * 1. Choose LLM provider
+ * 2. Authenticate (OAuth or API key)
+ * 3. Optional tool API keys
+ * 4. Summary
+ *
+ * All steps are skippable. All errors are recoverable.
+ * Writes status to stderr during execution.
+ */
+export declare function runOnboarding(authStorage: AuthStorage): Promise<void>;
+/**
+ * Hydrate process.env from stored auth.json credentials for optional tool keys.
+ * Runs on every launch so extensions see Brave/Context7/Jina keys stored via the
+ * wizard on prior launches.
+ */
+export declare function loadStoredEnvKeys(authStorage: AuthStorage): void;

package/dist/onboarding.js

@@ -0,0 +1,425 @@
+/**
+ * Unified first-run onboarding wizard.
+ *
+ * Replaces the raw API-key-only wizard with a branded, clack-based experience
+ * that guides users through LLM provider authentication before the TUI launches.
+ *
+ * Flow: logo → choose LLM provider → authenticate (OAuth or API key) →
+ *       optional tool keys → summary → TUI launches.
+ *
+ * All steps are skippable. All errors are recoverable. Never crashes boot.
+ */
+import { exec } from 'node:child_process';
+import { renderLogo } from './logo.js';
+// ─── Constants ────────────────────────────────────────────────────────────────
+const TOOL_KEYS = [
+    {
+        provider: 'brave',
+        envVar: 'BRAVE_API_KEY',
+        label: 'Brave Search',
+        hint: 'web search + search_and_read tools',
+    },
+    {
+        provider: 'brave_answers',
+        envVar: 'BRAVE_ANSWERS_KEY',
+        label: 'Brave Answers',
+        hint: 'AI-summarised search answers',
+    },
+    {
+        provider: 'context7',
+        envVar: 'CONTEXT7_API_KEY',
+        label: 'Context7',
+        hint: 'up-to-date library docs',
+    },
+    {
+        provider: 'jina',
+        envVar: 'JINA_API_KEY',
+        label: 'Jina AI',
+        hint: 'clean web page extraction',
+    },
+    {
+        provider: 'slack_bot',
+        envVar: 'SLACK_BOT_TOKEN',
+        label: 'Slack Bot',
+        hint: 'remote questions in auto-mode',
+    },
+    {
+        provider: 'discord_bot',
+        envVar: 'DISCORD_BOT_TOKEN',
+        label: 'Discord Bot',
+        hint: 'remote questions in auto-mode',
+    },
+];
+/** Known LLM provider IDs that, if authed, mean the user doesn't need onboarding */
+const LLM_PROVIDER_IDS = [
+    'anthropic',
+    'openai',
+    'github-copilot',
+    'openai-codex',
+    'google-gemini-cli',
+    'google-antigravity',
+    'google',
+    'groq',
+    'xai',
+    'openrouter',
+    'mistral',
+];
+/** API key prefix validation — loose checks to catch obvious mistakes */
+const API_KEY_PREFIXES = {
+    anthropic: ['sk-ant-'],
+    openai: ['sk-'],
+};
+// ─── Dynamic imports ──────────────────────────────────────────────────────────
+/**
+ * Dynamically import @clack/prompts and picocolors.
+ * These are transitive dependencies — they exist in node_modules but are not
+ * in our direct dependencies. We use dynamic import with a fallback so the
+ * module doesn't crash if they're missing.
+ */
+async function loadClack() {
+    try {
+        return await import('@clack/prompts');
+    }
+    catch {
+        throw new Error('[gsd] @clack/prompts not found — onboarding wizard requires this dependency');
+    }
+}
+async function loadPico() {
+    try {
+        return await import('picocolors');
+    }
+    catch {
+        // Fallback: return identity functions
+        const identity = (s) => s;
+        return {
+            default: { cyan: identity, green: identity, yellow: identity, dim: identity, bold: identity, red: identity, reset: identity },
+            cyan: identity, green: identity, yellow: identity, dim: identity, bold: identity, red: identity, reset: identity,
+        };
+    }
+}
+// ─── Utilities ────────────────────────────────────────────────────────────────
+/** Open a URL in the system browser (best-effort, non-blocking) */
+function openBrowser(url) {
+    const cmd = process.platform === 'darwin' ? 'open' :
+        process.platform === 'win32' ? 'start' :
+            'xdg-open';
+    exec(`${cmd} "${url}"`, () => {
+        // Ignore errors — user can manually open the URL
+    });
+}
+// ─── Public API ───────────────────────────────────────────────────────────────
+/**
+ * Determine if the onboarding wizard should run.
+ *
+ * Returns true when:
+ * - No LLM provider has credentials in authStorage
+ * - We're on a TTY (interactive terminal)
+ *
+ * Returns false (skip wizard) when:
+ * - Any LLM provider is already authed (returning user)
+ * - Not a TTY (piped input, subagent, CI)
+ */
+export function shouldRunOnboarding(authStorage) {
+    if (!process.stdin.isTTY)
+        return false;
+    // Check if any LLM provider has credentials
+    const authedProviders = authStorage.list();
+    const hasLlmAuth = authedProviders.some(id => LLM_PROVIDER_IDS.includes(id));
+    return !hasLlmAuth;
+}
+/**
+ * Run the unified onboarding wizard.
+ *
+ * Walks the user through:
+ * 1. Choose LLM provider
+ * 2. Authenticate (OAuth or API key)
+ * 3. Optional tool API keys
+ * 4. Summary
+ *
+ * All steps are skippable. All errors are recoverable.
+ * Writes status to stderr during execution.
+ */
+export async function runOnboarding(authStorage) {
+    let p;
+    let pc;
+    try {
+        ;
+        [p, pc] = await Promise.all([loadClack(), loadPico()]);
+    }
+    catch (err) {
+        // If clack isn't available, fall back silently — don't block boot
+        process.stderr.write(`[gsd] Onboarding wizard unavailable: ${err instanceof Error ? err.message : String(err)}\n`);
+        return;
+    }
+    // ── Intro ─────────────────────────────────────────────────────────────────
+    process.stderr.write(renderLogo(pc.cyan));
+    p.intro(pc.bold('Welcome to GSD — let\'s get you set up'));
+    // ── LLM Provider Selection ────────────────────────────────────────────────
+    let llmConfigured = false;
+    let llmProviderName = '';
+    try {
+        llmConfigured = await runLlmStep(p, pc, authStorage);
+    }
+    catch (err) {
+        // User cancelled (Ctrl+C in clack throws) or unexpected error
+        if (isCancelError(p, err)) {
+            p.cancel('Setup cancelled — you can run /login inside GSD later.');
+            return;
+        }
+        p.log.warn(`LLM setup failed: ${err instanceof Error ? err.message : String(err)}`);
+        p.log.info('You can configure your LLM provider later with /login inside GSD.');
+    }
+    // ── Tool API Keys ─────────────────────────────────────────────────────────
+    let toolKeyCount = 0;
+    try {
+        toolKeyCount = await runToolKeysStep(p, pc, authStorage);
+    }
+    catch (err) {
+        if (isCancelError(p, err)) {
+            p.cancel('Setup cancelled.');
+            return;
+        }
+        p.log.warn(`Tool key setup failed: ${err instanceof Error ? err.message : String(err)}`);
+    }
+    // ── Summary ───────────────────────────────────────────────────────────────
+    const summaryLines = [];
+    if (llmConfigured) {
+        // Re-read what provider was stored
+        const authed = authStorage.list().filter(id => LLM_PROVIDER_IDS.includes(id));
+        if (authed.length > 0) {
+            const name = authed[0];
+            summaryLines.push(`${pc.green('✓')} LLM provider: ${name}`);
+        }
+        else {
+            summaryLines.push(`${pc.green('✓')} LLM provider configured`);
+        }
+    }
+    else {
+        summaryLines.push(`${pc.yellow('↷')} LLM provider: skipped — use /login inside GSD`);
+    }
+    if (toolKeyCount > 0) {
+        summaryLines.push(`${pc.green('✓')} ${toolKeyCount} tool key${toolKeyCount > 1 ? 's' : ''} saved`);
+    }
+    else {
+        summaryLines.push(`${pc.dim('↷')} Tool keys: none configured`);
+    }
+    p.note(summaryLines.join('\n'), 'Setup complete');
+    p.outro(pc.dim('Launching GSD...'));
+}
+// ─── LLM Authentication Step ──────────────────────────────────────────────────
+async function runLlmStep(p, pc, authStorage) {
+    // Build the OAuth provider list dynamically from what's registered
+    const oauthProviders = authStorage.getOAuthProviders();
+    const oauthMap = new Map(oauthProviders.map(op => [op.id, op]));
+    const choice = await p.select({
+        message: 'Choose your LLM provider',
+        options: [
+            { value: 'anthropic-oauth', label: 'Anthropic — Claude (OAuth login)', hint: 'recommended' },
+            { value: 'anthropic-api-key', label: 'Anthropic — Claude (API key)' },
+            { value: 'openai-api-key', label: 'OpenAI (API key)' },
+            { value: 'github-copilot-oauth', label: 'GitHub Copilot (OAuth login)' },
+            { value: 'openai-codex-oauth', label: 'ChatGPT Plus/Pro — Codex (OAuth login)' },
+            { value: 'google-gemini-cli-oauth', label: 'Google Gemini CLI (OAuth login)' },
+            { value: 'google-antigravity-oauth', label: 'Antigravity — Gemini 3, Claude, GPT-OSS (OAuth login)' },
+            { value: 'other-api-key', label: 'Other provider (API key)' },
+            { value: 'skip', label: 'Skip for now', hint: 'use /login inside GSD later' },
+        ],
+    });
+    if (p.isCancel(choice) || choice === 'skip')
+        return false;
+    // ── OAuth flows ───────────────────────────────────────────────────────────
+    if (choice === 'anthropic-oauth') {
+        return await runOAuthFlow(p, pc, authStorage, 'anthropic', oauthMap);
+    }
+    if (choice === 'github-copilot-oauth') {
+        return await runOAuthFlow(p, pc, authStorage, 'github-copilot', oauthMap);
+    }
+    if (choice === 'openai-codex-oauth') {
+        return await runOAuthFlow(p, pc, authStorage, 'openai-codex', oauthMap);
+    }
+    if (choice === 'google-gemini-cli-oauth') {
+        return await runOAuthFlow(p, pc, authStorage, 'google-gemini-cli', oauthMap);
+    }
+    if (choice === 'google-antigravity-oauth') {
+        return await runOAuthFlow(p, pc, authStorage, 'google-antigravity', oauthMap);
+    }
+    // ── API key flows ─────────────────────────────────────────────────────────
+    if (choice === 'anthropic-api-key') {
+        return await runApiKeyFlow(p, pc, authStorage, 'anthropic', 'Anthropic');
+    }
+    if (choice === 'openai-api-key') {
+        return await runApiKeyFlow(p, pc, authStorage, 'openai', 'OpenAI');
+    }
+    if (choice === 'other-api-key') {
+        return await runOtherProviderFlow(p, pc, authStorage);
+    }
+    return false;
+}
+// ─── OAuth Flow ───────────────────────────────────────────────────────────────
+async function runOAuthFlow(p, pc, authStorage, providerId, oauthMap) {
+    const providerInfo = oauthMap.get(providerId);
+    const providerName = providerInfo?.name ?? providerId;
+    const usesCallbackServer = providerInfo?.usesCallbackServer ?? false;
+    const s = p.spinner();
+    s.start(`Authenticating with ${providerName}...`);
+    try {
+        await authStorage.login(providerId, {
+            onAuth: (info) => {
+                s.stop(`Opening browser for ${providerName}`);
+                openBrowser(info.url);
+                p.log.info(`${pc.dim('URL:')} ${pc.cyan(info.url)}`);
+                if (info.instructions) {
+                    p.log.info(pc.yellow(info.instructions));
+                }
+            },
+            onPrompt: async (prompt) => {
+                const result = await p.text({
+                    message: prompt.message,
+                    placeholder: prompt.placeholder,
+                });
+                if (p.isCancel(result))
+                    return '';
+                return result;
+            },
+            onProgress: (message) => {
+                p.log.step(pc.dim(message));
+            },
+            onManualCodeInput: usesCallbackServer
+                ? async () => {
+                    const result = await p.text({
+                        message: 'Paste the redirect URL from your browser:',
+                        placeholder: 'http://localhost:...',
+                    });
+                    if (p.isCancel(result))
+                        return '';
+                    return result;
+                }
+                : undefined,
+        });
+        p.log.success(`Authenticated with ${pc.green(providerName)}`);
+        return true;
+    }
+    catch (err) {
+        s.stop(`${providerName} authentication failed`);
+        const errorMsg = err instanceof Error ? err.message : String(err);
+        p.log.warn(`OAuth error: ${errorMsg}`);
+        // Offer retry or skip
+        const retry = await p.select({
+            message: 'What would you like to do?',
+            options: [
+                { value: 'retry', label: 'Try again' },
+                { value: 'skip', label: 'Skip — configure later with /login' },
+            ],
+        });
+        if (p.isCancel(retry) || retry === 'skip')
+            return false;
+        // Recursive retry
+        return runOAuthFlow(p, pc, authStorage, providerId, oauthMap);
+    }
+}
+// ─── API Key Flow ─────────────────────────────────────────────────────────────
+async function runApiKeyFlow(p, pc, authStorage, providerId, providerLabel) {
+    const key = await p.password({
+        message: `Paste your ${providerLabel} API key:`,
+        mask: '●',
+    });
+    if (p.isCancel(key) || !key)
+        return false;
+    const trimmed = key.trim();
+    if (!trimmed)
+        return false;
+    // Basic prefix validation
+    const expectedPrefixes = API_KEY_PREFIXES[providerId];
+    if (expectedPrefixes && !expectedPrefixes.some(pfx => trimmed.startsWith(pfx))) {
+        p.log.warn(`Key doesn't start with expected prefix (${expectedPrefixes.join(' or ')}). Saving anyway.`);
+    }
+    authStorage.set(providerId, { type: 'api_key', key: trimmed });
+    p.log.success(`API key saved for ${pc.green(providerLabel)}`);
+    return true;
+}
+// ─── "Other Provider" Sub-Flow ────────────────────────────────────────────────
+const OTHER_PROVIDERS = [
+    { value: 'google', label: 'Google (Gemini)' },
+    { value: 'groq', label: 'Groq' },
+    { value: 'xai', label: 'xAI (Grok)' },
+    { value: 'openrouter', label: 'OpenRouter' },
+    { value: 'mistral', label: 'Mistral' },
+];
+async function runOtherProviderFlow(p, pc, authStorage) {
+    const provider = await p.select({
+        message: 'Select provider',
+        options: OTHER_PROVIDERS.map(op => ({
+            value: op.value,
+            label: op.label,
+        })),
+    });
+    if (p.isCancel(provider))
+        return false;
+    const label = OTHER_PROVIDERS.find(op => op.value === provider)?.label ?? String(provider);
+    return runApiKeyFlow(p, pc, authStorage, provider, label);
+}
+// ─── Tool API Keys Step ───────────────────────────────────────────────────────
+async function runToolKeysStep(p, pc, authStorage) {
+    // Filter to keys not already configured
+    const missing = TOOL_KEYS.filter(tk => !authStorage.has(tk.provider) && !process.env[tk.envVar]);
+    if (missing.length === 0)
+        return 0;
+    const wantToolKeys = await p.confirm({
+        message: 'Set up optional tool API keys? (web search, docs, etc.)',
+        initialValue: false,
+    });
+    if (p.isCancel(wantToolKeys) || !wantToolKeys)
+        return 0;
+    let savedCount = 0;
+    for (const tk of missing) {
+        const key = await p.password({
+            message: `${tk.label} ${pc.dim(`(${tk.hint})`)} — Enter to skip:`,
+            mask: '●',
+        });
+        if (p.isCancel(key))
+            break;
+        const trimmed = key?.trim();
+        if (trimmed) {
+            authStorage.set(tk.provider, { type: 'api_key', key: trimmed });
+            process.env[tk.envVar] = trimmed;
+            p.log.success(`${tk.label} saved`);
+            savedCount++;
+        }
+        else {
+            // Store empty key so wizard doesn't re-ask on next launch
+            authStorage.set(tk.provider, { type: 'api_key', key: '' });
+            p.log.info(pc.dim(`${tk.label} skipped`));
+        }
+    }
+    return savedCount;
+}
+// ─── Helpers ──────────────────────────────────────────────────────────────────
+/** Check if an error is a clack cancel signal */
+function isCancelError(p, err) {
+    // Clack throws a symbol when the user cancels (Ctrl+C)
+    return p.isCancel(err);
+}
+// ─── Env hydration (migrated from wizard.ts) ─────────────────────────────────
+/**
+ * Hydrate process.env from stored auth.json credentials for optional tool keys.
+ * Runs on every launch so extensions see Brave/Context7/Jina keys stored via the
+ * wizard on prior launches.
+ */
+export function loadStoredEnvKeys(authStorage) {
+    const providers = [
+        ['brave', 'BRAVE_API_KEY'],
+        ['brave_answers', 'BRAVE_ANSWERS_KEY'],
+        ['context7', 'CONTEXT7_API_KEY'],
+        ['jina', 'JINA_API_KEY'],
+        ['slack_bot', 'SLACK_BOT_TOKEN'],
+        ['discord_bot', 'DISCORD_BOT_TOKEN'],
+    ];
+    for (const [provider, envVar] of providers) {
+        if (!process.env[envVar]) {
+            const cred = authStorage.get(provider);
+            if (cred?.type === 'api_key' && cred.key) {
+                process.env[envVar] = cred.key;
+            }
+        }
+    }
+}

package/dist/wizard.js

@@ -81,6 +81,7 @@ export function loadStoredEnvKeys(authStorage) {
         ['brave_answers', 'BRAVE_ANSWERS_KEY'],
         ['context7', 'CONTEXT7_API_KEY'],
         ['jina', 'JINA_API_KEY'],
+        ['tavily', 'TAVILY_API_KEY'],
         ['slack_bot', 'SLACK_BOT_TOKEN'],
         ['discord_bot', 'DISCORD_BOT_TOKEN'],
     ];
@@ -122,6 +123,13 @@ const API_KEYS = [
         hint: '(clean page extraction)',
         description: 'High-quality web page content extraction',
     },
+    {
+        provider: 'tavily',
+        envVar: 'TAVILY_API_KEY',
+        label: 'Tavily Search',
+        hint: '(search-the-web + search_and_read tools, starts with tvly-)',
+        description: 'Web search and page extraction (alternative to Brave)',
+    },
     {
         provider: 'slack_bot',
         envVar: 'SLACK_BOT_TOKEN',

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "gsd-pi",
-  "version": "2.3.8",
+  "version": "2.3.9",
   "description": "GSD — Get Shit Done coding agent",
   "license": "MIT",
   "repository": {