gsd-pi 2.30.0-dev.54ac83b → 2.30.0-dev.92a3417

package/dist/resources/extensions/aws-auth/index.ts

@@ -1,144 +0,0 @@
-/**
- * AWS Auth Refresh Extension
- *
- * Automatically refreshes AWS credentials when Bedrock API requests fail
- * with authentication/token errors, then retries the user's message.
- *
- * ## How it works
- *
- * Hooks into `agent_end` to check if the last assistant message failed with
- * an AWS auth error (expired SSO token, missing credentials, etc.). If so:
- *
- *   1. Runs the configured `awsAuthRefresh` command (e.g. `aws sso login`)
- *   2. Streams the SSO auth URL and verification code to the TUI so users
- *      can copy/paste if the browser doesn't auto-open
- *   3. Calls `retryLastTurn()` which removes the failed assistant response
- *      and re-runs the agent from the user's original message
- *
- * ## Activation
- *
- * This extension is completely inert unless BOTH conditions are met:
- *   1. A Bedrock API request fails with a recognized AWS auth error
- *   2. `awsAuthRefresh` is configured in settings.json
- *
- * Non-Bedrock users and Bedrock users without `awsAuthRefresh` configured
- * are not affected in any way.
- *
- * ## Setup
- *
- * Add to ~/.gsd/agent/settings.json (or project-level .gsd/settings.json):
- *
- *   { "awsAuthRefresh": "aws sso login --profile my-profile" }
- *
- * ## Matched error patterns
- *
- * The extension recognizes errors from the AWS SDK, Bedrock, and SSO
- * credential providers including:
- *   - ExpiredTokenException / ExpiredToken
- *   - The security token included in the request is expired
- *   - The SSO session associated with this profile has expired or is invalid
- *   - Unable to locate credentials / Could not load credentials
- *   - UnrecognizedClientException
- *   - Error loading SSO Token / Token does not exist
- *   - SSOTokenProviderFailure
- */
-
-import { exec } from "node:child_process";
-import { existsSync, readFileSync } from "node:fs";
-import { join } from "node:path";
-import { homedir } from "node:os";
-import type { ExtensionAPI } from "@gsd/pi-coding-agent";
-
-/** Matches AWS SDK / Bedrock / SSO credential and token errors. */
-const AWS_AUTH_ERROR_RE =
-	/ExpiredToken|security token.*expired|unable to locate credentials|SSO.*(?:session|token).*(?:expired|not found|invalid)|UnrecognizedClient|Could not load credentials|Invalid identity token|token is expired|credentials.*(?:could not|cannot|failed to).*(?:load|resolve|find)|The.*token.*is.*not.*valid|token has expired|SSOTokenProviderFailure|Error loading SSO Token|Token.*does not exist/i;
-
-/**
- * Reads the `awsAuthRefresh` command from settings.json.
- * Checks project-level first, then global (~/.gsd/agent/settings.json).
- */
-function getAwsAuthRefreshCommand(): string | undefined {
-	const configDir = process.env.PI_CONFIG_DIR || ".gsd";
-	const paths = [
-		join(process.cwd(), configDir, "settings.json"),
-		join(homedir(), configDir, "agent", "settings.json"),
-	];
-	for (const settingsPath of paths) {
-		if (!existsSync(settingsPath)) continue;
-		try {
-			const settings = JSON.parse(readFileSync(settingsPath, "utf-8"));
-			if (settings.awsAuthRefresh) return settings.awsAuthRefresh;
-		} catch {}
-	}
-	return undefined;
-}
-
-/**
- * Runs the refresh command with a 2-minute timeout (for SSO browser flows).
- * Streams stdout/stderr to capture and display the SSO auth URL and
- * verification code in real-time via TUI notifications.
- */
-async function runRefresh(
-	command: string,
-	notify: (msg: string, level: "info" | "warning" | "error") => void,
-): Promise<boolean> {
-	notify("Refreshing AWS credentials...", "info");
-	try {
-		await new Promise<void>((resolve, reject) => {
-			const child = exec(command, { timeout: 120_000, env: { ...process.env } });
-			const onData = (data: Buffer | string) => {
-				const text = data.toString();
-				const urlMatch = text.match(/https?:\/\/\S+/);
-				if (urlMatch) {
-					notify(`Open this URL if the browser didn't launch: ${urlMatch[0]}`, "warning");
-				}
-				const codeMatch = text.match(/code[:\s]+([A-Z]{4}-[A-Z]{4})/i);
-				if (codeMatch) {
-					notify(`Verification code: ${codeMatch[1]}`, "info");
-				}
-			};
-			child.stdout?.on("data", onData);
-			child.stderr?.on("data", onData);
-			child.on("close", (code) => {
-				if (code === 0) resolve();
-				else reject(new Error(`Refresh command exited with code ${code}`));
-			});
-			child.on("error", reject);
-		});
-		notify("AWS credentials refreshed successfully ✓", "info");
-		return true;
-	} catch (error) {
-		const msg = error instanceof Error ? error.message : String(error);
-		const isTimeout = /timed out|ETIMEDOUT|killed/i.test(msg);
-		if (isTimeout) {
-			notify("AWS credential refresh timed out. The SSO login may have been cancelled or the browser window was closed.", "error");
-		} else {
-			notify(`AWS credential refresh failed: ${msg}`, "error");
-		}
-		return false;
-	}
-}
-
-export default function (pi: ExtensionAPI) {
-	pi.on("agent_end", async (event, ctx) => {
-		const refreshCommand = getAwsAuthRefreshCommand();
-		if (!refreshCommand) return;
-
-		const messages = event.messages;
-		const lastAssistant = messages[messages.length - 1];
-		if (
-			!lastAssistant ||
-			lastAssistant.role !== "assistant" ||
-			!("errorMessage" in lastAssistant) ||
-			!lastAssistant.errorMessage ||
-			!AWS_AUTH_ERROR_RE.test(lastAssistant.errorMessage)
-		) {
-			return;
-		}
-
-		const refreshed = await runRefresh(refreshCommand, (m, level) => ctx.ui.notify(m, level));
-		if (!refreshed) return;
-
-		pi.retryLastTurn();
-	});
-}

package/dist/worktree-cli.d.ts

@@ -1,34 +0,0 @@
-/**
- * GSD Worktree CLI — standalone subcommand and -w flag handling.
- *
- * Manages the full worktree lifecycle from the command line:
- *   gsd -w                    Create auto-named worktree, start interactive session
- *   gsd -w my-feature         Create/resume named worktree
- *   gsd worktree list         List worktrees with status
- *   gsd worktree merge [name] Squash-merge a worktree into main
- *   gsd worktree clean        Remove all merged/empty worktrees
- *   gsd worktree remove <n>   Remove a specific worktree
- *
- * On session exit (via session_shutdown event), auto-commits dirty work
- * so nothing is lost. The GSD extension reads GSD_CLI_WORKTREE to know
- * when a session was launched via -w.
- */
-interface WorktreeStatus {
-    name: string;
-    path: string;
-    branch: string;
-    exists: boolean;
-    filesChanged: number;
-    linesAdded: number;
-    linesRemoved: number;
-    uncommitted: boolean;
-    commits: number;
-}
-declare function getWorktreeStatus(basePath: string, name: string, wtPath: string): WorktreeStatus;
-declare function handleList(basePath: string): void;
-declare function handleMerge(basePath: string, args: string[]): Promise<void>;
-declare function handleClean(basePath: string): void;
-declare function handleRemove(basePath: string, args: string[]): void;
-declare function handleStatusBanner(basePath: string): void;
-declare function handleWorktreeFlag(worktreeFlag: boolean | string): void;
-export { handleList, handleMerge, handleClean, handleRemove, handleStatusBanner, handleWorktreeFlag, getWorktreeStatus, };

package/dist/worktree-cli.js

@@ -1,294 +0,0 @@
-/**
- * GSD Worktree CLI — standalone subcommand and -w flag handling.
- *
- * Manages the full worktree lifecycle from the command line:
- *   gsd -w                    Create auto-named worktree, start interactive session
- *   gsd -w my-feature         Create/resume named worktree
- *   gsd worktree list         List worktrees with status
- *   gsd worktree merge [name] Squash-merge a worktree into main
- *   gsd worktree clean        Remove all merged/empty worktrees
- *   gsd worktree remove <n>   Remove a specific worktree
- *
- * On session exit (via session_shutdown event), auto-commits dirty work
- * so nothing is lost. The GSD extension reads GSD_CLI_WORKTREE to know
- * when a session was launched via -w.
- */
-import chalk from 'chalk';
-import { createWorktree, listWorktrees, removeWorktree, mergeWorktreeToMain, diffWorktreeAll, diffWorktreeNumstat, worktreeBranchName, } from './resources/extensions/gsd/worktree-manager.js';
-import { runWorktreePostCreateHook } from './resources/extensions/gsd/auto-worktree.js';
-import { generateWorktreeName } from './worktree-name-gen.js';
-import { nativeHasChanges, nativeDetectMainBranch, nativeCommitCountBetween, } from './resources/extensions/gsd/native-git-bridge.js';
-import { inferCommitType } from './resources/extensions/gsd/git-service.js';
-import { existsSync } from 'node:fs';
-// ─── Status Helpers ─────────────────────────────────────────────────────────
-function getWorktreeStatus(basePath, name, wtPath) {
-    const diff = diffWorktreeAll(basePath, name);
-    const numstat = diffWorktreeNumstat(basePath, name);
-    const filesChanged = diff.added.length + diff.modified.length + diff.removed.length;
-    let linesAdded = 0;
-    let linesRemoved = 0;
-    for (const s of numstat) {
-        linesAdded += s.added;
-        linesRemoved += s.removed;
-    }
-    let uncommitted = false;
-    try {
-        uncommitted = existsSync(wtPath) && nativeHasChanges(wtPath);
-    }
-    catch { /* */ }
-    let commits = 0;
-    try {
-        const mainBranch = nativeDetectMainBranch(basePath);
-        commits = nativeCommitCountBetween(basePath, mainBranch, worktreeBranchName(name));
-    }
-    catch { /* */ }
-    return {
-        name,
-        path: wtPath,
-        branch: worktreeBranchName(name),
-        exists: existsSync(wtPath),
-        filesChanged,
-        linesAdded,
-        linesRemoved,
-        uncommitted,
-        commits,
-    };
-}
-// ─── Formatters ─────────────────────────────────────────────────────────────
-function formatStatus(s) {
-    const lines = [];
-    const badge = s.uncommitted
-        ? chalk.yellow(' (uncommitted)')
-        : s.filesChanged > 0
-            ? chalk.cyan(' (unmerged)')
-            : chalk.green(' (clean)');
-    lines.push(`  ${chalk.bold.cyan(s.name)}${badge}`);
-    lines.push(`    ${chalk.dim('branch')}  ${chalk.magenta(s.branch)}`);
-    lines.push(`    ${chalk.dim('path')}    ${chalk.dim(s.path)}`);
-    if (s.filesChanged > 0) {
-        lines.push(`    ${chalk.dim('diff')}    ${s.filesChanged} files, ${chalk.green(`+${s.linesAdded}`)} ${chalk.red(`-${s.linesRemoved}`)}, ${s.commits} commit${s.commits === 1 ? '' : 's'}`);
-    }
-    return lines.join('\n');
-}
-// ─── Subcommand: list ───────────────────────────────────────────────────────
-function handleList(basePath) {
-    const worktrees = listWorktrees(basePath);
-    if (worktrees.length === 0) {
-        process.stderr.write(chalk.dim('No worktrees. Create one with: gsd -w <name>\n'));
-        return;
-    }
-    process.stderr.write(chalk.bold('\nWorktrees\n\n'));
-    for (const wt of worktrees) {
-        const status = getWorktreeStatus(basePath, wt.name, wt.path);
-        process.stderr.write(formatStatus(status) + '\n\n');
-    }
-}
-// ─── Subcommand: merge ──────────────────────────────────────────────────────
-async function handleMerge(basePath, args) {
-    const name = args[0];
-    if (!name) {
-        // If only one worktree exists, merge it
-        const worktrees = listWorktrees(basePath);
-        if (worktrees.length === 1) {
-            await doMerge(basePath, worktrees[0].name);
-            return;
-        }
-        process.stderr.write(chalk.red('Usage: gsd worktree merge <name>\n'));
-        process.stderr.write(chalk.dim('Run gsd worktree list to see worktrees.\n'));
-        process.exit(1);
-    }
-    await doMerge(basePath, name);
-}
-async function doMerge(basePath, name) {
-    const worktrees = listWorktrees(basePath);
-    const wt = worktrees.find(w => w.name === name);
-    if (!wt) {
-        process.stderr.write(chalk.red(`Worktree "${name}" not found.\n`));
-        process.exit(1);
-    }
-    const status = getWorktreeStatus(basePath, name, wt.path);
-    if (status.filesChanged === 0 && !status.uncommitted) {
-        process.stderr.write(chalk.dim(`Worktree "${name}" has no changes to merge.\n`));
-        // Clean up empty worktree
-        removeWorktree(basePath, name, { deleteBranch: true });
-        process.stderr.write(chalk.green(`Removed empty worktree ${chalk.bold(name)}.\n`));
-        return;
-    }
-    // Auto-commit dirty work before merge
-    if (status.uncommitted) {
-        try {
-            const { autoCommitCurrentBranch } = await import('./resources/extensions/gsd/worktree.js');
-            autoCommitCurrentBranch(wt.path, 'worktree-merge', name);
-            process.stderr.write(chalk.dim('  Auto-committed dirty work before merge.\n'));
-        }
-        catch { /* best-effort */ }
-    }
-    const commitType = inferCommitType(name);
-    const commitMessage = `${commitType}(${name}): merge worktree ${name}`;
-    process.stderr.write(`\nMerging ${chalk.bold.cyan(name)} → ${chalk.magenta(nativeDetectMainBranch(basePath))}\n`);
-    process.stderr.write(chalk.dim(`  ${status.filesChanged} files, ${chalk.green(`+${status.linesAdded}`)} ${chalk.red(`-${status.linesRemoved}`)}\n\n`));
-    try {
-        mergeWorktreeToMain(basePath, name, commitMessage);
-        removeWorktree(basePath, name, { deleteBranch: true });
-        process.stderr.write(chalk.green(`✓ Merged and cleaned up ${chalk.bold(name)}\n`));
-        process.stderr.write(chalk.dim(`  commit: ${commitMessage}\n`));
-    }
-    catch (err) {
-        const msg = err instanceof Error ? err.message : String(err);
-        process.stderr.write(chalk.red(`✗ Merge failed: ${msg}\n`));
-        process.stderr.write(chalk.dim('  Resolve conflicts manually, then run gsd worktree merge again.\n'));
-        process.exit(1);
-    }
-}
-// ─── Subcommand: clean ──────────────────────────────────────────────────────
-function handleClean(basePath) {
-    const worktrees = listWorktrees(basePath);
-    if (worktrees.length === 0) {
-        process.stderr.write(chalk.dim('No worktrees to clean.\n'));
-        return;
-    }
-    let cleaned = 0;
-    for (const wt of worktrees) {
-        const status = getWorktreeStatus(basePath, wt.name, wt.path);
-        if (status.filesChanged === 0 && !status.uncommitted) {
-            try {
-                removeWorktree(basePath, wt.name, { deleteBranch: true });
-                process.stderr.write(chalk.green(`  ✓ Removed ${chalk.bold(wt.name)} (clean)\n`));
-                cleaned++;
-            }
-            catch {
-                process.stderr.write(chalk.yellow(`  ✗ Failed to remove ${wt.name}\n`));
-            }
-        }
-        else {
-            process.stderr.write(chalk.dim(`  ─ Kept ${chalk.bold(wt.name)} (${status.filesChanged} changed files)\n`));
-        }
-    }
-    process.stderr.write(chalk.dim(`\nCleaned ${cleaned} worktree${cleaned === 1 ? '' : 's'}.\n`));
-}
-// ─── Subcommand: remove ─────────────────────────────────────────────────────
-function handleRemove(basePath, args) {
-    const name = args[0];
-    if (!name) {
-        process.stderr.write(chalk.red('Usage: gsd worktree remove <name>\n'));
-        process.exit(1);
-    }
-    const worktrees = listWorktrees(basePath);
-    const wt = worktrees.find(w => w.name === name);
-    if (!wt) {
-        process.stderr.write(chalk.red(`Worktree "${name}" not found.\n`));
-        process.exit(1);
-    }
-    const status = getWorktreeStatus(basePath, name, wt.path);
-    if (status.filesChanged > 0 || status.uncommitted) {
-        process.stderr.write(chalk.yellow(`⚠ Worktree "${name}" has unmerged changes (${status.filesChanged} files).\n`));
-        process.stderr.write(chalk.yellow('  Use --force to remove anyway, or merge first: gsd worktree merge ' + name + '\n'));
-        if (!process.argv.includes('--force')) {
-            process.exit(1);
-        }
-    }
-    removeWorktree(basePath, name, { deleteBranch: true });
-    process.stderr.write(chalk.green(`✓ Removed worktree ${chalk.bold(name)}\n`));
-}
-// ─── Subcommand: status (default when no args) ─────────────────────────────
-function handleStatusBanner(basePath) {
-    const worktrees = listWorktrees(basePath);
-    if (worktrees.length === 0)
-        return;
-    const withChanges = worktrees.filter(wt => {
-        try {
-            const diff = diffWorktreeAll(basePath, wt.name);
-            return diff.added.length + diff.modified.length + diff.removed.length > 0;
-        }
-        catch {
-            return false;
-        }
-    });
-    if (withChanges.length === 0)
-        return;
-    const names = withChanges.map(w => chalk.cyan(w.name)).join(', ');
-    process.stderr.write(chalk.dim('[gsd] ') +
-        chalk.yellow(`${withChanges.length} worktree${withChanges.length === 1 ? '' : 's'} with unmerged changes: `) +
-        names + '\n' +
-        chalk.dim('[gsd] ') +
-        chalk.dim('Resume: gsd -w <name>  |  Merge: gsd worktree merge <name>  |  List: gsd worktree list\n\n'));
-}
-// ─── -w flag: create/resume worktree for interactive session ────────────────
-function handleWorktreeFlag(worktreeFlag) {
-    const basePath = process.cwd();
-    // gsd -w (no name) — resume most recent worktree with changes, or create new
-    if (worktreeFlag === true) {
-        const existing = listWorktrees(basePath);
-        const withChanges = existing.filter(wt => {
-            try {
-                const diff = diffWorktreeAll(basePath, wt.name);
-                return diff.added.length + diff.modified.length + diff.removed.length > 0;
-            }
-            catch {
-                return false;
-            }
-        });
-        if (withChanges.length === 1) {
-            // Single active worktree — resume it
-            const wt = withChanges[0];
-            process.chdir(wt.path);
-            process.env.GSD_CLI_WORKTREE = wt.name;
-            process.env.GSD_CLI_WORKTREE_BASE = basePath;
-            process.stderr.write(chalk.green(`✓ Resumed worktree ${chalk.bold(wt.name)}\n`));
-            process.stderr.write(chalk.dim(`  path   ${wt.path}\n`));
-            process.stderr.write(chalk.dim(`  branch ${wt.branch}\n\n`));
-            return;
-        }
-        if (withChanges.length > 1) {
-            // Multiple active worktrees — show them and ask user to pick
-            process.stderr.write(chalk.yellow(`${withChanges.length} worktrees have unmerged changes:\n\n`));
-            for (const wt of withChanges) {
-                const status = getWorktreeStatus(basePath, wt.name, wt.path);
-                process.stderr.write(formatStatus(status) + '\n\n');
-            }
-            process.stderr.write(chalk.dim('Specify which one: gsd -w <name>\n'));
-            process.exit(0);
-        }
-        // No active worktrees — create a new one
-        const name = generateWorktreeName();
-        createAndEnter(basePath, name);
-        return;
-    }
-    // gsd -w <name> — create or resume named worktree
-    const name = worktreeFlag;
-    const existing = listWorktrees(basePath);
-    const found = existing.find(wt => wt.name === name);
-    if (found) {
-        process.chdir(found.path);
-        process.env.GSD_CLI_WORKTREE = name;
-        process.env.GSD_CLI_WORKTREE_BASE = basePath;
-        process.stderr.write(chalk.green(`✓ Resumed worktree ${chalk.bold(name)}\n`));
-        process.stderr.write(chalk.dim(`  path   ${found.path}\n`));
-        process.stderr.write(chalk.dim(`  branch ${found.branch}\n\n`));
-    }
-    else {
-        createAndEnter(basePath, name);
-    }
-}
-function createAndEnter(basePath, name) {
-    try {
-        const info = createWorktree(basePath, name);
-        const hookError = runWorktreePostCreateHook(basePath, info.path);
-        if (hookError) {
-            process.stderr.write(chalk.yellow(`[gsd] ${hookError}\n`));
-        }
-        process.chdir(info.path);
-        process.env.GSD_CLI_WORKTREE = name;
-        process.env.GSD_CLI_WORKTREE_BASE = basePath;
-        process.stderr.write(chalk.green(`✓ Created worktree ${chalk.bold(name)}\n`));
-        process.stderr.write(chalk.dim(`  path   ${info.path}\n`));
-        process.stderr.write(chalk.dim(`  branch ${info.branch}\n\n`));
-    }
-    catch (err) {
-        const msg = err instanceof Error ? err.message : String(err);
-        process.stderr.write(chalk.red(`[gsd] Failed to create worktree: ${msg}\n`));
-        process.exit(1);
-    }
-}
-// ─── Exports ────────────────────────────────────────────────────────────────
-export { handleList, handleMerge, handleClean, handleRemove, handleStatusBanner, handleWorktreeFlag, getWorktreeStatus, };

package/dist/worktree-name-gen.d.ts

@@ -1,7 +0,0 @@
-/**
- * Random worktree name generator.
- *
- * Produces names in the pattern: adjective-verbing-noun
- * e.g. "noble-roaming-karp", "swift-whistling-matsumoto"
- */
-export declare function generateWorktreeName(): string;

package/dist/worktree-name-gen.js

@@ -1,44 +0,0 @@
-/**
- * Random worktree name generator.
- *
- * Produces names in the pattern: adjective-verbing-noun
- * e.g. "noble-roaming-karp", "swift-whistling-matsumoto"
- */
-const ADJECTIVES = [
-    'agile', 'bold', 'brave', 'bright', 'calm', 'clear', 'cool', 'crisp',
-    'dapper', 'eager', 'fair', 'fast', 'fierce', 'fine', 'fleet', 'fond',
-    'gentle', 'glad', 'grand', 'happy', 'keen', 'kind', 'lively', 'lucid',
-    'mellow', 'merry', 'mighty', 'neat', 'nimble', 'noble', 'plucky', 'polite',
-    'proud', 'quiet', 'rapid', 'ready', 'serene', 'sharp', 'sleek', 'sleepy',
-    'smooth', 'snappy', 'steady', 'sturdy', 'sunny', 'sure', 'swift', 'tidy',
-    'tough', 'tranquil', 'vivid', 'warm', 'wise', 'witty', 'zesty',
-];
-const VERBS = [
-    'baking', 'bouncing', 'building', 'carving', 'chasing', 'climbing',
-    'coding', 'crafting', 'dancing', 'dashing', 'diving', 'drawing',
-    'dreaming', 'drifting', 'drumming', 'exploring', 'fishing', 'floating',
-    'flying', 'forging', 'gliding', 'growing', 'hiking', 'humming',
-    'jumping', 'juggling', 'knitting', 'laughing', 'leaping', 'mapping',
-    'mixing', 'painting', 'planting', 'playing', 'racing', 'reading',
-    'riding', 'roaming', 'rowing', 'running', 'sailing', 'singing',
-    'skating', 'sketching', 'spinning', 'squishing', 'surfing', 'swimming',
-    'thinking', 'threading', 'tracing', 'walking', 'weaving', 'whistling',
-    'writing',
-];
-const NOUNS = [
-    'atlas', 'aurora', 'balloon', 'beacon', 'bolt', 'brook', 'canyon',
-    'cedar', 'comet', 'cook', 'coral', 'cosmos', 'crest', 'dawn', 'delta',
-    'echo', 'ember', 'falcon', 'fern', 'flare', 'frost', 'gale', 'glacier',
-    'grove', 'harbor', 'hawk', 'horizon', 'iris', 'jade', 'karp', 'lantern',
-    'lark', 'luna', 'maple', 'marsh', 'matsumoto', 'mesa', 'nebula', 'oasis',
-    'orbit', 'otter', 'pebble', 'phoenix', 'pine', 'prism', 'puppy', 'quartz',
-    'raven', 'reef', 'ridge', 'river', 'sage', 'shore', 'sierra', 'spark',
-    'sprout', 'stone', 'summit', 'thorn', 'tide', 'topaz', 'trail', 'vale',
-    'violet', 'wave', 'willow', 'zenith',
-];
-function pick(arr) {
-    return arr[Math.floor(Math.random() * arr.length)];
-}
-export function generateWorktreeName() {
-    return `${pick(ADJECTIVES)}-${pick(VERBS)}-${pick(NOUNS)}`;
-}

package/src/resources/extensions/aws-auth/index.ts

@@ -1,144 +0,0 @@
-/**
- * AWS Auth Refresh Extension
- *
- * Automatically refreshes AWS credentials when Bedrock API requests fail
- * with authentication/token errors, then retries the user's message.
- *
- * ## How it works
- *
- * Hooks into `agent_end` to check if the last assistant message failed with
- * an AWS auth error (expired SSO token, missing credentials, etc.). If so:
- *
- *   1. Runs the configured `awsAuthRefresh` command (e.g. `aws sso login`)
- *   2. Streams the SSO auth URL and verification code to the TUI so users
- *      can copy/paste if the browser doesn't auto-open
- *   3. Calls `retryLastTurn()` which removes the failed assistant response
- *      and re-runs the agent from the user's original message
- *
- * ## Activation
- *
- * This extension is completely inert unless BOTH conditions are met:
- *   1. A Bedrock API request fails with a recognized AWS auth error
- *   2. `awsAuthRefresh` is configured in settings.json
- *
- * Non-Bedrock users and Bedrock users without `awsAuthRefresh` configured
- * are not affected in any way.
- *
- * ## Setup
- *
- * Add to ~/.gsd/agent/settings.json (or project-level .gsd/settings.json):
- *
- *   { "awsAuthRefresh": "aws sso login --profile my-profile" }
- *
- * ## Matched error patterns
- *
- * The extension recognizes errors from the AWS SDK, Bedrock, and SSO
- * credential providers including:
- *   - ExpiredTokenException / ExpiredToken
- *   - The security token included in the request is expired
- *   - The SSO session associated with this profile has expired or is invalid
- *   - Unable to locate credentials / Could not load credentials
- *   - UnrecognizedClientException
- *   - Error loading SSO Token / Token does not exist
- *   - SSOTokenProviderFailure
- */
-
-import { exec } from "node:child_process";
-import { existsSync, readFileSync } from "node:fs";
-import { join } from "node:path";
-import { homedir } from "node:os";
-import type { ExtensionAPI } from "@gsd/pi-coding-agent";
-
-/** Matches AWS SDK / Bedrock / SSO credential and token errors. */
-const AWS_AUTH_ERROR_RE =
-	/ExpiredToken|security token.*expired|unable to locate credentials|SSO.*(?:session|token).*(?:expired|not found|invalid)|UnrecognizedClient|Could not load credentials|Invalid identity token|token is expired|credentials.*(?:could not|cannot|failed to).*(?:load|resolve|find)|The.*token.*is.*not.*valid|token has expired|SSOTokenProviderFailure|Error loading SSO Token|Token.*does not exist/i;
-
-/**
- * Reads the `awsAuthRefresh` command from settings.json.
- * Checks project-level first, then global (~/.gsd/agent/settings.json).
- */
-function getAwsAuthRefreshCommand(): string | undefined {
-	const configDir = process.env.PI_CONFIG_DIR || ".gsd";
-	const paths = [
-		join(process.cwd(), configDir, "settings.json"),
-		join(homedir(), configDir, "agent", "settings.json"),
-	];
-	for (const settingsPath of paths) {
-		if (!existsSync(settingsPath)) continue;
-		try {
-			const settings = JSON.parse(readFileSync(settingsPath, "utf-8"));
-			if (settings.awsAuthRefresh) return settings.awsAuthRefresh;
-		} catch {}
-	}
-	return undefined;
-}
-
-/**
- * Runs the refresh command with a 2-minute timeout (for SSO browser flows).
- * Streams stdout/stderr to capture and display the SSO auth URL and
- * verification code in real-time via TUI notifications.
- */
-async function runRefresh(
-	command: string,
-	notify: (msg: string, level: "info" | "warning" | "error") => void,
-): Promise<boolean> {
-	notify("Refreshing AWS credentials...", "info");
-	try {
-		await new Promise<void>((resolve, reject) => {
-			const child = exec(command, { timeout: 120_000, env: { ...process.env } });
-			const onData = (data: Buffer | string) => {
-				const text = data.toString();
-				const urlMatch = text.match(/https?:\/\/\S+/);
-				if (urlMatch) {
-					notify(`Open this URL if the browser didn't launch: ${urlMatch[0]}`, "warning");
-				}
-				const codeMatch = text.match(/code[:\s]+([A-Z]{4}-[A-Z]{4})/i);
-				if (codeMatch) {
-					notify(`Verification code: ${codeMatch[1]}`, "info");
-				}
-			};
-			child.stdout?.on("data", onData);
-			child.stderr?.on("data", onData);
-			child.on("close", (code) => {
-				if (code === 0) resolve();
-				else reject(new Error(`Refresh command exited with code ${code}`));
-			});
-			child.on("error", reject);
-		});
-		notify("AWS credentials refreshed successfully ✓", "info");
-		return true;
-	} catch (error) {
-		const msg = error instanceof Error ? error.message : String(error);
-		const isTimeout = /timed out|ETIMEDOUT|killed/i.test(msg);
-		if (isTimeout) {
-			notify("AWS credential refresh timed out. The SSO login may have been cancelled or the browser window was closed.", "error");
-		} else {
-			notify(`AWS credential refresh failed: ${msg}`, "error");
-		}
-		return false;
-	}
-}
-
-export default function (pi: ExtensionAPI) {
-	pi.on("agent_end", async (event, ctx) => {
-		const refreshCommand = getAwsAuthRefreshCommand();
-		if (!refreshCommand) return;
-
-		const messages = event.messages;
-		const lastAssistant = messages[messages.length - 1];
-		if (
-			!lastAssistant ||
-			lastAssistant.role !== "assistant" ||
-			!("errorMessage" in lastAssistant) ||
-			!lastAssistant.errorMessage ||
-			!AWS_AUTH_ERROR_RE.test(lastAssistant.errorMessage)
-		) {
-			return;
-		}
-
-		const refreshed = await runRefresh(refreshCommand, (m, level) => ctx.ui.notify(m, level));
-		if (!refreshed) return;
-
-		pi.retryLastTurn();
-	});
-}