harborai 0.1.3

package/dist/output.js

@@ -0,0 +1,1123 @@
+import { ApiError } from './api.js';
+const toPlainValue = (value) => {
+    if (value === null || value === undefined) {
+        return '';
+    }
+    if (typeof value === 'string') {
+        return /\s/.test(value) ? JSON.stringify(value) : value;
+    }
+    return String(value);
+};
+export const getOutputMode = (options) => {
+    if (options.json) {
+        return 'json';
+    }
+    if (options.plain) {
+        return 'plain';
+    }
+    return 'human';
+};
+export class CliInputError extends Error {
+    code = 'invalid_input';
+    invocation;
+    note;
+    constructor(message, invocation, note) {
+        super(message);
+        this.invocation = invocation;
+        this.note = note;
+    }
+}
+const writeJson = (payload) => {
+    console.log(JSON.stringify(payload, null, 2));
+};
+const writePlain = (lines) => {
+    console.log(lines.join('\n'));
+};
+const writeHuman = (text) => {
+    console.log(text.trimEnd());
+};
+const yesNoUnknown = (value) => {
+    if (value === true) {
+        return 'yes';
+    }
+    if (value === false) {
+        return 'no';
+    }
+    return 'unknown';
+};
+const writeJsonError = (payload) => {
+    console.error(JSON.stringify(payload, null, 2));
+};
+const writePlainError = (lines) => {
+    console.error(lines.join('\n'));
+};
+const writeHumanError = (text) => {
+    console.error(text.trimEnd());
+};
+const linesFromRecord = (entries) => entries
+    .filter(([, value]) => value !== undefined)
+    .map(([key, value]) => `${key}=${toPlainValue(value)}`);
+const requiredLabel = (required) => (required ? 'required' : 'optional');
+const schemaType = (value) => {
+    if (typeof value === 'string') {
+        return value;
+    }
+    if (Array.isArray(value)) {
+        const first = value.find((entry) => typeof entry === 'string' && entry !== 'null');
+        return first ?? 'unknown';
+    }
+    return 'unknown';
+};
+const summarizeRuntimeInjection = (runtimeInjection) => {
+    if (!runtimeInjection) {
+        return null;
+    }
+    const requirements = runtimeInjection.requirements.map((requirement) => ({
+        name: requirement.name,
+        kind: requirement.kind,
+        required: Boolean(requirement.required),
+        service: requirement.service,
+        lookup: requirement.lookup,
+        input_path: requirement.input_path,
+        fallback_order: requirement.fallback_order ?? [],
+    }));
+    const export_keys = Object.keys(runtimeInjection.exports ?? {});
+    const audit_context_keys = runtimeInjection.audit?.context_keys ?? [];
+    if (requirements.length === 0 && export_keys.length === 0 && audit_context_keys.length === 0) {
+        return null;
+    }
+    return {
+        requirements,
+        export_keys,
+        audit_context_keys,
+    };
+};
+const describeRuntimeInjectionRequirement = (requirement) => {
+    const details = [requirement.required ? 'required' : 'optional'];
+    if (requirement.service) {
+        details.push(`service=${requirement.service}`);
+    }
+    if (requirement.lookup) {
+        details.push(`lookup=${requirement.lookup}`);
+    }
+    if (requirement.input_path) {
+        details.push(`input_path=${requirement.input_path}`);
+    }
+    if (requirement.fallback_order.length > 0) {
+        details.push(`fallback=${requirement.fallback_order.join('>')}`);
+    }
+    return details.join(' ');
+};
+const readConfigRecord = (snapshot, key) => {
+    const config = snapshot.binding?.config;
+    if (!config || typeof config !== 'object') {
+        return null;
+    }
+    const value = config[key];
+    return value && typeof value === 'object' ? value : null;
+};
+const defaultCapabilityState = (summary, snapshot) => {
+    if (summary?.state) {
+        return summary.state;
+    }
+    if (summary?.granted === true) {
+        return 'ready';
+    }
+    return snapshot.policy?.grant_required ? 'approval_required' : 'published';
+};
+const formatSchemaDetail = (label, value) => value === undefined ? null : `${label}=${Array.isArray(value) ? value.join('|') : String(value)}`;
+export const renderLearn = (mode, snapshot, summary) => {
+    const args = snapshot.surface?.cli?.args ?? [];
+    const inputProperties = snapshot.contract?.input_schema?.properties ?? {};
+    const state = defaultCapabilityState(summary, snapshot);
+    const secrets = snapshot.secrets?.required_refs ?? [];
+    const missingSecretRefs = summary?.missing_secret_refs ?? [];
+    const runtimeInjection = summarizeRuntimeInjection(snapshot.runtime_injection);
+    const commandPrefixes = readConfigRecord(snapshot, 'command_prefix_allowlist');
+    const allowedPrefixes = Array.isArray(commandPrefixes?.prefixes)
+        ? commandPrefixes.prefixes.filter((entry) => typeof entry === 'string' && entry.length > 0)
+        : [];
+    const cliPassthrough = readConfigRecord(snapshot, 'cli_passthrough');
+    const passthroughNotes = Array.isArray(cliPassthrough?.notes)
+        ? cliPassthrough.notes.filter((entry) => typeof entry === 'string' && entry.length > 0)
+        : [];
+    const preflight = readConfigRecord(snapshot, 'preflight');
+    const install = preflight?.install && typeof preflight.install === 'object' ? preflight.install : null;
+    const installMacos = install?.macos && typeof install.macos === 'object' ? install.macos : null;
+    const installSteps = Array.isArray(installMacos?.steps)
+        ? installMacos.steps.filter((entry) => typeof entry === 'string' && entry.length > 0)
+        : [];
+    const serviceRequirements = (runtimeInjection?.requirements ?? [])
+        .map((requirement) => requirement.service)
+        .filter((service) => typeof service === 'string' && service.length > 0);
+    const uniqueServices = [...new Set(serviceRequirements)];
+    const constraintShape = snapshot.policy?.constraint_shape ?? {};
+    const examples = snapshot.surface?.cli?.examples ?? [];
+    const helpCommand = typeof snapshot.surface?.cli?.help_command === 'string' && snapshot.surface.cli.help_command.length > 0
+        ? snapshot.surface.cli.help_command
+        : `harbor ${snapshot.capability.slug} --help`;
+    const firstRunCommand = examples[0] ?? helpCommand;
+    const nextSteps = [];
+    if (missingSecretRefs.length > 0) {
+        for (const secretRef of missingSecretRefs) {
+            nextSteps.push(`echo $SECRET_VALUE | harbor secrets set ${secretRef} --plain`);
+        }
+    }
+    for (const service of uniqueServices) {
+        nextSteps.push(`harbor services inspect ${service} --plain`);
+    }
+    if (snapshot.policy?.grant_required && summary?.granted !== true) {
+        nextSteps.push(helpCommand);
+        nextSteps.push(`${firstRunCommand}  # first run may trigger a grant or approval request`);
+    }
+    else {
+        nextSteps.push(firstRunCommand);
+    }
+    if (nextSteps.length === 0) {
+        nextSteps.push(helpCommand);
+    }
+    const payload = {
+        capability: snapshot.capability.slug,
+        title: snapshot.capability.title ?? snapshot.capability.slug,
+        summary: snapshot.surface?.cli?.summary ?? snapshot.capability.description ?? '',
+        state,
+        granted: summary?.granted ?? null,
+        execution_mode: snapshot.contract?.execution_mode ?? null,
+        adapter_type: snapshot.binding?.adapter_type ?? null,
+        adapter_operation: snapshot.binding?.adapter_operation ?? null,
+        provider_ref: snapshot.binding?.provider_ref ?? null,
+        service_state: summary?.service_state ?? null,
+        grant_required: Boolean(snapshot.policy?.grant_required),
+        approval_mode: snapshot.policy?.approval_mode ?? 'none',
+        secrets: secrets.map((secret) => ({
+            name: secret.name,
+            kind: secret.kind,
+            purpose: secret.purpose,
+            missing: missingSecretRefs.includes(secret.name),
+        })),
+        input: args.map((arg) => {
+            const schema = inputProperties[arg.name];
+            return {
+                name: arg.name,
+                type: arg.type ?? schemaType(schema?.type),
+                required: Boolean(arg.required),
+                positional: Boolean(arg.positional),
+                description: arg.description ?? schema?.description ?? '',
+                default: schema?.default,
+                enum: Array.isArray(schema?.enum) ? schema.enum : undefined,
+                minimum: schema?.minimum,
+                maximum: schema?.maximum,
+            };
+        }),
+        restrictions: {
+            allow_network: constraintShape.allow_network,
+            allow_file_write: constraintShape.allow_file_write,
+            max_timeout_sec: constraintShape.max_timeout_sec,
+            allowed_command_prefixes: allowedPrefixes,
+        },
+        install: install
+            ? {
+                display_name: typeof install.display_name === 'string' ? install.display_name : null,
+                docs_url: typeof install.docs_url === 'string' ? install.docs_url : null,
+                steps: installSteps,
+                binary_missing_hint: typeof preflight?.binary_missing_hint === 'string' ? preflight.binary_missing_hint : null,
+            }
+            : null,
+        runtime_injection: runtimeInjection,
+        passthrough_notes: passthroughNotes,
+        examples,
+        next_steps: nextSteps,
+    };
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain([
+            ...linesFromRecord([
+                ['capability', payload.capability],
+                ['title', payload.title],
+                ['summary', payload.summary],
+                ['state', payload.state],
+                ['granted', payload.granted],
+                ['execution_mode', payload.execution_mode],
+                ['adapter_type', payload.adapter_type],
+                ['adapter_operation', payload.adapter_operation],
+                ['provider_ref', payload.provider_ref],
+                ['service_state', payload.service_state],
+                ['grant_required', payload.grant_required ? 'yes' : 'no'],
+                ['approval_mode', payload.approval_mode],
+                ['allow_network', payload.restrictions.allow_network],
+                ['allow_file_write', payload.restrictions.allow_file_write],
+                ['max_timeout_sec', payload.restrictions.max_timeout_sec],
+            ]),
+            ...payload.input.map((arg) => {
+                const details = [
+                    `${arg.type}:${requiredLabel(arg.required)}`,
+                    formatSchemaDetail('default', arg.default),
+                    formatSchemaDetail('enum', arg.enum),
+                    formatSchemaDetail('minimum', arg.minimum),
+                    formatSchemaDetail('maximum', arg.maximum),
+                ].filter((entry) => Boolean(entry));
+                return `input.${arg.name}=${details.join(' ')}`;
+            }),
+            ...payload.secrets.map((secret) => `secret.${secret.name}=${secret.kind}:${secret.purpose}${secret.missing ? ':missing' : ''}`),
+            ...payload.restrictions.allowed_command_prefixes.map((prefix) => `allowed_command_prefix=${prefix}`),
+            ...(payload.install?.binary_missing_hint ? [`install.binary_missing_hint=${payload.install.binary_missing_hint}`] : []),
+            ...(payload.install?.docs_url ? [`install.docs_url=${payload.install.docs_url}`] : []),
+            ...(payload.install?.steps ?? []).map((step) => `install.step=${step}`),
+            ...(payload.runtime_injection?.requirements ?? []).map((requirement) => `runtime_injection.${requirement.name}=${requirement.kind}:${describeRuntimeInjectionRequirement(requirement)}`),
+            ...payload.passthrough_notes.map((note) => `note=${note}`),
+            ...payload.examples.map((example) => `example=${example}`),
+            ...payload.next_steps.map((step, index) => `next_step.${index + 1}=${step}`),
+        ]);
+        return;
+    }
+    const inputLines = payload.input.length === 0
+        ? '  none'
+        : payload.input.map((arg) => {
+            const details = [
+                requiredLabel(arg.required),
+                formatSchemaDetail('default', arg.default),
+                formatSchemaDetail('enum', arg.enum),
+                formatSchemaDetail('minimum', arg.minimum),
+                formatSchemaDetail('maximum', arg.maximum),
+            ].filter((entry) => Boolean(entry)).join(' ');
+            return `  ${arg.name.padEnd(16)} ${String(arg.type).padEnd(10)} ${details}${arg.description ? `  ${arg.description}` : ''}`.trimEnd();
+        }).join('\n');
+    const secretLines = payload.secrets.length === 0
+        ? '  none'
+        : payload.secrets.map((secret) => `  ${secret.name.padEnd(20)} ${secret.kind.padEnd(20)} ${secret.purpose}${secret.missing ? ' (missing)' : ''}`).join('\n');
+    const restrictionLines = [
+        `  network: ${yesNoUnknown(payload.restrictions.allow_network)}`,
+        `  file_write: ${yesNoUnknown(payload.restrictions.allow_file_write)}`,
+        payload.restrictions.max_timeout_sec !== undefined ? `  max_timeout_sec: ${payload.restrictions.max_timeout_sec}` : null,
+        payload.restrictions.allowed_command_prefixes.length > 0 ? `  allowed_prefixes: ${payload.restrictions.allowed_command_prefixes.join(', ')}` : null,
+    ].filter((line) => Boolean(line)).join('\n');
+    const installLines = payload.install
+        ? [
+            payload.install.display_name ? `  package: ${payload.install.display_name}` : null,
+            payload.install.binary_missing_hint ? `  hint: ${payload.install.binary_missing_hint}` : null,
+            payload.install.docs_url ? `  docs: ${payload.install.docs_url}` : null,
+            ...(payload.install.steps.map((step) => `  step: ${step}`)),
+        ].filter((line) => Boolean(line)).join('\n')
+        : '  none';
+    const runtimeInjectionLines = payload.runtime_injection
+        ? [
+            payload.runtime_injection.requirements.length === 0
+                ? '  requirements: none'
+                : payload.runtime_injection.requirements.map((requirement) => `  ${requirement.name.padEnd(18)} ${requirement.kind.padEnd(20)} ${describeRuntimeInjectionRequirement(requirement)}`).join('\n'),
+            payload.runtime_injection.export_keys.length === 0
+                ? '  exports: none'
+                : `  exports: ${payload.runtime_injection.export_keys.join(', ')}`,
+        ].join('\n')
+        : '  none';
+    const exampleLines = payload.examples.length === 0 ? '  none' : payload.examples.map((example) => `  ${example}`).join('\n');
+    const noteLines = payload.passthrough_notes.length === 0 ? '  none' : payload.passthrough_notes.map((note) => `  - ${note}`).join('\n');
+    const nextStepLines = payload.next_steps.map((step) => `  ${step}`).join('\n');
+    writeHuman(`${payload.capability}\n\n${payload.summary}\n\nState:\n  readiness: ${payload.state}\n  grant_required: ${payload.grant_required ? 'yes' : 'no'}\n  approval_mode: ${payload.approval_mode}\n  service_state: ${payload.service_state ?? 'n/a'}\n  execution_mode: ${payload.execution_mode ?? 'unknown'}\n  adapter: ${payload.adapter_type ?? 'unknown'}${payload.adapter_operation ? ` (${payload.adapter_operation})` : ''}\n\nInput:\n${inputLines}\n\nSecrets:\n${secretLines}\n\nRestrictions:\n${restrictionLines}\n\nInstall:\n${installLines}\n\nRuntime injection:\n${runtimeInjectionLines}\n\nNotes:\n${noteLines}\n\nExamples:\n${exampleLines}\n\nNext:\n${nextStepLines}`);
+};
+export const renderClaim = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['status', payload.result],
+            ['agent_id', payload.agent_id],
+            ['profile', payload.profile],
+            ['owner', payload.owner],
+            ['approval_id', payload.approval_id],
+            ['approval_url', payload.approval_url],
+        ]));
+        return;
+    }
+    if (payload.result === 'approval_required') {
+        writeHuman(`status:        ${payload.result}\napproval_id:   ${payload.approval_id ?? 'unknown'}\napproval_url:  ${payload.approval_url ?? 'unknown'}\n\nnext:\n  open https://dash.tryharbor.ai/login\n  open ${payload.approval_url ?? 'https://dash.tryharbor.ai/approvals'}\n  harbor auth claim --plain`);
+        return;
+    }
+    writeHuman(`status:   ${payload.result}\nagent_id: ${payload.agent_id ?? 'unknown'}\nprofile:  ${payload.profile}\nowner:    ${payload.owner ?? 'unknown'}\n\nnext:\n  harbor ls --plain\n  harbor learn <capability> --plain\n  harbor secrets ls --plain`);
+};
+export const renderWhoAmI = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['profile', payload.profile],
+            ['owner_scope_id', payload.owner_scope_id],
+            ['owner', payload.owner],
+            ['agent_id', payload.agent_id],
+            ['agent_name', payload.agent_display_name],
+        ]));
+        return;
+    }
+    writeHuman(`profile:    ${payload.profile}\nowner:      ${payload.owner ?? 'unknown'}\nagent_id:   ${payload.agent_id ?? 'unknown'}\nagent_name: ${payload.agent_display_name ?? 'unknown'}`);
+};
+export const renderProfileCurrent = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['profile', payload.profile],
+            ['active_profile', payload.active_profile],
+            ['api_url', payload.api_url],
+            ['owner', payload.owner],
+            ['agent_id', payload.agent_id],
+        ]));
+        return;
+    }
+    writeHuman(`profile:         ${payload.profile}\nactive_profile:  ${payload.active_profile}\napi_url:         ${payload.api_url ?? 'unset'}\nowner:           ${payload.owner ?? 'unknown'}\nagent_id:        ${payload.agent_id ?? 'unknown'}`);
+};
+export const renderProfileList = (mode, profiles) => {
+    if (mode === 'json') {
+        writeJson({ profiles });
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(profiles.map((profile) => linesFromRecord([
+            ['profile', profile.profile_slug],
+            ['active', profile.active ? 'yes' : 'no'],
+            ['selected', profile.selected ? 'yes' : 'no'],
+            ['api_url', profile.api_url],
+            ['owner', profile.owner],
+            ['agent_id', profile.agent_id],
+        ]).join(' ')));
+        return;
+    }
+    if (profiles.length === 0) {
+        writeHuman('No Harbor profiles.');
+        return;
+    }
+    const rows = profiles
+        .map((profile) => [
+        profile.profile_slug.padEnd(18),
+        (profile.active ? 'active' : '').padEnd(8),
+        (profile.selected ? 'selected' : '').padEnd(10),
+        (profile.api_url ?? 'unset').padEnd(28),
+        profile.agent_id ?? 'unknown',
+    ].join('  ').trimEnd())
+        .join('\n');
+    writeHuman(`PROFILE              ACTIVE    SELECTED    API URL                       AGENT ID\n${rows}`);
+};
+export const renderMcpInstall = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(payload.installs.map((install) => linesFromRecord([
+            ['profile', payload.profile],
+            ['dry_run', payload.dry_run ? 'yes' : 'no'],
+            ['client', install.client],
+            ['status', install.action],
+            ['path', install.path],
+        ]).join(' ')));
+        return;
+    }
+    const launch = [payload.launch.command, ...payload.launch.args.map((arg) => (/\s/.test(arg) ? JSON.stringify(arg) : arg))].join(' ');
+    const installs = payload.installs
+        .map((install) => `${install.label.padEnd(16)} ${install.action.padEnd(9)} ${install.path}`)
+        .join('\n');
+    const restartNote = payload.dry_run
+        ? 'Dry run only. No files were changed.'
+        : 'Restart each client to pick up the updated MCP config.';
+    writeHuman(`profile: ${payload.profile}\ndry_run: ${payload.dry_run ? 'yes' : 'no'}\nlaunch:   ${launch}\n\nCLIENT           STATUS     CONFIG PATH\n${installs}\n\n${restartNote}`);
+};
+export const renderUpdate = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['status', payload.status],
+            ['previous_version', payload.previous_version],
+            ['current_version', payload.current_version],
+            ['latest_version', payload.latest_version],
+            ['channel', payload.channel],
+            ['message', payload.message],
+        ]));
+        return;
+    }
+    writeHuman(payload.message);
+};
+export const renderDevUp = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['status', payload.status],
+            ['profile', payload.profile],
+            ['api_url', payload.api_url],
+            ['auth_url', payload.auth_url],
+        ]));
+        return;
+    }
+    writeHuman(`status:   ${payload.status}\nprofile:  ${payload.profile}\napi_url:  ${payload.api_url ?? 'unset'}\nauth_url: ${payload.auth_url ?? 'unset'}`);
+};
+export const renderDevDown = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['status', payload.status],
+            ['profile', payload.profile],
+        ]));
+        return;
+    }
+    writeHuman(`status:   ${payload.status}\nprofile:  ${payload.profile}`);
+};
+export const renderLocalDaemonStatus = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['profile', payload.profile],
+            ['ready_state', payload.ready_state],
+            ['api_url', payload.api_url],
+            ['auth_url', payload.auth_url],
+            ['daemon_package_version', payload.daemon_package_version],
+            ['daemon_protocol', payload.selected_daemon_protocol],
+            ['state_schema_version', payload.state_schema_version],
+            ['api_manifest_revision', payload.api_manifest_revision],
+            ['last_ready_at', payload.last_ready_at],
+            ['api_pid', payload.managed_children.api.pid],
+            ['api_running', payload.managed_children.api.running ? 'yes' : 'no'],
+            ['runner_pid', payload.managed_children.runner.pid],
+            ['runner_running', payload.managed_children.runner.running ? 'yes' : 'no'],
+            ['socket', payload.paths.socket],
+            ['state', payload.paths.state],
+            ['daemon_log', payload.paths.daemon_log],
+            ['api_log', payload.paths.api_log],
+            ['runner_log', payload.paths.runner_log],
+        ]));
+        return;
+    }
+    writeHuman(`profile:                 ${payload.profile}\nready_state:             ${payload.ready_state}\napi_url:                 ${payload.api_url}\nauth_url:                ${payload.auth_url}\ndaemon_package_version:  ${payload.daemon_package_version}\ndaemon_protocol:         ${payload.selected_daemon_protocol}\nstate_schema_version:    ${payload.state_schema_version}\napi_manifest_revision:   ${payload.api_manifest_revision ?? 'unknown'}\nlast_ready_at:           ${payload.last_ready_at ?? 'unknown'}\napi:                     ${payload.managed_children.api.running ? 'running' : 'stopped'} (pid ${payload.managed_children.api.pid ?? 'unknown'})\nrunner:                  ${payload.managed_children.runner.running ? 'running' : 'stopped'} (pid ${payload.managed_children.runner.pid ?? 'unknown'})\nsocket:                  ${payload.paths.socket}\nstate:                   ${payload.paths.state}\ndaemon_log:              ${payload.paths.daemon_log}\napi_log:                 ${payload.paths.api_log}\nrunner_log:              ${payload.paths.runner_log}`);
+};
+export const renderLocalDaemonLog = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain([
+            ...linesFromRecord([
+                ['component', payload.component],
+                ['path', payload.path],
+            ]),
+            ...payload.lines,
+        ]);
+        return;
+    }
+    writeHuman(`component: ${payload.component}\npath:      ${payload.path}${payload.lines.length > 0 ? `\n\n${payload.lines.join('\n')}` : '\n\n(no log lines)'}`);
+};
+export const renderLs = (mode, capabilities) => {
+    if (mode === 'json') {
+        writeJson({ capabilities });
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(capabilities.map((capability) => `capability=${capability.slug} state=${toPlainValue(capability.state)}${capability.summary ? ` summary=${toPlainValue(capability.summary)}` : ''}`));
+        return;
+    }
+    const rows = capabilities.length === 0
+        ? 'No published capabilities.'
+        : capabilities
+            .map((capability) => `${capability.slug.padEnd(20)} ${capability.state.padEnd(17)} ${capability.summary}`.trimEnd())
+            .join('\n');
+    writeHuman(rows);
+};
+export const renderInspect = (mode, snapshot) => {
+    const args = snapshot.surface?.cli?.args ?? [];
+    const runtimeInjection = summarizeRuntimeInjection(snapshot.runtime_injection);
+    const payload = {
+        capability: snapshot.capability.slug,
+        summary: snapshot.surface?.cli?.summary ?? snapshot.capability.description ?? '',
+        input: args.map((arg) => ({
+            name: arg.name,
+            type: arg.type ?? schemaType(snapshot.contract?.input_schema?.properties?.[arg.name]?.type),
+            required: Boolean(arg.required),
+            positional: Boolean(arg.positional),
+            description: arg.description ?? snapshot.contract?.input_schema?.properties?.[arg.name]?.description ?? '',
+        })),
+        secret_requirements: (snapshot.secrets?.required_refs ?? []).map((secret) => ({
+            name: secret.name,
+            kind: secret.kind,
+            purpose: secret.purpose,
+        })),
+        runtime_injection: runtimeInjection,
+        execution_mode: snapshot.contract?.execution_mode ?? null,
+        adapter: snapshot.capability.category ?? snapshot.capability.slug.split('.')[0],
+        grant_required: Boolean(snapshot.policy?.grant_required),
+        approval_mode: snapshot.policy?.approval_mode ?? 'none',
+    };
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain([
+            ...linesFromRecord([
+                ['capability', payload.capability],
+                ['summary', payload.summary],
+                ['execution_mode', payload.execution_mode],
+                ['adapter', payload.adapter],
+                ['grant_required', payload.grant_required ? 'yes' : 'no'],
+                ['approval_mode', payload.approval_mode],
+            ]),
+            ...payload.input.map((arg) => `input.${arg.name}=${arg.type}:${requiredLabel(arg.required)}`),
+            ...payload.secret_requirements.map((secret) => `secret_requirement.${secret.name}=${secret.kind}:${secret.purpose}`),
+            ...(payload.runtime_injection?.requirements ?? []).map((requirement) => `runtime_injection.${requirement.name}=${requirement.kind}:${describeRuntimeInjectionRequirement(requirement)}`),
+            ...(payload.runtime_injection?.export_keys ?? []).map((key) => `runtime_injection.export=${key}`),
+            ...(payload.runtime_injection?.audit_context_keys ?? []).map((key) => `runtime_injection.audit_context_key=${key}`),
+        ]);
+        return;
+    }
+    const inputLines = payload.input.length === 0
+        ? '  none'
+        : payload.input.map((arg) => `  ${arg.name.padEnd(14)} ${String(arg.type).padEnd(8)} ${requiredLabel(arg.required)}`).join('\n');
+    const secretLines = payload.secret_requirements.length === 0
+        ? '  none'
+        : payload.secret_requirements.map((secret) => `  ${secret.name.padEnd(18)} ${String(secret.kind).padEnd(14)} ${secret.purpose}`).join('\n');
+    const runtimeInjectionLines = payload.runtime_injection
+        ? [
+            payload.runtime_injection.requirements.length === 0
+                ? '  requirements: none'
+                : payload.runtime_injection.requirements.map((requirement) => `  ${requirement.name.padEnd(18)} ${requirement.kind.padEnd(20)} ${describeRuntimeInjectionRequirement(requirement)}`).join('\n'),
+            payload.runtime_injection.export_keys.length === 0
+                ? '  exports: none'
+                : `  exports: ${payload.runtime_injection.export_keys.join(', ')}`,
+            payload.runtime_injection.audit_context_keys.length === 0
+                ? '  audit_context: none'
+                : `  audit_context: ${payload.runtime_injection.audit_context_keys.join(', ')}`,
+        ].join('\n')
+        : '  none';
+    writeHuman(`${payload.capability}\n\n${payload.summary}\n\nInput:\n${inputLines}\n\nSecret requirements:\n${secretLines}\n\nRuntime injection:\n${runtimeInjectionLines}\n\nExecution:    ${payload.execution_mode ?? 'unknown'}\nAdapter:      ${payload.adapter}\nGrant:        ${payload.grant_required ? 'required' : 'not required'}\nApproval:     ${payload.approval_mode}`);
+};
+export const renderComposioLinkSession = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['link_session_id', payload.link_session_id],
+            ['status', payload.status],
+            ['agent_id', payload.agent_id],
+            ['toolkit_slug', payload.toolkit_slug],
+            ['auth_config_id', payload.auth_config_id],
+            ['connected_account_id', payload.connected_account_id],
+            ['redirect_url', payload.redirect_url],
+            ['expires_at', payload.expires_at],
+            ['completed_at', payload.completed_at],
+        ]));
+        return;
+    }
+    writeHuman([
+        `link_session_id:      ${payload.link_session_id}`,
+        `status:               ${payload.status}`,
+        `agent_id:             ${payload.agent_id ?? 'unknown-agent'}`,
+        `toolkit:              ${payload.toolkit_slug ?? 'unknown'}`,
+        `auth_config_id:       ${payload.auth_config_id ?? 'unknown'}`,
+        `connected_account_id: ${payload.connected_account_id ?? 'pending'}`,
+        `redirect_url:         ${payload.redirect_url ?? 'n/a'}`,
+    ].join('\n'));
+};
+export const renderComposioService = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        const bindingLines = payload.bindings.map((binding) => [
+            'binding',
+            binding.binding_id,
+            binding.agent_id,
+            binding.toolkit_slug,
+            binding.auth_config_id,
+            binding.connected_account_id,
+            binding.status,
+        ].join('='));
+        const linkLines = payload.link_sessions.map((session) => [
+            'link_session',
+            session.link_session_id,
+            session.status,
+            session.agent_id ?? '',
+            session.toolkit_slug ?? '',
+            session.auth_config_id ?? '',
+            session.connected_account_id ?? '',
+        ].join('='));
+        writePlain([
+            ...linesFromRecord([
+                ['principal_id', payload.principal?.principal_id],
+                ['owner_scope_id', payload.principal?.owner_scope_id],
+                ['composio_user_id', payload.principal?.composio_user_id],
+                ['principal_status', payload.principal?.status],
+                ['active_bindings', payload.summary.active_bindings],
+                ['pending_link_sessions', payload.summary.pending_link_sessions],
+            ]),
+            ...bindingLines,
+            ...linkLines,
+        ]);
+        return;
+    }
+    const principal = payload.principal
+        ? [
+            `principal_id:      ${payload.principal.principal_id}`,
+            `owner_scope_id:    ${payload.principal.owner_scope_id}`,
+            `composio_user_id:  ${payload.principal.composio_user_id}`,
+            `status:            ${payload.principal.status}`,
+        ].join('\n')
+        : 'principal: not linked';
+    const bindings = payload.bindings.length === 0
+        ? '  none'
+        : payload.bindings.map((binding) => `  ${binding.agent_id} -> ${binding.toolkit_slug} (${binding.auth_config_id}) => ${binding.connected_account_id} [${binding.status}]`).join('\n');
+    const links = payload.link_sessions.length === 0
+        ? '  none'
+        : payload.link_sessions.map((session) => `  ${session.link_session_id} ${session.status} ${session.agent_id ?? 'unknown-agent'} ${session.toolkit_slug ?? 'unknown'} ${session.connected_account_id ?? 'pending'}`).join('\n');
+    writeHuman(`${principal}\n\nSummary:\n  active_bindings=${payload.summary.active_bindings}\n  pending_link_sessions=${payload.summary.pending_link_sessions}\n\nBindings:\n${bindings}\n\nLink sessions:\n${links}`);
+};
+export const renderProfileCleanup = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['profile', payload.profile],
+            ['deleted', payload.deleted ? 'true' : 'false'],
+            ['cleared_session', payload.cleared_session ? 'true' : 'false'],
+            ['active_profile', payload.active_profile],
+        ]));
+        return;
+    }
+    writeHuman([
+        `profile:          ${payload.profile}`,
+        `deleted:          ${payload.deleted ? 'yes' : 'no'}`,
+        `cleared_session:  ${payload.cleared_session ? 'yes' : 'no'}`,
+        `active_profile:   ${payload.active_profile}`,
+    ].join('\n'));
+};
+export const renderComposioBinding = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['binding_id', payload.binding_id],
+            ['status', payload.status],
+            ['agent_id', payload.agent_id],
+            ['toolkit_slug', payload.toolkit_slug],
+            ['auth_config_id', payload.auth_config_id],
+            ['connected_account_id', payload.connected_account_id],
+        ]));
+        return;
+    }
+    writeHuman([
+        `binding_id:           ${payload.binding_id}`,
+        `status:               ${payload.status}`,
+        `agent_id:             ${payload.agent_id}`,
+        `toolkit:              ${payload.toolkit_slug}`,
+        `auth_config_id:       ${payload.auth_config_id}`,
+        `connected_account_id: ${payload.connected_account_id}`,
+    ].join('\n'));
+};
+export const renderStorageUpload = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['object_key', payload.object_key],
+            ['relative_key', payload.relative_key],
+            ['size', payload.size],
+            ['content_type', payload.content_type],
+        ]));
+        return;
+    }
+    writeHuman([
+        `object_key:   ${payload.object_key}`,
+        `relative_key: ${payload.relative_key}`,
+        `size:         ${payload.size}`,
+        `content_type: ${payload.content_type ?? 'unknown'}`,
+    ].join('\n'));
+};
+export const renderStorageList = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(payload.objects.map((object) => [
+            `relative_key=${toPlainValue(object.relative_key)}`,
+            `size=${toPlainValue(object.size)}`,
+            `content_type=${toPlainValue(object.content_type)}`,
+            `uploaded_at=${toPlainValue(object.uploaded_at)}`,
+            `etag=${toPlainValue(object.etag)}`,
+        ].join(' ')));
+        return;
+    }
+    if (payload.objects.length === 0) {
+        writeHuman('No stored objects.');
+        return;
+    }
+    const rows = payload.objects
+        .map((object) => [
+        object.relative_key.padEnd(28),
+        String(object.size).padStart(8),
+        (object.content_type ?? 'unknown').padEnd(24),
+        (object.uploaded_at ?? 'unknown'),
+    ].join('  ').trimEnd())
+        .join('\n');
+    writeHuman(`RELATIVE KEY                    SIZE  CONTENT TYPE              UPLOADED AT\n${rows}`);
+};
+export const renderStorageDownload = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['key', payload.key],
+            ['output', payload.output],
+            ['size', payload.size],
+            ['content_type', payload.content_type],
+        ]));
+        return;
+    }
+    writeHuman([
+        `key:          ${payload.key}`,
+        `output:       ${payload.output}`,
+        `size:         ${payload.size}`,
+        `content_type: ${payload.content_type ?? 'unknown'}`,
+    ].join('\n'));
+};
+export const renderStorageDelete = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['ok', payload.ok ? 'true' : 'false'],
+            ['object_key', payload.object_key],
+        ]));
+        return;
+    }
+    writeHuman(`status: ${payload.ok ? 'deleted' : 'not_deleted'}\nobject_key: ${payload.object_key}`);
+};
+export const renderStoragePresign = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['operation', payload.operation],
+            ['object_key', payload.object_key],
+            ['method', payload.method],
+            ['url', payload.url],
+            ['expires_at', payload.expires_at],
+            ['content_type', payload.content_type],
+        ]));
+        return;
+    }
+    writeHuman([
+        `operation:    ${payload.operation}`,
+        `object_key:   ${payload.object_key}`,
+        `method:       ${payload.method}`,
+        `url:          ${payload.url}`,
+        `expires_at:   ${payload.expires_at}`,
+        `content_type: ${payload.content_type ?? 'unknown'}`,
+    ].join('\n'));
+};
+export const renderSecretReferenceList = (mode, secretReferences) => {
+    if (mode === 'json') {
+        writeJson({ secret_references: secretReferences });
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(secretReferences.map((secretReference) => [
+            `name=${toPlainValue(secretReference.name)}`,
+            `kind=${toPlainValue(secretReference.kind)}`,
+            `managed_by=${toPlainValue(secretReference.managed_by)}`,
+            `status=${toPlainValue(secretReference.status)}`,
+            `updated_at=${toPlainValue(secretReference.updated_at)}`,
+            `stored_material_present=${toPlainValue(yesNoUnknown(secretReference.stored_material_present))}`,
+        ].join(' ')));
+        return;
+    }
+    if (secretReferences.length === 0) {
+        writeHuman('No secret references.');
+        return;
+    }
+    const rows = secretReferences
+        .map((secretReference) => [
+        secretReference.name.padEnd(28),
+        secretReference.kind.padEnd(20),
+        secretReference.managed_by.padEnd(14),
+        secretReference.status.padEnd(10),
+        yesNoUnknown(secretReference.stored_material_present).padEnd(8),
+        secretReference.updated_at,
+    ].join('  ').trimEnd())
+        .join('\n');
+    writeHuman(`NAME                         KIND                  MANAGED BY      STATUS      MATERIAL  UPDATED AT\n${rows}`);
+};
+export const renderSecretReference = (mode, secretReference) => {
+    if (mode === 'json') {
+        writeJson(secretReference);
+        return;
+    }
+    const backendLocator = JSON.stringify(secretReference.backend_locator);
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['name', secretReference.name],
+            ['display_name', secretReference.display_name],
+            ['kind', secretReference.kind],
+            ['resolver_kind', secretReference.resolver_kind],
+            ['status', secretReference.status],
+            ['managed_by', secretReference.managed_by],
+            ['stored_material_present', yesNoUnknown(secretReference.stored_material_present)],
+            ['rotated_at', secretReference.rotated_at],
+            ['created_at', secretReference.created_at],
+            ['updated_at', secretReference.updated_at],
+            ['backend_locator', backendLocator],
+        ]));
+        return;
+    }
+    writeHuman([
+        `name:                    ${secretReference.name}`,
+        `display_name:            ${secretReference.display_name}`,
+        `kind:                    ${secretReference.kind}`,
+        `resolver_kind:           ${secretReference.resolver_kind}`,
+        `status:                  ${secretReference.status}`,
+        `managed_by:              ${secretReference.managed_by}`,
+        `stored_material_present: ${yesNoUnknown(secretReference.stored_material_present)}`,
+        `rotated_at:              ${secretReference.rotated_at ?? 'never'}`,
+        `created_at:              ${secretReference.created_at}`,
+        `updated_at:              ${secretReference.updated_at}`,
+        `backend_locator:         ${backendLocator}`,
+    ].join('\n'));
+};
+export const renderSecretReferenceDeleted = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['name', payload.name],
+            ['ok', payload.ok ? 'true' : 'false'],
+        ]));
+        return;
+    }
+    writeHuman(`name: ${payload.name}\nstatus: ${payload.ok ? 'deleted' : 'not_deleted'}`);
+};
+export const renderApprove = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['approval_id', payload.approval_id],
+            ['status', payload.status],
+        ]));
+        return;
+    }
+    writeHuman(`approval_id: ${payload.approval_id}\nstatus:      ${payload.status}`);
+};
+export const renderSetup = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['profile', payload.profile],
+            ['api_url', payload.api_url],
+            ['status', payload.status],
+            ['owner', payload.owner],
+            ['agent_id', payload.agent_id],
+            ['agent_name', payload.agent_name],
+            ['approval_url', payload.approval_url],
+            ['health', payload.health],
+            ['capabilities', payload.capabilities],
+            ['pending_approvals', payload.pending_approvals],
+            ['recent_executions', payload.recent_executions],
+            ['starter_capability', payload.starter_capability],
+        ]));
+        return;
+    }
+    if (payload.status === 'approval_required') {
+        writeHuman(`profile:       ${payload.profile}\napi_url:       ${payload.api_url}\nstatus:        ${payload.status}\nagent_name:    ${payload.agent_name ?? 'unknown'}\napproval_url:  ${payload.approval_url ?? 'unknown'}\n\nnext:\n  open https://dash.tryharbor.ai/login\n  open ${payload.approval_url ?? 'https://dash.tryharbor.ai/approvals'}\n  rerun harbor setup or harbor auth claim`);
+        return;
+    }
+    writeHuman(`profile:            ${payload.profile}\napi_url:            ${payload.api_url}\nstatus:             ${payload.status}\nowner:              ${payload.owner ?? 'unknown'}\nagent_id:           ${payload.agent_id ?? 'unknown'}\nagent_name:         ${payload.agent_name ?? 'unknown'}\nhealth:             ${payload.health ?? 'unknown'}\ncapabilities:       ${payload.capabilities ?? 'unknown'}\npending_approvals:  ${payload.pending_approvals ?? 'unknown'}\nrecent_executions:  ${payload.recent_executions ?? 'unknown'}\n\nnext:\n  harbor ls --plain\n  ${payload.starter_capability ? `harbor learn ${payload.starter_capability} --plain` : 'harbor learn <capability> --plain'}\n  ${payload.starter_capability ? `harbor ${payload.starter_capability} --help` : 'harbor <capability> --help'}\n  harbor secrets ls --plain\n  echo \$SECRET_VALUE | harbor secrets set SECRET_NAME --plain\n  harbor mcp install --dry-run`);
+};
+export const renderStatus = (mode, payload) => {
+    const authStatus = payload.whoami
+        ? 'authenticated'
+        : payload.pending_claim_approval_id
+            ? 'pending_claim_approval'
+            : 'anonymous';
+    const jsonPayload = {
+        profile: payload.profile,
+        auth_status: authStatus,
+        agent_id: payload.whoami?.agent_id ?? null,
+        owner: payload.whoami?.owner ?? null,
+        pending_claim_approval_id: payload.pending_claim_approval_id ?? null,
+        health: payload.health.status,
+        capabilities: payload.capabilityCount,
+        pending_approvals: payload.health.pending_approvals,
+        recent_executions: payload.health.recent_executions,
+    };
+    if (mode === 'json') {
+        writeJson(jsonPayload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['profile', payload.profile],
+            ['auth_status', authStatus],
+            ['agent_id', payload.whoami?.agent_id],
+            ['owner', payload.whoami?.owner],
+            ['pending_claim_approval_id', payload.pending_claim_approval_id],
+            ['health', payload.health.status],
+            ['capabilities', payload.capabilityCount],
+            ['pending_approvals', payload.health.pending_approvals ?? ''],
+            ['recent_executions', payload.health.recent_executions ?? ''],
+        ]));
+        return;
+    }
+    writeHuman(`profile:                  ${payload.profile}\nauth_status:              ${authStatus}\nagent_id:                 ${payload.whoami?.agent_id ?? 'unknown'}\nowner:                    ${payload.whoami?.owner ?? 'unknown'}\npending_claim_approval:   ${payload.pending_claim_approval_id ?? 'none'}\napi:                      ${payload.health.reachable ? 'reachable' : 'unreachable'}\ncapabilities:             ${payload.capabilityCount}\npending_approvals:        ${payload.health.pending_approvals ?? 'unknown'}\nrecent_executions:        ${payload.health.recent_executions ?? 'unknown'}\nhealth:                   ${payload.health.status}`);
+};
+export const renderExecutionStart = (mode, payload) => {
+    if (mode === 'json') {
+        writeJson(payload);
+        return;
+    }
+    if (mode === 'plain') {
+        writePlain(linesFromRecord([
+            ['status', payload.status],
+            ['execution_id', payload.execution_id],
+            ['capability', payload.capability],
+            ['state', payload.state],
+            ['approval_id', payload.approval_id],
+            ['approval_url', payload.approval_url],
+            ['reason', payload.reason],
+        ]));
+        return;
+    }
+    if (payload.status === 'approval_required') {
+        const approvalHint = payload.approval_id
+            ? `\n\nThe owner must approve this request before it can proceed:\n  harbor approve ${payload.approval_id} --yes\n\nThen retry with the approved escalation:\n  harbor ${payload.capability ?? '<capability>'} ... --approval-id ${payload.approval_id}`
+            : '';
+        writeHuman(`status:        ${payload.status}\napproval_id:   ${payload.approval_id ?? 'unknown'}\ncapability:    ${payload.capability ?? 'unknown'}\nreason:        ${payload.reason ?? 'grant required'}${approvalHint}`);
+        return;
+    }
+    writeHuman(`status:       ${payload.status}\nexecution_id: ${payload.execution_id ?? 'unknown'}\ncapability:   ${payload.capability ?? 'unknown'}\nstate:        ${payload.state ?? 'queued'}`);
+};
+export const renderError = (mode, error) => {
+    if (error instanceof CliInputError) {
+        const payload = {
+            code: error.code,
+            message: error.message,
+            invocation: error.invocation,
+            note: error.note,
+        };
+        if (mode === 'json') {
+            writeJsonError(payload);
+            return;
+        }
+        if (mode === 'plain') {
+            writePlainError(linesFromRecord([
+                ['error', error.code],
+                ['message', error.message],
+                ['invocation', error.invocation],
+                ['note', error.note],
+            ]));
+            return;
+        }
+        writeHumanError(`Error: ${error.message}\n  ${error.invocation}${error.note ? `\n  ${error.note}` : ''}`);
+        return;
+    }
+    if (error instanceof ApiError) {
+        const payload = {
+            code: error.code,
+            message: error.message,
+            status: error.status,
+        };
+        if (mode === 'json') {
+            writeJsonError(payload);
+            return;
+        }
+        if (mode === 'plain') {
+            writePlainError(linesFromRecord([
+                ['error', error.code],
+                ['message', error.message],
+                ['status', error.status],
+            ]));
+            return;
+        }
+        writeHumanError(`Error: ${error.message}`);
+        return;
+    }
+    if (error instanceof Error) {
+        const code = typeof error.code === 'string'
+            ? error.code
+            : null;
+        const status = typeof error.status === 'number'
+            ? error.status
+            : null;
+        if (code) {
+            if (mode === 'json') {
+                writeJsonError({ code, message: error.message, ...(status !== null ? { status } : {}) });
+                return;
+            }
+            if (mode === 'plain') {
+                writePlainError(linesFromRecord([
+                    ['error', code],
+                    ['message', error.message],
+                    ['status', status ?? ''],
+                ]));
+                return;
+            }
+            writeHumanError(`Error: ${error.message}`);
+            return;
+        }
+    }
+    const message = error instanceof Error ? error.message : String(error);
+    if (mode === 'json') {
+        writeJsonError({ code: 'unexpected_error', message });
+        return;
+    }
+    if (mode === 'plain') {
+        writePlainError(linesFromRecord([
+            ['error', 'unexpected_error'],
+            ['message', message],
+        ]));
+        return;
+    }
+    writeHumanError(`Error: ${message}`);
+};
+export const withOwner = (claim, whoami, profile) => ({
+    ...claim,
+    owner: claim.owner ?? whoami?.owner ?? null,
+    profile: whoami?.profile_slug ?? claim.profile_slug ?? profile.profile_slug,
+});
+//# sourceMappingURL=output.js.map