libretto 0.6.13 → 0.6.14

package/dist/cli/commands/auth.js

@@ -1,13 +1,13 @@
 import { z } from "zod";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 import {
   ApiCallError,
   betterAuthCall,
-  HOSTED_API_URL,
   NOT_AUTHENTICATED_MESSAGE,
   orpcCall,
   pickCredential,
-  resolveApiUrl
+  resolveApiUrl,
+  resolveHostedApiUrl
 } from "../core/auth-fetch.js";
 import {
   authStatePath,
@@ -88,10 +88,9 @@ async function issueApiKey(apiUrl, name, credential) {
   return data;
 }
 const signupCommand = SimpleCLI.command({
-  description: "Create a new hosted-platform account and organization",
-  experimental: true
+  description: "Create a new hosted-platform account and organization"
 }).input(SimpleCLI.input({ positionals: [], named: {} })).handle(async () => {
-  const apiUrl = HOSTED_API_URL;
+  const apiUrl = resolveHostedApiUrl();
   console.log("Sign up for libretto cloud");
   console.log();
   console.log("Heads up: a libretto user can only belong to one organization.");
@@ -103,7 +102,7 @@ const signupCommand = SimpleCLI.command({
   const name = await prompt("Your name:");
   if (name.toLowerCase() === "q" || name.length === 0) {
     console.log(
-      "OK \u2014 ask an existing teammate to run `libretto experimental auth invite <your-email>` and then run `libretto experimental auth accept-invite <slug> <invitation-id>` from this machine."
+      "OK \u2014 ask an existing teammate to run `libretto cloud auth invite <your-email>` and then run `libretto cloud auth accept-invite <slug> <invitation-id>` from this machine."
     );
     return;
   }
@@ -162,14 +161,13 @@ const signupCommand = SimpleCLI.command({
   console.log(`Session saved to ${authStatePath()}`);
   console.log();
   console.log("To generate an API key, run:");
-  console.log("  libretto experimental auth api-key issue --label <label>");
+  console.log("  libretto cloud auth api-key issue --label <label>");
   console.log("Then add LIBRETTO_API_KEY=<key> to your project's .env file.");
 });
 const loginCommand = SimpleCLI.command({
-  description: "Sign in to an existing hosted-platform account",
-  experimental: true
+  description: "Sign in to an existing hosted-platform account"
 }).input(SimpleCLI.input({ positionals: [], named: {} })).handle(async () => {
-  const apiUrl = HOSTED_API_URL;
+  const apiUrl = resolveHostedApiUrl();
   const email = await prompt("Email:");
   const password = await promptPassword("Password:");
   const { data, setCookie } = await betterAuthCall({
@@ -218,8 +216,7 @@ const loginCommand = SimpleCLI.command({
   }
 });
 const logoutCommand = SimpleCLI.command({
-  description: "Clear local libretto credentials",
-  experimental: true
+  description: "Clear local libretto credentials"
 }).handle(async () => {
   const state = await readAuthState();
   if (state?.session?.cookie) {
@@ -236,8 +233,7 @@ const logoutCommand = SimpleCLI.command({
   console.log("Logged out.");
 });
 const inviteCommand = SimpleCLI.command({
-  description: "Invite a teammate to your active organization",
-  experimental: true
+  description: "Invite a teammate to your active organization"
 }).input(
   SimpleCLI.input({
     positionals: [
@@ -287,12 +283,11 @@ const inviteCommand = SimpleCLI.command({
   console.log();
   console.log("Tell them to run:");
   console.log(
-    `  libretto experimental auth accept-invite ${orgSlug} ${data.id}`
+    `  libretto cloud auth accept-invite ${orgSlug} ${data.id}`
   );
 });
 const acceptInviteCommand = SimpleCLI.command({
-  description: "Accept an organization invitation",
-  experimental: true
+  description: "Accept an organization invitation"
 }).input(
   SimpleCLI.input({
     positionals: [
@@ -313,7 +308,7 @@ const acceptInviteCommand = SimpleCLI.command({
   })
 ).handle(async ({ input }) => {
   const stored = await readAuthState();
-  const apiUrl = HOSTED_API_URL;
+  const apiUrl = resolveHostedApiUrl();
   const credential = pickCredential(stored);
   const expectedTenantSlug = input.tenantSlug;
   if (credential.source !== "none") {
@@ -328,7 +323,7 @@ const acceptInviteCommand = SimpleCLI.command({
         [
           "You're already a member of an organization.",
           "A libretto user can only belong to one organization at a time.",
-          "To accept this invite: log out, delete the existing account, and re-run `auth accept-invite` with a new account (or a fresh email)."
+          "To accept this invite: log out, delete the existing account, and re-run `libretto cloud auth accept-invite` with a new account (or a fresh email)."
         ].join("\n")
       );
     }
@@ -381,12 +376,11 @@ const acceptInviteCommand = SimpleCLI.command({
   console.log();
   console.log("Email verified. You're logged in and a member of the organization.");
   console.log("To generate an API key, run:");
-  console.log("  libretto experimental auth api-key issue --label <label>");
+  console.log("  libretto cloud auth api-key issue --label <label>");
   console.log("Then add LIBRETTO_API_KEY=<key> to your project's .env file.");
 });
 const apiKeyIssueCommand = SimpleCLI.command({
-  description: "Issue a new API key for the active organization",
-  experimental: true
+  description: "Issue a new API key for the active organization"
 }).input(
   SimpleCLI.input({
     positionals: [],
@@ -416,8 +410,7 @@ const apiKeyIssueCommand = SimpleCLI.command({
   );
 });
 const apiKeyListCommand = SimpleCLI.command({
-  description: "List API keys for the active organization",
-  experimental: true
+  description: "List API keys for the active organization"
 }).handle(async () => {
   const stored = await readAuthState();
   const apiUrl = resolveApiUrl(stored);
@@ -444,13 +437,12 @@ const apiKeyListCommand = SimpleCLI.command({
   }
 });
 const apiKeyRevokeCommand = SimpleCLI.command({
-  description: "Revoke an API key by id",
-  experimental: true
+  description: "Revoke an API key by id"
 }).input(
   SimpleCLI.input({
     positionals: [
       SimpleCLI.positional("id", z.string().min(1), {
-        help: "API key id (from `auth api-key list`)."
+        help: "API key id (from `libretto cloud auth api-key list`)."
       })
     ],
     named: {}
@@ -470,24 +462,23 @@ const apiKeyRevokeCommand = SimpleCLI.command({
   });
   console.log(`API key ${input.id} revoked.`);
   console.log(
-    "If this key was in your .env, remove the LIBRETTO_API_KEY value and issue a new one with `auth api-key issue --label <label>`."
+    "If this key was in your .env, remove the LIBRETTO_API_KEY value and issue a new one with `libretto cloud auth api-key issue --label <label>`."
   );
 });
 const whoamiCommand = SimpleCLI.command({
-  description: "Print the active session and credential source",
-  experimental: true
+  description: "Print the active session and credential source"
 }).handle(async () => {
   const stored = await readAuthState();
   const credential = pickCredential(stored);
   const envKey = process.env.LIBRETTO_API_KEY?.trim();
   if (credential.source === "none") {
     console.log(
-      "Not authenticated. Run `libretto experimental auth signup`, `login`, or set LIBRETTO_API_KEY in your env."
+      "Not authenticated. Run `libretto cloud auth signup`, `libretto cloud auth login`, or set LIBRETTO_API_KEY in your env."
     );
     return;
   }
   console.log(`Auth source:      ${credential.source}`);
-  console.log(`API URL:          ${HOSTED_API_URL}`);
+  console.log(`API URL:          ${resolveHostedApiUrl()}`);
   console.log(
     `LIBRETTO_API_KEY: ${envKey ? `set in env (${envKey.slice(0, 6)}\u2026)` : "not set in env"}`
   );

package/dist/cli/commands/billing.js

@@ -1,4 +1,4 @@
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 import {
   NOT_AUTHENTICATED_MESSAGE,
   orpcCall,
@@ -20,8 +20,7 @@ function formatLimit(limit) {
   return limit === null ? "\u221E" : String(limit);
 }
 const billingPortalCommand = SimpleCLI.command({
-  description: "Open the libretto plans page (current plan + switch options)",
-  experimental: true
+  description: "Open the libretto plans page (current plan + switch options)"
 }).handle(async () => {
   const { apiUrl, credential } = await requireAuth();
   const { url } = await orpcCall({
@@ -40,8 +39,7 @@ const billingPortalCommand = SimpleCLI.command({
   );
 });
 const billingStatusCommand = SimpleCLI.command({
-  description: "Print the current plan, status, and browser-hour usage",
-  experimental: true
+  description: "Print the current plan, status, and browser-hour usage"
 }).handle(async () => {
   const { apiUrl, credential } = await requireAuth();
   const sub = await orpcCall({

package/dist/cli/commands/browser.js

@@ -19,7 +19,7 @@ import {
   validateSessionName
 } from "../core/session.js";
 import { warnIfInstalledSkillOutOfDate } from "../core/skill-version.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 import {
   sessionOption,
   withAutoSession,
@@ -51,8 +51,8 @@ function resolveRequestedSessionMode(readOnly, writeAccess) {
 }
 const openInput = SimpleCLI.input({
   positionals: [
-    SimpleCLI.positional("url", z.string().optional(), {
-      help: "URL to open"
+    SimpleCLI.positional("url", z.string().default("about:blank"), {
+      help: "URL to open (defaults to about:blank)"
     })
   ],
   named: {
@@ -80,9 +80,6 @@ const openInput = SimpleCLI.input({
     })
   }
 }).refine(
-  (input) => Boolean(input.url),
-  `Usage: ${librettoCommand("open <url> [--headless] [--read-only|--write-access] [--auth-profile <domain>] [--viewport WxH] [--session <name>]")}`
-).refine(
   (input) => !(input.headed && input.headless),
   "Cannot pass both --headed and --headless."
 ).refine(

package/dist/cli/commands/deploy.js

@@ -1,31 +1,51 @@
 import { randomBytes } from "node:crypto";
 import { z } from "zod";
-import { HOSTED_API_URL } from "../core/auth-fetch.js";
+import {
+  orpcCall,
+  resolveApiUrl
+} from "../core/auth-fetch.js";
 import { buildHostedDeployTarball } from "../core/deploy-artifact.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { readAuthState } from "../core/auth-storage.js";
+import { SimpleCLI } from "affordance";
 function generateDeploymentName() {
   return `deploy-${Date.now().toString(36)}-${randomBytes(4).toString("hex")}`;
 }
-function getConfig() {
-  const apiKey = process.env.LIBRETTO_API_KEY;
+function deployApiKeyRequiredMessage(hasStoredSession) {
+  if (hasStoredSession) {
+    return [
+      "LIBRETTO_API_KEY is required to deploy to Libretto Cloud.",
+      "You are logged in locally, but deploy endpoints require API-key auth.",
+      "  \u2022 Generate a key: run `libretto cloud auth api-key issue --label <label>`.",
+      "  \u2022 Add it to your project .env file: `LIBRETTO_API_KEY=<issued-key>`."
+    ].join("\n");
+  }
+  return [
+    "LIBRETTO_API_KEY is required to deploy to Libretto Cloud.",
+    "No local cloud session was found.",
+    "  \u2022 New account: run `libretto cloud auth signup`, then verify your email.",
+    "  \u2022 Existing account: run `libretto cloud auth login`.",
+    "  \u2022 Generate a key: run `libretto cloud auth api-key issue --label <label>`.",
+    "  \u2022 Add it to your project .env file: `LIBRETTO_API_KEY=<issued-key>`."
+  ].join("\n");
+}
+async function requireDeployApiKey() {
+  const apiKey = process.env.LIBRETTO_API_KEY?.trim();
   if (!apiKey) {
-    throw new Error(
-      "LIBRETTO_API_KEY environment variable is required."
-    );
+    throw new Error(deployApiKeyRequiredMessage(await hasStoredCloudSession()));
   }
-  return { apiUrl: HOSTED_API_URL, apiKey };
+  return {
+    apiUrl: resolveApiUrl(null),
+    credential: { source: "env-api-key", apiKey }
+  };
 }
-async function postJson(apiUrl, apiKey, path, input = {}) {
-  return fetch(`${apiUrl}${path}`, {
-    method: "POST",
-    headers: {
-      "x-api-key": apiKey,
-      "Content-Type": "application/json"
-    },
-    body: JSON.stringify({ json: input })
-  });
+async function hasStoredCloudSession() {
+  try {
+    return Boolean((await readAuthState())?.session);
+  } catch {
+    return false;
+  }
 }
-async function pollDeployment(apiUrl, apiKey, deploymentId, pollIntervalMs, maxWaitMs) {
+async function pollDeployment(apiUrl, credential, deploymentId, pollIntervalMs, maxWaitMs) {
   const start = Date.now();
   const workflowWaitMs = 6e4;
   let status = "building";
@@ -37,18 +57,14 @@ async function pollDeployment(apiUrl, apiKey, deploymentId, pollIntervalMs, maxW
     if (status === "ready" && workflows?.length) break;
     if (status === "ready" && readyAt && Date.now() - readyAt > workflowWaitMs) break;
     await new Promise((r) => setTimeout(r, pollIntervalMs));
-    const res = await postJson(apiUrl, apiKey, "/v1/deployments/sync", {
-      id: deploymentId
+    deployment = await orpcCall({
+      apiUrl,
+      path: "/v1/deployments/sync",
+      input: { id: deploymentId },
+      credential
     });
-    const body = await res.json();
-    if (res.status !== 200) {
-      throw new Error(
-        `Failed to sync deployment status (${res.status}): ${JSON.stringify(body)}`
-      );
-    }
-    status = body.json.status;
-    workflows = body.json.workflows;
-    deployment = body.json;
+    status = deployment.status;
+    workflows = deployment.workflows;
     if (status === "ready" && readyAt === null) readyAt = Date.now();
     process.stdout.write(".");
   }
@@ -88,10 +104,9 @@ const deployInput = SimpleCLI.input({
   }
 });
 const deployCommand = SimpleCLI.command({
-  description: "Deploy workflows to the hosted platform",
-  experimental: true
+  description: "Deploy workflows to the hosted platform"
 }).input(deployInput).handle(async ({ input }) => {
-  const { apiUrl, apiKey } = getConfig();
+  const { apiUrl, credential } = await requireDeployApiKey();
   const deploymentName = generateDeploymentName();
   console.log("Bundling hosted deployment artifact...");
   const { entryPoint, source } = await buildHostedDeployTarball({
@@ -106,26 +121,20 @@ const deployCommand = SimpleCLI.command({
   };
   if (input.description) createPayload.description = input.description;
   console.log("Uploading deployment...");
-  const res = await postJson(
+  const body = await orpcCall({
     apiUrl,
-    apiKey,
-    "/v1/deployments/create",
-    createPayload
-  );
-  const body = await res.json();
-  if (res.status !== 200) {
-    throw new Error(
-      `Failed to create deployment (${res.status}): ${JSON.stringify(body)}`
-    );
-  }
-  const { deployment_id, status } = body.json;
+    path: "/v1/deployments/create",
+    input: createPayload,
+    credential
+  });
+  const { deployment_id, status } = body;
   console.log(`Deployment created: ${deployment_id}`);
   console.log(`Status: ${status}`);
   if (status === "building") {
     process.stdout.write("Waiting for build");
     const deployment = await pollDeployment(
       apiUrl,
-      apiKey,
+      credential,
       deployment_id,
       1e4,
       5 * 60 * 1e3

package/dist/cli/commands/execution.js

@@ -27,7 +27,10 @@ import { warnIfInstalledSkillOutOfDate } from "../core/skill-version.js";
 import { readLibrettoConfig } from "../core/config.js";
 import { librettoCommand } from "../../shared/package-manager.js";
 import { renderSnapshotDiff } from "../../shared/snapshot/diff-snapshots.js";
-import { resolveProviderName } from "../core/providers/index.js";
+import {
+  getProviderStartupTimeoutMs,
+  resolveProviderName
+} from "../core/providers/index.js";
 import { getAbsoluteIntegrationPath } from "../core/workflow-runtime.js";
 import {
   compileExecFunction,
@@ -42,7 +45,7 @@ import {
   readNetworkLog,
   wrapPageForActionLogging
 } from "../core/telemetry.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 import {
   pageOption,
   sessionOption,
@@ -459,7 +462,7 @@ async function runIntegrationFromFile(args, logger) {
     },
     logger,
     logPath: runLogPath,
-    startupTimeoutMs: 6e4,
+    startupTimeoutMs: getProviderStartupTimeoutMs(args.providerName),
     handlers
   });
   writeSessionState(

package/dist/cli/commands/experiments.js

@@ -6,7 +6,7 @@ import {
   resolveExperiments,
   setExperimentEnabled
 } from "../core/experiments.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 const experimentNames = Object.keys(EXPERIMENTS);
 const experimentsUsage = [
   "Usage:",

package/dist/cli/commands/setup.js

@@ -8,7 +8,7 @@ import {
   REPO_ROOT
 } from "../core/context.js";
 import { librettoCommand } from "../../shared/package-manager.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 function installBrowsers() {
   console.log("Installing Playwright Chromium...");
   const result = spawnSync("npx", ["playwright", "install", "chromium"], {

package/dist/cli/commands/shared.js

@@ -8,7 +8,7 @@ import {
 } from "../core/session.js";
 import {
   SimpleCLI
-} from "../framework/simple-cli.js";
+} from "affordance";
 function sessionOption(help = "Session name") {
   return SimpleCLI.option(z.string().optional(), { help });
 }

package/dist/cli/commands/snapshot.js

@@ -1,6 +1,6 @@
 import { z } from "zod";
 import { readSessionState } from "../core/session.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 import {
   pageOption,
   sessionOption,

package/dist/cli/commands/status.js

@@ -1,5 +1,5 @@
 import { listRunningSessions } from "../core/session.js";
-import { SimpleCLI } from "../framework/simple-cli.js";
+import { SimpleCLI } from "affordance";
 function printOpenSessions(sessions) {
   console.log("\nOpen sessions:");
   if (sessions.length === 0) {

package/dist/cli/core/auth-fetch.js

@@ -1,9 +1,13 @@
 import { readAuthState, writeAuthState } from "./auth-storage.js";
-const HOSTED_API_URL = "https://api.libretto.sh";
+const DEFAULT_HOSTED_API_URL = "https://api.libretto.sh";
+function resolveHostedApiUrl() {
+  return process.env.LIBRETTO_API_URL?.trim() || DEFAULT_HOSTED_API_URL;
+}
 const NOT_AUTHENTICATED_MESSAGE = [
   "Not authenticated.",
-  "  \u2022 Cookie expired or never set: run `libretto experimental auth login` to refresh it.",
-  "  \u2022 Or set LIBRETTO_API_KEY in your .env (issue one with `libretto experimental auth api-key issue --label <label>` after logging in)."
+  "  \u2022 New account: run `libretto cloud auth signup`.",
+  "  \u2022 Existing account: run `libretto cloud auth login`.",
+  "  \u2022 Automation: set LIBRETTO_API_KEY in your env (issue one with `libretto cloud auth api-key issue --label <label>` after signing in)."
 ].join("\n");
 function pickCredential(state) {
   const envKey = process.env.LIBRETTO_API_KEY?.trim();
@@ -14,7 +18,7 @@ function pickCredential(state) {
   return { source: "none" };
 }
 function resolveApiUrl(_state) {
-  return HOSTED_API_URL;
+  return resolveHostedApiUrl();
 }
 async function authFetch(options) {
   const headers = {
@@ -184,12 +188,13 @@ async function ensureAuthState(apiUrl) {
 }
 export {
   ApiCallError,
-  HOSTED_API_URL,
+  DEFAULT_HOSTED_API_URL,
   NOT_AUTHENTICATED_MESSAGE,
   authFetch,
   betterAuthCall,
   ensureAuthState,
   orpcCall,
   pickCredential,
-  resolveApiUrl
+  resolveApiUrl,
+  resolveHostedApiUrl
 };

package/dist/cli/core/browser.js

@@ -5,10 +5,14 @@ import { existsSync, readFileSync, unlinkSync } from "node:fs";
 import { mkdir, writeFile } from "node:fs/promises";
 import { dirname, join } from "node:path";
 import { createServer } from "node:net";
+import { isWindowsNamedPipePath } from "../../shared/ipc/socket-transport.js";
 import { getSessionProviderClosePath, PROFILES_DIR } from "./context.js";
 import { readLibrettoConfig } from "./config.js";
 import { librettoCommand } from "../../shared/package-manager.js";
-import { getCloudProviderApi } from "./providers/index.js";
+import {
+  getCloudProviderApi,
+  getProviderStartupTimeoutMs
+} from "./providers/index.js";
 import {
   assertSessionAvailableForStart,
   clearSessionState,
@@ -64,14 +68,14 @@ function normalizeUrl(url) {
   if (!parsedUrl) {
     return new URL(`https://${url}`);
   }
-  if (parsedUrl.protocol === "http:" || parsedUrl.protocol === "https:" || parsedUrl.protocol === "file:") {
+  if (parsedUrl.protocol === "http:" || parsedUrl.protocol === "https:" || parsedUrl.protocol === "file:" || parsedUrl.href === "about:blank") {
     return parsedUrl;
   }
   if (isLikelyHostWithPort(parsedUrl, url)) {
     return new URL(`https://${url}`);
   }
   throw new Error(
-    `Unsupported URL protocol: ${parsedUrl.protocol}. Use http://, https://, or file://.`
+    `Unsupported URL protocol: ${parsedUrl.protocol}. Use http://, https://, file://, or about:blank.`
   );
 }
 function normalizeDomain(url) {
@@ -398,8 +402,8 @@ async function runOpenWithProvider(rawUrl, providerName, session, logger, access
     },
     logger,
     logPath: runLogPath,
-    // Remote CDP connection + navigation; must cover both.
-    startupTimeoutMs: 6e4
+    // Remote provider creation can wait for cloud capacity before CDP exists.
+    startupTimeoutMs: getProviderStartupTimeoutMs(providerName)
   });
   client.destroy();
   if (!providerSession) {
@@ -727,6 +731,7 @@ function resolveClosableSessions(logger) {
 }
 function unlinkDaemonSocket(socketPath, logger, session) {
   if (!socketPath) return;
+  if (isWindowsNamedPipePath(socketPath)) return;
   try {
     unlinkSync(socketPath);
   } catch (err) {