mdpockla 0.1.1 → 0.3.0

package/LICENSE

@@ -1,21 +1,21 @@
-MIT License
-
-Copyright (c) 2026 Pockla Ltd
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
+MIT License
+
+Copyright (c) 2026 Pockla Ltd
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -1,72 +1,104 @@
-## mdpockla
-
-CLI for [md.pockla.com](https://md.pockla.com). Save and edit markdown
-or HTML notes from your shell, CI pipelines, or agent runtimes that
-can't speak MCP.
-
-### Install
-
-```sh
-npm install -g mdpockla
-mdpockla login
-```
-
-Or without installing:
-
-```sh
-npx mdpockla login
-```
-
-### Quick start
-
-```sh
-# Create a note and capture its URL.
-URL=$(mdpockla note create ./post.md --public)
-open "$URL"
-
-# Edit an existing note.
-mdpockla note edit "$URL" --content ./post.v2.md
-
-# Pipe a note's body somewhere else.
-mdpockla note get https://md.pockla.com/n/abc12345 | pandoc -t docx -o post.docx
-```
-
-### Commands
-
-```
-mdpockla login | logout | whoami
-mdpockla note create <file> [--title T] [--public] [--tag NAME ...] [--json]
-mdpockla note edit <id|url> [--content FILE] [--title T] [--visibility public|private] [--tag NAME ...]
-mdpockla note get <id|url> [--output FILE] [--json]
-mdpockla note list [--mine|--shared] [--query Q] [--limit N] [--json]
-mdpockla note delete <id|url>
-mdpockla note share <id|url> --visibility public|private
-mdpockla note collaborator add|remove <id|url> <email>
-```
-
-### Configuration
-
-| Env var | Purpose |
-|---|---|
-| `MDPOCKLA_URL` | Override the API base URL (default `https://md.pockla.com`). |
-| `MDPOCKLA_TOKEN` | Use a specific token instead of the saved login. Useful for CI. |
-| `NO_COLOR` | Disable colorised output. |
-
-Credentials are saved at `~/.mdpockla/config.json` (mode 0600).
-
-### Headless / CI
-
-```sh
-export MDPOCKLA_TOKEN=mdp_pat_...
-mdpockla note create ./CHANGELOG.md --title "Release $TAG" --public
-```
-
-Issue a long-lived PAT from the dashboard at
-[md.pockla.com/settings/agents](https://md.pockla.com/settings/agents).
-
-### How it talks to md pockla
-
-Every command is a thin wrapper around the HTTP API at `/api/v1/*` —
-the same endpoints the [remote MCP server](https://mcp.md.pockla.com)
-uses. If you outgrow this CLI, the MCP route works in Claude, Cursor,
-Codex, and ChatGPT Custom Connectors with one-click install.
+## mdpockla
+
+CLI for [md.pockla.com](https://md.pockla.com). Save and edit markdown
+or HTML notes from your shell, CI pipelines, or agent runtimes that
+can't speak MCP.
+
+### Install
+
+```sh
+npm install -g mdpockla
+mdpockla login
+```
+
+Or without installing:
+
+```sh
+npx mdpockla login
+```
+
+### Quick start
+
+```sh
+# Create a note and capture its URL.
+URL=$(mdpockla note create ./post.md --public)
+open "$URL"
+
+# Edit an existing note.
+mdpockla note edit "$URL" --content ./post.v2.md
+
+# Pipe a note's body somewhere else.
+mdpockla note get https://md.pockla.com/n/abc12345 | pandoc -t docx -o post.docx
+```
+
+### Versioning
+
+```sh
+# Save a snapshot before risky edits.
+mdpockla note version save "$URL" --label "before refactor"
+
+# Inspect history, then diff a snapshot against the current file.
+mdpockla note version list "$URL"
+mdpockla note version get  "$URL" 3 | diff - ./post.md
+
+# Roll back.
+mdpockla note version restore "$URL" 3
+
+# CI pattern: update + snapshot in one call.
+mdpockla note edit "$URL" --content ./CHANGELOG.md --save-version --label "Release $TAG"
+```
+
+`--save-version` applies the edit and snapshots the result as a new
+version in a single request. If the note has no versions yet, the
+pre-edit content is also captured as a baseline so the original stays
+recoverable.
+
+### Commands
+
+```
+mdpockla login | logout | whoami
+mdpockla note create <file> [--title T] [--public] [--tag NAME ...] [--json]
+mdpockla note edit <id|url> [--content FILE] [--title T] [--visibility public|private] [--tag NAME ...] [--save-version [--label TEXT]]
+mdpockla note get <id|url> [--output FILE] [--version N] [--json]
+mdpockla note list [--mine|--shared] [--query Q] [--limit N] [--json]
+mdpockla note delete <id|url>
+mdpockla note share <id|url> --visibility public|private
+mdpockla note collaborator add|remove <id|url> <email>
+```
+
+#### Versions
+
+```
+mdpockla note version save <id|url> [--label TEXT] [--json]
+mdpockla note version list <id|url> [--json]
+mdpockla note version get  <id|url> <version> [--output FILE] [--json]
+mdpockla note version restore <id|url> <version> [--json]
+mdpockla note version delete  <id|url> <version>
+```
+
+### Configuration
+
+| Env var | Purpose |
+|---|---|
+| `MDPOCKLA_URL` | Override the API base URL (default `https://md.pockla.com`). |
+| `MDPOCKLA_TOKEN` | Use a specific token instead of the saved login. Useful for CI. |
+| `NO_COLOR` | Disable colorised output. |
+
+Credentials are saved at `~/.mdpockla/config.json` (mode 0600).
+
+### Headless / CI
+
+```sh
+export MDPOCKLA_TOKEN=mdp_pat_...
+mdpockla note create ./CHANGELOG.md --title "Release $TAG" --public
+```
+
+Issue a long-lived PAT from the dashboard at
+[md.pockla.com/settings/agents](https://md.pockla.com/settings/agents).
+
+### How it talks to md pockla
+
+Every command is a thin wrapper around the HTTP API at `/api/v1/*` —
+the same endpoints the [remote MCP server](https://mcp.md.pockla.com)
+uses. If you outgrow this CLI, the MCP route works in Claude, Cursor,
+Codex, and ChatGPT Custom Connectors with one-click install.

package/bin/mdpockla.mjs

@@ -1,7 +1,7 @@
-#!/usr/bin/env node
-import { run } from "../src/index.mjs";
-
-run(process.argv.slice(2)).catch((err) => {
-  process.stderr.write(`mdpockla: ${err.message ?? err}\n`);
-  process.exit(typeof err.exitCode === "number" ? err.exitCode : 1);
-});
+#!/usr/bin/env node
+import { run } from "../src/index.mjs";
+
+run(process.argv.slice(2)).catch((err) => {
+  process.stderr.write(`mdpockla: ${err.message ?? err}\n`);
+  process.exit(typeof err.exitCode === "number" ? err.exitCode : 1);
+});

package/package.json

@@ -1,47 +1,47 @@
-{
-  "name": "mdpockla",
-  "version": "0.1.1",
-  "description": "CLI for md.pockla.com - save and edit markdown notes from your shell or CI. Pairs with the md pockla MCP server for agent-native sharing.",
-  "type": "module",
-  "bin": {
-    "mdpockla": "./bin/mdpockla.mjs"
-  },
-  "files": [
-    "bin/",
-    "src/",
-    "README.md",
-    "LICENSE"
-  ],
-  "engines": {
-    "node": ">=20"
-  },
-  "scripts": {
-    "start": "node bin/mdpockla.mjs"
-  },
-  "keywords": [
-    "markdown",
-    "md-pockla",
-    "mdpockla",
-    "pockla",
-    "mcp",
-    "agent",
-    "notes",
-    "share",
-    "cli"
-  ],
-  "author": "Jeremy Dsouza <jeremy@pockla.com>",
-  "homepage": "https://md.pockla.com",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/jeremydsz/md-viewer.git",
-    "directory": "cli"
-  },
-  "bugs": {
-    "url": "https://github.com/jeremydsz/md-viewer/issues"
-  },
-  "license": "MIT",
-  "publishConfig": {
-    "access": "public",
-    "registry": "https://registry.npmjs.org/"
-  }
-}
+{
+  "name": "mdpockla",
+  "version": "0.3.0",
+  "description": "CLI for md.pockla.com - save and edit markdown notes from your shell or CI. Pairs with the md pockla MCP server for agent-native sharing.",
+  "type": "module",
+  "bin": {
+    "mdpockla": "./bin/mdpockla.mjs"
+  },
+  "files": [
+    "bin/",
+    "src/",
+    "README.md",
+    "LICENSE"
+  ],
+  "engines": {
+    "node": ">=20"
+  },
+  "scripts": {
+    "start": "node bin/mdpockla.mjs"
+  },
+  "keywords": [
+    "markdown",
+    "md-pockla",
+    "mdpockla",
+    "pockla",
+    "mcp",
+    "agent",
+    "notes",
+    "share",
+    "cli"
+  ],
+  "author": "Jeremy Dsouza <jeremy@pockla.com>",
+  "homepage": "https://md.pockla.com",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/jeremydsz/md-viewer.git",
+    "directory": "cli"
+  },
+  "bugs": {
+    "url": "https://github.com/jeremydsz/md-viewer/issues"
+  },
+  "license": "MIT",
+  "publishConfig": {
+    "access": "public",
+    "registry": "https://registry.npmjs.org/"
+  }
+}

package/src/commands/auth.mjs

@@ -1,80 +1,80 @@
-import { setTimeout as wait } from "node:timers/promises";
-import { saveConfig, clearConfig } from "../lib/config.mjs";
-import { api, rawFetch } from "../lib/http.mjs";
-
-/**
- * Device authorization flow (RFC 8628):
- *
- *   1. POST /api/oauth/device_authorization     -> { device_code, user_code, verification_uri, interval, expires_in }
- *   2. Print the URL + user_code to the user.
- *   3. Poll POST /api/oauth/token with the device_code until the user
- *      approves on the website. Then store the returned PAT.
- */
-export async function login() {
-  const startRes = await rawFetch("/api/oauth/device_authorization", {
-    method: "POST",
-    headers: { "Content-Type": "application/x-www-form-urlencoded" },
-    body: "client_id=mdpockla-cli&scope=notes:read%20notes:write",
-  });
-  if (!startRes.ok) {
-    throw exit(`Could not start login: HTTP ${startRes.status}`);
-  }
-  const start = await startRes.json();
-  const { device_code, user_code, verification_uri, interval, expires_in } = start;
-  const deadline = Date.now() + expires_in * 1000;
-
-  process.stdout.write(`Visit ${verification_uri}?code=${user_code}\n`);
-  process.stdout.write(`Or open ${verification_uri} and enter: ${user_code}\n`);
-  process.stdout.write("Waiting for approval...\n");
-
-  const pollIntervalMs = Math.max(1, interval || 3) * 1000;
-  while (Date.now() < deadline) {
-    await wait(pollIntervalMs);
-    const tokenRes = await rawFetch("/api/oauth/token", {
-      method: "POST",
-      headers: { "Content-Type": "application/x-www-form-urlencoded" },
-      body: new URLSearchParams({
-        grant_type: "urn:ietf:params:oauth:grant-type:device_code",
-        device_code,
-        client_id: "mdpockla-cli",
-      }).toString(),
-    });
-    if (tokenRes.ok) {
-      const tokens = await tokenRes.json();
-      await saveConfig({ token: tokens.access_token });
-      const me = await api("GET", "/api/v1/whoami");
-      process.stdout.write(`Logged in as ${me.email}.\n`);
-      return;
-    }
-    if (tokenRes.status === 400) {
-      const body = await tokenRes.json().catch(() => ({}));
-      if (body.error === "authorization_pending") continue;
-      if (body.error === "slow_down") {
-        await wait(pollIntervalMs);
-        continue;
-      }
-      if (body.error === "expired_token") {
-        throw exit("Login timed out. Run `mdpockla login` again.");
-      }
-      throw exit(body?.error?.message ?? body.error ?? "Login failed");
-    }
-    throw exit(`Unexpected token response: HTTP ${tokenRes.status}`);
-  }
-  throw exit("Login timed out. Run `mdpockla login` again.");
-}
-
-export async function logout() {
-  await clearConfig();
-  process.stdout.write("Logged out.\n");
-}
-
-export async function whoami() {
-  const me = await api("GET", "/api/v1/whoami");
-  process.stdout.write(`${me.email} (${me.user_id})\n`);
-}
-
-function exit(message, code = 1) {
-  const err = new Error(message);
-  err.exitCode = code;
-  return err;
-}
+import { setTimeout as wait } from "node:timers/promises";
+import { saveConfig, clearConfig } from "../lib/config.mjs";
+import { api, rawFetch } from "../lib/http.mjs";
+
+/**
+ * Device authorization flow (RFC 8628):
+ *
+ *   1. POST /api/oauth/device_authorization     -> { device_code, user_code, verification_uri, interval, expires_in }
+ *   2. Print the URL + user_code to the user.
+ *   3. Poll POST /api/oauth/token with the device_code until the user
+ *      approves on the website. Then store the returned PAT.
+ */
+export async function login() {
+  const startRes = await rawFetch("/api/oauth/device_authorization", {
+    method: "POST",
+    headers: { "Content-Type": "application/x-www-form-urlencoded" },
+    body: "client_id=mdpockla-cli&scope=notes:read%20notes:write",
+  });
+  if (!startRes.ok) {
+    throw exit(`Could not start login: HTTP ${startRes.status}`);
+  }
+  const start = await startRes.json();
+  const { device_code, user_code, verification_uri, interval, expires_in } = start;
+  const deadline = Date.now() + expires_in * 1000;
+
+  process.stdout.write(`Visit ${verification_uri}?code=${user_code}\n`);
+  process.stdout.write(`Or open ${verification_uri} and enter: ${user_code}\n`);
+  process.stdout.write("Waiting for approval...\n");
+
+  const pollIntervalMs = Math.max(1, interval || 3) * 1000;
+  while (Date.now() < deadline) {
+    await wait(pollIntervalMs);
+    const tokenRes = await rawFetch("/api/oauth/token", {
+      method: "POST",
+      headers: { "Content-Type": "application/x-www-form-urlencoded" },
+      body: new URLSearchParams({
+        grant_type: "urn:ietf:params:oauth:grant-type:device_code",
+        device_code,
+        client_id: "mdpockla-cli",
+      }).toString(),
+    });
+    if (tokenRes.ok) {
+      const tokens = await tokenRes.json();
+      await saveConfig({ token: tokens.access_token });
+      const me = await api("GET", "/api/v1/whoami");
+      process.stdout.write(`Logged in as ${me.email}.\n`);
+      return;
+    }
+    if (tokenRes.status === 400) {
+      const body = await tokenRes.json().catch(() => ({}));
+      if (body.error === "authorization_pending") continue;
+      if (body.error === "slow_down") {
+        await wait(pollIntervalMs);
+        continue;
+      }
+      if (body.error === "expired_token") {
+        throw exit("Login timed out. Run `mdpockla login` again.");
+      }
+      throw exit(body?.error?.message ?? body.error ?? "Login failed");
+    }
+    throw exit(`Unexpected token response: HTTP ${tokenRes.status}`);
+  }
+  throw exit("Login timed out. Run `mdpockla login` again.");
+}
+
+export async function logout() {
+  await clearConfig();
+  process.stdout.write("Logged out.\n");
+}
+
+export async function whoami() {
+  const me = await api("GET", "/api/v1/whoami");
+  process.stdout.write(`${me.email} (${me.user_id})\n`);
+}
+
+function exit(message, code = 1) {
+  const err = new Error(message);
+  err.exitCode = code;
+  return err;
+}