milieu-cli 0.1.0

package/dist/utils/ssrf.js

@@ -0,0 +1,134 @@
+import dns from "node:dns/promises";
+import net from "node:net";
+// ---------------------------------------------------------------------------
+// IPv4 private/reserved range checks
+// ---------------------------------------------------------------------------
+function isPrivateIPv4(ip) {
+    const parts = ip.split(".").map(Number);
+    if (parts.length !== 4 || parts.some((p) => isNaN(p)))
+        return false;
+    const [a, b] = parts;
+    // 10.0.0.0/8
+    if (a === 10)
+        return true;
+    // 172.16.0.0/12 (172.16.x.x - 172.31.x.x)
+    if (a === 172 && b >= 16 && b <= 31)
+        return true;
+    // 192.168.0.0/16
+    if (a === 192 && b === 168)
+        return true;
+    // 127.0.0.0/8 (loopback)
+    if (a === 127)
+        return true;
+    // 0.0.0.0/8
+    if (a === 0)
+        return true;
+    // 169.254.0.0/16 (link-local, includes AWS metadata 169.254.169.254)
+    if (a === 169 && b === 254)
+        return true;
+    // 100.64.0.0/10 (CGNAT: 100.64.x.x - 100.127.x.x)
+    if (a === 100 && b >= 64 && b <= 127)
+        return true;
+    return false;
+}
+// ---------------------------------------------------------------------------
+// IPv6 private/reserved range checks
+// ---------------------------------------------------------------------------
+function isPrivateIPv6(ip) {
+    const lower = ip.toLowerCase();
+    // IPv4-mapped IPv6 (::ffff:x.x.x.x) -- extract and check IPv4 portion
+    if (lower.startsWith("::ffff:")) {
+        const v4Part = lower.slice(7);
+        if (net.isIPv4(v4Part))
+            return isPrivateIPv4(v4Part);
+    }
+    // ::1 loopback
+    if (lower === "::1")
+        return true;
+    // :: unspecified
+    if (lower === "::")
+        return true;
+    // fe80::/10 link-local
+    if (lower.startsWith("fe80:"))
+        return true;
+    // fc00::/7 unique local address (fc00:: and fd00::)
+    if (lower.startsWith("fc") || lower.startsWith("fd"))
+        return true;
+    return false;
+}
+// ---------------------------------------------------------------------------
+// Public API
+// ---------------------------------------------------------------------------
+/**
+ * Check whether an IP address falls in a private/reserved range.
+ *
+ * Covers all RFC 1918 ranges, loopback, link-local, CGNAT, IPv6 ULA,
+ * and IPv4-mapped IPv6 addresses.
+ */
+export function isPrivateIp(ip) {
+    if (net.isIPv4(ip))
+        return isPrivateIPv4(ip);
+    if (net.isIPv6(ip))
+        return isPrivateIPv6(ip);
+    return false;
+}
+/**
+ * Validate that a hostname does not resolve to a private/reserved IP.
+ *
+ * - Checks cache first (scan-scoped, avoids duplicate lookups)
+ * - Skips DNS if hostname is already an IP literal
+ * - Resolves ALL addresses and rejects if ANY is private
+ * - Caches the first resolved IP on success
+ * - Uses a 3-second DNS timeout via AbortSignal
+ */
+export async function validateDns(hostname, cache) {
+    // Check cache first
+    const cached = cache.get(hostname);
+    if (cached !== undefined) {
+        if (isPrivateIp(cached)) {
+            return {
+                safe: false,
+                error: `Hostname resolves to private address ${cached}`,
+                ip: cached,
+            };
+        }
+        return { safe: true, ip: cached };
+    }
+    // If hostname is already an IP literal, skip DNS lookup
+    if (net.isIP(hostname) !== 0) {
+        if (isPrivateIp(hostname)) {
+            return {
+                safe: false,
+                error: `Hostname resolves to private address ${hostname}`,
+                ip: hostname,
+            };
+        }
+        return { safe: true, ip: hostname };
+    }
+    // DNS resolution with 3-second timeout
+    try {
+        const DNS_TIMEOUT_MS = 3000;
+        const lookupPromise = dns.lookup(hostname, { all: true });
+        const timeoutPromise = new Promise((_, reject) => setTimeout(() => reject(new Error("DNS lookup timed out")), DNS_TIMEOUT_MS));
+        const records = await Promise.race([lookupPromise, timeoutPromise]);
+        // Check ALL resolved addresses -- reject if ANY is private
+        for (const record of records) {
+            if (isPrivateIp(record.address)) {
+                return {
+                    safe: false,
+                    error: `Hostname resolves to private address ${record.address}`,
+                    ip: record.address,
+                };
+            }
+        }
+        // Cache the first resolved IP
+        const ip = records[0].address;
+        cache.set(hostname, ip);
+        return { safe: true, ip };
+    }
+    catch (err) {
+        const message = err instanceof Error ? err.message : String(err);
+        return { safe: false, error: `DNS resolution failed: ${message}` };
+    }
+}
+//# sourceMappingURL=ssrf.js.map

package/dist/utils/ssrf.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ssrf.js","sourceRoot":"","sources":["../../src/utils/ssrf.ts"],"names":[],"mappings":"AAAA,OAAO,GAAG,MAAM,mBAAmB,CAAC;AACpC,OAAO,GAAG,MAAM,UAAU,CAAC;AAU3B,8EAA8E;AAC9E,qCAAqC;AACrC,8EAA8E;AAE9E,SAAS,aAAa,CAAC,EAAU;IAC/B,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACxC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAAE,OAAO,KAAK,CAAC;IAEpE,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC;IAErB,aAAa;IACb,IAAI,CAAC,KAAK,EAAE;QAAE,OAAO,IAAI,CAAC;IAC1B,0CAA0C;IAC1C,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;QAAE,OAAO,IAAI,CAAC;IACjD,iBAAiB;IACjB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IACxC,yBAAyB;IACzB,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IAC3B,YAAY;IACZ,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACzB,qEAAqE;IACrE,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IACxC,kDAAkD;IAClD,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,GAAG;QAAE,OAAO,IAAI,CAAC;IAElD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,8EAA8E;AAC9E,qCAAqC;AACrC,8EAA8E;AAE9E,SAAS,aAAa,CAAC,EAAU;IAC/B,MAAM,KAAK,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC;IAE/B,sEAAsE;IACtE,IAAI,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAChC,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC9B,IAAI,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC;YAAE,OAAO,aAAa,CAAC,MAAM,CAAC,CAAC;IACvD,CAAC;IAED,eAAe;IACf,IAAI,KAAK,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IACjC,iBAAiB;IACjB,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,IAAI,CAAC;IAChC,uBAAuB;IACvB,IAAI,KAAK,CAAC,UAAU,CAAC,OAAO,CAAC;QAAE,OAAO,IAAI,CAAC;IAC3C,oDAAoD;IACpD,IAAI,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IAElE,OAAO,KAAK,CAAC;AACf,CAAC;AAED,8EAA8E;AAC9E,aAAa;AACb,8EAA8E;AAE9E;;;;;GAKG;AACH,MAAM,UAAU,WAAW,CAAC,EAAU;IACpC,IAAI,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;QAAE,OAAO,aAAa,CAAC,EAAE,CAAC,CAAC;IAC7C,IAAI,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;QAAE,OAAO,aAAa,CAAC,EAAE,CAAC,CAAC;IAC7C,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,QAAgB,EAChB,KAAe;IAEf,oBAAoB;IACpB,MAAM,MAAM,GAAG,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACnC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,IAAI,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC;YACxB,OAAO;gBACL,IAAI,EAAE,KAAK;gBACX,KAAK,EAAE,wCAAwC,MAAM,EAAE;gBACvD,EAAE,EAAE,MAAM;aACX,CAAC;QACJ,CAAC;QACD,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;IACpC,CAAC;IAED,wDAAwD;IACxD,IAAI,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QAC7B,IAAI,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1B,OAAO;gBACL,IAAI,EAAE,KAAK;gBACX,KAAK,EAAE,wCAAwC,QAAQ,EAAE;gBACzD,EAAE,EAAE,QAAQ;aACb,CAAC;QACJ,CAAC;QACD,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,QAAQ,EAAE,CAAC;IACtC,CAAC;IAED,uCAAuC;IACvC,IAAI,CAAC;QACH,MAAM,cAAc,GAAG,IAAI,CAAC;QAC5B,MAAM,aAAa,GAAG,GAAG,CAAC,MAAM,CAAC,QAAQ,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1D,MAAM,cAAc,GAAG,IAAI,OAAO,CAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE,CACtD,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC,EAAE,cAAc,CAAC,CAC5E,CAAC;QACF,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,cAAc,CAAC,CAAC,CAAC;QAEpE,2DAA2D;QAC3D,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,IAAI,WAAW,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;gBAChC,OAAO;oBACL,IAAI,EAAE,KAAK;oBACX,KAAK,EAAE,wCAAwC,MAAM,CAAC,OAAO,EAAE;oBAC/D,EAAE,EAAE,MAAM,CAAC,OAAO;iBACnB,CAAC;YACJ,CAAC;QACH,CAAC;QAED,8BAA8B;QAC9B,MAAM,EAAE,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;QAC9B,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QAExB,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC5B,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACjE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,0BAA0B,OAAO,EAAE,EAAE,CAAC;IACrE,CAAC;AACH,CAAC"}

package/dist/utils/url.d.ts

@@ -0,0 +1,53 @@
+/** Result of successful URL normalization */
+export interface NormalizeUrlOk {
+    ok: true;
+    /** Full normalized URL (e.g., "https://example.com/path") */
+    href: string;
+    /** Hostname extracted from URL (e.g., "example.com") */
+    domain: string;
+    /** Origin: protocol + host (e.g., "https://example.com") */
+    baseUrl: string;
+}
+/** Result of failed URL normalization */
+export interface NormalizeUrlErr {
+    ok: false;
+    error: string;
+}
+/** Discriminated union result -- never throws */
+export type NormalizeUrlResult = NormalizeUrlOk | NormalizeUrlErr;
+/**
+ * Normalize a user-provided URL string into a fully-qualified URL.
+ *
+ * - Trims whitespace
+ * - Prepends `https://` if no protocol is present
+ * - Strips leading `//` before prepending protocol
+ * - Returns a discriminated union -- never throws
+ */
+export declare function normalizeUrl(input: string): NormalizeUrlResult;
+/**
+ * Extract the hostname from a URL string.
+ *
+ * Assumes the URL is already normalized (has protocol).
+ * Throws on invalid URL -- caller must normalize first.
+ */
+export declare function extractDomain(url: string): string;
+/** Result of successful redirect resolution */
+export interface ResolveRedirectOk {
+    ok: true;
+    url: string;
+}
+/** Result of failed redirect resolution */
+export interface ResolveRedirectErr {
+    ok: false;
+    error: string;
+}
+/** Discriminated union for redirect resolution */
+export type ResolveRedirectResult = ResolveRedirectOk | ResolveRedirectErr;
+/**
+ * Resolve a Location header value against the current URL.
+ *
+ * Handles absolute, relative, and protocol-relative Location values.
+ * Returns a discriminated union -- never throws.
+ */
+export declare function resolveRedirectUrl(locationHeader: string, currentUrl: string): ResolveRedirectResult;
+//# sourceMappingURL=url.d.ts.map

package/dist/utils/url.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"url.d.ts","sourceRoot":"","sources":["../../src/utils/url.ts"],"names":[],"mappings":"AAAA,6CAA6C;AAC7C,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,IAAI,CAAC;IACT,6DAA6D;IAC7D,IAAI,EAAE,MAAM,CAAC;IACb,wDAAwD;IACxD,MAAM,EAAE,MAAM,CAAC;IACf,4DAA4D;IAC5D,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,yCAAyC;AACzC,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,KAAK,CAAC;IACV,KAAK,EAAE,MAAM,CAAC;CACf;AAED,iDAAiD;AACjD,MAAM,MAAM,kBAAkB,GAAG,cAAc,GAAG,eAAe,CAAC;AAElE;;;;;;;GAOG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,kBAAkB,CA6B9D;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAEjD;AAED,+CAA+C;AAC/C,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,IAAI,CAAC;IACT,GAAG,EAAE,MAAM,CAAC;CACb;AAED,2CAA2C;AAC3C,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,KAAK,CAAC;IACV,KAAK,EAAE,MAAM,CAAC;CACf;AAED,kDAAkD;AAClD,MAAM,MAAM,qBAAqB,GAAG,iBAAiB,GAAG,kBAAkB,CAAC;AAE3E;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAChC,cAAc,EAAE,MAAM,EACtB,UAAU,EAAE,MAAM,GACjB,qBAAqB,CAavB"}

package/dist/utils/url.js

@@ -0,0 +1,64 @@
+/**
+ * Normalize a user-provided URL string into a fully-qualified URL.
+ *
+ * - Trims whitespace
+ * - Prepends `https://` if no protocol is present
+ * - Strips leading `//` before prepending protocol
+ * - Returns a discriminated union -- never throws
+ */
+export function normalizeUrl(input) {
+    const trimmed = input.trim();
+    if (trimmed === "") {
+        return { ok: false, error: "Empty URL" };
+    }
+    let raw = trimmed;
+    // Add protocol if missing
+    if (!raw.startsWith("http://") && !raw.startsWith("https://")) {
+        // Strip leading // if present (protocol-relative)
+        if (raw.startsWith("//")) {
+            raw = raw.slice(2);
+        }
+        raw = "https://" + raw;
+    }
+    try {
+        const url = new URL(raw);
+        return {
+            ok: true,
+            href: url.href,
+            domain: url.hostname, // URL constructor lowercases hostname
+            baseUrl: url.origin,
+        };
+    }
+    catch {
+        return { ok: false, error: `Invalid URL: ${trimmed}` };
+    }
+}
+/**
+ * Extract the hostname from a URL string.
+ *
+ * Assumes the URL is already normalized (has protocol).
+ * Throws on invalid URL -- caller must normalize first.
+ */
+export function extractDomain(url) {
+    return new URL(url).hostname;
+}
+/**
+ * Resolve a Location header value against the current URL.
+ *
+ * Handles absolute, relative, and protocol-relative Location values.
+ * Returns a discriminated union -- never throws.
+ */
+export function resolveRedirectUrl(locationHeader, currentUrl) {
+    const trimmed = locationHeader.trim();
+    if (trimmed === "") {
+        return { ok: false, error: "Empty Location header" };
+    }
+    try {
+        const resolved = new URL(trimmed, currentUrl).href;
+        return { ok: true, url: resolved };
+    }
+    catch {
+        return { ok: false, error: `Invalid redirect URL: ${trimmed}` };
+    }
+}
+//# sourceMappingURL=url.js.map

package/dist/utils/url.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"url.js","sourceRoot":"","sources":["../../src/utils/url.ts"],"names":[],"mappings":"AAoBA;;;;;;;GAOG;AACH,MAAM,UAAU,YAAY,CAAC,KAAa;IACxC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAE7B,IAAI,OAAO,KAAK,EAAE,EAAE,CAAC;QACnB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC;IAC3C,CAAC;IAED,IAAI,GAAG,GAAG,OAAO,CAAC;IAElB,0BAA0B;IAC1B,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9D,kDAAkD;QAClD,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,GAAG,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QACrB,CAAC;QACD,GAAG,GAAG,UAAU,GAAG,GAAG,CAAC;IACzB,CAAC;IAED,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QACzB,OAAO;YACL,EAAE,EAAE,IAAI;YACR,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,MAAM,EAAE,GAAG,CAAC,QAAQ,EAAE,sCAAsC;YAC5D,OAAO,EAAE,GAAG,CAAC,MAAM;SACpB,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,gBAAgB,OAAO,EAAE,EAAE,CAAC;IACzD,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CAAC,GAAW;IACvC,OAAO,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;AAC/B,CAAC;AAiBD;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAChC,cAAsB,EACtB,UAAkB;IAElB,MAAM,OAAO,GAAG,cAAc,CAAC,IAAI,EAAE,CAAC;IAEtC,IAAI,OAAO,KAAK,EAAE,EAAE,CAAC;QACnB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC;IACvD,CAAC;IAED,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC;QACnD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,QAAQ,EAAE,CAAC;IACrC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,yBAAyB,OAAO,EAAE,EAAE,CAAC;IAClE,CAAC;AACH,CAAC"}

package/package.json

@@ -0,0 +1,74 @@
+{
+  "name": "milieu-cli",
+  "version": "0.1.0",
+  "description": "Check if AI agents can discover, understand, and use your API",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "bin": {
+    "milieu": "dist/cli/index.js",
+    "milieu-cli": "dist/cli/index.js"
+  },
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "rm -rf dist && tsc -p tsconfig.build.json",
+    "dev": "tsx src/index.ts",
+    "test": "vitest run --reporter=verbose",
+    "typecheck": "tsc --noEmit",
+    "prepublishOnly": "npm run build",
+    "prepack": "npm run build"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "license": "Apache-2.0",
+  "author": "Arun <arun@simplyarun.com>",
+  "keywords": [
+    "ai",
+    "ai-agents",
+    "llm",
+    "api",
+    "api-readiness",
+    "agent-readiness",
+    "agentic-web",
+    "lighthouse",
+    "cli",
+    "website-scanner",
+    "developer-tools",
+    "robots-txt",
+    "llms-txt",
+    "openapi",
+    "mcp",
+    "json-ld",
+    "schema-org",
+    "web-standards",
+    "machine-readable"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/simplyarun/milieu-cli.git"
+  },
+  "homepage": "https://github.com/simplyarun/milieu-cli#readme",
+  "bugs": {
+    "url": "https://github.com/simplyarun/milieu-cli/issues"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "tsx": "^4",
+    "typescript": "^5.9",
+    "vitest": "^4.1.0"
+  },
+  "dependencies": {
+    "chalk": "^5.6.2",
+    "commander": "^14.0.3",
+    "ora": "^9.3.0"
+  }
+}