npm - mstro-app - Versions diffs - 0.1.58 → 0.3.0 - Mend

mstro-app 0.1.58 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (161) hide show

package/PRIVACY.md +126 -0
package/README.md +24 -23
package/bin/commands/login.js +85 -42
package/bin/commands/logout.js +35 -1
package/bin/commands/status.js +1 -1
package/bin/mstro.js +231 -131
package/dist/server/cli/headless/claude-invoker.d.ts.map +1 -1
package/dist/server/cli/headless/claude-invoker.js +550 -115
package/dist/server/cli/headless/claude-invoker.js.map +1 -1
package/dist/server/cli/headless/index.d.ts +2 -1
package/dist/server/cli/headless/index.d.ts.map +1 -1
package/dist/server/cli/headless/index.js +2 -0
package/dist/server/cli/headless/index.js.map +1 -1
package/dist/server/cli/headless/prompt-utils.d.ts +5 -8
package/dist/server/cli/headless/prompt-utils.d.ts.map +1 -1
package/dist/server/cli/headless/prompt-utils.js +40 -5
package/dist/server/cli/headless/prompt-utils.js.map +1 -1
package/dist/server/cli/headless/runner.d.ts +1 -1
package/dist/server/cli/headless/runner.d.ts.map +1 -1
package/dist/server/cli/headless/runner.js +52 -7
package/dist/server/cli/headless/runner.js.map +1 -1
package/dist/server/cli/headless/stall-assessor.d.ts +79 -1
package/dist/server/cli/headless/stall-assessor.d.ts.map +1 -1
package/dist/server/cli/headless/stall-assessor.js +355 -20
package/dist/server/cli/headless/stall-assessor.js.map +1 -1
package/dist/server/cli/headless/tool-watchdog.d.ts +70 -0
package/dist/server/cli/headless/tool-watchdog.d.ts.map +1 -0
package/dist/server/cli/headless/tool-watchdog.js +302 -0
package/dist/server/cli/headless/tool-watchdog.js.map +1 -0
package/dist/server/cli/headless/types.d.ts +98 -1
package/dist/server/cli/headless/types.d.ts.map +1 -1
package/dist/server/cli/improvisation-session-manager.d.ts +136 -2
package/dist/server/cli/improvisation-session-manager.d.ts.map +1 -1
package/dist/server/cli/improvisation-session-manager.js +929 -132
package/dist/server/cli/improvisation-session-manager.js.map +1 -1
package/dist/server/index.js +5 -13
package/dist/server/index.js.map +1 -1
package/dist/server/mcp/bouncer-integration.d.ts.map +1 -1
package/dist/server/mcp/bouncer-integration.js +18 -0
package/dist/server/mcp/bouncer-integration.js.map +1 -1
package/dist/server/mcp/security-audit.d.ts +2 -2
package/dist/server/mcp/security-audit.d.ts.map +1 -1
package/dist/server/mcp/security-audit.js +12 -8
package/dist/server/mcp/security-audit.js.map +1 -1
package/dist/server/mcp/security-patterns.d.ts.map +1 -1
package/dist/server/mcp/security-patterns.js +9 -4
package/dist/server/mcp/security-patterns.js.map +1 -1
package/dist/server/routes/improvise.js +6 -6
package/dist/server/routes/improvise.js.map +1 -1
package/dist/server/services/analytics.d.ts +2 -0
package/dist/server/services/analytics.d.ts.map +1 -1
package/dist/server/services/analytics.js +26 -4
package/dist/server/services/analytics.js.map +1 -1
package/dist/server/services/platform.d.ts.map +1 -1
package/dist/server/services/platform.js +17 -10
package/dist/server/services/platform.js.map +1 -1
package/dist/server/services/sandbox-utils.d.ts +6 -0
package/dist/server/services/sandbox-utils.d.ts.map +1 -0
package/dist/server/services/sandbox-utils.js +72 -0
package/dist/server/services/sandbox-utils.js.map +1 -0
package/dist/server/services/settings.d.ts +6 -0
package/dist/server/services/settings.d.ts.map +1 -1
package/dist/server/services/settings.js +21 -0
package/dist/server/services/settings.js.map +1 -1
package/dist/server/services/terminal/pty-manager.d.ts +5 -51
package/dist/server/services/terminal/pty-manager.d.ts.map +1 -1
package/dist/server/services/terminal/pty-manager.js +63 -102
package/dist/server/services/terminal/pty-manager.js.map +1 -1
package/dist/server/services/websocket/file-explorer-handlers.d.ts +5 -0
package/dist/server/services/websocket/file-explorer-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/file-explorer-handlers.js +518 -0
package/dist/server/services/websocket/file-explorer-handlers.js.map +1 -0
package/dist/server/services/websocket/git-handlers.d.ts +36 -0
package/dist/server/services/websocket/git-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/git-handlers.js +797 -0
package/dist/server/services/websocket/git-handlers.js.map +1 -0
package/dist/server/services/websocket/git-pr-handlers.d.ts +4 -0
package/dist/server/services/websocket/git-pr-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/git-pr-handlers.js +299 -0
package/dist/server/services/websocket/git-pr-handlers.js.map +1 -0
package/dist/server/services/websocket/git-worktree-handlers.d.ts +4 -0
package/dist/server/services/websocket/git-worktree-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/git-worktree-handlers.js +353 -0
package/dist/server/services/websocket/git-worktree-handlers.js.map +1 -0
package/dist/server/services/websocket/handler-context.d.ts +32 -0
package/dist/server/services/websocket/handler-context.d.ts.map +1 -0
package/dist/server/services/websocket/handler-context.js +4 -0
package/dist/server/services/websocket/handler-context.js.map +1 -0
package/dist/server/services/websocket/handler.d.ts +27 -338
package/dist/server/services/websocket/handler.d.ts.map +1 -1
package/dist/server/services/websocket/handler.js +74 -2106
package/dist/server/services/websocket/handler.js.map +1 -1
package/dist/server/services/websocket/index.d.ts +1 -1
package/dist/server/services/websocket/index.d.ts.map +1 -1
package/dist/server/services/websocket/index.js.map +1 -1
package/dist/server/services/websocket/session-handlers.d.ts +10 -0
package/dist/server/services/websocket/session-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/session-handlers.js +507 -0
package/dist/server/services/websocket/session-handlers.js.map +1 -0
package/dist/server/services/websocket/settings-handlers.d.ts +6 -0
package/dist/server/services/websocket/settings-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/settings-handlers.js +125 -0
package/dist/server/services/websocket/settings-handlers.js.map +1 -0
package/dist/server/services/websocket/tab-handlers.d.ts +10 -0
package/dist/server/services/websocket/tab-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/tab-handlers.js +131 -0
package/dist/server/services/websocket/tab-handlers.js.map +1 -0
package/dist/server/services/websocket/terminal-handlers.d.ts +9 -0
package/dist/server/services/websocket/terminal-handlers.d.ts.map +1 -0
package/dist/server/services/websocket/terminal-handlers.js +220 -0
package/dist/server/services/websocket/terminal-handlers.js.map +1 -0
package/dist/server/services/websocket/types.d.ts +67 -2
package/dist/server/services/websocket/types.d.ts.map +1 -1
package/hooks/bouncer.sh +11 -4
package/package.json +7 -2
package/server/README.md +176 -159
package/server/cli/headless/claude-invoker.ts +740 -133
package/server/cli/headless/index.ts +7 -1
package/server/cli/headless/output-utils.test.ts +225 -0
package/server/cli/headless/prompt-utils.ts +37 -5
package/server/cli/headless/runner.ts +55 -8
package/server/cli/headless/stall-assessor.test.ts +165 -0
package/server/cli/headless/stall-assessor.ts +478 -22
package/server/cli/headless/tool-watchdog.test.ts +429 -0
package/server/cli/headless/tool-watchdog.ts +398 -0
package/server/cli/headless/types.ts +93 -1
package/server/cli/improvisation-session-manager.ts +1133 -145
package/server/index.ts +5 -14
package/server/mcp/README.md +59 -67
package/server/mcp/bouncer-integration.test.ts +161 -0
package/server/mcp/bouncer-integration.ts +28 -0
package/server/mcp/security-audit.ts +12 -8
package/server/mcp/security-patterns.test.ts +258 -0
package/server/mcp/security-patterns.ts +8 -2
package/server/routes/improvise.ts +6 -6
package/server/services/analytics.ts +26 -4
package/server/services/platform.test.ts +0 -10
package/server/services/platform.ts +16 -11
package/server/services/sandbox-utils.ts +78 -0
package/server/services/settings.ts +25 -0
package/server/services/terminal/pty-manager.ts +68 -129
package/server/services/websocket/autocomplete.test.ts +194 -0
package/server/services/websocket/file-explorer-handlers.ts +587 -0
package/server/services/websocket/git-handlers.ts +924 -0
package/server/services/websocket/git-pr-handlers.ts +363 -0
package/server/services/websocket/git-worktree-handlers.ts +403 -0
package/server/services/websocket/handler-context.ts +44 -0
package/server/services/websocket/handler.test.ts +1 -1
package/server/services/websocket/handler.ts +90 -2421
package/server/services/websocket/index.ts +1 -1
package/server/services/websocket/session-handlers.ts +574 -0
package/server/services/websocket/settings-handlers.ts +150 -0
package/server/services/websocket/tab-handlers.ts +150 -0
package/server/services/websocket/terminal-handlers.ts +277 -0
package/server/services/websocket/types.ts +145 -4
package/bin/release.sh +0 -110
package/dist/server/services/terminal/tmux-manager.d.ts +0 -82
package/dist/server/services/terminal/tmux-manager.d.ts.map +0 -1
package/dist/server/services/terminal/tmux-manager.js +0 -352
package/dist/server/services/terminal/tmux-manager.js.map +0 -1
package/server/services/terminal/tmux-manager.ts +0 -426

package/PRIVACY.md ADDED Viewed

@@ -0,0 +1,126 @@
+# Mstro Privacy Policy
+**Effective Date:** February 2026
+## Overview
+Mstro, Inc. ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you use the Mstro CLI and related services.
+## Information We Collect
+### 1. Account Information
+When you create an account, we collect:
+- Email address
+- Name (optional)
+- Device identifiers (for authentication)
+### 2. Telemetry Data (Anonymous)
+By default, Mstro collects anonymous telemetry to improve the software:
+**Error Reporting (via Sentry):**
+- Stack traces and error messages
+- Mstro version and environment
+- Operating system and architecture
+- Node.js version
+**Usage Analytics (via PostHog):**
+- Feature usage patterns
+- Session duration
+- Command frequency
+**What we DO NOT collect:**
+- File contents or source code
+- API keys or credentials
+- Personal identifying information in error reports
+- IP addresses (stripped before storage)
+### 3. Session Data
+When using mstro.app:
+- Orchestra configurations
+- Session metadata
+- Connection timestamps
+## How to Opt Out of Telemetry
+You can disable all telemetry at any time:
+```bash
+mstro telemetry off
+# Or via environment variable
+export MSTRO_TELEMETRY=0
+```
+When telemetry is disabled:
+- No error reports are sent to Sentry
+- No usage analytics are sent to PostHog
+- Core functionality remains unchanged
+## How We Use Your Information
+We use collected information to:
+- Provide and maintain the Mstro service
+- Identify and fix bugs and crashes
+- Improve software performance and features
+- Communicate service updates and changes
+- Ensure security and prevent abuse
+## Data Sharing
+We do not sell your personal information. We may share data with:
+- **Service Providers:** Third-party services that help operate Mstro (e.g., Sentry for error tracking, PostHog for analytics)
+- **Legal Requirements:** When required by law or to protect our rights
+- **Business Transfers:** In connection with a merger or acquisition
+## Data Retention
+- **Account Data:** Retained while your account is active
+- **Telemetry Data:** Retained for up to 90 days
+- **Error Reports:** Retained for up to 30 days
+## Data Security
+We implement appropriate security measures including:
+- Encryption in transit (TLS/HTTPS)
+- Secure credential storage (chmod 600)
+- Regular security audits
+- Minimal data collection principles
+## Your Rights
+Depending on your jurisdiction, you may have rights to:
+- Access your personal data
+- Correct inaccurate data
+- Delete your data
+- Export your data
+- Opt out of data collection
+To exercise these rights, contact us at the information below.
+## Children's Privacy
+Mstro is not intended for users under 13 years of age. We do not knowingly collect information from children.
+## International Users
+Mstro is operated from the United States. By using the service, you consent to the transfer of your information to the United States.
+## Changes to This Policy
+We may update this Privacy Policy periodically. We will notify users of significant changes through the CLI or our website.
+## Open Source
+Mstro CLI is open source under the MIT License. You can review the code at:
+https://github.com/mstro-app/mstro
+## Contact Us
+For privacy-related questions or concerns:
+- Website: https://mstro.app
+- GitHub: https://github.com/mstro-app/mstro/issues
+---
+Copyright (c) 2025-present Mstro, Inc. All rights reserved.

package/README.md CHANGED Viewed

@@ -1,10 +1,8 @@
 # mstro
-Luxurious remote workspace for [Claude Code](https://docs.anthropic.com/en/docs/claude-code). Run AI-powered coding sessions from any browser while Claude executes locally on any of your machines.
+Run [Claude Code](https://docs.anthropic.com/en/docs/claude-code) from any browser. The CLI runs locally on your machine and streams live sessions to [mstro.app](https://mstro.app) via a secure WebSocket relay.
-**mstro** is the CLI client for [mstro.app](https://mstro.app). It runs on your machine (laptop, cloud VM, CI server) and connects to the mstro.app web interface via a secure relay. You write prompts in the browser, Claude Code runs in your terminal.
-**Get started at [mstro.app](https://mstro.app)** — create an account, then install this CLI to connect your machine.
+**mstro** runs on your laptop, cloud VM, or CI server and connects to the mstro.app web interface. You write prompts in the browser, Claude Code runs in your terminal.
 ## How It Works
@@ -14,7 +12,7 @@ Browser (mstro.app)  <--WebSocket-->  Platform Server (relay)  <--WebSocket-->
                                                                       Claude Code CLI
 ```
-1. `mstro` starts a local server and connects to the mstro.app platform server
+1. `mstro` starts a local server and connects to the mstro.app platform
 2. You open [mstro.app](https://mstro.app) in any browser and see your connected machine
 3. Prompts you send in the browser are relayed to your machine
 4. Claude Code runs locally with full access to your project files
@@ -33,19 +31,25 @@ Requires [Claude Code](https://docs.anthropic.com/en/docs/claude-code) installed
 ## Quick Start
 ```bash
-mstro login              # Authenticate this device with your mstro.app account
-mstro                    # Start mstro in your project directory
+mstro                    # Logs in automatically on first run, then starts the server
 ```
-On first run, mstro will offer to set up the **Security Bouncer** - a tool permission manager that protects against dangerous operations. Say yes.
+Or without installing globally:
-Then open [mstro.app](https://mstro.app) in your browser. Your machine appears as a connected "orchestra." Start prompting.
+```bash
+npx mstro-app            # Same thing — login + launch in one command
+```
-## Security Bouncer
+On first run, mstro will:
+1. Open your browser to authenticate with your mstro.app account
+2. Offer to set up the **Security Bouncer** — say yes
+3. Connect to the platform
-The Bouncer replaces the default human-in-the-loop approval model with an agent-in-the-loop approach. An AI reviewer is better suited to evaluate tool calls than a human — it has full context on what should and shouldn't run, responds in milliseconds instead of interrupting your flow, and frees you up to focus on higher-level work while Claude Code executes autonomously. The result is faster, safer workflows without the constant approval prompts.
+Then open [mstro.app](https://mstro.app) in your browser. Your machine appears as a connected workspace. Start prompting.
-The bouncer hook is installed globally at `~/.claude/hooks/bouncer.sh` and applies to all Claude Code sessions, but the level of protection depends on how Claude Code is running:
+## Security Bouncer
+The Bouncer automatically approves or blocks Claude Code tool calls so you don't have to. It installs as a hook at `~/.claude/hooks/bouncer.sh` and applies to all Claude Code sessions.
 **Mstro sessions (headless)** get the full 2-layer system:
@@ -64,22 +68,19 @@ The bouncer is set up automatically on first run. To reconfigure or install manu
 mstro configure-hooks
 ```
-This installs a hook at `~/.claude/hooks/bouncer.sh` and registers it in `~/.claude/settings.json`.
-Set `BOUNCER_USE_AI=false` to disable the AI analysis layer (pattern matching only).
 ## CLI Reference
 ### Commands
 ```bash
-mstro                       # Start the client server
-mstro login                 # Authenticate this device with mstro.app
+mstro                       # Start mstro (logs in automatically if needed)
+mstro login                 # Re-authenticate or switch accounts
 mstro logout                # Sign out
 mstro whoami                # Show current user and device info
 mstro status                # Show connection and auth status
 mstro setup-terminal        # Enable web terminal (compiles native module)
 mstro configure-hooks       # Install/reconfigure Security Bouncer
+mstro telemetry [on|off]    # Show/toggle anonymous telemetry
 ```
 ### Options
@@ -89,7 +90,6 @@ mstro configure-hooks       # Install/reconfigure Security Bouncer
 | `-p, --port <port>` | Start on a specific port (default: 4101, auto-increments if busy) |
 | `-w, --working-dir <dir>` | Set working directory |
 | `-v, --verbose` | Verbose output |
-| `--dev` | Connect to local platform at localhost:4102 |
 | `--version` | Show version |
 | `--help` | Show help |
@@ -98,11 +98,11 @@ mstro configure-hooks       # Install/reconfigure Security Bouncer
 Run multiple mstro instances for different projects. Each auto-selects an available port:
 ```
-$ mstro                           # Project A → port 4101
-$ mstro                           # Project B → port 4102
+$ mstro                           # Project A
+$ mstro                           # Project B
 ```
-Each instance appears as a separate orchestra in the web interface.
+Each instance appears as a separate workspace in the web interface.
 ## Environment Variables
@@ -110,6 +110,7 @@ Each instance appears as a separate orchestra in the web interface.
 |----------|-------------|
 | `PORT` | Override server port |
 | `BOUNCER_USE_AI` | Set to `false` to disable AI analysis layer |
+| `MSTRO_TELEMETRY` | Set to `0` to disable telemetry |
 | `PLATFORM_URL` | Platform server URL (default: `https://api.mstro.app`) |
 ## Config Files
@@ -129,7 +130,7 @@ mstro stores config in `~/.mstro/`:
 ### Optional: Web Terminal
-The web terminal feature requires a native module (`node-pty`). mstro works without it - you just won't have the terminal tab in the browser.
+The web terminal feature requires a native module (`node-pty`). mstro works without it — you just won't have the terminal tab in the browser.
 On first run, mstro will automatically attempt to compile `node-pty`. If your system has build tools installed, it just works. If not, mstro will let you know what to install:

package/bin/commands/login.js CHANGED Viewed

@@ -143,7 +143,7 @@ function openBrowser(url) {
 /**
  * Request device code from platform
  */
-async function requestDeviceCode(clientId, platformUrl) {
+async function requestDeviceCode(clientId, platformUrl, force = false) {
   const machineHostname = hostname();
   const osType = type().toLowerCase();
   const cpuArch = arch();
@@ -158,6 +158,7 @@ async function requestDeviceCode(clientId, platformUrl) {
       osType,
       cpuArch,
       nodeVersion,
+      ...(force ? { force: true } : {}),
     }),
   });
@@ -235,22 +236,78 @@ async function pollForAuth(deviceCode, interval, platformUrl, maxAttempts = 180)
   throw new Error('Authorization timed out. Please try again.');
 }
+/**
+ * Deregister old device before force re-auth
+ */
+async function deregisterOldDevice(platformUrl) {
+  const existingCreds = getCredentials();
+  if (!existingCreds?.token) return;
+  try {
+    await fetch(`${platformUrl}/api/auth/device/deregister`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        'Authorization': `Bearer ${existingCreds.token}`,
+      },
+    });
+  } catch {
+    // Deregister failed (e.g. network issue), force flag on request will handle it
+  }
+}
+/**
+ * Run the device code authorization flow. Throws on failure.
+ */
+async function runDeviceCodeFlow(clientId, platformUrl, forceReauth) {
+  const { deviceCode, userCode, verificationUrlComplete, interval } = await requestDeviceCode(clientId, platformUrl, forceReauth);
+  log(`Your authorization code: ${userCode}`, colors.bold);
+  log('');
+  log('Opening browser to complete login...', colors.dim);
+  log(` If browser doesn't open, visit: ${verificationUrlComplete}`, colors.dim);
+  log('');
+  openBrowser(verificationUrlComplete);
+  log('  Waiting for authorization', colors.dim);
+  process.stdout.write('  ');
+  const result = await pollForAuth(deviceCode, interval, platformUrl);
+  const credentials = {
+    token: result.accessToken,
+    userId: result.user.id,
+    email: result.user.email,
+    name: result.user.name,
+    clientId,
+    createdAt: new Date().toISOString(),
+  };
+  saveCredentials(credentials);
+  return result;
+}
 /**
  * Main login command
+ *
+ * @param {string[]} args - CLI arguments
+ * @param {object} options
+ * @param {boolean} options.inline - When true, called from startServer() auto-login:
+ *   skips "already logged in" check, omits post-login tips, and throws on failure
+ *   instead of calling process.exit(1).
  */
-export async function login(args = []) {
+export async function login(args = [], options = {}) {
+  const { inline = false } = options;
   const forceReauth = args.includes('--force') || args.includes('-f');
   const devMode = args.includes('--dev');
   const platformUrl = devMode ? DEV_PLATFORM_URL : PROD_PLATFORM_URL;
-  log('\n  Mstro Login\n', colors.bold + colors.cyan);
   if (devMode) {
-    log(`  [DEV MODE] Using ${platformUrl}\n`, colors.yellow);
+    log(`[DEV MODE] Using ${platformUrl}\n`, colors.yellow);
   }
-  // Check if already logged in
-  if (isLoggedIn() && !forceReauth) {
+  // Check if already logged in (skip when called inline — caller already checked)
+  if (!inline && isLoggedIn() && !forceReauth) {
     const creds = getCredentials();
     log(`  Already logged in as ${creds.email}`, colors.green);
     log(`  Use "mstro logout" to sign out, or "mstro login --force" to re-authenticate.\n`, colors.dim);
@@ -259,50 +316,36 @@ export async function login(args = []) {
   const clientId = getClientId();
-  log('  Requesting authorization...', colors.dim);
+  if (forceReauth) {
+    await deregisterOldDevice(platformUrl);
+  }
+  log('Requesting authorization...', colors.dim);
   try {
-    // Step 1: Request device code
-    const { deviceCode, userCode, verificationUrlComplete, interval } = await requestDeviceCode(clientId, platformUrl);
+    const result = await runDeviceCodeFlow(clientId, platformUrl, forceReauth);
-    // Step 2: Show code and open browser
     log('');
-    log(`  Your authorization code: ${userCode}`, colors.bold);
     log('');
-    log('  Opening browser to complete login...', colors.dim);
-    log(`  If browser doesn't open, visit: ${verificationUrlComplete}`, colors.dim);
+    log(`  Logged in as ${result.user.email}`, colors.bold + colors.green);
     log('');
-    openBrowser(verificationUrlComplete);
-    // Step 3: Poll for result
-    log('  Waiting for authorization', colors.dim);
-    process.stdout.write('  ');
-    const result = await pollForAuth(deviceCode, interval, platformUrl);
+    if (!inline) {
+      log('  Run "mstro" to start a machine.', colors.cyan);
+      log('');
-    // Step 4: Save credentials
-    const credentials = {
-      token: result.accessToken,
-      userId: result.user.id,
-      email: result.user.email,
-      name: result.user.name,
-      clientId,
-      createdAt: new Date().toISOString(),
-    };
-    saveCredentials(credentials);
-    log('');
-    log('');
-    log(`  Logged in as ${result.user.email}`, colors.bold + colors.green);
-    log('');
-    log('  This device is now connected to your mstro.app account.', colors.dim);
-    log('  Any "mstro" commands will sync with your web dashboard.', colors.dim);
-    log('');
-    log('  Run "mstro" to start an orchestra.', colors.cyan);
-    log('');
+      // Check if node-pty is available, show tip if not
+      try {
+        await import('node-pty');
+      } catch {
+        log('  Tip: Terminal support requires native compilation.', colors.dim);
+        log('  Run "mstro setup-terminal" to enable web terminal.\n', colors.dim);
+      }
+    }
   } catch (err) {
+    if (inline) {
+      throw err;
+    }
     log('');
     log(`  Login failed: ${err.message}`, colors.red);
     log('');

package/bin/commands/logout.js CHANGED Viewed

@@ -8,6 +8,9 @@ import { existsSync, readFileSync, unlinkSync } from 'node:fs';
 import { homedir } from 'node:os';
 import { join } from 'node:path';
+const PROD_PLATFORM_URL = 'https://api.mstro.app';
+const DEV_PLATFORM_URL = 'http://localhost:4102';
 const colors = {
   reset: '\x1b[0m',
   bold: '\x1b[1m',
@@ -39,10 +42,36 @@ function getCredentials() {
   }
 }
+/**
+ * Deregister device from the platform server
+ */
+async function deregisterDevice(token, platformUrl) {
+  try {
+    const response = await fetch(`${platformUrl}/api/auth/device/deregister`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        'Authorization': `Bearer ${token}`,
+      },
+    });
+    if (!response.ok) {
+      const data = await response.json().catch(() => ({}));
+      log(`  Warning: Could not deregister device from server: ${data.error || response.statusText}`, colors.yellow);
+    }
+  } catch {
+    // Network error - proceed with local logout anyway
+    log('  Warning: Could not reach server to deregister device. Local credentials will still be removed.', colors.yellow);
+  }
+}
 /**
  * Main logout command
  */
-export async function logout() {
+export async function logout(args = []) {
+  const devMode = Array.isArray(args) && args.includes('--dev');
+  const platformUrl = devMode ? DEV_PLATFORM_URL : PROD_PLATFORM_URL;
   log('\n  Mstro Logout\n', colors.bold + colors.cyan);
   const creds = getCredentials();
@@ -56,6 +85,11 @@ export async function logout() {
   const email = creds.email;
   try {
+    // Deregister device from server so it can be re-registered later
+    if (creds.token) {
+      await deregisterDevice(creds.token, platformUrl);
+    }
     // Delete credentials file
     if (existsSync(CREDENTIALS_FILE)) {
       unlinkSync(CREDENTIALS_FILE);

package/bin/commands/status.js CHANGED Viewed

@@ -187,7 +187,7 @@ export async function status() {
   // Quick commands
   log('  Commands', colors.bold);
-  log('    mstro           Start an orchestra', colors.dim);
+  log('    mstro           Start a machine', colors.dim);
   log('    mstro login     Sign in to your account', colors.dim);
   log('    mstro logout    Sign out', colors.dim);
   log('    mstro whoami    Show account details', colors.dim);