natureco-cli 2.23.28 → 2.23.30

package/src/commands/devices.js

@@ -0,0 +1,110 @@
+const chalk = require('chalk');
+const { getConfig, saveConfig } = require('../utils/config');
+const fs = require('fs');
+const path = require('path');
+
+function devices(args) {
+  const [action, ...params] = args || [];
+
+  if (!action || action === 'list') return listDevices();
+  if (action === 'pair') return pairDevice(params[0], params[1]);
+  if (action === 'unpair') return unpairDevice(params[0]);
+  if (action === 'token' || action === 'show-token') return showToken();
+  if (action === 'regenerate-token') return regenerateToken();
+
+  console.log(chalk.red(`\n  ❌ Bilinmeyen komut: ${action}\n`));
+  console.log(chalk.gray('  Kullanım: natureco devices [list|pair|unpair|token|regenerate-token]\n'));
+  process.exit(1);
+}
+
+function listDevices() {
+  const config = getConfig();
+  const devices = config.pairedDevices || [];
+
+  console.log(chalk.cyan('\n  📱 Devices\n'));
+  console.log(chalk.gray('  ' + '─'.repeat(48)));
+
+  if (devices.length === 0) {
+    console.log(chalk.gray('  No paired devices.\n'));
+    console.log(chalk.gray('  Pair a device:'));
+    console.log(chalk.cyan('    natureco devices pair <name> <type>\n'));
+    return;
+  }
+
+  for (const d of devices) {
+    console.log(`  ${chalk.green('●')} ${chalk.white(d.name)} ${chalk.gray(`(${d.type || 'unknown'})`)}`);
+    console.log(`    ${chalk.gray('ID:')}    ${chalk.cyan(d.id)}`);
+    console.log(`    ${chalk.gray('Since:')} ${d.pairedAt ? new Date(d.pairedAt).toLocaleString() : '-'}`);
+  }
+  console.log();
+}
+
+function pairDevice(name, type) {
+  if (!name) {
+    console.log(chalk.red('\n  ❌ Device name gerekli\n'));
+    process.exit(1);
+  }
+
+  const config = getConfig();
+  if (!config.pairedDevices) config.pairedDevices = [];
+
+  const device = {
+    id: `dev_${crypto.randomBytes(8).toString('hex')}`,
+    name,
+    type: type || 'unknown',
+    token: crypto.randomBytes(16).toString('hex'),
+    pairedAt: new Date().toISOString()
+  };
+
+  config.pairedDevices.push(device);
+  saveConfig(config);
+
+  console.log(chalk.green(`\n  ✅ Paired: ${name}\n`));
+  console.log(chalk.gray(`  Device ID: ${device.id}`));
+  console.log(chalk.gray(`  Token: ${device.token}\n`));
+}
+
+function unpairDevice(id) {
+  if (!id) {
+    console.log(chalk.red('\n  ❌ Device ID gerekli\n'));
+    process.exit(1);
+  }
+
+  const config = getConfig();
+  const devices = config.pairedDevices || [];
+  const idx = devices.findIndex(d => d.id === id);
+
+  if (idx === -1) {
+    console.log(chalk.red(`\n  ❌ Cihaz bulunamadı: ${id}\n`));
+    process.exit(1);
+  }
+
+  const removed = devices.splice(idx, 1)[0];
+  config.pairedDevices = devices;
+  saveConfig(config);
+
+  console.log(chalk.gray(`\n  🗑️  Unpaired: ${removed.name}\n`));
+}
+
+function showToken() {
+  const config = getConfig();
+  const token = config.pairingToken || 'not-set';
+
+  console.log(chalk.cyan('\n  🔑 Device Token\n'));
+  console.log(chalk.gray('  ' + '─'.repeat(48)));
+  console.log(`  Token: ${chalk.yellow(token)}`);
+  console.log(chalk.gray('\n  This token identifies this device for pairing.\n'));
+}
+
+function regenerateToken() {
+  const config = getConfig();
+  config.pairingToken = `nc_${crypto.randomBytes(16).toString('hex')}`;
+  saveConfig(config);
+
+  console.log(chalk.green('\n  ✅ Token regenerated\n'));
+  console.log(chalk.gray(`  New token: ${chalk.yellow(config.pairingToken)}\n`));
+}
+
+const crypto = require('crypto');
+
+module.exports = devices;

package/src/commands/directory.js

@@ -0,0 +1,47 @@
+const chalk = require('chalk');
+const { getConfig } = require('../utils/config');
+
+function directory(args) {
+  const [action, ...params] = args || [];
+
+  if (!action || action === 'self') return showSelf();
+  if (action === 'channels' || action === 'peers') return listChannels();
+
+  console.log(chalk.red(`\n  ❌ Bilinmeyen komut: ${action}\n`));
+  console.log(chalk.gray('  Kullanım: natureco directory [self|channels]\n'));
+  process.exit(1);
+}
+
+function showSelf() {
+  const config = getConfig();
+  console.log(chalk.cyan('\n  👤 Self\n'));
+  console.log(chalk.gray('  ' + '─'.repeat(48)));
+  console.log(`  ${chalk.white('Name:')}     ${chalk.cyan(config.agentName || process.env.USER || 'user')}`);
+  console.log(`  ${chalk.white('Gateway:')}  ${chalk.gray(config.gatewayUrl || 'not configured')}`);
+  console.log(`  ${chalk.white('Provider:')} ${chalk.gray(config.provider || 'not set')}`);
+  console.log(`  ${chalk.white('Model:')}    ${chalk.gray(config.model || 'not set')}`);
+  console.log(`  ${chalk.white('User ID:')}  ${chalk.gray(config.userId || 'local')}`);
+  console.log();
+}
+
+function listChannels() {
+  const config = getConfig();
+  console.log(chalk.cyan('\n  📡 Channels\n'));
+  console.log(chalk.gray('  ' + '─'.repeat(48)));
+
+  const channels = ['telegram', 'whatsapp', 'discord', 'slack', 'signal', 'irc', 'mattermost', 'imessage', 'sms'];
+  let found = false;
+
+  for (const ch of channels) {
+    if (config[ch]) {
+      const info = typeof config[ch] === 'object' ? Object.keys(config[ch]).join(', ') : 'connected';
+      console.log(`  ${chalk.green('●')} ${chalk.white(ch)}: ${chalk.gray(info)}`);
+      found = true;
+    }
+  }
+
+  if (!found) console.log(chalk.gray('  No channels configured.\n'));
+  console.log();
+}
+
+module.exports = directory;

package/src/commands/dns.js

@@ -0,0 +1,58 @@
+const chalk = require('chalk');
+const dns = require('dns');
+const os = require('os');
+
+function dnsCmd(args) {
+  const [action, ...params] = args || [];
+
+  if (!action || action === 'discover') return discoverNetwork();
+  if (action === 'resolve') return resolveHost(params[0]);
+
+  console.log(chalk.red(`\n  ❌ Bilinmeyen komut: ${action}\n`));
+  console.log(chalk.gray('  Kullanım: natureco dns [discover|resolve]\n'));
+  process.exit(1);
+}
+
+function discoverNetwork() {
+  console.log(chalk.cyan('\n  🌐 Network Discovery (DNS)\n'));
+  console.log(chalk.gray('  ' + '─'.repeat(48)));
+
+  const interfaces = os.networkInterfaces();
+  for (const [name, addrs] of Object.entries(interfaces)) {
+    if (!addrs) continue;
+    for (const addr of addrs) {
+      if (addr.family === 'IPv4' && !addr.internal) {
+        console.log(`  ${chalk.white(name)}`);
+        console.log(`    ${chalk.gray('IP:')}    ${addr.address}`);
+        console.log(`    ${chalk.gray('MAC:')}   ${addr.mac}`);
+        console.log(`    ${chalk.gray('Mask:')}  ${addr.netmask}`);
+      }
+    }
+  }
+
+  console.log(chalk.gray('\n  Service discovery for wide-area (Tailscale + CoreDNS).'));
+  console.log(chalk.gray('  For full mDNS: ') + chalk.cyan('natureco bonjour scan\n'));
+}
+
+function resolveHost(hostname) {
+  if (!hostname) {
+    console.log(chalk.red('\n  ❌ Hostname gerekli\n'));
+    process.exit(1);
+  }
+
+  console.log(chalk.cyan(`\n  🔍 Resolving: ${hostname}\n`));
+
+  dns.resolve4(hostname, (err, addresses) => {
+    if (err) {
+      console.log(chalk.red(`  ❌ ${err.message}\n`));
+      return;
+    }
+    console.log(chalk.gray('  ' + '─'.repeat(48)));
+    for (const addr of addresses) {
+      console.log(`  ${chalk.white(hostname)} → ${chalk.cyan(addr)}`);
+    }
+    console.log();
+  });
+}
+
+module.exports = dnsCmd;

package/src/commands/docs.js

@@ -0,0 +1,43 @@
+const chalk = require('chalk');
+
+async function docs(args) {
+  const query = args.join(' ').trim();
+
+  if (!query) {
+    console.log(chalk.cyan('\n  📚 NatureCo Docs Search\n'));
+    console.log(chalk.gray('  ' + '─'.repeat(48)));
+    console.log(chalk.gray('  Search live documentation from the web.\n'));
+    console.log(chalk.gray('  Usage:'));
+    console.log(chalk.cyan('    natureco docs <search query>'));
+    console.log(chalk.gray('\n  Examples:'));
+    console.log(chalk.gray('    natureco docs how to setup gateway'));
+    console.log(chalk.gray('    natureco docs channels telegram'));
+    console.log();
+    return;
+  }
+
+  console.log(chalk.cyan(`\n  🔍 Searching docs for: "${query}"\n`));
+
+  try {
+    const response = await fetch(`https://api.duckduckgo.com/?q=${encodeURIComponent('natureco ' + query)}&format=json&no_html=1`, {
+      headers: { 'User-Agent': 'NatureCo-CLI/2.0' }
+    });
+
+    if (!response.ok) throw new Error(`Search error: ${response.status}`);
+
+    const data = await response.json();
+    if (data.AbstractText) {
+      console.log(chalk.white(data.AbstractText));
+      if (data.AbstractURL) console.log(chalk.gray(`\n  Source: ${data.AbstractURL}`));
+    } else {
+      console.log(chalk.gray('  No documentation found for this query.'));
+      console.log(chalk.gray('\n  Try searching the web:'));
+      console.log(chalk.cyan(`    natureco web_search query="${query}"`));
+    }
+    console.log();
+  } catch (err) {
+    console.log(chalk.red(`  ❌ ${err.message}\n`));
+  }
+}
+
+module.exports = docs;

package/src/commands/doctor.js

@@ -2,9 +2,12 @@ const chalk = require('chalk');
 const fs = require('fs');
 const path = require('path');
 const net = require('net');
-const { getConfig, saveConfig, CONFIG_FILE, CONFIG_DIR } = require('../utils/config');
+const { getConfig, saveConfig, CONFIG_FILE, CONFIG_DIR, listBackups } = require('../utils/config');
 const { getBots } = require('../utils/api');
 const { getSkills } = require('../utils/skills');
+const { NatureCoError, ApiError, ConfigError, handleError } = require('../utils/errors');
+const { listSecretRefs, resolveSecretRef } = require('../utils/secrets');
+const { loadApprovals, resolveEffectivePolicy } = require('../utils/approvals');
 
 async function doctor(options) {
   const shouldFix = options && (options.includes('--fix') || options.includes('-f'));
@@ -258,27 +261,40 @@ async function doctor(options) {
     results.push({ status: 'warning', message: 'Tavily API key yok', fix: 'natureco config set tavilyApiKey tvly_xxx' });
   }
   
-  // 15. Provider erişim kontrolü
+  // 15. Provider erişim kontrolü (gerçek API doğrulama)
   total++;
   criticalTotal++;
   if (config && config.providerUrl) {
     try {
-      // Extract base URL for health check
-      const baseUrl = config.providerUrl.replace(/\/v1.*$/, '');
-      
-      const response = await fetch(baseUrl, { 
-        method: 'GET',
-        signal: AbortSignal.timeout(5000),
+      const response = await fetch(config.providerUrl, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+          ...(config.providerApiKey ? { 'Authorization': `Bearer ${config.providerApiKey}` } : {}),
+        },
+        body: JSON.stringify({
+          model: config.providerModel || 'llama-3.3-70b-versatile',
+          messages: [{ role: 'user', content: 'test' }],
+          max_tokens: 1,
+        }),
+        signal: AbortSignal.timeout(15000),
       });
-      
-      // Any response (even 404) means provider is reachable
-      console.log(chalk.green('✅ Provider Erişim:'), chalk.white('Provider erişilebilir'));
-      passed++;
-      criticalPassed++;
-      results.push({ status: 'ok', message: 'Provider erişilebilir' });
+
+      if (response.ok) {
+        console.log(chalk.green('✅ Provider:'), chalk.white('API doğrulandı'));
+        passed++;
+        criticalPassed++;
+        results.push({ status: 'ok', message: 'Provider API doğrulandı' });
+      } else if (response.status === 401 || response.status === 403) {
+        console.log(chalk.red('❌ Provider:'), chalk.white('API key geçersiz'));
+        results.push({ status: 'error', message: 'API key reddedildi', fix: 'natureco config set providerApiKey <key>' });
+      } else {
+        console.log(chalk.yellow('⚠️  Provider:'), chalk.white(`HTTP ${response.status} — beklenmeyen yanıt`));
+        results.push({ status: 'warning', message: `Provider HTTP ${response.status} döndü` });
+      }
     } catch (err) {
-      console.log(chalk.red('Bağlantı hatası: ' + err.message));
-      results.push({ status: 'error', message: 'Provider erişilemiyor' });
+      console.log(chalk.red('❌ Provider:'), chalk.white('Bağlantı hatası: ' + err.message));
+      results.push({ status: 'error', message: 'Provider bağlantı hatası' });
     }
   } else {
     console.log(chalk.gray('⚪ Provider Erişim:'), chalk.white('Provider URL ayarlanmamış'));
@@ -321,6 +337,95 @@ async function doctor(options) {
     results.push({ status: 'info', message: 'Versiyon kontrol edilemedi' });
   }
   
+  // 17. Exec approvals kontrolü
+  total++;
+  const approvals = loadApprovals();
+  const policy = resolveEffectivePolicy(approvals);
+  const allowlistCount = (approvals.allowlist || []).length;
+  if (policy !== 'deny' || allowlistCount > 0) {
+    passed++;
+    results.push({ status: 'ok', message: `Güvenlik: ${policy} (${allowlistCount} allowlist)` });
+    console.log(chalk.green('✅ Exec Güvenlik:'), chalk.white(`${policy} — ${allowlistCount} allowlist kuralı`));
+  } else {
+    results.push({ status: 'warning', message: 'Exec güvenlik deny modunda', fix: 'natureco security policy set allowlist' });
+    console.log(chalk.yellow('⚠️  Exec Güvenlik:'), chalk.white('deny modunda, komut çalıştırma engelli'));
+  }
+  
+  // 18. Exec approvals allowlist durumu (opsiyonel detay)
+  if (allowlistCount > 0) {
+    const expired = (approvals.allowlist || []).filter(e => e.expires && new Date(e.expires) < new Date()).length;
+    if (expired > 0) {
+      console.log(chalk.yellow(`  ⚠  ${expired} allowlist kuralı süresi dolmuş`));
+    }
+  }
+  
+  // 19. Config yedekleri kontrolü
+  total++;
+  try {
+    const backupDir = path.join(CONFIG_DIR, 'backups');
+    if (fs.existsSync(backupDir)) {
+      const backups = fs.readdirSync(backupDir).filter(f => f.startsWith('config-') && f.endsWith('.json'));
+      if (backups.length > 0) {
+        passed++;
+        results.push({ status: 'ok', message: `${backups.length} config yedeği mevcut` });
+        console.log(chalk.green('✅ Config Yedek:'), chalk.white(`${backups.length} yedek`));
+        
+        if (backups.length >= 10) {
+          console.log(chalk.yellow('  ⚠  Maksimum yedek sayısına ulaşıldı (10)'));
+        }
+      } else {
+        results.push({ status: 'info', message: 'Config yedeği yok' });
+        console.log(chalk.gray('⚪ Config Yedek:'), chalk.white('Yedek bulunamadı'));
+      }
+    } else {
+      results.push({ status: 'info', message: 'Config yedeği yok' });
+      console.log(chalk.gray('⚪ Config Yedek:'), chalk.white('Yedek klasörü yok'));
+    }
+  } catch {
+    results.push({ status: 'info', message: 'Config yedekleri kontrol edilemedi' });
+    console.log(chalk.gray('⚪ Config Yedek:'), chalk.white('Kontrol edilemedi'));
+  }
+  
+  // 20. Secret referansları kontrolü
+  total++;
+  try {
+    const secretRefs = listSecretRefs(config || {});
+    if (secretRefs.length > 0) {
+      const unresolved = secretRefs.filter(ref => {
+        try {
+          return resolveSecretRef(ref) === null;
+        } catch {
+          return true;
+        }
+      });
+      
+      if (unresolved.length === 0) {
+        passed++;
+        results.push({ status: 'ok', message: `${secretRefs.length} secret referansı çözüldü` });
+        console.log(chalk.green('✅ Secrets:'), chalk.white(`${secretRefs.length} referans çözüldü`));
+      } else {
+        results.push({ status: 'warning', message: `${unresolved.length}/${secretRefs.length} secret çözülemedi`, fix: '.env dosyası oluşturun' });
+        console.log(chalk.yellow('⚠️  Secrets:'), chalk.white(`${unresolved.length}/${secretRefs.length} referans çözülemedi`));
+      }
+    } else {
+      results.push({ status: 'info', message: 'Secret referansı yok' });
+      console.log(chalk.gray('⚪ Secrets:'), chalk.white('Referans yok'));
+    }
+  } catch {
+    results.push({ status: 'info', message: 'Secrets kontrol edilemedi' });
+    console.log(chalk.gray('⚪ Secrets:'), chalk.white('Kontrol edilemedi'));
+  }
+  
+  // 21. .env dosyası varlığı (secret ref varsa)
+  if (config) {
+    const envFile = path.join(CONFIG_DIR, '.env');
+    if (fs.existsSync(envFile)) {
+      console.log(chalk.gray('  📄 .env dosyası:'), chalk.white('Mevcut'));
+    } else {
+      console.log(chalk.gray('  📄 .env dosyası:'), chalk.white('Yok'));
+    }
+  }
+  
   // Özet
   console.log('');
   console.log(chalk.gray('  ' + '─'.repeat(48)));

package/src/commands/exec-policy.js

@@ -0,0 +1,71 @@
+const chalk = require('chalk');
+const { getConfig, saveConfig } = require('../utils/config');
+
+function execPolicy(args) {
+  const [action, ...params] = args || [];
+
+  if (!action || action === 'show') return showPolicy();
+  if (action === 'set') return setPolicy(params[0]);
+  if (action === 'sync') return syncPolicy();
+
+  console.log(chalk.red(`\n  ❌ Bilinmeyen komut: ${action}\n`));
+  console.log(chalk.gray('  Kullanım: natureco exec-policy [show|set|sync]\n'));
+  process.exit(1);
+}
+
+function showPolicy() {
+  const config = getConfig();
+  const policy = config.execPolicy || 'default';
+
+  console.log(chalk.cyan('\n  📋 Exec Policy\n'));
+  console.log(chalk.gray('  ' + '─'.repeat(48)));
+  console.log(`  ${chalk.white('Policy:')}         ${chalk.cyan(policy)}`);
+  console.log(`  ${chalk.white('Allow commands:')}  ${chalk.gray(config.execAllowCommands !== false ? 'Yes' : 'No')}`);
+  console.log(`  ${chalk.white('Timeout:')}         ${chalk.gray(config.execTimeout || 30000)}ms`);
+  console.log(`  ${chalk.white('Sandbox:')}         ${chalk.gray(config.execSandbox || 'none')}`);
+  console.log();
+  console.log(chalk.gray('  Set policy:'));
+  console.log(chalk.cyan('    natureco exec-policy set <policy>'));
+  console.log(chalk.cyan('    natureco exec-policy sync\n'));
+}
+
+function setPolicy(policy) {
+  if (!policy) {
+    console.log(chalk.red('\n  ❌ Policy gerekli\n'));
+    process.exit(1);
+  }
+
+  const config = getConfig();
+  config.execPolicy = policy;
+  saveConfig(config);
+  console.log(chalk.green(`\n  ✅ Exec policy: ${policy}\n`));
+}
+
+function syncPolicy() {
+  const config = getConfig();
+  console.log(chalk.cyan('\n  🔄 Syncing exec policy...\n'));
+
+  const defaults = {
+    execPolicy: 'default',
+    execAllowCommands: true,
+    execTimeout: 30000,
+    execSandbox: 'none'
+  };
+
+  let changed = 0;
+  for (const [key, val] of Object.entries(defaults)) {
+    if (config[key] === undefined) {
+      config[key] = val;
+      changed++;
+    }
+  }
+
+  if (changed > 0) {
+    saveConfig(config);
+    console.log(chalk.green(`  ✅ Synced ${changed} policy settings\n`));
+  } else {
+    console.log(chalk.gray('  ✅ Already in sync\n'));
+  }
+}
+
+module.exports = execPolicy;