numo-cli 1.2.0 → 1.5.0

package/dist/cli.cjs

@@ -33,27 +33,9 @@ var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__ge
   mod
 ));
 
-// <define:__ADMIN_UIDS__>
-var define_ADMIN_UIDS_default;
-var init_define_ADMIN_UIDS = __esm({
-  "<define:__ADMIN_UIDS__>"() {
-    define_ADMIN_UIDS_default = [
-      "m4FaWpKYc6QMceKV6wiyx9uLi8n1",
-      "yQ36wj8NXKQvcAfp8TtQ4hp8HPi1",
-      "koOPCRPPNaZcQZp1icPq8KlluZk2",
-      "VuT0LASAitWqB0L1Vn1aL6nAwaw2",
-      "ODc6kNR5jMVV8cFWdKueNSUkMUm1",
-      "usrkanvWkzdB8CwFnpSLgt9kiGD3",
-      "akSj1Q2GUOZopvYaLLTDtXBBOYE2",
-      "61SQrwQAp7N182uwv7M2cCismdh1"
-    ];
-  }
-});
-
 // node_modules/commander/lib/error.js
 var require_error = __commonJS({
   "node_modules/commander/lib/error.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var CommanderError2 = class extends Error {
       /**
        * Constructs the CommanderError class
@@ -89,7 +71,6 @@ var require_error = __commonJS({
 // node_modules/commander/lib/argument.js
 var require_argument = __commonJS({
   "node_modules/commander/lib/argument.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var { InvalidArgumentError: InvalidArgumentError2 } = require_error();
     var Argument2 = class {
       /**
@@ -217,7 +198,6 @@ var require_argument = __commonJS({
 // node_modules/commander/lib/help.js
 var require_help = __commonJS({
   "node_modules/commander/lib/help.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var { humanReadableArgName } = require_argument();
     var Help2 = class {
       constructor() {
@@ -632,7 +612,6 @@ var require_help = __commonJS({
 // node_modules/commander/lib/option.js
 var require_option = __commonJS({
   "node_modules/commander/lib/option.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var { InvalidArgumentError: InvalidArgumentError2 } = require_error();
     var Option2 = class {
       /**
@@ -905,7 +884,6 @@ var require_option = __commonJS({
 // node_modules/commander/lib/suggestSimilar.js
 var require_suggestSimilar = __commonJS({
   "node_modules/commander/lib/suggestSimilar.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var maxDistance = 3;
     function editDistance(a, b) {
       if (Math.abs(a.length - b.length) > maxDistance)
@@ -986,11 +964,10 @@ var require_suggestSimilar = __commonJS({
 // node_modules/commander/lib/command.js
 var require_command = __commonJS({
   "node_modules/commander/lib/command.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var EventEmitter = require("node:events").EventEmitter;
     var childProcess = require("node:child_process");
-    var path4 = require("node:path");
-    var fs6 = require("node:fs");
+    var path3 = require("node:path");
+    var fs5 = require("node:fs");
     var process2 = require("node:process");
     var { Argument: Argument2, humanReadableArgName } = require_argument();
     var { CommanderError: CommanderError2 } = require_error();
@@ -1922,11 +1899,11 @@ Expecting one of '${allowedValues.join("', '")}'`);
         let launchWithNode = false;
         const sourceExt = [".js", ".ts", ".tsx", ".mjs", ".cjs"];
         function findFile(baseDir, baseName) {
-          const localBin = path4.resolve(baseDir, baseName);
-          if (fs6.existsSync(localBin)) return localBin;
-          if (sourceExt.includes(path4.extname(baseName))) return void 0;
+          const localBin = path3.resolve(baseDir, baseName);
+          if (fs5.existsSync(localBin)) return localBin;
+          if (sourceExt.includes(path3.extname(baseName))) return void 0;
           const foundExt = sourceExt.find(
-            (ext) => fs6.existsSync(`${localBin}${ext}`)
+            (ext) => fs5.existsSync(`${localBin}${ext}`)
           );
           if (foundExt) return `${localBin}${foundExt}`;
           return void 0;
@@ -1938,21 +1915,21 @@ Expecting one of '${allowedValues.join("', '")}'`);
         if (this._scriptPath) {
           let resolvedScriptPath;
           try {
-            resolvedScriptPath = fs6.realpathSync(this._scriptPath);
+            resolvedScriptPath = fs5.realpathSync(this._scriptPath);
           } catch (err) {
             resolvedScriptPath = this._scriptPath;
           }
-          executableDir = path4.resolve(
-            path4.dirname(resolvedScriptPath),
+          executableDir = path3.resolve(
+            path3.dirname(resolvedScriptPath),
             executableDir
           );
         }
         if (executableDir) {
           let localFile = findFile(executableDir, executableFile);
           if (!localFile && !subcommand._executableFile && this._scriptPath) {
-            const legacyName = path4.basename(
+            const legacyName = path3.basename(
               this._scriptPath,
-              path4.extname(this._scriptPath)
+              path3.extname(this._scriptPath)
             );
             if (legacyName !== this._name) {
               localFile = findFile(
@@ -1963,7 +1940,7 @@ Expecting one of '${allowedValues.join("', '")}'`);
           }
           executableFile = localFile || executableFile;
         }
-        launchWithNode = sourceExt.includes(path4.extname(executableFile));
+        launchWithNode = sourceExt.includes(path3.extname(executableFile));
         let proc;
         if (process2.platform !== "win32") {
           if (launchWithNode) {
@@ -2803,7 +2780,7 @@ Expecting one of '${allowedValues.join("', '")}'`);
        * @return {Command}
        */
       nameFromFilename(filename) {
-        this._name = path4.basename(filename, path4.extname(filename));
+        this._name = path3.basename(filename, path3.extname(filename));
         return this;
       }
       /**
@@ -2817,9 +2794,9 @@ Expecting one of '${allowedValues.join("', '")}'`);
        * @param {string} [path]
        * @return {(string|null|Command)}
        */
-      executableDir(path5) {
-        if (path5 === void 0) return this._executableDir;
-        this._executableDir = path5;
+      executableDir(path4) {
+        if (path4 === void 0) return this._executableDir;
+        this._executableDir = path4;
         return this;
       }
       /**
@@ -3030,7 +3007,6 @@ Expecting one of '${allowedValues.join("', '")}'`);
 // node_modules/commander/index.js
 var require_commander = __commonJS({
   "node_modules/commander/index.js"(exports2) {
-    init_define_ADMIN_UIDS();
     var { Argument: Argument2 } = require_argument();
     var { Command: Command2 } = require_command();
     var { CommanderError: CommanderError2, InvalidArgumentError: InvalidArgumentError2 } = require_error();
@@ -3053,7 +3029,6 @@ var require_commander = __commonJS({
 // node_modules/picocolors/picocolors.js
 var require_picocolors = __commonJS({
   "node_modules/picocolors/picocolors.js"(exports2, module2) {
-    init_define_ADMIN_UIDS();
     var p = process || {};
     var argv = p.argv || [];
     var env = p.env || {};
@@ -3211,7 +3186,6 @@ var DEFAULT_TIMEOUT, MAX_RETRIES, RETRYABLE_STATUS, RETRYABLE_NETWORK_CODES, htt
 var init_http = __esm({
   "src/cli/lib/http.ts"() {
     "use strict";
-    init_define_ADMIN_UIDS();
     DEFAULT_TIMEOUT = 3e4;
     MAX_RETRIES = 3;
     RETRYABLE_STATUS = /* @__PURE__ */ new Set([429, 500, 502, 503, 504]);
@@ -3243,31 +3217,333 @@ var init_http = __esm({
   }
 });
 
-// src/cli/lib/config.ts
-var config_exports = {};
-__export(config_exports, {
-  getFirebaseApiKey: () => getFirebaseApiKey,
-  getFirebaseAppId: () => getFirebaseAppId,
-  getFirebaseProjectId: () => getFirebaseProjectId,
-  getFirestoreBaseUrl: () => getFirestoreBaseUrl
+// src/cli/lib/dirs.ts
+function getConfigDir() {
+  if (process.env.NUMO_CONFIG_DIR) {
+    return process.env.NUMO_CONFIG_DIR;
+  }
+  const xdgHome = process.env.XDG_CONFIG_HOME || path.join(os.homedir(), ".config");
+  const xdgDir = path.join(xdgHome, "numo");
+  if (fs.existsSync(xdgDir)) return xdgDir;
+  if (fs.existsSync(LEGACY_DIR)) return LEGACY_DIR;
+  return xdgDir;
+}
+function ensureConfigDir() {
+  const dir = getConfigDir();
+  if (!fs.existsSync(dir)) {
+    fs.mkdirSync(dir, { recursive: true, mode: 448 });
+  }
+  return dir;
+}
+function getCredentialsPath() {
+  return path.join(getConfigDir(), "credentials.json");
+}
+function migrateIfNeeded() {
+  const xdgHome = process.env.XDG_CONFIG_HOME || path.join(os.homedir(), ".config");
+  const xdgDir = path.join(xdgHome, "numo");
+  if (process.env.NUMO_CONFIG_DIR) return;
+  const legacyCreds = path.join(LEGACY_DIR, "credentials.json");
+  if (!fs.existsSync(legacyCreds) || fs.existsSync(xdgDir)) return;
+  try {
+    fs.mkdirSync(xdgDir, { recursive: true, mode: 448 });
+    const data = fs.readFileSync(legacyCreds, "utf8");
+    fs.writeFileSync(path.join(xdgDir, "credentials.json"), data, { mode: 384 });
+    const legacyStreaks = path.join(LEGACY_DIR, "streaks.json");
+    if (fs.existsSync(legacyStreaks)) {
+      const streaksData = fs.readFileSync(legacyStreaks, "utf8");
+      fs.writeFileSync(path.join(xdgDir, "streaks.json"), streaksData, { mode: 384 });
+    }
+    process.stderr.write(`Migrated config from ${LEGACY_DIR} to ${xdgDir}
+`);
+  } catch {
+  }
+}
+var fs, path, os, LEGACY_DIR;
+var init_dirs = __esm({
+  "src/cli/lib/dirs.ts"() {
+    "use strict";
+    fs = __toESM(require("fs"), 1);
+    path = __toESM(require("path"), 1);
+    os = __toESM(require("os"), 1);
+    LEGACY_DIR = path.join(os.homedir(), ".numo");
+  }
+});
+
+// src/cli/lib/errors.ts
+function classifyError(err) {
+  if (err instanceof CliError) return err;
+  const axiosErr = err;
+  if (axiosErr.code === "ECONNABORTED" || axiosErr.code === "ETIMEDOUT") return Errors.timeout();
+  if (axiosErr.code === "ENOTFOUND" || axiosErr.code === "EAI_AGAIN") return Errors.networkError();
+  if (axiosErr.code === "ECONNREFUSED" || axiosErr.code === "ECONNRESET") {
+    return Errors.networkError("Service may be temporarily down. Try again in a moment.");
+  }
+  const status = axiosErr.response?.status;
+  if (status === 401) return Errors.authRequired();
+  if (status === 403) {
+    return new CliError("AUTH_FORBIDDEN" /* AUTH_FORBIDDEN */, "Access denied", ExitCode.NO_PERM, {
+      hint: "You don't have permission for this action."
+    });
+  }
+  if (status === 404) return Errors.notFound("Resource");
+  if (status === 429) {
+    const retryAfter = parseInt(axiosErr.response?.headers?.["retry-after"] ?? "");
+    return Errors.rateLimited(isNaN(retryAfter) ? void 0 : retryAfter);
+  }
+  if (status && status >= 500) {
+    return new CliError("SERVICE_UNAVAILABLE" /* SERVICE_UNAVAILABLE */, "Server error", ExitCode.UNAVAILABLE, {
+      hint: "This is on our end. Try again in a moment.",
+      retryable: true
+    });
+  }
+  const body = axiosErr.response?.data;
+  const raw = body?.error?.message ?? axiosErr.message ?? "Unknown error";
+  const message = sanitizeErrorMessage(raw);
+  return new CliError("UNKNOWN" /* UNKNOWN */, message, ExitCode.GENERAL, { cause: err });
+}
+function sanitizeErrorMessage(msg) {
+  return msg.replace(/https?:\/\/\S+/g, "<url>").replace(/\/(?:Users|home|var|tmp)\/\S+/g, "<path>").replace(/[A-Za-z0-9_-]{40,}/g, "<token>");
+}
+var ExitCode, CliError, Errors;
+var init_errors = __esm({
+  "src/cli/lib/errors.ts"() {
+    "use strict";
+    ExitCode = {
+      OK: 0,
+      GENERAL: 1,
+      USAGE: 2,
+      UNAVAILABLE: 69,
+      TEMP_FAIL: 75,
+      NO_PERM: 77,
+      CONFIG: 78,
+      NOT_FOUND: 100,
+      CONFLICT: 101
+    };
+    CliError = class extends Error {
+      constructor(kind, message, exitCode = ExitCode.GENERAL, options = {}) {
+        super(message);
+        this.kind = kind;
+        this.exitCode = exitCode;
+        this.options = options;
+        this.name = "CliError";
+      }
+      toJSON() {
+        return {
+          error: {
+            kind: this.kind,
+            code: this.exitCode,
+            message: this.message,
+            ...this.options.suggestion && { suggestion: this.options.suggestion },
+            ...this.options.hint && { hint: this.options.hint },
+            retryable: this.options.retryable ?? false,
+            ...this.options.retryAfter != null && { retryAfter: this.options.retryAfter }
+          }
+        };
+      }
+    };
+    Errors = {
+      authRequired: () => new CliError("AUTH_REQUIRED" /* AUTH_REQUIRED */, "Not logged in", ExitCode.NO_PERM, {
+        suggestion: "numo login"
+      }),
+      notFound: (resource, id) => new CliError("NOT_FOUND" /* NOT_FOUND */, `${resource} not found${id ? `: ${id}` : ""}`, ExitCode.NOT_FOUND, {
+        suggestion: `numo ${resource.toLowerCase()}s list`
+      }),
+      missingArg: (name, flag) => new CliError("MISSING_ARGUMENT" /* MISSING_ARGUMENT */, `${name} is required`, ExitCode.USAGE, {
+        suggestion: `Use --${flag}`,
+        hint: "Run with --help for all options."
+      }),
+      invalidInput: (message, hint) => new CliError("INVALID_INPUT" /* INVALID_INPUT */, message, ExitCode.USAGE, { hint }),
+      configMissing: (key) => new CliError("CONFIG_ERROR" /* CONFIG_ERROR */, `${key} not set`, ExitCode.CONFIG, {
+        suggestion: `export ${key}=<value>`
+      }),
+      networkError: (hint) => new CliError("NETWORK_ERROR" /* NETWORK_ERROR */, "Can't reach Numo servers", ExitCode.UNAVAILABLE, {
+        hint: hint ?? "Check your internet connection.",
+        retryable: true
+      }),
+      timeout: () => new CliError("TIMEOUT" /* TIMEOUT */, "Request timed out", ExitCode.TEMP_FAIL, {
+        hint: "The server took too long to respond. Try again.",
+        retryable: true
+      }),
+      rateLimited: (retryAfter) => new CliError("RATE_LIMITED" /* RATE_LIMITED */, "Too many requests", ExitCode.TEMP_FAIL, {
+        hint: retryAfter ? `Wait ${retryAfter} seconds and try again.` : "Wait a moment and try again.",
+        retryable: true,
+        retryAfter
+      })
+    };
+  }
+});
+
+// src/cli/lib/api-client.ts
+var api_client_exports = {};
+__export(api_client_exports, {
+  API_BASE: () => API_BASE,
+  api: () => api
+});
+function toCliError(err) {
+  if (err instanceof CliError) return err;
+  const httpErr = err;
+  if (httpErr.code === "ECONNABORTED" || httpErr.code === "ETIMEDOUT") {
+    return new CliError("TIMEOUT" /* TIMEOUT */, "Request timed out", ExitCode.TEMP_FAIL, {
+      hint: "The API server took too long to respond.",
+      retryable: true
+    });
+  }
+  if (httpErr.code === "ECONNREFUSED" || httpErr.code === "ECONNRESET" || httpErr.code === "ENOTFOUND") {
+    return new CliError("NETWORK_ERROR" /* NETWORK_ERROR */, "Can't reach Numo API", ExitCode.UNAVAILABLE, {
+      hint: "Is the API server running? Check NUMO_API_URL.",
+      retryable: true
+    });
+  }
+  const body = httpErr.response?.data;
+  if (body?.error) {
+    const e = body.error;
+    const kind = e.kind ?? "UNKNOWN" /* UNKNOWN */;
+    const exitCode = KIND_EXIT[kind] ?? ExitCode.GENERAL;
+    return new CliError(kind, e.message ?? "Unknown error", exitCode, {
+      retryable: e.retryable,
+      retryAfter: e.retryAfter
+    });
+  }
+  return new CliError("UNKNOWN" /* UNKNOWN */, httpErr.message ?? "Unknown error", ExitCode.GENERAL);
+}
+async function apiHeaders() {
+  const token = await getIdToken();
+  return {
+    Authorization: `Bearer ${token}`,
+    "Content-Type": "application/json"
+  };
+}
+function url(path3, params) {
+  const u2 = `${API_BASE}${path3}`;
+  if (!params) return u2;
+  const sp = new URLSearchParams();
+  for (const [k2, v] of Object.entries(params)) {
+    if (v !== void 0) sp.set(k2, v);
+  }
+  const qs = sp.toString();
+  return qs ? `${u2}?${qs}` : u2;
+}
+var API_BASE, KIND_EXIT, api;
+var init_api_client = __esm({
+  "src/cli/lib/api-client.ts"() {
+    "use strict";
+    init_credentials();
+    init_http();
+    init_errors();
+    API_BASE = process.env.NUMO_API_URL ?? (true ? "https://api.numo.ai" : "http://localhost:3000");
+    if (API_BASE !== "http://localhost:3000" && API_BASE.startsWith("http://")) {
+      process.stderr.write("[warn] NUMO_API_URL uses HTTP \u2014 tokens sent unencrypted. Use HTTPS in production.\n");
+    }
+    KIND_EXIT = {
+      AUTH_REQUIRED: ExitCode.NO_PERM,
+      AUTH_EXPIRED: ExitCode.NO_PERM,
+      AUTH_FORBIDDEN: ExitCode.NO_PERM,
+      INVALID_INPUT: ExitCode.USAGE,
+      MISSING_ARGUMENT: ExitCode.USAGE,
+      NOT_FOUND: ExitCode.NOT_FOUND,
+      CONFLICT: ExitCode.CONFLICT,
+      RATE_LIMITED: ExitCode.TEMP_FAIL,
+      NETWORK_ERROR: ExitCode.UNAVAILABLE,
+      TIMEOUT: ExitCode.TEMP_FAIL,
+      SERVICE_UNAVAILABLE: ExitCode.UNAVAILABLE
+    };
+    api = {
+      async get(path3, params) {
+        try {
+          const resp = await http.get(url(path3, params), { headers: await apiHeaders() });
+          return resp.data;
+        } catch (err) {
+          throw toCliError(err);
+        }
+      },
+      async post(path3, body) {
+        try {
+          const resp = await http.post(url(path3), body, { headers: await apiHeaders() });
+          return resp.data;
+        } catch (err) {
+          throw toCliError(err);
+        }
+      },
+      async patch(path3, body) {
+        try {
+          const resp = await http.patch(url(path3), body, { headers: await apiHeaders() });
+          return resp.data;
+        } catch (err) {
+          throw toCliError(err);
+        }
+      },
+      async del(path3) {
+        try {
+          const resp = await http.delete(url(path3), { headers: await apiHeaders() });
+          return resp.data;
+        } catch (err) {
+          throw toCliError(err);
+        }
+      }
+    };
+  }
 });
-function getFirestoreBaseUrl() {
-  const projectId = getFirebaseProjectId();
-  return `https://firestore.googleapis.com/v1/projects/${projectId}/databases/(default)/documents`;
+
+// src/cli/auth/credentials.ts
+function loadCredentials() {
+  try {
+    const data = JSON.parse(fs2.readFileSync(getCredentialsPath(), "utf8"));
+    if (typeof data?.refreshToken !== "string" || typeof data?.uid !== "string" || typeof data?.email !== "string") {
+      return null;
+    }
+    return data;
+  } catch {
+    return null;
+  }
+}
+function saveCredentials(creds) {
+  ensureConfigDir();
+  fs2.writeFileSync(getCredentialsPath(), JSON.stringify(creds, null, 2), { mode: 384 });
 }
-function getFirebaseApiKey() {
-  return process.env.NUMO_FIREBASE_API_KEY ?? (true ? "AIzaSyAwJdEvE-ZPyGzAlJdqt_bMSsoSrHonniA" : "");
+function clearCredentials() {
+  try {
+    const credPath = getCredentialsPath();
+    const stat = fs2.statSync(credPath);
+    fs2.writeFileSync(credPath, crypto.randomBytes(stat.size));
+    fs2.unlinkSync(credPath);
+  } catch {
+  }
 }
-function getFirebaseProjectId() {
-  return process.env.NUMO_FIREBASE_PROJECT_ID ?? (true ? "mindist-well" : "");
+async function getIdToken() {
+  const envToken = process.env.NUMO_TOKEN;
+  if (envToken) return envToken;
+  const creds = loadCredentials();
+  if (!creds) throw new Error("Not logged in. Run: numo login");
+  if (creds.idToken && creds.idTokenExpiry && Date.now() < creds.idTokenExpiry - 6e4) {
+    return creds.idToken;
+  }
+  if (refreshInFlight) return refreshInFlight;
+  refreshInFlight = performRefresh(creds).finally(() => {
+    refreshInFlight = null;
+  });
+  return refreshInFlight;
 }
-function getFirebaseAppId() {
-  return process.env.NUMO_FIREBASE_APP_ID ?? (true ? "1:767603956046:web:d2c5911157e1cb017a261f" : "");
+async function performRefresh(creds) {
+  const { API_BASE: apiBase } = await Promise.resolve().then(() => (init_api_client(), api_client_exports));
+  const { http: http2 } = await Promise.resolve().then(() => (init_http(), http_exports));
+  const resp = await http2.post(
+    `${apiBase}/api/auth/refresh`,
+    { refreshToken: creds.refreshToken }
+  );
+  creds.idToken = resp.data.idToken;
+  creds.refreshToken = resp.data.refreshToken ?? creds.refreshToken;
+  creds.idTokenExpiry = Date.now() + (resp.data.expiresIn || 3600) * 1e3;
+  saveCredentials(creds);
+  return creds.idToken;
 }
-var init_config = __esm({
-  "src/cli/lib/config.ts"() {
+var fs2, crypto, refreshInFlight;
+var init_credentials = __esm({
+  "src/cli/auth/credentials.ts"() {
     "use strict";
-    init_define_ADMIN_UIDS();
+    fs2 = __toESM(require("fs"), 1);
+    crypto = __toESM(require("crypto"), 1);
+    init_dirs();
+    refreshInFlight = null;
   }
 });
 
@@ -3282,7 +3558,6 @@ var isUnicodeSupported;
 var init_tty = __esm({
   "src/cli/lib/tty.ts"() {
     "use strict";
-    init_define_ADMIN_UIDS();
     isUnicodeSupported = process.platform !== "win32" || !!process.env.WT_SESSION || process.env.TERM_PROGRAM === "vscode";
   }
 });
@@ -3291,7 +3566,6 @@ var init_tty = __esm({
 var require_src = __commonJS({
   "node_modules/sisteransi/src/index.js"(exports2, module2) {
     "use strict";
-    init_define_ADMIN_UIDS();
     var ESC = "\x1B";
     var CSI = `${ESC}[`;
     var beep = "\x07";
@@ -3433,7 +3707,6 @@ function St(t2, e) {
 var import_node_util, import_node_process, k, import_node_readline, import_sisteransi, import_node_tty, at, lt, ht, O, y, L, P, M, ct, ft, X, pt, S, T, Z, Ft, j, Q, dt, tt, U, et, mt, st, it, gt, G, vt, Et, At, _, bt, z, rt, nt, B, Vt, kt, yt, Lt, Mt, Tt, Wt, $t;
 var init_dist = __esm({
   "node_modules/@clack/core/dist/index.mjs"() {
-    init_define_ADMIN_UIDS();
     import_node_util = require("node:util");
     import_node_process = require("node:process");
     k = __toESM(require("node:readline"), 1);
@@ -4100,7 +4373,6 @@ function qt({ style: e = "heavy", max: r = 100, size: s = 40, ...i } = {}) {
 var import_node_util2, import_node_process2, import_node_fs, import_node_path, import_sisteransi2, ee, ce, Me, I2, Re, $e, de, V, he, h, x2, Oe, Pe, z2, H2, te, U2, q2, Ne, se, pe, We, me, ge, Ge, fe, Fe, ye, Ee, W2, ve, mt2, gt2, ft2, we, re, ie, Ae, ne, Ft2, yt2, Le, Et2, D2, ae, je, vt2, Ce, ke, wt2, Ve, Se, He, At2, Ue, Ke, Ct2, Ie, St2, It2, bt2, X2, Xe, xt2, _t2, Dt2, Tt2, Mt2, Rt, Ot, Pt, R2, Nt, Wt2, Gt, Q2, Lt2, jt, kt2, Vt2, Ht, Ut, Kt, be, ze, oe, Jt, Xt, Qe, K2, Yt, zt, Qt, Zt;
 var init_dist2 = __esm({
   "node_modules/@clack/prompts/dist/index.mjs"() {
-    init_define_ADMIN_UIDS();
     init_dist();
     init_dist();
     import_node_util2 = require("node:util");
@@ -5072,318 +5344,74 @@ async function promptForMissing(opts) {
 var init_prompts = __esm({
   "src/cli/lib/prompts.ts"() {
     "use strict";
-    init_define_ADMIN_UIDS();
     init_tty();
   }
 });
 
-// src/cli/lib/errors.ts
-function classifyError(err) {
-  if (err instanceof CliError) return err;
-  const axiosErr = err;
-  if (axiosErr.code === "ECONNABORTED" || axiosErr.code === "ETIMEDOUT") return Errors.timeout();
-  if (axiosErr.code === "ENOTFOUND" || axiosErr.code === "EAI_AGAIN") return Errors.networkError();
-  if (axiosErr.code === "ECONNREFUSED" || axiosErr.code === "ECONNRESET") {
-    return Errors.networkError("Service may be temporarily down. Try again in a moment.");
+// src/cli/auth/phone-login.ts
+var phone_login_exports = {};
+__export(phone_login_exports, {
+  authenticateWithPhone: () => authenticateWithPhone
+});
+async function authenticateWithPhone(spinner) {
+  const p = await Promise.resolve().then(() => (init_dist2(), dist_exports));
+  const phone = await promptText({
+    message: "Phone number (with country code)",
+    placeholder: "+380501234567",
+    required: true
+  });
+  if (!/^\+[0-9]{7,15}$/.test(phone)) {
+    throw Errors.invalidInput("Invalid phone number. Use E.164 format: +<country code><number>", "Example: +380501234567");
   }
-  const status = axiosErr.response?.status;
-  if (status === 401) return Errors.authRequired();
-  if (status === 403) {
-    return new CliError("AUTH_FORBIDDEN" /* AUTH_FORBIDDEN */, "Access denied", ExitCode.NO_PERM, {
-      hint: "You don't have permission for this action."
-    });
-  }
-  if (status === 404) return Errors.notFound("Resource");
-  if (status === 429) {
-    const retryAfter = parseInt(axiosErr.response?.headers?.["retry-after"] ?? "");
-    return Errors.rateLimited(isNaN(retryAfter) ? void 0 : retryAfter);
-  }
-  if (status && status >= 500) {
-    return new CliError("SERVICE_UNAVAILABLE" /* SERVICE_UNAVAILABLE */, "Server error", ExitCode.UNAVAILABLE, {
-      hint: "This is on our end. Try again in a moment.",
-      retryable: true
-    });
-  }
-  const body = axiosErr.response?.data;
-  const raw = body?.error?.message ?? axiosErr.message ?? "Unknown error";
-  const message = sanitizeErrorMessage(raw);
-  return new CliError("UNKNOWN" /* UNKNOWN */, message, ExitCode.GENERAL, { cause: err });
-}
-function sanitizeErrorMessage(msg) {
-  return msg.replace(/https?:\/\/\S+/g, "<url>").replace(/\/(?:Users|home|var|tmp)\/\S+/g, "<path>").replace(/[A-Za-z0-9_-]{40,}/g, "<token>");
-}
-var ExitCode, CliError, Errors;
-var init_errors = __esm({
-  "src/cli/lib/errors.ts"() {
-    "use strict";
-    init_define_ADMIN_UIDS();
-    ExitCode = {
-      OK: 0,
-      GENERAL: 1,
-      USAGE: 2,
-      UNAVAILABLE: 69,
-      TEMP_FAIL: 75,
-      NO_PERM: 77,
-      CONFIG: 78,
-      NOT_FOUND: 100,
-      CONFLICT: 101
-    };
-    CliError = class extends Error {
-      constructor(kind, message, exitCode = ExitCode.GENERAL, options = {}) {
-        super(message);
-        this.kind = kind;
-        this.exitCode = exitCode;
-        this.options = options;
-        this.name = "CliError";
-      }
-      toJSON() {
+  spinner.start("Starting phone verification...");
+  const startResp = await http.post(`${API_BASE}/api/auth/phone/start`, {
+    phoneNumber: phone
+  });
+  const { sessionId, verifyUrl } = startResp.data;
+  spinner.stop("");
+  p.log.info("Opening browser for phone verification...");
+  p.log.info(import_picocolors.default.dim(`If the browser does not open, visit: ${verifyUrl}`));
+  const { default: open } = await import("open");
+  const cp = await open(verifyUrl);
+  cp.unref();
+  spinner.start("Waiting for verification in browser...");
+  const deadline = Date.now() + POLL_TIMEOUT;
+  while (Date.now() < deadline) {
+    await new Promise((r) => setTimeout(r, POLL_INTERVAL));
+    try {
+      const pollResp = await http.get(`${API_BASE}/api/auth/phone/poll?session=${sessionId}`);
+      if (pollResp.status === 200 && pollResp.data.idToken) {
         return {
-          error: {
-            kind: this.kind,
-            code: this.exitCode,
-            message: this.message,
-            ...this.options.suggestion && { suggestion: this.options.suggestion },
-            ...this.options.hint && { hint: this.options.hint },
-            retryable: this.options.retryable ?? false,
-            ...this.options.retryAfter != null && { retryAfter: this.options.retryAfter }
-          }
+          refreshToken: pollResp.data.refreshToken,
+          uid: pollResp.data.uid,
+          displayName: phone,
+          idToken: pollResp.data.idToken,
+          idTokenExpiry: Date.now() + (pollResp.data.expiresIn || 3600) * 1e3
         };
       }
-    };
-    Errors = {
-      authRequired: () => new CliError("AUTH_REQUIRED" /* AUTH_REQUIRED */, "Not logged in", ExitCode.NO_PERM, {
-        suggestion: "numo login"
-      }),
-      notFound: (resource, id) => new CliError("NOT_FOUND" /* NOT_FOUND */, `${resource} not found${id ? `: ${id}` : ""}`, ExitCode.NOT_FOUND, {
-        suggestion: `numo ${resource.toLowerCase()}s list`
-      }),
-      missingArg: (name, flag) => new CliError("MISSING_ARGUMENT" /* MISSING_ARGUMENT */, `${name} is required`, ExitCode.USAGE, {
-        suggestion: `Use --${flag}`,
-        hint: "Run with --help for all options."
-      }),
-      invalidInput: (message, hint) => new CliError("INVALID_INPUT" /* INVALID_INPUT */, message, ExitCode.USAGE, { hint }),
-      configMissing: (key) => new CliError("CONFIG_ERROR" /* CONFIG_ERROR */, `${key} not set`, ExitCode.CONFIG, {
-        suggestion: `export ${key}=<value>`
-      }),
-      networkError: (hint) => new CliError("NETWORK_ERROR" /* NETWORK_ERROR */, "Can't reach Numo servers", ExitCode.UNAVAILABLE, {
-        hint: hint ?? "Check your internet connection.",
-        retryable: true
-      }),
-      timeout: () => new CliError("TIMEOUT" /* TIMEOUT */, "Request timed out", ExitCode.TEMP_FAIL, {
-        hint: "The server took too long to respond. Try again.",
-        retryable: true
-      }),
-      rateLimited: (retryAfter) => new CliError("RATE_LIMITED" /* RATE_LIMITED */, "Too many requests", ExitCode.TEMP_FAIL, {
-        hint: retryAfter ? `Wait ${retryAfter} seconds and try again.` : "Wait a moment and try again.",
-        retryable: true,
-        retryAfter
-      })
-    };
-  }
-});
-
-// src/cli/auth/local-server.ts
-function findFreePort() {
-  return new Promise((resolve, reject) => {
-    const server = net.createServer();
-    server.listen(0, "127.0.0.1", () => {
-      const address = server.address();
-      server.close(() => resolve(address.port));
-    });
-    server.on("error", reject);
-  });
-}
-function serveHtmlAndWaitForCallback(port, html, expectedState) {
-  return new Promise((resolve, reject) => {
-    const connections = /* @__PURE__ */ new Set();
-    const server = http2.createServer((req, res) => {
-      const parsed = url.parse(req.url ?? "", true);
-      if (parsed.pathname === "/callback") {
-        if (parsed.query.state !== expectedState) {
-          res.writeHead(403, { "Content-Type": "text/html", "Connection": "close" });
-          res.end("<html><body><h2>Invalid state parameter. Authentication rejected.</h2></body></html>");
-          return;
-        }
-        res.writeHead(200, { "Content-Type": "text/html", "Connection": "close", "Cache-Control": "no-store" });
-        res.end("<html><body><h2>Authentication complete. You can close this tab.</h2></body></html>");
-        clearTimeout(timer);
-        server.close();
-        for (const conn of connections) conn.destroy();
-        resolve(parsed.query);
-        return;
-      }
-      if (parsed.pathname !== "/") {
-        res.writeHead(404, { "Content-Type": "text/plain", "Connection": "close" });
-        res.end("Not Found");
-        return;
+    } catch (err) {
+      if (err.response?.status === 404) {
+        throw Errors.networkError("Verification session expired. Try again.");
       }
-      res.writeHead(200, {
-        "Content-Type": "text/html",
-        "Cache-Control": "no-store",
-        "Content-Security-Policy": "default-src 'self' https://www.gstatic.com 'unsafe-inline'"
-      });
-      res.end(html);
-    });
-    server.on("connection", (conn) => {
-      connections.add(conn);
-      conn.on("close", () => connections.delete(conn));
-    });
-    server.listen(port, "127.0.0.1");
-    server.on("error", reject);
-    const timer = setTimeout(() => {
-      server.close();
-      for (const conn of connections) conn.destroy();
-      reject(new Error("Timeout waiting for authentication (5 min)"));
-    }, 5 * 60 * 1e3);
-    timer.unref();
-  });
-}
-var http2, net, url;
-var init_local_server = __esm({
-  "src/cli/auth/local-server.ts"() {
-    "use strict";
-    init_define_ADMIN_UIDS();
-    http2 = __toESM(require("http"), 1);
-    net = __toESM(require("net"), 1);
-    url = __toESM(require("url"), 1);
-  }
-});
-
-// src/cli/auth/phone-login.ts
-var phone_login_exports = {};
-__export(phone_login_exports, {
-  authenticateWithPhone: () => authenticateWithPhone
-});
-function buildSmsPageHtml(apiKey, projectId, appId, phoneNumber, callbackUrl, state) {
-  const configJson = JSON.stringify({ apiKey, projectId, appId, phoneNumber, callbackUrl, state });
-  return `<!DOCTYPE html>
-<html>
-<head>
-  <meta charset="UTF-8">
-  <title>Numo \u2014 Sending SMS</title>
-  <style>
-    body { font-family: sans-serif; max-width: 420px; margin: 80px auto; padding: 20px; text-align: center; }
-    .spinner { display: inline-block; width: 20px; height: 20px; border: 3px solid #ccc; border-top-color: #4285f4; border-radius: 50%; animation: spin 0.8s linear infinite; vertical-align: middle; margin-right: 8px; }
-    @keyframes spin { to { transform: rotate(360deg); } }
-    .error { color: #d32f2f; font-size: 14px; margin-top: 16px; }
-    .success { color: #2e7d32; }
-  </style>
-</head>
-<body>
-  <h2>Numo</h2>
-  <p id="status"><span class="spinner"></span> Sending SMS...</p>
-  <p id="error" class="error"></p>
-
-  <div id="recaptcha-container"></div>
-
-  <script>window.__NUMO__ = ${configJson};</script>
-  <script type="module">
-    import { initializeApp } from 'https://www.gstatic.com/firebasejs/10.7.0/firebase-app.js';
-    import { getAuth, RecaptchaVerifier, signInWithPhoneNumber } from 'https://www.gstatic.com/firebasejs/10.7.0/firebase-auth.js';
-
-    const cfg = window.__NUMO__;
-    const app = initializeApp({
-      apiKey: cfg.apiKey,
-      projectId: cfg.projectId,
-      appId: cfg.appId,
-      authDomain: cfg.projectId + '.firebaseapp.com',
-    });
-    const auth = getAuth(app);
-
-    try {
-      const verifier = new RecaptchaVerifier(auth, 'recaptcha-container', { size: 'invisible' });
-      const confirmationResult = await signInWithPhoneNumber(auth, cfg.phoneNumber, verifier);
-
-      const params = new URLSearchParams({ verificationId: confirmationResult.verificationId, state: cfg.state });
-      document.getElementById('status').innerHTML = '<span class="success">SMS sent! Return to the terminal to enter the code.</span>';
-      window.location.href = cfg.callbackUrl + '?' + params.toString();
-    } catch (e) {
-      document.getElementById('status').textContent = '';
-      document.getElementById('error').textContent = e.message;
     }
-  </script>
-</body>
-</html>`;
-}
-async function authenticateWithPhone(spinner) {
-  const fbApiKey = getFirebaseApiKey();
-  const projectId = getFirebaseProjectId();
-  const appId = getFirebaseAppId();
-  if (!fbApiKey) {
-    throw Errors.configMissing("NUMO_FIREBASE_API_KEY");
-  }
-  if (!projectId) {
-    throw Errors.configMissing("NUMO_FIREBASE_PROJECT_ID");
-  }
-  if (!appId) {
-    throw Errors.configMissing("NUMO_FIREBASE_APP_ID");
-  }
-  const p = await Promise.resolve().then(() => (init_dist2(), dist_exports));
-  const phone = await promptText({
-    message: "Phone number (with country code)",
-    placeholder: "+380501234567",
-    required: true
-  });
-  if (!/^\+[0-9]{7,15}$/.test(phone)) {
-    throw Errors.invalidInput("Invalid phone number. Use E.164 format: +<country code><number>", "Example: +380501234567");
-  }
-  const port = await findFreePort();
-  const callbackUrl = `http://localhost:${port}/callback`;
-  const state = crypto2.randomUUID();
-  const html = buildSmsPageHtml(fbApiKey, projectId, appId, phone, callbackUrl, state);
-  p.log.info("Opening browser to send SMS...");
-  p.log.info(import_picocolors.default.dim(`If the browser does not open, visit: http://localhost:${port}`));
-  const { default: open } = await import("open");
-  const cp = await open(`http://localhost:${port}`);
-  cp.unref();
-  const callbackParams = await serveHtmlAndWaitForCallback(port, html, state);
-  const verificationId = callbackParams.verificationId;
-  if (!verificationId) {
-    throw Errors.networkError("Failed to send SMS. Try again.");
-  }
-  p.log.success("SMS sent");
-  const otp = await promptText({
-    message: "Enter the 6-digit code from SMS",
-    placeholder: "123456",
-    required: true
-  });
-  spinner.start("Verifying code...");
-  const resp = await http.post(
-    `https://identitytoolkit.googleapis.com/v1/accounts:signInWithPhoneNumber?key=${fbApiKey}`,
-    { sessionInfo: verificationId, code: otp }
-  );
-  const { refreshToken, localId: uid, idToken, phoneNumber } = resp.data;
-  if (!refreshToken || !uid) {
-    throw new Error("Incomplete credentials received");
   }
-  return {
-    refreshToken,
-    uid,
-    displayName: phoneNumber || phone,
-    idToken,
-    idTokenExpiry: idToken ? Date.now() + 3600 * 1e3 : void 0
-  };
+  throw Errors.networkError("Phone verification timed out. Try again.");
 }
-var crypto2, import_picocolors;
+var import_picocolors, POLL_INTERVAL, POLL_TIMEOUT;
 var init_phone_login = __esm({
   "src/cli/auth/phone-login.ts"() {
     "use strict";
-    init_define_ADMIN_UIDS();
-    crypto2 = __toESM(require("crypto"), 1);
     init_http();
     import_picocolors = __toESM(require_picocolors(), 1);
     init_errors();
-    init_local_server();
-    init_config();
     init_prompts();
+    init_api_client();
+    POLL_INTERVAL = 2e3;
+    POLL_TIMEOUT = 5 * 60 * 1e3;
   }
 });
 
-// src/cli/cli.ts
-init_define_ADMIN_UIDS();
-
 // node_modules/commander/esm.mjs
-init_define_ADMIN_UIDS();
 var import_index = __toESM(require_commander(), 1);
 var {
   program,
@@ -5404,178 +5432,34 @@ var {
 var import_picocolors13 = __toESM(require_picocolors(), 1);
 
 // src/cli/auth/login.ts
-init_define_ADMIN_UIDS();
 init_http();
 var import_picocolors2 = __toESM(require_picocolors(), 1);
-
-// src/cli/auth/credentials.ts
-init_define_ADMIN_UIDS();
-var fs2 = __toESM(require("fs"), 1);
-var crypto = __toESM(require("crypto"), 1);
-
-// src/cli/lib/dirs.ts
-init_define_ADMIN_UIDS();
-var fs = __toESM(require("fs"), 1);
-var path = __toESM(require("path"), 1);
-var os = __toESM(require("os"), 1);
-var LEGACY_DIR = path.join(os.homedir(), ".numo");
-function getConfigDir() {
-  if (process.env.NUMO_CONFIG_DIR) {
-    return process.env.NUMO_CONFIG_DIR;
-  }
-  const xdgHome = process.env.XDG_CONFIG_HOME || path.join(os.homedir(), ".config");
-  const xdgDir = path.join(xdgHome, "numo");
-  if (fs.existsSync(xdgDir)) return xdgDir;
-  if (fs.existsSync(LEGACY_DIR)) return LEGACY_DIR;
-  return xdgDir;
-}
-function ensureConfigDir() {
-  const dir = getConfigDir();
-  if (!fs.existsSync(dir)) {
-    fs.mkdirSync(dir, { recursive: true, mode: 448 });
-  }
-  return dir;
-}
-function getCredentialsPath() {
-  return path.join(getConfigDir(), "credentials.json");
-}
-function migrateIfNeeded() {
-  const xdgHome = process.env.XDG_CONFIG_HOME || path.join(os.homedir(), ".config");
-  const xdgDir = path.join(xdgHome, "numo");
-  if (process.env.NUMO_CONFIG_DIR) return;
-  const legacyCreds = path.join(LEGACY_DIR, "credentials.json");
-  if (!fs.existsSync(legacyCreds) || fs.existsSync(xdgDir)) return;
-  try {
-    fs.mkdirSync(xdgDir, { recursive: true, mode: 448 });
-    const data = fs.readFileSync(legacyCreds, "utf8");
-    fs.writeFileSync(path.join(xdgDir, "credentials.json"), data, { mode: 384 });
-    const legacyStreaks = path.join(LEGACY_DIR, "streaks.json");
-    if (fs.existsSync(legacyStreaks)) {
-      const streaksData = fs.readFileSync(legacyStreaks, "utf8");
-      fs.writeFileSync(path.join(xdgDir, "streaks.json"), streaksData, { mode: 384 });
-    }
-    process.stderr.write(`Migrated config from ${LEGACY_DIR} to ${xdgDir}
-`);
-  } catch {
-  }
-}
-
-// src/cli/auth/credentials.ts
-function loadCredentials() {
-  try {
-    const data = JSON.parse(fs2.readFileSync(getCredentialsPath(), "utf8"));
-    if (typeof data?.refreshToken !== "string" || typeof data?.uid !== "string" || typeof data?.email !== "string") {
-      return null;
-    }
-    return data;
-  } catch {
-    return null;
-  }
-}
-function saveCredentials(creds) {
-  ensureConfigDir();
-  fs2.writeFileSync(getCredentialsPath(), JSON.stringify(creds, null, 2), { mode: 384 });
-}
-function clearCredentials() {
-  try {
-    const credPath = getCredentialsPath();
-    const stat = fs2.statSync(credPath);
-    fs2.writeFileSync(credPath, crypto.randomBytes(stat.size));
-    fs2.unlinkSync(credPath);
-  } catch {
-  }
-}
-var refreshInFlight = null;
-async function getIdToken() {
-  const envToken = process.env.NUMO_TOKEN;
-  if (envToken) return envToken;
-  const creds = loadCredentials();
-  if (!creds) throw new Error("Not logged in. Run: numo login");
-  if (creds.idToken && creds.idTokenExpiry && Date.now() < creds.idTokenExpiry - 6e4) {
-    return creds.idToken;
-  }
-  if (refreshInFlight) return refreshInFlight;
-  refreshInFlight = performRefresh(creds).finally(() => {
-    refreshInFlight = null;
-  });
-  return refreshInFlight;
-}
-async function performRefresh(creds) {
-  const { getFirebaseApiKey: getFirebaseApiKey2 } = await Promise.resolve().then(() => (init_config(), config_exports));
-  const fbApiKey = getFirebaseApiKey2();
-  if (!fbApiKey) throw new Error("NUMO_FIREBASE_API_KEY not set");
-  const { http: http3 } = await Promise.resolve().then(() => (init_http(), http_exports));
-  const resp = await http3.post(
-    `https://securetoken.googleapis.com/v1/token?key=${fbApiKey}`,
-    { grant_type: "refresh_token", refresh_token: creds.refreshToken },
-    { headers: { "Content-Type": "application/json" } }
-  );
-  creds.idToken = resp.data.id_token;
-  creds.idTokenExpiry = Date.now() + (parseInt(resp.data.expires_in) || 3600) * 1e3;
-  saveCredentials(creds);
-  return creds.idToken;
-}
-
-// src/cli/auth/login.ts
-init_config();
+init_credentials();
 init_prompts();
 init_errors();
-
-// src/cli/lib/uid.ts
-init_define_ADMIN_UIDS();
-init_errors();
-var ADMIN_UIDS = typeof define_ADMIN_UIDS_default !== "undefined" ? define_ADMIN_UIDS_default : [];
-function requireUid() {
-  const creds = loadCredentials();
-  if (!creds) throw Errors.authRequired();
-  return creds.uid;
-}
-function isAdmin() {
-  const creds = loadCredentials();
-  return !!creds && ADMIN_UIDS.includes(creds.uid);
-}
-function requireAdmin() {
-  const creds = loadCredentials();
-  if (!creds) throw Errors.authRequired();
-  if (!ADMIN_UIDS.includes(creds.uid)) {
-    throw new CliError("AUTH_FORBIDDEN" /* AUTH_FORBIDDEN */, "Admin access required", ExitCode.NO_PERM, {
-      hint: "Your account does not have admin privileges."
-    });
-  }
-  return creds.uid;
-}
-
-// src/cli/auth/login.ts
+init_api_client();
 async function authenticateWithEmail(spinner) {
-  const fbApiKey = getFirebaseApiKey();
-  if (!fbApiKey) {
-    throw Errors.configMissing("NUMO_FIREBASE_API_KEY");
-  }
   const email = await promptText({ message: "Email", required: true });
   const password = await promptPassword({ message: "Password" });
   spinner.start("Signing in...");
   const resp = await http.post(
-    `https://identitytoolkit.googleapis.com/v1/accounts:signInWithPassword?key=${fbApiKey}`,
-    { email, password, returnSecureToken: true },
-    { headers: { "Content-Type": "application/json" } }
+    `${API_BASE}/api/auth/login`,
+    { email, password }
   );
   return {
     refreshToken: resp.data.refreshToken,
-    uid: resp.data.localId,
-    displayName: resp.data.email,
+    uid: resp.data.uid,
+    displayName: resp.data.email ?? email,
     idToken: resp.data.idToken,
-    idTokenExpiry: Date.now() + (parseInt(resp.data.expiresIn) || 3600) * 1e3
+    idTokenExpiry: Date.now() + (resp.data.expiresIn || 3600) * 1e3
   };
 }
 function printSuccess(displayName) {
   const lines = [
     `  ${import_picocolors2.default.dim("$")} numo tasks list --date YYYY-MM-DD   List tasks for a date`,
-    `  ${import_picocolors2.default.dim("$")} numo tasks create --text "..."       Create a task`
+    `  ${import_picocolors2.default.dim("$")} numo tasks create --text "..."       Create a task`,
+    `  ${import_picocolors2.default.dim("$")} numo profile                         View your profile`
   ];
-  if (isAdmin()) {
-    lines.push(`  ${import_picocolors2.default.dim("$")} numo posts list                      Browse community posts`);
-  }
-  lines.push(`  ${import_picocolors2.default.dim("$")} numo profile                         View your profile`);
   console.log(`
   ${import_picocolors2.default.bold("Available commands:")}
 ${lines.join("\n")}
@@ -5623,176 +5507,13 @@ async function login(options = {}) {
 }
 
 // src/cli/auth/register.ts
-init_define_ADMIN_UIDS();
 init_http();
 var import_picocolors3 = __toESM(require_picocolors(), 1);
-init_config();
+init_credentials();
 init_prompts();
 init_errors();
-
-// src/cli/lib/firestore.ts
-init_define_ADMIN_UIDS();
-init_http();
-init_config();
-function toValue(v) {
-  if (v === null || v === void 0) return { nullValue: null };
-  if (typeof v === "string") return { stringValue: v };
-  if (typeof v === "boolean") return { booleanValue: v };
-  if (typeof v === "number") {
-    return Number.isInteger(v) ? { integerValue: String(v) } : { doubleValue: v };
-  }
-  if (Array.isArray(v)) {
-    return { arrayValue: { values: v.map(toValue) } };
-  }
-  if (typeof v === "object") {
-    return { mapValue: { fields: toFirestoreFields(v) } };
-  }
-  return { stringValue: String(v) };
-}
-function toFirestoreFields(obj) {
-  const fields = {};
-  for (const [k2, v] of Object.entries(obj)) {
-    fields[k2] = toValue(v);
-  }
-  return fields;
-}
-function fromValue(v) {
-  if ("stringValue" in v) return v.stringValue;
-  if ("integerValue" in v) return parseInt(v.integerValue, 10);
-  if ("doubleValue" in v) return v.doubleValue;
-  if ("booleanValue" in v) return v.booleanValue;
-  if ("nullValue" in v) return null;
-  if ("arrayValue" in v) return (v.arrayValue.values ?? []).map(fromValue);
-  if ("mapValue" in v) return fromFirestoreFields(v.mapValue.fields ?? {});
-  return null;
-}
-function fromFirestoreFields(fields) {
-  const obj = {};
-  for (const [k2, v] of Object.entries(fields)) {
-    obj[k2] = fromValue(v);
-  }
-  return obj;
-}
-function fromFirestoreDoc(doc) {
-  const id = doc.name.split("/").pop();
-  return { id, ...doc.fields ? fromFirestoreFields(doc.fields) : {} };
-}
-async function authHeaders() {
-  const idToken = await getIdToken();
-  return { Authorization: `Bearer ${idToken}`, "Content-Type": "application/json" };
-}
-async function getDoc(path4) {
-  const url2 = `${getFirestoreBaseUrl()}/${path4}`;
-  const { data } = await http.get(url2, { headers: await authHeaders() });
-  return fromFirestoreDoc(data);
-}
-async function createDoc(collectionPath, data) {
-  const url2 = `${getFirestoreBaseUrl()}/${collectionPath}`;
-  const resp = await http.post(url2, { fields: toFirestoreFields(data) }, { headers: await authHeaders() });
-  return fromFirestoreDoc(resp.data);
-}
-async function setDoc(docPath, data) {
-  const url2 = `${getFirestoreBaseUrl()}/${docPath}`;
-  const resp = await http.patch(url2, { fields: toFirestoreFields(data) }, { headers: await authHeaders() });
-  return fromFirestoreDoc(resp.data);
-}
-async function updateDoc(path4, data, fieldMask) {
-  const url2 = `${getFirestoreBaseUrl()}/${path4}`;
-  const qs = new URLSearchParams();
-  for (const f of fieldMask) qs.append("updateMask.fieldPaths", f);
-  const resp = await http.patch(`${url2}?${qs}`, { fields: toFirestoreFields(data) }, { headers: await authHeaders() });
-  return fromFirestoreDoc(resp.data);
-}
-async function deleteDoc(path4) {
-  const url2 = `${getFirestoreBaseUrl()}/${path4}`;
-  await http.delete(url2, { headers: await authHeaders() });
-}
-async function runQuery(parentPath, collectionId, opts) {
-  const base = getFirestoreBaseUrl();
-  const url2 = parentPath ? `${base}/${parentPath}:runQuery` : `${base}:runQuery`;
-  const structuredQuery = {
-    from: [{ collectionId }]
-  };
-  if (opts.where && opts.where.length > 0) {
-    if (opts.where.length === 1) {
-      const w = opts.where[0];
-      structuredQuery.where = {
-        fieldFilter: {
-          field: { fieldPath: w.field },
-          op: w.op,
-          value: toValue(w.value)
-        }
-      };
-    } else {
-      structuredQuery.where = {
-        compositeFilter: {
-          op: "AND",
-          filters: opts.where.map((w) => ({
-            fieldFilter: {
-              field: { fieldPath: w.field },
-              op: w.op,
-              value: toValue(w.value)
-            }
-          }))
-        }
-      };
-    }
-  }
-  if (opts.orderBy && opts.orderBy.length > 0) {
-    structuredQuery.orderBy = opts.orderBy.map((o) => ({
-      field: { fieldPath: o.field },
-      direction: o.direction ?? "ASCENDING"
-    }));
-  }
-  if (opts.limit) {
-    structuredQuery.limit = opts.limit;
-  }
-  if (opts.startAfter && opts.startAfter.length > 0) {
-    structuredQuery.startAt = {
-      values: opts.startAfter.map(toValue),
-      before: false
-    };
-  }
-  const headers = await authHeaders();
-  const { data } = await http.post(url2, { structuredQuery }, { headers });
-  return data.filter((r) => r.document).map((r) => fromFirestoreDoc(r.document));
-}
-async function commit(writes) {
-  const baseUrl = getFirestoreBaseUrl();
-  const dbUrl = baseUrl.replace("/documents", "");
-  const url2 = `${dbUrl}/documents:commit`;
-  const toResourceName = (path4) => `${baseUrl}/${path4}`.replace("https://firestore.googleapis.com/v1/", "");
-  const ops = writes.map((w) => {
-    if (w.type === "delete") {
-      return { delete: toResourceName(w.path) };
-    }
-    const op = {};
-    if (w.type === "update" && w.data) {
-      op.update = {
-        name: toResourceName(w.path),
-        fields: toFirestoreFields(w.data)
-      };
-      if (w.fieldMask) {
-        op.updateMask = { fieldPaths: w.fieldMask };
-      }
-    }
-    if (w.type === "transform") {
-      op.update = {
-        name: toResourceName(w.path),
-        fields: {}
-      };
-      op.updateTransforms = (w.transforms ?? []).map((t2) => ({
-        fieldPath: t2.field,
-        increment: toValue(t2.increment)
-      }));
-    }
-    return op;
-  });
-  await http.post(url2, { writes: ops }, { headers: await authHeaders() });
-}
-
-// src/cli/auth/register.ts
 init_tty();
+init_api_client();
 function validateEmail(email) {
   const trimmed = email.trim();
   if (!/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(trimmed)) {
@@ -5806,92 +5527,44 @@ function validatePassword(password) {
   }
   return password;
 }
-function generateUsername(email, uid) {
-  const emailPart = email.split("@")[0].slice(0, 7);
-  const uidPart = uid.slice(0, 4);
-  return `${emailPart}-${uidPart}`;
-}
-function randomAvatar() {
-  const index = Math.floor(Math.random() * 6) + 1;
-  return `assets/avatar${index}-min.png`;
-}
-function buildUserDoc(email, uid, username, avatar, now2 = Date.now()) {
-  return {
-    email,
-    userId: uid,
-    signUpTag: "Numo Sign up",
-    createdAt: now2,
-    username,
-    defaultAvatar: avatar,
-    preference: {
-      tz: Intl.DateTimeFormat().resolvedOptions().timeZone,
-      timezones: [(/* @__PURE__ */ new Date()).getTimezoneOffset()]
-    },
-    fcmToken: [],
-    badges: [],
-    reminderPlatform: "imessage",
-    onboarding: {},
-    postOnboardingV1Status: "not-completed"
-  };
-}
 function classifySignUpError(err) {
   if (err instanceof CliError) return err;
   const resp = err?.response?.data?.error;
+  const kind = resp?.kind ?? "";
   const msg = resp?.message ?? "";
-  if (msg.includes("EMAIL_EXISTS")) {
+  if (kind === "CONFLICT" || msg.includes("already in use")) {
     return Errors.invalidInput(
       "Email already in use",
       "Already have an account? Run: numo login"
     );
   }
-  if (msg.includes("INVALID_EMAIL")) {
+  if (msg.includes("Invalid email")) {
     return Errors.invalidInput("Invalid email address");
   }
-  if (msg.includes("WEAK_PASSWORD")) {
+  if (msg.includes("Password too weak") || msg.includes("min 6")) {
     return Errors.invalidInput("Password is too weak (min 6 characters)");
   }
-  if (msg.includes("OPERATION_NOT_ALLOWED")) {
-    return new CliError(
-      "AUTH_FORBIDDEN" /* AUTH_FORBIDDEN */,
-      "Email registration is disabled",
-      ExitCode.NO_PERM
-    );
-  }
   return classifyError(err);
 }
 async function signUp(email, password) {
-  const fbApiKey = getFirebaseApiKey();
-  if (!fbApiKey) throw Errors.configMissing("NUMO_FIREBASE_API_KEY");
   try {
-    const resp = await http.post(
-      `https://identitytoolkit.googleapis.com/v1/accounts:signUp?key=${fbApiKey}`,
-      { email, password, returnSecureToken: true },
-      { headers: { "Content-Type": "application/json" } }
-    );
+    const resp = await http.post(`${API_BASE}/api/auth/register`, {
+      email,
+      password,
+      tz: Intl.DateTimeFormat().resolvedOptions().timeZone,
+      tzOffset: (/* @__PURE__ */ new Date()).getTimezoneOffset()
+    });
     return {
       refreshToken: resp.data.refreshToken,
-      uid: resp.data.localId,
-      displayName: resp.data.email,
+      uid: resp.data.uid,
+      displayName: resp.data.email ?? email,
       idToken: resp.data.idToken,
-      idTokenExpiry: Date.now() + (parseInt(resp.data.expiresIn) || 3600) * 1e3
+      idTokenExpiry: Date.now() + (resp.data.expiresIn || 3600) * 1e3
     };
   } catch (err) {
     throw classifySignUpError(err);
   }
 }
-async function setupUserProfile(uid, email) {
-  const now2 = Date.now();
-  const username = generateUsername(email, uid);
-  const avatar = randomAvatar();
-  await setDoc(`users/${uid}`, buildUserDoc(email, uid, username, avatar, now2));
-  await commit([
-    {
-      type: "transform",
-      path: "appLinks/users",
-      transforms: [{ field: "count", increment: 1 }]
-    }
-  ]);
-}
 async function register(options = {}) {
   const p = await Promise.resolve().then(() => (init_dist2(), dist_exports));
   p.intro(import_picocolors3.default.bold("Numo \u2014 Register"));
@@ -5919,8 +5592,6 @@ async function register(options = {}) {
       idToken: result.idToken,
       idTokenExpiry: result.idTokenExpiry
     });
-    s.message("Setting up profile...");
-    await setupUserProfile(result.uid, email);
     s.stop(`Registered as ${import_picocolors3.default.green(result.displayName)}`);
     p.outro("Welcome to Numo!");
     printSuccess(result.displayName);
@@ -5933,86 +5604,20 @@ async function register(options = {}) {
   }
 }
 
-// src/cli/lib/streaks.ts
-init_define_ADMIN_UIDS();
-var fs3 = __toESM(require("fs"), 1);
-var path2 = __toESM(require("path"), 1);
-function getStreaksPath() {
-  return path2.join(getConfigDir(), "streaks.json");
-}
-function loadStreaks() {
-  try {
-    const raw = fs3.readFileSync(getStreaksPath(), "utf-8");
-    return JSON.parse(raw);
-  } catch {
-    return [];
-  }
-}
-function saveStreaks(entries) {
-  const dir = path2.dirname(getStreaksPath());
-  if (!fs3.existsSync(dir)) fs3.mkdirSync(dir, { recursive: true });
-  fs3.writeFileSync(getStreaksPath(), JSON.stringify(entries, null, 2), { mode: 384 });
-}
-function clearStreaks() {
-  try {
-    fs3.unlinkSync(getStreaksPath());
-  } catch {
-  }
-}
-function recordDailyStreak(taskId, date) {
-  const entries = loadStreaks();
-  const dateStr = date.slice(0, 10);
-  const existing = entries.find((e) => e.taskId === taskId);
-  if (existing) {
-    const lastDate = new Date(existing.lastCheck);
-    const thisDate = new Date(dateStr);
-    const diffMs = thisDate.getTime() - lastDate.getTime();
-    const diffDays2 = Math.floor(diffMs / 864e5);
-    if (diffDays2 === 1) {
-      existing.checksInRow += 1;
-    } else if (diffDays2 > 1) {
-      existing.checksInRow = 1;
-    }
-    existing.lastCheck = dateStr;
-    saveStreaks(entries);
-    return existing.checksInRow;
-  }
-  entries.push({ taskId, lastCheck: dateStr, checksInRow: 1 });
-  saveStreaks(entries);
-  return 1;
-}
-function revertDailyStreak(taskId) {
-  const entries = loadStreaks();
-  const idx = entries.findIndex((e) => e.taskId === taskId);
-  if (idx !== -1) {
-    entries[idx].checksInRow = Math.max(1, entries[idx].checksInRow - 1);
-    saveStreaks(entries);
-  }
-}
-function removeDailyStreak(taskId) {
-  const entries = loadStreaks().filter((e) => e.taskId !== taskId);
-  saveStreaks(entries);
-}
-function getCompletedTodayCount() {
-  const today2 = (/* @__PURE__ */ new Date()).toISOString().slice(0, 10);
-  return loadStreaks().filter((e) => e.lastCheck === today2).length;
-}
+// src/cli/cli.ts
+init_credentials();
 
 // src/cli/commands/tasks.ts
-init_define_ADMIN_UIDS();
 var import_picocolors8 = __toESM(require_picocolors(), 1);
 
 // src/cli/lib/actions.ts
-init_define_ADMIN_UIDS();
 init_tty();
 
 // src/cli/lib/output.ts
-init_define_ADMIN_UIDS();
 var import_picocolors5 = __toESM(require_picocolors(), 1);
 init_tty();
 
 // src/cli/lib/table.ts
-init_define_ADMIN_UIDS();
 var import_picocolors4 = __toESM(require_picocolors(), 1);
 init_tty();
 var BOX = isUnicodeSupported ? {
@@ -6155,12 +5760,10 @@ ${import_picocolors5.default.red("Error")}: ${structured.message}`);
 }
 
 // src/cli/lib/spinner.ts
-init_define_ADMIN_UIDS();
 var import_picocolors6 = __toESM(require_picocolors(), 1);
 init_tty();
 
 // src/cli/lib/symbols.ts
-init_define_ADMIN_UIDS();
 init_tty();
 var u = isUnicodeSupported;
 var SYM = {
@@ -6348,679 +5951,83 @@ async function runCreate(opts) {
     outputError(err, useJson(opts.global));
   }
 }
-async function runWrite(opts) {
-  try {
-    const payload = await withSpinner(
-      useSpinner(opts.global),
-      opts.spinnerMessage ?? "Updating...",
-      opts.fn
-    );
-    const item = opts.dataKey ? payload[opts.dataKey] : payload;
-    if (useJson(opts.global)) {
-      printJson(selectFields(payload, opts.global.json));
-    } else if (opts.onInteractive) {
-      opts.onInteractive(item);
-    } else {
-      if (opts.successMessage) console.log(opts.successMessage);
-      if (item && Object.keys(item).length > 0) {
-        outputResult(item, false);
-      }
-    }
-  } catch (err) {
-    outputError(err, useJson(opts.global));
-  }
-}
-async function runDelete(opts) {
-  try {
-    await withSpinner(
-      useSpinner(opts.global),
-      opts.spinnerMessage ?? "Deleting...",
-      opts.fn
-    );
-    if (!opts.global.quiet) {
-      console.log(opts.successMessage);
-    }
-  } catch (err) {
-    outputError(err, useJson(opts.global));
-  }
-}
-
-// src/cli/services/tasks.ts
-init_define_ADMIN_UIDS();
-var crypto3 = __toESM(require("crypto"), 1);
-
-// src/shared/index.ts
-init_define_ADMIN_UIDS();
-
-// src/shared/types/task.ts
-init_define_ADMIN_UIDS();
-
-// src/shared/types/post.ts
-init_define_ADMIN_UIDS();
-
-// src/shared/types/comment.ts
-init_define_ADMIN_UIDS();
-
-// src/shared/types/reply.ts
-init_define_ADMIN_UIDS();
-
-// src/shared/constants.ts
-init_define_ADMIN_UIDS();
-var POST_TAGS = [
-  "general",
-  "hack",
-  "story",
-  "meme",
-  "other",
-  "question",
-  "hack-tip",
-  "activity"
-];
-var MAX_TASKS_PER_REQUEST = 200;
-var KARMA_POINTS = {
-  addTask: 2,
-  completeTask: 5,
-  completeSubtask: [2, 5],
-  splitTask: 10,
-  createPost: 10,
-  addComment: 10
-};
-var DIFFICULTY_BONUS = [0, 5, 15, 45];
-var MAX_KARMA_PER_COMPLETE = 100;
-var MAX_POSTS_PER_REQUEST = 50;
-var MAX_COMMENTS_PER_REQUEST = 100;
-var MAX_REPLIES_PER_REQUEST = 100;
-
-// src/cli/lib/validation.ts
-init_define_ADMIN_UIDS();
-init_errors();
-function validateDocId(id, label = "Document ID") {
-  if (!id || typeof id !== "string") {
-    throw new Error(`${label} is required`);
-  }
-  const trimmed = id.trim();
-  if (trimmed.length === 0) {
-    throw new Error(`${label} cannot be empty`);
-  }
-  if (trimmed.length > 1500) {
-    throw new Error(`${label} is too long (max 1500 characters)`);
-  }
-  if (trimmed.includes("/")) {
-    throw new Error(`${label} cannot contain '/'`);
-  }
-  if (trimmed === "." || trimmed === "..") {
-    throw new Error(`${label} cannot be '.' or '..'`);
-  }
-  if (trimmed.startsWith("__") && trimmed.endsWith("__")) {
-    throw new Error(`${label} cannot be a reserved Firestore ID (double underscore wrapped)`);
-  }
-  return trimmed;
-}
-function checkOwnership(doc, uid, action, userField = "userId") {
-  const docUid = doc[userField] ?? doc.authorId;
-  if (docUid && docUid !== uid) {
-    throw new CliError("AUTH_FORBIDDEN" /* AUTH_FORBIDDEN */, `You can only ${action} your own content`, ExitCode.NO_PERM);
-  }
-}
-async function incrementField(path4, field, delta) {
-  await commit([{
-    type: "transform",
-    path: path4,
-    transforms: [{ field, increment: delta }]
-  }]);
-}
-
-// src/cli/lib/karma.ts
-init_define_ADMIN_UIDS();
-function karmaPath(uid, id) {
-  return `users/${uid}/karma/${id}`;
-}
-async function giveKarma(uid, entity, entityId, karma, text) {
-  const id = `${entity}_${entityId}`;
-  const record = { entity, entityId, karma, text, createdAt: Date.now(), userId: uid };
-  await commit([
-    { type: "update", path: karmaPath(uid, id), data: record },
-    { type: "transform", path: `users/${uid}`, transforms: [{ field: "karmaCount", increment: karma }] }
-  ]);
-}
-async function removeKarma(uid, entity, entityId) {
-  const id = `${entity}_${entityId}`;
-  try {
-    const doc = await getDoc(karmaPath(uid, id));
-    const karma = doc.karma ?? 0;
-    const writes = [
-      { type: "delete", path: karmaPath(uid, id) }
-    ];
-    if (karma > 0) {
-      writes.push({
-        type: "transform",
-        path: `users/${uid}`,
-        transforms: [{ field: "karmaCount", increment: -karma }]
-      });
-    }
-    await commit(writes);
-  } catch {
-  }
-}
-
-// src/cli/services/tasks.ts
-var WEEKDAY_MAP = { Sun: 0, Mon: 1, Tue: 2, Wed: 3, Thu: 4, Fri: 5, Sat: 6 };
-function parseDate(s) {
-  const [datePart, timePart] = s.split(" ");
-  const [y2, m, d] = datePart.split("-").map(Number);
-  if (timePart) {
-    const [h2, min] = timePart.split(":").map(Number);
-    return new Date(y2, m - 1, d, h2, min);
-  }
-  return new Date(y2, m - 1, d, 0, 0);
-}
-function formatDate(d) {
-  const yyyy = d.getFullYear();
-  const mm = String(d.getMonth() + 1).padStart(2, "0");
-  const dd = String(d.getDate()).padStart(2, "0");
-  const hh = String(d.getHours()).padStart(2, "0");
-  const min = String(d.getMinutes()).padStart(2, "0");
-  return `${yyyy}-${mm}-${dd} ${hh}:${min}`;
-}
-function endOfDay(dateStr) {
-  return dateStr.slice(0, 10) + " 23:59";
-}
-function todayFormatted() {
-  return formatDate(startOfDay(/* @__PURE__ */ new Date()));
-}
-function startOfDay(d) {
-  return new Date(d.getFullYear(), d.getMonth(), d.getDate(), 0, 0, 0, 0);
-}
-function endOfDayDate(d) {
-  return new Date(d.getFullYear(), d.getMonth(), d.getDate(), 23, 59, 59, 999);
-}
-function addDays(d, n) {
-  const r = new Date(d);
-  r.setDate(r.getDate() + n);
-  return r;
-}
-function addMonths(d, n) {
-  const r = new Date(d);
-  r.setMonth(r.getMonth() + n);
-  return r;
-}
-function diffDays(a, b) {
-  return Math.floor((a.getTime() - b.getTime()) / 864e5);
-}
-function diffWeeks(a, b) {
-  return Math.floor(diffDays(a, b) / 7);
-}
-function diffMonths(a, b) {
-  return (a.getFullYear() - b.getFullYear()) * 12 + (a.getMonth() - b.getMonth());
-}
-function getClosestNextWeekDay(baseDate, weekDays) {
-  const dayNums = new Set(weekDays.map((d) => WEEKDAY_MAP[d]));
-  for (let offset = 1; offset <= 7; offset++) {
-    const candidate = addDays(baseDate, offset);
-    if (dayNums.has(candidate.getDay())) {
-      candidate.setHours(baseDate.getHours(), baseDate.getMinutes(), 0, 0);
-      return candidate;
-    }
-  }
-  return addDays(baseDate, 7);
-}
-function isRepeating(task) {
-  return task.repeat?.type !== "none";
-}
-function getTaskRemindDate(task) {
-  if (!task.dueDate || task.completed) return null;
-  const d = parseDate(task.dueDate);
-  if (d.getHours() === 0 && d.getMinutes() === 0) return null;
-  const utcY = d.getUTCFullYear();
-  const utcM = String(d.getUTCMonth() + 1).padStart(2, "0");
-  const utcD = String(d.getUTCDate()).padStart(2, "0");
-  const utcH = String(d.getUTCHours()).padStart(2, "0");
-  const utcMin = String(d.getUTCMinutes()).padStart(2, "0");
-  return `${utcY}-${utcM}-${utcD} ${utcH}:${utcMin}`;
-}
-function getNextDueDate(task) {
-  if (!task.dueDate) return todayFormatted();
-  const { repeat } = task;
-  const every = repeat.every ?? 1;
-  const now2 = endOfDayDate(/* @__PURE__ */ new Date());
-  let nextDate = parseDate(task.dueDate);
-  const calculatePeriods = (diffFn) => {
-    const diff = diffFn(now2, nextDate);
-    const passedPeriods = Math.max(0, Math.floor(diff / every));
-    return (passedPeriods + 1) * every;
-  };
-  if (repeat.type === "daily") {
-    nextDate = addDays(nextDate, calculatePeriods(diffDays));
-  } else if (repeat.type === "weekly") {
-    if (repeat.weekDays && repeat.weekDays.length > 0) {
-      const closestNext = getClosestNextWeekDay(parseDate(task.dueDate), repeat.weekDays);
-      if (now2 < closestNext) {
-        nextDate = closestNext;
-      } else {
-        const periods = calculatePeriods(diffWeeks);
-        const advanced = addDays(nextDate, periods * 7);
-        const dayDiff = (closestNext.getDay() - advanced.getDay() + 7) % 7;
-        nextDate = addDays(advanced, dayDiff);
-        nextDate.setHours(parseDate(task.dueDate).getHours(), parseDate(task.dueDate).getMinutes(), 0, 0);
-      }
-    } else {
-      nextDate = addDays(nextDate, calculatePeriods(diffWeeks) * 7);
-    }
-  } else if (repeat.type === "monthly") {
-    nextDate = addMonths(nextDate, calculatePeriods(diffMonths));
-  }
-  return formatDate(nextDate);
-}
-function taskPath(uid, id) {
-  return `users/${uid}/tasks/${id}`;
-}
-function taskHistoryPath(uid, id) {
-  return `users/${uid}/tasksHistory/${id}`;
-}
-function orderingPath(uid) {
-  return `users/${uid}/order/tasks`;
-}
-function progressPath(uid, date) {
-  return `users/${uid}/progress/${date}`;
-}
-function routineStreakPath(uid, taskId) {
-  return `users/${uid}/routineStreaks/${taskId}`;
-}
-function archivePath(uid, taskId) {
-  return `archive/${uid}/tasks/${taskId}`;
-}
-function archiveCounterPath(uid) {
-  return `archive/${uid}`;
-}
-function activityTotalsPath(uid) {
-  return `users/${uid}/activity/totals`;
-}
-function reversedTimestamp(len) {
-  const maxTs = 9999999999999;
-  const reversed = String(maxTs - Date.now());
-  return reversed.slice(0, len);
-}
-function randomAlphanumeric(len) {
-  const chars = "abcdefghijklmnopqrstuvwxyz0123456789";
-  const limit = 252;
-  let result = "";
-  while (result.length < len) {
-    const bytes = crypto3.randomBytes(len - result.length);
-    for (let i = 0; i < bytes.length && result.length < len; i++) {
-      if (bytes[i] < limit) result += chars[bytes[i] % chars.length];
-    }
-  }
-  return result;
-}
-function generateTaskId(task) {
-  const repeatType = task.repeat?.type === "none" ? "simple" : task.repeat?.type;
-  const textSlug = String(task.text ?? "").slice(0, 8).toLowerCase().replace(/[^a-z0-9]/g, "-");
-  const uniquePart = reversedTimestamp(8) + randomAlphanumeric(7);
-  if (!task.dueDate) return `${repeatType}_${textSlug}_${uniquePart}`;
-  const dateSlug = String(task.dueDate).replace(/[^a-z0-9]/g, "-");
-  return `${repeatType}_${textSlug}_${dateSlug}_${uniquePart}`;
-}
-function logSideEffectResults(label, results) {
-  for (const r of results) {
-    if (r.status === "rejected") {
-      const msg = r.reason instanceof Error ? r.reason.message : String(r.reason);
-      process.stderr.write(`[warn] ${label}: ${msg}
-`);
-    }
-  }
-}
-async function addToOrdering(uid, taskId, position = "end") {
-  let ordering = [];
-  try {
-    const doc = await getDoc(orderingPath(uid));
-    if (Array.isArray(doc.tasksListOrdering)) ordering = doc.tasksListOrdering;
-  } catch {
-  }
-  if (!ordering.includes(taskId)) {
-    if (position === "start") ordering.unshift(taskId);
-    else ordering.push(taskId);
-  }
-  await updateDoc(orderingPath(uid), { tasksListOrdering: ordering }, ["tasksListOrdering"]);
-}
-async function removeFromOrdering(uid, taskId) {
-  try {
-    const doc = await getDoc(orderingPath(uid));
-    if (Array.isArray(doc.tasksListOrdering)) {
-      const ordering = doc.tasksListOrdering.filter((id) => id !== taskId);
-      await updateDoc(orderingPath(uid), { tasksListOrdering: ordering }, ["tasksListOrdering"]);
-    }
-  } catch {
-  }
-}
-async function addToProgress(uid, taskId, date) {
-  const dateKey = date.slice(0, 10);
-  let tasks = [];
-  try {
-    const doc = await getDoc(progressPath(uid, dateKey));
-    if (Array.isArray(doc.tasks)) tasks = doc.tasks;
-  } catch {
-  }
-  if (!tasks.includes(taskId)) tasks.push(taskId);
-  await setDoc(progressPath(uid, dateKey), { tasks });
-}
-async function removeFromProgress(uid, taskId, date) {
-  const dateKey = date.slice(0, 10);
-  try {
-    const doc = await getDoc(progressPath(uid, dateKey));
-    if (Array.isArray(doc.tasks)) {
-      const tasks = doc.tasks.filter((id) => id !== taskId);
-      await setDoc(progressPath(uid, dateKey), { tasks });
-    }
-  } catch {
-  }
-}
-async function recordRoutineStreak(uid, taskId) {
-  let streak = {};
-  try {
-    streak = await getDoc(routineStreakPath(uid, taskId));
-  } catch {
-  }
-  const newStreak = (streak.streak ?? 0) + 1;
-  const longestStreak = Math.max(streak.longestStreak ?? 0, newStreak);
-  await setDoc(routineStreakPath(uid, taskId), {
-    taskId,
-    userId: uid,
-    streak: newStreak,
-    longestStreak,
-    lastCompletedAt: Date.now()
-  });
-}
-async function revertRoutineStreak(uid, taskId) {
+async function runWrite(opts) {
   try {
-    const doc = await getDoc(routineStreakPath(uid, taskId));
-    const newStreak = Math.max(0, (doc.streak ?? 0) - 1);
-    await setDoc(routineStreakPath(uid, taskId), {
-      ...doc,
-      streak: newStreak,
-      lastCompletedAt: newStreak > 0 ? doc.lastCompletedAt : null
-    });
-  } catch {
+    const payload = await withSpinner(
+      useSpinner(opts.global),
+      opts.spinnerMessage ?? "Updating...",
+      opts.fn
+    );
+    const item = opts.dataKey ? payload[opts.dataKey] : payload;
+    if (useJson(opts.global)) {
+      printJson(selectFields(payload, opts.global.json));
+    } else if (opts.onInteractive) {
+      opts.onInteractive(payload);
+    } else {
+      if (opts.successMessage) console.log(opts.successMessage);
+      if (item && Object.keys(item).length > 0) {
+        outputResult(item, false);
+      }
+    }
+  } catch (err) {
+    outputError(err, useJson(opts.global));
   }
 }
-async function deleteRoutineStreak(uid, taskId) {
+async function runDelete(opts) {
   try {
-    await deleteDoc(routineStreakPath(uid, taskId));
-  } catch {
+    await withSpinner(
+      useSpinner(opts.global),
+      opts.spinnerMessage ?? "Deleting...",
+      opts.fn
+    );
+    if (!opts.global.quiet) {
+      console.log(opts.successMessage);
+    }
+  } catch (err) {
+    outputError(err, useJson(opts.global));
   }
 }
-function computeCompleteKarma(task, checksInRow) {
-  const difficultyIdx = task.difficulty ?? 0;
-  const bonus = DIFFICULTY_BONUS[difficultyIdx] ?? 0;
-  const raw = (KARMA_POINTS.completeTask + bonus) * checksInRow;
-  return Math.min(raw, MAX_KARMA_PER_COMPLETE);
+
+// src/cli/lib/uid.ts
+init_credentials();
+init_errors();
+function requireUid() {
+  const creds = loadCredentials();
+  if (!creds) throw Errors.authRequired();
+  return creds.uid;
 }
+
+// src/cli/services/tasks.ts
+init_api_client();
 async function listTasks(uid, opts) {
-  const [activeTasks, historyTasks] = await Promise.all([
-    runQuery(`users/${uid}`, "tasks", { where: [], limit: MAX_TASKS_PER_REQUEST }),
-    opts.backlog ? Promise.resolve([]) : runQuery(`users/${uid}`, "tasksHistory", { where: [], limit: MAX_TASKS_PER_REQUEST })
-  ]);
-  let pending = activeTasks;
-  let completed = historyTasks;
-  if (opts.backlog) {
-    pending = pending.filter((t2) => t2.backlog === true);
-  } else if (opts.date) {
-    const today2 = (/* @__PURE__ */ new Date()).toISOString().slice(0, 10);
-    const isToday = opts.date === today2;
-    if (isToday) {
-      const cutoff = endOfDay(opts.date);
-      pending = pending.filter((t2) => typeof t2.dueDate === "string" && t2.dueDate <= cutoff);
-    } else {
-      pending = pending.filter((t2) => typeof t2.dueDate === "string" && t2.dueDate.slice(0, 10) === opts.date);
-    }
-    completed = completed.filter((t2) => {
-      if (typeof t2.dueDate !== "string") return false;
-      return t2.dueDate.slice(0, 10) === opts.date;
-    });
-  }
-  const applyTag = (items) => opts.tag ? items.filter((t2) => Array.isArray(t2.tags) && t2.tags.includes(opts.tag)) : items;
-  completed.forEach((t2) => {
-    t2.completed = true;
+  return api.get("/api/tasks", {
+    date: opts.date,
+    backlog: opts.backlog ? "true" : void 0,
+    tag: opts.tag
   });
-  const filteredPending = applyTag(pending);
-  const filteredCompleted = applyTag(completed);
-  const allTasks = [...filteredPending, ...filteredCompleted];
-  return { tasks: allTasks, count: allTasks.length, pendingCount: filteredPending.length, completedCount: filteredCompleted.length };
 }
 async function getTask(uid, id) {
-  validateDocId(id, "Task ID");
-  return getDoc(taskPath(uid, id));
+  return api.get(`/api/tasks/${encodeURIComponent(id)}`);
 }
 async function createTask(uid, body) {
-  const now2 = Date.now();
-  const dueDate = body.dueDate ?? null;
-  const taskData = {
-    text: body.text,
-    userId: uid,
-    isPublic: body.isPublic ?? true,
-    completed: false,
-    completedAt: null,
-    createdAt: now2,
-    dueDate,
-    remindDate: null,
-    tags: Array.isArray(body.tags) ? body.tags : [],
-    assets: [],
-    note: body.note ?? "",
-    priority: typeof body.priority === "number" ? body.priority : 0,
-    difficulty: body.difficulty ?? null,
-    duration: typeof body.duration === "number" ? body.duration : 10,
-    backlog: dueDate == null,
-    parentTaskId: null,
-    completions: 0,
-    repeat: body.repeat ?? { type: "none", every: null, end: null, endDate: null, endAfter: null, monthDays: null, weekDays: null },
-    subtasks: Array.isArray(body.subtasks) ? body.subtasks.map((s) => ({ id: crypto3.randomUUID(), text: s.text, completed: false })) : [],
-    withTime: dueDate != null && !/\b00:00$/.test(dueDate),
-    listPosition: null,
-    source: "cli"
-  };
-  taskData.remindDate = getTaskRemindDate(taskData);
-  const taskId = generateTaskId(taskData);
-  const doc = await setDoc(taskPath(uid, taskId), taskData);
-  const createResults = await Promise.allSettled([
-    giveKarma(uid, "addTask", taskId, KARMA_POINTS.addTask, String(taskData.text)),
-    addToOrdering(uid, taskId, "end"),
-    incrementField(activityTotalsPath(uid), "tasks.active", 1)
-  ]);
-  logSideEffectResults("createTask", createResults);
-  return { task: doc, karma: KARMA_POINTS.addTask };
+  return api.post("/api/tasks", body);
 }
 async function updateTask(uid, id, body) {
-  validateDocId(id, "Task ID");
-  const allowed = ["text", "isPublic", "dueDate", "tags", "note", "priority", "difficulty", "duration", "repeat", "subtasks"];
-  const update = {};
-  const fieldMask = [];
-  for (const key of allowed) {
-    if (key in body) {
-      update[key] = body[key];
-      fieldMask.push(key);
-    }
-  }
-  if ("dueDate" in update) {
-    const newDueDate = update.dueDate;
-    update.backlog = newDueDate == null;
-    if (!fieldMask.includes("backlog")) fieldMask.push("backlog");
-  }
-  await updateDoc(taskPath(uid, id), update, fieldMask);
-  if ("dueDate" in body) {
-    await addToOrdering(uid, id, "end");
-  }
-  const updated = await getDoc(taskPath(uid, id));
-  const recalculatedRemindDate = getTaskRemindDate(updated);
-  if (updated.remindDate !== recalculatedRemindDate) {
-    await updateDoc(taskPath(uid, id), { remindDate: recalculatedRemindDate }, ["remindDate"]);
-    const final = await getDoc(taskPath(uid, id));
-    return { task: final };
-  }
-  return { task: updated };
+  return api.patch(`/api/tasks/${encodeURIComponent(id)}`, body);
 }
 async function deleteTask(uid, id) {
-  validateDocId(id, "Task ID");
-  let taskData = {};
-  try {
-    taskData = await getDoc(taskPath(uid, id));
-  } catch {
-  }
-  const hasData = Object.keys(taskData).length > 0;
-  const writes = [
-    { type: "delete", path: taskPath(uid, id) }
-  ];
-  if (hasData) {
-    writes.push({
-      type: "update",
-      path: archivePath(uid, id),
-      data: { ...taskData, archived: true, archivedAt: Date.now() }
-    });
-    writes.push({
-      type: "transform",
-      path: archiveCounterPath(uid),
-      transforms: [{ field: "archivedTasksCount", increment: 1 }]
-    });
-  }
-  await commit(writes);
-  try {
-    const historyDocs = await runQuery(`users/${uid}`, "tasksHistory", {
-      where: [{ field: "parentTaskId", op: "EQUAL", value: id }],
-      limit: MAX_TASKS_PER_REQUEST
-    });
-    const historyResults = await Promise.allSettled(historyDocs.map((h2) => deleteDoc(taskHistoryPath(uid, h2.id))));
-    logSideEffectResults("deleteTask.history", historyResults);
-  } catch (err) {
-    process.stderr.write(`[warn] deleteTask.history: ${err instanceof Error ? err.message : String(err)}
-`);
-  }
-  const deleteResults = await Promise.allSettled([
-    removeFromOrdering(uid, id),
-    deleteRoutineStreak(uid, id),
-    incrementField(activityTotalsPath(uid), "tasks.active", -1)
-  ]);
-  logSideEffectResults("deleteTask", deleteResults);
-  removeDailyStreak(id);
-  return { deleted: true, taskText: String(taskData.text ?? ""), archived: hasData };
+  return api.del(`/api/tasks/${encodeURIComponent(id)}`);
 }
 async function completeTask(uid, id, date) {
-  validateDocId(id, "Task ID");
-  const task = await getDoc(taskPath(uid, id));
-  const completedAt = date ? new Date(date).getTime() : Date.now();
-  const repeating = isRepeating(task);
-  const historyId = repeating ? `${id}-${completedAt}` : id;
-  const historyData = {
-    ...task,
-    id: historyId,
-    completedAt,
-    completed: true,
-    parentTaskId: id,
-    isHistoryTask: true,
-    completions: (task.completions ?? 0) + 1,
-    remindDate: null
-  };
-  delete historyData.id;
-  const writes = [];
-  if (repeating) {
-    const nextDueDate = getNextDueDate(task);
-    const resetSubtasks = (task.subtasks ?? []).map((s) => ({ ...s, completed: false }));
-    const updatedData = {
-      dueDate: nextDueDate,
-      completions: (task.completions ?? 0) + 1,
-      completedAt,
-      subtasks: resetSubtasks
-    };
-    writes.push({
-      type: "update",
-      path: taskPath(uid, id),
-      data: updatedData,
-      fieldMask: Object.keys(updatedData)
-    });
-  } else {
-    writes.push({ type: "delete", path: taskPath(uid, id) });
-  }
-  writes.push({
-    type: "update",
-    path: taskHistoryPath(uid, historyId),
-    data: historyData
-  });
-  await commit(writes);
-  if (repeating) {
-    try {
-      const afterUpdate = await getDoc(taskPath(uid, id));
-      await updateDoc(taskPath(uid, id), { remindDate: getTaskRemindDate(afterUpdate) }, ["remindDate"]);
-    } catch {
-    }
-  }
-  const completeDateStr = date ?? formatDate(/* @__PURE__ */ new Date());
-  const entityId = repeating ? `${id}_${completeDateStr.slice(0, 10)}` : id;
-  const checksInRow = recordDailyStreak(id, completeDateStr);
-  const karmaPoints = computeCompleteKarma(task, checksInRow);
-  const sideEffects = [
-    giveKarma(uid, "completeTask", entityId, karmaPoints, task.text),
-    addToProgress(uid, id, completeDateStr),
-    incrementField(activityTotalsPath(uid), "tasks.completed", 1)
-  ];
-  if (repeating) {
-    sideEffects.push(recordRoutineStreak(uid, id));
-  } else {
-    sideEffects.push(removeFromOrdering(uid, id));
-    sideEffects.push(incrementField(activityTotalsPath(uid), "tasks.active", -1));
-  }
-  const completeResults = await Promise.allSettled(sideEffects);
-  logSideEffectResults("completeTask", completeResults);
-  return { completed: true, taskHistory: historyData, karma: karmaPoints, checksInRow, taskText: task.text };
+  return api.post(`/api/tasks/${encodeURIComponent(id)}/complete`, date ? { date } : void 0);
 }
 async function uncompleteTask(uid, taskHistoryId) {
-  validateDocId(taskHistoryId, "Task history ID");
-  const history = await getDoc(taskHistoryPath(uid, taskHistoryId));
-  const parentTaskId = history.parentTaskId;
-  if (!parentTaskId) throw new Error("Not a history record");
-  const repeating = isRepeating(history);
-  const restoredTask = {
-    ...history,
-    completed: false,
-    completedAt: null,
-    completions: Math.max(0, (history.completions ?? 0) - 1)
-  };
-  delete restoredTask.isHistoryTask;
-  delete restoredTask.id;
-  restoredTask.parentTaskId = null;
-  if (repeating) {
-    restoredTask.dueDate = history.dueDate;
-  }
-  const writes = [
-    { type: "update", path: taskPath(uid, parentTaskId), data: restoredTask },
-    { type: "delete", path: taskHistoryPath(uid, taskHistoryId) }
-  ];
-  await commit(writes);
-  try {
-    const updated = await getDoc(taskPath(uid, parentTaskId));
-    await updateDoc(taskPath(uid, parentTaskId), { remindDate: getTaskRemindDate(updated) }, ["remindDate"]);
-  } catch {
-  }
-  const completedAtDate = history.completedAt ? formatDate(new Date(history.completedAt)) : history.dueDate ?? formatDate(/* @__PURE__ */ new Date());
-  const entityId = repeating ? `${parentTaskId}_${completedAtDate.slice(0, 10)}` : parentTaskId;
-  const sideEffects = [
-    removeKarma(uid, "completeTask", entityId),
-    removeFromProgress(uid, parentTaskId, completedAtDate),
-    incrementField(activityTotalsPath(uid), "tasks.completed", -1)
-  ];
-  revertDailyStreak(parentTaskId);
-  if (repeating) {
-    sideEffects.push(revertRoutineStreak(uid, parentTaskId));
-  } else {
-    sideEffects.push(addToOrdering(uid, parentTaskId, "end"));
-    sideEffects.push(incrementField(activityTotalsPath(uid), "tasks.active", 1));
-  }
-  const uncompleteResults = await Promise.allSettled(sideEffects);
-  logSideEffectResults("uncompleteTask", uncompleteResults);
-  const final = await getDoc(taskPath(uid, parentTaskId));
-  return { uncompleted: true, task: final, karmaReverted: true };
+  return api.post(`/api/tasks/${encodeURIComponent(taskHistoryId)}/uncomplete`);
 }
 
 // src/cli/lib/format.ts
-init_define_ADMIN_UIDS();
 var import_picocolors7 = __toESM(require_picocolors(), 1);
-function formatDate2(ts) {
+function formatDate(ts) {
   if (ts == null) return "";
   const d = typeof ts === "number" ? new Date(ts) : new Date(ts);
   if (isNaN(d.getTime())) return String(ts);
@@ -7043,7 +6050,7 @@ function formatRelativeDate(ts) {
   if (hours < 24) return `${hours}h ago`;
   const days = Math.floor(hours / 24);
   if (days < 30) return `${days}d ago`;
-  return formatDate2(ts);
+  return formatDate(ts);
 }
 function formatTags(tags) {
   if (!Array.isArray(tags) || tags.length === 0) return "";
@@ -7121,26 +6128,7 @@ init_prompts();
 init_tty();
 init_errors();
 
-// src/cli/lib/parse-date.ts
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/index.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/locales/en/index.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/chrono.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/results.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/utils/dates.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/types.js
-init_define_ADMIN_UIDS();
 var Meridiem;
 (function(Meridiem2) {
   Meridiem2[Meridiem2["AM"] = 0] = "AM";
@@ -7199,7 +6187,6 @@ function implySimilarTime(component, target) {
 }
 
 // node_modules/chrono-node/dist/esm/timezone.js
-init_define_ADMIN_UIDS();
 var TIMEZONE_ABBR_MAP = {
   ACDT: 630,
   ACST: 570,
@@ -7469,7 +6456,6 @@ function toTimezoneOffset(timezoneInput, date, timezoneOverrides = {}) {
 }
 
 // node_modules/chrono-node/dist/esm/calculation/duration.js
-init_define_ADMIN_UIDS();
 var EmptyDuration = {
   day: 0,
   second: 0,
@@ -7870,17 +6856,7 @@ var ParsingResult = class _ParsingResult {
   }
 };
 
-// node_modules/chrono-node/dist/esm/locales/en/configuration.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/locales/en/parsers/ENTimeUnitWithinFormatParser.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/locales/en/constants.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/utils/pattern.js
-init_define_ADMIN_UIDS();
 function repeatedTimeunitPattern(prefix, singleTimeunitPattern, connectorPattern = "\\s{0,5},?\\s{0,5}") {
   const singleTimeunitPatternNoCapture = singleTimeunitPattern.replace(/\((?!\?)/g, "(?:");
   return `${prefix}${singleTimeunitPatternNoCapture}(?:${connectorPattern}${singleTimeunitPatternNoCapture}){0,10}`;
@@ -7902,7 +6878,6 @@ function matchAnyPattern(dictionary) {
 }
 
 // node_modules/chrono-node/dist/esm/calculation/years.js
-init_define_ADMIN_UIDS();
 function findMostLikelyADYear(yearNumber) {
   if (yearNumber < 100) {
     if (yearNumber > 50) {
@@ -8180,7 +7155,6 @@ function collectDateTimeFragment(fragments, match) {
 }
 
 // node_modules/chrono-node/dist/esm/common/parsers/AbstractParserWithWordBoundary.js
-init_define_ADMIN_UIDS();
 var AbstractParserWithWordBoundaryChecking = class {
   innerPatternHasChange(context, currentInnerPattern) {
     return this.innerPattern(context) !== currentInnerPattern;
@@ -8240,7 +7214,6 @@ var ENTimeUnitWithinFormatParser = class extends AbstractParserWithWordBoundaryC
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENMonthNameLittleEndianParser.js
-init_define_ADMIN_UIDS();
 var PATTERN = new RegExp(`(?:on\\s{0,3})?(${ORDINAL_NUMBER_PATTERN})(?:\\s{0,3}(?:to|\\-|\\\u2013|until|through|till)?\\s{0,3}(${ORDINAL_NUMBER_PATTERN}))?(?:-|/|\\s{0,3}(?:of)?\\s{0,3})(${matchAnyPattern(MONTH_DICTIONARY)})(?:(?:-|/|,?\\s{0,3})(${YEAR_PATTERN}(?!\\w)))?(?=\\W|$)`, "i");
 var DATE_GROUP = 1;
 var DATE_TO_GROUP = 2;
@@ -8277,7 +7250,6 @@ var ENMonthNameLittleEndianParser = class extends AbstractParserWithWordBoundary
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENMonthNameMiddleEndianParser.js
-init_define_ADMIN_UIDS();
 var PATTERN2 = new RegExp(`(${matchAnyPattern(MONTH_DICTIONARY)})(?:-|/|\\s*,?\\s*)(${ORDINAL_NUMBER_PATTERN})(?!\\s*(?:am|pm))\\s*(?:(?:to|\\-)\\s*(${ORDINAL_NUMBER_PATTERN})\\s*)?(?:(?:-|/|\\s*,\\s*|\\s+)(${YEAR_PATTERN}))?(?=\\W|$)(?!\\:\\d)`, "i");
 var MONTH_NAME_GROUP2 = 1;
 var DATE_GROUP2 = 2;
@@ -8327,7 +7299,6 @@ var ENMonthNameMiddleEndianParser = class extends AbstractParserWithWordBoundary
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENMonthNameParser.js
-init_define_ADMIN_UIDS();
 var PATTERN3 = new RegExp(`((?:in)\\s*)?(${matchAnyPattern(MONTH_DICTIONARY)})\\s*(?:(?:,|-|of)?\\s*(${YEAR_PATTERN})?)?(?=[^\\s\\w]|\\s+[^0-9]|\\s+$|$)`, "i");
 var PREFIX_GROUP = 1;
 var MONTH_NAME_GROUP3 = 2;
@@ -8358,7 +7329,6 @@ var ENMonthNameParser = class extends AbstractParserWithWordBoundaryChecking {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENYearMonthDayParser.js
-init_define_ADMIN_UIDS();
 var PATTERN4 = new RegExp(`([0-9]{4})[-\\.\\/\\s](?:(${matchAnyPattern(MONTH_DICTIONARY)})|([0-9]{1,2}))[-\\.\\/\\s]([0-9]{1,2})(?=\\W|$)`, "i");
 var YEAR_NUMBER_GROUP = 1;
 var MONTH_NAME_GROUP4 = 2;
@@ -8397,7 +7367,6 @@ var ENYearMonthDayParser = class extends AbstractParserWithWordBoundaryChecking
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENSlashMonthFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN5 = new RegExp("([0-9]|0[1-9]|1[012])/([0-9]{4})", "i");
 var MONTH_GROUP = 1;
 var YEAR_GROUP4 = 2;
@@ -8412,11 +7381,7 @@ var ENSlashMonthFormatParser = class extends AbstractParserWithWordBoundaryCheck
   }
 };
 
-// node_modules/chrono-node/dist/esm/locales/en/parsers/ENTimeExpressionParser.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/common/parsers/AbstractTimeExpressionParser.js
-init_define_ADMIN_UIDS();
 function primaryTimePattern(leftBoundary, primaryPrefix, primarySuffix, flags) {
   return new RegExp(`${leftBoundary}${primaryPrefix}(\\d{1,4})(?:(?:\\.|:|\uFF1A)(\\d{1,2})(?:(?::|\uFF1A)(\\d{2})(?:\\.(\\d{1,6}))?)?)?(?:\\s*(a\\.m\\.|p\\.m\\.|am?|pm?))?${primarySuffix}`, flags);
 }
@@ -8772,7 +7737,6 @@ var ENTimeExpressionParser = class extends AbstractTimeExpressionParser {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENTimeUnitAgoFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN6 = new RegExp(`(${TIME_UNITS_PATTERN})\\s{0,5}(?:ago|before|earlier)(?=\\W|$)`, "i");
 var STRICT_PATTERN = new RegExp(`(${TIME_UNITS_NO_ABBR_PATTERN})\\s{0,5}(?:ago|before|earlier)(?=\\W|$)`, "i");
 var ENTimeUnitAgoFormatParser = class extends AbstractParserWithWordBoundaryChecking {
@@ -8794,7 +7758,6 @@ var ENTimeUnitAgoFormatParser = class extends AbstractParserWithWordBoundaryChec
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENTimeUnitLaterFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN7 = new RegExp(`(${TIME_UNITS_PATTERN})\\s{0,5}(?:later|after|from now|henceforth|forward|out)(?=(?:\\W|$))`, "i");
 var STRICT_PATTERN2 = new RegExp(`(${TIME_UNITS_NO_ABBR_PATTERN})\\s{0,5}(later|after|from now)(?=\\W|$)`, "i");
 var GROUP_NUM_TIMEUNITS = 1;
@@ -8816,14 +7779,7 @@ var ENTimeUnitLaterFormatParser = class extends AbstractParserWithWordBoundaryCh
   }
 };
 
-// node_modules/chrono-node/dist/esm/locales/en/refiners/ENMergeDateRangeRefiner.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/common/refiners/AbstractMergeDateRangeRefiner.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/common/abstractRefiners.js
-init_define_ADMIN_UIDS();
 var Filter = class {
   refine(context, results) {
     return results.filter((r) => this.isValid(context, r));
@@ -8921,14 +7877,7 @@ var ENMergeDateRangeRefiner = class extends AbstractMergeDateRangeRefiner {
   }
 };
 
-// node_modules/chrono-node/dist/esm/locales/en/refiners/ENMergeDateTimeRefiner.js
-init_define_ADMIN_UIDS();
-
-// node_modules/chrono-node/dist/esm/common/refiners/AbstractMergeDateTimeRefiner.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/calculation/mergingCalculation.js
-init_define_ADMIN_UIDS();
 function mergeDateTimeResult(dateResult, timeResult) {
   const result = dateResult.clone();
   const beginDate = dateResult.start;
@@ -9013,11 +7962,7 @@ var ENMergeDateTimeRefiner = class extends AbstractMergeDateTimeRefiner {
   }
 };
 
-// node_modules/chrono-node/dist/esm/configurations.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/common/refiners/ExtractTimezoneAbbrRefiner.js
-init_define_ADMIN_UIDS();
 var TIMEZONE_NAME_PATTERN = new RegExp("^\\s*,?\\s*\\(?([A-Z]{2,4})\\)?(?=\\W|$)", "i");
 var ExtractTimezoneAbbrRefiner = class {
   timezoneOverrides;
@@ -9069,7 +8014,6 @@ var ExtractTimezoneAbbrRefiner = class {
 };
 
 // node_modules/chrono-node/dist/esm/common/refiners/ExtractTimezoneOffsetRefiner.js
-init_define_ADMIN_UIDS();
 var TIMEZONE_OFFSET_PATTERN = new RegExp("^\\s*(?:\\(?(?:GMT|UTC)\\s?)?([+-])(\\d{1,2})(?::?(\\d{2}))?\\)?", "i");
 var TIMEZONE_OFFSET_SIGN_GROUP = 1;
 var TIMEZONE_OFFSET_HOUR_OFFSET_GROUP = 2;
@@ -9108,7 +8052,6 @@ var ExtractTimezoneOffsetRefiner = class {
 };
 
 // node_modules/chrono-node/dist/esm/common/refiners/OverlapRemovalRefiner.js
-init_define_ADMIN_UIDS();
 var OverlapRemovalRefiner = class {
   refine(context, results) {
     if (results.length < 2) {
@@ -9145,7 +8088,6 @@ var OverlapRemovalRefiner = class {
 };
 
 // node_modules/chrono-node/dist/esm/common/refiners/ForwardDateRefiner.js
-init_define_ADMIN_UIDS();
 var ForwardDateRefiner = class {
   refine(context, results) {
     if (!context.option.forwardDate) {
@@ -9211,7 +8153,6 @@ var ForwardDateRefiner = class {
 };
 
 // node_modules/chrono-node/dist/esm/common/refiners/UnlikelyFormatFilter.js
-init_define_ADMIN_UIDS();
 var UnlikelyFormatFilter = class extends Filter {
   strictMode;
   constructor(strictMode) {
@@ -9254,7 +8195,6 @@ var UnlikelyFormatFilter = class extends Filter {
 };
 
 // node_modules/chrono-node/dist/esm/common/parsers/ISOFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN8 = new RegExp("([0-9]{4})\\-([0-9]{1,2})\\-([0-9]{1,2})(?:T([0-9]{1,2}):([0-9]{1,2})(?::([0-9]{1,2})(?:\\.(\\d{1,4}))?)?(Z|([+-]\\d{2}):?(\\d{2})?)?)?(?=\\W|$)", "i");
 var YEAR_NUMBER_GROUP2 = 1;
 var MONTH_NUMBER_GROUP2 = 2;
@@ -9308,7 +8248,6 @@ var ISOFormatParser = class extends AbstractParserWithWordBoundaryChecking {
 };
 
 // node_modules/chrono-node/dist/esm/common/refiners/MergeWeekdayComponentRefiner.js
-init_define_ADMIN_UIDS();
 var MergeWeekdayComponentRefiner = class extends MergingRefiner {
   mergeResults(textBetween, currentResult, nextResult) {
     const newResult = nextResult.clone();
@@ -9339,11 +8278,7 @@ function includeCommonConfiguration(configuration2, strictMode = false) {
   return configuration2;
 }
 
-// node_modules/chrono-node/dist/esm/locales/en/parsers/ENCasualDateParser.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/common/casualReferences.js
-init_define_ADMIN_UIDS();
 function now(reference) {
   const targetDate = reference.getDateWithAdjustedTimezone();
   const component = new ParsingComponents(reference, {});
@@ -9489,7 +8424,6 @@ var ENCasualDateParser = class extends AbstractParserWithWordBoundaryChecking {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENCasualTimeParser.js
-init_define_ADMIN_UIDS();
 var PATTERN10 = /(?:this)?\s{0,3}(morning|afternoon|evening|night|midnight|midday|noon)(?=\W|$)/i;
 var ENCasualTimeParser = class extends AbstractParserWithWordBoundaryChecking {
   innerPattern() {
@@ -9523,11 +8457,7 @@ var ENCasualTimeParser = class extends AbstractParserWithWordBoundaryChecking {
   }
 };
 
-// node_modules/chrono-node/dist/esm/locales/en/parsers/ENWeekdayParser.js
-init_define_ADMIN_UIDS();
-
 // node_modules/chrono-node/dist/esm/calculation/weekdays.js
-init_define_ADMIN_UIDS();
 function createParsingComponentsAtWeekday(reference, weekday, modifier) {
   const refDate = reference.getDateWithAdjustedTimezone();
   const daysToWeekday = getDaysToWeekday(refDate, weekday, modifier);
@@ -9630,7 +8560,6 @@ var ENWeekdayParser = class extends AbstractParserWithWordBoundaryChecking {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENRelativeDateFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN12 = new RegExp(`(this|last|past|next|after\\s*this)\\s*(${matchAnyPattern(TIME_UNIT_DICTIONARY)})(?=\\s*)(?=\\W|$)`, "i");
 var MODIFIER_WORD_GROUP = 1;
 var RELATIVE_WORD_GROUP = 2;
@@ -9676,7 +8605,6 @@ var ENRelativeDateFormatParser = class extends AbstractParserWithWordBoundaryChe
 };
 
 // node_modules/chrono-node/dist/esm/common/parsers/SlashDateFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN13 = new RegExp("([^\\d]|^)([0-3]{0,1}[0-9]{1})[\\/\\.\\-]([0-3]{0,1}[0-9]{1})(?:[\\/\\.\\-]([0-9]{4}|[0-9]{2}))?(\\W|$)", "i");
 var OPENING_GROUP = 1;
 var ENDING_GROUP = 5;
@@ -9745,7 +8673,6 @@ var SlashDateFormatParser = class {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/parsers/ENTimeUnitCasualRelativeFormatParser.js
-init_define_ADMIN_UIDS();
 var PATTERN14 = new RegExp(`(this|last|past|next|after|\\+|-)\\s*(${TIME_UNITS_PATTERN})(?=\\W|$)`, "i");
 var PATTERN_NO_ABBR = new RegExp(`(this|last|past|next|after|\\+|-)\\s*(${TIME_UNITS_NO_ABBR_PATTERN})(?=\\W|$)`, "i");
 var ENTimeUnitCasualRelativeFormatParser = class extends AbstractParserWithWordBoundaryChecking {
@@ -9775,7 +8702,6 @@ var ENTimeUnitCasualRelativeFormatParser = class extends AbstractParserWithWordB
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/refiners/ENMergeRelativeAfterDateRefiner.js
-init_define_ADMIN_UIDS();
 function IsPositiveFollowingReference(result) {
   return result.text.match(/^[+-]/i) != null;
 }
@@ -9800,7 +8726,6 @@ var ENMergeRelativeAfterDateRefiner = class extends MergingRefiner {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/refiners/ENMergeRelativeFollowByDateRefiner.js
-init_define_ADMIN_UIDS();
 function hasImpliedEarlierReferenceDate(result) {
   return result.text.match(/\s+(before|from)$/i) != null;
 }
@@ -9831,7 +8756,6 @@ var ENMergeRelativeFollowByDateRefiner = class extends MergingRefiner {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/refiners/ENExtractYearSuffixRefiner.js
-init_define_ADMIN_UIDS();
 var YEAR_SUFFIX_PATTERN = new RegExp(`^\\s*(${YEAR_PATTERN})`, "i");
 var YEAR_GROUP6 = 1;
 var ENExtractYearSuffixRefiner = class {
@@ -9863,7 +8787,6 @@ var ENExtractYearSuffixRefiner = class {
 };
 
 // node_modules/chrono-node/dist/esm/locales/en/refiners/ENUnlikelyFormatFilter.js
-init_define_ADMIN_UIDS();
 var ENUnlikelyFormatFilter = class extends Filter {
   constructor() {
     super();
@@ -10045,7 +8968,7 @@ var GB = new Chrono(configuration.createCasualConfiguration(true));
 
 // node_modules/chrono-node/dist/esm/index.js
 var casual2 = casual;
-function parseDate2(text, ref, option) {
+function parseDate(text, ref, option) {
   return casual2.parseDate(text, ref, option);
 }
 
@@ -10054,7 +8977,7 @@ function parseHumanDate(input) {
   const trimmed = input.trim();
   if (!trimmed) return null;
   if (/^\d{4}-\d{2}-\d{2}/.test(trimmed)) return trimmed;
-  const parsed = parseDate2(trimmed, /* @__PURE__ */ new Date(), { forwardDate: true });
+  const parsed = parseDate(trimmed, /* @__PURE__ */ new Date(), { forwardDate: true });
   if (!parsed) return null;
   const date = parsed.toISOString().slice(0, 10);
   const hours = parsed.getHours();
@@ -10072,10 +8995,9 @@ function parseHumanDateOnly(input) {
 }
 
 // src/cli/lib/stdin.ts
-init_define_ADMIN_UIDS();
-var fs4 = __toESM(require("fs"), 1);
+var fs3 = __toESM(require("fs"), 1);
 function readStdinLines() {
-  const input = fs4.readFileSync(0, "utf8");
+  const input = fs3.readFileSync(0, "utf8");
   return input.split("\n").map((l) => l.trim()).filter(Boolean);
 }
 
@@ -10095,7 +9017,7 @@ async function pickTask(uid, id, actionName) {
     message: `Select task to ${actionName}`,
     options: pending.map((t2) => ({
       value: t2.id,
-      label: `${truncate(String(t2.text), 50)}  ${import_picocolors8.default.dim(String(t2.id))}`
+      label: `${truncate(t2.text, 50)}  ${import_picocolors8.default.dim(t2.id)}`
     }))
   });
   return selected;
@@ -10120,13 +9042,12 @@ function extractTime(dueDate) {
   const time = parts[1];
   return time === "00:00" ? "" : time;
 }
-function isRepeating2(t2) {
-  const repeat = t2.repeat;
-  return !!repeat?.type && repeat.type !== "none";
+function isRepeating(t2) {
+  return !!t2.repeat?.type && t2.repeat.type !== "none";
 }
 function getCheckIndicator(t2) {
   if (t2.completed) return import_picocolors8.default.green(SYM.check);
-  if (isRepeating2(t2)) return import_picocolors8.default.blue(SYM.repeat);
+  if (isRepeating(t2)) return import_picocolors8.default.blue(SYM.repeat);
   return import_picocolors8.default.dim(SYM.circle);
 }
 function sortTasksForDisplay(tasks) {
@@ -10134,16 +9055,16 @@ function sortTasksForDisplay(tasks) {
   return [...tasks].sort((a, b) => {
     const timeA = extractTime(a.dueDate);
     const timeB = extractTime(b.dueDate);
-    const repA = isRepeating2(a);
-    const repB = isRepeating2(b);
+    const repA = isRepeating(a);
+    const repB = isRepeating(b);
     if (timeA && !timeB) return -1;
     if (!timeA && timeB) return 1;
     if (timeA && timeB) return timeA.localeCompare(timeB);
     if (repA && !repB) return -1;
     if (!repA && repB) return 1;
     if (repA && repB) {
-      const ra = a.repeat?.type ?? "";
-      const rb = b.repeat?.type ?? "";
+      const ra = a.repeat.type ?? "";
+      const rb = b.repeat.type ?? "";
       return (repeatOrder[ra] ?? 99) - (repeatOrder[rb] ?? 99);
     }
     return 0;
@@ -10155,7 +9076,7 @@ function printTaskDetail(t2) {
   printRecord([
     ["ID", dim(t2.id)],
     ["Text", t2.text],
-    ["Due", formatDate2(t2.dueDate) || dim("none (backlog)")],
+    ["Due", formatDate(t2.dueDate) || dim("none (backlog)")],
     ["Status", t2.completed ? import_picocolors8.default.green("completed") : import_picocolors8.default.yellow("pending")],
     ["Tags", formatTags(t2.tags) || dim("none")],
     ["Difficulty", formatDifficulty(t2.difficulty) || dim("not set")],
@@ -10164,18 +9085,18 @@ function printTaskDetail(t2) {
     ["Note", t2.note || dim("none")],
     ["Public", t2.isPublic ? import_picocolors8.default.green("yes") : import_picocolors8.default.yellow("no")],
     ["Completions", String(t2.completions ?? 0)],
-    ["Created", formatDate2(t2.createdAt)]
+    ["Created", formatDate(t2.createdAt)]
   ]);
   console.log("");
 }
 function printTaskLine(t2) {
   const check = getCheckIndicator(t2);
-  const rawText = truncate(String(t2.text ?? ""), 50);
+  const rawText = truncate(t2.text, 50);
   const text = t2.completed ? import_picocolors8.default.strikethrough(import_picocolors8.default.dim(rawText)) : rawText;
   const time = extractTime(t2.dueDate);
   const tags = formatTags(t2.tags);
   const difficulty = formatDifficulty(t2.difficulty);
-  const id = import_picocolors8.default.dim(String(t2.id ?? ""));
+  const id = import_picocolors8.default.dim(t2.id);
   const parts = [check, text];
   if (time) parts.push(import_picocolors8.default.cyan(time));
   if (tags) parts.push(tags);
@@ -10204,8 +9125,7 @@ function registerTasksCommands(program3) {
           console.log(`  ${import_picocolors8.default.bold("Backlog")} ${import_picocolors8.default.dim(`(${items.length})`)}`);
         } else {
           const viewDate = date ? /* @__PURE__ */ new Date(date + "T00:00:00") : /* @__PURE__ */ new Date();
-          const streakCount = getCompletedTodayCount();
-          console.log(formatWeekdayHeader(viewDate, streakCount));
+          console.log(formatWeekdayHeader(viewDate, completed.length));
         }
         const tagLine = formatTagsSummary(items);
         if (tagLine) console.log(`
@@ -10412,11 +9332,10 @@ Examples:
       dataKey: "task",
       spinnerMessage: "Creating task...",
       onInteractive: (_task, payload) => {
-        const task = payload.task;
+        const { task, karma } = payload;
         const check = import_picocolors8.default.green(SYM.check);
         console.log(`
   ${check} Created  ${task.text}`);
-        const karma = payload.karma;
         if (karma) {
           console.log(`    ${formatKarmaGain(karma)}${" ".repeat(20)}${import_picocolors8.default.dim(task.id)}`);
         }
@@ -10471,9 +9390,9 @@ Examples:
       fn: () => updateTask(uid, taskId, body),
       dataKey: "task",
       spinnerMessage: "Updating task...",
-      onInteractive: (task) => {
+      onInteractive: (payload) => {
         console.log(`
-  ${import_picocolors8.default.green("Updated!")} ${task.text}  ${import_picocolors8.default.dim(task.id)}
+  ${import_picocolors8.default.green("Updated!")} ${payload.task.text}  ${import_picocolors8.default.dim(payload.task.id)}
 `);
       }
     });
@@ -10503,7 +9422,7 @@ Examples:
       let taskText = taskId;
       try {
         const task = await getTask(uid, taskId);
-        taskText = String(task.text ?? taskId);
+        taskText = task.text ?? taskId;
       } catch {
       }
       const confirmed = await promptConfirm({
@@ -10521,9 +9440,8 @@ Examples:
       spinnerMessage: "Deleting task...",
       onInteractive: (data) => {
         const cross = import_picocolors8.default.red(SYM.cross);
-        const text = data.taskText || taskId;
         console.log(`
-  ${cross} Deleted  ${text}`);
+  ${cross} Deleted  ${data.taskText || taskId}`);
         if (data.archived) console.log(`    ${import_picocolors8.default.dim("Archived")}`);
         console.log("");
       }
@@ -10555,13 +9473,10 @@ Examples:
       spinnerMessage: "Completing task...",
       onInteractive: (data) => {
         const check = import_picocolors8.default.green(SYM.check);
-        const text = data.taskText ?? taskId;
         console.log(`
-  ${check} Done!  ${text}`);
-        const karma = data.karma;
-        const checksInRow = data.checksInRow;
-        if (karma) {
-          console.log(`    ${formatKarmaGain(karma, checksInRow)}`);
+  ${check} Done!  ${data.taskText ?? taskId}`);
+        if (data.karma) {
+          console.log(`    ${formatKarmaGain(data.karma, data.checksInRow)}`);
         }
         console.log("");
       }
@@ -10593,9 +9508,8 @@ Examples:
       spinnerMessage: "Uncompleting task...",
       onInteractive: (data) => {
         const arrow = SYM.undo;
-        const text = data.text ?? taskId;
         console.log(`
-  ${import_picocolors8.default.yellow(arrow)} Reverted  ${text}`);
+  ${import_picocolors8.default.yellow(arrow)} Reverted  ${data.task.text ?? taskId}`);
         console.log(`    ${import_picocolors8.default.dim("Karma adjustment applied")}`);
         console.log("");
       }
@@ -10606,13 +9520,10 @@ Examples:
 }
 
 // src/cli/commands/posts.ts
-init_define_ADMIN_UIDS();
 var import_picocolors10 = __toESM(require_picocolors(), 1);
 
 // src/cli/lib/pagination.ts
-init_define_ADMIN_UIDS();
 var import_picocolors9 = __toESM(require_picocolors(), 1);
-init_errors();
 function printPaginationHint(opts) {
   if (!opts.nextCursor) return;
   const parts = [opts.command, `--cursor ${opts.nextCursor}`];
@@ -10622,223 +9533,59 @@ ${import_picocolors9.default.dim("Next page:")} ${import_picocolors9.default.dim
 }
 
 // src/cli/services/posts.ts
-init_define_ADMIN_UIDS();
-function generateSlug(title) {
-  return title.toLowerCase().replace(/[^a-z0-9\s-]/g, "").replace(/\s+/g, "-").slice(0, 80) + "-" + Date.now().toString(36);
-}
+init_api_client();
 async function listPosts(opts) {
-  const lim = Math.min(opts.limit ?? 20, MAX_POSTS_PER_REQUEST);
-  const queryOpts = {
-    orderBy: [{ field: "createdAt", direction: "DESCENDING" }],
-    limit: lim + 1
-  };
-  if (opts.cursor) {
-    const cursorDoc = await getDoc(`posts/${opts.cursor}`);
-    if (cursorDoc.createdAt != null) {
-      queryOpts.startAfter = [cursorDoc.createdAt];
-    }
-  }
-  const docs = await runQuery("", "posts", queryOpts);
-  const hasMore = docs.length > lim;
-  const posts = docs.slice(0, lim);
-  return {
-    posts,
-    nextCursor: hasMore ? posts[posts.length - 1].id : void 0
-  };
+  return api.get("/api/posts", {
+    cursor: opts.cursor,
+    limit: opts.limit?.toString()
+  });
 }
 async function getPost(id) {
-  validateDocId(id, "Post ID");
-  const post = await getDoc(`posts/${id}`);
-  if (post.authorId) {
-    try {
-      const author = await getDoc(`users/${post.authorId}`);
-      post.authorName = author.username ?? null;
-    } catch {
-    }
-  }
-  return post;
+  return api.get(`/api/posts/${encodeURIComponent(id)}`);
 }
 async function createPost(uid, body) {
-  const now2 = Date.now();
-  const postData = {
-    title: body.title,
-    body: body.body,
-    tag: body.tag,
-    authorId: uid,
-    slug: generateSlug(body.title),
-    isPublic: body.isPublic !== false,
-    createdAt: now2,
-    updatedAt: now2,
-    commentsCount: 0,
-    likesCount: 0
-  };
-  const doc = await createDoc("posts", postData);
-  const postId = doc.id;
-  try {
-    await giveKarma(uid, "createPost", postId, KARMA_POINTS.createPost, String(body.title));
-  } catch {
-  }
-  try {
-    await incrementField(`users/${uid}/activity/totals`, "posts.written", 1);
-  } catch {
-  }
-  return { post: doc, karma: KARMA_POINTS.createPost };
+  return api.post("/api/posts", body);
 }
 async function updatePost(uid, id, body) {
-  validateDocId(id, "Post ID");
-  const post = await getDoc(`posts/${id}`);
-  checkOwnership(post, uid, "update");
-  const allowed = ["title", "body", "tag", "isPublic"];
-  const update = { updatedAt: Date.now() };
-  const fieldMask = ["updatedAt"];
-  for (const key of allowed) {
-    if (key in body) {
-      update[key] = body[key];
-      fieldMask.push(key);
-    }
-  }
-  await updateDoc(`posts/${id}`, update, fieldMask);
-  const updated = await getDoc(`posts/${id}`);
-  return { post: updated };
+  return api.patch(`/api/posts/${encodeURIComponent(id)}`, body);
 }
 async function deletePost(uid, id) {
-  validateDocId(id, "Post ID");
-  const post = await getDoc(`posts/${id}`);
-  checkOwnership(post, uid, "delete");
-  await deleteDoc(`posts/${id}`);
+  await api.del(`/api/posts/${encodeURIComponent(id)}`);
 }
 
 // src/cli/services/comments.ts
-init_define_ADMIN_UIDS();
+init_api_client();
 async function listComments(postId, opts) {
-  validateDocId(postId, "Post ID");
-  const lim = Math.min(opts.limit ?? 20, MAX_COMMENTS_PER_REQUEST);
-  const queryOpts = {
-    orderBy: [{ field: "createdAt", direction: "ASCENDING" }],
-    limit: lim + 1
-  };
-  if (opts.cursor) {
-    const cursorDoc = await getDoc(`posts/${postId}/comments/${opts.cursor}`);
-    if (cursorDoc.createdAt != null) {
-      queryOpts.startAfter = [cursorDoc.createdAt];
-    }
-  }
-  const docs = await runQuery(`posts/${postId}`, "comments", queryOpts);
-  const hasMore = docs.length > lim;
-  const comments = docs.slice(0, lim);
-  const uids = [...new Set(comments.map((c) => c.userId).filter(Boolean))];
-  const userMap = {};
-  await Promise.all(uids.map(async (uid) => {
-    try {
-      const user = await getDoc(`users/${uid}`);
-      if (user.username) userMap[uid] = user.username;
-    } catch {
-    }
-  }));
-  for (const c of comments) {
-    c.authorName = userMap[c.userId] ?? null;
-  }
-  return {
-    comments,
-    nextCursor: hasMore ? comments[comments.length - 1].id : void 0
-  };
+  return api.get(`/api/posts/${encodeURIComponent(postId)}/comments`, {
+    cursor: opts.cursor,
+    limit: opts.limit?.toString()
+  });
 }
 async function createComment(uid, postId, text) {
-  validateDocId(postId, "Post ID");
-  const now2 = Date.now();
-  const commentData = {
-    postId,
-    userId: uid,
-    text,
-    createdAt: now2,
-    updatedAt: now2,
-    textLength: text.length,
-    likes: [],
-    repliesCount: 0
-  };
-  const doc = await createDoc(`posts/${postId}/comments`, commentData);
-  const commentId = doc.id;
-  await incrementField(`posts/${postId}`, "commentsCount", 1);
-  try {
-    await giveKarma(uid, "addComment", `${postId}_${commentId}`, KARMA_POINTS.addComment, text);
-  } catch {
-  }
-  try {
-    await incrementField(`users/${uid}/activity/totals`, "comments.written", 1);
-  } catch {
-  }
-  return { comment: doc, karma: KARMA_POINTS.addComment };
+  return api.post(`/api/posts/${encodeURIComponent(postId)}/comments`, { text });
 }
 async function deleteComment(uid, postId, commentId) {
-  validateDocId(postId, "Post ID");
-  validateDocId(commentId, "Comment ID");
-  const comment = await getDoc(`posts/${postId}/comments/${commentId}`);
-  checkOwnership(comment, uid, "delete");
-  await deleteDoc(`posts/${postId}/comments/${commentId}`);
-  await incrementField(`posts/${postId}`, "commentsCount", -1);
+  await api.del(`/api/posts/${encodeURIComponent(postId)}/comments/${encodeURIComponent(commentId)}`);
 }
 
 // src/cli/services/replies.ts
-init_define_ADMIN_UIDS();
+init_api_client();
 async function listReplies(postId, commentId, opts) {
-  validateDocId(postId, "Post ID");
-  validateDocId(commentId, "Comment ID");
-  const lim = Math.min(opts.limit ?? 20, MAX_REPLIES_PER_REQUEST);
-  const queryOpts = {
-    orderBy: [{ field: "createdAt", direction: "ASCENDING" }],
-    limit: lim + 1
-  };
-  if (opts.cursor) {
-    const cursorDoc = await getDoc(`posts/${postId}/comments/${commentId}/replies/${opts.cursor}`);
-    if (cursorDoc.createdAt != null) {
-      queryOpts.startAfter = [cursorDoc.createdAt];
-    }
-  }
-  const docs = await runQuery(`posts/${postId}/comments/${commentId}`, "replies", queryOpts);
-  const hasMore = docs.length > lim;
-  const replies = docs.slice(0, lim);
-  return {
-    replies,
-    nextCursor: hasMore ? replies[replies.length - 1].id : void 0
-  };
+  return api.get(`/api/posts/${encodeURIComponent(postId)}/comments/${encodeURIComponent(commentId)}/replies`, {
+    cursor: opts.cursor,
+    limit: opts.limit?.toString()
+  });
 }
 async function createReply(uid, postId, commentId, text) {
-  validateDocId(postId, "Post ID");
-  validateDocId(commentId, "Comment ID");
-  const now2 = Date.now();
-  const replyData = {
-    postId,
-    userId: uid,
-    text,
-    createdAt: now2,
-    updatedAt: now2,
-    textLength: text.length,
-    likes: [],
-    parentCommentId: commentId
-  };
-  const doc = await createDoc(`posts/${postId}/comments/${commentId}/replies`, replyData);
-  const replyId = doc.id;
-  await incrementField(`posts/${postId}/comments/${commentId}`, "repliesCount", 1);
-  try {
-    await giveKarma(uid, "addComment", `${postId}_${replyId}`, KARMA_POINTS.addComment, text);
-  } catch {
-  }
-  try {
-    await incrementField(`users/${uid}/activity/totals`, "replies.written", 1);
-  } catch {
-  }
-  return { reply: doc, karma: KARMA_POINTS.addComment };
+  return api.post(`/api/posts/${encodeURIComponent(postId)}/comments/${encodeURIComponent(commentId)}/replies`, { text });
 }
 async function deleteReply(uid, postId, commentId, replyId) {
-  validateDocId(postId, "Post ID");
-  validateDocId(commentId, "Comment ID");
-  validateDocId(replyId, "Reply ID");
-  const reply = await getDoc(`posts/${postId}/comments/${commentId}/replies/${replyId}`);
-  checkOwnership(reply, uid, "delete");
-  await deleteDoc(`posts/${postId}/comments/${commentId}/replies/${replyId}`);
-  await incrementField(`posts/${postId}/comments/${commentId}`, "repliesCount", -1);
+  await api.del(`/api/posts/${encodeURIComponent(postId)}/comments/${encodeURIComponent(commentId)}/replies/${encodeURIComponent(replyId)}`);
 }
 
+// src/cli/types/api.ts
+var POST_TAGS = ["general", "hack", "story", "meme", "other", "question", "hack-tip", "activity"];
+
 // src/cli/commands/posts.ts
 init_prompts();
 init_tty();
@@ -10851,7 +9598,7 @@ async function pickComment(postId, commentId) {
     message: "Select comment",
     options: comments.map((c) => ({
       value: c.id,
-      label: `${truncate(String(c.text ?? ""), 60)}  ${import_picocolors10.default.dim(String(c.authorName ?? c.userId ?? ""))}`
+      label: `${truncate(c.text ?? "", 60)}  ${import_picocolors10.default.dim(c.authorName ?? c.userId ?? "")}`
     }))
   });
 }
@@ -10864,16 +9611,16 @@ async function pickReply(postId, commentId, replyId) {
     message: "Select reply",
     options: replies.map((r) => ({
       value: r.id,
-      label: `${truncate(String(r.text ?? ""), 60)}  ${import_picocolors10.default.dim(String(r.userId ?? ""))}`
+      label: `${truncate(r.text ?? "", 60)}  ${import_picocolors10.default.dim(r.userId ?? "")}`
     }))
   });
 }
 function printPostLine(p) {
-  const tag = import_picocolors10.default.cyan(String(p.tag ?? ""));
-  const title = truncate(String(p.title ?? ""), 55);
+  const tag = import_picocolors10.default.cyan(p.tag ?? "");
+  const title = truncate(p.title, 55);
   const comments = p.commentsCount ? import_picocolors10.default.dim(`${p.commentsCount} comments`) : "";
   const time = formatRelativeDate(p.createdAt);
-  const id = import_picocolors10.default.dim(String(p.id ?? ""));
+  const id = import_picocolors10.default.dim(p.id);
   const parts = [tag, import_picocolors10.default.bold(title)];
   if (comments) parts.push(comments);
   parts.push(import_picocolors10.default.dim(time));
@@ -10890,7 +9637,7 @@ function printPostDetail(p) {
   console.log(`  ${import_picocolors10.default.dim(SYM.dash.repeat(40))}`);
   printRecord([
     ["ID", import_picocolors10.default.dim(p.id)],
-    ["Tag", import_picocolors10.default.cyan(String(p.tag ?? ""))],
+    ["Tag", import_picocolors10.default.cyan(p.tag ?? "")],
     ["Author", p.authorName ?? p.authorId],
     ["Comments", p.commentsCount != null ? String(p.commentsCount) : null],
     ["Likes", p.likesCount != null ? String(p.likesCount) : null],
@@ -10899,18 +9646,18 @@ function printPostDetail(p) {
   console.log("");
 }
 function printCommentLine(c) {
-  const author = import_picocolors10.default.bold(String(c.authorName ?? c.userId ?? ""));
+  const author = import_picocolors10.default.bold(c.authorName ?? c.userId ?? "");
   const time = import_picocolors10.default.dim(formatRelativeDate(c.createdAt));
   const replies = c.repliesCount ? import_picocolors10.default.dim(`\xB7 ${c.repliesCount} replies`) : "";
-  const text = String(c.text ?? "");
+  const text = c.text ?? "";
   console.log(`  ${author}  ${time}${replies}`);
   console.log(`  ${text}`);
   console.log("");
 }
 function printReplyLine(r) {
-  const text = truncate(String(r.text ?? ""), 60);
+  const text = truncate(r.text ?? "", 60);
   const time = formatRelativeDate(r.createdAt);
-  const id = import_picocolors10.default.dim(String(r.id ?? ""));
+  const id = import_picocolors10.default.dim(r.id);
   console.log(`  ${text}  ${import_picocolors10.default.dim(time)}  ${id}`);
 }
 function registerPostsCommands(program3) {
@@ -11012,148 +9759,135 @@ Examples:
       }
     });
   });
-  if (isAdmin()) {
-    posts.command("create").description("Create a new post").option("--title <title>").option("--body <body>").option("--tag <tag>", "general|hack|story|meme|other|question|hack-tip|activity").action(async function() {
-      const opts = this.optsWithGlobals();
-      const uid = requireAdmin();
-      const title = await promptForMissing({ value: opts.title, message: "Title", placeholder: "Post title" });
-      const postBody = await promptForMissing({ value: opts.body, message: "Body", placeholder: "Post body" });
-      let tag = opts.tag;
-      if (!tag) {
-        tag = await promptSelect({
-          message: "Tag",
-          options: POST_TAGS.map((t2) => ({ value: t2, label: t2 }))
-        });
-      }
-      const body = { title, body: postBody, tag };
-      await runCreate({
-        global: opts,
-        fn: () => createPost(uid, body),
-        dataKey: "post",
-        spinnerMessage: "Creating post...",
-        onInteractive: (post) => {
-          console.log(`
-  ${import_picocolors10.default.green("Posted!")} ${post.title}  ${import_picocolors10.default.dim(post.id)}
-`);
-        }
+  posts.command("create").description("Create a new post").option("--title <title>").option("--body <body>").option("--tag <tag>", "general|hack|story|meme|other|question|hack-tip|activity").action(async function() {
+    const opts = this.optsWithGlobals();
+    const uid = requireUid();
+    const title = await promptForMissing({ value: opts.title, message: "Title", placeholder: "Post title" });
+    const postBody = await promptForMissing({ value: opts.body, message: "Body", placeholder: "Post body" });
+    let tag = opts.tag;
+    if (!tag) {
+      tag = await promptSelect({
+        message: "Tag",
+        options: POST_TAGS.map((t2) => ({ value: t2, label: t2 }))
       });
+    }
+    const body = { title, body: postBody, tag };
+    await runCreate({
+      global: opts,
+      fn: () => createPost(uid, body),
+      dataKey: "post",
+      spinnerMessage: "Creating post...",
+      onInteractive: (post, payload) => {
+        console.log(`
+  ${import_picocolors10.default.green("Posted!")} ${payload.post.title}  ${import_picocolors10.default.dim(payload.post.id)}
+`);
+      }
     });
-    posts.command("update [id]").description("Update a post").option("--title <title>").option("--body <body>").option("--tag <tag>").action(async function(id) {
-      const opts = this.optsWithGlobals();
-      const uid = requireAdmin();
-      const postId = await promptForMissing({ value: id, message: "Post ID" });
-      const body = {};
-      const hasAnyFlag = opts.title || opts.body || opts.tag;
-      if (!hasAnyFlag && isInteractive() && !opts.json) {
-        const title = await promptText({ message: "Title (enter to skip)", required: false });
-        if (title) body.title = title;
-        const postBody = await promptText({ message: "Body (enter to skip)", required: false });
-        if (postBody) body.body = postBody;
-        const changeTag = await promptText({ message: "Tag (enter to skip)", placeholder: POST_TAGS.join("|"), required: false });
-        if (changeTag) body.tag = changeTag;
-      } else {
-        if (opts.title) body.title = opts.title;
-        if (opts.body) body.body = opts.body;
-        if (opts.tag) body.tag = opts.tag;
-      }
-      await runWrite({
-        global: opts,
-        fn: () => updatePost(uid, postId, body),
-        dataKey: "post",
-        spinnerMessage: "Updating post...",
-        onInteractive: (post) => {
-          console.log(`
-  ${import_picocolors10.default.green("Updated!")} ${post.title}  ${import_picocolors10.default.dim(post.id)}
+  });
+  posts.command("update [id]").description("Update a post").option("--title <title>").option("--body <body>").option("--tag <tag>").action(async function(id) {
+    const opts = this.optsWithGlobals();
+    const uid = requireUid();
+    const postId = await promptForMissing({ value: id, message: "Post ID" });
+    const body = {};
+    const hasAnyFlag = opts.title || opts.body || opts.tag;
+    if (!hasAnyFlag && isInteractive() && !opts.json) {
+      const title = await promptText({ message: "Title (enter to skip)", required: false });
+      if (title) body.title = title;
+      const postBody = await promptText({ message: "Body (enter to skip)", required: false });
+      if (postBody) body.body = postBody;
+      const changeTag = await promptText({ message: "Tag (enter to skip)", placeholder: POST_TAGS.join("|"), required: false });
+      if (changeTag) body.tag = changeTag;
+    } else {
+      if (opts.title) body.title = opts.title;
+      if (opts.body) body.body = opts.body;
+      if (opts.tag) body.tag = opts.tag;
+    }
+    await runWrite({
+      global: opts,
+      fn: () => updatePost(uid, postId, body),
+      dataKey: "post",
+      spinnerMessage: "Updating post...",
+      onInteractive: (payload) => {
+        console.log(`
+  ${import_picocolors10.default.green("Updated!")} ${payload.post.title}  ${import_picocolors10.default.dim(payload.post.id)}
 `);
-        }
-      });
+      }
     });
-    posts.command("delete [id]").description("Delete a post").action(async function(id) {
-      const uid = requireAdmin();
-      const postId = await promptForMissing({ value: id, message: "Post ID" });
-      await runDelete({
-        global: this.optsWithGlobals(),
-        fn: () => deletePost(uid, postId),
-        successMessage: `  ${import_picocolors10.default.green("Deleted!")} Post ${import_picocolors10.default.dim(postId)}`,
-        spinnerMessage: "Deleting post..."
-      });
+  });
+  posts.command("delete [id]").description("Delete a post").action(async function(id) {
+    const uid = requireUid();
+    const postId = await promptForMissing({ value: id, message: "Post ID" });
+    await runDelete({
+      global: this.optsWithGlobals(),
+      fn: () => deletePost(uid, postId),
+      successMessage: `  ${import_picocolors10.default.green("Deleted!")} Post ${import_picocolors10.default.dim(postId)}`,
+      spinnerMessage: "Deleting post..."
     });
-    posts.command("comment [postId]").description("Add a comment to a post").option("--text <text>").action(async function(postId) {
-      const opts = this.optsWithGlobals();
-      const uid = requireAdmin();
-      const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
-      const text = await promptForMissing({ value: opts.text, message: "Comment text", placeholder: "Your comment" });
-      await runCreate({
-        global: opts,
-        fn: () => createComment(uid, resolvedPostId, text),
-        dataKey: "comment",
-        spinnerMessage: "Adding comment...",
-        onInteractive: (comment) => {
-          console.log(`
-  ${import_picocolors10.default.green("Commented!")} ${truncate(String(comment.text ?? ""), 50)}  ${import_picocolors10.default.dim(comment.id)}
+  });
+  posts.command("comment [postId]").description("Add a comment to a post").option("--text <text>").action(async function(postId) {
+    const opts = this.optsWithGlobals();
+    const uid = requireUid();
+    const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
+    const text = await promptForMissing({ value: opts.text, message: "Comment text", placeholder: "Your comment" });
+    await runCreate({
+      global: opts,
+      fn: () => createComment(uid, resolvedPostId, text),
+      dataKey: "comment",
+      spinnerMessage: "Adding comment...",
+      onInteractive: (comment, payload) => {
+        console.log(`
+  ${import_picocolors10.default.green("Commented!")} ${truncate(payload.comment.text ?? "", 50)}  ${import_picocolors10.default.dim(payload.comment.id)}
 `);
-        }
-      });
+      }
     });
-    posts.command("comment-delete [postId] [commentId]").description("Delete a comment").action(async function(postId, commentId) {
-      const uid = requireAdmin();
-      const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
-      const resolvedCommentId = await pickComment(resolvedPostId, commentId);
-      await runDelete({
-        global: this.optsWithGlobals(),
-        fn: () => deleteComment(uid, resolvedPostId, resolvedCommentId),
-        successMessage: `  ${import_picocolors10.default.green("Deleted!")} Comment ${import_picocolors10.default.dim(resolvedCommentId)}`,
-        spinnerMessage: "Deleting comment..."
-      });
+  });
+  posts.command("comment-delete [postId] [commentId]").description("Delete a comment").action(async function(postId, commentId) {
+    const uid = requireUid();
+    const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
+    const resolvedCommentId = await pickComment(resolvedPostId, commentId);
+    await runDelete({
+      global: this.optsWithGlobals(),
+      fn: () => deleteComment(uid, resolvedPostId, resolvedCommentId),
+      successMessage: `  ${import_picocolors10.default.green("Deleted!")} Comment ${import_picocolors10.default.dim(resolvedCommentId)}`,
+      spinnerMessage: "Deleting comment..."
     });
-    posts.command("reply [postId] [commentId]").description("Add a reply to a comment").option("--text <text>").action(async function(postId, commentId) {
-      const opts = this.optsWithGlobals();
-      const uid = requireAdmin();
-      const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
-      const resolvedCommentId = await pickComment(resolvedPostId, commentId);
-      const text = await promptForMissing({ value: opts.text, message: "Reply text", placeholder: "Your reply" });
-      await runCreate({
-        global: opts,
-        fn: () => createReply(uid, resolvedPostId, resolvedCommentId, text),
-        dataKey: "reply",
-        spinnerMessage: "Adding reply...",
-        onInteractive: (reply) => {
-          console.log(`
-  ${import_picocolors10.default.green("Replied!")} ${truncate(String(reply.text ?? ""), 50)}  ${import_picocolors10.default.dim(reply.id)}
+  });
+  posts.command("reply [postId] [commentId]").description("Add a reply to a comment").option("--text <text>").action(async function(postId, commentId) {
+    const opts = this.optsWithGlobals();
+    const uid = requireUid();
+    const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
+    const resolvedCommentId = await pickComment(resolvedPostId, commentId);
+    const text = await promptForMissing({ value: opts.text, message: "Reply text", placeholder: "Your reply" });
+    await runCreate({
+      global: opts,
+      fn: () => createReply(uid, resolvedPostId, resolvedCommentId, text),
+      dataKey: "reply",
+      spinnerMessage: "Adding reply...",
+      onInteractive: (reply, payload) => {
+        console.log(`
+  ${import_picocolors10.default.green("Replied!")} ${truncate(payload.reply.text ?? "", 50)}  ${import_picocolors10.default.dim(payload.reply.id)}
 `);
-        }
-      });
+      }
     });
-    posts.command("reply-delete [postId] [commentId] [replyId]").description("Delete a reply").action(async function(postId, commentId, replyId) {
-      const uid = requireAdmin();
-      const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
-      const resolvedCommentId = await pickComment(resolvedPostId, commentId);
-      const resolvedReplyId = await pickReply(resolvedPostId, resolvedCommentId, replyId);
-      await runDelete({
-        global: this.optsWithGlobals(),
-        fn: () => deleteReply(uid, resolvedPostId, resolvedCommentId, resolvedReplyId),
-        successMessage: `  ${import_picocolors10.default.green("Deleted!")} Reply ${import_picocolors10.default.dim(resolvedReplyId)}`,
-        spinnerMessage: "Deleting reply..."
-      });
+  });
+  posts.command("reply-delete [postId] [commentId] [replyId]").description("Delete a reply").action(async function(postId, commentId, replyId) {
+    const uid = requireUid();
+    const resolvedPostId = await promptForMissing({ value: postId, message: "Post ID" });
+    const resolvedCommentId = await pickComment(resolvedPostId, commentId);
+    const resolvedReplyId = await pickReply(resolvedPostId, resolvedCommentId, replyId);
+    await runDelete({
+      global: this.optsWithGlobals(),
+      fn: () => deleteReply(uid, resolvedPostId, resolvedCommentId, resolvedReplyId),
+      successMessage: `  ${import_picocolors10.default.green("Deleted!")} Reply ${import_picocolors10.default.dim(resolvedReplyId)}`,
+      spinnerMessage: "Deleting reply..."
     });
-  }
+  });
 }
 
-// src/cli/commands/profile.ts
-init_define_ADMIN_UIDS();
-
 // src/cli/services/profile.ts
-init_define_ADMIN_UIDS();
+init_api_client();
 async function getProfile() {
-  const creds = loadCredentials();
-  if (!creds) throw new Error("Not logged in. Run: numo login");
-  const doc = await getDoc(`users/${creds.uid}`);
-  return {
-    uid: creds.uid,
-    email: creds.email ?? null,
-    username: doc.username ?? null,
-    photoURL: doc.photoURL ?? null
-  };
+  return api.get("/api/profile");
 }
 
 // src/cli/commands/profile.ts
@@ -11177,10 +9911,9 @@ function registerProfileCommands(program3) {
 }
 
 // src/cli/commands/doctor.ts
-init_define_ADMIN_UIDS();
 var import_picocolors11 = __toESM(require_picocolors(), 1);
-init_config();
-init_config();
+init_credentials();
+init_api_client();
 init_tty();
 async function runChecks() {
   const checks = [];
@@ -11191,6 +9924,11 @@ async function runChecks() {
     status: major >= 18 ? "ok" : "fail",
     message: major >= 18 ? `Node ${nodeVersion}` : `Node ${nodeVersion} \u2014 requires >= 18`
   });
+  checks.push({
+    name: "api_url",
+    status: process.env.NUMO_API_URL ? "ok" : "warn",
+    message: process.env.NUMO_API_URL ? `API URL: ${API_BASE}` : `NUMO_API_URL not set (using default: ${API_BASE})`
+  });
   const creds = loadCredentials();
   checks.push({
     name: "credentials",
@@ -11207,18 +9945,11 @@ async function runChecks() {
   } else {
     checks.push({ name: "token", status: "fail", message: "Skipped (no credentials)" });
   }
-  const apiKey = getFirebaseApiKey();
-  checks.push({
-    name: "api_key",
-    status: apiKey ? "ok" : "fail",
-    message: apiKey ? "Firebase API key configured" : "NUMO_FIREBASE_API_KEY not set"
-  });
   try {
-    const baseUrl = getFirestoreBaseUrl();
-    const resp = await fetch(baseUrl, { signal: AbortSignal.timeout(5e3) });
-    checks.push({ name: "firebase_reachable", status: "ok", message: `Firebase reachable (HTTP ${resp.status})` });
+    const resp = await fetch(`${API_BASE}/api/health`, { signal: AbortSignal.timeout(5e3) });
+    checks.push({ name: "api_reachable", status: "ok", message: `API server reachable (HTTP ${resp.status})` });
   } catch (err) {
-    checks.push({ name: "firebase_reachable", status: "fail", message: `Firebase unreachable: ${err.message}` });
+    checks.push({ name: "api_reachable", status: "fail", message: `API server unreachable: ${err.message}` });
   }
   return checks;
 }
@@ -11248,20 +9979,23 @@ function registerDoctorCommand(program3) {
   });
 }
 
+// src/cli/cli.ts
+init_dirs();
+
 // src/cli/lib/update-check.ts
-init_define_ADMIN_UIDS();
-var fs5 = __toESM(require("fs"), 1);
-var path3 = __toESM(require("path"), 1);
+var fs4 = __toESM(require("fs"), 1);
+var path2 = __toESM(require("path"), 1);
 var import_picocolors12 = __toESM(require_picocolors(), 1);
+init_dirs();
 init_tty();
 var CHECK_INTERVAL = 24 * 60 * 60 * 1e3;
 var PACKAGE_NAME = "numo-cli";
 function getStatePath() {
-  return path3.join(getConfigDir(), "update-check.json");
+  return path2.join(getConfigDir(), "update-check.json");
 }
 function loadState() {
   try {
-    return JSON.parse(fs5.readFileSync(getStatePath(), "utf8"));
+    return JSON.parse(fs4.readFileSync(getStatePath(), "utf8"));
   } catch {
     return { lastCheck: 0 };
   }
@@ -11269,7 +10003,7 @@ function loadState() {
 function saveState(state) {
   try {
     ensureConfigDir();
-    fs5.writeFileSync(getStatePath(), JSON.stringify(state), { mode: 384 });
+    fs4.writeFileSync(getStatePath(), JSON.stringify(state), { mode: 384 });
   } catch {
   }
 }
@@ -11318,7 +10052,7 @@ function fetchLatestVersion(state) {
 // src/cli/cli.ts
 init_tty();
 init_errors();
-var CLI_VERSION = true ? "1.2.0" : "0.0.0-dev";
+var CLI_VERSION = true ? "1.5.0" : "0.0.0-dev";
 var program2 = new Command();
 program2.name("numo").description("CLI for Numo \u2014 programmatic access for humans and AI agents").version(CLI_VERSION).option("--json [fields]", "Output as JSON (optionally: comma-separated field names)").option("-q, --quiet", "Suppress interactive output, implies --json").hook("preAction", (thisCommand) => {
   const opts = thisCommand.optsWithGlobals();
@@ -11340,7 +10074,7 @@ program2.command("login").description("Login with your Numo account").option("--
 Examples:
   $ numo login               # Interactive (email/password)
   $ numo login --phone       # SMS OTP flow`);
-program2.command("register").description("Create a new Numo account").option("--email <email>", "Email address").option("--password <password>", "Password (min 6 characters)").action(async (opts) => {
+program2.command("register").description("Create a new Numo account").option("--email <email>", "Email address").option("--password <password>", "Password (min 6 chars; visible in ps/history \u2014 prefer interactive mode)").action(async (opts) => {
   await register(opts);
 }).addHelpText("after", `
 Examples:
@@ -11348,7 +10082,6 @@ Examples:
   $ numo register --email user@example.com --password s3cret   # Non-interactive`);
 program2.command("logout").description("Clear stored credentials").action(() => {
   clearCredentials();
-  clearStreaks();
   console.log(import_picocolors13.default.green("Logged out."));
 });
 program2.command("whoami").description("Show current auth status (no API call)").action(function() {
@@ -11401,17 +10134,16 @@ program2.command("add [text...]").description("Quick-add a task (today, public,
     dataKey: "task",
     spinnerMessage: "Creating task...",
     onInteractive: (_task, payload) => {
-      const task = payload.task;
+      const { task, karma } = payload;
       const check = import_picocolors13.default.green(SYM.check);
       console.log(`
   ${check} Created  ${task.text}  ${import_picocolors13.default.dim(task.id)}`);
-      const karma = payload.karma;
       if (karma) console.log(`    ${formatKarmaGain(karma)}`);
       console.log("");
     }
   });
 });
-if (isAdmin()) registerPostsCommands(program2);
+registerPostsCommands(program2);
 registerProfileCommands(program2);
 registerDoctorCommand(program2);
 program2.command("commands").description("List all available commands").action(function() {