opal-security 3.1.1 → 3.2.1

package/README.md

@@ -22,7 +22,7 @@ $ npm install -g opal-security
 $ opal COMMAND
 running command...
 $ opal (--version)
-opal-security/3.1.1 linux-x64 node-v20.19.2
+opal-security/3.2.1 darwin-arm64 node-v18.20.4
 $ opal --help [COMMAND]
 USAGE
   $ opal COMMAND
@@ -106,7 +106,7 @@ EXAMPLES
   $ opal aws:identity
 ```
 
-_See code: [src/commands/aws/identity.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/aws/identity.ts)_
+_See code: [src/commands/aws/identity.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/aws/identity.ts)_
 
 ## `opal clear-auth-provider`
 
@@ -126,7 +126,7 @@ EXAMPLES
   $ opal clear-auth-provider
 ```
 
-_See code: [src/commands/clear-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/clear-auth-provider.ts)_
+_See code: [src/commands/clear-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/clear-auth-provider.ts)_
 
 ## `opal curl-example`
 
@@ -143,7 +143,7 @@ DESCRIPTION
   Prints out an example cURL command containing the parameters the CLI uses to query the Opal server.
 ```
 
-_See code: [src/commands/curl-example.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/curl-example.ts)_
+_See code: [src/commands/curl-example.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/curl-example.ts)_
 
 ## `opal groups get`
 
@@ -164,7 +164,7 @@ EXAMPLES
   $ opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4
 ```
 
-_See code: [src/commands/groups/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/groups/get.ts)_
+_See code: [src/commands/groups/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/groups/get.ts)_
 
 ## `opal help [COMMANDS]`
 
@@ -214,7 +214,7 @@ EXAMPLES
   $ opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName "custom-profile"
 ```
 
-_See code: [src/commands/iam-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/iam-roles/start.ts)_
+_See code: [src/commands/iam-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/iam-roles/start.ts)_
 
 ## `opal kube-roles start`
 
@@ -245,7 +245,7 @@ EXAMPLES
   $ opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId "arn:aws:iam::712234975475:role/acme-eks-cluster-admin-role"
 ```
 
-_See code: [src/commands/kube-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/kube-roles/start.ts)_
+_See code: [src/commands/kube-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/kube-roles/start.ts)_
 
 ## `opal login`
 
@@ -266,7 +266,7 @@ EXAMPLES
   $ opal login
 ```
 
-_See code: [src/commands/login.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/login.ts)_
+_See code: [src/commands/login.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/login.ts)_
 
 ## `opal logout`
 
@@ -286,7 +286,7 @@ EXAMPLES
   $ opal logout
 ```
 
-_See code: [src/commands/logout.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/logout.ts)_
+_See code: [src/commands/logout.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/logout.ts)_
 
 ## `opal postgres-instances start`
 
@@ -294,7 +294,7 @@ Starts a session to connect to a Postgres database.
 
 ```
 USAGE
-  $ opal postgres-instances start [-h] [-i <value>] [-a <value>] [-s <value>] [-r] [--action psql|view]
+  $ opal postgres-instances start [-h] [-i <value>] [-a <value>] [-s <value>] [-r] [--action open|psql|view]
 
 FLAGS
   -a, --accessLevelRemoteId=<value>  The remote ID of the access level with which to access the resource.
@@ -306,9 +306,10 @@ FLAGS
   -s, --sessionId=<value>            The Opal ID of the session to connect to. Uses an existing session that was created
                                      via the web flow.
       --action=<option>              Method of connecting to the database.
+                                     - open: Open external database app
                                      - psql: Start psql session in shell
                                      - view: View connection configuration details
-                                     <options: psql|view>
+                                     <options: open|psql|view>
 
 DESCRIPTION
   Starts a session to connect to a Postgres database.
@@ -323,7 +324,7 @@ EXAMPLES
   $ opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess --action view
 ```
 
-_See code: [src/commands/postgres-instances/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/postgres-instances/start.ts)_
+_See code: [src/commands/postgres-instances/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/postgres-instances/start.ts)_
 
 ## `opal request create`
 
@@ -334,10 +335,11 @@ USAGE
   $ opal request create [-h] [-a <value>...] [-r <value>] [-d <value>]
 
 FLAGS
-  -a, --assets=<value>...  The ids of the assets (resource, group) to request access to. Append a role ID using a colon
-                           if needed, e.g. `--assets 123:456`.
+  -a, --assets=<value>...  The ids of the assets (resource, group) to request access to. Append a role name using a
+                           colon if needed, e.g. `--assets 123:456`.
                            If not provided, an interactive selection flow will be available to select assets to request.
-  -d, --duration=<value>   The duration of access for the request in minutes. If not provided, you will be prompted.
+  -d, --duration=<value>   The duration of access for the request in minutes. Pass in a 0 value for permanent access. If
+                           not provided, you will be prompted.
   -h, --help               Show CLI help.
   -r, --reason=<value>     The reason for the request, contained in quotes. If not provided, you will be prompted.
 
@@ -345,7 +347,7 @@ DESCRIPTION
   Creates an Opal access request via an interactive form
 ```
 
-_See code: [src/commands/request/create.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/request/create.ts)_
+_See code: [src/commands/request/create.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/request/create.ts)_
 
 ## `opal request get`
 
@@ -369,7 +371,7 @@ EXAMPLES
   $ opal request get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4 --verbose
 ```
 
-_See code: [src/commands/request/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/request/get.ts)_
+_See code: [src/commands/request/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/request/get.ts)_
 
 ## `opal request list`
 
@@ -401,7 +403,7 @@ EXAMPLES
   $ opal request list --n 5 --pending --verbose
 ```
 
-_See code: [src/commands/request/list.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/request/list.ts)_
+_See code: [src/commands/request/list.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/request/list.ts)_
 
 ## `opal request ls`
 
@@ -452,7 +454,7 @@ EXAMPLES
   $ opal resources:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4
 ```
 
-_See code: [src/commands/resources/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/resources/get.ts)_
+_See code: [src/commands/resources/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/resources/get.ts)_
 
 ## `opal set-auth-provider`
 
@@ -478,7 +480,7 @@ EXAMPLES
   $ opal set-auth-provider --clientID 1234asdf --issuerUrl https://auth.example.com
 ```
 
-_See code: [src/commands/set-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/set-auth-provider.ts)_
+_See code: [src/commands/set-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/set-auth-provider.ts)_
 
 ## `opal set-custom-header`
 
@@ -499,7 +501,7 @@ EXAMPLES
   $ opal set-custom-header --header 'cf-access-token: $TOKEN'
 ```
 
-_See code: [src/commands/set-custom-header.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/set-custom-header.ts)_
+_See code: [src/commands/set-custom-header.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/set-custom-header.ts)_
 
 ## `opal set-token`
 
@@ -519,7 +521,7 @@ EXAMPLES
   $ opal set-token
 ```
 
-_See code: [src/commands/set-token.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/set-token.ts)_
+_See code: [src/commands/set-token.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/set-token.ts)_
 
 ## `opal set-url [URL]`
 
@@ -543,7 +545,7 @@ EXAMPLES
   $ opal set-url
 ```
 
-_See code: [src/commands/set-url.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/set-url.ts)_
+_See code: [src/commands/set-url.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/set-url.ts)_
 
 ## `opal ssh copyFrom`
 
@@ -574,7 +576,7 @@ EXAMPLES
   $ opal ssh:copyFrom --src instance/dir --dest my/dir --id 51f7176b-0464-4a6f-8369-e951e187b398
 ```
 
-_See code: [src/commands/ssh/copyFrom.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/ssh/copyFrom.ts)_
+_See code: [src/commands/ssh/copyFrom.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/ssh/copyFrom.ts)_
 
 ## `opal ssh copyTo`
 
@@ -605,7 +607,7 @@ EXAMPLES
   $ opal ssh:copyTo --src my/dir --dest instance/dir --id 51f7176b-0464-4a6f-8369-e951e187b398
 ```
 
-_See code: [src/commands/ssh/copyTo.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/ssh/copyTo.ts)_
+_See code: [src/commands/ssh/copyTo.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/ssh/copyTo.ts)_
 
 ## `opal ssh start`
 
@@ -632,7 +634,7 @@ EXAMPLES
   $ opal ssh:start --id 51f7176b-0464-4a6f-8369-e951e187b398
 ```
 
-_See code: [src/commands/ssh/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/ssh/start.ts)_
+_See code: [src/commands/ssh/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/ssh/start.ts)_
 
 ## `opal version`
 
@@ -669,5 +671,5 @@ DESCRIPTION
   Describes current url set, organization name, and logged in user if applicable.
 ```
 
-_See code: [src/commands/whoami.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1/src/commands/whoami.ts)_
+_See code: [src/commands/whoami.ts](https://github.com/opalsecurity/opal-cli/blob/v3.2.1/src/commands/whoami.ts)_
 <!-- commandsstop -->

package/lib/commands/groups/get.js

@@ -1,7 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 const core_1 = require("@oclif/core");
-const parseAndCheckHttpResponse_1 = require("@apollo/client/link/http/parseAndCheckHttpResponse");
 const graphql_1 = require("../../graphql");
 const apollo_1 = require("../../lib/apollo");
 const cmd_1 = require("../../lib/cmd");
@@ -64,7 +63,7 @@ class GetGroup extends core_1.Command {
             (0, apollo_1.printResponse)(this, resp);
         }
         catch (error) {
-            return (0, parseAndCheckHttpResponse_1.handleError)(this, error);
+            return (0, apollo_1.handleError)(this, error);
         }
     }
 }

package/lib/commands/request/create.js

@@ -42,7 +42,7 @@ class RequestCreate extends core_1.Command {
             await (0, requests_1.promptForReason)(metadata);
         }
         // Step 5: Prompt for expiration
-        if (flags.duration) {
+        if (flags.duration !== undefined) {
             (0, requests_1.bypassDuration)(this, flags.duration, metadata);
         }
         else {
@@ -51,7 +51,7 @@ class RequestCreate extends core_1.Command {
         // Step 6: Display final summary of request
         let canSubmit = true;
         if (!(flags.assets &&
-            flags.duration &&
+            flags.duration !== undefined &&
             (metadata.requestDefaults.reasonOptional || flags.reason))) {
             canSubmit = await (0, requests_1.promptRequestSubmission)(this, metadata);
         }
@@ -66,7 +66,7 @@ RequestCreate.flags = {
     assets: core_1.Flags.string({
         char: "a",
         multiple: true,
-        description: "The ids of the assets (resource, group) to request access to. Append a role ID using a colon if needed, e.g. `--assets 123:456`.\
+        description: "The ids of the assets (resource, group) to request access to. Append a role name using a colon if needed, e.g. `--assets 123:456`.\
         \n If not provided, an interactive selection flow will be available to select assets to request.",
     }),
     reason: core_1.Flags.string({
@@ -75,7 +75,7 @@ RequestCreate.flags = {
     }),
     duration: core_1.Flags.integer({
         char: "d",
-        description: "The duration of access for the request in minutes. If not provided, you will be prompted.",
+        description: "The duration of access for the request in minutes. Pass in a 0 value for permanent access. If not provided, you will be prompted.",
     }),
 };
 exports.default = RequestCreate;

package/lib/lib/requests.js

@@ -1080,8 +1080,8 @@ async function bypassRequestSelection(cmd, client, flagValue, metadata) {
         // Query Catalog Item endpoint to identify what the id belongs to (resource or group)
         for (const val of flagValue) {
             const delimiterIndex = val.indexOf(":");
-            const assetId = val.substring(0, delimiterIndex);
-            const roleName = val.substring(delimiterIndex + 1);
+            const assetId = delimiterIndex === -1 ? val : val.substring(0, delimiterIndex);
+            const roleName = delimiterIndex === -1 ? "" : val.substring(delimiterIndex + 1);
             const resp = await client.query({
                 query: CATALOG_ITEM,
                 variables: {
@@ -1148,6 +1148,10 @@ async function bypassRequestSelection(cmd, client, flagValue, metadata) {
     return;
 }
 function bypassDuration(cmd, duration, metadata) {
+    if (duration === 0) {
+        metadata.durationInMinutes = undefined;
+        return;
+    }
     const maxDuration = metadata.requestDefaults.maxDurationInMinutes;
     if (maxDuration && duration > maxDuration) {
         cmd.error(`The requested duration exceeds the allowed limit of ${maxDuration}`);

package/lib/utils/displays.js

@@ -7,10 +7,8 @@ exports.getStyledStatus = getStyledStatus;
 exports.displayRequestDetails = displayRequestDetails;
 exports.displayRequestListTable = displayRequestListTable;
 const chalk_1 = require("chalk");
-const terminal_link_1 = require("terminal-link");
 const requests_1 = require("../lib/requests");
 const Table = require("cli-table3");
-const treeify = require("object-treeify").default;
 function headerMessage(cmd) {
     console.clear();
     cmd.log("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
@@ -18,41 +16,24 @@ function headerMessage(cmd) {
     cmd.log("Press Ctrl+C to cancel at any time.\n");
 }
 function treeifyRequestMap(cmd, requestMap) {
-    // Configuration options for treeify
-    const options = {
-        joined: true,
-        spacerNoNeighbour: "    ",
-        spacerNeighbour: "│   ",
-        keyNoNeighbour: "└── ",
-        keyNeighbour: "├── ",
-        separator: "",
-    };
     for (const [_appId, appNode] of Object.entries(requestMap)) {
-        const assetsTree = {};
+        // Print App title first (without tree lines)
+        cmd.log(`${chalk_1.default.bold(appNode.appName)} ${chalk_1.default.dim("[App]")}`);
         for (const [_assetId, assetNode] of Object.entries(appNode.assets)) {
             // If okta/azure asset with no role, change asset name
             const assetName = assetNode.assetName || "No Role (Direct access)";
-            const assetKey = `${assetName} ${chalk_1.default.dim(`[${requests_1.DISPLAY_LABELS[assetNode.type]}]`)}`;
+            cmd.log(`└── ${assetName} ${chalk_1.default.dim(`[${requests_1.DISPLAY_LABELS[assetNode.type]}]`)}`);
             if (assetNode.roles !== undefined) {
-                assetsTree[assetKey] = {};
                 for (const [_roleId, roleNode] of Object.entries(assetNode.roles)) {
                     const roleName = roleNode.roleName;
                     if (roleName !== "") {
                         const roleKey = `${roleName} ${chalk_1.default.dim("[Role]")}`;
-                        assetsTree[assetKey][roleKey] = null;
+                        cmd.log(`    └── ${roleKey}`);
                     }
                 }
             }
-            else {
-                assetsTree[assetKey] = null;
-            }
         }
         // Render tree for this app's assets
-        const assetsTreeString = treeify(assetsTree, options);
-        // Print App title first (without tree lines)
-        cmd.log(`${chalk_1.default.bold(appNode.appName)} ${chalk_1.default.dim("[App]")}`);
-        // Print its assets/roles indented underneath
-        cmd.log(assetsTreeString);
     }
     cmd.log();
 }
@@ -173,12 +154,8 @@ function displayRequestListTable(cmd, requestResp) {
                         ...requestedResources,
                         ...requestedGroups,
                     ].join(", ");
-                    const requestLink = (0, requests_1.getRequestLink)(cmd, request.id);
-                    const clickableId = (0, terminal_link_1.default)(request.id, requestLink, {
-                        fallback: false,
-                    });
                     table.push([
-                        clickableId,
+                        request.id,
                         status,
                         targetUser,
                         formattedDuration,

package/oclif.manifest.json

@@ -376,12 +376,14 @@
         "identity.js"
       ]
     },
-    "groups:get": {
+    "iam-roles:start": {
       "aliases": [],
       "args": {},
-      "description": "Get group info for a particular group.",
+      "description": "Starts a session to assume an IAM role.",
       "examples": [
-        "opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4"
+        "opal iam-roles:start",
+        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
+        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName \"custom-profile\""
       ],
       "flags": {
         "help": {
@@ -398,11 +400,33 @@
           "hasDynamicHelp": false,
           "multiple": false,
           "type": "option"
+        },
+        "sessionId": {
+          "char": "s",
+          "description": "The Opal ID of the session to connect to. Uses an existing session that was created via the web flow.",
+          "name": "sessionId",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
+        },
+        "refresh": {
+          "char": "r",
+          "description": "Starts a new session even if one already exists. Useful if a session is about to expire.",
+          "name": "refresh",
+          "allowNo": false,
+          "type": "boolean"
+        },
+        "profileName": {
+          "description": "Uses a custom AWS profile name for the IAM role. Default value is the role's name.",
+          "name": "profileName",
+          "hasDynamicHelp": false,
+          "multiple": false,
+          "type": "option"
         }
       },
       "hasDynamicHelp": false,
       "hiddenAliases": [],
-      "id": "groups:get",
+      "id": "iam-roles:start",
       "pluginAlias": "opal-security",
       "pluginName": "opal-security",
       "pluginType": "core",
@@ -412,18 +436,16 @@
       "relativePath": [
         "lib",
         "commands",
-        "groups",
-        "get.js"
+        "iam-roles",
+        "start.js"
       ]
     },
-    "iam-roles:start": {
+    "groups:get": {
       "aliases": [],
       "args": {},
-      "description": "Starts a session to assume an IAM role.",
+      "description": "Get group info for a particular group.",
       "examples": [
-        "opal iam-roles:start",
-        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398",
-        "opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName \"custom-profile\""
+        "opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4"
       ],
       "flags": {
         "help": {
@@ -440,33 +462,11 @@
           "hasDynamicHelp": false,
           "multiple": false,
           "type": "option"
-        },
-        "sessionId": {
-          "char": "s",
-          "description": "The Opal ID of the session to connect to. Uses an existing session that was created via the web flow.",
-          "name": "sessionId",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "refresh": {
-          "char": "r",
-          "description": "Starts a new session even if one already exists. Useful if a session is about to expire.",
-          "name": "refresh",
-          "allowNo": false,
-          "type": "boolean"
-        },
-        "profileName": {
-          "description": "Uses a custom AWS profile name for the IAM role. Default value is the role's name.",
-          "name": "profileName",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
         }
       },
       "hasDynamicHelp": false,
       "hiddenAliases": [],
-      "id": "iam-roles:start",
+      "id": "groups:get",
       "pluginAlias": "opal-security",
       "pluginName": "opal-security",
       "pluginType": "core",
@@ -476,8 +476,8 @@
       "relativePath": [
         "lib",
         "commands",
-        "iam-roles",
-        "start.js"
+        "groups",
+        "get.js"
       ]
     },
     "kube-roles:start": {
@@ -595,11 +595,12 @@
           "type": "boolean"
         },
         "action": {
-          "description": "Method of connecting to the database.\n- psql: Start psql session in shell\n- view: View connection configuration details",
+          "description": "Method of connecting to the database.\n- open: Open external database app\n- psql: Start psql session in shell\n- view: View connection configuration details",
           "name": "action",
           "hasDynamicHelp": false,
           "multiple": false,
           "options": [
+            "open",
             "psql",
             "view"
           ],
@@ -636,7 +637,7 @@
         },
         "assets": {
           "char": "a",
-          "description": "The ids of the assets (resource, group) to request access to. Append a role ID using a colon if needed, e.g. `--assets 123:456`.        \n If not provided, an interactive selection flow will be available to select assets to request.",
+          "description": "The ids of the assets (resource, group) to request access to. Append a role name using a colon if needed, e.g. `--assets 123:456`.        \n If not provided, an interactive selection flow will be available to select assets to request.",
           "name": "assets",
           "hasDynamicHelp": false,
           "multiple": true,
@@ -652,7 +653,7 @@
         },
         "duration": {
           "char": "d",
-          "description": "The duration of access for the request in minutes. If not provided, you will be prompted.",
+          "description": "The duration of access for the request in minutes. Pass in a 0 value for permanent access. If not provided, you will be prompted.",
           "name": "duration",
           "hasDynamicHelp": false,
           "multiple": false,
@@ -1030,5 +1031,5 @@
       ]
     }
   },
-  "version": "3.1.1"
+  "version": "3.2.1"
 }

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "opal-security",
   "description": "Opal allows you to centrally manage access to all of your sensitive systems.",
-  "version": "3.1.1",
+  "version": "3.2.1",
   "author": "Stephen Cobbe",
   "bin": {
     "opal": "./bin/run"
@@ -24,12 +24,10 @@
     "lodash": "^4.17.21",
     "moment": "^2.30.1",
     "node-fetch": "^2.6.7",
-    "object-treeify": "^5.0.1",
     "open": "^8.0.4",
     "openid-client": "^5.6.5",
     "prettyjson": "^1.2.1",
     "semver": "^7.5.4",
-    "terminal-link": "^4.0.0",
     "tslib": "^2.8.1"
   },
   "devDependencies": {