pal-explorer-cli 0.4.11 → 0.4.13

package/README.md

@@ -1,149 +1,149 @@
-# Pal Explorer (`pe`)
-
-[![npm](https://img.shields.io/npm/v/pal-explorer-cli)](https://www.npmjs.com/package/pal-explorer-cli)
-[![license](https://img.shields.io/badge/license-proprietary-red)](LICENSE)
-[![node](https://img.shields.io/badge/node-%3E%3D20-brightgreen)](https://nodejs.org/)
-
-> Peer-to-peer file sharing with end-to-end encryption. No cloud. No middleman.
-
-Pal Explorer lets you share files directly with friends using P2P protocols. Files are encrypted before leaving your device, transferred via WebTorrent, and only decryptable by intended recipients.
-
-**All features free during beta.** Download at [palexplorer.com](https://palexplorer.com).
-
-## Quick Start
-
-```bash
-# Install CLI globally
-npm install -g pal-explorer-cli
-
-# Create your identity
-pe init "YourName"
-# Save the 24-word recovery phrase!
-
-# Share a folder with a friend
-pe share ~/Documents --visibility private --with Alice
-
-# Start seeding
-pe serve
-
-# Download from a peer
-pe download "magnet:?xt=urn:btih:..."
-```
-
-### Adding Friends
-
-```bash
-pe invite --qr              # Generate invite link + QR code
-pe pal add @alice            # Add by handle
-pe pal add pal://eyJ...     # Add by invite link
-pe nearby --add             # Auto-discover on LAN
-```
-
-## Features
-
-### File Sharing
-- Share files, folders, or entire drives via WebTorrent
-- Private shares with per-recipient E2EE (XChaCha20-Poly1305)
-- Public shares with global magnet links
-- Web share links with expiry and download limits
-
-### Sync
-- Push/pull directory sync between pals
-- SHA-256 manifest-based delta sync
-- Watch mode for automatic sync on file changes
-- Conflict detection
-
-### Chat
-- Real-time encrypted messaging between pals
-- Chat history with conversation list
-
-### Groups
-- Create named groups and organize pals
-- Share with entire groups in one command (`--with-group`)
-- Broadcast messages to all group members
-
-### Discovery & Presence
-- LAN peer discovery via mDNS
-- Federated handle system (`@alice@server.com`)
-- DHT-based decentralized fallback
-- Online/offline presence status
-
-### Security
-- **Ed25519 identities** with private keys stored in OS credential manager
-- **XChaCha20-Poly1305** authenticated encryption for all private shares
-- **Per-recipient key wrapping** -- each recipient gets a uniquely encrypted share key
-- **Key rotation on revocation** -- removing a recipient triggers re-encryption
-- **BIP-39 recovery** -- 24-word mnemonic phrase for identity backup
-- **Zero-knowledge server** -- discovery server never sees your private key or files
-- **Signed server responses** -- clients verify server authenticity
-- **Encrypted inbox** -- message payloads encrypted end-to-end
-- **PIN lock** -- protect the desktop app with a PIN code
-
-## CLI
-
-The `pe` CLI includes 100+ subcommands.
-
-### Key Commands
-
-```bash
-pe init <name>                    # Create identity
-pe register <handle>              # Register on discovery network
-pe share <path> -v private -w bob # Share encrypted with a pal
-pe serve                          # Start seeding
-pe download <magnet>              # Download from magnet link
-pe pal add @alice                 # Add a pal by handle
-pe sync push ./project alice      # Push sync to a pal
-pe status                         # System health dashboard
-pe ext list                       # List available extensions
-```
-
-### Global Flags
-
-| Flag | Description |
-|:---|:---|
-| `--json` | Output as JSON |
-| `--verbose` | Verbose logging |
-| `--quiet` | Suppress non-essential output |
-
-Run `pe --help` or `pe <command> --help` for full usage.
-
-## Desktop App
-
-Download the desktop app at [palexplorer.com/download](https://palexplorer.com/download).
-
-Features: setup wizard, dark/light themes, system tray, drag-and-drop sharing, P2P chat, PIN lock, media streaming, extensions, file explorer, command palette (Ctrl+K), and workspaces.
-
-## Extensions
-
-14 built-in extensions including virtual drive (WebDAV), folder sync, chat, groups, discovery, OAuth login, email notifications, and more. All free during beta.
-
-Browse extensions at [palexplorer.com/extensions](https://palexplorer.com/extensions).
-
-```bash
-pe ext list                              # List all extensions
-pe ext enable @palexplorer/vfs           # Enable an extension
-pe ext config @palexplorer/vfs port 1900 # Configure
-```
-
-## Configuration
-
-| Key | Default | Description |
-|:---|:---|:---|
-| `port` | auto | Local seeder port |
-| `storage_path` | `./downloads` | Default download directory |
-| `max_connections` | `50` | Max P2P connections |
-| `bandwidth_cap` | `0` | Upload cap in KB/s (0 = unlimited) |
-
-Config file: `~/.config/palexplorer-cli/config.json`
-
-## Links
-
-- [Website](https://palexplorer.com)
-- [Download](https://palexplorer.com/download)
-- [Extensions](https://palexplorer.com/extensions)
-- [Marketplace](https://palexplorer.com/marketplace)
-- [Discord](https://discord.gg/VrCcGmNJ8Q)
-
-## License
-
-Proprietary. All rights reserved. See [LICENSE.md](LICENSE.md).
+# Pal Explorer (`pal`)
+
+[![npm](https://img.shields.io/npm/v/pal-explorer-cli)](https://www.npmjs.com/package/pal-explorer-cli)
+[![license](https://img.shields.io/badge/license-proprietary-red)](LICENSE)
+[![node](https://img.shields.io/badge/node-%3E%3D20-brightgreen)](https://nodejs.org/)
+
+> Peer-to-peer file sharing with end-to-end encryption. No cloud. No middleman.
+
+Pal Explorer lets you share files directly with friends using P2P protocols. Files are encrypted before leaving your device, transferred via WebTorrent, and only decryptable by intended recipients.
+
+**All features free during beta.** Download at [palexplorer.com](https://palexplorer.com).
+
+## Quick Start
+
+```bash
+# Install CLI globally
+npm install -g pal-explorer-cli
+
+# Create your identity
+pal init "YourName"
+# Save the 24-word recovery phrase!
+
+# Share a folder with a friend
+pal share ~/Documents --visibility private --with Alice
+
+# Start seeding
+pal serve
+
+# Download from a peer
+pal download "magnet:?xt=urn:btih:..."
+```
+
+### Adding Friends
+
+```bash
+pal invite --qr              # Generate invite link + QR code
+pal pal add @alice            # Add by handle
+pal pal add pal://eyJ...     # Add by invite link
+pal nearby --add             # Auto-discover on LAN
+```
+
+## Features
+
+### File Sharing
+- Share files, folders, or entire drives via WebTorrent
+- Private shares with per-recipient E2EE (XChaCha20-Poly1305)
+- Public shares with global magnet links
+- Web share links with expiry and download limits
+
+### Sync
+- Push/pull directory sync between pals
+- SHA-256 manifest-based delta sync
+- Watch mode for automatic sync on file changes
+- Conflict detection
+
+### Chat
+- Real-time encrypted messaging between pals
+- Chat history with conversation list
+
+### Groups
+- Create named groups and organize pals
+- Share with entire groups in one command (`--with-group`)
+- Broadcast messages to all group members
+
+### Discovery & Presence
+- LAN peer discovery via mDNS
+- Federated handle system (`@alice@server.com`)
+- DHT-based decentralized fallback
+- Online/offline presence status
+
+### Security
+- **Ed25519 identities** with private keys stored in OS credential manager
+- **XChaCha20-Poly1305** authenticated encryption for all private shares
+- **Per-recipient key wrapping** -- each recipient gets a uniquely encrypted share key
+- **Key rotation on revocation** -- removing a recipient triggers re-encryption
+- **BIP-39 recovery** -- 24-word mnemonic phrase for identity backup
+- **Zero-knowledge server** -- discovery server never sees your private key or files
+- **Signed server responses** -- clients verify server authenticity
+- **Encrypted inbox** -- message payloads encrypted end-to-end
+- **PIN lock** -- protect the desktop app with a PIN code
+
+## CLI
+
+The `pal` CLI includes 100+ subcommands.
+
+### Key Commands
+
+```bash
+pal init <name>                    # Create identity
+pal register <handle>              # Register on discovery network
+pal share <path> -v private -w bob # Share encrypted with a pal
+pal serve                          # Start seeding
+pal download <magnet>              # Download from magnet link
+pal pal add @alice                 # Add a pal by handle
+pal sync push ./project alice      # Push sync to a pal
+pal status                         # System health dashboard
+pal ext list                       # List available extensions
+```
+
+### Global Flags
+
+| Flag | Description |
+|:---|:---|
+| `--json` | Output as JSON |
+| `--verbose` | Verbose logging |
+| `--quiet` | Suppress non-essential output |
+
+Run `pe --help` or `pe <command> --help` for full usage.
+
+## Desktop App
+
+Download the desktop app at [palexplorer.com/download](https://palexplorer.com/download).
+
+Features: setup wizard, dark/light themes, system tray, drag-and-drop sharing, P2P chat, PIN lock, media streaming, extensions, file explorer, command palette (Ctrl+K), and workspaces.
+
+## Extensions
+
+14 built-in extensions including virtual drive (WebDAV), folder sync, chat, groups, discovery, OAuth login, email notifications, and more. All free during beta.
+
+Browse extensions at [palexplorer.com/extensions](https://palexplorer.com/extensions).
+
+```bash
+pal ext list                              # List all extensions
+pal ext enable @palexplorer/vfs           # Enable an extension
+pal ext config @palexplorer/vfs port 1900 # Configure
+```
+
+## Configuration
+
+| Key | Default | Description |
+|:---|:---|:---|
+| `port` | auto | Local seeder port |
+| `storage_path` | `./downloads` | Default download directory |
+| `max_connections` | `50` | Max P2P connections |
+| `bandwidth_cap` | `0` | Upload cap in KB/s (0 = unlimited) |
+
+Config file: `~/.config/palexplorer-cli/config.json`
+
+## Links
+
+- [Website](https://palexplorer.com)
+- [Download](https://palexplorer.com/download)
+- [Extensions](https://palexplorer.com/extensions)
+- [Marketplace](https://palexplorer.com/marketplace)
+- [Discord](https://discord.gg/VrCcGmNJ8Q)
+
+## License
+
+Proprietary. All rights reserved. See [LICENSE.md](LICENSE.md).

package/bin/pal.js

@@ -47,7 +47,7 @@ if (logLevelIdx !== -1 && process.argv[logLevelIdx + 1]) {
 logger.applyGlobalOverride();
 
 program
-  .name('pe')
+  .name('pal')
   .description('p2p file sharing for friends')
   .version('0.4.0')
   .option('--json', 'output in JSON format')
@@ -173,10 +173,11 @@ ${chalk.cyan.bold('Command Groups:')}
   ${chalk.yellow('Pro:')}          backup, api-keys
   ${chalk.yellow('Streaming:')}    stream local/remote/stop/status/broadcast/join/transport
   ${chalk.yellow('Extensions:')}   ext list/install/remove/enable/disable/info/config/create
+  ${chalk.yellow('Ext Commands:')} <ext-name> <command> (run commands contributed by extensions)
   ${chalk.yellow('Orgs:')}         org create/list/info/invite/remove/subscribe/unsubscribe/billing
   ${chalk.yellow('Utilities:')}    status, log, completion, gui-share, uninstall
 
-${chalk.gray('Aliases: pe connect → pe network connect, pe disconnect → pe network disconnect')}
+${chalk.gray('Aliases: pal connect → pal network connect, pal disconnect → pal network disconnect')}
 `);
 
 // Load extensions and emit lifecycle hooks
@@ -193,6 +194,59 @@ if (!isVersionOrHelp) {
     const cleaned = cleanStaleTransfers(24);
     if (cleaned > 0) console.log(`[transfers] Cleaned ${cleaned} stale transfer(s)`);
 
+    // Register extension-contributed CLI commands
+    const { getContributedCommands, invokeExtensionCommand } = await import('../lib/core/extensions.js');
+    const coreCommandNames = new Set(commands.map(c => c[0]));
+    const extCommands = getContributedCommands();
+    for (const { extension, commands: cmds } of extCommands) {
+      // Prevent namespace collision with core commands
+      const shortName = extension.replace(/^@palexplorer\//, '');
+      if (coreCommandNames.has(shortName) || coreCommandNames.has(extension)) {
+        console.warn(`[extensions] Skipping commands from ${extension}: name conflicts with core command`);
+        continue;
+      }
+      // Each extension gets a parent command: pal <ext-name> <subcommand>
+      const extCmd = program.command(extension).description(`Commands from ${extension} extension`);
+      for (const cmd of cmds) {
+        const parts = cmd.name.split(' ');
+        let target = extCmd;
+        // Support nested subcommands like "scan report"
+        if (parts.length > 1) {
+          for (let i = 0; i < parts.length - 1; i++) {
+            const existing = target.commands.find(c => c.name() === parts[i]);
+            target = existing || target.command(parts[i]);
+          }
+        }
+        const leafName = parts[parts.length - 1];
+        let cmdDef = leafName;
+        for (const arg of cmd.args) {
+          cmdDef += arg.required ? ` <${arg.name}>` : ` [${arg.name}]`;
+        }
+        const sub = target.command(cmdDef).description(cmd.description);
+        for (const opt of cmd.options) {
+          sub.option(opt.flags, opt.description);
+        }
+        sub.action(async (...actionArgs) => {
+          const opts = actionArgs[actionArgs.length - 1]?.opts?.() || actionArgs[actionArgs.length - 1] || {};
+          const positional = {};
+          cmd.args.forEach((arg, i) => { positional[arg.name] = actionArgs[i]; });
+          try {
+            const result = await invokeExtensionCommand(extension, cmd.name, positional, opts);
+            if (program.opts().json) {
+              console.log(JSON.stringify(result, null, 2));
+            } else if (result?.message) {
+              console.log(result.message);
+            } else if (result && typeof result === 'object') {
+              console.log(JSON.stringify(result, null, 2));
+            }
+          } catch (err) {
+            console.error(chalk.red(`[${extension}] ${err.message}`));
+            process.exitCode = 1;
+          }
+        });
+      }
+    }
+
     const identity = (await import('../lib/utils/config.js')).default.get('identity');
     await hooks.emit('on:app:ready', {
       version: program.version(),
@@ -227,5 +281,12 @@ if (!process.argv.slice(2).length) {
 // keytar's native D-Bus handles block the event loop on headless Linux
 const longRunning = new Set(['serve', 'nearby', 'stream']);
 if (!longRunning.has(currentCmd)) {
+  // Flush analytics and run shutdown hooks before exiting
+  if (extensionsLoaded) {
+    try {
+      const { hooks } = await import('../lib/core/extensions.js');
+      await hooks.emit('on:app:shutdown', {});
+    } catch {}
+  }
   process.exit(process.exitCode || 0);
 }

package/extensions/@palexplorer/analytics/extension.json

@@ -1,6 +1,6 @@
 {
   "name": "analytics",
-  "version": "1.0.0",
+  "version": "1.1.0",
   "description": "Anonymous usage analytics via PostHog — opt-in, no PII, privacy-safe",
   "author": "Palexplorer Team",
   "license": "MIT",
@@ -22,6 +22,25 @@
     "posthogHost": { "type": "string", "default": "https://us.i.posthog.com", "description": "PostHog ingestion host" },
     "sessionTracking": { "type": "boolean", "default": true, "description": "Track session duration" }
   },
+  "help": {
+    "summary": "Tracks anonymous usage events (shares, downloads, sessions) via PostHog. No personal data is collected — only platform, version, and event counts.",
+    "usage": "Enabled by default. Disable with: pal ext config analytics enabled false",
+    "examples": [
+      "pal ext config analytics enabled false",
+      "pal ext config analytics posthogHost https://eu.posthog.com",
+      "pal ext config analytics sessionTracking false"
+    ],
+    "configReference": {
+      "enabled": "Enable or disable analytics collection (true/false)",
+      "posthogKey": "PostHog project API key. Leave default unless self-hosting PostHog",
+      "posthogHost": "PostHog ingestion endpoint URL",
+      "sessionTracking": "Track how long the app is open per session (true/false)"
+    },
+    "links": {
+      "PostHog": "https://posthog.com",
+      "Privacy Policy": "https://palexplorer.com/privacy"
+    }
+  },
   "tier": "free",
   "minAppVersion": "0.4.0"
 }

package/extensions/@palexplorer/analytics/index.js

@@ -23,7 +23,8 @@ function getDeviceId() {
 }
 
 function isEnabled() {
-  return ctx.config.get('enabled') === true;
+  const v = ctx.config.get('enabled');
+  return v === true || v === undefined;
 }
 
 function baseProperties() {
@@ -37,20 +38,24 @@ function baseProperties() {
 async function initPostHog() {
   if (posthog) return;
   try {
-    // Resolve posthog-node from the app's node_modules (deployed extensions can't resolve from their own path)
     let PostHog;
-    try {
-      const appRoot = ctx.app.appRoot || process.cwd();
-      const require = createRequire(appRoot + '/package.json');
-      PostHog = require('posthog-node').PostHog;
-    } catch {
+    const appRoot = ctx.app.appRoot || process.cwd();
+    // Try multiple resolution strategies for posthog-node
+    const strategies = [
+      () => { const r = createRequire(appRoot + '/package.json'); return r('posthog-node').PostHog; },
+      () => { const r = createRequire(process.cwd() + '/package.json'); return r('posthog-node').PostHog; },
+    ];
+    for (const strategy of strategies) {
+      try { PostHog = strategy(); break; } catch {}
+    }
+    if (!PostHog) {
       PostHog = (await import('posthog-node')).PostHog;
     }
     const key = ctx.config.get('posthogKey') || DEFAULT_POSTHOG_KEY;
     const host = ctx.config.get('posthogHost') || 'https://us.i.posthog.com';
     posthog = new PostHog(key, { host, flushAt: 20, flushInterval: FLUSH_INTERVAL });
   } catch (err) {
-    ctx.logger.warn('PostHog not available:', err.message);
+    ctx.logger.warn('PostHog init failed:', err.message);
   }
 }
 
@@ -98,7 +103,12 @@ async function startTracking() {
   sessionStart = Date.now();
   initialized = true;
   track('app_open');
-  ctx.logger.info('Analytics enabled — PostHog tracking started');
+  if (posthog) {
+    await posthog.flush().catch(() => {});
+    ctx.logger.info('Analytics enabled — PostHog tracking started');
+  } else {
+    ctx.logger.warn('Analytics enabled but PostHog failed to initialize — events will not be sent');
+  }
 }
 
 export async function activate(context) {

package/extensions/@palexplorer/audit/extension.json

@@ -13,5 +13,19 @@
     ]
   },
   "config": { "enabled": { "type": "boolean", "default": false } },
+  "help": {
+    "summary": "Records all share, transfer, and access events in a searchable audit trail. View who accessed what and when.",
+    "usage": "Enable: pal ext config audit enabled true. View logs: pal audit",
+    "examples": [
+      "pal ext config audit enabled true",
+      "pal audit",
+      "pal audit --filter share --after 2026-01-01",
+      "pal compliance export --format csv"
+    ],
+    "configReference": {
+      "enabled": "Enable or disable audit trail logging (true/false)"
+    },
+    "links": {}
+  },
   "tier": "free"
 }

package/extensions/@palexplorer/auth-email/extension.json

@@ -12,6 +12,21 @@
     "verifiedEmail": { "type": "string", "default": "", "description": "Currently verified email" },
     "verifiedToken": { "type": "string", "default": "", "description": "Verified JWT token" }
   },
+  "help": {
+    "summary": "Links your email address to your Palexplorer identity for verification badges and account recovery. Uses the discovery server to send verification codes.",
+    "usage": "pal auth link-email <email> — starts the verification flow",
+    "examples": [
+      "pal auth link-email user@example.com",
+      "pal auth verify-email <code>",
+      "pal auth status"
+    ],
+    "configReference": {
+      "server": "Discovery server URL used for email verification (default: discovery-1.palexplorer.com)",
+      "verifiedEmail": "Your currently verified email address (set automatically after verification)",
+      "verifiedToken": "JWT verification token (set automatically, do not edit)"
+    },
+    "links": {}
+  },
   "tier": "free",
   "minAppVersion": "0.5.0"
 }

package/extensions/@palexplorer/auth-oauth/extension.json

@@ -11,6 +11,21 @@
     "providers": { "type": "array", "default": ["google", "github", "microsoft"], "description": "Enabled OAuth providers" },
     "autoLink": { "type": "boolean", "default": true, "description": "Automatically link OAuth identity to Palexplorer identity" }
   },
+  "help": {
+    "summary": "Sign in with Google, GitHub, or Microsoft using OAuth 2.0 PKCE flow. Links your social identity to your Palexplorer handle.",
+    "usage": "pal auth oauth <provider> — starts OAuth login flow in your browser",
+    "examples": [
+      "pal auth oauth google",
+      "pal auth oauth github",
+      "pal ext config auth-oauth providers '[\"google\",\"github\"]'",
+      "pal ext config auth-oauth autoLink false"
+    ],
+    "configReference": {
+      "providers": "List of enabled OAuth providers: google, github, microsoft",
+      "autoLink": "Automatically link the OAuth identity to your Palexplorer handle (true/false)"
+    },
+    "links": {}
+  },
   "tier": "free",
   "minAppVersion": "0.5.0"
 }

package/extensions/@palexplorer/chat/extension.json

@@ -13,5 +13,19 @@
     ]
   },
   "config": { "enabled": { "type": "boolean", "default": false } },
+  "help": {
+    "summary": "End-to-end encrypted 1:1 messaging. Messages transfer directly via WebSocket when both peers are online, or queue through the discovery server inbox when offline.",
+    "usage": "pal chat send <handle> <message>",
+    "examples": [
+      "pal chat send alice 'Hey, check out my new share!'",
+      "pal chat history alice",
+      "pal chat fetch",
+      "pal chat flush"
+    ],
+    "configReference": {
+      "enabled": "Enable or disable the chat feature (true/false)"
+    },
+    "links": {}
+  },
   "tier": "free"
 }

package/extensions/@palexplorer/discovery/extension.json

@@ -13,6 +13,23 @@
     "refreshInterval": { "type": "number", "default": 1800000, "description": "Server list refresh interval in ms (default: 30 min)" },
     "enableGossip": { "type": "boolean", "default": true, "description": "Exchange server lists with connected peers" }
   },
+  "help": {
+    "summary": "Connects to discovery servers for @handle registration, online presence, and peer finding. Supports DHT-based gossip to discover additional servers automatically.",
+    "usage": "pal ext config discovery enabled true",
+    "examples": [
+      "pal ext config discovery enabled true",
+      "pal server list",
+      "pal server add https://my-server.example.com",
+      "pal ext config discovery enableGossip false"
+    ],
+    "configReference": {
+      "enabled": "Enable or disable discovery server integration (true/false)",
+      "bootstrapServers": "List of discovery server URLs to connect to on startup",
+      "refreshInterval": "How often to refresh the server list, in milliseconds (default: 30 min)",
+      "enableGossip": "Exchange server lists with connected peers for automatic discovery (true/false)"
+    },
+    "links": {}
+  },
   "tier": "free",
   "minAppVersion": "0.4.0"
 }

package/extensions/@palexplorer/discovery/index.js

@@ -114,7 +114,7 @@ export async function onGossipServers(servers) {
   }
 }
 
-// Export for pe server list to show source
+// Export for pal server list to show source
 export function getPublicKey() {
   return SERVER_LIST_PUBLIC_KEY;
 }

package/extensions/@palexplorer/email-notifications/extension.json

@@ -18,6 +18,29 @@
     "toAddress": { "type": "string", "default": "", "description": "Recipient email address" },
     "events": { "type": "array", "default": ["share:invite", "transfer:complete", "security:alert"], "description": "Enabled event types" }
   },
+  "help": {
+    "summary": "Sends email notifications when shares are created, transfers complete, peers connect/disconnect, or security events occur. Supports SMTP, SendGrid, Mailgun, and Resend.",
+    "usage": "Configure your email provider, then enable events you want notifications for.",
+    "examples": [
+      "pal ext config email-notifications provider smtp",
+      "pal ext config email-notifications smtpHost smtp.gmail.com",
+      "pal ext config email-notifications smtpUser you@gmail.com",
+      "pal ext config email-notifications toAddress alerts@example.com",
+      "pal ext config email-notifications events '[\"share:invite\",\"security:alert\"]'"
+    ],
+    "configReference": {
+      "provider": "Email service: smtp, sendgrid, mailgun, or resend",
+      "smtpHost": "SMTP server hostname (e.g. smtp.gmail.com)",
+      "smtpPort": "SMTP server port (587 for TLS, 465 for SSL)",
+      "smtpUser": "SMTP authentication username",
+      "smtpPass": "SMTP authentication password",
+      "apiKey": "API key when using SendGrid, Mailgun, or Resend",
+      "fromAddress": "Sender email address shown in notifications",
+      "toAddress": "Email address to receive notifications",
+      "events": "Event types to notify on: share:invite, transfer:complete, peer:connect, peer:disconnect, security:alert"
+    },
+    "links": {}
+  },
   "tier": "free",
   "minAppVersion": "0.5.0"
 }

package/extensions/@palexplorer/groups/extension.json

@@ -13,5 +13,20 @@
     ]
   },
   "config": { "enabled": { "type": "boolean", "default": false } },
+  "help": {
+    "summary": "Organize pals into groups. Share files with entire groups at once — all current and future members get access. Free: 2 groups, Pro: 20, Enterprise: unlimited.",
+    "usage": "pal group create <name>",
+    "examples": [
+      "pal group create 'Team Alpha'",
+      "pal group add 'Team Alpha' alice bob charlie",
+      "pal group list",
+      "pal group broadcast 'Team Alpha' 'Meeting in 10 min'",
+      "pal share ./docs --recipients group:Team Alpha"
+    ],
+    "configReference": {
+      "enabled": "Enable or disable the groups feature (true/false)"
+    },
+    "links": {}
+  },
   "tier": "free"
 }