pal-explorer-cli 0.4.6 → 0.4.7

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pal-explorer-cli",
-  "version": "0.4.6",
+  "version": "0.4.7",
   "description": "P2P encrypted file sharing CLI — share files directly with friends, not with the cloud",
   "main": "bin/pal.js",
   "bin": {
@@ -9,7 +9,8 @@
   "files": [
     "bin/",
     "lib/",
-    "extensions/",
+    "extensions/@palexplorer/*/extension.json",
+    "extensions/@palexplorer/*/index.js",
     "LICENSE.md"
   ],
   "scripts": {

package/extensions/@palexplorer/analytics/README.md

@@ -1,45 +0,0 @@
-# Analytics Extension
-
-Anonymous, opt-in usage analytics for Palexplorer via PostHog.
-
-## Privacy Guarantees
-
-- **Opt-in only** — disabled by default, must be explicitly enabled
-- **No PII** — device ID is a random UUID, not tied to identity
-- **No content** — never tracks file names, share names, peer identities, or message content
-- **No IP logging** — PostHog configured to anonymize IPs
-- **Transparent** — all tracked events listed below
-
-## Events Tracked
-
-| Event | Properties | When |
-|-------|-----------|------|
-| `app_open` | platform, version, arch | App starts |
-| `app_close` | sessionDurationSec | App closes |
-| `share_created` | visibility, recipientCount | Share created |
-| `share_revoked` | — | Share revoked |
-| `transfer_complete` | size, duration, speed | Download finishes |
-| `peer_connected` | — | Peer connects |
-| `peer_disconnected` | — | Peer disconnects |
-| `settings_changed` | key (setting name only) | Setting modified |
-
-## Configuration
-
-| Key | Type | Default | Description |
-|-----|------|---------|-------------|
-| `enabled` | boolean | `false` | Enable analytics (opt-in) |
-| `posthogKey` | string | (built-in) | PostHog project API key |
-| `posthogHost` | string | `https://us.i.posthog.com` | PostHog host |
-| `sessionTracking` | boolean | `true` | Track session duration |
-
-```bash
-pe ext config analytics enabled true
-pe ext config analytics sessionTracking false
-```
-
-## How to Opt Out
-
-```bash
-pe ext config analytics enabled false
-```
-Or toggle "Usage Analytics" in Settings > Privacy.

package/extensions/@palexplorer/analytics/docs/MONETIZATION.md

@@ -1,14 +0,0 @@
-# Analytics Extension — Monetization
-
-## Tier
-
-- [x] Free — available to all users
-
-## Rationale
-
-Analytics benefits us (product decisions, bug detection, growth tracking), not the user. It must be free and opt-in to maintain trust. Charging for analytics would be counterproductive — we want maximum opt-in rate.
-
-## Revenue Potential
-
-- No direct revenue
-- Indirect value: data-driven feature prioritization, retention insights, conversion tracking for Pro upsells

package/extensions/@palexplorer/analytics/docs/PLAN.md

@@ -1,23 +0,0 @@
-# Analytics Extension — Plan
-
-## Goal
-
-Move PostHog analytics out of core into an extension. Core should be pure P2P with no server dependencies. Analytics phones home to PostHog, so it must be an extension.
-
-## Design
-
-- Bundled extension (`@palexplorer/analytics`) — runs in-process, no sandbox
-- Listens to existing core hooks — no changes to core event emission needed
-- PostHog client initialized only when enabled (opt-in)
-- Device ID stored in extension's own store (not core config)
-- Offline queue with periodic flush — same pattern as before
-- Error reporting (`reportCrash`/`reportError`) stays in core as a safety feature
-
-## What Changed
-
-- Moved from: `lib/core/analytics.js` (PostHog + track functions)
-- Moved to: `extensions/@palexplorer/analytics/index.js`
-- Core `analytics.js` slimmed to error reporting only
-- `posthog-node` dependency moved from root to extension
-- Removed direct `track()` imports from `shares.js`, `transfers.js`, `billing.js`
-- Those events now flow through hooks → analytics extension

package/extensions/@palexplorer/analytics/docs/PRIVACY.md

@@ -1,38 +0,0 @@
-# Analytics Extension — Privacy
-
-## What We Collect
-
-- App open/close events with session duration
-- Feature usage counts (shares, transfers, peer connections)
-- Setting change events (key name only, not values)
-- Platform, app version, architecture
-
-## What We Never Collect
-
-- File names, paths, or content
-- Share names, IDs, or recipients
-- Peer identities, handles, or public keys
-- IP addresses (PostHog IP anonymization enabled)
-- Messages or chat content
-- Encryption keys or credentials
-- Browsing/usage patterns that could identify individuals
-
-## Device ID
-
-A random UUID generated on first use. Not derived from hardware, identity, or any personal data. Stored locally in the extension's store. Can be reset by disabling and re-enabling the extension.
-
-## Data Flow
-
-```
-App Events → Core Hooks → Analytics Extension → PostHog (US Cloud)
-```
-
-No data is sent to Palexplorer servers. Only PostHog receives analytics data.
-
-## User Control
-
-- Disabled by default (opt-in required)
-- Toggle in Settings > Privacy
-- First-launch setup wizard asks for consent
-- Can be disabled at any time via GUI or CLI
-- Disabling immediately stops all data collection

package/extensions/@palexplorer/analytics/test/analytics.test.js

@@ -1,82 +0,0 @@
-import { describe, it, beforeEach, afterEach, mock } from 'node:test';
-import assert from 'node:assert/strict';
-
-function createMockContext(overrides = {}) {
-  const config = { enabled: true, posthogKey: '', posthogHost: '', sessionTracking: true };
-  return {
-    hooks: { on: mock.fn() },
-    config: {
-      get: mock.fn((key) => config[key]),
-      set: mock.fn((key, val) => { config[key] = val; }),
-    },
-    store: {
-      get: mock.fn(() => undefined),
-      set: mock.fn(),
-      delete: mock.fn(),
-    },
-    logger: { info: mock.fn(), warn: mock.fn(), error: mock.fn() },
-    app: { version: '0.5.0', platform: 'linux', dataDir: '/tmp/test', appRoot: '/tmp/test' },
-    ...overrides,
-  };
-}
-
-describe('analytics extension', () => {
-  let ext;
-  let ctx;
-
-  beforeEach(async () => {
-    ext = await import('../index.js');
-    ctx = createMockContext();
-  });
-
-  afterEach(async () => {
-    await ext.deactivate();
-  });
-
-  it('should register all expected hooks when enabled', async () => {
-    await ext.activate(ctx);
-    const hookNames = ctx.hooks.on.mock.calls.map(c => c.arguments[0]);
-    assert.ok(hookNames.includes('on:app:ready'));
-    assert.ok(hookNames.includes('on:app:shutdown'));
-    assert.ok(hookNames.includes('after:share:create'));
-    assert.ok(hookNames.includes('after:download:complete'));
-    assert.ok(hookNames.includes('on:config:change'));
-  });
-
-  it('should still register hooks when disabled (for hot-enable support)', async () => {
-    ctx.config.get = mock.fn((key) => key === 'enabled' ? false : undefined);
-    await ext.activate(ctx);
-    // Hooks are always registered so analytics can be hot-enabled via config change
-    const hookNames = ctx.hooks.on.mock.calls.map(c => c.arguments[0]);
-    assert.ok(hookNames.includes('on:config:change'));
-    assert.ok(hookNames.includes('on:app:shutdown'));
-  });
-
-  it('should deactivate cleanly', async () => {
-    await ext.activate(ctx);
-    await ext.deactivate();
-  });
-
-  it('should generate and persist device ID', async () => {
-    await ext.activate(ctx);
-    // Device ID is generated on first track call — trigger via hook
-    // The store.set should be called with deviceId
-    const setCalls = ctx.store.set.mock.calls;
-    const deviceIdCall = setCalls.find(c => c.arguments[0] === 'deviceId');
-    if (deviceIdCall) {
-      assert.ok(deviceIdCall.arguments[1].length > 0);
-    }
-  });
-
-  it('should reuse existing device ID', async () => {
-    const existingId = 'test-uuid-1234';
-    ctx.store.get = mock.fn((key) => key === 'deviceId' ? existingId : undefined);
-    await ext.activate(ctx);
-  });
-
-  it('should queue events when offline', async () => {
-    await ext.activate(ctx);
-    ext.setOnline(false);
-    ext.setOnline(true);
-  });
-});