npm - perplexity-user-mcp - Versions diffs - 0.8.36 - Mend

perplexity-user-mcp 0.8.36

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (125) hide show

package/README.md +192 -0
package/dist/attachments.d.ts +20 -0
package/dist/attachments.mjs +43 -0
package/dist/checks/browser.d.ts +100 -0
package/dist/checks/browser.mjs +89 -0
package/dist/checks/config.d.ts +91 -0
package/dist/checks/config.mjs +88 -0
package/dist/checks/ide.d.ts +89 -0
package/dist/checks/ide.mjs +80 -0
package/dist/checks/mcp.d.ts +61 -0
package/dist/checks/mcp.mjs +56 -0
package/dist/checks/native-deps.d.ts +131 -0
package/dist/checks/native-deps.mjs +115 -0
package/dist/checks/network.d.ts +71 -0
package/dist/checks/network.mjs +70 -0
package/dist/checks/probe.d.ts +93 -0
package/dist/checks/probe.mjs +82 -0
package/dist/checks/profiles.d.ts +99 -0
package/dist/checks/profiles.mjs +90 -0
package/dist/checks/runtime.d.ts +89 -0
package/dist/checks/runtime.mjs +90 -0
package/dist/checks/vault.d.ts +101 -0
package/dist/checks/vault.mjs +90 -0
package/dist/chunk-3B276PGG.mjs +115 -0
package/dist/chunk-4UEJOM6W.mjs +9 -0
package/dist/chunk-6EP2BLTV.mjs +205 -0
package/dist/chunk-6YMQVLFX.mjs +146 -0
package/dist/chunk-7JL36EBH.mjs +118 -0
package/dist/chunk-DPGMKSSA.mjs +57 -0
package/dist/chunk-H4BUAPPO.mjs +1950 -0
package/dist/chunk-HMKLWVXB.mjs +109 -0
package/dist/chunk-HTUAQRKH.mjs +125 -0
package/dist/chunk-HU5B4FXS.mjs +139 -0
package/dist/chunk-KCXM2M4B.mjs +1006 -0
package/dist/chunk-LKJMLGFP.mjs +237 -0
package/dist/chunk-LZPLNZ5U.mjs +67 -0
package/dist/chunk-MTDFKNXX.mjs +19 -0
package/dist/chunk-OF4DMAPJ.mjs +511 -0
package/dist/chunk-PE23RMXY.mjs +43 -0
package/dist/chunk-Q2VY4R5F.mjs +175 -0
package/dist/chunk-S5VD7WTU.mjs +2540 -0
package/dist/chunk-SVPRB62V.mjs +106 -0
package/dist/chunk-TQLCLE4L.mjs +345 -0
package/dist/chunk-U3DGFLXZ.mjs +43 -0
package/dist/chunk-X45O6YD3.mjs +688 -0
package/dist/chunk-XKSWCEGI.mjs +168 -0
package/dist/chunk-Z7DAACGZ.mjs +534 -0
package/dist/chunk-ZQFUZPLO.mjs +257 -0
package/dist/cli.d.ts +952 -0
package/dist/cli.mjs +827 -0
package/dist/client.d.ts +355 -0
package/dist/client.mjs +27 -0
package/dist/cloud-sync.d-Cqt6y18U.d.ts +42 -0
package/dist/cloud-sync.d.ts +42 -0
package/dist/cloud-sync.mjs +17 -0
package/dist/config.d.ts +186 -0
package/dist/config.mjs +54 -0
package/dist/daemon/attach.d.ts +36 -0
package/dist/daemon/attach.mjs +25 -0
package/dist/daemon/audit.d.ts +23 -0
package/dist/daemon/audit.mjs +12 -0
package/dist/daemon/client-http.d.ts +42 -0
package/dist/daemon/client-http.mjs +29 -0
package/dist/daemon/index.d.ts +14 -0
package/dist/daemon/index.mjs +110 -0
package/dist/daemon/install-tunnel.d.ts +46 -0
package/dist/daemon/install-tunnel.mjs +14 -0
package/dist/daemon/launcher.d.ts +163 -0
package/dist/daemon/launcher.mjs +50 -0
package/dist/daemon/lockfile.d.ts +29 -0
package/dist/daemon/lockfile.mjs +18 -0
package/dist/daemon/server.d.ts +159 -0
package/dist/daemon/server.mjs +20 -0
package/dist/daemon/token.d.ts +17 -0
package/dist/daemon/token.mjs +17 -0
package/dist/daemon/tunnel-providers/index.d.ts +330 -0
package/dist/daemon/tunnel-providers/index.mjs +57 -0
package/dist/daemon/tunnel.d.ts +23 -0
package/dist/daemon/tunnel.mjs +9 -0
package/dist/doctor-report.d.ts +24 -0
package/dist/doctor-report.mjs +14 -0
package/dist/doctor.d-CXmUqOXX.d.ts +43 -0
package/dist/doctor.d.ts +44 -0
package/dist/doctor.mjs +16 -0
package/dist/export.d.ts +19 -0
package/dist/export.mjs +15 -0
package/dist/health-check.d.ts +108 -0
package/dist/health-check.mjs +92 -0
package/dist/history-store.d-BzjBF2m3.d.ts +65 -0
package/dist/history-store.d.ts +65 -0
package/dist/history-store.mjs +48 -0
package/dist/impit-login-runner.d.ts +469 -0
package/dist/impit-login-runner.mjs +685 -0
package/dist/index.d.ts +159 -0
package/dist/index.mjs +236 -0
package/dist/login-runner.d.ts +333 -0
package/dist/login-runner.mjs +320 -0
package/dist/logout.d.ts +28 -0
package/dist/logout.mjs +45 -0
package/dist/manual-login-runner.d.ts +150 -0
package/dist/manual-login-runner.mjs +146 -0
package/dist/native-deps-BNThFHxa.d.ts +175 -0
package/dist/native-deps-YNKXITRY.mjs +139 -0
package/dist/profiles.d-DqS1oZWr.d.ts +41 -0
package/dist/profiles.d.ts +41 -0
package/dist/profiles.mjs +33 -0
package/dist/redact.d.ts +159 -0
package/dist/redact.mjs +11 -0
package/dist/refresh.d.ts +118 -0
package/dist/refresh.mjs +21 -0
package/dist/reinit-watcher.d.ts +15 -0
package/dist/reinit-watcher.mjs +8 -0
package/dist/session-metadata-B9aV_n5g.d.ts +148 -0
package/dist/tty-prompt.d.ts +44 -0
package/dist/tty-prompt.mjs +39 -0
package/dist/vault.d-BtRSLZiM.d.ts +8 -0
package/dist/vault.d.ts +37 -0
package/dist/vault.mjs +21 -0
package/dist/viewer-detect.d-HWGnyFAA.d.ts +4 -0
package/dist/viewer-detect.d.ts +4 -0
package/dist/viewer-detect.mjs +37 -0
package/dist/viewers.d-BGCK6sw6.d.ts +10 -0
package/dist/viewers.d.ts +18 -0
package/dist/viewers.mjs +122 -0
package/package.json +152 -0

package/dist/cli.d.ts ADDED Viewed

@@ -0,0 +1,952 @@
+import { execFile as execFile$1 } from 'node:child_process';
+import { readFileSync, existsSync, mkdirSync, writeFileSync } from 'node:fs';
+import { homedir } from 'node:os';
+import { join, dirname } from 'node:path';
+import { promisify } from 'node:util';
+import { pathToFileURL, fileURLToPath } from 'node:url';
+// Shebang is added by tsup banner for the built dist/cli.mjs so the bin entry
+// works as a CLI. Kept out of source so vitest/esbuild can parse this file
+// during tests.
+const execFile = promisify(execFile$1);
+function parseArgs(argv) {
+  if (argv.length === 0) return { command: "server", flags: {} };
+  const first = argv[0];
+  if (first === "--version" || first === "-v") return { command: "version", flags: {} };
+  if (first === "--help" || first === "-h") return { command: "help", flags: {} };
+  if (first === "daemon") {
+    const subcommand = argv[1] ?? "help";
+    const flags = {};
+    const positional = [];
+    for (let i = 2; i < argv.length; i++) {
+      const a = argv[i];
+      if (a.startsWith("--")) {
+        const key = a.slice(2);
+        const next = argv[i + 1];
+        if (next === undefined || next.startsWith("--")) {
+          flags[key] = true;
+        } else {
+          flags[key] = next;
+          i++;
+        }
+      } else {
+        positional.push(a);
+      }
+    }
+    return { command: `daemon:${subcommand}`, flags, positional };
+  }
+  const command = first;
+  const flags = {};
+  let positional = [];
+  for (let i = 1; i < argv.length; i++) {
+    const a = argv[i];
+    if (a.startsWith("--")) {
+      const key = a.slice(2);
+      const next = argv[i + 1];
+      if (next === undefined || next.startsWith("--")) {
+        flags[key] = true;
+      } else {
+        flags[key] = next;
+        i++;
+      }
+    } else {
+      positional.push(a);
+    }
+  }
+  return { command, flags, positional };
+}
+const KNOWN_COMMANDS = new Set([
+  "server", "version", "help",
+  "login", "logout", "status", "doctor", "install-browser",
+  "install-speed-boost", "uninstall-speed-boost", "speed-boost-status",
+  "add-account", "switch-account", "list-accounts",
+  "export", "open", "rebuild-history-index", "sync-cloud",
+  "daemon:help", "daemon:start", "daemon:stop", "daemon:status", "daemon:attach",
+  "daemon:rotate-token", "daemon:install-tunnel", "daemon:enable-tunnel", "daemon:disable-tunnel",
+  "daemon:list-providers", "daemon:set-provider",
+  "daemon:set-ngrok-authtoken", "daemon:set-ngrok-domain", "daemon:clear-ngrok",
+  "daemon:cf-named-login", "daemon:cf-named-list",
+  "daemon:cf-named-create", "daemon:cf-named-bind",
+]);
+function normalizeExportFormat(value) {
+  if (value === "md") return "markdown";
+  if (value === "markdown" || value === "pdf" || value === "docx") return value;
+  return null;
+}
+async function openTarget(target) {
+  if (process.platform === "win32") {
+    const escaped = String(target).replace(/'/g, "''");
+    await execFile("powershell", ["-NoProfile", "-Command", `Start-Process -FilePath '${escaped}'`]);
+    return;
+  }
+  if (process.platform === "darwin") {
+    await execFile("open", [String(target)]);
+    return;
+  }
+  await execFile("xdg-open", [String(target)]);
+}
+async function routeCommand(parsed) {
+  const { command, flags } = parsed;
+  if (!KNOWN_COMMANDS.has(command)) {
+    return { code: 1, stdout: "", stderr: `Unknown command: ${command}\nRun --help for usage.` };
+  }
+  if (command === "version") {
+    /* v8 ignore start -- catch fallback fires only if package.json is missing at runtime */
+    let version = "0.0.0";
+    try {
+      const pkgPath = fileURLToPath(new URL("../package.json", import.meta.url));
+      version = JSON.parse(readFileSync(pkgPath, "utf8")).version ?? "0.0.0";
+    } catch {
+      // fall through with default
+    }
+    /* v8 ignore stop */
+    return { code: 0, stdout: version + "\n", stderr: "" };
+  }
+  if (command === "help") {
+    return { code: 0, stdout: HELP_TEXT, stderr: "" };
+  }
+  /* v8 ignore start -- starting the real MCP server is impractical in unit tests */
+  if (command === "server") {
+    const { main } = await import('./index.d.ts');
+    await main();
+    return { code: 0, stdout: "", stderr: "" };
+  }
+  /* v8 ignore stop */
+  if (command === "daemon:help") {
+    return { code: 0, stdout: DAEMON_HELP_TEXT, stderr: "" };
+  }
+  if (command === "daemon:start") {
+    const port = parseOptionalPort(flags.port);
+    if (flags.port !== undefined && port === null) {
+      return { code: 1, stdout: "", stderr: "daemon start requires --port to be a positive integer.\n" };
+    }
+    const { startDaemon } = await import('./daemon/launcher.d.ts');
+    const daemon = await startDaemon({
+      configDir: process.env.PERPLEXITY_CONFIG_DIR,
+      port: port ?? undefined,
+      tunnel: !!flags.tunnel,
+    });
+    if (daemon.attached) {
+      const body = flags.json
+        ? JSON.stringify({ ok: true, attached: true, ...serializeDaemonConnection(daemon) })
+        : `Attached to daemon pid=${daemon.pid} port=${daemon.port}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    }
+    await daemon.closed;
+    return { code: 0, stdout: "", stderr: "" };
+  }
+  if (command === "daemon:status") {
+    const { getDaemonStatus } = await import('./daemon/launcher.d.ts');
+    const status = await getDaemonStatus({
+      configDir: process.env.PERPLEXITY_CONFIG_DIR,
+      reclaimStale: true,
+    });
+    const body = flags.json
+      ? JSON.stringify(serializeDaemonStatus(status))
+      : formatDaemonStatus(status);
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  if (command === "daemon:stop") {
+    const { stopDaemon } = await import('./daemon/launcher.d.ts');
+    const result = await stopDaemon({ configDir: process.env.PERPLEXITY_CONFIG_DIR });
+    const body = flags.json
+      ? JSON.stringify({ ok: true, ...result })
+      : result.stopped
+        ? `Stopped daemon pid=${result.pid ?? "unknown"}.`
+        : "Daemon is not running.";
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  if (command === "daemon:rotate-token") {
+    try {
+      const { rotateDaemonToken } = await import('./daemon/launcher.d.ts');
+      const daemon = await rotateDaemonToken({ configDir: process.env.PERPLEXITY_CONFIG_DIR });
+      const body = flags.json
+        ? JSON.stringify({ ok: true, ...serializeDaemonConnection(daemon) })
+        : `Rotated daemon token for pid=${daemon.pid} port=${daemon.port}.`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      return { code: 1, stdout: "", stderr: message + "\n" };
+    }
+  }
+  if (command === "daemon:attach") {
+    // 8.3.2: PERPLEXITY_NO_DAEMON=1 opt-out. Must short-circuit BEFORE importing
+    // the daemon layer — the whole point is air-gapped / single-client users
+    // keep the daemon code cold. Warning goes to stderr only (stdout is the
+    // MCP JSON-RPC channel; any byte on stdout corrupts the protocol).
+    const noDaemonRaw = process.env.PERPLEXITY_NO_DAEMON;
+    if (typeof noDaemonRaw === "string" && /^(1|true)$/i.test(noDaemonRaw.trim())) {
+      process.stderr.write(
+        "[perplexity-mcp] PERPLEXITY_NO_DAEMON=1 set; running in-process stdio (daemon bypass)\n",
+      );
+      const mod = await import('./index.d.ts');
+      await mod.main();
+      return { code: 0, stdout: "", stderr: "" };
+    }
+    const { attachToDaemon } = await import('./daemon/attach.d.ts');
+    const ensureTimeoutRaw = flags["ensure-timeout-ms"];
+    const ensureTimeoutMs =
+      typeof ensureTimeoutRaw === "string" && /^\d+$/.test(ensureTimeoutRaw)
+        ? Number(ensureTimeoutRaw)
+        : undefined;
+    await attachToDaemon({
+      configDir: process.env.PERPLEXITY_CONFIG_DIR,
+      clientId: "daemon-attach-cli",
+      fallbackStdio: !!flags["fallback-stdio"],
+      ensureTimeoutMs,
+    });
+    return { code: 0, stdout: "", stderr: "" };
+  }
+  if (command === "daemon:install-tunnel") {
+    const { installCloudflared } = await import('./daemon/install-tunnel.d.ts');
+    const result = await installCloudflared({ configDir: process.env.PERPLEXITY_CONFIG_DIR });
+    const body = flags.json
+      ? JSON.stringify({ ok: true, ...result })
+      : `Installed cloudflared ${result.version} to ${result.binaryPath}`;
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  if (command === "daemon:enable-tunnel") {
+    try {
+      const { enableDaemonTunnel } = await import('./daemon/launcher.d.ts');
+      const status = await enableDaemonTunnel({ configDir: process.env.PERPLEXITY_CONFIG_DIR });
+      const body = flags.json
+        ? JSON.stringify({ ok: true, ...serializeDaemonStatus(status) })
+        : status.health?.tunnel?.url
+          ? `Tunnel enabled: ${status.health.tunnel.url}`
+          : "Tunnel enable requested.";
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      return { code: 1, stdout: "", stderr: message + "\n" };
+    }
+  }
+  if (command === "daemon:disable-tunnel") {
+    try {
+      const { disableDaemonTunnel } = await import('./daemon/launcher.d.ts');
+      const status = await disableDaemonTunnel({ configDir: process.env.PERPLEXITY_CONFIG_DIR });
+      const body = flags.json
+        ? JSON.stringify({ ok: true, ...serializeDaemonStatus(status) })
+        : "Tunnel disabled.";
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      return { code: 1, stdout: "", stderr: message + "\n" };
+    }
+  }
+  if (command === "daemon:list-providers") {
+    const providersModule = await import('./daemon/tunnel-providers/index.d.ts');
+    const configDir = process.env.PERPLEXITY_CONFIG_DIR;
+    const statuses = await providersModule.listTunnelProviderStatuses(configDir);
+    const active = providersModule.readTunnelSettings(configDir).activeProvider;
+    const body = flags.json
+      ? JSON.stringify({ active, providers: statuses })
+      : statuses
+          .map((s) => `${s.isActive ? "*" : " "} ${s.id.padEnd(10)} ${s.displayName.padEnd(22)} ${s.setup.ready ? "ready" : s.setup.reason ?? "needs setup"}`)
+          .join("\n");
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  if (command === "daemon:set-provider") {
+    const providerId = parsed.positional?.[0];
+    if (!providerId) {
+      return { code: 1, stdout: "", stderr: "set-provider requires a provider id (cf-quick | ngrok | cf-named).\n" };
+    }
+    try {
+      const providersModule = await import('./daemon/tunnel-providers/index.d.ts');
+      const configDir = process.env.PERPLEXITY_CONFIG_DIR;
+      providersModule.writeTunnelSettings(configDir, { activeProvider: providerId });
+      return { code: 0, stdout: `Active tunnel provider set to ${providerId}.\n`, stderr: "" };
+    } catch (error) {
+      return { code: 1, stdout: "", stderr: (error instanceof Error ? error.message : String(error)) + "\n" };
+    }
+  }
+  if (command === "daemon:set-ngrok-authtoken") {
+    const authtoken = parsed.positional?.[0] ?? flags.token;
+    if (!authtoken || typeof authtoken !== "string" || authtoken.length < 10) {
+      return { code: 1, stdout: "", stderr: "set-ngrok-authtoken requires an authtoken (see dashboard.ngrok.com/get-started/your-authtoken).\n" };
+    }
+    try {
+      const providersModule = await import('./daemon/tunnel-providers/index.d.ts');
+      providersModule.writeNgrokSettings(process.env.PERPLEXITY_CONFIG_DIR, { authtoken });
+      return { code: 0, stdout: "ngrok authtoken saved.\n", stderr: "" };
+    } catch (error) {
+      return { code: 1, stdout: "", stderr: (error instanceof Error ? error.message : String(error)) + "\n" };
+    }
+  }
+  if (command === "daemon:set-ngrok-domain") {
+    const domain = parsed.positional?.[0] ?? flags.domain ?? null;
+    try {
+      const providersModule = await import('./daemon/tunnel-providers/index.d.ts');
+      providersModule.writeNgrokSettings(process.env.PERPLEXITY_CONFIG_DIR, { domain: domain ?? null });
+      return { code: 0, stdout: (domain ? `ngrok domain set to ${domain}.\n` : "ngrok domain cleared.\n"), stderr: "" };
+    } catch (error) {
+      return { code: 1, stdout: "", stderr: (error instanceof Error ? error.message : String(error)) + "\n" };
+    }
+  }
+  if (command === "daemon:clear-ngrok") {
+    try {
+      const providersModule = await import('./daemon/tunnel-providers/index.d.ts');
+      providersModule.clearNgrokSettings(process.env.PERPLEXITY_CONFIG_DIR);
+      return { code: 0, stdout: "ngrok settings cleared.\n", stderr: "" };
+    } catch (error) {
+      return { code: 1, stdout: "", stderr: (error instanceof Error ? error.message : String(error)) + "\n" };
+    }
+  }
+  // ─────────────────────────────────────────────────────────────────────
+  // cf-named (Cloudflare Named Tunnel) CLI — mirrors the 8.4.3 dashboard
+  // widget for npm-only users. Helpers imported directly from the
+  // mcp-server; do NOT import the extension's runtime.ts (VS Code-private).
+  //
+  // Dashed subcommand names (daemon cf-named-login, etc.) so the existing
+  // parseArgs one-level-deep routing (daemon <x> → daemon:<x>) works
+  // unchanged. Documented identically in DAEMON_HELP_TEXT.
+  //
+  // Login, create, bind each modal-confirm via stderr/stdin unless --yes.
+  // Exit 130 on user decline (standard "interrupted by user" code).
+  // ─────────────────────────────────────────────────────────────────────
+  if (command === "daemon:cf-named-login") {
+    if (!flags.yes) {
+      const { promptYesNo } = await import('./tty-prompt.d.ts');
+      const ok = await promptYesNo({
+        prompt: "This opens your default browser to authorize Cloudflare. Continue? [y/N] ",
+      });
+      if (!ok) {
+        return { code: 130, stdout: "", stderr: "Cancelled.\n" };
+      }
+    }
+    try {
+      const { runCloudflaredLogin } = await import('./daemon/tunnel-providers/index.d.ts');
+      // forwardOutput: pipe cloudflared's child stderr AND stdout to OUR
+      // stderr so the CLI user sees the "open this URL in your browser"
+      // prompt. Never to our stdout — that's reserved for --json payload.
+      const result = await runCloudflaredLogin({
+        configDir: process.env.PERPLEXITY_CONFIG_DIR,
+        forwardOutput: true,
+      });
+      const body = flags.json
+        ? JSON.stringify({ ok: true, certPath: result.certPath })
+        : `cloudflared login completed. Cert at ${result.certPath}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : String(error);
+      const hint = /not installed/i.test(msg)
+        ? `${msg}\nRun 'npx perplexity-user-mcp daemon install-tunnel' to install cloudflared.\n`
+        : msg + "\n";
+      return { code: 1, stdout: "", stderr: hint };
+    }
+  }
+  if (command === "daemon:cf-named-list") {
+    try {
+      const { listNamedTunnels } = await import('./daemon/tunnel-providers/index.d.ts');
+      const tunnels = await listNamedTunnels({ configDir: process.env.PERPLEXITY_CONFIG_DIR });
+      const body = flags.json
+        ? JSON.stringify({ tunnels })
+        : tunnels.length === 0
+          ? "No named tunnels."
+          : tunnels
+              .map((t) => `${t.uuid}  ${t.name}  (${t.connections ?? 0} connections)`)
+              .join("\n");
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : String(error);
+      return { code: 1, stdout: "", stderr: msg + "\n" };
+    }
+  }
+  if (command === "daemon:cf-named-create") {
+    const name = flags.name ?? parsed.positional?.[0];
+    const hostname = flags.hostname ?? parsed.positional?.[1];
+    if (!name || typeof name !== "string") {
+      return { code: 1, stdout: "", stderr: "cf-named-create requires --name (or first positional argument).\n" };
+    }
+    if (!hostname || typeof hostname !== "string") {
+      return { code: 1, stdout: "", stderr: "cf-named-create requires --hostname (or second positional argument).\n" };
+    }
+    if (!flags.yes) {
+      const { promptYesNo } = await import('./tty-prompt.d.ts');
+      const ok = await promptYesNo({
+        prompt: `This creates a Cloudflare tunnel "${name}" and routes DNS "${hostname}" under your zone. Continue? [y/N] `,
+      });
+      if (!ok) {
+        return { code: 130, stdout: "", stderr: "Cancelled.\n" };
+      }
+    }
+    try {
+      const { createNamedTunnel, writeTunnelConfig } = await import('./daemon/tunnel-providers/index.d.ts');
+      const configDir = process.env.PERPLEXITY_CONFIG_DIR;
+      const created = await createNamedTunnel({ configDir, name, hostname });
+      // Placeholder port=1; the cf-named provider's start() rewrites it to the
+      // live daemon port on every spawn (port-drift rewrite), so this value is
+      // never read in practice. Matches the 8.4.3 dashboard behavior.
+      const config = writeTunnelConfig({
+        configDir,
+        uuid: created.uuid,
+        hostname,
+        port: 1,
+        credentialsPath: created.credentialsPath,
+      });
+      const body = flags.json
+        ? JSON.stringify({ ok: true, uuid: created.uuid, name: created.name, hostname, configPath: config.configPath, credentialsPath: created.credentialsPath })
+        : `Tunnel created: uuid=${created.uuid} hostname=${hostname}\nConfig written to ${config.configPath}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : String(error);
+      return { code: 1, stdout: "", stderr: msg + "\n" };
+    }
+  }
+  if (command === "daemon:cf-named-bind") {
+    const uuid = flags.uuid ?? parsed.positional?.[0];
+    const hostname = flags.hostname ?? parsed.positional?.[1];
+    if (!uuid || typeof uuid !== "string") {
+      return { code: 1, stdout: "", stderr: "cf-named-bind requires --uuid (or first positional argument).\n" };
+    }
+    if (!hostname || typeof hostname !== "string") {
+      return { code: 1, stdout: "", stderr: "cf-named-bind requires --hostname (or second positional argument).\n" };
+    }
+    const credentialsPath = join(homedir(), ".cloudflared", `${uuid}.json`);
+    if (!existsSync(credentialsPath)) {
+      return {
+        code: 1,
+        stdout: "",
+        stderr: `Credentials file not found at ${credentialsPath}. Run 'cloudflared tunnel create' for this UUID first, or use 'cf-named-create'.\n`,
+      };
+    }
+    if (!flags.yes) {
+      const { promptYesNo } = await import('./tty-prompt.d.ts');
+      const ok = await promptYesNo({
+        prompt: `This writes a managed config binding tunnel ${uuid} to ${hostname}. Continue? [y/N] `,
+      });
+      if (!ok) {
+        return { code: 130, stdout: "", stderr: "Cancelled.\n" };
+      }
+    }
+    try {
+      const { writeTunnelConfig } = await import('./daemon/tunnel-providers/index.d.ts');
+      const configDir = process.env.PERPLEXITY_CONFIG_DIR;
+      const config = writeTunnelConfig({
+        configDir,
+        uuid,
+        hostname,
+        port: 1,
+        credentialsPath,
+      });
+      const body = flags.json
+        ? JSON.stringify({ ok: true, uuid, hostname, configPath: config.configPath, credentialsPath })
+        : `Bound tunnel ${uuid} to ${hostname}.\nConfig written to ${config.configPath}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (error) {
+      const msg = error instanceof Error ? error.message : String(error);
+      return { code: 1, stdout: "", stderr: msg + "\n" };
+    }
+  }
+  if (command === "list-accounts") {
+    const { listProfiles, getActiveName } = await import('./profiles.d-DqS1oZWr.d.ts');
+    const profiles = listProfiles();
+    const active = getActiveName();
+    const body = flags.json
+      ? JSON.stringify({ ok: true, active, profiles })
+      : profiles.length === 0
+        ? "No profiles yet. Run `add-account` to create one."
+        : profiles.map((p) => `${p.name === active ? "* " : "  "}${p.name}  [${p.tier ?? "?"}]  mode=${p.loginMode ?? "?"}  lastLogin=${p.lastLogin ?? "never"}`).join("\n");
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  if (command === "add-account") {
+    const name = flags.name ?? (await import('./profiles.d-DqS1oZWr.d.ts')).suggestNextDefaultName();
+    const mode = flags.mode ?? "manual";
+    try {
+      const { createProfile } = await import('./profiles.d-DqS1oZWr.d.ts');
+      const profile = createProfile(name, { loginMode: mode });
+      const body = flags.json ? JSON.stringify({ ok: true, profile }) : `Created profile '${name}'.`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (err) {
+      const msg = err instanceof Error ? err.message : String(err);
+      return { code: 1, stdout: flags.json ? JSON.stringify({ ok: false, error: msg }) + "\n" : "", stderr: msg + "\n" };
+    }
+  }
+  if (command === "switch-account") {
+    const target = parsed.positional?.[0];
+    if (!target) return { code: 1, stdout: "", stderr: "switch-account requires a profile name.\n" };
+    try {
+      const { setActive } = await import('./profiles.d-DqS1oZWr.d.ts');
+      setActive(target);
+      const body = flags.json ? JSON.stringify({ ok: true, active: target }) : `Switched to '${target}'.`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } catch (err) {
+      return { code: 1, stdout: "", stderr: `${err.message}\n` };
+    }
+  }
+  if (command === "logout") {
+    const { softLogout, hardLogout } = await import('./logout.d.ts');
+    const name = flags.profile ?? (await import('./profiles.d-DqS1oZWr.d.ts')).getActiveName() ?? "default";
+    if (flags.purge) await hardLogout(name); else await softLogout(name);
+    const body = flags.json ? JSON.stringify({ ok: true, purged: !!flags.purge, profile: name }) : `Logged out of '${name}'.`;
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  if (command === "status") {
+    const name = flags.profile ?? (await import('./profiles.d-DqS1oZWr.d.ts')).getActiveName() ?? "default";
+    const { Vault } = await import('./vault.d-BtRSLZiM.d.ts');
+    /* v8 ignore next -- defensive catch for unreadable vault (malformed blob, wrong key) */
+    const cookies = await new Vault().get(name, "cookies").catch(() => null);
+    if (!cookies) {
+      const body = flags.json ? JSON.stringify({ valid: false, reason: "no_cookies", profile: name }) : `No session for '${name}'. Run login first.`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    }
+    const { getProfile } = await import('./profiles.d-DqS1oZWr.d.ts');
+    const meta = getProfile(name);
+    const body = flags.json
+      ? JSON.stringify({ valid: true, profile: name, tier: meta?.tier, lastLogin: meta?.lastLogin })
+      : `Profile '${name}' has stored cookies. Tier=${meta?.tier ?? "?"} lastLogin=${meta?.lastLogin ?? "?"}`;
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  /* v8 ignore start -- login spawns a long-lived fork with a real browser; covered by integration suites */
+  if (command === "login") {
+    const { fork } = await import('node:child_process');
+    const mode = flags.mode ?? "manual";
+    const profile = flags.profile ?? (await import('./profiles.d-DqS1oZWr.d.ts')).getActiveName() ?? "default";
+    const env = { ...process.env, PERPLEXITY_PROFILE: profile };
+    if (mode === "auto") {
+      if (!flags.email) return { code: 1, stdout: "", stderr: "`--email` required for --mode auto.\n" };
+      env.PERPLEXITY_EMAIL = String(flags.email);
+    }
+    // Auto-enable when impit (Speed Boost) is installed — the install is
+    // the opt-in. `--no-impit` or PERPLEXITY_DISABLE_IMPIT_LOGIN=1 forces
+    // the browser path. Falls back to the browser-based runner on impit-
+    // only failures (cf_blocked, impit_missing, crash).
+    const wantImpit =
+      mode === "auto" &&
+      !flags["no-impit"] &&
+      process.env.PERPLEXITY_DISABLE_IMPIT_LOGIN !== "1" &&
+      (await import('./refresh.d.ts')).isImpitAvailable();
+    const browserRunnerName = mode === "auto" ? "./login-runner.mjs" : "./manual-login-runner.mjs";
+    const browserRunner = fileURLToPath(new URL(browserRunnerName, import.meta.url));
+    const impitRunner = fileURLToPath(new URL("./impit-login-runner.mjs", import.meta.url));
+    const IMPIT_FALLBACK_REASONS = new Set(["cf_blocked", "impit_missing", "impit_load_failed", "auto_unsupported", "crash"]);
+    async function spawnRunner(runner) {
+      return new Promise((resolve) => {
+        const child = fork(runner, [], { env, stdio: ["inherit", "pipe", "inherit", "ipc"] });
+        let out = "";
+        child.stdout.on("data", (d) => { out += d.toString(); process.stderr.write(d); });
+        child.on("message", async (m) => {
+          if (m?.phase === "awaiting_otp") {
+            const { promptSecret } = await import('./tty-prompt.d.ts');
+            const otp = await promptSecret({ prompt: "Enter OTP from your email: " });
+            child.send({ otp });
+          }
+        });
+        child.on("close", (code) => {
+          const lines = out.trim().split("\n").filter(Boolean);
+          const last = lines[lines.length - 1];
+          let parsed = null;
+          try { parsed = last ? JSON.parse(last) : null; } catch { /* not JSON */ }
+          resolve({ code: code ?? 0, last, parsed });
+        });
+      });
+    }
+    if (wantImpit) {
+      const impitResult = await spawnRunner(impitRunner);
+      const reason = impitResult.parsed?.reason;
+      const ok = impitResult.parsed?.ok === true;
+      if (ok || (reason && !IMPIT_FALLBACK_REASONS.has(reason))) {
+        return { code: impitResult.code, stdout: (flags.json ? impitResult.last : `login finished (${impitResult.code})`) + "\n", stderr: "" };
+      }
+      process.stderr.write(`[cli login] impit runner failed (${reason ?? "unknown"}); falling back to browser.\n`);
+    }
+    const browserResult = await spawnRunner(browserRunner);
+    return { code: browserResult.code, stdout: (flags.json ? browserResult.last : `login finished (${browserResult.code})`) + "\n", stderr: "" };
+  }
+  /* v8 ignore stop */
+  if (command === "install-speed-boost") {
+    const { installImpit, getImpitStatus } = await import('./native-deps-BNThFHxa.d.ts');
+    const before = getImpitStatus();
+    if (before.installed && !flags.force) {
+      const msg = flags.json
+        ? JSON.stringify({ ok: true, alreadyInstalled: true, version: before.version, runtimeDir: before.runtimeDir })
+        : `Speed Boost (impit ${before.version ?? "?"}) already installed at ${before.runtimeDir}.\nPass --force to reinstall.`;
+      return { code: 0, stdout: msg + "\n", stderr: "" };
+    }
+    const log = (line) => process.stderr.write(`[speed-boost] ${line}\n`);
+    const result = await installImpit({ log });
+    if (!result.ok) {
+      const stderr = flags.json
+        ? JSON.stringify({ ok: false, error: result.error }) + "\n"
+        : `Speed Boost install failed: ${result.error}\n`;
+      return { code: 1, stdout: "", stderr };
+    }
+    const status = getImpitStatus();
+    const out = flags.json
+      ? JSON.stringify({ ok: true, version: status.version, installedAt: status.installedAt, runtimeDir: status.runtimeDir })
+      : `Speed Boost installed: impit ${status.version ?? "?"} at ${status.runtimeDir}.\nAll impit-eligible tools (sync, hydrate, retrieve, export, models, login) will use it automatically.`;
+    return { code: 0, stdout: out + "\n", stderr: "" };
+  }
+  if (command === "uninstall-speed-boost") {
+    const { uninstallImpit, getImpitStatus } = await import('./native-deps-BNThFHxa.d.ts');
+    const before = getImpitStatus();
+    const log = (line) => process.stderr.write(`[speed-boost] ${line}\n`);
+    const result = uninstallImpit({ log });
+    if (!result.ok) {
+      const stderr = flags.json
+        ? JSON.stringify({ ok: false, error: result.error }) + "\n"
+        : `Speed Boost uninstall failed: ${result.error}\n`;
+      return { code: 1, stdout: "", stderr };
+    }
+    const out = flags.json
+      ? JSON.stringify({ ok: true, hadImpit: before.installed })
+      : before.installed
+        ? `Speed Boost removed (was impit ${before.version ?? "?"}). Affected tools fall back to the browser path.`
+        : `Speed Boost was not installed. Nothing to remove.`;
+    return { code: 0, stdout: out + "\n", stderr: "" };
+  }
+  if (command === "speed-boost-status") {
+    const { getImpitStatus } = await import('./native-deps-BNThFHxa.d.ts');
+    const status = getImpitStatus();
+    if (flags.json) {
+      return { code: 0, stdout: JSON.stringify(status) + "\n", stderr: "" };
+    }
+    const out = status.installed
+      ? `Speed Boost: installed (impit ${status.version ?? "?"}${status.installedAt ? `, installed ${status.installedAt}` : ""}).\nRuntime dir: ${status.runtimeDir}`
+      : `Speed Boost: not installed.\nRun: npx perplexity-user-mcp install-speed-boost\nRuntime dir (for manual install): ${status.runtimeDir}`;
+    return { code: 0, stdout: out + "\n", stderr: "" };
+  }
+  if (command === "doctor") {
+    const { runAll, exitCodeFor, formatReportMarkdown } = await import('./doctor.d-CXmUqOXX.d.ts');
+    const report = await runAll({
+      profile: flags.profile,
+      probe: !!flags.probe,
+      allProfiles: !!flags.all,
+    });
+    const exit = exitCodeFor(report);
+    if (flags.json) {
+      return { code: exit, stdout: JSON.stringify(report) + "\n", stderr: "" };
+    }
+    return { code: exit, stdout: formatReportMarkdown(report) + "\n", stderr: "" };
+  }
+  if (command === "export") {
+    const historyId = parsed.positional?.[0];
+    if (!historyId) return { code: 1, stdout: "", stderr: "export requires a history id.\n" };
+    const format = normalizeExportFormat(flags.format);
+    if (!format) return { code: 1, stdout: "", stderr: "export requires --format pdf|md|markdown|docx.\n" };
+    const { get } = await import('./history-store.d-BzjBF2m3.d.ts');
+    const entry = get(historyId);
+    if (!entry) return { code: 1, stdout: "", stderr: `History entry '${historyId}' not found.\n` };
+    if (format === "markdown") {
+      const targetPath = flags.out ? String(flags.out) : join(entry.attachmentsDir, entry.mdPath.split(/[\\/]/).pop() || `${entry.id}.md`);
+      mkdirSync(dirname(targetPath), { recursive: true });
+      writeFileSync(targetPath, readFileSync(entry.mdPath, "utf8"), "utf8");
+      const body = flags.json
+        ? JSON.stringify({ ok: true, format, savedPath: targetPath, historyId })
+        : `Saved markdown export to ${targetPath}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    }
+    if (!entry.threadSlug) {
+      return { code: 1, stdout: "", stderr: "This entry cannot be exported natively because it has no Perplexity thread slug.\n" };
+    }
+    const { PerplexityClient } = await import('./client.d.ts');
+    const client = new PerplexityClient();
+    try {
+      await client.init();
+      const exported = await client.exportThread({ threadSlug: entry.threadSlug, format });
+      const targetPath = flags.out ? String(flags.out) : join(entry.attachmentsDir, exported.filename);
+      mkdirSync(dirname(targetPath), { recursive: true });
+      writeFileSync(targetPath, exported.buffer);
+      const body = flags.json
+        ? JSON.stringify({ ok: true, format, savedPath: targetPath, bytes: exported.buffer.length, contentType: exported.contentType, historyId })
+        : `Saved ${format} export to ${targetPath}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } finally {
+      await client.shutdown().catch(() => undefined);
+    }
+  }
+  if (command === "sync-cloud") {
+    const previousProfile = process.env.PERPLEXITY_PROFILE;
+    try {
+      if (flags.profile) process.env.PERPLEXITY_PROFILE = String(flags.profile);
+      const { syncCloudHistory } = await import('./cloud-sync.d-Cqt6y18U.d.ts');
+      const pageSize = flags["page-size"] !== undefined ? Number(flags["page-size"]) : undefined;
+      const lines = [];
+      const result = await syncCloudHistory({
+        pageSize: Number.isFinite(pageSize) && pageSize > 0 ? pageSize : undefined,
+        onProgress: (evt) => {
+          if (flags.verbose) lines.push(`[sync] ${evt.phase} fetched=${evt.fetched ?? 0} inserted=${evt.inserted ?? 0} updated=${evt.updated ?? 0} skipped=${evt.skipped ?? 0}`);
+        },
+      });
+      const body = flags.json
+        ? JSON.stringify(result)
+        : `Cloud sync: fetched=${result.fetched} inserted=${result.inserted} updated=${result.updated} skipped=${result.skipped}`;
+      return { code: 0, stdout: body + "\n", stderr: flags.verbose ? lines.join("\n") + "\n" : "" };
+    } catch (err) {
+      const message = err instanceof Error ? err.message : String(err);
+      return { code: 10, stdout: "", stderr: `Cloud sync failed: ${message}\n` };
+    } finally {
+      if (flags.profile === undefined && previousProfile !== undefined) {
+        process.env.PERPLEXITY_PROFILE = previousProfile;
+      } else if (previousProfile === undefined) {
+        delete process.env.PERPLEXITY_PROFILE;
+      } else {
+        process.env.PERPLEXITY_PROFILE = previousProfile;
+      }
+    }
+  }
+  if (command === "rebuild-history-index") {
+    const previousProfile = process.env.PERPLEXITY_PROFILE;
+    try {
+      if (flags.profile) {
+        process.env.PERPLEXITY_PROFILE = String(flags.profile);
+      }
+      const { rebuildIndex } = await import('./history-store.d-BzjBF2m3.d.ts');
+      const result = rebuildIndex();
+      const body = flags.json
+        ? JSON.stringify(result)
+        : `Rebuilt history index: scanned=${result.scanned} recovered=${result.recovered} skipped=${result.skipped}`;
+      return { code: 0, stdout: body + "\n", stderr: "" };
+    } finally {
+      if (flags.profile === undefined && previousProfile !== undefined) {
+        process.env.PERPLEXITY_PROFILE = previousProfile;
+      } else if (previousProfile === undefined) {
+        delete process.env.PERPLEXITY_PROFILE;
+      } else {
+        process.env.PERPLEXITY_PROFILE = previousProfile;
+      }
+    }
+  }
+  if (command === "open") {
+    const historyId = parsed.positional?.[0];
+    if (!historyId) return { code: 1, stdout: "", stderr: "open requires a history id.\n" };
+    const { get } = await import('./history-store.d-BzjBF2m3.d.ts');
+    const entry = get(historyId);
+    if (!entry) return { code: 1, stdout: "", stderr: `History entry '${historyId}' not found.\n` };
+    const viewerId = String(flags.viewer ?? "system");
+    let target = entry.mdPath;
+    if (viewerId !== "system") {
+      const { buildViewerUrl, listViewers } = await import('./viewers.d-BGCK6sw6.d.ts');
+      const viewer = listViewers().find((item) => item.id === viewerId);
+      if (!viewer) {
+        return { code: 1, stdout: "", stderr: `Unknown viewer '${viewerId}'.\n` };
+      }
+      target = buildViewerUrl({ viewer, mdPath: entry.mdPath });
+    }
+    await openTarget(target);
+    const body = flags.json
+      ? JSON.stringify({ ok: true, viewer: viewerId, target, historyId })
+      : `Opened ${historyId} via ${viewerId}: ${target}`;
+    return { code: 0, stdout: body + "\n", stderr: "" };
+  }
+  // Phase-1 stub: all real subcommands are placeholder until their phases land.
+  const msg = flags.json
+    ? JSON.stringify({ ok: false, error: "not-yet-implemented", command })
+    : `'${command}' is not yet implemented (arrives in Phase ${phaseFor(command)}).`;
+  return { code: 0, stdout: msg + "\n", stderr: "" };
+}
+function phaseFor(cmd) {
+  if (cmd === "install-browser") return 3;
+  if (cmd === "export" || cmd === "open" || cmd === "rebuild-history-index" || cmd === "sync-cloud") return 4;
+  /* v8 ignore next -- fallback for unmapped commands that shouldn't exist */
+  return "?";
+}
+function parseOptionalPort(value) {
+  if (value === undefined || value === true) return null;
+  const parsed = Number(value);
+  if (!Number.isInteger(parsed) || parsed <= 0 || parsed > 65535) {
+    return null;
+  }
+  return parsed;
+}
+function formatDaemonStatus(status) {
+  if (!status.running || !status.record) {
+    return "Daemon is not running.";
+  }
+  if (!status.healthy || !status.health) {
+    return `Daemon lock exists for pid=${status.record.pid}, but the health probe is not ready.`;
+  }
+  const tunnelUrl = status.health.tunnel?.url ?? status.record.tunnelUrl ?? null;
+  const parts = [
+    `Daemon running pid=${status.record.pid} port=${status.record.port}`,
+    `uptime=${formatDuration(status.health.uptimeMs)}`,
+  ];
+  if (tunnelUrl) {
+    parts.push(`tunnel=${tunnelUrl}`);
+  }
+  return parts.join(" ");
+}
+function serializeDaemonStatus(status) {
+  return {
+    running: status.running,
+    healthy: status.healthy,
+    stale: status.stale,
+    pid: status.record?.pid ?? null,
+    uuid: status.record?.uuid ?? null,
+    port: status.record?.port ?? null,
+    version: status.record?.version ?? null,
+    startedAt: status.record?.startedAt ?? null,
+    tunnelUrl: status.health?.tunnel?.url ?? status.record?.tunnelUrl ?? null,
+  };
+}
+function serializeDaemonConnection(daemon) {
+  return {
+    pid: daemon.pid,
+    uuid: daemon.uuid,
+    port: daemon.port,
+    url: daemon.url,
+    version: daemon.version,
+    startedAt: daemon.startedAt,
+    tunnelUrl: daemon.tunnelUrl ?? null,
+  };
+}
+function formatDuration(durationMs) {
+  if (!Number.isFinite(durationMs) || durationMs < 0) {
+    return "0s";
+  }
+  const seconds = Math.floor(durationMs / 1000);
+  if (seconds < 60) return `${seconds}s`;
+  const minutes = Math.floor(seconds / 60);
+  const remainder = seconds % 60;
+  if (minutes < 60) return `${minutes}m${remainder}s`;
+  const hours = Math.floor(minutes / 60);
+  return `${hours}h${minutes % 60}m`;
+}
+const HELP_TEXT = `perplexity-user-mcp
+Usage:
+  npx perplexity-user-mcp                      Start MCP stdio server
+  npx perplexity-user-mcp daemon start [--port N] [--tunnel]
+  npx perplexity-user-mcp daemon stop
+  npx perplexity-user-mcp daemon status [--json]
+  npx perplexity-user-mcp daemon attach [--fallback-stdio] [--ensure-timeout-ms N]
+  npx perplexity-user-mcp daemon rotate-token
+  npx perplexity-user-mcp login [--profile X] [--mode auto|manual] [--plain-cookies]
+  npx perplexity-user-mcp logout [--profile X] [--purge]
+  npx perplexity-user-mcp status [--profile X] [--all]
+  npx perplexity-user-mcp doctor [--profile X] [--probe] [--all] [--report]
+  npx perplexity-user-mcp install-browser
+  npx perplexity-user-mcp install-speed-boost [--force] [--json]
+  npx perplexity-user-mcp uninstall-speed-boost [--json]
+  npx perplexity-user-mcp speed-boost-status [--json]
+  npx perplexity-user-mcp add-account [--name X] [--email Y] [--mode auto|manual] [--plain-cookies]
+  npx perplexity-user-mcp switch-account <name>
+  npx perplexity-user-mcp list-accounts
+  npx perplexity-user-mcp export <id> --format pdf|md|docx [--out path]
+  npx perplexity-user-mcp open <id> [--viewer obsidian|typora|logseq|system]
+  npx perplexity-user-mcp rebuild-history-index [--profile X]
+  npx perplexity-user-mcp sync-cloud [--profile X] [--page-size N] [--verbose]
+  npx perplexity-user-mcp --version
+  npx perplexity-user-mcp --help
+Environment:
+  PERPLEXITY_CONFIG_DIR         Override config dir (default: ~/.perplexity-mcp)
+  PERPLEXITY_VAULT_PASSPHRASE   Env-var master-key fallback for headless Linux
+  PERPLEXITY_MCP_STDIO=1        Forces stdio-server mode (no prompts)
+  PERPLEXITY_NO_DAEMON=1        'daemon attach' runs in-process stdio (bypass daemon)
+`;
+const DAEMON_HELP_TEXT = `perplexity-user-mcp daemon
+Usage:
+  npx perplexity-user-mcp daemon start [--port N] [--tunnel]
+  npx perplexity-user-mcp daemon stop
+  npx perplexity-user-mcp daemon status [--json]
+  npx perplexity-user-mcp daemon attach [--fallback-stdio] [--ensure-timeout-ms N]
+  npx perplexity-user-mcp daemon rotate-token
+  npx perplexity-user-mcp daemon install-tunnel
+  npx perplexity-user-mcp daemon enable-tunnel
+  npx perplexity-user-mcp daemon disable-tunnel
+  npx perplexity-user-mcp daemon list-providers [--json]
+  npx perplexity-user-mcp daemon set-provider <cf-quick | ngrok | cf-named>
+  npx perplexity-user-mcp daemon set-ngrok-authtoken <TOKEN>
+  npx perplexity-user-mcp daemon set-ngrok-domain [<DOMAIN>]
+  npx perplexity-user-mcp daemon clear-ngrok
+Cloudflare named-tunnel setup (persistent URL on your own zone):
+  npx perplexity-user-mcp daemon cf-named-login [--yes]
+      Run 'cloudflared tunnel login' (opens browser, writes ~/.cloudflared/cert.pem).
+  npx perplexity-user-mcp daemon cf-named-list [--json]
+      List tunnels visible to the origin cert.
+  npx perplexity-user-mcp daemon cf-named-create --name NAME --hostname HOST [--yes] [--json]
+      Create a new tunnel + DNS CNAME, then write the managed config.
+  npx perplexity-user-mcp daemon cf-named-bind --uuid UUID --hostname HOST [--yes] [--json]
+      Bind the managed config to an existing tunnel UUID (credentials must exist
+      at ~/.cloudflared/<uuid>.json). No browser, no DNS changes.
+Notes:
+  - --yes skips the y/N confirmation prompt for login / create / bind.
+  - cf-named-login / create / bind prompt on stderr and read stdin; exit 130 on decline.
+  - With --json, stdout is a single parseable JSON line (scriptable).
+Environment:
+  PERPLEXITY_NO_DAEMON=1        'daemon attach' runs in-process stdio (bypass daemon)
+`;
+/* v8 ignore start -- only runs when cli.js is executed as a script */
+if (import.meta.url === pathToFileURL(process.argv[1]).href) {
+  const parsed = parseArgs(process.argv.slice(2));
+  routeCommand(parsed).then((res) => {
+    if (res.stdout) process.stdout.write(res.stdout);
+    if (res.stderr) process.stderr.write(res.stderr);
+    process.exit(res.code);
+  });
+}
+/* v8 ignore stop */
+export { parseArgs, routeCommand };