ship2-cli 0.1.0

package/README.md

@@ -0,0 +1,119 @@
+# ship2
+
+**Deploy static sites in 30 seconds. Get a live URL instantly.**
+
+```bash
+npx ship2 deploy ./dist
+```
+
+```
+✓ Deployed!
+
+  URL: https://my-app.ship2.app
+```
+
+## Quick Start
+
+```bash
+# Deploy a directory
+ship2 deploy ./dist
+
+# Deploy a single HTML file
+ship2 deploy index.html
+
+# Deploy current directory
+ship2 deploy
+```
+
+## Private Links
+
+Share work-in-progress without publishing publicly:
+
+```bash
+# Create a private link (expires in 24h)
+ship2 deploy ./dist --private
+
+# Set custom expiration
+ship2 deploy ./dist --private --ttl 48h
+```
+
+```
+✓ Private link created!
+
+  URL: https://ship2.app/p/a1b2c3d4...
+  Expires: in 24 hours
+
+  ⚠ This link will expire. Copy it now!
+```
+
+## Commands
+
+| Command | Description |
+|---------|-------------|
+| `ship2 deploy [path]` | Deploy files to ship2.app |
+| `ship2 deploy --private` | Create temporary private link |
+| `ship2 ls` | List your deployed projects |
+| `ship2 whoami` | Show current user |
+| `ship2 login` | Login to ship2.app |
+| `ship2 logout` | Logout |
+
+## Deploy Options
+
+```bash
+ship2 deploy [path] [options]
+
+Options:
+  -n, --name <name>   Project name (subdomain)
+  --private           Create a private deployment
+  --ttl <time>        Link expiration (private only): 24h, 2d, 1w
+  --message <text>    Deployment note
+  --json              Output JSON
+```
+
+## Limits
+
+| | Free | Pro |
+|---|---|---|
+| File size | 5 MB | 5 MB |
+| Total size | 10 MB | 50 MB |
+| Projects | 3 | 30 |
+| Private links | Unlimited | Unlimited |
+
+## Examples
+
+### Deploy a Vite project
+
+```bash
+npm run build
+ship2 deploy ./dist
+```
+
+### Deploy a Next.js static export
+
+```bash
+npm run build
+ship2 deploy ./out
+```
+
+### Share a prototype with a client
+
+```bash
+ship2 deploy ./prototype --private --ttl 48h
+```
+
+### CI/CD Integration
+
+```bash
+# GitHub Actions
+- name: Deploy to ship2
+  run: |
+    npm run build
+    npx ship2 deploy ./dist --json
+  env:
+    SHIP2_TOKEN: ${{ secrets.SHIP2_TOKEN }}
+```
+
+## Links
+
+- Website: https://ship2.app
+- Issues: https://github.com/anthropics/ship2/issues

package/bin/ship2.js

@@ -0,0 +1,57 @@
+#!/usr/bin/env node
+
+import { program } from 'commander'
+import { readFileSync } from 'fs'
+import { fileURLToPath } from 'url'
+import { dirname, join } from 'path'
+
+import login from '../commands/login.js'
+import deploy from '../commands/deploy.js'
+import whoami from '../commands/whoami.js'
+import ls from '../commands/ls.js'
+import logout from '../commands/logout.js'
+
+const __filename = fileURLToPath(import.meta.url)
+const __dirname = dirname(__filename)
+const pkg = JSON.parse(readFileSync(join(__dirname, '../package.json'), 'utf8'))
+
+program
+  .name('ship2')
+  .description('Deploy static sites to ship2.app in seconds')
+  .version(pkg.version)
+
+program
+  .command('login')
+  .description('Login to ship2.app')
+  .option('--token <token>', 'Use API token directly')
+  .option('--no-browser', 'Do not open browser automatically')
+  .action(login)
+
+program
+  .command('deploy [path]')
+  .description('Deploy a file or directory to ship2.app')
+  .option('-n, --name <name>', 'Project name (also used as subdomain)')
+  .option('--private', 'Create a private deployment')
+  .option('--ttl <hours>', 'Link expiration time in hours (private only)')
+  .option('--message <text>', 'Deployment message/note')
+  .option('--json', 'Output in JSON format')
+  .action(deploy)
+
+program
+  .command('whoami')
+  .description('Show current logged in user')
+  .action(whoami)
+
+program
+  .command('ls')
+  .alias('list')
+  .description('List your deployed projects')
+  .option('--json', 'Output in JSON format')
+  .action(ls)
+
+program
+  .command('logout')
+  .description('Logout from ship2.app')
+  .action(logout)
+
+program.parse()

package/commands/deploy.js

@@ -0,0 +1,295 @@
+/**
+ * ship2 deploy - Deploy command
+ */
+
+import { readFileSync, existsSync } from 'fs'
+import { resolve, basename, extname } from 'path'
+import chalk from 'chalk'
+import ora from 'ora'
+import { isLoggedIn, getToken, getApiBase } from '../lib/config.js'
+import {
+  detectPathType,
+  collectFiles,
+  validateDirectory,
+  validateReferences,
+  inferProjectName,
+  sanitizeProjectName,
+  formatSize,
+  detectBuildOutput,
+  ValidationError
+} from '../lib/files.js'
+import * as output from '../lib/output.js'
+
+/**
+ * Parse TTL string to hours
+ * Supports: "24h", "24", "1d", "1w"
+ */
+function parseTTL(ttl) {
+  if (!ttl) return 24
+
+  const match = ttl.match(/^(\d+)(h|d|w)?$/i)
+  if (!match) return 24
+
+  const value = parseInt(match[1])
+  const unit = (match[2] || 'h').toLowerCase()
+
+  switch (unit) {
+    case 'h': return Math.min(value, 168)  // max 1 week
+    case 'd': return Math.min(value * 24, 168)
+    case 'w': return Math.min(value * 168, 168)
+    default: return Math.min(value, 168)
+  }
+}
+
+export default async function deploy(inputPath, options) {
+  // Default to current directory
+  const targetPath = resolve(inputPath || '.')
+
+  // Check login status
+  if (!isLoggedIn()) {
+    output.error('Not logged in. Run: ship2 login')
+    process.exit(1)
+  }
+
+  const isJson = options.json
+  const isPrivate = options.private
+
+  // Detect path type
+  const pathInfo = detectPathType(targetPath)
+
+  if (pathInfo.type === 'not_found') {
+    output.deployError({
+      code: 'NOT_FOUND',
+      message: `Path not found: ${targetPath}`,
+      suggestion: 'Check if the path exists and try again.'
+    }, isJson)
+    process.exit(1)
+  }
+
+  if (pathInfo.type === 'invalid_file') {
+    output.deployError({
+      code: 'INVALID_FILE',
+      message: `Unsupported file type: ${pathInfo.ext}`,
+      suggestion: 'Only .html files or directories with index.html are supported.'
+    }, isJson)
+    process.exit(1)
+  }
+
+  // Infer project name
+  let projectName = options.name || inferProjectName(targetPath)
+  projectName = sanitizeProjectName(projectName)
+
+  if (!projectName) {
+    projectName = 'my-site'
+  }
+
+  if (!isJson) {
+    console.log()
+    if (isPrivate) {
+      output.info(`Creating private link: ${chalk.cyan(projectName)}`)
+    } else {
+      output.info(`Deploying: ${chalk.cyan(projectName)}`)
+    }
+  }
+
+  let files = []
+  let totalSize = 0
+
+  // Handle single file
+  if (pathInfo.type === 'single_file') {
+    if (!isJson) {
+      output.info('Mode: Single file')
+    }
+
+    const content = readFileSync(targetPath, 'utf8')
+    const size = Buffer.byteLength(content, 'utf8')
+
+    // Check file size (5MB limit)
+    if (size > 5 * 1024 * 1024) {
+      output.deployError({
+        code: 'FILE_TOO_LARGE',
+        message: `File too large: ${formatSize(size)} (limit: 5MB)`,
+        suggestion: 'Compress the file or split into multiple files.'
+      }, isJson)
+      process.exit(1)
+    }
+
+    files = [{
+      path: 'index.html',
+      content
+    }]
+    totalSize = size
+  }
+
+  // Handle directory
+  if (pathInfo.type === 'directory') {
+    if (!isJson) {
+      output.info('Mode: Directory')
+    }
+
+    // Validate directory has index.html
+    const dirValidation = validateDirectory(targetPath)
+    if (!dirValidation.valid) {
+      // Check for build output directories
+      const buildDir = detectBuildOutput(targetPath)
+      if (buildDir) {
+        output.deployError({
+          code: 'MISSING_INDEX',
+          message: 'No index.html found in current directory.',
+          suggestion: `Detected build output. Try: ship2 deploy ${buildDir}`
+        }, isJson)
+      } else {
+        output.deployError({
+          code: 'MISSING_INDEX',
+          message: 'No index.html found.',
+          suggestion: 'Run your build command first, then deploy the output directory.\nExample: npm run build && ship2 deploy ./dist'
+        }, isJson)
+      }
+      process.exit(1)
+    }
+
+    // Validate references
+    const indexContent = readFileSync(resolve(targetPath, 'index.html'), 'utf8')
+    const refValidation = validateReferences(targetPath, indexContent)
+    if (!refValidation.valid) {
+      output.deployError(refValidation.error, isJson)
+      process.exit(1)
+    }
+
+    // Collect files
+    const spinner = isJson ? null : ora('Scanning files...').start()
+
+    try {
+      const result = await collectFiles(targetPath)
+
+      if (result.errors.length > 0) {
+        if (spinner) spinner.fail('Validation failed')
+
+        for (const error of result.errors) {
+          if (error.type === ValidationError.FILE_TOO_LARGE) {
+            output.deployError({
+              code: 'FILE_TOO_LARGE',
+              message: `File too large: ${error.file} (${formatSize(error.size)}, limit: ${formatSize(error.maxSize)})`,
+              suggestion: 'Compress or remove the file.'
+            }, isJson)
+          } else if (error.type === ValidationError.TOTAL_TOO_LARGE) {
+            output.deployError({
+              code: 'TOTAL_TOO_LARGE',
+              message: `Total size too large: ${formatSize(error.totalSize)} (limit: ${formatSize(error.maxSize)})`,
+              suggestion: 'Remove unnecessary files or compress assets.'
+            }, isJson)
+          }
+        }
+        process.exit(1)
+      }
+
+      files = result.files
+      totalSize = result.totalSize
+
+      if (spinner) {
+        spinner.succeed(`Scanned: ${files.length} files, ${formatSize(totalSize)}`)
+      }
+    } catch (err) {
+      if (spinner) spinner.fail('Scan failed')
+      output.deployError({
+        code: 'SCAN_FAILED',
+        message: err.message
+      }, isJson)
+      process.exit(1)
+    }
+  }
+
+  // Start deployment
+  const deploySpinner = isJson ? null : ora(isPrivate ? 'Creating private link...' : 'Deploying...').start()
+
+  try {
+    const apiBase = getApiBase()
+    const token = getToken()
+
+    // Private deployment
+    if (isPrivate) {
+      const ttlHours = parseTTL(options.ttl)
+
+      const response = await fetch(`${apiBase}/api/private`, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+          'Authorization': `Bearer ${token}`
+        },
+        body: JSON.stringify({
+          files: files.map(f => ({ path: f.path, content: f.content })),
+          name: projectName,
+          ttl: ttlHours
+        })
+      })
+
+      const data = await response.json()
+
+      if (!response.ok) {
+        if (deploySpinner) deploySpinner.fail('Failed')
+        output.deployError({
+          code: data.error || 'PRIVATE_DEPLOY_FAILED',
+          message: data.message || data.error || 'Failed to create private link'
+        }, isJson)
+        process.exit(1)
+      }
+
+      if (deploySpinner) deploySpinner.succeed('Private link created')
+
+      output.privateResult({
+        ...data,
+        projectName,
+        totalSize
+      }, isJson)
+
+      return
+    }
+
+    // Public deployment
+    const response = await fetch(`${apiBase}/api/publish-multi`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+        'Authorization': `Bearer ${token}`
+      },
+      body: JSON.stringify({
+        files: files.map(f => ({ path: f.path, content: f.content })),
+        projectName,
+        subdomain: projectName,
+        meta: {
+          title: projectName,
+          platform: 'CLI',
+          message: options.message || ''
+        }
+      })
+    })
+
+    const data = await response.json()
+
+    if (!response.ok) {
+      if (deploySpinner) deploySpinner.fail('Deploy failed')
+      output.deployError({
+        code: 'DEPLOY_FAILED',
+        message: data.error || 'Deployment failed'
+      }, isJson)
+      process.exit(1)
+    }
+
+    if (deploySpinner) deploySpinner.succeed('Deployed')
+
+    output.deployResult({
+      ...data,
+      projectName,
+      totalSize
+    }, isJson)
+
+  } catch (err) {
+    if (deploySpinner) deploySpinner.fail('Failed')
+    output.deployError({
+      code: 'NETWORK_ERROR',
+      message: err.message,
+      suggestion: 'Check your network connection and try again.'
+    }, isJson)
+    process.exit(1)
+  }
+}

package/commands/login.js

@@ -0,0 +1,164 @@
+/**
+ * ship2 login - 登录命令
+ *
+ * 使用 Device Code 流程:
+ * 1. CLI 获取 device_code 和 user_code
+ * 2. 显示 user_code 和验证 URL
+ * 3. 用户在浏览器中完成授权
+ * 4. CLI 轮询获取 token
+ */
+
+import chalk from 'chalk'
+import ora from 'ora'
+import open from 'open'
+import { setToken, setEmail, setUserId, getApiBase } from '../lib/config.js'
+import { validateToken } from '../lib/api.js'
+import * as output from '../lib/output.js'
+
+// 轮询间隔 (秒)
+const POLL_INTERVAL = 5
+
+export default async function login(options) {
+  const apiBase = getApiBase()
+
+  // 如果提供了 token，直接验证并保存
+  if (options.token) {
+    const spinner = ora('Validating token...').start()
+
+    try {
+      const user = await validateToken(options.token)
+
+      if (!user) {
+        spinner.fail('Invalid token')
+        process.exit(1)
+      }
+
+      setToken(options.token)
+      setEmail(user.email || '')
+      setUserId(user.id || '')
+
+      spinner.succeed('Login successful')
+      output.userInfo(user)
+    } catch (err) {
+      spinner.fail(`Login failed: ${err.message}`)
+      process.exit(1)
+    }
+
+    return
+  }
+
+  // Device Code 流程
+  console.log()
+  console.log(chalk.bold('Login to ship2.app'))
+  console.log()
+
+  const spinner = ora('Requesting device code...').start()
+
+  try {
+    // 1. 获取 device code
+    const deviceRes = await fetch(`${apiBase}/api/auth/device`, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json' }
+    })
+
+    if (!deviceRes.ok) {
+      const data = await deviceRes.json()
+      spinner.fail(data.error || 'Failed to get device code')
+      process.exit(1)
+    }
+
+    const deviceData = await deviceRes.json()
+    const { device_code, user_code, verification_uri, expires_in } = deviceData
+
+    spinner.stop()
+
+    // 2. 显示验证码和 URL
+    console.log()
+    console.log(chalk.bold('  Your verification code:'))
+    console.log()
+    console.log(chalk.bold.cyan(`    ${user_code}`))
+    console.log()
+    console.log(`  Open ${chalk.underline(verification_uri)} in your browser`)
+    console.log(`  and enter the code above to authorize.`)
+    console.log()
+    console.log(chalk.dim(`  Code expires in ${Math.floor(expires_in / 60)} minutes`))
+    console.log()
+
+    // 尝试自动打开浏览器
+    if (!options.noBrowser) {
+      try {
+        await open(`${verification_uri}?code=${user_code}`)
+        console.log(chalk.dim('  Browser opened automatically.'))
+        console.log()
+      } catch {
+        // ignore, user can open manually
+      }
+    }
+
+    // 3. 轮询等待授权
+    const pollSpinner = ora('Waiting for authorization...').start()
+    const startTime = Date.now()
+    const timeout = expires_in * 1000
+
+    while (Date.now() - startTime < timeout) {
+      await sleep(POLL_INTERVAL * 1000)
+
+      try {
+        const tokenRes = await fetch(`${apiBase}/api/auth/device/token`, {
+          method: 'POST',
+          headers: { 'Content-Type': 'application/json' },
+          body: JSON.stringify({ device_code })
+        })
+
+        const tokenData = await tokenRes.json()
+
+        if (tokenRes.ok && tokenData.access_token) {
+          // 授权成功
+          setToken(tokenData.access_token)
+          setEmail(tokenData.user?.email || '')
+          setUserId(tokenData.user?.id || '')
+
+          pollSpinner.succeed('Login successful!')
+          console.log()
+          output.userInfo(tokenData.user)
+          return
+        }
+
+        // 检查错误类型
+        if (tokenData.error === 'authorization_pending') {
+          // 继续轮询
+          continue
+        }
+
+        if (tokenData.error === 'expired_token') {
+          pollSpinner.fail('Verification code expired')
+          process.exit(1)
+        }
+
+        if (tokenData.error === 'access_denied') {
+          pollSpinner.fail('Authorization denied')
+          process.exit(1)
+        }
+
+        // 其他错误
+        pollSpinner.fail(tokenData.error || 'Authorization failed')
+        process.exit(1)
+
+      } catch (err) {
+        // 网络错误，继续重试
+        continue
+      }
+    }
+
+    pollSpinner.fail('Authorization timed out')
+    process.exit(1)
+
+  } catch (err) {
+    spinner.fail(`Login failed: ${err.message}`)
+    process.exit(1)
+  }
+}
+
+function sleep(ms) {
+  return new Promise(resolve => setTimeout(resolve, ms))
+}

package/commands/logout.js

@@ -0,0 +1,16 @@
+/**
+ * ship2 logout - 登出
+ */
+
+import { clearAuth, isLoggedIn } from '../lib/config.js'
+import * as output from '../lib/output.js'
+
+export default async function logout() {
+  if (!isLoggedIn()) {
+    output.info('当前未登录')
+    return
+  }
+
+  clearAuth()
+  output.success('已登出')
+}

package/commands/ls.js

@@ -0,0 +1,45 @@
+/**
+ * ship2 ls - 列出已部署的项目
+ */
+
+import ora from 'ora'
+import { isLoggedIn, getToken, getApiBase } from '../lib/config.js'
+import * as output from '../lib/output.js'
+
+export default async function ls(options) {
+  if (!isLoggedIn()) {
+    output.error('请先登录: ship2 login')
+    process.exit(1)
+  }
+
+  const isJson = options.json
+  const spinner = isJson ? null : ora('获取项目列表...').start()
+
+  try {
+    const apiBase = getApiBase()
+    const token = getToken()
+
+    const response = await fetch(`${apiBase}/api/user/projects`, {
+      headers: {
+        'Authorization': `Bearer ${token}`
+      }
+    })
+
+    const data = await response.json()
+
+    if (!response.ok) {
+      if (spinner) spinner.fail('获取失败')
+      output.error(data.error || '获取项目列表失败')
+      process.exit(1)
+    }
+
+    if (spinner) spinner.succeed('获取成功')
+
+    output.projectList(data.projects || [], isJson)
+
+  } catch (err) {
+    if (spinner) spinner.fail('获取失败')
+    output.error(err.message)
+    process.exit(1)
+  }
+}

package/commands/whoami.js

@@ -0,0 +1,26 @@
+/**
+ * ship2 whoami - 显示当前登录用户
+ */
+
+import { isLoggedIn, getEmail, getUserId, getConfigPath } from '../lib/config.js'
+import * as output from '../lib/output.js'
+
+export default async function whoami() {
+  if (!isLoggedIn()) {
+    output.error('未登录')
+    console.log()
+    console.log('请运行: ship2 login')
+    process.exit(1)
+  }
+
+  const email = getEmail()
+  const userId = getUserId()
+
+  output.userInfo({
+    email: email || '(未知)',
+    id: userId
+  })
+
+  console.log('配置文件:', getConfigPath())
+  console.log()
+}

package/lib/api.js

@@ -0,0 +1,107 @@
+/**
+ * Ship2 API 客户端
+ */
+
+import { getToken, getApiBase } from './config.js'
+
+class ApiError extends Error {
+  constructor(message, status, code) {
+    super(message)
+    this.name = 'ApiError'
+    this.status = status
+    this.code = code
+  }
+}
+
+async function request(endpoint, options = {}) {
+  const apiBase = getApiBase()
+  const token = getToken()
+
+  const url = `${apiBase}${endpoint}`
+  const headers = {
+    'Content-Type': 'application/json',
+    ...options.headers
+  }
+
+  if (token) {
+    headers['Authorization'] = `Bearer ${token}`
+  }
+
+  const response = await fetch(url, {
+    ...options,
+    headers
+  })
+
+  const data = await response.json().catch(() => ({}))
+
+  if (!response.ok) {
+    throw new ApiError(
+      data.error || `Request failed with status ${response.status}`,
+      response.status,
+      data.code
+    )
+  }
+
+  return data
+}
+
+/**
+ * 登录
+ */
+export async function login(email, password) {
+  return request('/api/auth/login', {
+    method: 'POST',
+    body: JSON.stringify({ email, password })
+  })
+}
+
+/**
+ * 获取当前用户信息
+ */
+export async function getCurrentUser() {
+  return request('/api/user/me')
+}
+
+/**
+ * 部署项目
+ */
+export async function deploy(files, options = {}) {
+  const { projectName, subdomain, meta = {} } = options
+
+  return request('/api/publish-multi', {
+    method: 'POST',
+    body: JSON.stringify({
+      files,
+      projectName,
+      subdomain,
+      meta
+    })
+  })
+}
+
+/**
+ * 获取用户的项目列表
+ */
+export async function listProjects() {
+  return request('/api/user/projects')
+}
+
+/**
+ * 验证 token 是否有效
+ */
+export async function validateToken(token) {
+  const apiBase = getApiBase()
+  const response = await fetch(`${apiBase}/api/user/me`, {
+    headers: {
+      'Authorization': `Bearer ${token}`
+    }
+  })
+
+  if (!response.ok) {
+    return null
+  }
+
+  return response.json()
+}
+
+export { ApiError }

package/lib/config.js

@@ -0,0 +1,76 @@
+/**
+ * 配置管理
+ * 存储路径: ~/.config/ship2/config.json
+ */
+
+import Conf from 'conf'
+
+const config = new Conf({
+  projectName: 'ship2',
+  schema: {
+    token: {
+      type: 'string',
+      default: ''
+    },
+    email: {
+      type: 'string',
+      default: ''
+    },
+    userId: {
+      type: 'string',
+      default: ''
+    },
+    apiBase: {
+      type: 'string',
+      default: 'https://ship2.app'
+    }
+  }
+})
+
+export function getToken() {
+  return config.get('token')
+}
+
+export function setToken(token) {
+  config.set('token', token)
+}
+
+export function getEmail() {
+  return config.get('email')
+}
+
+export function setEmail(email) {
+  config.set('email', email)
+}
+
+export function getUserId() {
+  return config.get('userId')
+}
+
+export function setUserId(userId) {
+  config.set('userId', userId)
+}
+
+export function getApiBase() {
+  return config.get('apiBase')
+}
+
+export function setApiBase(apiBase) {
+  config.set('apiBase', apiBase)
+}
+
+export function clearAuth() {
+  config.delete('token')
+  config.delete('email')
+  config.delete('userId')
+}
+
+export function isLoggedIn() {
+  return !!config.get('token')
+}
+
+export function getConfigPath() {
+  return config.path
+}
+
+export default config

package/lib/files.js

@@ -0,0 +1,255 @@
+/**
+ * File handling utilities
+ */
+
+import { readFileSync, statSync, existsSync, readdirSync } from 'fs'
+import { join, basename, extname, relative } from 'path'
+import { glob } from 'glob'
+import mime from 'mime-types'
+
+// File size limits
+const MAX_FILE_SIZE = 5 * 1024 * 1024  // 5MB per file
+const MAX_TOTAL_SIZE = 10 * 1024 * 1024  // 10MB total (Free tier)
+
+// Common build output directories
+const BUILD_DIRS = ['dist', 'build', 'out', 'public', '.next/static', '.output/public']
+
+// Ignore patterns
+const IGNORE_PATTERNS = [
+  'node_modules/**',
+  '.git/**',
+  '.DS_Store',
+  'Thumbs.db',
+  '*.log',
+  '.env*',
+  '.idea/**',
+  '.vscode/**'
+]
+
+/**
+ * Validation error types
+ */
+export const ValidationError = {
+  MISSING_INDEX: 'MISSING_INDEX',
+  MISSING_ASSET: 'MISSING_ASSET',
+  FILE_TOO_LARGE: 'FILE_TOO_LARGE',
+  TOTAL_TOO_LARGE: 'TOTAL_TOO_LARGE',
+  INVALID_PATH: 'INVALID_PATH',
+  NOT_FOUND: 'NOT_FOUND'
+}
+
+/**
+ * Detect path type
+ */
+export function detectPathType(inputPath) {
+  if (!existsSync(inputPath)) {
+    return { type: 'not_found', path: inputPath }
+  }
+
+  const stat = statSync(inputPath)
+
+  if (stat.isFile()) {
+    const ext = extname(inputPath).toLowerCase()
+    if (ext === '.html' || ext === '.htm') {
+      return { type: 'single_file', path: inputPath }
+    }
+    return { type: 'invalid_file', path: inputPath, ext }
+  }
+
+  if (stat.isDirectory()) {
+    return { type: 'directory', path: inputPath }
+  }
+
+  return { type: 'unknown', path: inputPath }
+}
+
+/**
+ * Detect build output directory
+ * Returns the path if found, null otherwise
+ */
+export function detectBuildOutput(dirPath) {
+  for (const buildDir of BUILD_DIRS) {
+    const fullPath = join(dirPath, buildDir)
+    if (existsSync(fullPath) && existsSync(join(fullPath, 'index.html'))) {
+      return `./${buildDir}`
+    }
+  }
+  return null
+}
+
+/**
+ * Collect files from directory
+ */
+export async function collectFiles(dirPath) {
+  const files = await glob('**/*', {
+    cwd: dirPath,
+    nodir: true,
+    ignore: IGNORE_PATTERNS,
+    dot: false
+  })
+
+  const result = []
+  let totalSize = 0
+  const errors = []
+
+  for (const file of files) {
+    const fullPath = join(dirPath, file)
+    const stat = statSync(fullPath)
+    const size = stat.size
+
+    // Check single file size
+    if (size > MAX_FILE_SIZE) {
+      errors.push({
+        type: ValidationError.FILE_TOO_LARGE,
+        file,
+        size,
+        maxSize: MAX_FILE_SIZE
+      })
+      continue
+    }
+
+    totalSize += size
+
+    // Read file content
+    const content = readFileSync(fullPath, 'utf8')
+
+    result.push({
+      path: file,
+      content,
+      size
+    })
+  }
+
+  // Check total size
+  if (totalSize > MAX_TOTAL_SIZE) {
+    errors.push({
+      type: ValidationError.TOTAL_TOO_LARGE,
+      totalSize,
+      maxSize: MAX_TOTAL_SIZE
+    })
+  }
+
+  return { files: result, totalSize, errors }
+}
+
+/**
+ * Validate directory has index.html
+ */
+export function validateDirectory(dirPath) {
+  const indexPath = join(dirPath, 'index.html')
+  if (!existsSync(indexPath)) {
+    return {
+      valid: false,
+      error: {
+        type: ValidationError.MISSING_INDEX,
+        code: 'MISSING_INDEX',
+        message: 'No index.html found.',
+        suggestion: 'Make sure index.html exists in the directory.'
+      }
+    }
+  }
+  return { valid: true }
+}
+
+/**
+ * Extract local references from HTML
+ */
+export function extractLocalReferences(htmlContent) {
+  const references = []
+
+  // Match src="./xxx" or href="./xxx" or relative paths
+  const patterns = [
+    /src=["']\.?\/([^"']+)["']/gi,
+    /href=["']\.?\/([^"']+)["']/gi,
+    /url\(["']?\.?\/([^"')]+)["']?\)/gi
+  ]
+
+  for (const pattern of patterns) {
+    let match
+    while ((match = pattern.exec(htmlContent)) !== null) {
+      const ref = match[1]
+      // Exclude external links and anchors
+      if (!ref.startsWith('http') && !ref.startsWith('#') && !ref.startsWith('//')) {
+        references.push(ref)
+      }
+    }
+  }
+
+  return [...new Set(references)]
+}
+
+/**
+ * Validate referenced files exist
+ */
+export function validateReferences(dirPath, htmlContent) {
+  const references = extractLocalReferences(htmlContent)
+  const missing = []
+
+  for (const ref of references) {
+    const fullPath = join(dirPath, ref)
+    if (!existsSync(fullPath)) {
+      missing.push(ref)
+    }
+  }
+
+  if (missing.length > 0) {
+    // Limit to 20 files
+    const displayMissing = missing.slice(0, 20)
+    const hasMore = missing.length > 20
+
+    return {
+      valid: false,
+      error: {
+        type: ValidationError.MISSING_ASSET,
+        code: 'MISSING_ASSET',
+        message: `Missing ${missing.length} referenced file${missing.length > 1 ? 's' : ''}.`,
+        missing: displayMissing,
+        hasMore,
+        totalMissing: missing.length,
+        suggestion: 'Add the missing files or fix the references in your HTML.'
+      }
+    }
+  }
+
+  return { valid: true, references }
+}
+
+/**
+ * Infer project name from path
+ */
+export function inferProjectName(inputPath) {
+  const pathType = detectPathType(inputPath)
+
+  if (pathType.type === 'single_file') {
+    // Single file: use filename without extension
+    return basename(inputPath, extname(inputPath))
+  }
+
+  if (pathType.type === 'directory') {
+    // Directory: use directory name
+    return basename(inputPath)
+  }
+
+  return 'my-site'
+}
+
+/**
+ * Sanitize project name (slug)
+ */
+export function sanitizeProjectName(name) {
+  return name
+    .toLowerCase()
+    .replace(/[^a-z0-9-]/g, '-')
+    .replace(/-+/g, '-')
+    .replace(/^-|-$/g, '')
+    .slice(0, 32)
+}
+
+/**
+ * Format file size
+ */
+export function formatSize(bytes) {
+  if (bytes < 1024) return `${bytes} B`
+  if (bytes < 1024 * 1024) return `${(bytes / 1024).toFixed(1)} KB`
+  return `${(bytes / (1024 * 1024)).toFixed(2)} MB`
+}

package/lib/output.js

@@ -0,0 +1,200 @@
+/**
+ * Output formatting utilities
+ */
+
+import chalk from 'chalk'
+
+/**
+ * Success output
+ */
+export function success(message) {
+  console.log(chalk.green('✓'), message)
+}
+
+/**
+ * Error output
+ */
+export function error(message) {
+  console.error(chalk.red('✗'), message)
+}
+
+/**
+ * Warning output
+ */
+export function warn(message) {
+  console.warn(chalk.yellow('⚠'), message)
+}
+
+/**
+ * Info output
+ */
+export function info(message) {
+  console.log(chalk.blue('ℹ'), message)
+}
+
+/**
+ * Plain output
+ */
+export function log(message) {
+  console.log(message)
+}
+
+/**
+ * Output deploy result
+ */
+export function deployResult(result, isJson = false) {
+  if (isJson) {
+    console.log(JSON.stringify({
+      success: true,
+      url: result.domainUrl,
+      vercelUrl: result.vercelUrl,
+      project: result.projectName,
+      files: result.fileCount,
+      size: result.totalSize
+    }, null, 2))
+    return
+  }
+
+  console.log()
+  success('Deployed!')
+  console.log()
+  console.log(chalk.bold('  URL:'), chalk.cyan(result.domainUrl))
+  if (result.vercelUrl && result.vercelUrl !== result.domainUrl) {
+    console.log(chalk.dim('  Vercel:'), chalk.dim(result.vercelUrl))
+  }
+  console.log(chalk.dim('  Files:'), result.fileCount || result.files?.length)
+  console.log()
+}
+
+/**
+ * Output private link result
+ */
+export function privateResult(result, isJson = false) {
+  if (isJson) {
+    console.log(JSON.stringify({
+      success: true,
+      url: result.url,
+      token: result.token,
+      expiresAt: result.expiresAt,
+      ttlHours: result.ttlHours,
+      files: result.fileCount,
+      size: result.totalSize
+    }, null, 2))
+    return
+  }
+
+  console.log()
+  success('Private link created!')
+  console.log()
+  console.log(chalk.bold('  URL:'), chalk.cyan(result.url))
+  console.log(chalk.dim('  Expires:'), formatExpiry(result.expiresAt))
+  console.log(chalk.dim('  Files:'), result.fileCount)
+  console.log()
+  console.log(chalk.yellow('  ⚠ This link will expire. Copy it now!'))
+  console.log()
+}
+
+/**
+ * Format expiry time
+ */
+function formatExpiry(expiresAt) {
+  const expiry = new Date(expiresAt)
+  const now = new Date()
+  const diffMs = expiry - now
+  const diffHours = Math.round(diffMs / (1000 * 60 * 60))
+
+  if (diffHours < 24) {
+    return `in ${diffHours} hour${diffHours !== 1 ? 's' : ''}`
+  }
+
+  const diffDays = Math.round(diffHours / 24)
+  return `in ${diffDays} day${diffDays !== 1 ? 's' : ''}`
+}
+
+/**
+ * Output deploy error (productized)
+ */
+export function deployError(err, isJson = false) {
+  if (isJson) {
+    console.log(JSON.stringify({
+      success: false,
+      error: {
+        code: err.code || 'DEPLOY_FAILED',
+        message: err.message,
+        missing: err.missing,
+        suggestion: err.suggestion
+      }
+    }, null, 2))
+    return
+  }
+
+  console.log()
+  console.log(chalk.red.bold(`✗ ${err.code || 'ERROR'}`), chalk.red(err.message))
+
+  // Show missing files (max 20)
+  if (err.missing && err.missing.length > 0) {
+    console.log()
+    console.log(chalk.dim('  Missing files:'))
+    for (const file of err.missing) {
+      console.log(chalk.dim(`    - ${file}`))
+    }
+    if (err.hasMore) {
+      console.log(chalk.dim(`    ... and ${err.totalMissing - 20} more`))
+    }
+  }
+
+  // Show suggestion
+  if (err.suggestion) {
+    console.log()
+    console.log(chalk.cyan('  →'), err.suggestion)
+  }
+
+  console.log()
+}
+
+/**
+ * Output project list
+ */
+export function projectList(projects, isJson = false) {
+  if (isJson) {
+    console.log(JSON.stringify(projects, null, 2))
+    return
+  }
+
+  if (!projects || projects.length === 0) {
+    info('No projects deployed yet.')
+    console.log()
+    console.log('  Deploy your first project:')
+    console.log(chalk.cyan('    ship2 deploy ./my-site'))
+    console.log()
+    return
+  }
+
+  console.log()
+  console.log(chalk.bold(`Projects (${projects.length})`))
+  console.log()
+
+  for (const project of projects) {
+    console.log(chalk.cyan(`  ${project.name}`))
+    console.log(chalk.dim(`    ${project.domain_url}`))
+    if (project.updated_at) {
+      const date = new Date(project.updated_at).toLocaleDateString()
+      console.log(chalk.dim(`    Updated: ${date}`))
+    }
+    console.log()
+  }
+}
+
+/**
+ * Output user info
+ */
+export function userInfo(user) {
+  console.log()
+  console.log(chalk.bold('Logged in as'))
+  console.log()
+  console.log('  Email:', chalk.cyan(user.email))
+  if (user.id) {
+    console.log(chalk.dim(`  ID: ${user.id}`))
+  }
+  console.log()
+}

package/package.json

@@ -0,0 +1,47 @@
+{
+  "name": "ship2-cli",
+  "version": "0.1.0",
+  "description": "Deploy static sites to ship2.app in seconds",
+  "main": "lib/index.js",
+  "bin": {
+    "ship2": "./bin/ship2.js"
+  },
+  "type": "module",
+  "scripts": {
+    "dev": "node bin/ship2.js",
+    "build": "echo 'No build step needed'",
+    "test": "node --test"
+  },
+  "keywords": [
+    "deploy",
+    "static-site",
+    "hosting",
+    "cli"
+  ],
+  "author": "ship2",
+  "license": "MIT",
+  "dependencies": {
+    "chalk": "^5.3.0",
+    "commander": "^12.1.0",
+    "conf": "^13.0.1",
+    "glob": "^11.0.0",
+    "mime-types": "^2.1.35",
+    "node-fetch": "^3.3.2",
+    "open": "^10.1.0",
+    "ora": "^8.1.0"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "files": [
+    "bin",
+    "lib",
+    "commands"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/lyonwe/ship2.git",
+    "directory": "cli"
+  },
+  "homepage": "https://ship2.app"
+}