skilluse 0.1.0 → 0.1.3

package/dist/components/Table.js

@@ -1,27 +0,0 @@
-import { jsx as _jsx, jsxs as _jsxs } from "react/jsx-runtime";
-import { Box, Text } from "ink";
-export function Table({ data, columns, }) {
-    if (data.length === 0) {
-        return _jsx(Text, { dimColor: true, children: "No data" });
-    }
-    // Get columns from data keys if not specified
-    const cols = columns || Object.keys(data[0]);
-    // Calculate column widths
-    const widths = cols.map((col) => {
-        const headerWidth = String(col).length;
-        const maxDataWidth = data.reduce((max, row) => {
-            const value = row[col];
-            const width = value == null ? 0 : String(value).length;
-            return Math.max(max, width);
-        }, 0);
-        return Math.max(headerWidth, maxDataWidth);
-    });
-    const renderCell = (value, width, isHeader = false) => {
-        const str = value == null ? "" : String(value);
-        const padded = str.padEnd(width);
-        return isHeader ? (_jsx(Text, { bold: true, children: padded })) : (_jsx(Text, { children: padded }));
-    };
-    const separator = (_jsx(Box, { children: _jsx(Text, { children: widths.map((w, i) => "─".repeat(w) + (i < widths.length - 1 ? "─┼─" : "")).join("") }) }));
-    return (_jsxs(Box, { flexDirection: "column", children: [_jsx(Box, { children: cols.map((col, i) => (_jsxs(Box, { children: [renderCell(String(col), widths[i], true), i < cols.length - 1 && _jsx(Text, { children: " \u2502 " })] }, String(col)))) }), separator, data.map((row, rowIndex) => (_jsx(Box, { children: cols.map((col, i) => (_jsxs(Box, { children: [renderCell(row[col], widths[i]), i < cols.length - 1 && _jsx(Text, { children: " \u2502 " })] }, String(col)))) }, rowIndex)))] }));
-}
-//# sourceMappingURL=Table.js.map

package/dist/components/TextInput.d.ts

@@ -1,9 +0,0 @@
-interface TextInputProps {
-    value: string;
-    onChange: (value: string) => void;
-    placeholder?: string;
-    onSubmit?: (value: string) => void;
-}
-export declare function TextInput({ value, onChange, placeholder, onSubmit, }: TextInputProps): import("react/jsx-runtime").JSX.Element;
-export {};
-//# sourceMappingURL=TextInput.d.ts.map

package/dist/components/TextInput.js

@@ -1,6 +0,0 @@
-import { jsx as _jsx } from "react/jsx-runtime";
-import InkTextInput from "ink-text-input";
-export function TextInput({ value, onChange, placeholder, onSubmit, }) {
-    return (_jsx(InkTextInput, { value: value, onChange: onChange, placeholder: placeholder, onSubmit: onSubmit }));
-}
-//# sourceMappingURL=TextInput.js.map

package/dist/components/index.d.ts

@@ -1,8 +0,0 @@
-export { Spinner } from "./Spinner.js";
-export { Select } from "./Select.js";
-export { Table } from "./Table.js";
-export { ProgressBar } from "./ProgressBar.js";
-export { StatusMessage } from "./StatusMessage.js";
-export { TextInput } from "./TextInput.js";
-export { CLIError, type CLIErrorProps } from "./CLIError.js";
-//# sourceMappingURL=index.d.ts.map

package/dist/components/index.js

@@ -1,8 +0,0 @@
-export { Spinner } from "./Spinner.js";
-export { Select } from "./Select.js";
-export { Table } from "./Table.js";
-export { ProgressBar } from "./ProgressBar.js";
-export { StatusMessage } from "./StatusMessage.js";
-export { TextInput } from "./TextInput.js";
-export { CLIError } from "./CLIError.js";
-//# sourceMappingURL=index.js.map

package/dist/index.d.ts

@@ -1,3 +0,0 @@
-#!/usr/bin/env node
-export {};
-//# sourceMappingURL=index.d.ts.map

package/dist/services/credentials.d.ts

@@ -1,69 +0,0 @@
-/**
- * Secure credential storage service.
- *
- * Stores OAuth tokens securely using:
- * 1. System keychain (preferred) - macOS Keychain, Windows Credential Manager, Linux libsecret
- * 2. Encrypted file fallback - when keychain is unavailable
- *
- * Storage strategy:
- * - User token → Keychain/encrypted file (sensitive)
- * - Installation list → Config file JSON via store.ts (metadata)
- * - Installation token → Memory cache (short-lived, 1 hour)
- */
-/** @deprecated Use UserCredentials instead */
-export interface Credentials {
-    token: string;
-    user: string;
-}
-export interface UserCredentials {
-    token: string;
-    userName: string;
-}
-export interface InstallationTokenCache {
-    installationId: number;
-    token: string;
-    expiresAt: Date;
-}
-/**
- * Check if the system keychain is available and working.
- */
-export declare function isKeychainAvailable(): Promise<boolean>;
-/**
- * Get stored credentials from keychain or encrypted file.
- */
-export declare function getCredentials(): Promise<Credentials | null>;
-/**
- * Store credentials in keychain or encrypted file.
- */
-export declare function setCredentials(token: string, user: string): Promise<void>;
-/**
- * Clear stored credentials from both keychain and encrypted file.
- */
-export declare function clearCredentials(): Promise<void>;
-/**
- * Store user credentials (token and username) securely.
- */
-export declare function setUserCredentials(token: string, userName: string): Promise<void>;
-/**
- * Get user credentials from secure storage.
- */
-export declare function getUserCredentials(): Promise<UserCredentials | null>;
-/**
- * Get cached installation token if it exists and is not expired.
- * Returns null if no valid token is cached.
- */
-export declare function getCachedInstallationToken(installationId: number): InstallationTokenCache | null;
-/**
- * Cache an installation token.
- */
-export declare function setCachedInstallationToken(cache: InstallationTokenCache): void;
-/**
- * Clear all cached installation tokens.
- */
-export declare function clearInstallationTokenCache(): void;
-/**
- * Clear all credentials: user token, and installation token cache.
- * Note: Installation list and default installation are cleared via store.ts
- */
-export declare function clearAllCredentials(): Promise<void>;
-//# sourceMappingURL=credentials.d.ts.map

package/dist/services/credentials.js

@@ -1,216 +0,0 @@
-/**
- * Secure credential storage service.
- *
- * Stores OAuth tokens securely using:
- * 1. System keychain (preferred) - macOS Keychain, Windows Credential Manager, Linux libsecret
- * 2. Encrypted file fallback - when keychain is unavailable
- *
- * Storage strategy:
- * - User token → Keychain/encrypted file (sensitive)
- * - Installation list → Config file JSON via store.ts (metadata)
- * - Installation token → Memory cache (short-lived, 1 hour)
- */
-import crypto from "crypto";
-import fs from "fs/promises";
-import os from "os";
-import path from "path";
-import keytar from "keytar";
-import { dataPath } from "./paths.js";
-const SERVICE_NAME = "skilluse";
-const CREDENTIALS_FILE = "credentials.enc";
-// In-memory cache for short-lived installation tokens
-const installationTokenCache = new Map();
-// Cache keychain availability to avoid repeated checks
-let keychainAvailable = null;
-/**
- * Check if the system keychain is available and working.
- */
-export async function isKeychainAvailable() {
-    if (keychainAvailable !== null) {
-        return keychainAvailable;
-    }
-    try {
-        // Try a test operation to see if keychain is working
-        const testKey = "__keychain_test__";
-        await keytar.setPassword(SERVICE_NAME, testKey, "test");
-        await keytar.deletePassword(SERVICE_NAME, testKey);
-        keychainAvailable = true;
-    }
-    catch {
-        keychainAvailable = false;
-    }
-    return keychainAvailable;
-}
-/**
- * Get stored credentials from keychain or encrypted file.
- */
-export async function getCredentials() {
-    if (await isKeychainAvailable()) {
-        return getCredentialsFromKeychain();
-    }
-    return getCredentialsFromFile();
-}
-/**
- * Store credentials in keychain or encrypted file.
- */
-export async function setCredentials(token, user) {
-    if (await isKeychainAvailable()) {
-        await setCredentialsToKeychain(token, user);
-    }
-    else {
-        await setCredentialsToFile(token, user);
-    }
-}
-/**
- * Clear stored credentials from both keychain and encrypted file.
- */
-export async function clearCredentials() {
-    // Clear from keychain
-    try {
-        await keytar.deletePassword(SERVICE_NAME, "github-token");
-        await keytar.deletePassword(SERVICE_NAME, "github-user");
-    }
-    catch {
-        // Ignore keychain errors
-    }
-    // Clear encrypted file
-    try {
-        const filePath = path.join(dataPath, CREDENTIALS_FILE);
-        await fs.unlink(filePath);
-    }
-    catch {
-        // Ignore file errors (file may not exist)
-    }
-}
-// --- Keychain operations ---
-async function getCredentialsFromKeychain() {
-    try {
-        const token = await keytar.getPassword(SERVICE_NAME, "github-token");
-        const user = await keytar.getPassword(SERVICE_NAME, "github-user");
-        if (token && user) {
-            return { token, user };
-        }
-        return null;
-    }
-    catch {
-        return null;
-    }
-}
-async function setCredentialsToKeychain(token, user) {
-    await keytar.setPassword(SERVICE_NAME, "github-token", token);
-    await keytar.setPassword(SERVICE_NAME, "github-user", user);
-}
-// --- Encrypted file operations ---
-/**
- * Derive an encryption key from machine-specific information.
- * This provides basic protection against copying the file to another machine.
- */
-function deriveKey() {
-    const machineInfo = `${os.hostname()}:${os.userInfo().username}:${SERVICE_NAME}`;
-    return crypto.scryptSync(machineInfo, "skilluse-salt", 32);
-}
-function encrypt(data) {
-    const key = deriveKey();
-    const iv = crypto.randomBytes(16);
-    const cipher = crypto.createCipheriv("aes-256-gcm", key, iv);
-    let encrypted = cipher.update(data, "utf8", "hex");
-    encrypted += cipher.final("hex");
-    const authTag = cipher.getAuthTag();
-    // Format: iv:authTag:encryptedData
-    return `${iv.toString("hex")}:${authTag.toString("hex")}:${encrypted}`;
-}
-function decrypt(encryptedData) {
-    const [ivHex, authTagHex, encrypted] = encryptedData.split(":");
-    const key = deriveKey();
-    const iv = Buffer.from(ivHex, "hex");
-    const authTag = Buffer.from(authTagHex, "hex");
-    const decipher = crypto.createDecipheriv("aes-256-gcm", key, iv);
-    decipher.setAuthTag(authTag);
-    let decrypted = decipher.update(encrypted, "hex", "utf8");
-    decrypted += decipher.final("utf8");
-    return decrypted;
-}
-async function getCredentialsFromFile() {
-    try {
-        const filePath = path.join(dataPath, CREDENTIALS_FILE);
-        const encryptedData = await fs.readFile(filePath, "utf8");
-        const decrypted = decrypt(encryptedData);
-        return JSON.parse(decrypted);
-    }
-    catch {
-        return null;
-    }
-}
-async function setCredentialsToFile(token, user) {
-    const credentials = { token, user };
-    const encrypted = encrypt(JSON.stringify(credentials));
-    // Ensure data directory exists
-    await fs.mkdir(dataPath, { recursive: true });
-    const filePath = path.join(dataPath, CREDENTIALS_FILE);
-    await fs.writeFile(filePath, encrypted, { mode: 0o600 }); // Owner read/write only
-}
-// ============================================================================
-// New GitHub App Credential Functions
-// ============================================================================
-/**
- * Store user credentials (token and username) securely.
- */
-export async function setUserCredentials(token, userName) {
-    // Reuse existing implementation with new interface
-    await setCredentials(token, userName);
-}
-/**
- * Get user credentials from secure storage.
- */
-export async function getUserCredentials() {
-    const creds = await getCredentials();
-    if (!creds)
-        return null;
-    return {
-        token: creds.token,
-        userName: creds.user,
-    };
-}
-// ============================================================================
-// Installation Token Cache (in-memory, short-lived)
-// ============================================================================
-/**
- * Get cached installation token if it exists and is not expired.
- * Returns null if no valid token is cached.
- */
-export function getCachedInstallationToken(installationId) {
-    const cached = installationTokenCache.get(installationId);
-    if (!cached)
-        return null;
-    // Check if token is expired (with 5 minute buffer for safety)
-    const bufferMs = 5 * 60 * 1000;
-    if (new Date(cached.expiresAt).getTime() - bufferMs < Date.now()) {
-        // Token is expired or about to expire, remove it
-        installationTokenCache.delete(installationId);
-        return null;
-    }
-    return cached;
-}
-/**
- * Cache an installation token.
- */
-export function setCachedInstallationToken(cache) {
-    installationTokenCache.set(cache.installationId, cache);
-}
-/**
- * Clear all cached installation tokens.
- */
-export function clearInstallationTokenCache() {
-    installationTokenCache.clear();
-}
-/**
- * Clear all credentials: user token, and installation token cache.
- * Note: Installation list and default installation are cleared via store.ts
- */
-export async function clearAllCredentials() {
-    // Clear user credentials
-    await clearCredentials();
-    // Clear installation token cache
-    clearInstallationTokenCache();
-}
-//# sourceMappingURL=credentials.js.map

package/dist/services/index.d.ts

@@ -1,6 +0,0 @@
-export { requestDeviceCode, pollForAccessToken, pollUntilComplete, openBrowser, sleep, getUserInstallations, getInstallationRepositories, getInstallationToken, type DeviceCodeResponse, type AccessTokenResponse, type OAuthError, type PollResult, type Installation, type Repository, type InstallationToken, } from "./oauth.js";
-export { getConfig, addRepo, removeRepo, setDefaultRepo, addInstalledSkill, removeInstalledSkill, setInstallations, getInstallations, setDefaultInstallation, getDefaultInstallation, clearInstallations, isFirstRun, type Config, type RepoConfig, type InstalledSkill, type StoredInstallation, } from "./store.js";
-export { configPath, dataPath, cachePath, logPath, tempPath, } from "./paths.js";
-export { getCredentials, setCredentials, clearCredentials, isKeychainAvailable, type Credentials, setUserCredentials, getUserCredentials, getCachedInstallationToken, setCachedInstallationToken, clearInstallationTokenCache, clearAllCredentials, type UserCredentials, type InstallationTokenCache, } from "./credentials.js";
-export { checkForUpdate, getCurrentVersion, type UpdateInfo, } from "./update.js";
-//# sourceMappingURL=index.d.ts.map

package/dist/services/index.js

@@ -1,10 +0,0 @@
-export { requestDeviceCode, pollForAccessToken, pollUntilComplete, openBrowser, sleep, getUserInstallations, getInstallationRepositories, getInstallationToken, } from "./oauth.js";
-export { getConfig, addRepo, removeRepo, setDefaultRepo, addInstalledSkill, removeInstalledSkill, setInstallations, getInstallations, setDefaultInstallation, getDefaultInstallation, clearInstallations, isFirstRun, } from "./store.js";
-export { configPath, dataPath, cachePath, logPath, tempPath, } from "./paths.js";
-export { 
-// Legacy (deprecated)
-getCredentials, setCredentials, clearCredentials, isKeychainAvailable, 
-// New GitHub App credential functions
-setUserCredentials, getUserCredentials, getCachedInstallationToken, setCachedInstallationToken, clearInstallationTokenCache, clearAllCredentials, } from "./credentials.js";
-export { checkForUpdate, getCurrentVersion, } from "./update.js";
-//# sourceMappingURL=index.js.map

package/dist/services/oauth.d.ts

@@ -1,106 +0,0 @@
-/**
- * GitHub OAuth Device Flow implementation
- * Reference: https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps#device-flow
- */
-export interface Installation {
-    id: number;
-    account: {
-        login: string;
-        type: "User" | "Organization";
-    };
-    repository_selection: "all" | "selected";
-    permissions: Record<string, string>;
-}
-export interface Repository {
-    id: number;
-    name: string;
-    full_name: string;
-    private: boolean;
-}
-export interface InstallationToken {
-    token: string;
-    expires_at: string;
-    permissions: Record<string, string>;
-    repositories?: Repository[];
-}
-export interface DeviceCodeResponse {
-    device_code: string;
-    user_code: string;
-    verification_uri: string;
-    expires_in: number;
-    interval: number;
-}
-export interface AccessTokenResponse {
-    access_token: string;
-    token_type: string;
-    scope: string;
-}
-export interface OAuthError {
-    error: string;
-    error_description?: string;
-}
-export type PollResult = {
-    status: "success";
-    token: AccessTokenResponse;
-} | {
-    status: "pending";
-} | {
-    status: "slow_down";
-    newInterval: number;
-} | {
-    status: "expired";
-} | {
-    status: "access_denied";
-} | {
-    status: "error";
-    message: string;
-};
-/**
- * Request a device code from GitHub
- * This is the first step in the device flow
- */
-export declare function requestDeviceCode(clientId: string, scope?: string): Promise<DeviceCodeResponse>;
-/**
- * Poll GitHub for the access token
- * Returns the poll result which can be:
- * - success: user authorized, token received
- * - pending: user hasn't authorized yet
- * - slow_down: polling too fast, increase interval
- * - expired: device code expired
- * - access_denied: user denied authorization
- * - error: other error occurred
- */
-export declare function pollForAccessToken(clientId: string, deviceCode: string): Promise<PollResult>;
-/**
- * Helper to sleep for a given number of milliseconds
- */
-export declare function sleep(ms: number): Promise<void>;
-/**
- * Poll for access token with automatic retry
- * This handles the full polling loop until success, timeout, or error
- */
-export declare function pollUntilComplete(clientId: string, deviceCode: string, expiresIn: number, initialInterval: number, onPoll?: (attempt: number) => void): Promise<{
-    success: true;
-    token: AccessTokenResponse;
-} | {
-    success: false;
-    reason: "expired" | "denied" | "error";
-    message?: string;
-}>;
-/**
- * Open URL in the default browser
- */
-export declare function openBrowser(url: string): Promise<void>;
-/**
- * Get all GitHub App installations for the authenticated user
- */
-export declare function getUserInstallations(userToken: string): Promise<Installation[]>;
-/**
- * Get repositories accessible by a specific installation
- */
-export declare function getInstallationRepositories(userToken: string, installationId: number): Promise<Repository[]>;
-/**
- * Get an installation access token for API operations
- */
-export declare function getInstallationToken(userToken: string, installationId: number): Promise<InstallationToken>;
-//# sourceMappingURL=oauth.d.ts.map