smolerclaw 0.1.0

package/install.ps1

@@ -0,0 +1,119 @@
+# ─────────────────────────────────────────────────────────────
+# smolerclaw installer for Windows
+# Compiles the binary and installs to user PATH
+# Usage: powershell -ExecutionPolicy Bypass -File install.ps1
+# ─────────────────────────────────────────────────────────────
+
+$ErrorActionPreference = "Stop"
+
+$ProjectDir = Split-Path -Parent $MyInvocation.MyCommand.Path
+$BinName = "smolerclaw.exe"
+$InstallDir = Join-Path $env:LOCALAPPDATA "Microsoft\WindowsApps"
+$InstallPath = Join-Path $InstallDir $BinName
+
+Write-Host ""
+Write-Host "  smolerclaw installer" -ForegroundColor Cyan
+Write-Host "  ==================" -ForegroundColor Cyan
+Write-Host ""
+
+# ── Check bun ────────────────────────────────────────────────
+
+Write-Host "[1/5] Checking bun..." -ForegroundColor Yellow
+$bunPath = Get-Command bun -ErrorAction SilentlyContinue
+if (-not $bunPath) {
+    Write-Host "  ERROR: bun is not installed." -ForegroundColor Red
+    Write-Host "  Install it: powershell -c 'irm bun.sh/install.ps1 | iex'"
+    exit 1
+}
+$bunVersion = & bun --version 2>&1
+Write-Host "  bun $bunVersion found." -ForegroundColor Green
+
+# ── Install dependencies ─────────────────────────────────────
+
+Write-Host "[2/5] Installing dependencies..." -ForegroundColor Yellow
+Push-Location $ProjectDir
+try {
+    & bun install --frozen-lockfile 2>&1 | Out-Null
+    Write-Host "  Dependencies installed." -ForegroundColor Green
+} catch {
+    Write-Host "  WARNING: bun install had issues, trying without --frozen-lockfile..." -ForegroundColor Yellow
+    & bun install 2>&1 | Out-Null
+}
+
+# ── Typecheck + test ──────────────────────────────────────────
+
+Write-Host "[3/5] Running checks..." -ForegroundColor Yellow
+$typecheck = & bun run typecheck 2>&1
+if ($LASTEXITCODE -ne 0) {
+    Write-Host "  ERROR: TypeScript errors found:" -ForegroundColor Red
+    Write-Host $typecheck
+    Pop-Location
+    exit 1
+}
+
+$testResult = & bun test 2>&1
+if ($LASTEXITCODE -ne 0) {
+    Write-Host "  WARNING: Some tests failed:" -ForegroundColor Yellow
+    Write-Host ($testResult | Select-Object -Last 5)
+} else {
+    $passLine = $testResult | Select-String "pass"
+    Write-Host "  Checks passed. $passLine" -ForegroundColor Green
+}
+
+# ── Compile binary ────────────────────────────────────────────
+
+Write-Host "[4/5] Compiling binary..." -ForegroundColor Yellow
+
+# Read version from package.json
+$pkg = Get-Content (Join-Path $ProjectDir "package.json") | ConvertFrom-Json
+$version = $pkg.version
+
+& bun build src/index.ts --compile --outfile "dist/$BinName" --target bun-windows-x64 --define "BUILD_VERSION='`"$version`"'" 2>&1 | Out-Null
+
+if (-not (Test-Path "dist/$BinName")) {
+    Write-Host "  ERROR: Compilation failed." -ForegroundColor Red
+    Pop-Location
+    exit 1
+}
+
+$size = [math]::Round((Get-Item "dist/$BinName").Length / 1MB, 1)
+Write-Host "  Compiled: dist/$BinName ($size MB)" -ForegroundColor Green
+
+Pop-Location
+
+# ── Install to PATH ───────────────────────────────────────────
+
+Write-Host "[5/5] Installing to $InstallDir..." -ForegroundColor Yellow
+
+if (-not (Test-Path $InstallDir)) {
+    New-Item -ItemType Directory -Path $InstallDir -Force | Out-Null
+}
+
+Copy-Item (Join-Path $ProjectDir "dist\$BinName") $InstallPath -Force
+Write-Host "  Copied to: $InstallPath" -ForegroundColor Green
+
+# Add to user PATH if not already there
+$userPath = [Environment]::GetEnvironmentVariable("Path", "User")
+if ($userPath -notlike "*$InstallDir*") {
+    [Environment]::SetEnvironmentVariable("Path", "$userPath;$InstallDir", "User")
+    Write-Host "  Added $InstallDir to user PATH." -ForegroundColor Green
+    Write-Host "  NOTE: Restart your terminal for PATH changes to take effect." -ForegroundColor Yellow
+} else {
+    Write-Host "  $InstallDir already in PATH." -ForegroundColor Green
+}
+
+# ── Done ──────────────────────────────────────────────────────
+
+Write-Host ""
+Write-Host "  Installation complete!" -ForegroundColor Cyan
+Write-Host "  smolerclaw v$version" -ForegroundColor Cyan
+Write-Host ""
+Write-Host "  Usage:" -ForegroundColor White
+Write-Host "    smolerclaw                    # interactive mode"
+Write-Host "    smolerclaw 'explain this'     # with prompt"
+Write-Host "    smolerclaw -p '2+2'           # print mode"
+Write-Host ""
+Write-Host "  First run:" -ForegroundColor White
+Write-Host "    set ANTHROPIC_API_KEY=sk-ant-..."
+Write-Host "    smolerclaw"
+Write-Host ""

package/package.json

@@ -0,0 +1,25 @@
+{
+  "name": "smolerclaw",
+  "version": "0.1.0",
+  "description": "Micro AI assistant for tiny machines. Inspired by OpenClaw.",
+  "type": "module",
+  "bin": {
+    "smolerclaw": "./dist/index.js"
+  },
+  "scripts": {
+    "start": "bun run src/index.ts",
+    "dev": "bun --watch src/index.ts",
+    "build": "bun build src/index.ts --outdir dist --target bun --minify --define BUILD_VERSION='\"0.1.0\"'",
+    "compile": "bun build src/index.ts --compile --outfile dist/smolerclaw --define BUILD_VERSION='\"0.1.0\"'",
+    "typecheck": "tsc --noEmit",
+    "test": "bun test"
+  },
+  "dependencies": {
+    "@anthropic-ai/sdk": "^0.80.0"
+  },
+  "license": "MIT",
+  "devDependencies": {
+    "bun-types": "^1.3.11",
+    "typescript": "^5.9.3"
+  }
+}

package/skills/business.md

@@ -0,0 +1,77 @@
+You are a personal business assistant running on the user's Windows machine. You combine AI intelligence with direct access to the local system and the web.
+
+## Core Identity
+
+You are a sharp, proactive executive assistant. Think of yourself as a digital chief of staff — you anticipate needs, surface relevant information, and handle routine tasks efficiently.
+
+## Language
+
+ALWAYS respond in the same language the user writes in. Default to Portuguese (Brazilian) unless the user writes in another language.
+
+## Capabilities
+
+### Business Intelligence
+- Analyze data, spreadsheets, and documents the user shares
+- Draft emails, reports, memos, and presentations outlines
+- Summarize meetings, articles, and documents
+- Help with decision frameworks (pros/cons, SWOT, risk assessment)
+- Financial calculations and quick analysis
+
+### News & Market Radar
+- Use the `/news` command to fetch current headlines
+- Use `/briefing` for a complete daily overview
+- Monitor specific topics the user cares about via `fetch_url`
+- Cross-reference multiple sources for accuracy
+
+### Windows Integration
+- Use `/open <app>` to launch applications (Excel, Word, Outlook, etc.)
+- Use `/apps` to see running applications
+- Use `/sysinfo` to check system resources
+- Use `/calendar` to check today's Outlook calendar
+- Open files with their default applications
+
+### Tasks & Reminders
+- Use `create_task` to create tasks and schedule reminders
+- When the user says "anote", "lembre-me", "tarefa", create a task automatically
+- Parse natural time references: "18h", "em 30 minutos", "amanha 9h"
+- A Windows toast notification will fire when the reminder is due
+- Use `list_tasks` to show pending tasks
+- Use `complete_task` to mark tasks as done
+
+### Process Support
+- Help structure and track tasks and action items
+- Create checklists and workflows
+- Draft standard operating procedures
+- Time management and prioritization advice
+
+## Communication Style
+
+- **Direct and professional** — no fluff, no disclaimers
+- **Proactive** — suggest next steps, flag potential issues
+- **Structured** — use headers, bullet points, numbered lists
+- **Action-oriented** — always end with actionable takeaways
+- When presenting information, lead with the conclusion, then supporting details
+
+## Tool Usage for Business Tasks
+
+- Use `fetch_url` to research competitors, market data, news articles
+- Use `read_file` / `write_file` to help with documents and data files
+- Use `run_command` for PowerShell operations (calculations, file management, system queries)
+- Use `search_files` to find relevant documents in the user's workspace
+
+## What NOT To Do
+
+- Never run destructive commands (delete files, kill processes, format disks)
+- Never access credentials, passwords, or sensitive personal data
+- Never send emails or messages without explicit user approval
+- Never make purchases or financial transactions
+- Never modify system settings or registry
+
+## Daily Routines
+
+When the user says "bom dia" or asks for a briefing:
+1. Show date, time, and business hours status
+2. Check calendar if available
+3. Show system status
+4. Present top news headlines (finance, business, tech)
+5. Ask what's the priority for today

package/skills/default.md

@@ -0,0 +1,77 @@
+You are a versatile AI assistant running in the user's terminal. You can help with ANY topic — research, writing, analysis, brainstorming, questions, explanations, coding, and more. You also have direct access to the user's filesystem and shell through your tools for hands-on work.
+
+## Language
+
+ALWAYS respond in the same language the user writes in. If the user writes in Portuguese, respond in Portuguese. If in English, respond in English. Match their language exactly — never switch to English unless they write in English.
+
+## General Capabilities
+
+- Answer questions on any topic. You are a knowledgeable generalist.
+- Research topics using `fetch_url` to access documentation, articles, and web content.
+- Write, analyze, summarize, translate, brainstorm — whatever the user needs.
+- You are NOT limited to coding. Coding is one of many things you can do.
+- Never refuse a request just because it's not about programming.
+
+## Coding Capabilities
+
+When working on code or files, you have powerful tools:
+
+- `read_file`, `edit_file`, `write_file` — file operations
+- `search_files`, `find_files`, `list_directory` — codebase exploration
+- `run_command` — shell commands (git, tests, builds, etc.)
+- `fetch_url` — access web content, APIs, documentation
+
+### Tool Discipline (for code work)
+- Always read before editing. Never edit a file you haven't read.
+- Use `edit_file` for modifications, not full rewrites.
+- Match the existing code style.
+- Run tests after changes when a test suite exists.
+
+### Safety (for code work)
+- Never delete files or branches without asking first.
+- No destructive git operations unless explicitly asked.
+- Never hardcode secrets — use environment variables.
+
+## Task & Reminder System
+
+You can manage tasks and reminders for the user:
+- `create_task` — create a task with optional reminder time (e.g. "18h", "em 30 min", "amanha 9h")
+- `complete_task` — mark a task as done
+- `list_tasks` — show pending tasks
+
+When the user says things like "anote", "lembre-me", "tarefa para as 18h", use `create_task` automatically.
+A Windows toast notification will fire when the reminder is due.
+
+## People Management (Equipe + Familia + Contatos)
+
+You manage the user's people network:
+- `add_person` — register someone (group: equipe, familia, contato; optional role and contact)
+- `find_person_info` — look up a person (shows profile, recent interactions, pending delegations)
+- `list_people` — list all people or filter by group
+- `log_interaction` — record a conversation, meeting, call, etc. with optional follow-up date
+- `delegate_to_person` — assign a task to someone with optional due date
+- `update_delegation_status` — update a delegation (pendente/em_andamento/concluido)
+- `get_people_dashboard` — overview of all people, overdue follow-ups, and pending delegations
+
+When the user mentions delegating work ("pede pro Joao fazer X"), registering someone ("adiciona a Maria na equipe"), or tracking interactions ("falei com o Carlos sobre o projeto"), use these tools proactively.
+
+## Windows Integration
+
+On Windows, you have extra tools:
+- `open_application` — open apps (excel, outlook, teams, vscode, etc.)
+- `open_file_default` — open files with their default app
+- `get_running_apps` — list running applications
+- `get_system_info` — CPU, RAM, disk, uptime
+- `get_calendar_events` — today's Outlook calendar
+- `get_news` — fetch news headlines (finance, tech, brazil, world)
+
+## Communication Style
+
+- Be concise and direct. No filler, no disclaimers.
+- Lead with the answer or action, not the reasoning.
+- When doing coding tasks: execute first, then report what was done.
+- When answering questions: give the answer, then context if needed.
+
+## Environment Context
+
+When the user asks about code or files, use the Environment section below to understand their current project. But remember: not every question is about their project. If someone asks about history, science, cooking, or any other topic — just answer it.

package/src/ansi.ts

@@ -0,0 +1,164 @@
+// ─── ANSI Escape Helpers ─────────────────────────────────────
+const ESC = '\x1b'
+const CSI = `${ESC}[`
+
+// Detect NO_COLOR / TERM=dumb for graceful degradation
+export const NO_COLOR = !!(process.env.NO_COLOR || process.env.TERM === 'dumb')
+
+function esc(code: string): string {
+  return NO_COLOR ? '' : code
+}
+
+export const A = {
+  altOn:       esc(`${CSI}?1049h`),
+  altOff:      esc(`${CSI}?1049l`),
+  clear:       `${CSI}2J`,       // always need cursor control
+  clearLine:   `${CSI}2K`,
+  hide:        `${CSI}?25l`,
+  show:        `${CSI}?25h`,
+  to:          (r: number, c: number) => `${CSI}${r};${c}H`,
+  bold:        esc(`${CSI}1m`),
+  dim:         esc(`${CSI}2m`),
+  italic:      esc(`${CSI}3m`),
+  underline:   esc(`${CSI}4m`),
+  reset:       esc(`${CSI}0m`),
+  inv:         esc(`${CSI}7m`),
+  fg:          (n: number) => esc(`${CSI}38;5;${n}m`),
+  bg:          (n: number) => esc(`${CSI}48;5;${n}m`),
+}
+
+export { CSI }
+
+// ─── Theme ───────────────────────────────────────────────────
+export const C = {
+  user:    A.fg(75),
+  ai:      A.fg(114),
+  tool:    A.fg(215),
+  err:     A.fg(196),
+  sys:     A.fg(245),
+  prompt:  A.fg(220),
+  code:    A.fg(180),
+  heading: A.fg(75),
+  link:    A.fg(39),
+  quote:   A.fg(245),
+}
+
+// ─── Utilities ───────────────────────────────────────────────
+
+export function w(s: string): void {
+  process.stdout.write(s)
+}
+
+const ANSI_RE = /\x1b\[[0-9;]*[a-zA-Z]/g
+
+export function stripAnsi(s: string): string {
+  return s.replace(ANSI_RE, '')
+}
+
+/**
+ * Get the display width of a character.
+ * CJK and emoji occupy 2 columns; most others occupy 1.
+ */
+export function charWidth(ch: string): number {
+  const code = ch.codePointAt(0) || 0
+  // CJK Unified Ideographs, CJK Compatibility, Hangul, Fullwidth forms
+  if (
+    (code >= 0x1100 && code <= 0x115f) ||   // Hangul Jamo
+    (code >= 0x2e80 && code <= 0xa4cf && code !== 0x303f) || // CJK
+    (code >= 0xac00 && code <= 0xd7a3) ||   // Hangul Syllables
+    (code >= 0xf900 && code <= 0xfaff) ||   // CJK Compatibility Ideographs
+    (code >= 0xfe10 && code <= 0xfe6f) ||   // CJK Compatibility Forms
+    (code >= 0xff01 && code <= 0xff60) ||   // Fullwidth
+    (code >= 0xffe0 && code <= 0xffe6) ||   // Fullwidth
+    (code >= 0x1f300 && code <= 0x1fbff) || // Emoji & misc symbols
+    (code >= 0x20000 && code <= 0x2ffff)    // CJK Extension B+
+  ) {
+    return 2
+  }
+  return 1
+}
+
+/**
+ * Get the visible display width of a string (non-ANSI, width-aware).
+ */
+export function visibleLength(s: string): number {
+  const plain = stripAnsi(s)
+  let width = 0
+  for (const ch of plain) {
+    width += charWidth(ch)
+  }
+  return width
+}
+
+/**
+ * Get the display width of a string's first N characters.
+ */
+export function displayWidth(s: string, charCount: number): number {
+  let width = 0
+  let i = 0
+  for (const ch of s) {
+    if (i >= charCount) break
+    width += charWidth(ch)
+    i++
+  }
+  return width
+}
+
+/**
+ * Word-wrap text to maxWidth, preserving ANSI escape codes.
+ * Lines are split on word boundaries. Continuation lines get 2-space indent.
+ */
+export function wrapText(text: string, maxWidth: number): string[] {
+  if (maxWidth < 10) maxWidth = 10
+  const results: string[] = []
+
+  for (const rawLine of text.split('\n')) {
+    const plainLen = visibleLength(rawLine)
+    if (plainLen <= maxWidth) {
+      results.push(rawLine)
+      continue
+    }
+
+    // For ANSI-containing lines, we need to track visible position
+    // Simple approach: work with plain text for wrapping decisions,
+    // but rebuild output by walking the original with ANSI codes
+    const plain = stripAnsi(rawLine)
+    const words = plain.split(' ')
+    const lines: string[] = []
+    let current = ''
+
+    for (const word of words) {
+      const testLen = current.length + (current ? 1 : 0) + word.length
+      if (testLen > maxWidth && current) {
+        lines.push(current)
+        current = '  ' + word
+      } else {
+        current += (current ? ' ' : '') + word
+      }
+    }
+    if (current) lines.push(current)
+
+    // If the original had ANSI codes and we're wrapping to plain text,
+    // re-apply the dominant ANSI prefix from the original line
+    const ansiPrefix = extractAnsiPrefix(rawLine)
+    for (let i = 0; i < lines.length; i++) {
+      if (ansiPrefix && i === 0) {
+        lines[i] = ansiPrefix + lines[i] + A.reset
+      } else if (ansiPrefix) {
+        lines[i] = ansiPrefix + lines[i] + A.reset
+      }
+    }
+
+    results.push(...lines)
+  }
+
+  return results
+}
+
+/**
+ * Extract leading ANSI escape sequences from a string.
+ */
+function extractAnsiPrefix(s: string): string {
+  const match = s.match(/^(\x1b\[[0-9;]*[a-zA-Z])+/)
+  return match ? match[0] : ''
+}

package/src/approval.ts

@@ -0,0 +1,74 @@
+import type { ToolApprovalMode } from './types'
+
+export type ApprovalCallback = (toolName: string, input: Record<string, unknown>, riskLevel: string) => Promise<boolean>
+
+/**
+ * Determines whether a tool call needs user approval.
+ */
+export function needsApproval(
+  mode: ToolApprovalMode,
+  toolName: string,
+  riskLevel: string,
+): boolean {
+  if (mode === 'auto') return false
+  if (riskLevel === 'safe') return false
+
+  if (mode === 'confirm-writes') {
+    // Only confirm write operations and commands
+    return ['write_file', 'edit_file', 'run_command'].includes(toolName)
+  }
+
+  if (mode === 'confirm-all') {
+    return riskLevel !== 'safe'
+  }
+
+  return false
+}
+
+/**
+ * Format a tool call for approval display.
+ */
+export function formatApprovalPrompt(toolName: string, input: Record<string, unknown>): string {
+  switch (toolName) {
+    case 'write_file':
+      return `Write file: ${input.path}`
+    case 'edit_file':
+      return `Edit file: ${input.path}`
+    case 'run_command': {
+      const cmd = String(input.command || '')
+      return `Run: ${cmd.length > 60 ? cmd.slice(0, 57) + '...' : cmd}`
+    }
+    default:
+      return `${toolName}: ${JSON.stringify(input).slice(0, 60)}`
+  }
+}
+
+/**
+ * Generate a colored diff preview for edit_file operations.
+ * Returns lines ready for TUI display.
+ */
+export function formatEditDiff(oldText: string, newText: string, maxLines: number = 20): string[] {
+  const oldLines = oldText.split('\n')
+  const newLines = newText.split('\n')
+  const lines: string[] = []
+
+  // Show removed lines (red)
+  const shownOld = oldLines.slice(0, maxLines)
+  for (const line of shownOld) {
+    lines.push(`  \x1b[31m- ${line}\x1b[0m`)
+  }
+  if (oldLines.length > maxLines) {
+    lines.push(`  \x1b[2m  ... (${oldLines.length - maxLines} more removed)\x1b[0m`)
+  }
+
+  // Show added lines (green)
+  const shownNew = newLines.slice(0, maxLines)
+  for (const line of shownNew) {
+    lines.push(`  \x1b[32m+ ${line}\x1b[0m`)
+  }
+  if (newLines.length > maxLines) {
+    lines.push(`  \x1b[2m  ... (${newLines.length - maxLines} more added)\x1b[0m`)
+  }
+
+  return lines
+}

package/src/auth.ts

@@ -0,0 +1,125 @@
+import { existsSync, readFileSync } from 'node:fs'
+import { homedir } from 'node:os'
+import { join } from 'node:path'
+
+const CRED_PATH = join(homedir(), '.claude', '.credentials.json')
+
+interface ClaudeOAuth {
+  accessToken: string
+  refreshToken: string
+  expiresAt: number
+  subscriptionType: string
+  rateLimitTier: string
+}
+
+interface ClaudeCredentials {
+  claudeAiOauth?: ClaudeOAuth
+}
+
+export interface AuthResult {
+  apiKey: string
+  source: 'api-key' | 'subscription'
+  subscriptionType?: string
+  expiresAt?: number
+}
+
+/**
+ * Resolve authentication in priority order:
+ *   1. ANTHROPIC_API_KEY env var
+ *   2. Claude Code subscription (OAuth token from ~/.claude/.credentials.json)
+ *   3. apiKey from smolerclaw config file
+ *
+ * authMode overrides: "api-key" skips subscription, "subscription" skips api-key.
+ */
+export function resolveAuth(
+  configApiKey: string,
+  authMode: 'auto' | 'api-key' | 'subscription' = 'auto',
+): AuthResult {
+  if (authMode === 'subscription') {
+    const sub = trySubscription()
+    if (sub) return sub
+    throw new Error(
+      'Claude Code credentials not found or expired.\n' +
+      'Run `claude` to refresh, then restart smolerclaw.',
+    )
+  }
+
+  if (authMode === 'api-key') {
+    const key = process.env.ANTHROPIC_API_KEY || configApiKey
+    if (key) return { apiKey: key, source: 'api-key' }
+    throw new Error(
+      'No API key found.\n' +
+      'Set ANTHROPIC_API_KEY env var or add apiKey to config.',
+    )
+  }
+
+  // auto mode: try all sources in order
+
+  // 1. Explicit env var always wins
+  if (process.env.ANTHROPIC_API_KEY) {
+    return { apiKey: process.env.ANTHROPIC_API_KEY, source: 'api-key' }
+  }
+
+  // 2. Claude Code subscription
+  const sub = trySubscription()
+  if (sub) return sub
+
+  // 3. Config file API key
+  if (configApiKey) {
+    return { apiKey: configApiKey, source: 'api-key' }
+  }
+
+  throw new Error(
+    'No authentication found.\n' +
+    'Options:\n' +
+    '  1. Install Claude Code with a Pro/Max subscription (auto-detected)\n' +
+    '  2. Set ANTHROPIC_API_KEY env var\n' +
+    '  3. Add apiKey to ~/.config/smolerclaw/config.json',
+  )
+}
+
+function trySubscription(): AuthResult | null {
+  if (!existsSync(CRED_PATH)) return null
+
+  try {
+    const raw: ClaudeCredentials = JSON.parse(readFileSync(CRED_PATH, 'utf-8'))
+    const oauth = raw.claudeAiOauth
+    if (!oauth?.accessToken) return null
+
+    // Check expiration with 60s buffer
+    if (Date.now() > oauth.expiresAt - 60_000) return null
+
+    return {
+      apiKey: oauth.accessToken,
+      source: 'subscription',
+      subscriptionType: oauth.subscriptionType,
+      expiresAt: oauth.expiresAt,
+    }
+  } catch {
+    return null
+  }
+}
+
+/**
+ * Re-read credentials from disk. Useful when the OAuth token expires
+ * mid-session — Claude Code auto-refreshes it, so a re-read often works.
+ * Returns null if no valid credentials are found.
+ */
+export function refreshAuth(
+  configApiKey: string,
+  authMode: 'auto' | 'api-key' | 'subscription' = 'auto',
+): AuthResult | null {
+  try {
+    return resolveAuth(configApiKey, authMode)
+  } catch {
+    return null
+  }
+}
+
+/** Human-readable label for the TUI header */
+export function authLabel(auth: AuthResult): string {
+  if (auth.source === 'subscription') {
+    return `sub:${auth.subscriptionType || 'pro'}`
+  }
+  return 'api-key'
+}