stow-cli 2.2.1 → 2.2.3

package/dist/chunk-533UGNLM.js

@@ -0,0 +1,42 @@
+// src/lib/validate-input.ts
+import path from "path";
+var InputValidationError = class extends Error {
+  constructor(message) {
+    super(message);
+    this.name = "InputValidationError";
+  }
+};
+function validateInput(value, context) {
+  if (value.includes("../") || value.includes("..\\")) {
+    throw new InputValidationError(`${context}: path traversal not allowed`);
+  }
+  if (context !== "url" && value.includes("?")) {
+    throw new InputValidationError(`${context}: embedded query parameters not allowed`);
+  }
+  if (/[\x00-\x08\x0B\x0C\x0E-\x1F]/.test(value)) {
+    throw new InputValidationError(`${context}: control characters not allowed`);
+  }
+  if (/%25/.test(value)) {
+    throw new InputValidationError(`${context}: double-encoded values not allowed`);
+  }
+  if (/%2[fF]/.test(value) || /%2[eE]/.test(value)) {
+    throw new InputValidationError(`${context}: percent-encoded path characters not allowed`);
+  }
+  if (context !== "url" && value.includes("#")) {
+    throw new InputValidationError(`${context}: embedded hash fragments not allowed`);
+  }
+  return value;
+}
+function validateBucketName(name) {
+  return validateInput(name, "bucket name");
+}
+function validateFileKey(key) {
+  return validateInput(key, "file key");
+}
+
+export {
+  InputValidationError,
+  validateInput,
+  validateBucketName,
+  validateFileKey
+};

package/dist/chunk-AHBVZRDR.js

@@ -0,0 +1,29 @@
+// src/lib/parse-json-input.ts
+function parseJsonInput(jsonStr, flagValues) {
+  if (!jsonStr) {
+    return flagValues;
+  }
+  let parsed;
+  try {
+    parsed = JSON.parse(jsonStr);
+  } catch {
+    throw new Error(`Invalid JSON in --input-json: ${jsonStr.slice(0, 100)}`);
+  }
+  if (typeof parsed !== "object" || parsed === null || Array.isArray(parsed)) {
+    throw new Error("--input-json must be a JSON object");
+  }
+  return { ...parsed, ...stripUndefined(flagValues) };
+}
+function stripUndefined(obj) {
+  const result = {};
+  for (const [key, value] of Object.entries(obj)) {
+    if (value !== void 0) {
+      result[key] = value;
+    }
+  }
+  return result;
+}
+
+export {
+  parseJsonInput
+};

package/dist/chunk-KPIQZBTO.js

@@ -0,0 +1,151 @@
+// src/lib/sanitize-response.ts
+var INJECTION_PATTERNS = [
+  // Direct instruction injection
+  /\b(?:ignore|disregard|forget)\b.*\b(?:previous|above|prior)\b.*\b(?:instructions?|rules?|context)\b/i,
+  // System prompt extraction attempts
+  /\b(?:reveal|show|print|output|display)\b.*\b(?:system\s*prompt|instructions?|rules?)\b/i,
+  // Role hijacking
+  /\byou\s+are\s+(?:now|a)\b/i,
+  // Tool/action injection
+  /\b(?:execute|run|call)\b.*\b(?:command|tool|function|bash|shell)\b/i,
+  // Markdown/XML injection that could affect agent parsing
+  /<\/?(?:system|user|assistant|tool_use|tool_result)\b/i
+];
+var USER_CONTENT_FIELDS = /* @__PURE__ */ new Set([
+  "originalFilename",
+  "filename",
+  "name",
+  "description",
+  "label",
+  "text",
+  "slug",
+  "webhookUrl"
+]);
+function detectInjection(value) {
+  return INJECTION_PATTERNS.some((pattern) => pattern.test(value));
+}
+function sanitizeValue(value) {
+  if (detectInjection(value)) {
+    return `[FLAGGED: potential prompt injection] ${value}`;
+  }
+  return value;
+}
+function sanitizeResponse(data) {
+  if (data === null || data === void 0) {
+    return data;
+  }
+  if (typeof data === "string") {
+    return sanitizeValue(data);
+  }
+  if (Array.isArray(data)) {
+    return data.map((item) => sanitizeResponse(item));
+  }
+  if (typeof data === "object") {
+    const result = {};
+    for (const [key, value] of Object.entries(data)) {
+      if (USER_CONTENT_FIELDS.has(key) && typeof value === "string") {
+        result[key] = sanitizeValue(value);
+      } else if (typeof value === "object" && value !== null) {
+        result[key] = sanitizeResponse(value);
+      } else {
+        result[key] = value;
+      }
+    }
+    return result;
+  }
+  return data;
+}
+
+// src/lib/output.ts
+var _forceHuman = false;
+var _globalFields;
+var _globalNdjson = false;
+function setForceHuman(value) {
+  _forceHuman = value;
+}
+function setGlobalFields(fields) {
+  _globalFields = fields;
+}
+function setGlobalNdjson(value) {
+  _globalNdjson = value;
+}
+function isJsonOutput() {
+  if (_forceHuman) {
+    return false;
+  }
+  return !process.stdout.isTTY;
+}
+function unwrapArray(data) {
+  if (typeof data !== "object" || data === null || Array.isArray(data)) {
+    return data;
+  }
+  const entries = Object.entries(data);
+  if (entries.length === 1 && Array.isArray(entries[0][1])) {
+    return entries[0][1];
+  }
+  return data;
+}
+function pickFields(obj, fieldSet) {
+  if (typeof obj !== "object" || obj === null) {
+    return {};
+  }
+  const result = {};
+  for (const [key, value] of Object.entries(obj)) {
+    if (fieldSet.has(key)) {
+      result[key] = value;
+    }
+  }
+  return result;
+}
+function applyFieldMask(data, fields) {
+  if (!fields) {
+    return data;
+  }
+  const fieldSet = new Set(fields.split(",").map((f) => f.trim()));
+  if (Array.isArray(data)) {
+    return data.map((item) => pickFields(item, fieldSet));
+  }
+  if (typeof data === "object" && data !== null) {
+    return pickFields(data, fieldSet);
+  }
+  return data;
+}
+function outputNdjson(items) {
+  for (const item of items) {
+    const sanitized = sanitizeResponse(item);
+    console.log(JSON.stringify(sanitized));
+  }
+}
+function output(data, humanFormatter, options) {
+  const sanitized = sanitizeResponse(data);
+  const unwrapped = _globalFields || _globalNdjson ? unwrapArray(sanitized) : sanitized;
+  const masked = applyFieldMask(unwrapped, _globalFields);
+  if (_globalNdjson && Array.isArray(masked)) {
+    outputNdjson(masked);
+    return;
+  }
+  if (options?.json || isJsonOutput()) {
+    console.log(JSON.stringify(masked, null, 2));
+  } else if (humanFormatter && !_globalFields) {
+    console.log(humanFormatter());
+  } else {
+    console.log(JSON.stringify(masked, null, 2));
+  }
+}
+function outputError(error, code, details) {
+  if (isJsonOutput()) {
+    console.error(JSON.stringify({ error, ...code ? { code } : {}, ...details }));
+  } else {
+    console.error(`Error: ${error}`);
+  }
+  process.exit(1);
+}
+
+export {
+  setForceHuman,
+  setGlobalFields,
+  setGlobalNdjson,
+  isJsonOutput,
+  output,
+  outputError
+};

package/dist/chunk-MYFLRBWC.js

@@ -0,0 +1,312 @@
+// src/lib/cli-docs.ts
+var CLI_DOCS = {
+  root: {
+    description: "CLI for Stow file storage",
+    usage: "stow [command] [options]",
+    examples: [
+      "stow whoami",
+      "stow upload ./photo.jpg --bucket photos",
+      "stow drop ./screenshot.png",
+      "stow buckets",
+      "stow files photos --limit 50",
+      "stow search text 'sunset beach'",
+      "stow admin health"
+    ],
+    notes: [
+      "Set STOW_API_KEY before running commands that call the API.",
+      "Set STOW_API_URL to target a non-default environment.",
+      "Set STOW_ADMIN_SECRET for admin commands."
+    ]
+  },
+  drop: {
+    description: "Upload a file and get a short URL (quick share)",
+    usage: "stow drop <file> [options]",
+    examples: ["stow drop ./video.mp4", "stow drop ./notes.txt --quiet"]
+  },
+  upload: {
+    description: "Upload a file to a bucket",
+    usage: "stow upload <file> [options]",
+    examples: ["stow upload ./logo.png --bucket brand-assets", "stow upload ./clip.mov --quiet"]
+  },
+  buckets: {
+    description: "List your buckets",
+    usage: "stow buckets",
+    examples: ["stow buckets"]
+  },
+  bucketsCreate: {
+    description: "Create a new bucket",
+    usage: "stow buckets create <name> [options]",
+    examples: [
+      "stow buckets create photos",
+      'stow buckets create docs --description "Product docs"',
+      "stow buckets create public-media --public"
+    ]
+  },
+  bucketsRename: {
+    description: "Rename a bucket",
+    usage: "stow buckets rename <name> <new-name> [options]",
+    examples: ["stow buckets rename old-name new-name --yes"],
+    notes: ["Renaming a bucket can break existing public URLs."]
+  },
+  bucketsDelete: {
+    description: "Delete a bucket by ID",
+    usage: "stow buckets delete <id>",
+    examples: ["stow buckets delete 8f3d1ab4-..."]
+  },
+  files: {
+    description: "List files in a bucket",
+    usage: "stow files <bucket> [options]",
+    examples: [
+      "stow files photos",
+      "stow files photos --search avatars/ --limit 100",
+      "stow files photos --json"
+    ]
+  },
+  filesGet: {
+    description: "Get details for a single file",
+    usage: "stow files get <bucket> <key>",
+    examples: ["stow files get photos hero.png", "stow files get photos hero.png --json"]
+  },
+  filesUpdate: {
+    description: "Update file metadata",
+    usage: "stow files update <bucket> <key> -m key=value",
+    examples: [
+      "stow files update photos hero.png -m alt='Hero image'",
+      "stow files update photos hero.png -m category=banner -m priority=high"
+    ]
+  },
+  filesMissing: {
+    description: "List files missing processing data",
+    usage: "stow files missing <bucket> <type>",
+    examples: [
+      "stow files missing brera dimensions",
+      "stow files missing brera embeddings --limit 200",
+      "stow files missing brera colors --json"
+    ],
+    notes: ["Valid types: dimensions, embeddings, colors"]
+  },
+  filesEnrich: {
+    description: "Generate title, description, and alt text for an image",
+    usage: "stow files enrich <bucket> <key>",
+    examples: ["stow files enrich photos hero.jpg", "stow files enrich next l5igro4iutep3"],
+    notes: [
+      "Triggers title, description, and alt text generation in parallel.",
+      "Requires a searchable bucket with image files."
+    ]
+  },
+  drops: {
+    description: "List your drops with usage info",
+    usage: "stow drops",
+    examples: ["stow drops"]
+  },
+  dropsDelete: {
+    description: "Delete a drop by ID",
+    usage: "stow drops delete <id>",
+    examples: ["stow drops delete drop_abc123"]
+  },
+  delete: {
+    description: "Delete a file from a bucket",
+    usage: "stow delete <bucket> <key>",
+    examples: ["stow delete photos hero/banner.png"]
+  },
+  whoami: {
+    description: "Show account info, usage stats, and API key details",
+    usage: "stow whoami",
+    examples: ["stow whoami"]
+  },
+  open: {
+    description: "Open a bucket in the browser",
+    usage: "stow open <bucket>",
+    examples: ["stow open photos"]
+  },
+  interactive: {
+    description: "Launch interactive TUI mode",
+    usage: "stow --interactive",
+    examples: ["stow", "stow --interactive"]
+  },
+  search: {
+    description: "Search files across buckets",
+    usage: "stow search <subcommand>",
+    examples: [
+      "stow search text 'sunset beach' -b photos",
+      "stow search similar --file hero.png -b photos",
+      'stow search color --hex "#ff0000" -b photos',
+      "stow search diverse -b photos"
+    ]
+  },
+  searchText: {
+    description: "Semantic text search",
+    usage: "stow search text <query> [options]",
+    examples: ["stow search text 'sunset beach' -b photos --limit 10 --json"]
+  },
+  searchSimilar: {
+    description: "Find files similar to a given file",
+    usage: "stow search similar --file <key> [options]",
+    examples: ["stow search similar --file hero.png -b photos"]
+  },
+  searchColor: {
+    description: "Search by color",
+    usage: 'stow search color --hex "#ff0000" [options]',
+    examples: ['stow search color --hex "#ff0000" -b photos --limit 20']
+  },
+  searchDiverse: {
+    description: "Diversity-aware search",
+    usage: "stow search diverse [options]",
+    examples: ["stow search diverse -b photos --limit 20"]
+  },
+  tags: {
+    description: "Manage tags",
+    usage: "stow tags",
+    examples: ["stow tags", "stow tags create 'Hero Images'", "stow tags delete <id>"]
+  },
+  tagsCreate: {
+    description: "Create a new tag",
+    usage: "stow tags create <name> [options]",
+    examples: ['stow tags create "Hero Images"', 'stow tags create "Featured" --color "#ff6600"']
+  },
+  tagsDelete: {
+    description: "Delete a tag by ID",
+    usage: "stow tags delete <id>",
+    examples: ["stow tags delete tag_abc123"]
+  },
+  profiles: {
+    description: "Manage taste profiles",
+    usage: "stow profiles <subcommand>",
+    examples: [
+      'stow profiles create --name "My Profile"',
+      "stow profiles get <id>",
+      "stow profiles delete <id>"
+    ]
+  },
+  profilesCreate: {
+    description: "Create a taste profile",
+    usage: 'stow profiles create --name "My Profile" [options]',
+    examples: ['stow profiles create --name "My Profile" -b photos']
+  },
+  profilesGet: {
+    description: "Get a taste profile with clusters",
+    usage: "stow profiles get <id>",
+    examples: ["stow profiles get profile_abc123 --json"]
+  },
+  profilesDelete: {
+    description: "Delete a taste profile",
+    usage: "stow profiles delete <id>",
+    examples: ["stow profiles delete profile_abc123"]
+  },
+  jobs: {
+    description: "List processing jobs for a bucket",
+    usage: "stow jobs --bucket <id> [options]",
+    examples: [
+      "stow jobs --bucket <id>",
+      "stow jobs --bucket <id> --status failed",
+      "stow jobs --bucket <id> --queue extract-colors --json"
+    ]
+  },
+  jobsRetry: {
+    description: "Retry a failed job",
+    usage: "stow jobs retry <id> --queue <name> --bucket <id>",
+    examples: ["stow jobs retry job123 --queue generate-title --bucket <id>"]
+  },
+  jobsDelete: {
+    description: "Remove a job",
+    usage: "stow jobs delete <id> --queue <name> --bucket <id>",
+    examples: ["stow jobs delete job123 --queue extract-colors --bucket <id>"]
+  },
+  admin: {
+    description: "Admin commands (requires STOW_ADMIN_SECRET)",
+    usage: "stow admin <subcommand>",
+    examples: [
+      "stow admin health",
+      "stow admin backfill dimensions --bucket <id> --dry-run",
+      "stow admin cleanup-drops --dry-run"
+    ],
+    notes: ["Requires STOW_ADMIN_SECRET environment variable."]
+  },
+  adminHealth: {
+    description: "Check system health and queue depths",
+    usage: "stow admin health",
+    examples: ["stow admin health", "stow admin health --json"]
+  },
+  adminBackfill: {
+    description: "Backfill processing data for files",
+    usage: "stow admin backfill <type> [options]",
+    examples: [
+      "stow admin backfill dimensions --bucket <id> --dry-run",
+      "stow admin backfill colors --bucket <id> --limit 200",
+      "stow admin backfill embeddings --bucket <id> --limit 100 --json"
+    ],
+    notes: ["Valid types: dimensions, colors, embeddings"]
+  },
+  adminCleanupDrops: {
+    description: "Remove expired drops",
+    usage: "stow admin cleanup-drops [options]",
+    examples: ["stow admin cleanup-drops --max-age-hours 24 --dry-run"]
+  },
+  adminPurgeEvents: {
+    description: "Purge old webhook events",
+    usage: "stow admin purge-events [options]",
+    examples: ["stow admin purge-events --dry-run"]
+  },
+  adminReconcileFiles: {
+    description: "Reconcile files between R2 and database",
+    usage: "stow admin reconcile-files --bucket <id>",
+    examples: ["stow admin reconcile-files --bucket <id> --dry-run"]
+  },
+  adminRetrySyncFailures: {
+    description: "Retry failed S3 sync operations",
+    usage: "stow admin retry-sync-failures",
+    examples: ["stow admin retry-sync-failures"]
+  },
+  adminJobs: {
+    description: "List and manage processing jobs",
+    usage: "stow admin jobs [options]",
+    examples: [
+      "stow admin jobs",
+      "stow admin jobs --status failed",
+      "stow admin jobs --org <id> --queue generate-title",
+      "stow admin jobs --json"
+    ]
+  },
+  adminJobsRetry: {
+    description: "Retry a failed job",
+    usage: "stow admin jobs retry <id> --queue <name>",
+    examples: ["stow admin jobs retry job123 --queue generate-title"]
+  },
+  adminJobsDelete: {
+    description: "Remove a job",
+    usage: "stow admin jobs delete <id> --queue <name>",
+    examples: ["stow admin jobs delete job123 --queue extract-colors"]
+  },
+  adminQueues: {
+    description: "Show queue depths and counts",
+    usage: "stow admin queues",
+    examples: ["stow admin queues", "stow admin queues --json"]
+  },
+  adminQueuesClean: {
+    description: "Clean jobs from a queue",
+    usage: "stow admin queues clean <name> --failed|--completed",
+    examples: [
+      "stow admin queues clean generate-title --failed",
+      "stow admin queues clean extract-colors --completed --grace 3600"
+    ]
+  }
+};
+function renderCommandHelp(key) {
+  const doc = CLI_DOCS[key];
+  const lines = [
+    "",
+    `Usage: ${doc.usage}`,
+    "",
+    "Examples:",
+    ...doc.examples.map((example) => `  ${example}`)
+  ];
+  if (doc.notes?.length) {
+    lines.push("", "Notes:", ...doc.notes.map((note) => `  ${note}`));
+  }
+  return lines.join("\n");
+}
+
+export {
+  CLI_DOCS,
+  renderCommandHelp
+};

package/dist/chunk-NBHBVKP5.js

@@ -0,0 +1,54 @@
+// src/lib/validate-input.ts
+import path from "path";
+var InputValidationError = class extends Error {
+  constructor(message) {
+    super(message);
+    this.name = "InputValidationError";
+  }
+};
+function hasControlCharacters(value) {
+  for (const char of value) {
+    const codePoint = char.codePointAt(0);
+    if (codePoint === void 0) {
+      continue;
+    }
+    if (codePoint >= 0 && codePoint <= 8 || codePoint === 11 || codePoint === 12 || codePoint >= 14 && codePoint <= 31) {
+      return true;
+    }
+  }
+  return false;
+}
+function validateInput(value, context) {
+  if (value.includes("../") || value.includes("..\\")) {
+    throw new InputValidationError(`${context}: path traversal not allowed`);
+  }
+  if (context !== "url" && value.includes("?")) {
+    throw new InputValidationError(`${context}: embedded query parameters not allowed`);
+  }
+  if (hasControlCharacters(value)) {
+    throw new InputValidationError(`${context}: control characters not allowed`);
+  }
+  if (/%25/.test(value)) {
+    throw new InputValidationError(`${context}: double-encoded values not allowed`);
+  }
+  if (/%2[fF]/.test(value) || /%2[eE]/.test(value)) {
+    throw new InputValidationError(`${context}: percent-encoded path characters not allowed`);
+  }
+  if (context !== "url" && value.includes("#")) {
+    throw new InputValidationError(`${context}: embedded hash fragments not allowed`);
+  }
+  return value;
+}
+function validateBucketName(name) {
+  return validateInput(name, "bucket name");
+}
+function validateFileKey(key) {
+  return validateInput(key, "file key");
+}
+
+export {
+  InputValidationError,
+  validateInput,
+  validateBucketName,
+  validateFileKey
+};

package/dist/chunk-PE6V3MVP.js

@@ -0,0 +1,46 @@
+// src/lib/format.ts
+function padCell(str, width) {
+  return str.padEnd(width);
+}
+function formatBytes(bytes) {
+  if (bytes === 0) {
+    return "0 B";
+  }
+  const units = ["B", "KB", "MB", "GB", "TB"];
+  const i = Math.floor(Math.log(bytes) / Math.log(1024));
+  return `${(bytes / 1024 ** i).toFixed(i > 0 ? 1 : 0)} ${units[i]}`;
+}
+function formatTable(headers, rows) {
+  if (rows.length === 0) {
+    return "";
+  }
+  const widths = headers.map((h, i) => {
+    let dataMax = 0;
+    for (const row of rows) {
+      const cellLength = (row[i] || "").length;
+      if (cellLength > dataMax) {
+        dataMax = cellLength;
+      }
+    }
+    return Math.max(h.length, dataMax);
+  });
+  const sep = widths.map((w) => "\u2500".repeat(w)).join("\u2500\u2500");
+  const lines = [headers.map((h, i) => padCell(h, widths[i] ?? 0)).join("  "), sep];
+  for (const row of rows) {
+    lines.push(row.map((cell, i) => padCell(cell || "", widths[i] ?? 0)).join("  "));
+  }
+  return lines.join("\n");
+}
+function usageBar(used, total, width = 20) {
+  const ratio = Math.min(used / total, 1);
+  const filled = Math.round(ratio * width);
+  const empty = width - filled;
+  const pct = Math.round(ratio * 100);
+  return `[${"\u2588".repeat(filled)}${"\u2591".repeat(empty)}] ${pct}%`;
+}
+
+export {
+  formatBytes,
+  formatTable,
+  usageBar
+};