svamp-cli 0.1.52 → 0.1.53

package/README.md

@@ -0,0 +1,193 @@
+# svamp-cli
+
+AI workspace daemon and CLI for [Hypha Cloud](https://hypha.aicell.io). Run AI agents locally with cloud sync, manage sessions, share with teammates, and orchestrate tasks.
+
+**Svamp** (Swedish for "mushroom") is the interactive layer of Hypha Cloud — where teams and AI agents collaborate in real time.
+
+## Installation
+
+```bash
+npm install -g svamp-cli
+```
+
+Requires **Node.js >= 22** (for native WebSocket support).
+
+## Quick Start
+
+```bash
+# Login to Hypha Cloud
+svamp login
+
+# Start interactive Claude session (synced to web app)
+svamp
+
+# Or start the daemon for background sessions
+svamp daemon start
+
+# Spawn a session
+svamp session spawn claude -d ~/my-project
+
+# Send a message
+svamp session send <session-id> "Fix the failing tests"
+```
+
+## Configuration
+
+Credentials are stored in `~/.svamp/.env`:
+
+```
+HYPHA_SERVER_URL=https://hypha.aicell.io
+HYPHA_TOKEN=<your-token>
+HYPHA_WORKSPACE=<your-workspace>
+```
+
+## Commands
+
+### Interactive Mode
+
+```bash
+svamp                              # Start Claude in terminal with cloud sync
+svamp start [-d <path>]            # Same, with explicit directory
+```
+
+When you run `svamp` with no arguments, Claude starts in your terminal with full interactive access. Your session is synced to Hypha Cloud and visible in the web app. When a message arrives from the web app, svamp switches to remote mode automatically. Press Space-Space to return to local mode.
+
+### Login
+
+```bash
+svamp login [server-url]           # Login via browser OAuth
+```
+
+### Daemon Management
+
+```bash
+svamp daemon start                 # Start daemon (detached)
+svamp daemon stop                  # Stop (sessions preserved for auto-restore)
+svamp daemon stop --cleanup        # Stop and mark all sessions as stopped
+svamp daemon restart               # Restart seamlessly
+svamp daemon status                # Show daemon status
+svamp daemon install               # Install as system service (launchd/systemd)
+svamp daemon uninstall             # Remove system service
+```
+
+### Session Management
+
+All session commands support `--machine <id>` / `-m <id>` to target a specific machine.
+
+```bash
+svamp session list [--active] [--json]
+svamp session machines                         # List discoverable machines
+svamp session spawn <agent> [-d <path>] [--message <msg>] [--wait]
+svamp session stop <id>
+svamp session info <id> [--json]
+svamp session send <id> <message> [--wait] [--timeout N]
+svamp session wait <id> [--timeout N]
+svamp session messages <id> [--last N] [--json]
+svamp session attach <id>                      # Interactive terminal attach
+svamp session approve <id>                     # Approve pending permission
+svamp session deny <id>                        # Deny pending permission
+```
+
+#### Session Sharing
+
+```bash
+svamp session share <id> --list
+svamp session share <id> --add <email>[:<role>]    # Roles: view, interact, admin
+svamp session share <id> --remove <email>
+```
+
+#### Isolation & Security Flags (on spawn)
+
+```bash
+svamp session spawn claude -d <path> --isolate
+svamp session spawn claude -d <path> --share alice@example.com:admin
+svamp session spawn claude -d <path> --security-context ./context.json
+svamp session spawn claude -d <path> --deny-network
+svamp session spawn claude -d <path> --deny-read /etc --allow-write /tmp/work
+svamp session spawn claude -d <path> --allow-domain api.anthropic.com
+```
+
+#### Ralph Loop (Iterative Task Automation)
+
+```bash
+svamp session ralph-start <id> "<task>" [--promise DONE] [--max 10] [--cooldown 1]
+svamp session ralph-cancel <id>
+svamp session ralph-status <id>
+```
+
+The Ralph Loop enables agents to iterate on tasks with verifiable completion. Each iteration the agent works toward a goal and signals completion via `<promise>DONE</promise>`.
+
+### Machine Management
+
+```bash
+svamp machine share --list
+svamp machine share --add <email>[:<role>]
+svamp machine share --remove <email>
+svamp machine share --config <path>            # Apply security context config
+svamp machine share --show-config
+```
+
+### Skills Marketplace
+
+```bash
+svamp skills find <query> [--json]             # Search marketplace
+svamp skills install <name> [--force]          # Install to ~/.claude/skills/<name>/
+svamp skills list                              # List installed skills
+svamp skills remove <name>                     # Remove skill
+svamp skills publish <path>                    # Publish to marketplace
+```
+
+### Service Exposure (Cloud HTTP Services)
+
+Expose HTTP services from cloud sandboxes or local machines to stable external URLs.
+
+```bash
+svamp service expose <name> --port <port>      # Create + join (auto-detect cloud/tunnel)
+svamp service create <name> --port <port>
+svamp service list [--json]
+svamp service info <name> [--json]
+svamp service delete <name>
+svamp service tunnel <name> --port <port>      # Tunnel local ports
+```
+
+### Local Agent Sessions
+
+```bash
+svamp agent list                               # List known agents (ACP + MCP)
+svamp agent <name>                             # Start local agent session (gemini, codex)
+svamp agent -- <cmd> [args]                    # Start custom ACP agent
+```
+
+## Agent Backends
+
+| Agent | Protocol | Transport |
+|-------|----------|-----------|
+| Claude | Native | CLI subprocess |
+| Codex | MCP | STDIO (`codex mcp-server`) |
+| Gemini | ACP | STDIO (`gemini --experimental-acp`) |
+
+## Security & Isolation
+
+Sessions can be isolated using OS-level sandboxes:
+
+| Method | Platform | Description |
+|--------|----------|-------------|
+| nono | macOS/Linux | Kernel-enforced capability sandbox (preferred) |
+| Docker | Any | Container-based isolation |
+| Podman | Any | Rootless container fallback |
+
+Security contexts define per-user filesystem and network rules. See `--security-context` flag.
+
+## Development
+
+```bash
+yarn install
+yarn workspace svamp-cli build
+yarn workspace svamp-cli test          # Run unit tests (235+ tests)
+yarn workspace svamp-cli test:e2e      # Run E2E session tests
+yarn workspace svamp-cli test:hypha    # Run Hypha service integration tests
+```
+
+## License
+
+See LICENSE in the repository root.

package/bin/svamp.mjs

@@ -7,12 +7,10 @@ import { existsSync, readFileSync } from 'fs';
 import { join } from 'path';
 import { homedir } from 'os';
 
-// Simple .env loader — load from SVAMP_HOME or ~/.svamp/
-const envDir = process.env.SVAMP_HOME || join(homedir(), '.svamp');
-const envFile = join(envDir, '.env');
-
-if (existsSync(envFile)) {
-    const lines = readFileSync(envFile, 'utf-8').split('\n');
+// Simple .env loader — load from SVAMP_HOME or ~/.svamp/, fallback to ~/.hypha/.env
+function loadEnvFile(path) {
+    if (!existsSync(path)) return false;
+    const lines = readFileSync(path, 'utf-8').split('\n');
     for (const line of lines) {
         const trimmed = line.trim();
         if (!trimmed || trimmed.startsWith('#')) continue;
@@ -20,10 +18,21 @@ if (existsSync(envFile)) {
         if (eqIdx === -1) continue;
         const key = trimmed.slice(0, eqIdx).trim();
         const value = trimmed.slice(eqIdx + 1).trim().replace(/^["']|["']$/g, '');
-        if (!process.env[key]) {
+        // HYPHA_* vars are managed by `svamp login` — .env is source of truth,
+        // always apply them even if already in the shell environment.
+        // Other vars only set if not already present.
+        if (key.startsWith('HYPHA_') || !process.env[key]) {
             process.env[key] = value;
         }
     }
+    return true;
+}
+
+const svampEnv = join(process.env.SVAMP_HOME || join(homedir(), '.svamp'), '.env');
+if (!loadEnvFile(svampEnv)) {
+    // Fallback: load from ~/.hypha/.env (shared with hypha-cli)
+    const hyphaEnv = join(process.env.HYPHA_HOME || join(homedir(), '.hypha'), '.env');
+    loadEnvFile(hyphaEnv);
 }
 
 // Import and run the CLI

package/dist/cli.mjs

@@ -1,4 +1,4 @@
-import { b as stopDaemon, s as startDaemon, d as daemonStatus } from './run-BnnUavlu.mjs';
+import { b as stopDaemon, s as startDaemon, d as daemonStatus } from './run-CBhm4Jop.mjs';
 import 'os';
 import 'fs/promises';
 import 'fs';
@@ -106,14 +106,14 @@ async function main() {
   } else if (subcommand === "skills") {
     await handleSkillsCommand();
   } else if (subcommand === "service" || subcommand === "svc") {
-    const { handleServiceCommand } = await import('./commands-DwY2B7KW.mjs').then(function (n) { return n.c; });
+    const { handleServiceCommand } = await import('./commands-ZuFXrcot.mjs').then(function (n) { return n.c; });
     await handleServiceCommand();
   } else if (subcommand === "--help" || subcommand === "-h") {
     printHelp();
   } else if (!subcommand || subcommand === "start") {
     await handleInteractiveCommand();
   } else if (subcommand === "--version" || subcommand === "-v") {
-    const pkg = await import('./package-D7EUXtnk.mjs').catch(() => ({ default: { version: "unknown" } }));
+    const pkg = await import('./package-DbeynOln.mjs').catch(() => ({ default: { version: "unknown" } }));
     console.log(`svamp version: ${pkg.default.version}`);
   } else {
     console.error(`Unknown command: ${subcommand}`);
@@ -122,7 +122,7 @@ async function main() {
   }
 }
 async function handleInteractiveCommand() {
-  const { runInteractive } = await import('./run-Bw6aGHLA.mjs');
+  const { runInteractive } = await import('./run-Y0b60UYS.mjs');
   const interactiveArgs = subcommand === "start" ? args.slice(1) : args;
   let directory = process.cwd();
   let resumeSessionId;
@@ -167,7 +167,7 @@ async function handleAgentCommand() {
     return;
   }
   if (agentArgs[0] === "list") {
-    const { KNOWN_ACP_AGENTS, KNOWN_MCP_AGENTS: KNOWN_MCP_AGENTS2 } = await import('./run-BnnUavlu.mjs').then(function (n) { return n.i; });
+    const { KNOWN_ACP_AGENTS, KNOWN_MCP_AGENTS: KNOWN_MCP_AGENTS2 } = await import('./run-CBhm4Jop.mjs').then(function (n) { return n.i; });
     console.log("Known agents:");
     for (const [name, config2] of Object.entries(KNOWN_ACP_AGENTS)) {
       console.log(`  ${name.padEnd(12)} ${config2.command} ${config2.args.join(" ")}  (ACP)`);
@@ -179,7 +179,7 @@ async function handleAgentCommand() {
     console.log('Use "svamp agent -- <command> [args]" for a custom ACP agent.');
     return;
   }
-  const { resolveAcpAgentConfig, KNOWN_MCP_AGENTS } = await import('./run-BnnUavlu.mjs').then(function (n) { return n.i; });
+  const { resolveAcpAgentConfig, KNOWN_MCP_AGENTS } = await import('./run-CBhm4Jop.mjs').then(function (n) { return n.i; });
   let cwd = process.cwd();
   const filteredArgs = [];
   for (let i = 0; i < agentArgs.length; i++) {
@@ -203,12 +203,12 @@ async function handleAgentCommand() {
   console.log(`Starting ${config.agentName} agent in ${cwd}...`);
   let backend;
   if (KNOWN_MCP_AGENTS[config.agentName]) {
-    const { CodexMcpBackend } = await import('./run-BnnUavlu.mjs').then(function (n) { return n.j; });
+    const { CodexMcpBackend } = await import('./run-CBhm4Jop.mjs').then(function (n) { return n.j; });
     backend = new CodexMcpBackend({ cwd, log: logFn });
   } else {
-    const { AcpBackend } = await import('./run-BnnUavlu.mjs').then(function (n) { return n.h; });
-    const { GeminiTransport } = await import('./run-BnnUavlu.mjs').then(function (n) { return n.G; });
-    const { DefaultTransport } = await import('./run-BnnUavlu.mjs').then(function (n) { return n.D; });
+    const { AcpBackend } = await import('./run-CBhm4Jop.mjs').then(function (n) { return n.h; });
+    const { GeminiTransport } = await import('./run-CBhm4Jop.mjs').then(function (n) { return n.G; });
+    const { DefaultTransport } = await import('./run-CBhm4Jop.mjs').then(function (n) { return n.D; });
     const transportHandler = config.agentName === "gemini" ? new GeminiTransport() : new DefaultTransport(config.agentName);
     backend = new AcpBackend({
       agentName: config.agentName,
@@ -326,7 +326,7 @@ async function handleSessionCommand() {
     printSessionHelp();
     return;
   }
-  const { sessionList, sessionSpawn, sessionStop, sessionInfo, sessionMessages, sessionAttach, sessionMachines, sessionSend, sessionWait, sessionShare, sessionRalphStart, sessionRalphCancel, sessionRalphStatus, sessionQueueAdd, sessionQueueList, sessionQueueClear } = await import('./commands-CI_BVphs.mjs');
+  const { sessionList, sessionSpawn, sessionStop, sessionInfo, sessionMessages, sessionAttach, sessionMachines, sessionSend, sessionWait, sessionShare, sessionRalphStart, sessionRalphCancel, sessionRalphStatus, sessionQueueAdd, sessionQueueList, sessionQueueClear } = await import('./commands-VGt5ofDo.mjs');
   const parseFlagStr = (flag, shortFlag) => {
     for (let i = 1; i < sessionArgs.length; i++) {
       if ((sessionArgs[i] === flag || shortFlag) && i + 1 < sessionArgs.length) {
@@ -386,7 +386,7 @@ async function handleSessionCommand() {
         allowDomain.push(sessionArgs[++i]);
       }
     }
-    const { parseShareArg } = await import('./commands-CI_BVphs.mjs');
+    const { parseShareArg } = await import('./commands-VGt5ofDo.mjs');
     const shareEntries = share.map((s) => parseShareArg(s));
     await sessionSpawn(agent, dir, targetMachineId, {
       message,
@@ -470,7 +470,7 @@ async function handleSessionCommand() {
       console.error("Usage: svamp session approve <session-id> [request-id] [--json]");
       process.exit(1);
     }
-    const { sessionApprove } = await import('./commands-CI_BVphs.mjs');
+    const { sessionApprove } = await import('./commands-VGt5ofDo.mjs');
     const approveReqId = sessionArgs[2] && !sessionArgs[2].startsWith("--") ? sessionArgs[2] : void 0;
     await sessionApprove(sessionArgs[1], approveReqId, targetMachineId, {
       json: hasFlag("--json")
@@ -480,7 +480,7 @@ async function handleSessionCommand() {
       console.error("Usage: svamp session deny <session-id> [request-id] [--json]");
       process.exit(1);
     }
-    const { sessionDeny } = await import('./commands-CI_BVphs.mjs');
+    const { sessionDeny } = await import('./commands-VGt5ofDo.mjs');
     const denyReqId = sessionArgs[2] && !sessionArgs[2].startsWith("--") ? sessionArgs[2] : void 0;
     await sessionDeny(sessionArgs[1], denyReqId, targetMachineId, {
       json: hasFlag("--json")
@@ -549,7 +549,7 @@ async function handleMachineCommand() {
     return;
   }
   if (machineSubcommand === "share") {
-    const { machineShare } = await import('./commands-CI_BVphs.mjs');
+    const { machineShare } = await import('./commands-VGt5ofDo.mjs');
     let machineId;
     const shareArgs = [];
     for (let i = 1; i < machineArgs.length; i++) {
@@ -579,7 +579,7 @@ async function handleMachineCommand() {
     }
     await machineShare(machineId, { add, remove, list, configPath, showConfig });
   } else if (machineSubcommand === "exec") {
-    const { machineExec } = await import('./commands-CI_BVphs.mjs');
+    const { machineExec } = await import('./commands-VGt5ofDo.mjs');
     let machineId;
     let cwd;
     const cmdParts = [];
@@ -599,7 +599,7 @@ async function handleMachineCommand() {
     }
     await machineExec(machineId, command, cwd);
   } else if (machineSubcommand === "info") {
-    const { machineInfo } = await import('./commands-CI_BVphs.mjs');
+    const { machineInfo } = await import('./commands-VGt5ofDo.mjs');
     let machineId;
     for (let i = 1; i < machineArgs.length; i++) {
       if ((machineArgs[i] === "--machine" || machineArgs[i] === "-m") && i + 1 < machineArgs.length) {
@@ -608,7 +608,7 @@ async function handleMachineCommand() {
     }
     await machineInfo(machineId);
   } else if (machineSubcommand === "ls") {
-    const { machineLs } = await import('./commands-CI_BVphs.mjs');
+    const { machineLs } = await import('./commands-VGt5ofDo.mjs');
     let machineId;
     let showHidden = false;
     let path;
@@ -738,7 +738,7 @@ Please open this URL in your browser:
     }
     envLines.push(`HYPHA_SERVER_URL=${serverUrl}`);
     envLines.push(`HYPHA_TOKEN=${longLivedToken}`);
-    envLines.push(`HYPHA_WORKSPACE=${userId}`);
+    envLines.push(`HYPHA_WORKSPACE=${workspace}`);
     while (envLines.length > 0 && envLines[envLines.length - 1].trim() === "") {
       envLines.pop();
     }