twentythree-cli 1.0.0

package/README.md

@@ -0,0 +1,25 @@
+# TwentyThree CLI
+
+Terminal access to every TwentyThree API endpoint.
+
+## Install
+
+```sh
+npm install -g twentythree-cli
+```
+
+## Quickstart
+
+```sh
+npm install -g twentythree-cli
+twentythree auth credentials
+twentythree video list
+```
+
+## Documentation
+
+Full documentation, command reference, and guides are available on [GitHub](https://github.com/23/twentythree-cli).
+
+## License
+
+MIT

package/bin/dev.cmd

@@ -0,0 +1,2 @@
+@echo off
+node "%~dp0\dev.js" %*

package/bin/dev.js

@@ -0,0 +1,28 @@
+#!/usr/bin/env node
+// bin/dev.js — development mode; auto-transpiles TypeScript via tsx
+
+const nodeVersion = process.versions.node
+const [major] = nodeVersion.split('.').map(Number)
+if (major < 22) {
+  process.stderr.write(
+    `\nError: twentythree requires Node.js 22 or later.\n` +
+    `You are running Node.js ${nodeVersion}.\n` +
+    `Please upgrade: https://nodejs.org\n\n`
+  )
+  process.exit(1)
+}
+
+process.env.NODE_ENV = 'development'
+
+// In dev mode, attempt tsx for TypeScript transpilation of src/commands
+// Fallback to compiled dist if tsx is unavailable
+void (async () => {
+  try {
+    require('tsx/cjs')
+  } catch (err) {
+    if (err?.code !== 'MODULE_NOT_FOUND') throw err
+    // tsx not installed — fall through to compiled dist
+  }
+  const oclif = await import('@oclif/core')
+  await oclif.execute({ development: true, dir: __dirname })
+})()

package/bin/run.cmd

@@ -0,0 +1,2 @@
+@echo off
+node "%~dp0\run.js" %*

package/bin/run.js

@@ -0,0 +1,23 @@
+#!/usr/bin/env node
+// bin/run.js — MUST be plain JavaScript
+
+// Node version guard: runs BEFORE oclif loads
+// This is the only location that catches old Node reliably.
+// The oclif init hook fires too late (after oclif itself is loaded).
+const nodeVersion = process.versions.node
+const [major] = nodeVersion.split('.').map(Number)
+if (major < 22) {
+  process.stderr.write(
+    `\nError: twentythree requires Node.js 22 or later.\n` +
+    `You are running Node.js ${nodeVersion}.\n` +
+    `Please upgrade: https://nodejs.org\n\n`
+  )
+  process.exit(1)
+}
+
+// Load oclif only after version check passes
+// execute() is the documented CJS entry pattern; it calls run() + handle() internally
+void (async () => {
+  const oclif = await import('@oclif/core')
+  await oclif.execute({ dir: __dirname })
+})()

package/dist/_virtual/_rolldown/runtime.cjs

@@ -0,0 +1,23 @@
+//#region \0rolldown/runtime.js
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+	if (from && typeof from === "object" || typeof from === "function") for (var keys = __getOwnPropNames(from), i = 0, n = keys.length, key; i < n; i++) {
+		key = keys[i];
+		if (!__hasOwnProp.call(to, key) && key !== except) __defProp(to, key, {
+			get: ((k) => from[k]).bind(null, key),
+			enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable
+		});
+	}
+	return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", {
+	value: mod,
+	enumerable: true
+}) : target, mod));
+//#endregion
+exports.__toESM = __toESM;

package/dist/api/client.cjs

@@ -0,0 +1,24 @@
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const require_runtime = require("../_virtual/_rolldown/runtime.cjs");
+let openapi_fetch = require("openapi-fetch");
+openapi_fetch = require_runtime.__toESM(openapi_fetch);
+//#region src/api/client.ts
+/**
+* Create a typed openapi-fetch client for a TwentyThree workspace.
+*
+* When token is provided, an auth middleware injects the Authorization header.
+* When token is undefined or empty string (domain-only mode per AUTH-11), no
+* auth header is sent.
+*
+* Pass api_base_url from WorkspaceEntry directly — it already has a trailing slash.
+*/
+function createApiClient(config) {
+	const client = (0, openapi_fetch.default)({ baseUrl: config.baseUrl });
+	if (config.token) client.use({ async onRequest({ request }) {
+		request.headers.set("Authorization", `Bearer ${config.token}`);
+		return request;
+	} });
+	return client;
+}
+//#endregion
+exports.createApiClient = createApiClient;

package/dist/auth/credential-store.cjs

@@ -0,0 +1,22 @@
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+require("../_virtual/_rolldown/runtime.cjs");
+let _napi_rs_keyring = require("@napi-rs/keyring");
+//#region src/auth/credential-store.ts
+const SERVICE_NAME = "twentythree-cli";
+function setCredential(domain, token) {
+	new _napi_rs_keyring.Entry(SERVICE_NAME, domain).setPassword(token);
+}
+function getCredential(domain) {
+	return new _napi_rs_keyring.Entry(SERVICE_NAME, domain).getPassword();
+}
+function deleteCredential(domain) {
+	return new _napi_rs_keyring.Entry(SERVICE_NAME, domain).deleteCredential();
+}
+function hasCredential(domain) {
+	return getCredential(domain) !== null;
+}
+//#endregion
+exports.deleteCredential = deleteCredential;
+exports.getCredential = getCredential;
+exports.hasCredential = hasCredential;
+exports.setCredential = setCredential;

package/dist/auth/token-refresh.cjs

@@ -0,0 +1,70 @@
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const require_runtime = require("../_virtual/_rolldown/runtime.cjs");
+const require_auth_credential_store = require("./credential-store.cjs");
+const require_auth_workspace_config = require("./workspace-config.cjs");
+let proper_lockfile = require("proper-lockfile");
+proper_lockfile = require_runtime.__toESM(proper_lockfile);
+//#region src/auth/token-refresh.ts
+const REFRESH_THRESHOLD_MS = 300 * 1e3;
+/**
+* Fetch workspace tokens from /api/2/user/tokens?cross_sites_p=1.
+* Uses the login token (from keychain) as the Authorization header.
+* Returns an array of WorkspaceEntry objects parsed from the API response.
+*
+* Response shape (confirmed from live API — see 02-RESEARCH.md Pattern 6):
+*   { status: 'ok', sites: WorkspaceEntry[] }
+* Field names in response match WorkspaceEntry exactly — no mapping needed.
+*/
+async function fetchWorkspaceTokens(domain, loginToken) {
+	const url = `https://${domain}/api/2/user/tokens?cross_sites_p=1`;
+	const response = await fetch(url, { headers: { Authorization: `Bearer ${loginToken}` } });
+	if (!response.ok) throw new Error(`Failed to fetch workspace tokens: ${response.status} ${response.statusText}`);
+	const json = await response.json();
+	return Array.isArray(json) ? json : json.tokens ?? json.sites ?? json.data ?? json.workspaces ?? [];
+}
+/**
+* Ensure a fresh workspace token for the given domain.
+* Returns the bearer_token string, or null if:
+*   - No workspace is configured for the domain
+*   - The workspace has no bearer_token (domain-only / anonymous mode)
+*   - No login token exists in the OS keychain
+*
+* If the token is near expiry (within REFRESH_THRESHOLD_MS), acquires a
+* file lock on the conf config file and refreshes by re-calling
+* /api/2/user/tokens. Re-checks token freshness after lock acquisition
+* to prevent redundant refreshes from concurrent processes.
+*
+* Security: Login token transmitted only over HTTPS (hardcoded https:// in
+* fetchWorkspaceTokens). Token values never appear in error messages — only
+* HTTP status codes. Lock released in finally block to prevent stale locks.
+*/
+async function ensureFreshToken(domain) {
+	const workspace = require_auth_workspace_config.getWorkspaceForDomain(domain);
+	if (!workspace?.bearer_token) return null;
+	const now = Date.now();
+	if (new Date(workspace.expiration_time).getTime() - now > 3e5) return workspace.bearer_token;
+	const configPath = require_auth_workspace_config.getConfigPath();
+	let release;
+	try {
+		release = await proper_lockfile.lock(configPath, {
+			realpath: false,
+			retries: 3
+		});
+		const rechecked = require_auth_workspace_config.getWorkspaceForDomain(domain);
+		if (rechecked && new Date(rechecked.expiration_time).getTime() - Date.now() > 3e5) return rechecked.bearer_token;
+		const credDomain = require_auth_workspace_config.getCredentialDomain() ?? domain;
+		const loginToken = require_auth_credential_store.getCredential(credDomain);
+		if (!loginToken) return null;
+		const freshTokens = await fetchWorkspaceTokens(credDomain, loginToken);
+		require_auth_workspace_config.setWorkspaces(require_auth_workspace_config.getWorkspaces().map((w) => {
+			return freshTokens.find((f) => f.domain === w.domain) ?? w;
+		}));
+		return freshTokens.find((t) => t.domain === domain)?.bearer_token ?? null;
+	} finally {
+		await release?.();
+	}
+}
+//#endregion
+exports.REFRESH_THRESHOLD_MS = REFRESH_THRESHOLD_MS;
+exports.ensureFreshToken = ensureFreshToken;
+exports.fetchWorkspaceTokens = fetchWorkspaceTokens;

package/dist/auth/workspace-config.cjs

@@ -0,0 +1,61 @@
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const require_runtime = require("../_virtual/_rolldown/runtime.cjs");
+let conf = require("conf");
+conf = require_runtime.__toESM(conf);
+//#region src/auth/workspace-config.ts
+const config = new conf.default({
+	projectName: "twentythree-cli",
+	defaults: {
+		activeDomain: void 0,
+		credentialDomain: void 0,
+		workspaces: []
+	}
+});
+function getWorkspaces() {
+	return config.get("workspaces");
+}
+function setWorkspaces(workspaces) {
+	config.set("workspaces", workspaces);
+}
+function getActiveWorkspace() {
+	return config.get("activeDomain");
+}
+function setActiveWorkspace(domain) {
+	config.set("activeDomain", domain);
+}
+function getWorkspaceForDomain(domain) {
+	return getWorkspaces().find((w) => w.domain === domain) ?? null;
+}
+function findWorkspace(query, workspaces) {
+	const exactDomain = workspaces.find((w) => w.domain.toLowerCase() === query.toLowerCase());
+	if (exactDomain) return exactDomain;
+	const matches = workspaces.filter((w) => w.display_name.toLowerCase().includes(query.toLowerCase()) || w.domain.toLowerCase().includes(query.toLowerCase()));
+	if (matches.length === 1) return matches[0];
+	if (matches.length > 1) return matches;
+	return null;
+}
+function getCredentialDomain() {
+	return config.get("credentialDomain");
+}
+function setCredentialDomain(domain) {
+	config.set("credentialDomain", domain);
+}
+/** Get the conf file path (needed for file locking in token refresh) */
+function getConfigPath() {
+	return config.path;
+}
+/** Clear all config (for testing) */
+function clearConfig() {
+	config.clear();
+}
+//#endregion
+exports.clearConfig = clearConfig;
+exports.findWorkspace = findWorkspace;
+exports.getActiveWorkspace = getActiveWorkspace;
+exports.getConfigPath = getConfigPath;
+exports.getCredentialDomain = getCredentialDomain;
+exports.getWorkspaceForDomain = getWorkspaceForDomain;
+exports.getWorkspaces = getWorkspaces;
+exports.setActiveWorkspace = setActiveWorkspace;
+exports.setCredentialDomain = setCredentialDomain;
+exports.setWorkspaces = setWorkspaces;

package/dist/commands/action/add.cjs

@@ -0,0 +1,75 @@
+const require_runtime = require("../../_virtual/_rolldown/runtime.cjs");
+const require_lib_term_map = require("../../lib/term-map.cjs");
+const require_lib_base_command = require("../../lib/base-command.cjs");
+const require_lib_output = require("../../lib/output.cjs");
+let _oclif_core = require("@oclif/core");
+let chalk = require("chalk");
+chalk = require_runtime.__toESM(chalk);
+//#region src/commands/action/add.ts
+/**
+* Action add command — creates a new CTA (Call-To-Action) on a video or webinar.
+*
+* POSTs to /action/add with type + object_id required.
+*
+* Threat mitigations:
+*   T-06-03: No destructive action — creation only
+*/
+var ActionAdd = class ActionAdd extends require_lib_base_command.AuthenticatedCommand {
+	static description = "Create a new CTA action on a video or webinar";
+	static examples = [
+		"<%= config.bin %> action add --type overlay --object-id 12345",
+		"<%= config.bin %> action add --type overlay --object-id 12345 --fields \"title=Buy Now\"",
+		"<%= config.bin %> action add --type overlay --object-id 12345 --json"
+	];
+	static enableJsonFlag = true;
+	static agentMetadata = {
+		api_endpoint: "POST /action/add",
+		auth_scope: "write",
+		output_shape: { type: "key-value" },
+		side_effects: "creates"
+	};
+	static flags = {
+		...require_lib_base_command.AuthenticatedCommand.baseFlags,
+		type: _oclif_core.Flags.string({
+			description: "Action type (use `action types` to list available types)",
+			required: true
+		}),
+		"object-id": _oclif_core.Flags.string({
+			description: "Object ID (video or webinar) to attach the action to",
+			required: true
+		}),
+		fields: _oclif_core.Flags.string({
+			description: "Additional fields for the action (key=value pairs)",
+			required: false
+		})
+	};
+	static args = {};
+	async run() {
+		const { flags } = await this.parse(ActionAdd);
+		this.printWorkspaceHeader();
+		const body = {
+			type: flags.type,
+			object_id: Number(flags["object-id"])
+		};
+		if (flags.fields !== void 0) body.fields = flags.fields;
+		const { data, error } = await this.apiClient.POST("/action/add", {
+			body,
+			headers: { "Content-Type": "application/x-www-form-urlencoded" }
+		});
+		if (error) this.error(require_lib_term_map.applyCliTerms(formatApiError(error)), { exit: 1 });
+		const actionId = data?.data?.action_id ?? data?.action_id;
+		this.log(chalk.default.green("Action created"));
+		if (actionId) this.log(`ID: ${actionId}`);
+		if (this.jsonEnabled()) return require_lib_output.formatJsonOutput({
+			ok: true,
+			data,
+			summary: "Action created",
+			breadcrumbs: [{ domain: this.activeWorkspace.domain }, {
+				resource: "action",
+				id: actionId ? String(actionId) : void 0
+			}]
+		});
+	}
+};
+//#endregion
+module.exports = ActionAdd;

package/dist/commands/action/delete.cjs

@@ -0,0 +1,64 @@
+const require_runtime = require("../../_virtual/_rolldown/runtime.cjs");
+const require_lib_term_map = require("../../lib/term-map.cjs");
+const require_lib_base_command = require("../../lib/base-command.cjs");
+const require_lib_output = require("../../lib/output.cjs");
+let _oclif_core = require("@oclif/core");
+let chalk = require("chalk");
+chalk = require_runtime.__toESM(chalk);
+let _clack_prompts = require("@clack/prompts");
+//#region src/commands/action/delete.ts
+/**
+* Action delete command — deletes a CTA action after confirmation.
+*
+* Prompts user to confirm deletion showing the workspace domain (T-06-03 mitigation).
+* --json flag skips the confirmation prompt (scripting mode — assume confirmed).
+*
+* Exit codes:
+*   0 — success
+*   1 — error
+*   2 — cancelled (user declined confirmation)
+*
+* Threat mitigations:
+*   T-06-03: Confirmation prompt includes workspace domain
+*/
+var ActionDelete = class ActionDelete extends require_lib_base_command.AuthenticatedCommand {
+	static description = "Delete a CTA action";
+	static examples = ["<%= config.bin %> action delete 12345", "<%= config.bin %> action delete 12345 --json"];
+	static enableJsonFlag = true;
+	static agentMetadata = {
+		api_endpoint: "POST /action/delete",
+		auth_scope: "write",
+		output_shape: { type: "key-value" },
+		side_effects: "destructive"
+	};
+	static flags = { ...require_lib_base_command.AuthenticatedCommand.baseFlags };
+	static args = { id: _oclif_core.Args.string({
+		description: "Action ID",
+		required: true
+	}) };
+	async run() {
+		const { args } = await this.parse(ActionDelete);
+		this.printWorkspaceHeader();
+		if (!this.jsonEnabled()) {
+			const confirmed = await (0, _clack_prompts.confirm)({ message: `Delete action ${args.id} from ${this.activeWorkspace.domain}? This cannot be undone.` });
+			if ((0, _clack_prompts.isCancel)(confirmed) || !confirmed) process.exit(2);
+		}
+		const { data: deleteData, error: deleteError } = await this.apiClient.POST("/action/delete", {
+			body: { action_id: Number(args.id) },
+			headers: { "Content-Type": "application/x-www-form-urlencoded" }
+		});
+		if (deleteError) this.error(require_lib_term_map.applyCliTerms(formatApiError(deleteError)), { exit: 1 });
+		this.log(chalk.default.green("Action deleted"));
+		if (this.jsonEnabled()) return require_lib_output.formatJsonOutput({
+			ok: true,
+			data: deleteData,
+			summary: `Action ${args.id} deleted`,
+			breadcrumbs: [{ domain: this.activeWorkspace.domain }, {
+				resource: "action",
+				id: args.id
+			}]
+		});
+	}
+};
+//#endregion
+module.exports = ActionDelete;

package/dist/commands/action/exclude.cjs

@@ -0,0 +1,70 @@
+const require_runtime = require("../../_virtual/_rolldown/runtime.cjs");
+const require_lib_term_map = require("../../lib/term-map.cjs");
+const require_lib_base_command = require("../../lib/base-command.cjs");
+const require_lib_output = require("../../lib/output.cjs");
+let _oclif_core = require("@oclif/core");
+let chalk = require("chalk");
+chalk = require_runtime.__toESM(chalk);
+//#region src/commands/action/exclude.ts
+/**
+* Action exclude command — blocks a CTA action from appearing on a specific object.
+*
+* POSTs to /action/exclude with action_id + object_id.
+* Use --undo to reverse the exclusion (maps to remove_exclusion_p).
+*/
+var ActionExclude = class ActionExclude extends require_lib_base_command.AuthenticatedCommand {
+	static description = "Exclude a CTA action from an object (or undo an exclusion)";
+	static examples = [
+		"<%= config.bin %> action exclude 12345 --object-id 6789",
+		"<%= config.bin %> action exclude 12345 --object-id 6789 --undo",
+		"<%= config.bin %> action exclude 12345 --object-id 6789 --json"
+	];
+	static enableJsonFlag = true;
+	static agentMetadata = {
+		api_endpoint: "POST /action/exclude",
+		auth_scope: "write",
+		output_shape: { type: "key-value" },
+		side_effects: "updates"
+	};
+	static flags = {
+		...require_lib_base_command.AuthenticatedCommand.baseFlags,
+		"object-id": _oclif_core.Flags.string({
+			description: "Object ID to exclude the action from",
+			required: true
+		}),
+		undo: _oclif_core.Flags.boolean({
+			description: "Remove the exclusion (reverse this operation)",
+			required: false
+		})
+	};
+	static args = { id: _oclif_core.Args.string({
+		description: "Action ID",
+		required: true
+	}) };
+	async run() {
+		const { args, flags } = await this.parse(ActionExclude);
+		this.printWorkspaceHeader();
+		const body = {
+			action_id: Number(args.id),
+			object_id: Number(flags["object-id"])
+		};
+		if (flags.undo) body.remove_exclusion_p = 1;
+		const { data, error } = await this.apiClient.POST("/action/exclude", {
+			body,
+			headers: { "Content-Type": "application/x-www-form-urlencoded" }
+		});
+		if (error) this.error(require_lib_term_map.applyCliTerms(formatApiError(error)), { exit: 1 });
+		this.log(chalk.default.green(flags.undo ? "Exclusion removed" : "Action excluded"));
+		if (this.jsonEnabled()) return require_lib_output.formatJsonOutput({
+			ok: true,
+			data,
+			summary: flags.undo ? "Exclusion removed" : "Action excluded",
+			breadcrumbs: [{ domain: this.activeWorkspace.domain }, {
+				resource: "action",
+				id: args.id
+			}]
+		});
+	}
+};
+//#endregion
+module.exports = ActionExclude;

package/dist/commands/action/get.cjs

@@ -0,0 +1,112 @@
+require("../../_virtual/_rolldown/runtime.cjs");
+const require_lib_term_map = require("../../lib/term-map.cjs");
+const require_lib_base_command = require("../../lib/base-command.cjs");
+const require_lib_output = require("../../lib/output.cjs");
+let _oclif_core = require("@oclif/core");
+//#region src/commands/action/get.ts
+/**
+* Action get command — flexible retrieval of action CTAs.
+*
+* D-5: Single flexible command; all context fields are optional flags.
+* The most common case is passing an action_id as a positional arg.
+*
+* Calls GET /action/get — same endpoint as action list, but oriented around
+* detail/single-object retrieval.
+*/
+var ActionGet = class ActionGet extends require_lib_base_command.AuthenticatedCommand {
+	static description = "Get details of a CTA action";
+	static examples = [
+		"<%= config.bin %> action get 12345",
+		"<%= config.bin %> action get --video-id 6789",
+		"<%= config.bin %> action get --webinar-id 1234 --json",
+		"<%= config.bin %> action get 12345 --json"
+	];
+	static enableJsonFlag = true;
+	static agentMetadata = {
+		api_endpoint: "GET /action/get",
+		auth_scope: "read",
+		output_shape: { type: "key-value" },
+		side_effects: "none"
+	};
+	static flags = {
+		...require_lib_base_command.AuthenticatedCommand.baseFlags,
+		"object-id": _oclif_core.Flags.string({
+			description: "Object ID context",
+			required: false
+		}),
+		"video-id": _oclif_core.Flags.string({
+			description: "Video ID context (maps to photo_id)",
+			required: false
+		}),
+		"webinar-id": _oclif_core.Flags.string({
+			description: "Webinar ID context (maps to live_id)",
+			required: false
+		}),
+		token: _oclif_core.Flags.string({
+			description: "Object token for authentication",
+			required: false
+		}),
+		"player-id": _oclif_core.Flags.string({
+			description: "Player ID context",
+			required: false
+		}),
+		"exclude-internal": _oclif_core.Flags.boolean({
+			description: "Exclude internal actions",
+			required: false
+		}),
+		"exclude-pending": _oclif_core.Flags.boolean({
+			description: "Exclude pending actions",
+			required: false
+		}),
+		"exclude-items": _oclif_core.Flags.boolean({
+			description: "Exclude action items",
+			required: false
+		})
+	};
+	static args = { id: _oclif_core.Args.string({
+		description: "Action ID (optional)",
+		required: false
+	}) };
+	async run() {
+		const { args, flags } = await this.parse(ActionGet);
+		this.printWorkspaceHeader();
+		const { data, error } = await this.apiClient.GET("/action/get", { params: { query: {
+			action_id: args.id ? Number(args.id) : void 0,
+			object_id: flags["object-id"] ? Number(flags["object-id"]) : void 0,
+			photo_id: flags["video-id"] ? Number(flags["video-id"]) : void 0,
+			live_id: flags["webinar-id"] ? Number(flags["webinar-id"]) : void 0,
+			token: flags.token,
+			player_id: flags["player-id"] ? Number(flags["player-id"]) : void 0,
+			exclude_internal_p: flags["exclude-internal"] ? true : void 0,
+			exclude_pending_p: flags["exclude-pending"] ? true : void 0,
+			exclude_items_p: flags["exclude-items"] ? true : void 0
+		} } });
+		if (error) this.error(require_lib_term_map.applyCliTerms(formatApiError(error)), { exit: 1 });
+		const resp = data;
+		const items = Array.isArray(resp?.data) ? resp.data : resp?.data ? [resp.data] : [];
+		if (this.jsonEnabled()) return require_lib_output.formatJsonOutput({
+			ok: true,
+			data: items.length === 1 ? items[0] : items,
+			summary: items.length === 1 ? `Action ${items[0].action_id ?? args.id}` : `${items.length} actions`,
+			breadcrumbs: [{ domain: this.activeWorkspace.domain }, {
+				resource: "action",
+				id: args.id
+			}]
+		});
+		if (items.length === 0) {
+			this.log("No actions found.");
+			return;
+		}
+		for (const action of items) {
+			this.log(`ID:         ${action.action_id ?? ""}`);
+			this.log(`Name:       ${require_lib_term_map.applyCliTerms(String(action.name ?? action.action_name ?? ""))}`);
+			this.log(`Type:       ${String(action.type ?? action.action_type ?? "")}`);
+			this.log(`Start:      ${String(action.start_time ?? "")}`);
+			this.log(`End:        ${String(action.end_time ?? "")}`);
+			if (action.object_id) this.log(`Object ID:  ${action.object_id}`);
+			if (items.length > 1) this.log("---");
+		}
+	}
+};
+//#endregion
+module.exports = ActionGet;