ultrahope 0.1.10 → 0.1.11

package/README.md

@@ -12,14 +12,15 @@ npm install -g ultrahope
 
 ### Login
 
-Authenticate with your ultrahope account using device flow:
+You can try Ultrahope without logging in first. The CLI automatically creates an anonymous session and allows up to 5 requests per day with the Anonymous plan limits.
+
+When you want to keep going, authenticate with your Ultrahope account using device flow:
 
 ```bash
 ultrahope login
 ```
 
-This will display a URL and code. Open the URL in your browser, sign in, and enter the code to authorize the CLI.
-On first successful login, `${XDG_CONFIG_HOME:-~/.config}/ultrahope/config.toml` is created automatically if missing.
+This will display a URL and code. Open the URL in your browser, sign in, and enter the code to authorize the CLI. On successful login, the CLI replaces the anonymous session with your authenticated one while keeping the local installation identity.
 
 ### Translate
 
@@ -106,7 +107,7 @@ models = ["mistral/ministral-3b", "xai/grok-code-fast-1"]
 
 ### Credentials
 
-Credentials are stored in `~/.config/ultrahope/credentials.json`.
+Credentials and the local installation ID are stored in `~/.config/ultrahope/credentials.json`.
 
 ## Development
 

package/dist/git-ultrahope.js

@@ -36,7 +36,7 @@ function log(message, data) {
 // lib/api-client.ts
 var API_BASE_URL = process.env.ULTRAHOPE_API_URL ?? "https://ultrahope.dev";
 var InsufficientBalanceError = class extends Error {
-  constructor(balance, plan = "free", hint, actions) {
+  constructor(balance, plan = "anonymous", hint, actions) {
     super("Token balance exhausted");
     this.balance = balance;
     this.plan = plan;
@@ -55,7 +55,7 @@ var InsufficientBalanceError = class extends Error {
       }
     } else {
       lines.push(
-        "Error: Your free credit has been exhausted. Upgrade to Pro for unlimited requests with $5 included credit."
+        "Error: Anonymous usage is limited. Upgrade to Pro for unlimited requests with $1 included credit."
       );
       if (this.actions?.upgrade) {
         lines.push(`  Upgrade: ${this.actions.upgrade}`);
@@ -65,11 +65,12 @@ var InsufficientBalanceError = class extends Error {
   }
 };
 var DailyLimitExceededError = class extends Error {
-  constructor(count, limit, resetsAt) {
+  constructor(count, limit, resetsAt, plan = "anonymous") {
     super("Daily request limit reached");
     this.count = count;
     this.limit = limit;
     this.resetsAt = resetsAt;
+    this.plan = plan;
     this.name = "DailyLimitExceededError";
   }
 };
@@ -79,6 +80,26 @@ var UnauthorizedError = class extends Error {
     this.name = "UnauthorizedError";
   }
 };
+var SubscriptionRequiredError = class extends Error {
+  constructor(subscribeUrl, hint) {
+    super("Active Pro subscription required");
+    this.subscribeUrl = subscribeUrl;
+    this.hint = hint;
+    this.name = "SubscriptionRequiredError";
+  }
+  formatMessage() {
+    const lines = [
+      "Error: This signed-in account requires an active Pro subscription."
+    ];
+    if (this.hint) {
+      lines.push(`  ${this.hint}`);
+    }
+    if (this.subscribeUrl) {
+      lines.push(`  Subscribe: ${this.subscribeUrl}`);
+    }
+    return lines.join("\n");
+  }
+};
 var InvalidModelError = class extends Error {
   constructor(model, allowedModels, message) {
     super(message ?? `Model '${model}' is not supported.`);
@@ -88,7 +109,7 @@ var InvalidModelError = class extends Error {
   }
 };
 var InputLengthExceededError = class extends Error {
-  constructor(count, limit, plan = "free", message) {
+  constructor(count, limit, plan = "anonymous", message) {
     super(
       message ?? `Input length ${count} exceeds the ${plan} plan limit of ${limit} characters.`
     );
@@ -141,12 +162,19 @@ function parseSseEvents(buffer) {
 }
 function handle402Error(error) {
   const payload = error;
+  if (payload?.error === "subscription_required") {
+    log("generate error (402 subscription_required)", error);
+    throw new SubscriptionRequiredError(
+      payload.actions?.subscribe,
+      payload.hint
+    );
+  }
   if (typeof payload?.balance === "number") {
     log("generate error (402 insufficient_balance)", error);
-    const plan = payload.plan === "pro" || payload.plan === "free" ? payload.plan : "free";
+    const plan2 = payload.plan === "pro" ? "pro" : "anonymous";
     throw new InsufficientBalanceError(
       payload.balance,
-      plan,
+      plan2,
       payload.hint,
       payload.actions
     );
@@ -154,14 +182,15 @@ function handle402Error(error) {
   const count = typeof payload?.count === "number" ? payload.count : 0;
   const limit = typeof payload?.limit === "number" ? payload.limit : 0;
   const resetsAt = payload?.resetsAt ?? "";
+  const plan = payload?.plan === "pro" ? "pro" : "anonymous";
   log("generate error (402 daily_limit)", error);
-  throw new DailyLimitExceededError(count, limit, resetsAt);
+  throw new DailyLimitExceededError(count, limit, resetsAt, plan);
 }
 function throwInputLengthExceededError(error) {
   const payload = error;
   const count = typeof payload?.count === "number" ? payload.count : 0;
   const limit = typeof payload?.limit === "number" ? payload.limit : 0;
-  const plan = payload?.plan === "free" ? payload.plan : "free";
+  const plan = payload?.plan === "anonymous" ? "anonymous" : "anonymous";
   const message = typeof payload?.message === "string" ? payload.message : `Input length ${count} exceeds the ${plan} plan limit of ${limit} characters.`;
   log("generate error (400 input_too_long)", error);
   throw new InputLengthExceededError(count, limit, plan, message);
@@ -185,25 +214,27 @@ function handle400Error(error) {
   throwInvalidModelError(error);
 }
 function createApiClient(token) {
-  const headers = {
-    "Content-Type": "application/json"
-  };
+  const authHeaders = {};
   if (token) {
-    headers.Authorization = `Bearer ${token}`;
+    authHeaders.Authorization = `Bearer ${token}`;
+  }
+  function jsonHeaders(extra) {
+    return {
+      ...authHeaders,
+      "Content-Type": "application/json",
+      ...extra
+    };
   }
   const client = createClient({
     baseUrl: API_BASE_URL,
-    headers
+    headers: authHeaders
   });
   return {
     async *streamCommitMessage(req, options) {
       log("streamCommitMessage request", req);
       const res = await fetch(`${API_BASE_URL}/api/v1/commit-message/stream`, {
         method: "POST",
-        headers: {
-          ...headers,
-          Accept: "text/event-stream"
-        },
+        headers: jsonHeaders({ Accept: "text/event-stream" }),
         body: JSON.stringify(req),
         signal: options?.signal
       });
@@ -269,10 +300,7 @@ function createApiClient(token) {
         `${API_BASE_URL}/api/v1/commit-message/refine/stream`,
         {
           method: "POST",
-          headers: {
-            ...headers,
-            Accept: "text/event-stream"
-          },
+          headers: jsonHeaders({ Accept: "text/event-stream" }),
           body: JSON.stringify(req),
           signal: options?.signal
         }
@@ -337,7 +365,7 @@ function createApiClient(token) {
       log("generation_score request", req);
       const res = await fetch(`${API_BASE_URL}/api/v1/generation_score`, {
         method: "POST",
-        headers,
+        headers: jsonHeaders(),
         body: JSON.stringify(req)
       });
       if (!res.ok) {
@@ -490,7 +518,7 @@ function createApiClient(token) {
     async requestDeviceCode() {
       const res = await fetch(`${API_BASE_URL}/api/auth/device/code`, {
         method: "POST",
-        headers,
+        headers: jsonHeaders(),
         body: JSON.stringify({ client_id: "ultrahope-cli" })
       });
       if (!res.ok) {
@@ -502,7 +530,7 @@ function createApiClient(token) {
     async pollDeviceToken(deviceCode) {
       const res = await fetch(`${API_BASE_URL}/api/auth/device/token`, {
         method: "POST",
-        headers,
+        headers: jsonHeaders(),
         body: JSON.stringify({
           grant_type: "urn:ietf:params:oauth:grant-type:device_code",
           device_code: deviceCode,
@@ -514,6 +542,32 @@ function createApiClient(token) {
         throw new Error(`API error: ${res.status} ${text}`);
       }
       return res.json();
+    },
+    async signInAnonymous() {
+      const res = await fetch(`${API_BASE_URL}/api/auth/sign-in/anonymous`, {
+        method: "POST",
+        headers: jsonHeaders(),
+        body: JSON.stringify({})
+      });
+      if (!res.ok) {
+        const text = await res.text();
+        throw new Error(`API error: ${res.status} ${text}`);
+      }
+      return res.json();
+    },
+    async deleteAnonymousUser() {
+      const res = await fetch(
+        `${API_BASE_URL}/api/auth/delete-anonymous-user`,
+        {
+          method: "POST",
+          headers: jsonHeaders(),
+          body: JSON.stringify({})
+        }
+      );
+      if (!res.ok) {
+        const text = await res.text();
+        throw new Error(`API error: ${res.status} ${text}`);
+      }
     }
   };
 }
@@ -565,6 +619,7 @@ function abortReasonForError(error) {
 }
 
 // lib/auth.ts
+import { randomUUID } from "crypto";
 import * as fs from "fs";
 import * as os from "os";
 import * as path from "path";
@@ -574,19 +629,74 @@ function getCredentialsPath() {
   const filename = env && env !== "production" ? `credentials.${env}.json` : "credentials.json";
   return path.join(configDir, "ultrahope", filename);
 }
-async function getToken() {
+async function getCredentials() {
   const credPath = getCredentialsPath();
   try {
     const content = await fs.promises.readFile(credPath, "utf-8");
     const creds = JSON.parse(content);
-    return creds.access_token ?? null;
+    if (typeof creds.access_token !== "string" || creds.access_token.length === 0) {
+      return null;
+    }
+    return {
+      accessToken: creds.access_token,
+      authKind: creds.auth_kind === "anonymous" ? "anonymous" : "authenticated",
+      installationId: await ensureInstallationId(creds)
+    };
   } catch {
     return null;
   }
 }
+async function writeCredentials(creds) {
+  const credPath = getCredentialsPath();
+  const dir = path.dirname(credPath);
+  await fs.promises.mkdir(dir, { recursive: true });
+  await fs.promises.writeFile(credPath, JSON.stringify(creds, null, 2), {
+    mode: 384
+  });
+}
+async function ensureInstallationId(creds) {
+  if (creds?.installation_id && creds.installation_id.length > 0) {
+    return creds.installation_id;
+  }
+  const installationId = randomUUID();
+  await writeCredentials({
+    access_token: creds?.access_token ?? "",
+    auth_kind: creds?.auth_kind,
+    installation_id: installationId
+  });
+  return installationId;
+}
+async function getInstallationId() {
+  const credPath = getCredentialsPath();
+  try {
+    const content = await fs.promises.readFile(credPath, "utf-8");
+    const creds = JSON.parse(content);
+    return await ensureInstallationId(creds);
+  } catch {
+    return await ensureInstallationId(null);
+  }
+}
+async function getToken() {
+  const existing = await getCredentials();
+  if (existing) {
+    return existing.accessToken;
+  }
+  const api = createApiClient();
+  const anonymousSession = await api.signInAnonymous();
+  await saveToken(anonymousSession.token, "anonymous");
+  return anonymousSession.token;
+}
+async function saveToken(token, authKind = "authenticated") {
+  const installationId = await getInstallationId();
+  await writeCredentials({
+    access_token: token,
+    auth_kind: authKind,
+    installation_id: installationId
+  });
+}
 
 // lib/command-execution.ts
-import { randomUUID } from "crypto";
+import { randomUUID as randomUUID2 } from "crypto";
 
 // lib/daily-limit-prompt.ts
 import * as readline from "readline";
@@ -730,9 +840,7 @@ async function showDailyLimitPrompt(info) {
     );
   }
   console.log("");
-  console.log(
-    `${theme.primary}Commit message generation was skipped${theme.reset}`
-  );
+  console.log(`${theme.primary}Generation was skipped${theme.reset}`);
   console.log("");
   console.log(
     ui.bullet(`Daily request limit reached (${info.count} / ${info.limit})`)
@@ -745,7 +853,7 @@ async function showDailyLimitPrompt(info) {
     );
     console.log(`  ${ui.link("ultrahope jj describe")}`);
     console.log("");
-    console.log(`${theme.primary}Or upgrade your plan:${theme.reset}`);
+    console.log(`${theme.primary}Or upgrade to Pro:${theme.reset}`);
     console.log(`  ${ui.link(PRICING_URL)}`);
     return;
   }
@@ -755,7 +863,7 @@ async function showDailyLimitPrompt(info) {
     `${theme.secondary}  1) Retry after the daily limit resets${theme.reset}`
   );
   console.log(
-    `${theme.secondary}  2) Upgrade your plan to continue immediately${theme.reset}`
+    `${theme.secondary}  2) Upgrade to Pro to continue immediately${theme.reset}`
   );
   console.log("");
   const choice = await promptChoice();
@@ -883,12 +991,13 @@ async function handleUpgrade() {
 
 // lib/command-execution.ts
 function startCommandExecution(options) {
-  const commandExecutionId = randomUUID();
+  const commandExecutionId = randomUUID2();
   const cliSessionId = commandExecutionId;
   const abortController = new AbortController();
   const commandExecutionPromise = options.api.commandExecution({
     commandExecutionId,
     cliSessionId,
+    installationId: options.installationId,
     command: options.command,
     args: options.args,
     api: options.apiPath,
@@ -933,8 +1042,12 @@ async function handleCommandExecutionError(error, options) {
     console.error(error.formatMessage());
     process.exit(1);
   }
+  if (error instanceof SubscriptionRequiredError) {
+    console.error(error.formatMessage());
+    process.exit(1);
+  }
   if (error instanceof InputLengthExceededError) {
-    console.error("\x1B[31m\u2716\x1B[0m Input is too long for the Free plan.");
+    console.error("\x1B[31m\u2716\x1B[0m Input is too long for anonymous usage.");
     console.error(
       `  Max allowed characters: ${error.limit}. Received: ${error.count}.`
     );
@@ -1064,10 +1177,7 @@ async function* generateCommitMessages(options) {
     models
   });
   const token = await getToken();
-  if (!token) {
-    console.error("Error: Not authenticated. Run `ultrahope login` first.");
-    process.exit(1);
-  }
+  const installationId = await getInstallationId();
   const api = createApiClient(token);
   const generateWithRetry = async function* (payload) {
     const maxAttempts = 3;
@@ -1077,6 +1187,7 @@ async function* generateCommitMessages(options) {
         const stream = options.refine ? api.streamCommitMessageRefine(
           {
             cliSessionId,
+            installationId,
             model: payload.model,
             originalMessage: options.refine.originalMessage,
             refineInstruction: options.refine.refineInstruction
@@ -1085,6 +1196,7 @@ async function* generateCommitMessages(options) {
         ) : api.streamCommitMessage(
           {
             ...payload,
+            installationId,
             input: diff,
             guide: options.guide
           },
@@ -3882,10 +3994,7 @@ async function commit(args2) {
   }
   try {
     const token = await getToken();
-    if (!token) {
-      console.error("Error: Not authenticated. Run `ultrahope login` first.");
-      process.exit(1);
-    }
+    const installationId = await getInstallationId();
     const api = createApiClient(token);
     const apiClient = api;
     let guideHint;
@@ -3912,6 +4021,7 @@ async function commit(args2) {
       const apiPath = isRefineAttempt ? "/v1/commit-message/refine" : "/v1/commit-message";
       const { commandExecutionPromise, abortController, cliSessionId } = startCommandExecution({
         api,
+        installationId,
         command: "commit",
         args: args2,
         apiPath,

package/dist/index.js

@@ -36,7 +36,7 @@ function log(message, data) {
 // lib/api-client.ts
 var API_BASE_URL = process.env.ULTRAHOPE_API_URL ?? "https://ultrahope.dev";
 var InsufficientBalanceError = class extends Error {
-  constructor(balance, plan = "free", hint, actions) {
+  constructor(balance, plan = "anonymous", hint, actions) {
     super("Token balance exhausted");
     this.balance = balance;
     this.plan = plan;
@@ -55,7 +55,7 @@ var InsufficientBalanceError = class extends Error {
       }
     } else {
       lines.push(
-        "Error: Your free credit has been exhausted. Upgrade to Pro for unlimited requests with $5 included credit."
+        "Error: Anonymous usage is limited. Upgrade to Pro for unlimited requests with $1 included credit."
       );
       if (this.actions?.upgrade) {
         lines.push(`  Upgrade: ${this.actions.upgrade}`);
@@ -65,11 +65,12 @@ var InsufficientBalanceError = class extends Error {
   }
 };
 var DailyLimitExceededError = class extends Error {
-  constructor(count, limit, resetsAt) {
+  constructor(count, limit, resetsAt, plan = "anonymous") {
     super("Daily request limit reached");
     this.count = count;
     this.limit = limit;
     this.resetsAt = resetsAt;
+    this.plan = plan;
     this.name = "DailyLimitExceededError";
   }
 };
@@ -79,6 +80,26 @@ var UnauthorizedError = class extends Error {
     this.name = "UnauthorizedError";
   }
 };
+var SubscriptionRequiredError = class extends Error {
+  constructor(subscribeUrl, hint) {
+    super("Active Pro subscription required");
+    this.subscribeUrl = subscribeUrl;
+    this.hint = hint;
+    this.name = "SubscriptionRequiredError";
+  }
+  formatMessage() {
+    const lines = [
+      "Error: This signed-in account requires an active Pro subscription."
+    ];
+    if (this.hint) {
+      lines.push(`  ${this.hint}`);
+    }
+    if (this.subscribeUrl) {
+      lines.push(`  Subscribe: ${this.subscribeUrl}`);
+    }
+    return lines.join("\n");
+  }
+};
 var InvalidModelError = class extends Error {
   constructor(model, allowedModels, message) {
     super(message ?? `Model '${model}' is not supported.`);
@@ -88,7 +109,7 @@ var InvalidModelError = class extends Error {
   }
 };
 var InputLengthExceededError = class extends Error {
-  constructor(count, limit, plan = "free", message) {
+  constructor(count, limit, plan = "anonymous", message) {
     super(
       message ?? `Input length ${count} exceeds the ${plan} plan limit of ${limit} characters.`
     );
@@ -141,12 +162,19 @@ function parseSseEvents(buffer) {
 }
 function handle402Error(error) {
   const payload = error;
+  if (payload?.error === "subscription_required") {
+    log("generate error (402 subscription_required)", error);
+    throw new SubscriptionRequiredError(
+      payload.actions?.subscribe,
+      payload.hint
+    );
+  }
   if (typeof payload?.balance === "number") {
     log("generate error (402 insufficient_balance)", error);
-    const plan = payload.plan === "pro" || payload.plan === "free" ? payload.plan : "free";
+    const plan2 = payload.plan === "pro" ? "pro" : "anonymous";
     throw new InsufficientBalanceError(
       payload.balance,
-      plan,
+      plan2,
       payload.hint,
       payload.actions
     );
@@ -154,14 +182,15 @@ function handle402Error(error) {
   const count = typeof payload?.count === "number" ? payload.count : 0;
   const limit = typeof payload?.limit === "number" ? payload.limit : 0;
   const resetsAt = payload?.resetsAt ?? "";
+  const plan = payload?.plan === "pro" ? "pro" : "anonymous";
   log("generate error (402 daily_limit)", error);
-  throw new DailyLimitExceededError(count, limit, resetsAt);
+  throw new DailyLimitExceededError(count, limit, resetsAt, plan);
 }
 function throwInputLengthExceededError(error) {
   const payload = error;
   const count = typeof payload?.count === "number" ? payload.count : 0;
   const limit = typeof payload?.limit === "number" ? payload.limit : 0;
-  const plan = payload?.plan === "free" ? payload.plan : "free";
+  const plan = payload?.plan === "anonymous" ? "anonymous" : "anonymous";
   const message = typeof payload?.message === "string" ? payload.message : `Input length ${count} exceeds the ${plan} plan limit of ${limit} characters.`;
   log("generate error (400 input_too_long)", error);
   throw new InputLengthExceededError(count, limit, plan, message);
@@ -185,25 +214,27 @@ function handle400Error(error) {
   throwInvalidModelError(error);
 }
 function createApiClient(token) {
-  const headers = {
-    "Content-Type": "application/json"
-  };
+  const authHeaders = {};
   if (token) {
-    headers.Authorization = `Bearer ${token}`;
+    authHeaders.Authorization = `Bearer ${token}`;
+  }
+  function jsonHeaders(extra) {
+    return {
+      ...authHeaders,
+      "Content-Type": "application/json",
+      ...extra
+    };
   }
   const client = createClient({
     baseUrl: API_BASE_URL,
-    headers
+    headers: authHeaders
   });
   return {
     async *streamCommitMessage(req, options) {
       log("streamCommitMessage request", req);
       const res = await fetch(`${API_BASE_URL}/api/v1/commit-message/stream`, {
         method: "POST",
-        headers: {
-          ...headers,
-          Accept: "text/event-stream"
-        },
+        headers: jsonHeaders({ Accept: "text/event-stream" }),
         body: JSON.stringify(req),
         signal: options?.signal
       });
@@ -269,10 +300,7 @@ function createApiClient(token) {
         `${API_BASE_URL}/api/v1/commit-message/refine/stream`,
         {
           method: "POST",
-          headers: {
-            ...headers,
-            Accept: "text/event-stream"
-          },
+          headers: jsonHeaders({ Accept: "text/event-stream" }),
           body: JSON.stringify(req),
           signal: options?.signal
         }
@@ -337,7 +365,7 @@ function createApiClient(token) {
       log("generation_score request", req);
       const res = await fetch(`${API_BASE_URL}/api/v1/generation_score`, {
         method: "POST",
-        headers,
+        headers: jsonHeaders(),
         body: JSON.stringify(req)
       });
       if (!res.ok) {
@@ -490,7 +518,7 @@ function createApiClient(token) {
     async requestDeviceCode() {
       const res = await fetch(`${API_BASE_URL}/api/auth/device/code`, {
         method: "POST",
-        headers,
+        headers: jsonHeaders(),
         body: JSON.stringify({ client_id: "ultrahope-cli" })
       });
       if (!res.ok) {
@@ -502,7 +530,7 @@ function createApiClient(token) {
     async pollDeviceToken(deviceCode) {
       const res = await fetch(`${API_BASE_URL}/api/auth/device/token`, {
         method: "POST",
-        headers,
+        headers: jsonHeaders(),
         body: JSON.stringify({
           grant_type: "urn:ietf:params:oauth:grant-type:device_code",
           device_code: deviceCode,
@@ -514,6 +542,32 @@ function createApiClient(token) {
         throw new Error(`API error: ${res.status} ${text}`);
       }
       return res.json();
+    },
+    async signInAnonymous() {
+      const res = await fetch(`${API_BASE_URL}/api/auth/sign-in/anonymous`, {
+        method: "POST",
+        headers: jsonHeaders(),
+        body: JSON.stringify({})
+      });
+      if (!res.ok) {
+        const text = await res.text();
+        throw new Error(`API error: ${res.status} ${text}`);
+      }
+      return res.json();
+    },
+    async deleteAnonymousUser() {
+      const res = await fetch(
+        `${API_BASE_URL}/api/auth/delete-anonymous-user`,
+        {
+          method: "POST",
+          headers: jsonHeaders(),
+          body: JSON.stringify({})
+        }
+      );
+      if (!res.ok) {
+        const text = await res.text();
+        throw new Error(`API error: ${res.status} ${text}`);
+      }
     }
   };
 }
@@ -565,6 +619,7 @@ function abortReasonForError(error) {
 }
 
 // lib/auth.ts
+import { randomUUID } from "crypto";
 import * as fs from "fs";
 import * as os from "os";
 import * as path from "path";
@@ -574,29 +629,74 @@ function getCredentialsPath() {
   const filename = env && env !== "production" ? `credentials.${env}.json` : "credentials.json";
   return path.join(configDir, "ultrahope", filename);
 }
-async function getToken() {
+async function getCredentials() {
   const credPath = getCredentialsPath();
   try {
     const content = await fs.promises.readFile(credPath, "utf-8");
     const creds = JSON.parse(content);
-    return creds.access_token ?? null;
+    if (typeof creds.access_token !== "string" || creds.access_token.length === 0) {
+      return null;
+    }
+    return {
+      accessToken: creds.access_token,
+      authKind: creds.auth_kind === "anonymous" ? "anonymous" : "authenticated",
+      installationId: await ensureInstallationId(creds)
+    };
   } catch {
     return null;
   }
 }
-async function saveToken(token) {
+async function writeCredentials(creds) {
   const credPath = getCredentialsPath();
   const dir = path.dirname(credPath);
   await fs.promises.mkdir(dir, { recursive: true });
-  await fs.promises.writeFile(
-    credPath,
-    JSON.stringify({ access_token: token }, null, 2),
-    { mode: 384 }
-  );
+  await fs.promises.writeFile(credPath, JSON.stringify(creds, null, 2), {
+    mode: 384
+  });
+}
+async function ensureInstallationId(creds) {
+  if (creds?.installation_id && creds.installation_id.length > 0) {
+    return creds.installation_id;
+  }
+  const installationId = randomUUID();
+  await writeCredentials({
+    access_token: creds?.access_token ?? "",
+    auth_kind: creds?.auth_kind,
+    installation_id: installationId
+  });
+  return installationId;
+}
+async function getInstallationId() {
+  const credPath = getCredentialsPath();
+  try {
+    const content = await fs.promises.readFile(credPath, "utf-8");
+    const creds = JSON.parse(content);
+    return await ensureInstallationId(creds);
+  } catch {
+    return await ensureInstallationId(null);
+  }
+}
+async function getToken() {
+  const existing = await getCredentials();
+  if (existing) {
+    return existing.accessToken;
+  }
+  const api = createApiClient();
+  const anonymousSession = await api.signInAnonymous();
+  await saveToken(anonymousSession.token, "anonymous");
+  return anonymousSession.token;
+}
+async function saveToken(token, authKind = "authenticated") {
+  const installationId = await getInstallationId();
+  await writeCredentials({
+    access_token: token,
+    auth_kind: authKind,
+    installation_id: installationId
+  });
 }
 
 // lib/command-execution.ts
-import { randomUUID } from "crypto";
+import { randomUUID as randomUUID2 } from "crypto";
 
 // lib/daily-limit-prompt.ts
 import * as readline from "readline";
@@ -740,9 +840,7 @@ async function showDailyLimitPrompt(info) {
     );
   }
   console.log("");
-  console.log(
-    `${theme.primary}Commit message generation was skipped${theme.reset}`
-  );
+  console.log(`${theme.primary}Generation was skipped${theme.reset}`);
   console.log("");
   console.log(
     ui.bullet(`Daily request limit reached (${info.count} / ${info.limit})`)
@@ -755,7 +853,7 @@ async function showDailyLimitPrompt(info) {
     );
     console.log(`  ${ui.link("ultrahope jj describe")}`);
     console.log("");
-    console.log(`${theme.primary}Or upgrade your plan:${theme.reset}`);
+    console.log(`${theme.primary}Or upgrade to Pro:${theme.reset}`);
     console.log(`  ${ui.link(PRICING_URL)}`);
     return;
   }
@@ -765,7 +863,7 @@ async function showDailyLimitPrompt(info) {
     `${theme.secondary}  1) Retry after the daily limit resets${theme.reset}`
   );
   console.log(
-    `${theme.secondary}  2) Upgrade your plan to continue immediately${theme.reset}`
+    `${theme.secondary}  2) Upgrade to Pro to continue immediately${theme.reset}`
   );
   console.log("");
   const choice = await promptChoice();
@@ -893,12 +991,13 @@ async function handleUpgrade() {
 
 // lib/command-execution.ts
 function startCommandExecution(options) {
-  const commandExecutionId = randomUUID();
+  const commandExecutionId = randomUUID2();
   const cliSessionId = commandExecutionId;
   const abortController = new AbortController();
   const commandExecutionPromise = options.api.commandExecution({
     commandExecutionId,
     cliSessionId,
+    installationId: options.installationId,
     command: options.command,
     args: options.args,
     api: options.apiPath,
@@ -943,8 +1042,12 @@ async function handleCommandExecutionError(error, options) {
     console.error(error.formatMessage());
     process.exit(1);
   }
+  if (error instanceof SubscriptionRequiredError) {
+    console.error(error.formatMessage());
+    process.exit(1);
+  }
   if (error instanceof InputLengthExceededError) {
-    console.error("\x1B[31m\u2716\x1B[0m Input is too long for the Free plan.");
+    console.error("\x1B[31m\u2716\x1B[0m Input is too long for anonymous usage.");
     console.error(
       `  Max allowed characters: ${error.limit}. Received: ${error.count}.`
     );
@@ -1074,10 +1177,7 @@ async function* generateCommitMessages(options) {
     models
   });
   const token = await getToken();
-  if (!token) {
-    console.error("Error: Not authenticated. Run `ultrahope login` first.");
-    process.exit(1);
-  }
+  const installationId = await getInstallationId();
   const api = createApiClient(token);
   const generateWithRetry = async function* (payload) {
     const maxAttempts = 3;
@@ -1087,6 +1187,7 @@ async function* generateCommitMessages(options) {
         const stream = options.refine ? api.streamCommitMessageRefine(
           {
             cliSessionId,
+            installationId,
             model: payload.model,
             originalMessage: options.refine.originalMessage,
             refineInstruction: options.refine.refineInstruction
@@ -1095,6 +1196,7 @@ async function* generateCommitMessages(options) {
         ) : api.streamCommitMessage(
           {
             ...payload,
+            installationId,
             input: diff,
             guide: options.guide
           },
@@ -3898,15 +4000,12 @@ function assertDiffAvailable(revision, diff) {
     process.exit(1);
   }
 }
-async function initCommandExecutionContext(args2, models, diff, apiPath, guide, isSessionActive) {
+async function initCommandExecutionContext(args2, models, diff, apiPath, installationId, guide, isSessionActive) {
   const token = await getToken();
-  if (!token) {
-    console.error("Error: Not authenticated. Run `ultrahope login` first.");
-    process.exit(1);
-  }
   const api = createApiClient(token);
   const { commandExecutionPromise, abortController, cliSessionId } = startCommandExecution({
     api,
+    installationId,
     command: "jj",
     args: ["describe", ...args2],
     apiPath,
@@ -3995,6 +4094,7 @@ async function describe(args2) {
     let refineMessage;
     let commandExecutionRun = 0;
     let isEscalation = false;
+    const installationId = await getInstallationId();
     while (true) {
       const sessionId = ++commandExecutionRun;
       const isRefineAttempt = refineMessage !== void 0;
@@ -4003,6 +4103,7 @@ async function describe(args2) {
         models,
         diff,
         isRefineAttempt ? "/v1/commit-message/refine" : "/v1/commit-message/stream",
+        installationId,
         composeGuidance(options.guide, guideHint),
         () => sessionId === commandExecutionRun
       );
@@ -4150,6 +4251,8 @@ async function jj(args2) {
 // commands/login.ts
 async function login(_args) {
   const api = createApiClient();
+  const existingCredentials = await getCredentials();
+  const anonymousToken = existingCredentials?.authKind === "anonymous" ? existingCredentials.accessToken : null;
   console.log("Requesting device code...");
   const deviceCode = await api.requestDeviceCode();
   console.log();
@@ -4163,8 +4266,18 @@ async function login(_args) {
     deviceCode.interval,
     deviceCode.expires_in
   );
-  await saveToken(token);
+  await saveToken(token, "authenticated");
   await ensureGlobalConfigFile();
+  if (anonymousToken) {
+    try {
+      await createApiClient(anonymousToken).deleteAnonymousUser();
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      console.error(
+        `Warning: Failed to delete anonymous trial session. ${message}`
+      );
+    }
+  }
   console.log("Successfully authenticated!");
 }
 async function pollForToken(api, deviceCode, interval, expiresIn) {
@@ -4247,10 +4360,7 @@ async function handleVcsCommitMessage(input, options, args2) {
   const models = resolveModels(options.cliModels);
   try {
     const token = await getToken();
-    if (!token) {
-      console.error("Error: Not authenticated. Run `ultrahope login` first.");
-      process.exit(1);
-    }
+    const installationId = await getInstallationId();
     const api = createApiClient(token);
     const apiClient = api;
     let guideHint;
@@ -4277,6 +4387,7 @@ async function handleVcsCommitMessage(input, options, args2) {
       const apiPath = isRefineAttempt && options.target === "vcs-commit-message" ? "/v1/commit-message/refine" : TARGET_TO_API_PATH[options.target];
       const { commandExecutionPromise, abortController, cliSessionId } = startCommandExecution({
         api,
+        installationId,
         command: "translate",
         args: args2,
         apiPath,
@@ -4354,10 +4465,7 @@ async function handleVcsCommitMessage(input, options, args2) {
 }
 async function handleGenericTarget(input, options, args2) {
   const token = await getToken();
-  if (!token) {
-    console.error("Error: Not authenticated. Run `ultrahope login` first.");
-    process.exit(1);
-  }
+  const installationId = await getInstallationId();
   const api = createApiClient(token);
   const models = resolveModels(options.cliModels);
   const requestPayload = models.length === 1 ? { input, target: options.target, model: models[0] } : { input, target: options.target, models };
@@ -4367,6 +4475,7 @@ async function handleGenericTarget(input, options, args2) {
     commandExecutionPromise
   } = startCommandExecution({
     api,
+    installationId,
     command: "translate",
     args: args2,
     apiPath: TARGET_TO_API_PATH[options.target],
@@ -4394,7 +4503,7 @@ async function handleGenericTarget(input, options, args2) {
     const maxAttempts = 3;
     for (let attempt = 0; attempt < maxAttempts; attempt++) {
       try {
-        return await generateFn({ cliSessionId, input, model });
+        return await generateFn({ cliSessionId, installationId, input, model });
       } catch (error) {
         if (isAbortError2(error) || abortController.signal.aborted) throw error;
         if (isInvalidCliSessionIdError2(error) && attempt < maxAttempts - 1) {
@@ -4533,7 +4642,7 @@ function parseArgs(args2) {
 // package.json
 var package_default = {
   name: "ultrahope",
-  version: "0.1.10",
+  version: "0.1.11",
   description: "LLM-powered development workflow assistant",
   type: "module",
   license: "MIT",
@@ -4618,11 +4727,15 @@ Usage: ultrahope <command>
 Commands:
   translate  Translate input to various formats
   jj         Jujutsu integration commands
-  login      Authenticate with device flow
+  login      Authenticate with device flow and unlock full account usage
 
 Options:
   --version, -v  Show version
-  --help, -h     Show this help message`);
+  --help, -h     Show this help message
+
+Plans:
+  Anonymous: 5 requests/day and 40,000 chars/request in the CLI without login
+  Pro: login required, paid usage, no anonymous limits`);
 }
 main().catch((err) => {
   console.error(err);

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "ultrahope",
-	"version": "0.1.10",
+	"version": "0.1.11",
 	"description": "LLM-powered development workflow assistant",
 	"type": "module",
 	"license": "MIT",