vanguard-cli 3.1.3 → 3.1.6

package/RECOVERY_GUIDE.md

@@ -0,0 +1,36 @@
+# Enterprise Publication Recovery Guide 🛡️🔑🏗️
+
+If you see an `ENEEDAUTH` or `Access token expired` error when publishing to NPM (like the one you saw on the homeserver), follow these steps to restore your automated shipping pipeline.
+
+## 1. Refresh Your Session 🔄
+Your CLI session for NPM has likely expired. Run this in your terminal to log back in:
+```bash
+npm login
+```
+*Note: This will likely open a browser windows or ask for your 2FA Passkey signature.*
+
+---
+
+## 2. Using a Permanent Token (Recommended) 🔑
+To avoid Passkey/Browser prompts on your remote servers, use a **Granular Access Token**:
+
+1.  **Generate Token**: Go to [NPM Tokens](https://www.npmjs.com/settings/tokens/granular-access-tokens/new).
+2.  **Permissions**: Select "Read and write" for the specific package.
+3.  **Bypass 2FA**: **CHECK THIS BOX** in the NPM settings for the token.
+4.  **Set Environment**: On your server, add this to your `.bashrc` or `.env`:
+    ```bash
+    export NPM_TOKEN="your_token_here"
+    ```
+
+---
+
+## 3. Finishing the Vanguard V3.1.5 Release 🚀
+I have already versioned and pushed the codes to GitHub. To finish the live NPM update, simply run:
+```bash
+npm run ship
+```
+- Select **"Patch"**.
+- When asked about 2FA, select **"No"** (after you've logged in or set the token).
+
+---
+🛡️ **Vanguard is perfectly synchronized and ready for the world.**

package/lib/commands/config.js

@@ -6,7 +6,8 @@ import { showBanner } from '../utils/ui.js';
 
 export async function runConfigWizard() {
     showBanner();
-    console.log('🛰️  Vanguard Configuration Wizard\n');
+    console.log('🛰️  Vanguard Configuration Wizard');
+    console.log(chalk.dim(`📂 Config Path: ${config.path}\n`));
 
     const { providerSelection } = await inquirer.prompt([
         {
@@ -27,12 +28,14 @@ export async function runConfigWizard() {
             {
                 type: 'password',
                 name: 'apiKey',
-                message: 'Enter your Gemini API Key:',
-                default: config.get('GEMINI_KEY'),
-                validate: (val) => val.length > 0 || 'Key is required',
+                validate: (val) => {
+                    if (val.length === 0) return 'Key is required';
+                    if (val.startsWith('sk-')) return '⚠️ That looks like an OpenAI key. Gemini keys usually start with "AIza"';
+                    return true;
+                },
             },
         ]);
-        config.set('GEMINI_KEY', apiKey);
+        config.set('GEMINI_KEY', apiKey.trim());
         console.log('✅ Gemini configured and saved.');
     } else {
         const spinner = createSpinner('🔍 Detecting local Ollama models...').start();

package/lib/services/scanner.js

@@ -113,9 +113,9 @@ RESPONSE FORMAT (JSON ONLY):
     const apiKey = config.get('GEMINI_KEY');
     if (!apiKey) throw new Error('Gemini API Key missing. Run "vanguard config"');
 
-    const genAI = new GoogleGenerativeAI(apiKey);
-    // Use the -latest alias for better cross-region compatibility
-    const model = genAI.getGenerativeModel({ model: 'gemini-1.5-flash-latest' });
+    const genAI = new GoogleGenerativeAI(apiKey.trim());
+    // Use the latest stable pro flash model for the best performance/quota ratio
+    const model = genAI.getGenerativeModel({ model: 'gemini-2.0-flash' });
     const instruction = await this.getSystemInstruction();
 
     const result = await model.generateContent({

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "vanguard-cli",
-  "version": "3.1.3",
+  "version": "3.1.6",
   "description": "AI-Powered Supply Chain Firewall for Git",
   "type": "module",
   "bin": {