vigthoria-cli 1.10.36 → 1.10.47

package/dist/utils/cli-state.d.ts

@@ -1,54 +0,0 @@
-/**
- * Vigthoria CLI — shared local-state helpers.
- *
- * Single source for:
- *   • Offline-mode detection (VIGTHORIA_OFFLINE=1) — suppresses every
- *     background network call (update checks, gateway preflights, etc.).
- *   • Telemetry opt-out (VIGTHORIA_TELEMETRY_DISABLED=1).
- *   • Update-check cache, so `npm view` is not invoked on every CLI start.
- *   • Cross-platform safe file mode enforcement for tokens / sessions.
- *
- * No external network calls — pure local helpers.  Safe to import from
- * any command module.
- */
-/** 24h is plenty for an update-check ping. */
-export declare const UPDATE_CHECK_TTL_MS: number;
-/** 60s gateway-preflight cache so back-to-back CLI invocations stay fast. */
-export declare const GATEWAY_PREFLIGHT_TTL_MS: number;
-export interface CliStateShape {
-    updateCheck?: {
-        checkedAt: number;
-        latestVersion: string;
-        notifiedFor?: string;
-    };
-    gatewayPreflight?: {
-        checkedAt: number;
-        valid: boolean;
-    };
-    /** Last-seen version — used to render release notes on upgrade. */
-    lastSeenVersion?: string;
-}
-export declare function ensureStateDir(): void;
-/** Best-effort lock-down: `0o600` on POSIX, no-op on Windows (NTFS ACL ≠ chmod). */
-export declare function secureFileMode(filePath: string): void;
-/** Atomic write helper — write to temp then rename, never half-written JSON. */
-export declare function atomicWriteJson(targetPath: string, value: unknown, mode?: number): void;
-export declare function loadCliState(): CliStateShape;
-export declare function saveCliState(state: CliStateShape): void;
-export declare function getCliStateFile(): string;
-/**
- * Offline mode — set VIGTHORIA_OFFLINE=1 to skip every non-essential
- * outbound HTTP call. Useful for restricted networks, air-gapped runs,
- * and deterministic CI.
- */
-export declare function isOfflineMode(): boolean;
-/** Telemetry opt-out (also implied when offline mode is on). */
-export declare function isTelemetryDisabled(): boolean;
-/** When true the startup update check is suppressed (env override or offline). */
-export declare function isUpdateCheckSuppressed(): boolean;
-/** Cached read for the latest known version — null when stale or absent. */
-export declare function readCachedLatestVersion(maxAgeMs?: number): string | null;
-export declare function writeCachedLatestVersion(latestVersion: string, notifiedFor?: string): void;
-export declare function readGatewayPreflightCache(maxAgeMs?: number): boolean | null;
-export declare function writeGatewayPreflightCache(valid: boolean): void;
-export declare function isSafeNpmPackageSpec(spec: string): boolean;

package/dist/utils/cli-state.js

@@ -1,185 +0,0 @@
-/**
- * Vigthoria CLI — shared local-state helpers.
- *
- * Single source for:
- *   • Offline-mode detection (VIGTHORIA_OFFLINE=1) — suppresses every
- *     background network call (update checks, gateway preflights, etc.).
- *   • Telemetry opt-out (VIGTHORIA_TELEMETRY_DISABLED=1).
- *   • Update-check cache, so `npm view` is not invoked on every CLI start.
- *   • Cross-platform safe file mode enforcement for tokens / sessions.
- *
- * No external network calls — pure local helpers.  Safe to import from
- * any command module.
- */
-import * as fs from 'fs';
-import * as os from 'os';
-import * as path from 'path';
-const STATE_DIR = path.join(os.homedir(), '.vigthoria');
-const STATE_FILE = path.join(STATE_DIR, 'cli-state.json');
-/** 24h is plenty for an update-check ping. */
-export const UPDATE_CHECK_TTL_MS = 24 * 60 * 60 * 1000;
-/** 60s gateway-preflight cache so back-to-back CLI invocations stay fast. */
-export const GATEWAY_PREFLIGHT_TTL_MS = 60 * 1000;
-function readStateUnchecked() {
-    try {
-        if (!fs.existsSync(STATE_FILE)) {
-            return {};
-        }
-        const text = fs.readFileSync(STATE_FILE, 'utf8');
-        if (!text.trim()) {
-            return {};
-        }
-        const parsed = JSON.parse(text);
-        return parsed && typeof parsed === 'object' ? parsed : {};
-    }
-    catch {
-        // Corrupt state file should never crash the CLI — treat as empty.
-        return {};
-    }
-}
-export function ensureStateDir() {
-    try {
-        if (!fs.existsSync(STATE_DIR)) {
-            fs.mkdirSync(STATE_DIR, { recursive: true, mode: 0o700 });
-        }
-        if (process.platform !== 'win32') {
-            try {
-                fs.chmodSync(STATE_DIR, 0o700);
-            }
-            catch { /* best-effort */ }
-        }
-    }
-    catch {
-        // Best-effort — caller will see write failure later if it matters.
-    }
-}
-/** Best-effort lock-down: `0o600` on POSIX, no-op on Windows (NTFS ACL ≠ chmod). */
-export function secureFileMode(filePath) {
-    if (process.platform === 'win32') {
-        return;
-    }
-    try {
-        fs.chmodSync(filePath, 0o600);
-    }
-    catch {
-        // File may not exist yet, or filesystem may not support chmod.
-    }
-}
-/** Atomic write helper — write to temp then rename, never half-written JSON. */
-export function atomicWriteJson(targetPath, value, mode = 0o600) {
-    ensureStateDir();
-    const parent = path.dirname(targetPath);
-    try {
-        if (!fs.existsSync(parent))
-            fs.mkdirSync(parent, { recursive: true });
-    }
-    catch { /* ignore */ }
-    const tmpPath = `${targetPath}.${process.pid}.${Date.now()}.tmp`;
-    fs.writeFileSync(tmpPath, JSON.stringify(value, null, 2), 'utf8');
-    if (process.platform !== 'win32') {
-        try {
-            fs.chmodSync(tmpPath, mode);
-        }
-        catch { /* ignore */ }
-    }
-    fs.renameSync(tmpPath, targetPath);
-}
-export function loadCliState() {
-    return readStateUnchecked();
-}
-export function saveCliState(state) {
-    atomicWriteJson(STATE_FILE, state);
-}
-export function getCliStateFile() {
-    return STATE_FILE;
-}
-/**
- * Offline mode — set VIGTHORIA_OFFLINE=1 to skip every non-essential
- * outbound HTTP call. Useful for restricted networks, air-gapped runs,
- * and deterministic CI.
- */
-export function isOfflineMode() {
-    const flag = String(process.env.VIGTHORIA_OFFLINE || '').trim().toLowerCase();
-    return flag === '1' || flag === 'true' || flag === 'yes';
-}
-/** Telemetry opt-out (also implied when offline mode is on). */
-export function isTelemetryDisabled() {
-    if (isOfflineMode())
-        return true;
-    const flag = String(process.env.VIGTHORIA_TELEMETRY_DISABLED || '').trim().toLowerCase();
-    return flag === '1' || flag === 'true' || flag === 'yes';
-}
-/** When true the startup update check is suppressed (env override or offline). */
-export function isUpdateCheckSuppressed() {
-    if (isOfflineMode())
-        return true;
-    const flag = String(process.env.VIGTHORIA_NO_UPDATE_CHECK || '').trim();
-    return flag === '1';
-}
-/** Cached read for the latest known version — null when stale or absent. */
-export function readCachedLatestVersion(maxAgeMs = UPDATE_CHECK_TTL_MS) {
-    const state = readStateUnchecked();
-    const entry = state.updateCheck;
-    if (!entry || !entry.latestVersion || typeof entry.checkedAt !== 'number') {
-        return null;
-    }
-    if (Date.now() - entry.checkedAt > maxAgeMs) {
-        return null;
-    }
-    return entry.latestVersion;
-}
-export function writeCachedLatestVersion(latestVersion, notifiedFor) {
-    try {
-        const state = readStateUnchecked();
-        state.updateCheck = {
-            checkedAt: Date.now(),
-            latestVersion,
-            notifiedFor: notifiedFor || state.updateCheck?.notifiedFor,
-        };
-        saveCliState(state);
-    }
-    catch {
-        // Caching is a nice-to-have, never block CLI on write failure.
-    }
-}
-export function readGatewayPreflightCache(maxAgeMs = GATEWAY_PREFLIGHT_TTL_MS) {
-    const state = readStateUnchecked();
-    const entry = state.gatewayPreflight;
-    if (!entry || typeof entry.checkedAt !== 'number' || typeof entry.valid !== 'boolean') {
-        return null;
-    }
-    if (Date.now() - entry.checkedAt > maxAgeMs) {
-        return null;
-    }
-    return entry.valid;
-}
-export function writeGatewayPreflightCache(valid) {
-    try {
-        const state = readStateUnchecked();
-        state.gatewayPreflight = { checkedAt: Date.now(), valid };
-        saveCliState(state);
-    }
-    catch {
-        // Best-effort.
-    }
-}
-/**
- * Validate an npm package spec used by `vigthoria update --from <spec>`.
- * Returns `true` when the spec is acceptable.  Rejects whitespace and
- * shell metacharacters so the spec can never break out of `execFile` /
- * a Windows `shell:true` fallback into command injection.
- */
-const NPM_SPEC_ALLOWLIST = /^[A-Za-z0-9_./@:+\\=-]+$/;
-const DISALLOWED_SHELL_CHARS = /[;&|`$<>(){}\[\]"'\s]/;
-export function isSafeNpmPackageSpec(spec) {
-    const candidate = String(spec || '').trim();
-    if (!candidate)
-        return false;
-    if (candidate.length > 512)
-        return false;
-    if (DISALLOWED_SHELL_CHARS.test(candidate))
-        return false;
-    if (!NPM_SPEC_ALLOWLIST.test(candidate))
-        return false;
-    return true;
-}

package/dist/utils/config.d.ts

@@ -1,85 +0,0 @@
-/**
- * Configuration Manager for Vigthoria CLI
- */
-export interface VigthoriaCLIConfig {
-    apiUrl: string;
-    modelsApiUrl: string;
-    wsUrl: string;
-    selfHostedModelsApiUrl: string | null;
-    authToken: string | null;
-    refreshToken: string | null;
-    userId: string | null;
-    email: string | null;
-    v3ServiceKey: string | null;
-    subscription: {
-        plan: string | null;
-        status: string | null;
-        expiresAt: string | null;
-    };
-    preferences: {
-        defaultModel: string;
-        theme: 'dark' | 'light';
-        autoApplyFixes: boolean;
-        showDiffs: boolean;
-        contextLines: number;
-        maxTokens: number;
-    };
-    project: {
-        rootPath: string | null;
-        ignorePatterns: string[];
-    };
-    persona: 'default' | 'wiener_grant';
-    hubModelPrefs?: {
-        enabledCloudModels: string[];
-        defaultCloudModel?: string;
-        defaultLocalModel?: string;
-        balance?: number;
-        fetchedAt?: string;
-    };
-}
-export interface AvailableModelDescriptor {
-    id: string;
-    name: string;
-    description: string;
-    tier: string;
-    backendModel: string;
-}
-export declare class Config {
-    private store;
-    private static readonly OPERATOR_PLANS;
-    private static readonly CLOUD_PLANS;
-    constructor();
-    /**
-     * Re-apply secure POSIX permissions to the on-disk config file.  Safe
-     * to call repeatedly; no-op on Windows.
-     */
-    secureOnDisk(): void;
-    get<K extends keyof VigthoriaCLIConfig>(key: K): VigthoriaCLIConfig[K];
-    set<K extends keyof VigthoriaCLIConfig>(key: K, value: VigthoriaCLIConfig[K]): void;
-    getAll(): VigthoriaCLIConfig;
-    reset(): void;
-    isAuthenticated(): boolean;
-    hasValidSubscription(): boolean;
-    getNormalizedPlan(): string;
-    hasOperatorAccess(): boolean;
-    hasCloudAccess(): boolean;
-    getConfigPath(): string;
-    setAuth(data: {
-        token: string;
-        refreshToken?: string;
-        userId: string;
-        email: string;
-    }): void;
-    clearAuth(): void;
-    setSubscription(data: {
-        plan: string;
-        status: string;
-        expiresAt?: string;
-    }): void;
-    getAvailableModels(): AvailableModelDescriptor[];
-    refreshHubModelPreferences(): Promise<void>;
-    isCloudModel(modelId: string): boolean;
-    filterModelsByHubPreferences(models: AvailableModelDescriptor[], enabledCloudModels?: string[]): AvailableModelDescriptor[];
-    isComplexTask(prompt: string): boolean;
-    shouldUseCloudForHeavyTask(prompt: string): boolean;
-}

package/dist/utils/config.js

@@ -1,267 +0,0 @@
-/**
- * Configuration Manager for Vigthoria CLI
- */
-import Conf from 'conf';
-import { secureFileMode } from './cli-state.js';
-const defaultConfig = {
-    apiUrl: 'https://coder.vigthoria.io',
-    modelsApiUrl: 'https://api.vigthoria.io', // Direct AI Models API - no proxying through Coder
-    wsUrl: 'wss://coder.vigthoria.io/ws',
-    selfHostedModelsApiUrl: null,
-    authToken: null,
-    refreshToken: null,
-    userId: null,
-    email: null,
-    v3ServiceKey: null,
-    subscription: {
-        plan: null,
-        status: null,
-        expiresAt: null,
-    },
-    preferences: {
-        defaultModel: 'code',
-        theme: 'dark',
-        autoApplyFixes: false,
-        showDiffs: true,
-        contextLines: 3,
-        maxTokens: 4096,
-    },
-    persona: 'default',
-    project: {
-        rootPath: null,
-        ignorePatterns: [
-            'node_modules',
-            '.git',
-            'dist',
-            'build',
-            '__pycache__',
-            '.venv',
-            'venv',
-            '.env',
-            '*.log',
-        ],
-    },
-};
-export class Config {
-    store;
-    static OPERATOR_PLANS = new Set(['enterprise', 'admin', 'master_admin']);
-    static CLOUD_PLANS = new Set(['pro', 'professional', 'ultra', 'enterprise', 'master_admin', 'admin']);
-    constructor() {
-        // `Conf` defaults to 0o644 on POSIX which would leave auth tokens
-        // readable by every local user.  We post-process the file in
-        // `secureOnDisk()` to enforce 0o600 ownership.  The `fileMode`
-        // option exists on newer `conf` releases — supply it via a cast so
-        // older type-defs do not reject the field.
-        this.store = new Conf({
-            projectName: 'vigthoria-cli',
-            defaults: defaultConfig,
-            ...{ fileMode: 0o600 },
-            schema: {
-                apiUrl: { type: 'string' },
-                modelsApiUrl: { type: 'string' },
-                wsUrl: { type: 'string' },
-                selfHostedModelsApiUrl: { type: ['string', 'null'] },
-                authToken: { type: ['string', 'null'] },
-                refreshToken: { type: ['string', 'null'] },
-                userId: { type: ['string', 'null'] },
-                email: { type: ['string', 'null'] },
-                v3ServiceKey: { type: ['string', 'null'] },
-                subscription: {
-                    type: 'object',
-                    properties: {
-                        plan: { type: ['string', 'null'] },
-                        status: { type: ['string', 'null'] },
-                        expiresAt: { type: ['string', 'null'] },
-                    },
-                },
-                preferences: {
-                    type: 'object',
-                    properties: {
-                        defaultModel: { type: 'string' },
-                        theme: { type: 'string', enum: ['dark', 'light'] },
-                        autoApplyFixes: { type: 'boolean' },
-                        showDiffs: { type: 'boolean' },
-                        contextLines: { type: 'number' },
-                        maxTokens: { type: 'number' },
-                    },
-                },
-                persona: { type: 'string', enum: ['default', 'wiener_grant'] },
-                project: {
-                    type: 'object',
-                    properties: {
-                        rootPath: { type: ['string', 'null'] },
-                        ignorePatterns: { type: 'array', items: { type: 'string' } },
-                    },
-                },
-            },
-        });
-        // Defence-in-depth: re-apply 0600 every time we instantiate Config so
-        // that an older install which created the file with 0644 gets locked
-        // down on next startup.
-        try {
-            secureFileMode(this.store.path);
-        }
-        catch { /* best-effort */ }
-    }
-    /**
-     * Re-apply secure POSIX permissions to the on-disk config file.  Safe
-     * to call repeatedly; no-op on Windows.
-     */
-    secureOnDisk() {
-        try {
-            secureFileMode(this.store.path);
-        }
-        catch { /* best-effort */ }
-    }
-    get(key) {
-        return this.store.get(key);
-    }
-    set(key, value) {
-        this.store.set(key, value);
-    }
-    getAll() {
-        return this.store.store;
-    }
-    reset() {
-        this.store.clear();
-    }
-    isAuthenticated() {
-        return this.store.get('authToken') !== null;
-    }
-    hasValidSubscription() {
-        const sub = this.store.get('subscription');
-        if (!sub.status || sub.status !== 'active')
-            return false;
-        if (sub.expiresAt) {
-            const expires = new Date(sub.expiresAt);
-            return expires > new Date();
-        }
-        return true;
-    }
-    getNormalizedPlan() {
-        return (this.store.get('subscription').plan || '').trim().toLowerCase();
-    }
-    hasOperatorAccess() {
-        return Config.OPERATOR_PLANS.has(this.getNormalizedPlan());
-    }
-    hasCloudAccess() {
-        return Config.CLOUD_PLANS.has(this.getNormalizedPlan());
-    }
-    getConfigPath() {
-        return this.store.path;
-    }
-    // Auth helpers
-    setAuth(data) {
-        this.store.set('authToken', data.token);
-        if (data.refreshToken) {
-            this.store.set('refreshToken', data.refreshToken);
-        }
-        this.store.set('userId', data.userId);
-        this.store.set('email', data.email);
-        // Tighten permissions whenever the token rotates so a brand-new
-        // install (which may have created the file under a previous default
-        // umask) becomes 0600 immediately after first login.
-        this.secureOnDisk();
-    }
-    clearAuth() {
-        this.store.set('authToken', null);
-        this.store.set('refreshToken', null);
-        this.store.set('userId', null);
-        this.store.set('email', null);
-        this.store.set('subscription', {
-            plan: null,
-            status: null,
-            expiresAt: null,
-        });
-    }
-    setSubscription(data) {
-        this.store.set('subscription', {
-            plan: data.plan,
-            status: data.status,
-            expiresAt: data.expiresAt || null,
-        });
-    }
-    // Model selection - Vigthoria Models (internal routing IDs only)
-    getAvailableModels() {
-        const sub = this.store.get('subscription');
-        const plan = (sub.plan || '').toLowerCase();
-        // ═══════════════════════════════════════════════════════════════
-        // Vigthoria server infrastructure operational models
-        // ═══════════════════════════════════════════════════════════════
-        const models = [
-            { id: 'code', name: 'Vigthoria v3 Code 35B', description: 'Native 35B coding model on Blackwell (V3 pipeline)', tier: 'local', backendModel: 'vigthoria-v3-code-35b' },
-            { id: 'code-35b', name: 'Vigthoria v3 Code 35B', description: 'Same flagship model as code', tier: 'local', backendModel: 'vigthoria-v3-code-35b' },
-            { id: 'code-9b', name: 'Vigthoria v3 Code 9B', description: 'Efficient coding specialist for quick tasks', tier: 'local', backendModel: 'vigthoria-v3-code-9b' },
-            { id: 'balanced', name: 'Vigthoria Balanced 4B', description: 'Balanced general-purpose local model', tier: 'local', backendModel: 'vigthoria-v3-balanced-4b' },
-            { id: 'balanced-4b', name: 'Vigthoria Balanced 4B', description: 'Efficient 4B general-purpose model (Qwen3.5-4B based)', tier: 'local', backendModel: 'vigthoria-v3-balanced-4b' },
-        ];
-        if (this.hasCloudAccess()) {
-            models.push({ id: 'cloud-fast', name: 'Vigthoria Cloud Fast', description: 'Fast cloud responses for lighter work', tier: 'cloud', backendModel: 'vigthoria-cloud-fast' }, { id: 'cloud-balanced', name: 'Vigthoria Cloud Balanced', description: 'Default quality/cost balance for chat and coding', tier: 'cloud', backendModel: 'vigthoria-cloud-balanced' }, { id: 'cloud-code', name: 'Vigthoria Cloud Code', description: 'Economical cloud coding and completion', tier: 'cloud', backendModel: 'vigthoria-cloud-code' }, { id: 'cloud-power', name: 'Vigthoria Cloud Power', description: 'Premium general intelligence for demanding work', tier: 'cloud', backendModel: 'vigthoria-cloud-power' }, { id: 'cloud-maximum', name: 'Vigthoria Cloud Maximum', description: 'Maximum power for complex architecture and reviews', tier: 'cloud', backendModel: 'vigthoria-cloud-maximum' }, 
-            // Legacy aliases
-            { id: 'cloud', name: 'Vigthoria Cloud Balanced', description: 'Legacy alias for cloud-balanced', tier: 'cloud', backendModel: 'vigthoria-cloud-balanced' }, { id: 'cloud-reason', name: 'Vigthoria Cloud Balanced', description: 'Legacy alias for cloud-balanced', tier: 'cloud', backendModel: 'vigthoria-cloud-balanced' }, { id: 'ultra', name: 'Vigthoria Cloud Maximum', description: 'Legacy alias for cloud-maximum', tier: 'cloud', backendModel: 'vigthoria-cloud-maximum' });
-        }
-        const hubPrefs = this.store.get('hubModelPrefs');
-        if (hubPrefs?.enabledCloudModels?.length) {
-            return this.filterModelsByHubPreferences(models, hubPrefs.enabledCloudModels);
-        }
-        return models;
-    }
-    async refreshHubModelPreferences() {
-        const token = this.store.get('authToken');
-        const apiUrl = String(this.store.get('apiUrl') || '').replace(/\/$/, '');
-        if (!token || !apiUrl)
-            return;
-        try {
-            const response = await fetch(`${apiUrl}/api/user/credits/model-preferences`, {
-                headers: { Authorization: `Bearer ${token}` },
-                signal: AbortSignal.timeout(8000),
-            });
-            if (!response.ok)
-                return;
-            const prefs = await response.json();
-            if (prefs?.success === false)
-                return;
-            this.store.set('hubModelPrefs', {
-                enabledCloudModels: Array.isArray(prefs.enabledCloudModels) ? prefs.enabledCloudModels : [],
-                defaultCloudModel: typeof prefs.defaultCloudModel === 'string' ? prefs.defaultCloudModel : undefined,
-                defaultLocalModel: typeof prefs.defaultLocalModel === 'string' ? prefs.defaultLocalModel : undefined,
-                balance: typeof prefs.balance === 'number' ? prefs.balance : undefined,
-                fetchedAt: new Date().toISOString(),
-            });
-        }
-        catch {
-            // Non-fatal: CLI can still run with default model catalog.
-        }
-    }
-    // Check if a model is a "Cloud" tier model
-    isCloudModel(modelId) {
-        const cloudModels = ['cloud-fast', 'cloud-balanced', 'cloud-code', 'cloud-power', 'cloud-maximum', 'cloud', 'cloud-reason', 'ultra'];
-        return cloudModels.includes(modelId) || modelId.includes('cloud');
-    }
-    filterModelsByHubPreferences(models, enabledCloudModels) {
-        if (!enabledCloudModels || !enabledCloudModels.length)
-            return models;
-        const enabled = new Set(enabledCloudModels);
-        return models.filter((model) => model.tier !== 'cloud' || enabled.has(model.backendModel));
-    }
-    // Check if task is complex enough to suggest Cloud upgrade
-    isComplexTask(prompt) {
-        const complexIndicators = [
-            /refactor/i, /architect/i, /redesign/i, /migrate/i,
-            /multi.?file/i, /multiple files/i, /entire.*project/i,
-            /all files/i, /whole.*codebase/i, /implement.*feature/i,
-            /create.*system/i, /build.*from.*scratch/i,
-            /analyze.*project/i, /review.*codebase/i,
-            /audit.*project/i, /audit.*workspace/i,
-            /full overview/i, /analyse.*workspace/i,
-            /analy[sz]e.*entire/i, /deep audit/i,
-        ];
-        return complexIndicators.some(pattern => pattern.test(prompt));
-    }
-    shouldUseCloudForHeavyTask(prompt) {
-        // DISABLED: Cloud routing is now EXPLICIT ONLY (--model cloud or /cloud command)
-        // Do NOT auto-route based on keywords. User must opt-in.
-        // If user wants cloud: they'll use --model cloud or request it explicitly.
-        return false;
-    }
-}