zuro-cli 0.0.2-beta.0

package/dist/index.mjs

@@ -0,0 +1,818 @@
+#!/usr/bin/env node
+
+// src/index.ts
+import { Command } from "commander";
+
+// src/commands/init.ts
+import ora from "ora";
+import chalk2 from "chalk";
+import fs4 from "fs-extra";
+import path4 from "path";
+import prompts from "prompts";
+
+// src/utils/registry.ts
+import { createHash } from "crypto";
+var DEFAULT_REGISTRY_BASE_URL = "https://zuro-cli.devbybriyan.com/registry";
+var DEFAULT_REGISTRY_ENTRY_URL = `${DEFAULT_REGISTRY_BASE_URL}/channels/stable.json`;
+var REGISTRY_ENV_VAR = "ZURO_REGISTRY_URL";
+var REQUEST_TIMEOUT_MS = 8e3;
+var MAX_RETRIES = 2;
+function withTrailingSlash(url) {
+  return url.endsWith("/") ? url : `${url}/`;
+}
+function resolveRegistryEntryUrl() {
+  const override = process.env[REGISTRY_ENV_VAR]?.trim();
+  if (!override) {
+    return DEFAULT_REGISTRY_ENTRY_URL;
+  }
+  let parsed;
+  try {
+    parsed = new URL(override);
+  } catch {
+    throw new Error(
+      `Invalid ${REGISTRY_ENV_VAR} value '${override}'. Expected a valid http(s) URL.`
+    );
+  }
+  if (parsed.pathname.endsWith(".json")) {
+    return parsed.toString();
+  }
+  return new URL("channels/stable.json", withTrailingSlash(parsed.toString())).toString();
+}
+function isRegistryManifest(data) {
+  if (!data || typeof data !== "object") {
+    return false;
+  }
+  const candidate = data;
+  return !!candidate.modules && typeof candidate.modules === "object";
+}
+function isChannelPointer(data) {
+  if (!data || typeof data !== "object") {
+    return false;
+  }
+  const candidate = data;
+  return typeof candidate.indexPath === "string" || typeof candidate.indexUrl === "string";
+}
+function delay(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+async function fetchWithRetry(url) {
+  let lastError;
+  for (let attempt = 0; attempt <= MAX_RETRIES; attempt++) {
+    const controller = new AbortController();
+    const timeout = setTimeout(() => controller.abort(), REQUEST_TIMEOUT_MS);
+    try {
+      const response = await fetch(url, {
+        headers: { Accept: "application/json, text/plain, */*" },
+        signal: controller.signal
+      });
+      if (response.ok) {
+        return response;
+      }
+      const shouldRetry = response.status >= 500 && attempt < MAX_RETRIES;
+      if (shouldRetry) {
+        await delay(250 * (attempt + 1));
+        continue;
+      }
+      throw new Error(`Request failed (${response.status} ${response.statusText}) for ${url}`);
+    } catch (error) {
+      lastError = error;
+      if (attempt === MAX_RETRIES) {
+        break;
+      }
+      await delay(250 * (attempt + 1));
+    } finally {
+      clearTimeout(timeout);
+    }
+  }
+  if (lastError instanceof Error) {
+    throw lastError;
+  }
+  throw new Error(`Failed to fetch ${url}`);
+}
+async function fetchJson(url) {
+  const response = await fetchWithRetry(url);
+  const data = await response.json();
+  return {
+    data,
+    resolvedUrl: response.url || url
+  };
+}
+function resolveManifestUrl(pointer, pointerUrl) {
+  const explicit = pointer.indexUrl || pointer.indexPath;
+  if (!explicit) {
+    throw new Error("Registry channel pointer is missing indexUrl/indexPath");
+  }
+  return new URL(explicit, pointerUrl).toString();
+}
+async function fetchRegistry() {
+  const registryEntryUrl = resolveRegistryEntryUrl();
+  let entry;
+  try {
+    entry = await fetchJson(registryEntryUrl);
+  } catch (error) {
+    throw new Error(
+      `Unable to fetch registry from ${registryEntryUrl}. For local testing set ${REGISTRY_ENV_VAR}=http://127.0.0.1:8787.`,
+      { cause: error }
+    );
+  }
+  if (isRegistryManifest(entry.data)) {
+    return {
+      manifest: entry.data,
+      manifestUrl: entry.resolvedUrl,
+      fileBaseUrl: withTrailingSlash(new URL(".", entry.resolvedUrl).toString())
+    };
+  }
+  if (!isChannelPointer(entry.data)) {
+    throw new Error(
+      `Invalid registry payload at ${registryEntryUrl}. Expected manifest or channel pointer.`
+    );
+  }
+  const manifestUrl = resolveManifestUrl(entry.data, entry.resolvedUrl);
+  const manifestResult = await fetchJson(manifestUrl);
+  if (!isRegistryManifest(manifestResult.data)) {
+    throw new Error(`Invalid manifest payload at ${manifestUrl}.`);
+  }
+  return {
+    manifest: manifestResult.data,
+    manifestUrl: manifestResult.resolvedUrl,
+    fileBaseUrl: withTrailingSlash(new URL(".", manifestResult.resolvedUrl).toString())
+  };
+}
+async function fetchFile(filePath, options) {
+  const normalizedPath = filePath.replace(/^\//, "");
+  const fileUrl = new URL(normalizedPath, withTrailingSlash(options.baseUrl)).toString();
+  const response = await fetchWithRetry(fileUrl);
+  const content = await response.text();
+  if (typeof options.expectedSize === "number") {
+    const actualSize = Buffer.byteLength(content, "utf8");
+    if (actualSize !== options.expectedSize) {
+      throw new Error(
+        `Size mismatch for ${filePath}. Expected ${options.expectedSize}, got ${actualSize}.`
+      );
+    }
+  }
+  if (options.expectedSha256) {
+    const actualSha256 = createHash("sha256").update(content, "utf8").digest("hex");
+    if (actualSha256 !== options.expectedSha256) {
+      throw new Error(
+        `Checksum mismatch for ${filePath}. Expected ${options.expectedSha256}, got ${actualSha256}.`
+      );
+    }
+  }
+  return content;
+}
+
+// src/utils/pm.ts
+import fs from "fs-extra";
+import path from "path";
+import { execa } from "execa";
+async function initPackageJson(cwd, force = false) {
+  const pkgPath = path.join(cwd, "package.json");
+  if (force || !await fs.pathExists(pkgPath)) {
+    await fs.writeJson(pkgPath, {
+      name: "zuro-app",
+      version: "0.0.1",
+      private: true,
+      scripts: {
+        "dev": "tsx watch src/server.ts",
+        "build": "tsc",
+        "start": "node dist/server.js"
+      }
+    }, { spaces: 2 });
+  }
+}
+async function installDependencies(pm, deps, cwd, options = {}) {
+  const uniqueDeps = [...new Set(deps)].filter(Boolean);
+  if (uniqueDeps.length === 0) {
+    return;
+  }
+  const isDev = options.dev ?? false;
+  if (pm === "npm") {
+    const args = ["install", ...isDev ? ["--save-dev"] : [], ...uniqueDeps];
+    await execa("npm", args, { cwd });
+    return;
+  }
+  if (pm === "pnpm") {
+    const args = ["add", ...isDev ? ["-D"] : [], ...uniqueDeps];
+    await execa("pnpm", args, { cwd });
+    return;
+  }
+  if (pm === "yarn") {
+    const args = ["add", ...isDev ? ["-D"] : [], ...uniqueDeps];
+    await execa("yarn", args, { cwd });
+    return;
+  }
+  if (pm === "bun") {
+    const args = ["add", ...isDev ? ["-d"] : [], ...uniqueDeps];
+    await execa("bun", args, { cwd });
+    return;
+  }
+  throw new Error(`Unsupported package manager: ${pm}`);
+}
+
+// src/utils/env-manager.ts
+import fs2 from "fs-extra";
+import path2 from "path";
+import os from "os";
+var updateEnvFile = async (cwd, variables, createIfMissing = true) => {
+  const envPath = path2.join(cwd, ".env");
+  let content = "";
+  if (fs2.existsSync(envPath)) {
+    content = await fs2.readFile(envPath, "utf-8");
+  } else if (!createIfMissing) {
+    return;
+  }
+  let modified = false;
+  for (const [key, value] of Object.entries(variables)) {
+    const regex = new RegExp(`^${key}=`, "m");
+    if (!regex.test(content)) {
+      if (content && !content.endsWith("\n")) {
+        content += os.EOL;
+      }
+      content += `${key}=${value}${os.EOL}`;
+      modified = true;
+    }
+  }
+  if (modified || !fs2.existsSync(envPath)) {
+    await fs2.writeFile(envPath, content);
+  }
+};
+var updateEnvSchema = async (cwd, srcDir, fields) => {
+  const envPath = path2.join(cwd, srcDir, "env.ts");
+  if (!fs2.existsSync(envPath)) {
+    return false;
+  }
+  let content = await fs2.readFile(envPath, "utf-8");
+  let modified = false;
+  for (const field of fields) {
+    if (content.includes(`${field.name}:`)) {
+      continue;
+    }
+    const schemaEndRegex = /(\n\s*)(}\);?\s*\n\s*export const env)/;
+    const match = content.match(schemaEndRegex);
+    if (match) {
+      const indent = "    ";
+      const newField = `${indent}${field.name}: ${field.schema},
+`;
+      content = content.replace(
+        schemaEndRegex,
+        `
+${newField}$1$2`
+      );
+      modified = true;
+    }
+  }
+  if (modified) {
+    await fs2.writeFile(envPath, content);
+  }
+  return modified;
+};
+var createInitialEnv = async (cwd) => {
+  const envPath = path2.join(cwd, ".env");
+  if (fs2.existsSync(envPath)) {
+    return;
+  }
+  const content = `# Environment Variables
+PORT=3000
+NODE_ENV=development
+`;
+  await fs2.writeFile(envPath, content);
+};
+var ENV_CONFIGS = {
+  "database-pg": {
+    envVars: {
+      DATABASE_URL: "postgresql://postgres@localhost:5432/mydb"
+    },
+    schemaFields: [
+      { name: "DATABASE_URL", schema: "z.string().url()" }
+    ]
+  },
+  "database-mysql": {
+    envVars: {
+      DATABASE_URL: "mysql://root@localhost:3306/mydb"
+    },
+    schemaFields: [
+      { name: "DATABASE_URL", schema: "z.string().url()" }
+    ]
+  },
+  auth: {
+    envVars: {
+      BETTER_AUTH_SECRET: "your-secret-key-at-least-32-characters-long",
+      BETTER_AUTH_URL: "http://localhost:3000"
+    },
+    schemaFields: [
+      { name: "BETTER_AUTH_SECRET", schema: "z.string().min(32)" },
+      { name: "BETTER_AUTH_URL", schema: "z.string().url()" }
+    ]
+  }
+};
+
+// src/utils/config.ts
+import fs3 from "fs-extra";
+import path3 from "path";
+function sanitizeConfig(input) {
+  if (!input || typeof input !== "object") {
+    return {};
+  }
+  const raw = input;
+  const config = {};
+  if (typeof raw.name === "string") {
+    config.name = raw.name;
+  }
+  if (typeof raw.pm === "string") {
+    config.pm = raw.pm;
+  }
+  if (typeof raw.srcDir === "string") {
+    config.srcDir = raw.srcDir;
+  }
+  return config;
+}
+function getConfigPath(cwd) {
+  return path3.join(cwd, "zuro.json");
+}
+async function readZuroConfig(cwd) {
+  const configPath = getConfigPath(cwd);
+  if (!await fs3.pathExists(configPath)) {
+    return null;
+  }
+  const raw = await fs3.readJson(configPath);
+  return sanitizeConfig(raw);
+}
+async function writeZuroConfig(cwd, config) {
+  const configPath = getConfigPath(cwd);
+  await fs3.writeJson(configPath, sanitizeConfig(config), { spaces: 2 });
+}
+
+// src/utils/project-guard.ts
+import chalk from "chalk";
+function showNonZuroProjectMessage() {
+  console.log(chalk.yellow("This directory looks like an existing project that wasn't created with Zuro CLI."));
+  console.log("");
+  console.log(chalk.yellow("We stopped here because we don't want to make unnecessary changes to your project."));
+  console.log("");
+  console.log("Zuro CLI works in:");
+  console.log("- a fresh/empty directory, or");
+  console.log("- an existing project already managed by Zuro CLI.");
+}
+
+// src/commands/init.ts
+function resolveSafeTargetPath(projectRoot, srcDir, file) {
+  const relativeTargetPath = path4.join(srcDir, file.target);
+  const targetPath = path4.resolve(projectRoot, relativeTargetPath);
+  const normalizedRoot = path4.resolve(projectRoot);
+  if (targetPath !== normalizedRoot && !targetPath.startsWith(`${normalizedRoot}${path4.sep}`)) {
+    throw new Error(`Refusing to write outside project directory: ${file.target}`);
+  }
+  return {
+    relativeTargetPath,
+    targetPath
+  };
+}
+async function init() {
+  const cwd = process.cwd();
+  const isExistingProject = await fs4.pathExists(path4.join(cwd, "package.json"));
+  const existingZuroConfig = await readZuroConfig(cwd);
+  if (isExistingProject && !existingZuroConfig) {
+    showNonZuroProjectMessage();
+    return;
+  }
+  let targetDir = cwd;
+  let pm = "npm";
+  let srcDir = "src";
+  let projectName = path4.basename(cwd);
+  if (isExistingProject) {
+    console.log(chalk2.blue("\u2139 Existing project detected."));
+    projectName = path4.basename(cwd);
+    if (await fs4.pathExists(path4.join(cwd, "pnpm-lock.yaml"))) {
+      pm = "pnpm";
+    } else if (await fs4.pathExists(path4.join(cwd, "bun.lockb"))) {
+      pm = "bun";
+    } else if (await fs4.pathExists(path4.join(cwd, "yarn.lock"))) {
+      pm = "yarn";
+    }
+    const response = await prompts({
+      type: "text",
+      name: "srcDir",
+      message: "Where is your source code located?",
+      initial: "src"
+    });
+    srcDir = response.srcDir || "src";
+  } else {
+    console.log(chalk2.dim(`  Tip: Leave blank to use current folder (${path4.basename(cwd)})
+`));
+    const response = await prompts([
+      {
+        type: "text",
+        name: "path",
+        message: "Project name (blank for current folder)",
+        initial: ""
+      },
+      {
+        type: "select",
+        name: "pm",
+        message: "Package Manager?",
+        choices: [
+          { title: "npm", value: "npm" },
+          { title: "pnpm", value: "pnpm" },
+          { title: "bun", value: "bun" }
+        ],
+        initial: 0
+      }
+    ]);
+    if (response.pm === void 0) {
+      console.log(chalk2.red("Operation cancelled."));
+      return;
+    }
+    pm = response.pm;
+    srcDir = "src";
+    if (!response.path || response.path.trim() === "") {
+      projectName = path4.basename(cwd);
+      targetDir = cwd;
+      console.log(chalk2.blue(`\u2139 Using current folder: ${projectName}`));
+    } else {
+      projectName = response.path.trim();
+      targetDir = path4.resolve(cwd, projectName);
+      await fs4.ensureDir(targetDir);
+    }
+  }
+  const existingConfig = targetDir === cwd ? existingZuroConfig : await readZuroConfig(targetDir);
+  const zuroConfig = {
+    name: projectName,
+    pm,
+    srcDir: srcDir || existingConfig?.srcDir || "src"
+  };
+  await writeZuroConfig(targetDir, zuroConfig);
+  const spinner = ora("Connecting to Zuro Registry...").start();
+  try {
+    const registryContext = await fetchRegistry();
+    const coreModule = registryContext.manifest.modules.core;
+    if (!coreModule) {
+      spinner.fail("Core module not found in registry.");
+      return;
+    }
+    spinner.text = "Initializing project...";
+    const hasPackageJson = await fs4.pathExists(path4.join(targetDir, "package.json"));
+    if (!hasPackageJson) {
+      await initPackageJson(targetDir, true);
+    }
+    spinner.text = `Installing dependencies using ${pm}...`;
+    let runtimeDeps = [];
+    let devDeps = [];
+    if (isExistingProject) {
+      const safeDeps = ["zod", "dotenv"];
+      const coreDeps = coreModule.dependencies || [];
+      runtimeDeps = coreDeps.filter((dependency) => safeDeps.includes(dependency));
+      devDeps = coreModule.devDependencies || [];
+    } else {
+      runtimeDeps = coreModule.dependencies || [];
+      devDeps = coreModule.devDependencies || [];
+    }
+    await installDependencies(pm, runtimeDeps, targetDir);
+    await installDependencies(pm, devDeps, targetDir, { dev: true });
+    spinner.text = "Fetching core module files...";
+    for (const file of coreModule.files) {
+      const { relativeTargetPath, targetPath } = resolveSafeTargetPath(targetDir, srcDir, file);
+      const fileName = path4.basename(targetPath);
+      if (isExistingProject) {
+        if (fileName === "app.ts" || fileName === "server.ts") {
+          continue;
+        }
+        const relativeParts = relativeTargetPath.split(path4.sep);
+        const isSafe = fileName === "env.ts" || relativeParts.includes("lib");
+        if (!isSafe) {
+          continue;
+        }
+      }
+      const content = await fetchFile(file.path, {
+        baseUrl: registryContext.fileBaseUrl,
+        expectedSha256: file.sha256,
+        expectedSize: file.size
+      });
+      await fs4.ensureDir(path4.dirname(targetPath));
+      await fs4.writeFile(targetPath, content);
+    }
+    await createInitialEnv(targetDir);
+    spinner.succeed(chalk2.green("Project initialized successfully!"));
+    console.log(`
+${chalk2.bold("Next steps:")}`);
+    if (targetDir !== cwd) {
+      console.log(chalk2.cyan(`  cd ${projectName}`));
+    }
+    console.log(chalk2.cyan(`  ${pm} run dev`));
+    console.log(`
+${chalk2.dim("Add modules: zuro-cli add database, zuro-cli add auth")}`);
+  } catch (error) {
+    spinner.fail(chalk2.red("Failed to initialize project."));
+    console.error(error);
+  }
+}
+
+// src/commands/add.ts
+import prompts2 from "prompts";
+import ora2 from "ora";
+import path6 from "path";
+import fs6 from "fs-extra";
+
+// src/utils/dependency.ts
+import fs5 from "fs-extra";
+import path5 from "path";
+import chalk3 from "chalk";
+var BLOCK_SIGNATURES = {
+  core: "env.ts",
+  "database-pg": "db/index.ts",
+  "database-mysql": "db/index.ts",
+  validator: "middleware/validate.ts",
+  "error-handler": "lib/errors.ts",
+  logger: "lib/logger.ts",
+  auth: "lib/auth.ts"
+};
+var resolveDependencies = async (moduleDependencies, cwd) => {
+  if (!moduleDependencies || moduleDependencies.length === 0) {
+    return;
+  }
+  const config = await readZuroConfig(cwd);
+  const srcDir = config?.srcDir || "src";
+  for (const dep of moduleDependencies) {
+    if (dep === "database") {
+      const pgExists = fs5.existsSync(path5.join(cwd, srcDir, BLOCK_SIGNATURES["database-pg"]));
+      const mysqlExists = fs5.existsSync(path5.join(cwd, srcDir, BLOCK_SIGNATURES["database-mysql"]));
+      if (pgExists || mysqlExists) {
+        continue;
+      }
+      console.log(chalk3.blue(`\u2139 Dependency '${dep}' is missing. Triggering install...`));
+      await add("database");
+      continue;
+    }
+    const signature = BLOCK_SIGNATURES[dep];
+    if (!signature) {
+      continue;
+    }
+    if (fs5.existsSync(path5.join(cwd, srcDir, signature))) {
+      continue;
+    }
+    console.log(chalk3.blue(`\u2139 Installing missing dependency: ${dep}...`));
+    await add(dep);
+  }
+};
+
+// src/commands/add.ts
+import chalk4 from "chalk";
+function resolveSafeTargetPath2(projectRoot, srcDir, file) {
+  const targetPath = path6.resolve(projectRoot, srcDir, file.target);
+  const normalizedRoot = path6.resolve(projectRoot);
+  if (targetPath !== normalizedRoot && !targetPath.startsWith(`${normalizedRoot}${path6.sep}`)) {
+    throw new Error(`Refusing to write outside project directory: ${file.target}`);
+  }
+  return targetPath;
+}
+async function injectErrorHandler(projectRoot, srcDir) {
+  const appPath = path6.join(projectRoot, srcDir, "app.ts");
+  if (!fs6.existsSync(appPath)) {
+    return false;
+  }
+  let content = await fs6.readFile(appPath, "utf-8");
+  if (content.includes("errorHandler")) {
+    return true;
+  }
+  const errorImport = `import { errorHandler, notFoundHandler } from "./middleware/error-handler";`;
+  const importRegex = /^import .+ from .+;?\s*$/gm;
+  let lastImportIndex = 0;
+  let match;
+  while ((match = importRegex.exec(content)) !== null) {
+    lastImportIndex = match.index + match[0].length;
+  }
+  if (lastImportIndex > 0) {
+    content = content.slice(0, lastImportIndex) + `
+${errorImport}` + content.slice(lastImportIndex);
+  }
+  const errorSetup = `
+// Error handling (must be last)
+app.use(notFoundHandler);
+app.use(errorHandler);
+`;
+  const exportMatch = content.match(/export default app;?\s*$/m);
+  if (exportMatch && exportMatch.index !== void 0) {
+    content = content.slice(0, exportMatch.index) + errorSetup + "\n" + content.slice(exportMatch.index);
+  }
+  await fs6.writeFile(appPath, content);
+  return true;
+}
+async function injectAuthRoutes(projectRoot, srcDir) {
+  const appPath = path6.join(projectRoot, srcDir, "app.ts");
+  if (!fs6.existsSync(appPath)) {
+    return false;
+  }
+  let content = await fs6.readFile(appPath, "utf-8");
+  if (content.includes("routes/auth.routes")) {
+    return true;
+  }
+  const authImport = `import authRoutes from "./routes/auth.routes";`;
+  const userImport = `import userRoutes from "./routes/user.routes";`;
+  const routeSetup = `
+// Auth routes
+app.use(authRoutes);
+app.use("/api/users", userRoutes);
+`;
+  const importRegex = /^import .+ from .+;?\s*$/gm;
+  let lastImportIndex = 0;
+  let match;
+  while ((match = importRegex.exec(content)) !== null) {
+    lastImportIndex = match.index + match[0].length;
+  }
+  if (lastImportIndex > 0) {
+    content = content.slice(0, lastImportIndex) + `
+${authImport}
+${userImport}` + content.slice(lastImportIndex);
+  }
+  const exportMatch = content.match(/export default app;?\s*$/m);
+  if (exportMatch && exportMatch.index !== void 0) {
+    content = content.slice(0, exportMatch.index) + routeSetup + "\n" + content.slice(exportMatch.index);
+  }
+  await fs6.writeFile(appPath, content);
+  return true;
+}
+var add = async (moduleName) => {
+  const projectRoot = process.cwd();
+  const projectConfig = await readZuroConfig(projectRoot);
+  if (!projectConfig) {
+    showNonZuroProjectMessage();
+    return;
+  }
+  let srcDir = projectConfig.srcDir || "src";
+  let customDbUrl;
+  const DEFAULT_URLS = {
+    "database-pg": "postgresql://root@localhost:5432/mydb",
+    "database-mysql": "mysql://root@localhost:3306/mydb"
+  };
+  if (moduleName === "database") {
+    const variantResponse = await prompts2({
+      type: "select",
+      name: "variant",
+      message: "Which database dialect?",
+      choices: [
+        { title: "PostgreSQL", value: "database-pg" },
+        { title: "MySQL", value: "database-mysql" }
+      ]
+    });
+    if (!variantResponse.variant) {
+      process.exit(0);
+    }
+    moduleName = variantResponse.variant;
+    const defaultUrl = DEFAULT_URLS[moduleName];
+    console.log(chalk4.dim(`  Tip: Leave blank to use ${defaultUrl}
+`));
+    const urlResponse = await prompts2({
+      type: "text",
+      name: "dbUrl",
+      message: "Database URL",
+      initial: ""
+    });
+    customDbUrl = urlResponse.dbUrl?.trim() || defaultUrl;
+  }
+  if ((moduleName === "database-pg" || moduleName === "database-mysql") && customDbUrl === void 0) {
+    const defaultUrl = DEFAULT_URLS[moduleName];
+    console.log(chalk4.dim(`  Tip: Leave blank to use ${defaultUrl}
+`));
+    const response = await prompts2({
+      type: "text",
+      name: "dbUrl",
+      message: "Database URL",
+      initial: ""
+    });
+    customDbUrl = response.dbUrl?.trim() || defaultUrl;
+  }
+  const spinner = ora2(`Checking registry for ${moduleName}...`).start();
+  try {
+    const registryContext = await fetchRegistry();
+    const module = registryContext.manifest.modules[moduleName];
+    if (!module) {
+      spinner.fail(`Module '${moduleName}' not found.`);
+      return;
+    }
+    spinner.succeed(`Found module: ${chalk4.cyan(moduleName)}`);
+    const moduleDeps = module.moduleDependencies || [];
+    await resolveDependencies(moduleDeps, projectRoot);
+    spinner.start("Installing dependencies...");
+    let pm = "npm";
+    if (fs6.existsSync(path6.join(projectRoot, "pnpm-lock.yaml"))) {
+      pm = "pnpm";
+    } else if (fs6.existsSync(path6.join(projectRoot, "bun.lockb"))) {
+      pm = "bun";
+    } else if (fs6.existsSync(path6.join(projectRoot, "yarn.lock"))) {
+      pm = "yarn";
+    }
+    await installDependencies(pm, module.dependencies || [], projectRoot);
+    await installDependencies(pm, module.devDependencies || [], projectRoot, { dev: true });
+    spinner.succeed("Dependencies installed");
+    spinner.start("Scaffolding files...");
+    for (const file of module.files) {
+      const content = await fetchFile(file.path, {
+        baseUrl: registryContext.fileBaseUrl,
+        expectedSha256: file.sha256,
+        expectedSize: file.size
+      });
+      const targetPath = resolveSafeTargetPath2(projectRoot, srcDir, file);
+      await fs6.ensureDir(path6.dirname(targetPath));
+      await fs6.writeFile(targetPath, content);
+    }
+    spinner.succeed("Files generated");
+    if (moduleName === "auth") {
+      spinner.start("Configuring routes in app.ts...");
+      const injected = await injectAuthRoutes(projectRoot, srcDir);
+      if (injected) {
+        spinner.succeed("Routes configured in app.ts");
+      } else {
+        spinner.warn("Could not find app.ts - routes need manual setup");
+      }
+    }
+    if (moduleName === "error-handler") {
+      spinner.start("Configuring error handler in app.ts...");
+      const injected = await injectErrorHandler(projectRoot, srcDir);
+      if (injected) {
+        spinner.succeed("Error handler configured in app.ts");
+      } else {
+        spinner.warn("Could not find app.ts - error handler needs manual setup");
+      }
+    }
+    const envConfig = ENV_CONFIGS[moduleName];
+    if (envConfig) {
+      spinner.start("Updating environment configuration...");
+      const envVars = { ...envConfig.envVars };
+      if (customDbUrl && (moduleName === "database-pg" || moduleName === "database-mysql")) {
+        envVars.DATABASE_URL = customDbUrl;
+      }
+      await updateEnvFile(projectRoot, envVars);
+      await updateEnvSchema(projectRoot, srcDir, envConfig.schemaFields);
+      spinner.succeed("Environment configured");
+    }
+    console.log(chalk4.green(`
+\u2714 ${moduleName} added successfully!
+`));
+    if (moduleName === "auth") {
+      console.log(chalk4.bold("\u{1F4CB} Next Steps:\n"));
+      console.log(chalk4.yellow("1. Update your .env file:"));
+      console.log(
+        chalk4.dim("   We added placeholder values. Update BETTER_AUTH_SECRET with a secure key.\n")
+      );
+      console.log(chalk4.yellow("2. Run database migrations:"));
+      console.log(chalk4.cyan("   npx drizzle-kit generate"));
+      console.log(chalk4.cyan("   npx drizzle-kit migrate\n"));
+      console.log(chalk4.yellow("3. Available endpoints:"));
+      console.log(chalk4.dim("   POST /auth/sign-up/email  - Register"));
+      console.log(chalk4.dim("   POST /auth/sign-in/email  - Login"));
+      console.log(chalk4.dim("   POST /auth/sign-out       - Logout"));
+      console.log(chalk4.dim("   GET  /api/users/me        - Current user\n"));
+    } else if (moduleName === "error-handler") {
+      console.log(chalk4.bold("\u{1F4CB} Usage:\n"));
+      console.log(chalk4.yellow("Throw errors in your controllers:"));
+      console.log(chalk4.dim("   \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500"));
+      console.log(chalk4.white(`   import { UnauthorizedError, NotFoundError } from "./lib/errors";`));
+      console.log("");
+      console.log(chalk4.white(`   throw new UnauthorizedError("Invalid credentials");`));
+      console.log(chalk4.white(`   throw new NotFoundError("User not found");`));
+      console.log(chalk4.dim("   \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n"));
+      console.log(chalk4.yellow("Available error classes:"));
+      console.log(chalk4.dim("   BadRequestError     (400)"));
+      console.log(chalk4.dim("   UnauthorizedError   (401)"));
+      console.log(chalk4.dim("   ForbiddenError      (403)"));
+      console.log(chalk4.dim("   NotFoundError       (404)"));
+      console.log(chalk4.dim("   ConflictError       (409)"));
+      console.log(chalk4.dim("   ValidationError     (422)"));
+      console.log(chalk4.dim("   InternalServerError (500)\n"));
+      console.log(chalk4.yellow("Wrap async handlers:"));
+      console.log(chalk4.dim("   \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500"));
+      console.log(chalk4.white(`   import { asyncHandler } from "./middleware/error-handler";`));
+      console.log("");
+      console.log(chalk4.white(`   router.get("/users", asyncHandler(async (req, res) => {`));
+      console.log(chalk4.white("       // errors auto-caught"));
+      console.log(chalk4.white("   }));"));
+      console.log(chalk4.dim("   \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n"));
+    } else if (moduleName.includes("database")) {
+      console.log(chalk4.bold("\u{1F4CB} Next Steps:\n"));
+      let stepNum = 1;
+      if (!customDbUrl) {
+        console.log(chalk4.yellow(`${stepNum}. Update DATABASE_URL in .env:`));
+        console.log(
+          chalk4.dim("   We added a placeholder. Update with your actual database credentials.\n")
+        );
+        stepNum++;
+      }
+      console.log(chalk4.yellow(`${stepNum}. Create schemas in src/db/schema/:`));
+      console.log(chalk4.dim("   Add table files and export from index.ts\n"));
+      stepNum++;
+      console.log(chalk4.yellow(`${stepNum}. Run migrations:`));
+      console.log(chalk4.cyan("   npx drizzle-kit generate"));
+      console.log(chalk4.cyan("   npx drizzle-kit migrate\n"));
+    }
+  } catch (error) {
+    spinner.fail(`Failed to add module: ${error.message}`);
+  }
+};
+
+// src/index.ts
+var program = new Command();
+program.name("zuro-cli").description("Zuro CLI tool").version("0.0.1");
+program.command("init").description("Initialize a new Zuro project").action(init);
+program.command("add <module>").description("Add a module to your project").action(add);
+program.parse(process.argv);
+//# sourceMappingURL=index.mjs.map