meshcode 1.8.6__tar.gz → 1.8.8__tar.gz

{meshcode-1.8.6 → meshcode-1.8.8}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: meshcode
-Version: 1.8.6
+Version: 1.8.8
 Summary: Real-time communication between AI agents — Supabase-backed CLI
 Author-email: MeshCode <hello@meshcode.io>
 License: MIT

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode/__init__.py

@@ -1,2 +1,2 @@
 """MeshCode — Real-time communication between AI agents."""
-__version__ = "1.8.6"
+__version__ = "1.8.8"

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode/comms_v4.py

@@ -47,8 +47,8 @@ from urllib.parse import quote
 # Production defaults baked in. The publishable key is the anon/public key
 # (RLS-protected, safe to ship — same one the frontend at meshcode.io uses
 # in the browser). Override via env vars or ~/.meshcode/env if you self-host.
-_DEFAULT_SUPABASE_URL = "https://wwgzzmydrwrjgaebspdo.supabase.co"
-_DEFAULT_SUPABASE_KEY = "sb_publishable_0qf0U1GURopPIxLR8Vu7eQ_5grflPP4"
+_DEFAULT_SUPABASE_URL = "https://gjinagyyjttyxnaoavnz.supabase.co"
+_DEFAULT_SUPABASE_KEY = "sb_publishable_qwN9PO1L7jUXhhbhhVk2CQ_z1FXG2Qf"
 
 def _load_env_file():
     """Read SUPABASE_URL/KEY from ~/.meshcode/env if present (overrides defaults)."""
@@ -198,12 +198,61 @@ def ensure_sessions():
     SESSIONS_DIR.mkdir(parents=True, exist_ok=True)
 
 
+def _load_api_key_for_cli() -> str:
+    """Pull the user's api key from the keychain (or env fallback) so the
+    CLI can call SECURITY DEFINER RPCs that use api_key auth instead of
+    relying on the publishable anon key + RLS, which is what CLI verbs
+    used to do and which always failed because the CLI has no JWT context.
+    """
+    # 1) explicit env override
+    k = os.environ.get("MESHCODE_API_KEY", "").strip()
+    if k:
+        return k
+    # 2) keychain via secrets module
+    try:
+        import importlib
+        secrets_mod = importlib.import_module("meshcode.secrets")
+        profile = os.environ.get("MESHCODE_KEYCHAIN_PROFILE") or secrets_mod.DEFAULT_PROFILE
+        key = secrets_mod.get_api_key(profile=profile) or ""
+        if key:
+            return key
+    except Exception:
+        pass
+    return ""
+
+
 def get_project_id(project_name):
-    """Get or create project, return its UUID."""
+    """Resolve a project's UUID for the authenticated CLI user.
+
+    Resolution order:
+      1. api_key + mc_resolve_project RPC (SECURITY DEFINER, the only
+         path that actually works for an authenticated CLI session)
+      2. legacy publishable-anon SELECT (only useful for shared/public
+         projects; will fail under RLS for owned projects)
+      3. legacy publishable-anon INSERT (will fail under RLS — kept as
+         last resort for backwards compat with very old test scripts)
+    """
+    api_key = _load_api_key_for_cli()
+    if api_key:
+        try:
+            r = sb_rpc("mc_resolve_project", {
+                "p_api_key": api_key,
+                "p_project_name": project_name,
+            })
+            if isinstance(r, dict) and r.get("project_id"):
+                return r["project_id"]
+            # Some deployments return rows
+            if isinstance(r, list) and r and r[0].get("project_id"):
+                return r[0]["project_id"]
+        except Exception:
+            pass
+
     rows = sb_select("mc_projects", f"name=eq.{quote(project_name)}")
     if rows:
         return rows[0]["id"]
-    # Create project
+
+    # Last resort: try to create. Will fail under RLS for unauthenticated
+    # contexts, but kept for legacy callers + admin tooling.
     result = sb_insert("mc_projects", {"name": project_name})
     if result and len(result) > 0:
         return result[0]["id"]

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode/invites.py

@@ -41,8 +41,8 @@ from urllib.request import Request, urlopen
 # Supabase RPC helpers
 # ============================================================
 
-_DEFAULT_SUPABASE_URL = "https://wwgzzmydrwrjgaebspdo.supabase.co"
-_DEFAULT_SUPABASE_KEY = "sb_publishable_0qf0U1GURopPIxLR8Vu7eQ_5grflPP4"
+_DEFAULT_SUPABASE_URL = "https://gjinagyyjttyxnaoavnz.supabase.co"
+_DEFAULT_SUPABASE_KEY = "sb_publishable_qwN9PO1L7jUXhhbhhVk2CQ_z1FXG2Qf"
 
 
 def _sb() -> Dict[str, str]:

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode/meshcode_mcp/backend.py

@@ -13,8 +13,8 @@ from urllib.parse import quote
 from urllib.request import Request, urlopen
 
 # Bake in production defaults — RLS-protected publishable key, safe to ship.
-_DEFAULT_SUPABASE_URL = "https://wwgzzmydrwrjgaebspdo.supabase.co"
-_DEFAULT_SUPABASE_KEY = "sb_publishable_0qf0U1GURopPIxLR8Vu7eQ_5grflPP4"
+_DEFAULT_SUPABASE_URL = "https://gjinagyyjttyxnaoavnz.supabase.co"
+_DEFAULT_SUPABASE_KEY = "sb_publishable_qwN9PO1L7jUXhhbhhVk2CQ_z1FXG2Qf"
 
 def _load_env_file() -> Dict[str, str]:
     env_path = Path.home() / ".meshcode" / "env"

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode/run_agent.py

@@ -112,6 +112,16 @@ def run(agent: str, project: Optional[str] = None, editor_override: Optional[str
     except Exception:
         pass
 
+    # Detect: are we already inside a Claude Code session? os.execvp(claude)
+    # from inside an existing claude won't work — claude needs a fresh
+    # interactive terminal it owns. Refuse with a clear message.
+    if os.environ.get("CLAUDECODE") == "1" or os.environ.get("CLAUDE_CODE_SESSION"):
+        print("[meshcode] ERROR: meshcode run cannot bootstrap a new agent from inside an", file=sys.stderr)
+        print("[meshcode]        existing Claude Code session.", file=sys.stderr)
+        print("[meshcode]        Open a fresh Terminal / iTerm window and run the command there.", file=sys.stderr)
+        print(f"[meshcode]        (or copy this exact line into a new terminal: meshcode run {agent})", file=sys.stderr)
+        return 2
+
     found = _find_agent_workspace(agent, project)
     if not found:
         return 2

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode/setup_clients.py

@@ -93,9 +93,9 @@ def _load_supabase_env() -> Dict[str, str]:
                     elif k == "SUPABASE_KEY" and not key:
                         key = v
     if not url:
-        url = "https://wwgzzmydrwrjgaebspdo.supabase.co"
+        url = "https://gjinagyyjttyxnaoavnz.supabase.co"
     if not key:
-        key = "sb_publishable_0qf0U1GURopPIxLR8Vu7eQ_5grflPP4"
+        key = "sb_publishable_qwN9PO1L7jUXhhbhhVk2CQ_z1FXG2Qf"
     return {"SUPABASE_URL": url, "SUPABASE_KEY": key}
 
 

{meshcode-1.8.6 → meshcode-1.8.8}/meshcode.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: meshcode
-Version: 1.8.6
+Version: 1.8.8
 Summary: Real-time communication between AI agents — Supabase-backed CLI
 Author-email: MeshCode <hello@meshcode.io>
 License: MIT

{meshcode-1.8.6 → meshcode-1.8.8}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "meshcode"
-version = "1.8.6"
+version = "1.8.8"
 description = "Real-time communication between AI agents — Supabase-backed CLI"
 readme = "README.md"
 license = {text = "MIT"}