tarnished-cli 0.1.2__tar.gz

tarnished_cli-0.1.2/.gitignore

@@ -0,0 +1,180 @@
+__pycache__/
+*.pyc
+.venv/
+node_modules/
+.env
+data/
+uploads/
+*.db
+.uv/
+dist/
+build/
+*.egg-info/
+
+
+.worktrees/
+mise.toml
+docs/
+scripts/
+.claude/
+.devcontainer/
+.planning/
+.serena/
+CLAUDE.md
+
+.firecrawl/
+
+# Ralph Loop (autonomous implementation)
+ralph.yml
+ralph-loop.sh
+PROMPT.md
+specs/
+.ralph/
+.claude/handoff*.md
+
+# Design guidelines - development notes, not source code
+frontend/DESIGN_GUIDELINES.md
+backend/DESIGN_GUIDELINES.md
+
+# Seed scripts - development only
+backend/seed_*.py
+
+# Generated requirements.txt
+backend/requirements.txt
+
+# Pre-commit framework (using Husky instead)
+.pre-commit-config.yaml
+
+# Playwright MCP screenshots and snapshots
+.playwright-mcp/
+
+# macOS
+.DS_Store
+.DS_Store?
+._*
+.Spotlight-V100
+.Trashes
+ehthumbs.db
+Thumbs.db
+
+# Temporary directories and files
+temp/
+temp2/
+tmp/
+*.tmp
+*~
+
+# Core dumps
+/core
+core.*
+
+# Editor swap files
+*.swp
+*.swo
+*.swn
+
+# Session backup files
+*session-is-being-continued*.txt
+*.bak
+
+# ============================================================================
+# Frontend (Node.js/Yarn/Vite)
+# ============================================================================
+
+# Yarn
+.yarn/
+.pnp.*
+
+# Vite
+.vite/
+
+# Environment variants
+.env.local
+.env.*.local
+
+# Backend environment files
+backend/.env.postgresql
+backend/.env.*
+
+# TypeScript
+*.tsbuildinfo
+
+# ESLint
+.eslintcache
+
+# Test coverage
+coverage/
+*.lcov
+
+# Logs
+*.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+
+# ============================================================================
+# Backend (Python/Testing)
+# ============================================================================
+
+# Python artifacts
+*.pyo
+*.so
+*.py[cod]
+*.egg
+
+# Database files
+*.sqlite
+*.sqlite3
+
+# IDE configs
+.vscode/
+.idea/
+
+# Test coverage
+.coverage
+htmlcov/
+*.cover
+.pytest_cache/
+.hypothesis/
+.tox/
+
+# MyPy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Alembic cache (not migration files)
+alembic/versions/__pycache__/
+
+# ============================================================================
+# Project Level (Docker/Cache)
+# ============================================================================
+
+# Docker overrides
+docker-compose.override.yml
+docker-compose.override.yaml
+
+# Docker build artifacts
+.docker/
+
+# CI/CD local files
+.github/workflows/*.local.yml
+.github/workflows/*.local.yaml
+
+# Cache directories
+.cache/
+.npm/
+
+# ============================================================================
+# Browser Extension
+# ============================================================================
+
+# Extension build artifacts
+*.xpi
+
+# Extension test/dev files
+extension/test-form.html
+
+# Don't mix npm and yarn in extension
+extension/package-lock.json
+.playwright/

tarnished_cli-0.1.2/PKG-INFO

@@ -0,0 +1,91 @@
+Metadata-Version: 2.4
+Name: tarnished-cli
+Version: 0.1.2
+Summary: Agent-first CLI for Tarnished
+Requires-Python: >=3.12
+Requires-Dist: email-validator>=2.0.0
+Requires-Dist: httpx>=0.28.1
+Requires-Dist: keyring>=25.7.0
+Requires-Dist: pydantic>=2.12.0
+Requires-Dist: typer>=0.23.1
+Description-Content-Type: text/markdown
+
+# Tarnished CLI
+
+Agent-first command-line interface for Tarnished.
+
+## Install
+
+Preferred install path:
+
+```bash
+uv tool install tarnished-cli
+```
+
+Alternative:
+
+```bash
+pipx install tarnished-cli
+```
+
+Install from a built wheel before PyPI publication:
+
+```bash
+uv tool install ./dist/tarnished_cli-0.1.2-py3-none-any.whl
+```
+
+## OpenClaw / Agent Install
+
+Recommended:
+
+```bash
+uv tool install tarnished-cli
+```
+
+Version-pinned:
+
+```bash
+uv tool install 'tarnished-cli==0.1.2'
+```
+
+Then run:
+
+```bash
+tarnished --help
+```
+
+## Development
+
+```bash
+cd cli
+uv sync
+uv run tarnished --help
+uv run pytest -q
+```
+
+## Release
+
+The repository release workflow builds CLI distributions and uploads them to the GitHub release.
+
+PyPI publication is optional and is controlled by the `publish_cli_package` workflow input.
+
+### One-Time PyPI Trusted Publishing Setup
+
+1. Create the `tarnished-cli` project on PyPI.
+2. In the PyPI project settings, add a Trusted Publisher for this GitHub repository.
+3. Use these values:
+   - Owner: `markoonakic`
+   - Repository: `tarnished`
+   - Workflow name: `release.yml`
+   - Environment name: `pypi`
+4. After that, run the GitHub release workflow with:
+   - `publish_cli_package=true`
+
+### Release Outputs
+
+The release workflow publishes:
+
+- `cli/dist/*.whl`
+- `cli/dist/*.tar.gz`
+
+to the GitHub release, and optionally to PyPI.

tarnished_cli-0.1.2/README.md

@@ -0,0 +1,79 @@
+# Tarnished CLI
+
+Agent-first command-line interface for Tarnished.
+
+## Install
+
+Preferred install path:
+
+```bash
+uv tool install tarnished-cli
+```
+
+Alternative:
+
+```bash
+pipx install tarnished-cli
+```
+
+Install from a built wheel before PyPI publication:
+
+```bash
+uv tool install ./dist/tarnished_cli-0.1.2-py3-none-any.whl
+```
+
+## OpenClaw / Agent Install
+
+Recommended:
+
+```bash
+uv tool install tarnished-cli
+```
+
+Version-pinned:
+
+```bash
+uv tool install 'tarnished-cli==0.1.2'
+```
+
+Then run:
+
+```bash
+tarnished --help
+```
+
+## Development
+
+```bash
+cd cli
+uv sync
+uv run tarnished --help
+uv run pytest -q
+```
+
+## Release
+
+The repository release workflow builds CLI distributions and uploads them to the GitHub release.
+
+PyPI publication is optional and is controlled by the `publish_cli_package` workflow input.
+
+### One-Time PyPI Trusted Publishing Setup
+
+1. Create the `tarnished-cli` project on PyPI.
+2. In the PyPI project settings, add a Trusted Publisher for this GitHub repository.
+3. Use these values:
+   - Owner: `markoonakic`
+   - Repository: `tarnished`
+   - Workflow name: `release.yml`
+   - Environment name: `pypi`
+4. After that, run the GitHub release workflow with:
+   - `publish_cli_package=true`
+
+### Release Outputs
+
+The release workflow publishes:
+
+- `cli/dist/*.whl`
+- `cli/dist/*.tar.gz`
+
+to the GitHub release, and optionally to PyPI.

tarnished_cli-0.1.2/pyproject.toml

@@ -0,0 +1,71 @@
+[project]
+name = "tarnished-cli"
+version = "0.1.2"
+description = "Agent-first CLI for Tarnished"
+readme = "README.md"
+requires-python = ">=3.12"
+dependencies = [
+    "httpx>=0.28.1",
+    "keyring>=25.7.0",
+    "pydantic>=2.12.0",
+    "email-validator>=2.0.0",
+    "typer>=0.23.1",
+]
+
+[project.scripts]
+tarnished = "tarnished_cli.main:app"
+
+[build-system]
+requires = ["hatchling"]
+build-backend = "hatchling.build"
+
+[tool.hatch.build.targets.wheel]
+packages = ["src/tarnished_cli"]
+
+[tool.pytest.ini_options]
+testpaths = ["tests"]
+
+[dependency-groups]
+dev = [
+    "pyright>=1.1.408",
+    "pytest>=9.0.2",
+    "ruff>=0.15.1",
+]
+
+[tool.ruff]
+target-version = "py312"
+line-length = 88
+src = ["src", "tests"]
+
+[tool.ruff.lint]
+select = [
+    "E",
+    "W",
+    "F",
+    "I",
+    "B",
+    "C4",
+    "UP",
+    "SIM",
+]
+ignore = [
+    "E501",
+    "B008",
+]
+
+[tool.ruff.lint.per-file-ignores]
+"tests/**/*.py" = [
+    "B017",
+]
+
+[tool.ruff.format]
+quote-style = "double"
+indent-style = "space"
+
+[tool.pyright]
+pythonVersion = "3.12"
+typeCheckingMode = "basic"
+reportMissingImports = true
+reportMissingTypeStubs = false
+venvPath = "."
+venv = ".venv"

tarnished_cli-0.1.2/src/tarnished_cli/__init__.py

@@ -0,0 +1 @@
+"""Tarnished CLI package."""

tarnished_cli-0.1.2/src/tarnished_cli/auth_storage.py

@@ -0,0 +1,135 @@
+from __future__ import annotations
+
+import contextlib
+import json
+import os
+from pathlib import Path
+
+import keyring
+from keyring.errors import KeyringError, PasswordDeleteError
+from pydantic import BaseModel
+
+from tarnished_cli.config import resolve_config_dir
+
+ACCESS_TOKEN_ENV = "TARNISHED_ACCESS_TOKEN"
+REFRESH_TOKEN_ENV = "TARNISHED_REFRESH_TOKEN"
+API_KEY_ENV = "TARNISHED_API_KEY"
+KEYRING_SERVICE = "tarnished-cli"
+
+
+class StoredAuth(BaseModel):
+    access_token: str | None = None
+    refresh_token: str | None = None
+    api_key: str | None = None
+
+    def is_empty(self) -> bool:
+        return not any([self.access_token, self.refresh_token, self.api_key])
+
+
+def resolve_auth_path(profile: str = "default", config_dir: Path | None = None) -> Path:
+    return resolve_config_dir(config_dir) / f"auth-{profile}.json"
+
+
+def _keyring_account(profile: str = "default", config_dir: Path | None = None) -> str:
+    resolved_dir = resolve_config_dir(config_dir)
+    return f"{resolved_dir}:{profile}"
+
+
+def _env_auth() -> StoredAuth | None:
+    access_token = os.getenv(ACCESS_TOKEN_ENV)
+    refresh_token = os.getenv(REFRESH_TOKEN_ENV)
+    api_key = os.getenv(API_KEY_ENV)
+    if not any([access_token, refresh_token, api_key]):
+        return None
+    return StoredAuth(
+        access_token=access_token,
+        refresh_token=refresh_token,
+        api_key=api_key,
+    )
+
+
+def _read_auth_file(path: Path) -> StoredAuth:
+    if not path.exists():
+        return StoredAuth()
+    return StoredAuth.model_validate(json.loads(path.read_text()))
+
+
+def _write_auth_file(path: Path, auth: StoredAuth) -> None:
+    path.parent.mkdir(parents=True, exist_ok=True)
+    with contextlib.suppress(OSError):
+        path.parent.chmod(0o700)
+    path.write_text(json.dumps(auth.model_dump(mode="json"), sort_keys=True) + "\n")
+    with contextlib.suppress(OSError):
+        path.chmod(0o600)
+
+
+def _remove_auth_file(path: Path) -> None:
+    if path.exists():
+        path.unlink()
+
+
+def load_auth(
+    profile: str = "default",
+    *,
+    config_dir: Path | None = None,
+    prefer_keyring: bool = True,
+) -> StoredAuth:
+    env_auth = _env_auth()
+    if env_auth is not None:
+        return env_auth
+
+    if prefer_keyring:
+        account = _keyring_account(profile, config_dir)
+        try:
+            payload = keyring.get_password(KEYRING_SERVICE, account)
+        except (KeyringError, RuntimeError):
+            payload = None
+        if payload:
+            return StoredAuth.model_validate_json(payload)
+
+    return _read_auth_file(resolve_auth_path(profile, config_dir))
+
+
+def save_auth(
+    auth: StoredAuth,
+    profile: str = "default",
+    *,
+    config_dir: Path | None = None,
+    prefer_keyring: bool = True,
+) -> Path:
+    path = resolve_auth_path(profile, config_dir)
+
+    if prefer_keyring:
+        account = _keyring_account(profile, config_dir)
+        try:
+            if auth.is_empty():
+                with contextlib.suppress(PasswordDeleteError):
+                    keyring.delete_password(KEYRING_SERVICE, account)
+            else:
+                keyring.set_password(
+                    KEYRING_SERVICE, account, auth.model_dump_json(exclude_none=False)
+                )
+            _remove_auth_file(path)
+            return path
+        except (KeyringError, RuntimeError):
+            pass
+
+    _write_auth_file(path, auth)
+    return path
+
+
+def clear_auth(
+    profile: str = "default",
+    *,
+    config_dir: Path | None = None,
+    prefer_keyring: bool = True,
+) -> None:
+    path = resolve_auth_path(profile, config_dir)
+    if prefer_keyring:
+        account = _keyring_account(profile, config_dir)
+        try:
+            with contextlib.suppress(PasswordDeleteError):
+                keyring.delete_password(KEYRING_SERVICE, account)
+        except (KeyringError, RuntimeError):
+            pass
+    _remove_auth_file(path)