Sync from monorepo (ed64db5)

Author: github-actions[bot]

.github/workflows/publish.yml

@@ -0,0 +1,61 @@
+name: Publish to npm
+
+on:
+  workflow_dispatch:
+    inputs:
+      version:
+        description: 'Version bump (patch, minor, major)'
+        required: true
+        default: 'patch'
+        type: choice
+        options:
+          - patch
+          - minor
+          - major
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      id-token: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node
+        uses: actions/setup-node@v4
+        with:
+          node-version: 22
+          registry-url: https://registry.npmjs.org
+
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 10
+
+      - name: Install dependencies
+        run: pnpm install --no-frozen-lockfile
+
+      - name: Build
+        run: pnpm build
+
+      - name: Bump version
+        env:
+          BUMP: ${{ inputs.version }}
+        run: npm version "$BUMP" --no-git-tag-version
+
+      - name: Publish with provenance
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+        run: npm publish --access public --provenance
+
+      - name: Commit version bump
+        run: |
+          NEW_VERSION=$(node -p "require('./package.json').version")
+          git config user.name "github-actions[bot]"
+          git config user.email "github-actions[bot]@users.noreply.github.com"
+          git add package.json
+          git commit -m "Release @bonnard/agentops v${NEW_VERSION}"
+          git tag "v${NEW_VERSION}"
+          git push origin main --tags

.gitignore

@@ -0,0 +1,3 @@
+node_modules/
+dist/
+.DS_Store

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025-present Bonnard (bonnard-data)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package.json

@@ -0,0 +1,36 @@
+{
+  "name": "@bonnard/agentops",
+  "version": "0.1.0",
+  "type": "module",
+  "bin": {
+    "agentops": "./dist/bin/agentops.mjs"
+  },
+  "files": ["dist"],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bonnard-data/agentops-cli"
+  },
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "scripts": {
+    "dev": "tsx src/bin/agentops.ts",
+    "build": "tsdown src/bin/agentops.ts --format esm --out-dir dist/bin",
+    "typecheck": "tsc --noEmit",
+    "lint": "eslint ."
+  },
+  "dependencies": {
+    "commander": "^14.0.3",
+    "open": "^11.0.0",
+    "picocolors": "^1.1.1"
+  },
+  "devDependencies": {
+    "@eslint/js": "^10.0.1",
+    "@types/node": "^22.15.0",
+    "eslint": "^10.0.1",
+    "tsdown": "^0.21.4",
+    "tsx": "^4.21.0",
+    "typescript": "^6.0.2",
+    "typescript-eslint": "^8.57.2"
+  }
+}

src/bin/agentops.ts

@@ -0,0 +1,42 @@
+#!/usr/bin/env node
+import { Command } from 'commander'
+import pc from 'picocolors'
+import { loginCommand } from '../commands/login.js'
+import { loadCredentials, clearCredentials } from '../lib/credentials.js'
+
+const program = new Command()
+
+program
+  .name('agentops')
+  .description('AgentOps CLI — setup and manage your AI agent skills')
+  .version('0.1.0')
+
+program
+  .command('login')
+  .description('Authenticate with AgentOps via your browser')
+  .option('--url <url>', 'AgentOps server URL')
+  .action(loginCommand)
+
+program
+  .command('logout')
+  .description('Clear saved credentials')
+  .action(() => {
+    clearCredentials()
+    console.log(pc.green('✓ Logged out'))
+  })
+
+program
+  .command('whoami')
+  .description('Show current logged-in user')
+  .action(() => {
+    const creds = loadCredentials()
+    if (!creds) {
+      console.log(pc.yellow('Not logged in. Run: agentops login'))
+      process.exit(1)
+      return
+    }
+    console.log(`${pc.bold(creds.user.email)} (${creds.org.name})`)
+    console.log(`Role: ${creds.user.role}`)
+  })
+
+program.parse()

src/commands/login.ts

@@ -0,0 +1,129 @@
+import http from 'node:http'
+import pc from 'picocolors'
+import open from 'open'
+import { getBaseUrl, post } from '../lib/api.js'
+import { saveCredentials, saveConfig, type Credentials } from '../lib/credentials.js'
+
+const CALLBACK_PORT = 9876
+
+export async function loginCommand(options: { url?: string }) {
+  const baseUrl = getBaseUrl(options.url)
+
+  console.log(pc.dim(`Server: ${baseUrl}`))
+
+  // 1. Get the WorkOS auth URL from the server
+  let authRes: Response
+  try {
+    authRes = await fetch(
+      `${baseUrl}/auth/url?redirect_uri=${encodeURIComponent(`http://localhost:${CALLBACK_PORT}/callback`)}`,
+    )
+  } catch {
+    console.error(pc.red(`Cannot reach server at ${baseUrl}`))
+    console.error(pc.dim('Check the URL and ensure the server is running.'))
+    process.exit(1)
+    return
+  }
+  if (!authRes.ok) {
+    console.error(pc.red(`Failed to get auth URL: ${authRes.status} ${await authRes.text()}`))
+    process.exit(1)
+  }
+  const { url: authUrl } = (await authRes.json()) as { url: string }
+
+  // 2. Start local callback server
+  const { code, state } = await captureCallback(authUrl)
+
+  // 3. Exchange code for tokens via the server
+  console.log(pc.dim('Exchanging code for tokens...'))
+  const callbackRes = await post('/auth/callback', { code, state }, baseUrl)
+  if (!callbackRes.ok) {
+    const body = await callbackRes.text()
+    console.error(pc.red(`Authentication failed: ${body}`))
+    process.exit(1)
+  }
+
+  const data = (await callbackRes.json()) as Credentials
+
+  // 4. Save credentials and config
+  saveCredentials(data)
+  saveConfig({ url: baseUrl })
+
+  console.log()
+  console.log(pc.green('✓ Logged in successfully'))
+  console.log(`  ${pc.bold(data.user.email)} (${data.org.name})`)
+  console.log(`  Role: ${data.user.role}`)
+  console.log()
+}
+
+function captureCallback(authUrl: string): Promise<{ code: string; state: string }> {
+  return new Promise((resolve, reject) => {
+    const server = http.createServer((req, res) => {
+      const url = new URL(req.url ?? '/', `http://localhost:${CALLBACK_PORT}`)
+
+      if (url.pathname !== '/callback') {
+        res.writeHead(404)
+        res.end('Not found')
+        return
+      }
+
+      const code = url.searchParams.get('code')
+      const state = url.searchParams.get('state')
+
+      if (!code) {
+        const error = url.searchParams.get('error') ?? 'No code received'
+        res.writeHead(400, { 'Content-Type': 'text/html' })
+        res.end(errorPage(error))
+        server.close()
+        reject(new Error(error))
+        return
+      }
+
+      res.writeHead(200, { 'Content-Type': 'text/html' })
+      res.end(successPage())
+      server.close()
+      resolve({ code, state: state ?? '' })
+    })
+
+    server.listen(CALLBACK_PORT, () => {
+      console.log(pc.dim(`Listening on http://localhost:${CALLBACK_PORT}`))
+      console.log('Opening browser for authentication...')
+      console.log()
+      open(authUrl)
+    })
+
+    server.on('error', (err) => {
+      if ((err as NodeJS.ErrnoException).code === 'EADDRINUSE') {
+        reject(new Error(`Port ${CALLBACK_PORT} is in use. Close the process using it and try again.`))
+      } else {
+        reject(err)
+      }
+    })
+
+    // Timeout after 5 minutes
+    setTimeout(() => {
+      server.close()
+      reject(new Error('Login timed out after 5 minutes'))
+    }, 5 * 60 * 1000)
+  })
+}
+
+function successPage(): string {
+  return `<!DOCTYPE html>
+<html><head><title>AgentOps</title></head>
+<body style="font-family:system-ui;display:flex;justify-content:center;align-items:center;height:100vh;margin:0;background:#0a0a0a;color:#fafafa">
+<div style="text-align:center">
+<h1>Authenticated</h1>
+<p>You can close this tab and return to the terminal.</p>
+</div>
+</body></html>`
+}
+
+function errorPage(error: string): string {
+  return `<!DOCTYPE html>
+<html><head><title>AgentOps</title></head>
+<body style="font-family:system-ui;display:flex;justify-content:center;align-items:center;height:100vh;margin:0;background:#0a0a0a;color:#fafafa">
+<div style="text-align:center">
+<h1>Authentication Failed</h1>
+<p>${error}</p>
+</div>
+</body></html>`
+}

src/lib/api.ts

@@ -0,0 +1,31 @@
+import { loadCredentials, loadConfig } from './credentials.js'
+
+export function getBaseUrl(urlOverride?: string): string {
+  if (urlOverride) return urlOverride.replace(/\/$/, '')
+  const config = loadConfig()
+  if (config?.url) return config.url.replace(/\/$/, '')
+  return 'https://agentops.bonnard.ai'
+}
+
+export async function get(path: string, baseUrl: string): Promise<Response> {
+  return fetch(`${baseUrl}${path}`, {
+    headers: getHeaders(),
+  })
+}
+
+export async function post(path: string, body: unknown, baseUrl: string): Promise<Response> {
+  return fetch(`${baseUrl}${path}`, {
+    method: 'POST',
+    headers: { ...getHeaders(), 'Content-Type': 'application/json' },
+    body: JSON.stringify(body),
+  })
+}
+
+function getHeaders(): Record<string, string> {
+  const headers: Record<string, string> = {}
+  const creds = loadCredentials()
+  if (creds) {
+    headers['Authorization'] = `Bearer ${creds.accessToken}`
+  }
+  return headers
+}

src/lib/credentials.ts

@@ -0,0 +1,69 @@
+import fs from 'node:fs'
+import path from 'node:path'
+import os from 'node:os'
+
+const AGENTOPS_DIR = path.join(os.homedir(), '.agentops')
+const CREDENTIALS_PATH = path.join(AGENTOPS_DIR, 'credentials.json')
+const CONFIG_PATH = path.join(AGENTOPS_DIR, 'config.json')
+
+export interface Credentials {
+  accessToken: string
+  refreshToken: string | null
+  user: {
+    id: number
+    email: string
+    name: string
+    role: string
+  }
+  org: {
+    id: number
+    slug: string
+    name: string
+  }
+}
+
+export interface Config {
+  url: string
+}
+
+function ensureDir() {
+  if (!fs.existsSync(AGENTOPS_DIR)) {
+    fs.mkdirSync(AGENTOPS_DIR, { recursive: true })
+  }
+}
+
+export function saveCredentials(creds: Credentials): void {
+  ensureDir()
+  fs.writeFileSync(CREDENTIALS_PATH, JSON.stringify(creds, null, 2), { mode: 0o600 })
+}
+
+export function loadCredentials(): Credentials | null {
+  try {
+    const raw = fs.readFileSync(CREDENTIALS_PATH, 'utf-8')
+    return JSON.parse(raw) as Credentials
+  } catch {
+    return null
+  }
+}
+
+export function clearCredentials(): void {
+  try {
+    fs.unlinkSync(CREDENTIALS_PATH)
+  } catch {
+    // Already gone
+  }
+}
+
+export function saveConfig(config: Config): void {
+  ensureDir()
+  fs.writeFileSync(CONFIG_PATH, JSON.stringify(config, null, 2))
+}
+
+export function loadConfig(): Config | null {
+  try {
+    const raw = fs.readFileSync(CONFIG_PATH, 'utf-8')
+    return JSON.parse(raw) as Config
+  } catch {
+    return null
+  }
+}