singularity-forge/src/wizard.ts

import type { AuthStorage } from '@gsd/pi-coding-agent'

// ─── Env hydration ────────────────────────────────────────────────────────────

/**
 * Hydrate process.env from stored auth.json credentials for optional tool keys.
 * Runs on every launch so extensions see Brave/Context7/Jina keys stored via the
 * wizard on prior launches.
 */
export function loadStoredEnvKeys(authStorage: AuthStorage): void {
  const providers: Array<[string, string]> = [
    ['brave',         'BRAVE_API_KEY'],
    ['brave_answers', 'BRAVE_ANSWERS_KEY'],
    ['context7',      'CONTEXT7_API_KEY'],
    ['jina',          'JINA_API_KEY'],
    ['tavily',        'TAVILY_API_KEY'],
    ['slack_bot',     'SLACK_BOT_TOKEN'],
    ['discord_bot',   'DISCORD_BOT_TOKEN'],
    ['telegram_bot',  'TELEGRAM_BOT_TOKEN'],
    ['groq',          'GROQ_API_KEY'],
    ['ollama-cloud',  'OLLAMA_API_KEY'],
    ['custom-openai', 'CUSTOM_OPENAI_API_KEY'],
  ]
  for (const [provider, envVar] of providers) {
    if (!process.env[envVar]) {
      // Use getCredentialsForProvider to skip empty-key entries at index 0
      // (left by legacy removeProviderToken which used set() with empty key)
      const creds = authStorage.getCredentialsForProvider(provider)
      const cred = creds.find((c: any) => c.type === 'api_key' && c.key)
      if (cred?.type === 'api_key' && (cred as any).key) {
        process.env[envVar] = (cred as any).key as string
      }
    }
  }
}