feat(git): add git repository hosting command and skill

Adds `atxp git` CLI command (create, list, remote-url, delete) backed by
the git.mcp.atxp.ai MCP server. Includes a separate atxp-git skill with
documentation emphasizing the ephemeral nature of authenticated remote URLs.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: napoleond

packages/atxp/src/commands/git.ts

@@ -0,0 +1,111 @@
+import { callTool } from '../call-tool.js';
+import chalk from 'chalk';
+
+const SERVER = 'git.mcp.atxp.ai';
+
+export interface GitOptions {
+  writable?: boolean;
+  ttl?: number;
+  defaultBranch?: string;
+  visibility?: string;
+  limit?: number;
+  cursor?: string;
+}
+
+export async function gitCommand(
+  subCommand: string,
+  options: GitOptions,
+  positionalArg?: string
+): Promise<void> {
+  switch (subCommand) {
+    case 'create': {
+      if (!positionalArg) {
+        console.error(chalk.red('Error: Repository name is required'));
+        console.log(`Usage: ${chalk.cyan('npx atxp git create <repoName> [--visibility public|private] [--default-branch <branch>]')}`);
+        process.exit(1);
+      }
+      const args: Record<string, unknown> = { repoName: positionalArg };
+      if (options.visibility) args.visibility = options.visibility;
+      if (options.defaultBranch) args.defaultBranch = options.defaultBranch;
+      const result = await callTool(SERVER, 'git_create_repo', args);
+      console.log(result);
+      break;
+    }
+
+    case 'list': {
+      const args: Record<string, unknown> = {};
+      if (options.limit) args.limit = options.limit;
+      if (options.cursor) args.cursor = options.cursor;
+      const result = await callTool(SERVER, 'git_list_repos', args);
+      console.log(result);
+      break;
+    }
+
+    case 'remote-url': {
+      if (!positionalArg) {
+        console.error(chalk.red('Error: Repository name is required'));
+        console.log(`Usage: ${chalk.cyan('npx atxp git remote-url <repoName> [--writable] [--ttl <seconds>]')}`);
+        process.exit(1);
+      }
+      const args: Record<string, unknown> = { repoName: positionalArg };
+      if (options.writable) args.writable = true;
+      if (options.ttl) args.ttlSeconds = options.ttl;
+      const result = await callTool(SERVER, 'git_get_remote_url', args);
+      console.log(result);
+      break;
+    }
+
+    case 'delete': {
+      if (!positionalArg) {
+        console.error(chalk.red('Error: Repository name is required'));
+        console.log(`Usage: ${chalk.cyan('npx atxp git delete <repoName>')}`);
+        process.exit(1);
+      }
+      const result = await callTool(SERVER, 'git_delete_repo', { repoName: positionalArg });
+      console.log(result);
+      break;
+    }
+
+    case 'help':
+    case '':
+      console.log(chalk.bold('Git Repository Management'));
+      console.log();
+      console.log(chalk.bold('Usage:'));
+      console.log(`  npx atxp git ${chalk.yellow('<command>')} [options]`);
+      console.log();
+      console.log(chalk.bold('Commands:'));
+      console.log(`  ${chalk.cyan('create')} ${chalk.yellow('<repoName>')}      Create a new repository ($0.50)`);
+      console.log(`  ${chalk.cyan('list')}                    List your repositories (free)`);
+      console.log(`  ${chalk.cyan('remote-url')} ${chalk.yellow('<repoName>')}  Get an authenticated clone/push URL`);
+      console.log(`  ${chalk.cyan('delete')} ${chalk.yellow('<repoName>')}      Delete a repository (free)`);
+      console.log(`  ${chalk.cyan('help')}                    Show this help message`);
+      console.log();
+      console.log(chalk.bold('Options:'));
+      console.log(`  ${chalk.yellow('--writable')}              Request a writable URL ($0.01, default: read-only/free)`);
+      console.log(`  ${chalk.yellow('--ttl')} ${chalk.yellow('<seconds>')}        URL expiry in seconds (default: 3600)`);
+      console.log(`  ${chalk.yellow('--visibility')} ${chalk.yellow('<mode>')}    private or public (default: private)`);
+      console.log(`  ${chalk.yellow('--default-branch')} ${chalk.yellow('<name>')} Default branch name (default: main)`);
+      console.log(`  ${chalk.yellow('--limit')} ${chalk.yellow('<n>')}            Max repos to list (default: 20)`);
+      console.log(`  ${chalk.yellow('--cursor')} ${chalk.yellow('<token>')}       Pagination cursor for list`);
+      console.log();
+      console.log(chalk.bold('Examples:'));
+      console.log('  npx atxp git create my-project');
+      console.log('  npx atxp git create my-project --visibility public');
+      console.log('  npx atxp git list');
+      console.log('  npx atxp git remote-url my-project --writable');
+      console.log('  npx atxp git delete my-project');
+      console.log();
+      console.log(chalk.bold(chalk.yellow('Important: Remote URLs are ephemeral')));
+      console.log('  URLs from remote-url contain a time-limited JWT (default: 1 hour).');
+      console.log('  When expired, git operations return an auth error. Get a fresh URL:');
+      console.log(`    ${chalk.cyan('npx atxp git remote-url my-project --writable')}`);
+      console.log('  Then update the remote:');
+      console.log(`    ${chalk.cyan('git remote set-url origin <new-url>')}`);
+      break;
+
+    default:
+      console.error(chalk.red(`Unknown git command: ${subCommand}`));
+      console.log(`Run ${chalk.cyan('npx atxp git help')} for available commands.`);
+      process.exit(1);
+  }
+}

packages/atxp/src/help.ts

@@ -31,6 +31,7 @@ export function showHelp(): void {
   console.log('  ' + chalk.cyan('agent') + ' ' + chalk.yellow('<command>') + '   ' + 'Create and manage agent accounts');
   console.log('  ' + chalk.cyan('memory') + ' ' + chalk.yellow('<command>') + '  ' + 'Manage, search, and back up agent memory files');
   console.log('  ' + chalk.cyan('contacts') + ' ' + chalk.yellow('<command>') + '' + 'Manage local contacts with cloud backup');
+  console.log('  ' + chalk.cyan('git') + ' ' + chalk.yellow('<command>') + '     ' + 'Git repository hosting (create, clone, push)');
   console.log('  ' + chalk.cyan('notifications') + ' ' + chalk.yellow('enable') + '  ' + 'Enable push notifications');
   console.log('  ' + chalk.cyan('transactions') + ' ' + chalk.yellow('[options]') + ' ' + 'View recent transaction history');
   console.log();
@@ -144,6 +145,14 @@ export function showHelp(): void {
   console.log('  npx atxp contacts pull');
   console.log();
 
+  console.log(chalk.bold('Git Examples:'));
+  console.log('  npx atxp git create my-project           # Create a repo ($0.50)');
+  console.log('  npx atxp git list                        # List your repos');
+  console.log('  npx atxp git remote-url my-project       # Get a read-only clone URL');
+  console.log('  npx atxp git remote-url my-project --writable  # Get a push-capable URL ($0.01)');
+  console.log('  npx atxp git delete my-project           # Delete a repo');
+  console.log();
+
   console.log(chalk.bold('PAAS Examples:'));
   console.log('  npx atxp paas worker deploy my-api --code ./worker.js');
   console.log('  npx atxp paas db create my-database');

packages/atxp/src/index.ts

@@ -21,6 +21,7 @@ import { agentCommand } from './commands/agent.js';
 import { whoamiCommand } from './commands/whoami.js';
 
 import { memoryCommand, type MemoryOptions } from './commands/memory.js';
+import { gitCommand, type GitOptions } from './commands/git.js';
 import { contactsCommand } from './commands/contacts.js';
 import { transactionsCommand } from './commands/transactions.js';
 import { notificationsCommand } from './commands/notifications.js';
@@ -118,14 +119,15 @@ function parseArgs(): {
   musicOptions: MusicOptions;
   searchOptions: SearchOptions;
   memoryOptions: MemoryOptions;
+  gitOptions: GitOptions;
   contactsOptions: ContactsOptionsLocal;
 } {
   const command = process.argv[2];
   const subCommand = process.argv[3];
 
   // Check for help flags early - but NOT for paas or email commands (they handle --help internally)
   const helpFlag = process.argv.includes('--help') || process.argv.includes('-h');
-  if (helpFlag && command !== 'paas' && command !== 'email' && command !== 'phone' && command !== 'agent' && command !== 'fund' && command !== 'deposit' && command !== 'memory' && command !== 'backup' && command !== 'contacts' && command !== 'notifications') {
+  if (helpFlag && command !== 'paas' && command !== 'email' && command !== 'phone' && command !== 'agent' && command !== 'fund' && command !== 'deposit' && command !== 'memory' && command !== 'backup' && command !== 'contacts' && command !== 'notifications' && command !== 'git') {
     return {
       command: 'help',
       demoOptions: { port: 8017, dir: '', verbose: false, refresh: false },
@@ -139,6 +141,7 @@ function parseArgs(): {
       musicOptions: {},
       searchOptions: {},
       memoryOptions: {},
+      gitOptions: {},
       contactsOptions: {},
     };
   }
@@ -307,6 +310,16 @@ function parseArgs(): {
     topk: getArgValue('--topk', '') ? parseInt(getArgValue('--topk', '')!, 10) : undefined,
   };
 
+  // Parse git options
+  const gitOptions: GitOptions = {
+    writable: process.argv.includes('--writable'),
+    ttl: getArgValue('--ttl', '') ? parseInt(getArgValue('--ttl', '')!, 10) : undefined,
+    defaultBranch: getArgValue('--default-branch', ''),
+    visibility: getArgValue('--visibility', ''),
+    limit: getArgValue('--limit', '-l') ? parseInt(getArgValue('--limit', '-l')!, 10) : undefined,
+    cursor: getArgValue('--cursor', ''),
+  };
+
   // Parse contacts options
   const contactsOptions: ContactsOptionsLocal = {
     name: getArgValue('--name', ''),
@@ -329,11 +342,12 @@ function parseArgs(): {
     musicOptions,
     searchOptions,
     memoryOptions,
+    gitOptions,
     contactsOptions,
   };
 }
 
-const { command, subCommand, demoOptions, createOptions, loginOptions, emailOptions, phoneOptions, paasOptions, paasArgs, toolArgs, musicOptions, searchOptions, memoryOptions, contactsOptions } = parseArgs();
+const { command, subCommand, demoOptions, createOptions, loginOptions, emailOptions, phoneOptions, paasOptions, paasArgs, toolArgs, musicOptions, searchOptions, memoryOptions, gitOptions, contactsOptions } = parseArgs();
 
 // Extract positional args from argv, skipping flag values (e.g., --path <val> --topk <val>)
 function extractPositionalArgs(startIndex: number): string {
@@ -463,6 +477,10 @@ async function main() {
       await contactsCommand(subCommand || '', contactsOptions, process.argv[4]);
       break;
 
+    case 'git':
+      await gitCommand(subCommand || '', gitOptions, process.argv[4]);
+      break;
+
     case 'notifications':
       await notificationsCommand(subCommand || '');
       break;

skills/atxp-git/SKILL.md

@@ -0,0 +1,144 @@
+---
+name: atxp-git
+description: Git repository hosting for ATXP-authenticated agents — create repos, get authenticated clone/push URLs, and manage repositories on code.storage
+compatibility: Requires Node.js >=18 and npx. Requires git for clone/push operations.
+tags: [git, repository, hosting, code-storage, version-control, source-code, agent-code]
+permissions:
+  - network: "git.mcp.atxp.ai (HTTPS only), *.atxp.code.storage (Git over HTTPS)"
+  - filesystem: "Cloned repositories are written to the local filesystem by git"
+  - credentials: "ATXP_CONNECTION (required for all operations)"
+metadata:
+  homepage: https://docs.atxp.ai
+  source: https://github.com/atxp-dev/cli
+  npm: https://www.npmjs.com/package/atxp
+  requires:
+    binaries: [node, npx, git]
+    node: ">=18"
+    env:
+      - name: ATXP_CONNECTION
+        description: Authentication token for the ATXP API. Required for all git operations.
+        required: true
+---
+
+# ATXP Git — Agent Repository Hosting
+
+ATXP Git gives each agent a private namespace for Git repositories on [code.storage](https://code.storage). Agents can create repos, get authenticated clone/push URLs, and interact with them using standard Git commands. The MCP server handles provisioning and access control — all file operations happen through native Git.
+
+## Ephemeral Remote URLs
+
+**This is the most important concept to understand when using this tool.**
+
+Remote URLs returned by `remote-url` contain a **time-limited JWT** embedded directly in the URL. This means:
+
+1. **URLs expire.** The default TTL is 1 hour (3600 seconds). After expiry, any `git clone`, `git push`, `git pull`, or `git fetch` using that URL will fail with an authentication error.
+2. **URLs are not persistent.** Do **not** store remote URLs in config files, environment variables, or long-lived scripts expecting them to work indefinitely. They are single-use credentials with a short lifespan.
+3. **Refresh when expired.** When a git operation fails with an auth error, get a fresh URL and update the remote:
+
+```bash
+# Get a new writable URL
+npx atxp@latest git remote-url my-project --writable
+
+# Update the existing remote with the new URL
+git remote set-url origin <new-url>
+
+# Retry the operation
+git push
+```
+
+4. **No separate credential setup needed.** The URL embeds authentication — no `git credential` helper or SSH key configuration is required.
+5. **Read vs. write URLs.** Read-only URLs are free. Writable URLs cost $0.01 (this meters storage growth from pushes). Always request read-only unless you need to push.
+
+### Practical Workflow for Long-Running Tasks
+
+If your task involves multiple git operations over time:
+
+```
+1. Get a writable URL at the start of your work session
+2. Clone and make changes
+3. Commit and push before the URL expires (within 1 hour)
+4. If you need to push again later, get a fresh URL first
+```
+
+For tasks that may span multiple hours, request a new URL before each push rather than at the start. The `--ttl` flag can extend expiry up to the server maximum, but planning for refresh is more robust.
+
+## Security Model
+
+- **Repos are private by default** — only the owner can access them.
+- **Public repos** allow read-only access from other authenticated users via `remote-url` with `writable: false`.
+- **Write access** requires repo ownership. No collaborator model — repos are single-owner.
+- **URLs contain credentials** — treat `remote-url` output like a secret. Do not log, echo, or share writable URLs.
+- **Soft-delete** — deleted repos become immediately inaccessible but are permanently removed after 30 days.
+
+## Commands Reference
+
+| Command | Cost | Description |
+|---------|------|-------------|
+| `npx atxp@latest git create <repoName>` | $0.50 | Create a new repository |
+| `npx atxp@latest git list` | Free | List your repositories |
+| `npx atxp@latest git remote-url <repoName>` | Free | Get a read-only authenticated URL |
+| `npx atxp@latest git remote-url <repoName> --writable` | $0.01 | Get a writable authenticated URL |
+| `npx atxp@latest git delete <repoName>` | Free | Soft-delete a repository |
+| `npx atxp@latest git help` | Free | Show help |
+
+### Options
+
+| Option | Applies To | Description |
+|--------|-----------|-------------|
+| `--visibility <private\|public>` | create | Repository visibility (default: private) |
+| `--default-branch <name>` | create | Default branch name (default: main) |
+| `--writable` | remote-url | Request a push-capable URL ($0.01 instead of free) |
+| `--ttl <seconds>` | remote-url | URL expiry in seconds (default: 3600) |
+| `--limit <n>` | list | Max repos to return (default: 20, max: 100) |
+| `--cursor <token>` | list | Pagination cursor from a previous response |
+
+### Repo Naming
+
+Repository names must be lowercase alphanumeric with hyphens and underscores only (e.g., `my-project`, `agent_workspace`).
+
+## Typical Agent Workflow
+
+```bash
+# 1. Create a repository ($0.50)
+npx atxp@latest git create my-app
+
+# 2. Get a writable URL ($0.01)
+npx atxp@latest git remote-url my-app --writable
+# Returns: https://t:eyJ...@atxp.code.storage/userid/my-app.git
+
+# 3. Clone, work, push (standard git)
+git clone <url>
+cd my-app
+# ... make changes ...
+git add . && git commit -m "initial commit" && git push
+
+# 4. Later — URL expired? Get a fresh one
+npx atxp@latest git remote-url my-app --writable
+git remote set-url origin <new-url>
+git push
+```
+
+## Error Responses
+
+| Scenario | Error message |
+|----------|---------------|
+| Not authenticated | `"ATXP authentication required"` |
+| Repo doesn't exist (or private + not owner) | `"Repository not found"` |
+| Write to another user's repo | `"Permission denied"` |
+| Repo name already taken | `"Repository already exists"` |
+| Service unavailable | `"Service temporarily unavailable. Please retry in a few seconds."` |
+| Git ref conflict | `"Conflict: ... Re-read the current state and retry."` |
+
+## Visibility
+
+| Mode | Owner | Other authenticated users |
+|------|-------|---------------------------|
+| **Private** | Full read/write | No access |
+| **Public** | Full read/write | Read-only (via `remote-url` with read-only default) |
+
+## Rate Limits
+
+- **Per-client:** 120 requests/minute
+- **Per-IP:** 10,000 requests/minute
+
+Exceeding limits returns HTTP 429 with a `Retry-After` hint.
+

skills/atxp/SKILL.md

@@ -394,6 +394,7 @@ For programmatic access, ATXP exposes MCP-compatible tool servers:
 | `x-live-search.mcp.atxp.ai` | `x_live_search` |
 | `email.mcp.atxp.ai` | `email_check_inbox`, `email_get_message`, `email_send_email`, `email_reply`, `email_search`, `email_delete`, `email_get_attachment`, `email_claim_username`, `email_release_username` |
 | `phone.mcp.atxp.ai` | `phone_register`, `phone_release`, `phone_configure_voice`, `phone_send_sms`, `phone_check_sms`, `phone_get_sms`, `phone_get_attachment`, `phone_call`, `phone_check_calls`, `phone_get_call`, `phone_search` |
+| `git.mcp.atxp.ai` | `git_create_repo`, `git_list_repos`, `git_get_remote_url`, `git_delete_repo` (see `atxp-git` skill) |
 | `paas.mcp.atxp.ai` | PaaS tools (see `atxp-paas` skill) |
 
 ### TypeScript SDK
@@ -446,6 +447,14 @@ The **atxp-memory** skill provides agent memory management — cloud backup/rest
 npx skills add atxp-dev/cli --skill atxp-memory
 ```
 
+### ATXP Git
+
+The **atxp-git** skill provides Git repository hosting for agents — create repos, get authenticated clone/push URLs, and manage repositories on [code.storage](https://code.storage). It is packaged as a separate skill because it interacts with a **different service** (`git.mcp.atxp.ai` and `*.atxp.code.storage`) and writes cloned repositories to the local filesystem via native Git. Remote URLs are **ephemeral** — they embed a time-limited JWT and expire after 1 hour by default. If your agent needs to host, clone, or push code, install it separately:
+
+```bash
+npx skills add atxp-dev/cli --skill atxp-git
+```
+
 ## Support
 
 ```bash