chore: lint & cleanup

Author: goosewin

cmd/assistant.go

@@ -24,6 +24,7 @@ import (
 	"fmt"
 	"io"
 	"os"
+	"path/filepath"
 	"strings"
 
 	"github.com/AlecAivazis/survey/v2"
@@ -249,7 +250,8 @@ Complex updates can also be done via the Vapi dashboard at https://dashboard.vap
 		var payloadBytes []byte
 
 		if filePath != "" {
-			b, err := os.ReadFile(filePath)
+			filePath = filepath.Clean(filePath)
+			b, err := os.ReadFile(filePath) // #nosec G304 - filePath is user-provided and intentional
 			if err != nil {
 				return fmt.Errorf("failed to read --file: %w", err)
 			}

pkg/auth/auth.go

@@ -352,99 +352,105 @@ func LoginWithAccountName(accountName string) error {
 		// First prefer matching by org ID when provided (most reliable)
 		if authManager.orgID != "" {
 			for existingName, existing := range cfg.Accounts {
-				if existing.OrgID == authManager.orgID {
-					cfg.Accounts[existingName] = config.Account{
-						APIKey:       apiKey,
-						Organization: authManager.orgName,
-						OrgID:        authManager.orgID,
-						Environment:  cfg.GetEnvironment(),
-						LoginTime:    time.Now().Format(time.RFC3339),
-						Label:        firstNonEmpty(authManager.label, existing.Label, existing.Email),
-					}
-					cfg.ActiveAccount = existingName
-
-					if err := config.SaveConfig(cfg); err != nil {
-						return fmt.Errorf("failed to save API key: %w", err)
-					}
-
-					fmt.Printf("\n✅ Re-authenticated existing account '%s'!\n", existingName)
-					fmt.Printf("Organization: %s\n", authManager.orgName)
-					if authManager.label != "" {
-						fmt.Printf("Label: %s\n", authManager.label)
-					}
-					if len(cfg.Accounts) > 1 {
-						fmt.Println("💡 Use 'vapi auth switch' to switch between accounts")
-					}
-					return nil
+				if existing.OrgID != authManager.orgID {
+					continue
 				}
+				cfg.Accounts[existingName] = config.Account{
+					APIKey:       apiKey,
+					Organization: authManager.orgName,
+					OrgID:        authManager.orgID,
+					Environment:  cfg.GetEnvironment(),
+					LoginTime:    time.Now().Format(time.RFC3339),
+					Label:        firstNonEmpty(authManager.label, existing.Label, existing.Email),
+				}
+				cfg.ActiveAccount = existingName
+
+				if err := config.SaveConfig(cfg); err != nil {
+					return fmt.Errorf("failed to save API key: %w", err)
+				}
+
+				fmt.Printf("\n✅ Re-authenticated existing account '%s'!\n", existingName)
+				fmt.Printf("Organization: %s\n", authManager.orgName)
+				if authManager.label != "" {
+					fmt.Printf("Label: %s\n", authManager.label)
+				}
+				if len(cfg.Accounts) > 1 {
+					fmt.Println("💡 Use 'vapi auth switch' to switch between accounts")
+				}
+				return nil
 			}
 		}
 
 		// Then try matching by organization name when provided
 		if authManager.orgName != "" {
 			for existingName, existing := range cfg.Accounts {
-				if strings.EqualFold(existing.Organization, authManager.orgName) {
-					cfg.Accounts[existingName] = config.Account{
-						APIKey:       apiKey,
-						Organization: authManager.orgName,
-						OrgID:        authManager.orgID,
-						Environment:  cfg.GetEnvironment(),
-						LoginTime:    time.Now().Format(time.RFC3339),
-						Label:        firstNonEmpty(authManager.label, existing.Label, existing.Email),
-					}
-					cfg.ActiveAccount = existingName
-
-					if err := config.SaveConfig(cfg); err != nil {
-						return fmt.Errorf("failed to save API key: %w", err)
-					}
-
-					fmt.Printf("\n✅ Re-authenticated existing account '%s'!\n", existingName)
-					fmt.Printf("Organization: %s\n", authManager.orgName)
-					if authManager.label != "" {
-						fmt.Printf("Label: %s\n", authManager.label)
-					}
-					if len(cfg.Accounts) > 1 {
-						fmt.Println("💡 Use 'vapi auth switch' to switch between accounts")
-					}
-					return nil
-				}
-			}
-		}
-
-		// Fallback: match by API key if the same key already exists
-		for existingName, existing := range cfg.Accounts {
-			if existing.APIKey == apiKey {
-				// Update existing account's login time and organization (if newly available)
-				orgName := authManager.orgName
-				if orgName == "" {
-					orgName = existing.Organization
+				if !strings.EqualFold(existing.Organization, authManager.orgName) {
+					continue
 				}
-
 				cfg.Accounts[existingName] = config.Account{
 					APIKey:       apiKey,
-					Organization: orgName,
+					Organization: authManager.orgName,
 					OrgID:        authManager.orgID,
 					Environment:  cfg.GetEnvironment(),
 					LoginTime:    time.Now().Format(time.RFC3339),
 					Label:        firstNonEmpty(authManager.label, existing.Label, existing.Email),
 				}
-				// Set as active account
 				cfg.ActiveAccount = existingName
 
 				if err := config.SaveConfig(cfg); err != nil {
 					return fmt.Errorf("failed to save API key: %w", err)
 				}
 
 				fmt.Printf("\n✅ Re-authenticated existing account '%s'!\n", existingName)
-				if orgName != "" {
-					fmt.Printf("Organization: %s\n", orgName)
+				fmt.Printf("Organization: %s\n", authManager.orgName)
+				if authManager.label != "" {
+					fmt.Printf("Label: %s\n", authManager.label)
 				}
 				if len(cfg.Accounts) > 1 {
 					fmt.Println("💡 Use 'vapi auth switch' to switch between accounts")
 				}
 				return nil
 			}
 		}
+
+		// Fallback: match by API key if the same key already exists
+		for existingName, existing := range cfg.Accounts {
+			if existing.APIKey != apiKey {
+				continue
+			}
+			// Update existing account's login time and organization (if newly available)
+			orgName := authManager.orgName
+			if orgName == "" {
+				orgName = existing.Organization
+			}
+
+			cfg.Accounts[existingName] = config.Account{
+				APIKey:       apiKey,
+				Organization: orgName,
+				OrgID:        authManager.orgID,
+				Environment:  cfg.GetEnvironment(),
+				LoginTime:    time.Now().Format(time.RFC3339),
+				Label:        firstNonEmpty(authManager.label, existing.Label, existing.Email),
+			}
+			// Set as active account
+			cfg.ActiveAccount = existingName
+
+			if err := config.SaveConfig(cfg); err != nil {
+				return fmt.Errorf("failed to save API key: %w", err)
+			}
+
+			fmt.Printf("\n✅ Re-authenticated existing account '%s'!\n", existingName)
+			if orgName != "" {
+				fmt.Printf("Organization: %s\n", orgName)
+			}
+			if authManager.label != "" {
+				fmt.Printf("Label: %s\n", authManager.label)
+			}
+			if len(cfg.Accounts) > 1 {
+				fmt.Println("💡 Use 'vapi auth switch' to switch between accounts")
+			}
+			return nil
+		}
 	}
 
 	// Generate account name if not provided

pkg/client/client.go

@@ -80,7 +80,7 @@ func (v *VapiClient) GetConfig() *config.Config {
 
 // DoRawJSON sends a raw JSON request to the Vapi API using the underlying client.
 // path should be like "/assistants/<id>". method is e.g. "PATCH".
-func (v *VapiClient) DoRawJSON(ctx context.Context, method string, path string, body []byte) (map[string]interface{}, error) {
+func (v *VapiClient) DoRawJSON(ctx context.Context, method, path string, body []byte) (map[string]interface{}, error) {
 	baseURL := strings.TrimRight(v.config.GetAPIBaseURL(), "/")
 	rel := "/" + strings.TrimLeft(path, "/")
 	url := baseURL + rel