Scripting + CI

Patterns for using the CLI from shell scripts, CI pipelines, and local automation. Stay --json-first, pipe to jq, and treat exit codes seriously.

Exit codes

Code	Meaning
0	Success.
1	Unknown / generic error.
2	Invalid arguments.
3	Authentication failure (401).
4	Authorization failure (403, scope mismatch).
5	Not found (404).
6	Conflict / state guard (409, 422).
7	Rate limited (429).
8	Network / transport.

Idempotent operations

Always set --idempotency-key on state-changing commands in CI. A retried script run with the same key replays cleanly:

1KEY="ci-${GITHUB_RUN_ID}-${GITHUB_RUN_ATTEMPT}"2 3aly-store-cli orders fulfill ord_72...4b \4  --carrier USPS --tracking 940011... \5  --idempotency-key "$KEY"

GitHub Actions example

1name: Import products2on:3  workflow_dispatch:4 5jobs:6  run:7    runs-on: ubuntu-latest8    steps:9      - uses: actions/checkout@v410      - uses: oven-sh/setup-bun@v111      - run: bun install12      - name: Import13        env:14          ALY_API_KEY: ${{ secrets.ALY_API_KEY_PROD }}15        run: |16          jq -c '.[]' products.json | while read row; do17            slug=$(echo "$row" | jq -r .slug)18            name=$(echo "$row" | jq -r .name)19            price=$(echo "$row" | jq -r .price_cents)20            bun tools/aly-store-cli.ts products create \21              --site-slug acme \22              --slug "$slug" \23              --name "$name" \24              --price "$price" \25              --idempotency-key "import-$slug" \26              --direct --json27          done

Polling vs webhooks

For event-driven work, prefer webhooks — register an endpoint, let Aly push. Polling is fine for one-shot scripts but never for a long-running loop; you'll hit the rate limit.

Error handling

1set -euo pipefail2 3# Fail fast on auth issues, but absorb a transient rate limit4if ! out=$(aly-store-cli orders list --status pending --json); then5  case $? in6    3|4) echo "Auth problem — fix the key"; exit 1;;7    7)   echo "Rate limited — retrying in 30s"; sleep 30;8         out=$(aly-store-cli orders list --status pending --json);;9    *)   echo "Unknown failure"; exit 1;;10  esac11fi12echo "$out" | jq '.[].id'

Lock the transport in CI

Pin --direct in CI scripts. The MCP transport is useful for human + agent parity but adds latency and JSON-RPC framing overhead. Direct mode is consistently faster and easier to debug.

Concurrency

The per-principal rate limit applies to the bearer, not the process. Parallel xargs with high concurrency will hit it fast. Cap at 5 concurrent calls in CI; back off on a 429.

Was this page helpful?