fix: preserve HYPEMAN_BEARER_TOKEN precedence in push command

The push command historically preferred HYPEMAN_BEARER_TOKEN over
HYPEMAN_API_KEY. The refactoring to use the shared resolveAPIKey()
reversed this precedence, which could cause authentication failures
for environments that export both variables.

Check HYPEMAN_BEARER_TOKEN first in push, falling back to the shared
resolver (HYPEMAN_API_KEY > config file) when it is not set.

Author: cursoragent

pkg/cmd/push.go

@@ -65,7 +65,13 @@ func handlePush(ctx context.Context, cmd *cli.Command) error {
 		return fmt.Errorf("invalid target: %w", err)
 	}
 
-	token := resolveAPIKey()
+	// push historically preferred HYPEMAN_BEARER_TOKEN over HYPEMAN_API_KEY.
+	// Check the legacy variable first to preserve backward compatibility for
+	// environments that export both.
+	token := os.Getenv("HYPEMAN_BEARER_TOKEN")
+	if token == "" {
+		token = resolveAPIKey()
+	}
 
 	// Use custom transport that always sends Basic auth header
 	transport := &authTransport{