@agent-native/core 0.15.0 → 0.15.1

package/dist/tools/slots/schema.js

@@ -0,0 +1,76 @@
+/**
+ * Drizzle schema for the tool extension-points system.
+ *
+ * Two tables:
+ *
+ * - `tool_slots`     — declarations: "tool X can render in slot Y". Authored
+ *                      once per tool, regardless of installer.
+ * - `tool_slot_installs` — per-user installs: "user U wants tool X in slot Y at
+ *                          position N". Always scoped by owner_email.
+ *
+ * Neither table spreads `ownableColumns()` — they're not first-class shareable
+ * resources. Access to the underlying tool flows through the existing `tools`
+ * table sharing model; install rows are personal preferences scoped to the
+ * installing user.
+ */
+import { table, text, integer, now } from "../../db/schema.js";
+export const toolSlots = table("tool_slots", {
+    id: text("id").primaryKey(),
+    toolId: text("tool_id").notNull(),
+    slotId: text("slot_id").notNull(),
+    config: text("config"),
+    createdAt: text("created_at").notNull().default(now()),
+});
+export const toolSlotInstalls = table("tool_slot_installs", {
+    id: text("id").primaryKey(),
+    toolId: text("tool_id").notNull(),
+    slotId: text("slot_id").notNull(),
+    ownerEmail: text("owner_email").notNull(),
+    orgId: text("org_id"),
+    position: integer("position").notNull().default(0),
+    config: text("config"),
+    createdAt: text("created_at").notNull().default(now()),
+    updatedAt: text("updated_at").notNull().default(now()),
+});
+export const TOOL_SLOTS_CREATE_SQL = `CREATE TABLE IF NOT EXISTS tool_slots (
+  id TEXT PRIMARY KEY,
+  tool_id TEXT NOT NULL,
+  slot_id TEXT NOT NULL,
+  config TEXT,
+  created_at TEXT NOT NULL DEFAULT (datetime('now'))
+)`;
+export const TOOL_SLOTS_CREATE_SQL_PG = `CREATE TABLE IF NOT EXISTS tool_slots (
+  id TEXT PRIMARY KEY,
+  tool_id TEXT NOT NULL,
+  slot_id TEXT NOT NULL,
+  config TEXT,
+  created_at TEXT NOT NULL DEFAULT now()
+)`;
+export const TOOL_SLOTS_BY_SLOT_INDEX_SQL = `CREATE INDEX IF NOT EXISTS tool_slots_by_slot_idx ON tool_slots (slot_id)`;
+export const TOOL_SLOTS_BY_TOOL_INDEX_SQL = `CREATE INDEX IF NOT EXISTS tool_slots_by_tool_idx ON tool_slots (tool_id)`;
+export const TOOL_SLOTS_UNIQUE_INDEX_SQL = `CREATE UNIQUE INDEX IF NOT EXISTS tool_slots_unique_idx ON tool_slots (tool_id, slot_id)`;
+export const TOOL_SLOT_INSTALLS_CREATE_SQL = `CREATE TABLE IF NOT EXISTS tool_slot_installs (
+  id TEXT PRIMARY KEY,
+  tool_id TEXT NOT NULL,
+  slot_id TEXT NOT NULL,
+  owner_email TEXT NOT NULL,
+  org_id TEXT,
+  position INTEGER NOT NULL DEFAULT 0,
+  config TEXT,
+  created_at TEXT NOT NULL DEFAULT (datetime('now')),
+  updated_at TEXT NOT NULL DEFAULT (datetime('now'))
+)`;
+export const TOOL_SLOT_INSTALLS_CREATE_SQL_PG = `CREATE TABLE IF NOT EXISTS tool_slot_installs (
+  id TEXT PRIMARY KEY,
+  tool_id TEXT NOT NULL,
+  slot_id TEXT NOT NULL,
+  owner_email TEXT NOT NULL,
+  org_id TEXT,
+  position INTEGER NOT NULL DEFAULT 0,
+  config TEXT,
+  created_at TEXT NOT NULL DEFAULT now(),
+  updated_at TEXT NOT NULL DEFAULT now()
+)`;
+export const TOOL_SLOT_INSTALLS_BY_USER_SLOT_INDEX_SQL = `CREATE INDEX IF NOT EXISTS tool_slot_installs_by_user_slot_idx ON tool_slot_installs (owner_email, slot_id)`;
+export const TOOL_SLOT_INSTALLS_UNIQUE_INDEX_SQL = `CREATE UNIQUE INDEX IF NOT EXISTS tool_slot_installs_unique_idx ON tool_slot_installs (owner_email, tool_id, slot_id)`;
+//# sourceMappingURL=schema.js.map

package/dist/tools/slots/schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.js","sourceRoot":"","sources":["../../../src/tools/slots/schema.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,oBAAoB,CAAC;AAE/D,MAAM,CAAC,MAAM,SAAS,GAAG,KAAK,CAAC,YAAY,EAAE;IAC3C,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAC3B,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;IACjC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;IACjC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;IACtB,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;CACvD,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,CAAC,oBAAoB,EAAE;IAC1D,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE;IAC3B,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;IACjC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;IACjC,UAAU,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,OAAO,EAAE;IACzC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC;IACrB,QAAQ,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IAClD,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;IACtB,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;IACtD,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;CACvD,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,qBAAqB,GAAG;;;;;;EAMnC,CAAC;AAEH,MAAM,CAAC,MAAM,wBAAwB,GAAG;;;;;;EAMtC,CAAC;AAEH,MAAM,CAAC,MAAM,4BAA4B,GAAG,2EAA2E,CAAC;AACxH,MAAM,CAAC,MAAM,4BAA4B,GAAG,2EAA2E,CAAC;AACxH,MAAM,CAAC,MAAM,2BAA2B,GAAG,0FAA0F,CAAC;AAEtI,MAAM,CAAC,MAAM,6BAA6B,GAAG;;;;;;;;;;EAU3C,CAAC;AAEH,MAAM,CAAC,MAAM,gCAAgC,GAAG;;;;;;;;;;EAU9C,CAAC;AAEH,MAAM,CAAC,MAAM,yCAAyC,GAAG,6GAA6G,CAAC;AACvK,MAAM,CAAC,MAAM,mCAAmC,GAAG,uHAAuH,CAAC","sourcesContent":["/**\n * Drizzle schema for the tool extension-points system.\n *\n * Two tables:\n *\n * - `tool_slots`     — declarations: \"tool X can render in slot Y\". Authored\n *                      once per tool, regardless of installer.\n * - `tool_slot_installs` — per-user installs: \"user U wants tool X in slot Y at\n *                          position N\". Always scoped by owner_email.\n *\n * Neither table spreads `ownableColumns()` — they're not first-class shareable\n * resources. Access to the underlying tool flows through the existing `tools`\n * table sharing model; install rows are personal preferences scoped to the\n * installing user.\n */\n\nimport { table, text, integer, now } from \"../../db/schema.js\";\n\nexport const toolSlots = table(\"tool_slots\", {\n  id: text(\"id\").primaryKey(),\n  toolId: text(\"tool_id\").notNull(),\n  slotId: text(\"slot_id\").notNull(),\n  config: text(\"config\"),\n  createdAt: text(\"created_at\").notNull().default(now()),\n});\n\nexport const toolSlotInstalls = table(\"tool_slot_installs\", {\n  id: text(\"id\").primaryKey(),\n  toolId: text(\"tool_id\").notNull(),\n  slotId: text(\"slot_id\").notNull(),\n  ownerEmail: text(\"owner_email\").notNull(),\n  orgId: text(\"org_id\"),\n  position: integer(\"position\").notNull().default(0),\n  config: text(\"config\"),\n  createdAt: text(\"created_at\").notNull().default(now()),\n  updatedAt: text(\"updated_at\").notNull().default(now()),\n});\n\nexport const TOOL_SLOTS_CREATE_SQL = `CREATE TABLE IF NOT EXISTS tool_slots (\n  id TEXT PRIMARY KEY,\n  tool_id TEXT NOT NULL,\n  slot_id TEXT NOT NULL,\n  config TEXT,\n  created_at TEXT NOT NULL DEFAULT (datetime('now'))\n)`;\n\nexport const TOOL_SLOTS_CREATE_SQL_PG = `CREATE TABLE IF NOT EXISTS tool_slots (\n  id TEXT PRIMARY KEY,\n  tool_id TEXT NOT NULL,\n  slot_id TEXT NOT NULL,\n  config TEXT,\n  created_at TEXT NOT NULL DEFAULT now()\n)`;\n\nexport const TOOL_SLOTS_BY_SLOT_INDEX_SQL = `CREATE INDEX IF NOT EXISTS tool_slots_by_slot_idx ON tool_slots (slot_id)`;\nexport const TOOL_SLOTS_BY_TOOL_INDEX_SQL = `CREATE INDEX IF NOT EXISTS tool_slots_by_tool_idx ON tool_slots (tool_id)`;\nexport const TOOL_SLOTS_UNIQUE_INDEX_SQL = `CREATE UNIQUE INDEX IF NOT EXISTS tool_slots_unique_idx ON tool_slots (tool_id, slot_id)`;\n\nexport const TOOL_SLOT_INSTALLS_CREATE_SQL = `CREATE TABLE IF NOT EXISTS tool_slot_installs (\n  id TEXT PRIMARY KEY,\n  tool_id TEXT NOT NULL,\n  slot_id TEXT NOT NULL,\n  owner_email TEXT NOT NULL,\n  org_id TEXT,\n  position INTEGER NOT NULL DEFAULT 0,\n  config TEXT,\n  created_at TEXT NOT NULL DEFAULT (datetime('now')),\n  updated_at TEXT NOT NULL DEFAULT (datetime('now'))\n)`;\n\nexport const TOOL_SLOT_INSTALLS_CREATE_SQL_PG = `CREATE TABLE IF NOT EXISTS tool_slot_installs (\n  id TEXT PRIMARY KEY,\n  tool_id TEXT NOT NULL,\n  slot_id TEXT NOT NULL,\n  owner_email TEXT NOT NULL,\n  org_id TEXT,\n  position INTEGER NOT NULL DEFAULT 0,\n  config TEXT,\n  created_at TEXT NOT NULL DEFAULT now(),\n  updated_at TEXT NOT NULL DEFAULT now()\n)`;\n\nexport const TOOL_SLOT_INSTALLS_BY_USER_SLOT_INDEX_SQL = `CREATE INDEX IF NOT EXISTS tool_slot_installs_by_user_slot_idx ON tool_slot_installs (owner_email, slot_id)`;\nexport const TOOL_SLOT_INSTALLS_UNIQUE_INDEX_SQL = `CREATE UNIQUE INDEX IF NOT EXISTS tool_slot_installs_unique_idx ON tool_slot_installs (owner_email, tool_id, slot_id)`;\n"]}

package/dist/tools/slots/store.d.ts

@@ -0,0 +1,66 @@
+export declare function ensureSlotTables(): Promise<void>;
+export interface ToolSlotRow {
+    id: string;
+    toolId: string;
+    slotId: string;
+    config: string | null;
+    createdAt: string;
+}
+export interface ToolSlotInstallRow {
+    id: string;
+    toolId: string;
+    slotId: string;
+    ownerEmail: string;
+    orgId: string | null;
+    position: number;
+    config: string | null;
+    createdAt: string;
+    updatedAt: string;
+}
+/**
+ * Declare that a tool can render in a slot. Caller must have editor access on
+ * the tool (only people who can edit a tool can change its slot targets).
+ */
+export declare function addToolSlotTarget(toolId: string, slotId: string, config?: string): Promise<ToolSlotRow>;
+export declare function removeToolSlotTarget(toolId: string, slotId: string): Promise<boolean>;
+export declare function listSlotsForTool(toolId: string): Promise<ToolSlotRow[]>;
+/**
+ * List tools that declare a slot — but only tools the current user has access
+ * to. Joins through the tools access filter.
+ */
+export declare function listToolsForSlot(slotId: string): Promise<Array<{
+    toolId: string;
+    name: string;
+    description: string;
+    icon: string | null;
+    config: string | null;
+}>>;
+/**
+ * Install a tool into a slot for the current user. Verifies the user has at
+ * least viewer access to the tool. Idempotent — re-installing returns the
+ * existing row.
+ */
+export declare function installToolSlot(toolId: string, slotId: string, opts?: {
+    position?: number;
+    config?: string;
+}): Promise<ToolSlotInstallRow>;
+export declare function uninstallToolSlot(toolId: string, slotId: string): Promise<boolean>;
+/**
+ * List the current user's installs for a slot. Joins with `tools` so the
+ * caller gets tool name/description/icon/updatedAt without a second query.
+ * Tools the user has lost access to are silently skipped (lazy garbage
+ * collection).
+ */
+export declare function listSlotInstallsForUser(slotId: string): Promise<Array<{
+    installId: string;
+    toolId: string;
+    name: string;
+    description: string;
+    icon: string | null;
+    updatedAt: string;
+    position: number;
+    config: string | null;
+}>>;
+/** Delete every slot/install row referencing a tool. Called from deleteTool. */
+export declare function cascadeDeleteToolSlots(toolId: string): Promise<void>;
+//# sourceMappingURL=store.d.ts.map

package/dist/tools/slots/store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"store.d.ts","sourceRoot":"","sources":["../../../src/tools/slots/store.ts"],"names":[],"mappings":"AA4BA,wBAAsB,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC,CAmBtD;AAED,MAAM,WAAW,WAAW;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,MAAM,GACd,OAAO,CAAC,WAAW,CAAC,CA+BtB;AAED,wBAAsB,oBAAoB,CACxC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,OAAO,CAAC,CAQlB;AAED,wBAAsB,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC,CAS7E;AAED;;;GAGG;AACH,wBAAsB,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAC7D,KAAK,CAAC;IACJ,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB,CAAC,CACH,CA8BA;AAED;;;;GAIG;AACH,wBAAsB,eAAe,CACnC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,EACd,IAAI,CAAC,EAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,GAC5C,OAAO,CAAC,kBAAkB,CAAC,CA+C7B;AAED,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,OAAO,CAAC,CAclB;AAED;;;;;GAKG;AACH,wBAAsB,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CACpE,KAAK,CAAC;IACJ,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;CACvB,CAAC,CACH,CA4CA;AAED,gFAAgF;AAChF,wBAAsB,sBAAsB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAK1E"}

package/dist/tools/slots/store.js

@@ -0,0 +1,227 @@
+import { randomUUID } from "node:crypto";
+import { and, eq, inArray, sql } from "drizzle-orm";
+import { getDbExec, isPostgres } from "../../db/client.js";
+import { createGetDb } from "../../db/create-get-db.js";
+import { accessFilter, assertAccess } from "../../sharing/access.js";
+import { getRequestUserEmail, getRequestOrgId, } from "../../server/request-context.js";
+import { tools, toolShares } from "../schema.js";
+import { toolSlots, toolSlotInstalls, TOOL_SLOTS_CREATE_SQL, TOOL_SLOTS_CREATE_SQL_PG, TOOL_SLOTS_BY_SLOT_INDEX_SQL, TOOL_SLOTS_BY_TOOL_INDEX_SQL, TOOL_SLOTS_UNIQUE_INDEX_SQL, TOOL_SLOT_INSTALLS_CREATE_SQL, TOOL_SLOT_INSTALLS_CREATE_SQL_PG, TOOL_SLOT_INSTALLS_BY_USER_SLOT_INDEX_SQL, TOOL_SLOT_INSTALLS_UNIQUE_INDEX_SQL, } from "./schema.js";
+const getDb = createGetDb({ tools, toolShares, toolSlots, toolSlotInstalls });
+let _initPromise;
+export async function ensureSlotTables() {
+    if (!_initPromise) {
+        _initPromise = (async () => {
+            const client = getDbExec();
+            const pg = isPostgres();
+            await client.execute(pg ? TOOL_SLOTS_CREATE_SQL_PG : TOOL_SLOTS_CREATE_SQL);
+            await client.execute(TOOL_SLOTS_BY_SLOT_INDEX_SQL);
+            await client.execute(TOOL_SLOTS_BY_TOOL_INDEX_SQL);
+            await client.execute(TOOL_SLOTS_UNIQUE_INDEX_SQL);
+            await client.execute(pg ? TOOL_SLOT_INSTALLS_CREATE_SQL_PG : TOOL_SLOT_INSTALLS_CREATE_SQL);
+            await client.execute(TOOL_SLOT_INSTALLS_BY_USER_SLOT_INDEX_SQL);
+            await client.execute(TOOL_SLOT_INSTALLS_UNIQUE_INDEX_SQL);
+        })();
+    }
+    return _initPromise;
+}
+/**
+ * Declare that a tool can render in a slot. Caller must have editor access on
+ * the tool (only people who can edit a tool can change its slot targets).
+ */
+export async function addToolSlotTarget(toolId, slotId, config) {
+    await ensureSlotTables();
+    await assertAccess("tool", toolId, "editor");
+    const db = getDb();
+    const id = randomUUID();
+    const createdAt = new Date().toISOString();
+    const row = {
+        id,
+        toolId,
+        slotId,
+        config: config ?? null,
+        createdAt,
+    };
+    try {
+        await db.insert(toolSlots).values(row);
+    }
+    catch (err) {
+        // Unique index hit — already declared. Treat as idempotent: return existing.
+        if (String(err?.message ?? err)
+            .toLowerCase()
+            .includes("unique")) {
+            const existing = await db
+                .select()
+                .from(toolSlots)
+                .where(and(eq(toolSlots.toolId, toolId), eq(toolSlots.slotId, slotId)));
+            if (existing[0])
+                return existing[0];
+        }
+        throw err;
+    }
+    return row;
+}
+export async function removeToolSlotTarget(toolId, slotId) {
+    await ensureSlotTables();
+    await assertAccess("tool", toolId, "editor");
+    const db = getDb();
+    await db
+        .delete(toolSlots)
+        .where(and(eq(toolSlots.toolId, toolId), eq(toolSlots.slotId, slotId)));
+    return true;
+}
+export async function listSlotsForTool(toolId) {
+    await ensureSlotTables();
+    await assertAccess("tool", toolId, "viewer");
+    const db = getDb();
+    const rows = await db
+        .select()
+        .from(toolSlots)
+        .where(eq(toolSlots.toolId, toolId));
+    return rows;
+}
+/**
+ * List tools that declare a slot — but only tools the current user has access
+ * to. Joins through the tools access filter.
+ */
+export async function listToolsForSlot(slotId) {
+    await ensureSlotTables();
+    const db = getDb();
+    // Pull tools the user can see, then narrow to ones declaring this slot.
+    const accessible = await db
+        .select({
+        id: tools.id,
+        name: tools.name,
+        description: tools.description,
+        icon: tools.icon,
+    })
+        .from(tools)
+        .where(accessFilter(tools, toolShares));
+    if (accessible.length === 0)
+        return [];
+    const ids = accessible.map((t) => t.id);
+    const declarations = await db
+        .select()
+        .from(toolSlots)
+        .where(and(eq(toolSlots.slotId, slotId), inArray(toolSlots.toolId, ids)));
+    const byId = new Map(accessible.map((t) => [t.id, t]));
+    return declarations.map((d) => {
+        const t = byId.get(d.toolId);
+        return {
+            toolId: d.toolId,
+            name: t.name,
+            description: t.description,
+            icon: t.icon,
+            config: d.config,
+        };
+    });
+}
+/**
+ * Install a tool into a slot for the current user. Verifies the user has at
+ * least viewer access to the tool. Idempotent — re-installing returns the
+ * existing row.
+ */
+export async function installToolSlot(toolId, slotId, opts) {
+    await ensureSlotTables();
+    await assertAccess("tool", toolId, "viewer");
+    const userEmail = requireUserEmail();
+    const orgId = getRequestOrgId();
+    const db = getDb();
+    const existing = await db
+        .select()
+        .from(toolSlotInstalls)
+        .where(and(eq(toolSlotInstalls.ownerEmail, userEmail), eq(toolSlotInstalls.toolId, toolId), eq(toolSlotInstalls.slotId, slotId)));
+    if (existing[0])
+        return existing[0];
+    const id = randomUUID();
+    const now = new Date().toISOString();
+    let position = opts?.position;
+    if (position === undefined) {
+        const rows = await db
+            .select({ pos: sql `MAX(${toolSlotInstalls.position})` })
+            .from(toolSlotInstalls)
+            .where(and(eq(toolSlotInstalls.ownerEmail, userEmail), eq(toolSlotInstalls.slotId, slotId)));
+        const maxPos = Number(rows[0]?.pos ?? -1);
+        position = Number.isFinite(maxPos) ? maxPos + 1 : 0;
+    }
+    const row = {
+        id,
+        toolId,
+        slotId,
+        ownerEmail: userEmail,
+        orgId: orgId ?? null,
+        position,
+        config: opts?.config ?? null,
+        createdAt: now,
+        updatedAt: now,
+    };
+    await db.insert(toolSlotInstalls).values(row);
+    return row;
+}
+export async function uninstallToolSlot(toolId, slotId) {
+    await ensureSlotTables();
+    const userEmail = requireUserEmail();
+    const db = getDb();
+    await db
+        .delete(toolSlotInstalls)
+        .where(and(eq(toolSlotInstalls.ownerEmail, userEmail), eq(toolSlotInstalls.toolId, toolId), eq(toolSlotInstalls.slotId, slotId)));
+    return true;
+}
+/**
+ * List the current user's installs for a slot. Joins with `tools` so the
+ * caller gets tool name/description/icon/updatedAt without a second query.
+ * Tools the user has lost access to are silently skipped (lazy garbage
+ * collection).
+ */
+export async function listSlotInstallsForUser(slotId) {
+    await ensureSlotTables();
+    const userEmail = requireUserEmail();
+    const db = getDb();
+    const installs = await db
+        .select()
+        .from(toolSlotInstalls)
+        .where(and(eq(toolSlotInstalls.ownerEmail, userEmail), eq(toolSlotInstalls.slotId, slotId)));
+    if (installs.length === 0)
+        return [];
+    const accessible = await db
+        .select({
+        id: tools.id,
+        name: tools.name,
+        description: tools.description,
+        icon: tools.icon,
+        updatedAt: tools.updatedAt,
+    })
+        .from(tools)
+        .where(accessFilter(tools, toolShares));
+    const byId = new Map(accessible.map((t) => [t.id, t]));
+    return installs
+        .filter((i) => byId.has(i.toolId))
+        .sort((a, b) => a.position - b.position)
+        .map((i) => {
+        const t = byId.get(i.toolId);
+        return {
+            installId: i.id,
+            toolId: i.toolId,
+            name: t.name,
+            description: t.description,
+            icon: t.icon,
+            updatedAt: t.updatedAt,
+            position: i.position,
+            config: i.config,
+        };
+    });
+}
+/** Delete every slot/install row referencing a tool. Called from deleteTool. */
+export async function cascadeDeleteToolSlots(toolId) {
+    await ensureSlotTables();
+    const db = getDb();
+    await db.delete(toolSlots).where(eq(toolSlots.toolId, toolId));
+    await db.delete(toolSlotInstalls).where(eq(toolSlotInstalls.toolId, toolId));
+}
+function requireUserEmail() {
+    const email = getRequestUserEmail();
+    if (!email) {
+        throw new Error("Slot operations require an authenticated user.");
+    }
+    return email;
+}
+//# sourceMappingURL=store.js.map

package/dist/tools/slots/store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"store.js","sourceRoot":"","sources":["../../../src/tools/slots/store.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,GAAG,EAAE,EAAE,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AACpD,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAC3D,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AACrE,OAAO,EACL,mBAAmB,EACnB,eAAe,GAChB,MAAM,iCAAiC,CAAC;AACzC,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AACjD,OAAO,EACL,SAAS,EACT,gBAAgB,EAChB,qBAAqB,EACrB,wBAAwB,EACxB,4BAA4B,EAC5B,4BAA4B,EAC5B,2BAA2B,EAC3B,6BAA6B,EAC7B,gCAAgC,EAChC,yCAAyC,EACzC,mCAAmC,GACpC,MAAM,aAAa,CAAC;AAErB,MAAM,KAAK,GAAG,WAAW,CAAC,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB,EAAE,CAAC,CAAC;AAE9E,IAAI,YAAuC,CAAC;AAE5C,MAAM,CAAC,KAAK,UAAU,gBAAgB;IACpC,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,YAAY,GAAG,CAAC,KAAK,IAAI,EAAE;YACzB,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;YAC3B,MAAM,EAAE,GAAG,UAAU,EAAE,CAAC;YACxB,MAAM,MAAM,CAAC,OAAO,CAClB,EAAE,CAAC,CAAC,CAAC,wBAAwB,CAAC,CAAC,CAAC,qBAAqB,CACtD,CAAC;YACF,MAAM,MAAM,CAAC,OAAO,CAAC,4BAA4B,CAAC,CAAC;YACnD,MAAM,MAAM,CAAC,OAAO,CAAC,4BAA4B,CAAC,CAAC;YACnD,MAAM,MAAM,CAAC,OAAO,CAAC,2BAA2B,CAAC,CAAC;YAClD,MAAM,MAAM,CAAC,OAAO,CAClB,EAAE,CAAC,CAAC,CAAC,gCAAgC,CAAC,CAAC,CAAC,6BAA6B,CACtE,CAAC;YACF,MAAM,MAAM,CAAC,OAAO,CAAC,yCAAyC,CAAC,CAAC;YAChE,MAAM,MAAM,CAAC,OAAO,CAAC,mCAAmC,CAAC,CAAC;QAC5D,CAAC,CAAC,EAAE,CAAC;IACP,CAAC;IACD,OAAO,YAAY,CAAC;AACtB,CAAC;AAsBD;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,MAAc,EACd,MAAc,EACd,MAAe;IAEf,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;IAC7C,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,MAAM,EAAE,GAAG,UAAU,EAAE,CAAC;IACxB,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAC3C,MAAM,GAAG,GAAgB;QACvB,EAAE;QACF,MAAM;QACN,MAAM;QACN,MAAM,EAAE,MAAM,IAAI,IAAI;QACtB,SAAS;KACV,CAAC;IACF,IAAI,CAAC;QACH,MAAM,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACzC,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,6EAA6E;QAC7E,IACE,MAAM,CAAC,GAAG,EAAE,OAAO,IAAI,GAAG,CAAC;aACxB,WAAW,EAAE;aACb,QAAQ,CAAC,QAAQ,CAAC,EACrB,CAAC;YACD,MAAM,QAAQ,GAAG,MAAM,EAAE;iBACtB,MAAM,EAAE;iBACR,IAAI,CAAC,SAAS,CAAC;iBACf,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC;YAC1E,IAAI,QAAQ,CAAC,CAAC,CAAC;gBAAE,OAAO,QAAQ,CAAC,CAAC,CAAgB,CAAC;QACrD,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,MAAc,EACd,MAAc;IAEd,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;IAC7C,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,MAAM,EAAE;SACL,MAAM,CAAC,SAAS,CAAC;SACjB,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC;IAC1E,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,MAAc;IACnD,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;IAC7C,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,MAAM,IAAI,GAAG,MAAM,EAAE;SAClB,MAAM,EAAE;SACR,IAAI,CAAC,SAAS,CAAC;SACf,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;IACvC,OAAO,IAAqB,CAAC;AAC/B,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,MAAc;IASnD,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,wEAAwE;IACxE,MAAM,UAAU,GAAG,MAAM,EAAE;SACxB,MAAM,CAAC;QACN,EAAE,EAAE,KAAK,CAAC,EAAE;QACZ,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;KACjB,CAAC;SACD,IAAI,CAAC,KAAK,CAAC;SACX,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC;IAC1C,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IACvC,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;IAC7C,MAAM,YAAY,GAAG,MAAM,EAAE;SAC1B,MAAM,EAAE;SACR,IAAI,CAAC,SAAS,CAAC;SACf,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,SAAS,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC;IAC5E,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;IAC5D,OAAQ,YAA8B,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QAC/C,MAAM,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAE,CAAC;QAC9B,OAAO;YACL,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,MAAM,EAAE,CAAC,CAAC,MAAM;SACjB,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,MAAc,EACd,MAAc,EACd,IAA6C;IAE7C,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;IAC7C,MAAM,SAAS,GAAG,gBAAgB,EAAE,CAAC;IACrC,MAAM,KAAK,GAAG,eAAe,EAAE,CAAC;IAChC,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,MAAM,QAAQ,GAAG,MAAM,EAAE;SACtB,MAAM,EAAE;SACR,IAAI,CAAC,gBAAgB,CAAC;SACtB,KAAK,CACJ,GAAG,CACD,EAAE,CAAC,gBAAgB,CAAC,UAAU,EAAE,SAAS,CAAC,EAC1C,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,EACnC,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,CACpC,CACF,CAAC;IACJ,IAAI,QAAQ,CAAC,CAAC,CAAC;QAAE,OAAO,QAAQ,CAAC,CAAC,CAAuB,CAAC;IAE1D,MAAM,EAAE,GAAG,UAAU,EAAE,CAAC;IACxB,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrC,IAAI,QAAQ,GAAG,IAAI,EAAE,QAAQ,CAAC;IAC9B,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,MAAM,IAAI,GAAG,MAAM,EAAE;aAClB,MAAM,CAAC,EAAE,GAAG,EAAE,GAAG,CAAQ,OAAO,gBAAgB,CAAC,QAAQ,GAAG,EAAE,CAAC;aAC/D,IAAI,CAAC,gBAAgB,CAAC;aACtB,KAAK,CACJ,GAAG,CACD,EAAE,CAAC,gBAAgB,CAAC,UAAU,EAAE,SAAS,CAAC,EAC1C,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,CACpC,CACF,CAAC;QACJ,MAAM,MAAM,GAAG,MAAM,CAAE,IAAI,CAAC,CAAC,CAAS,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACnD,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACtD,CAAC;IACD,MAAM,GAAG,GAAuB;QAC9B,EAAE;QACF,MAAM;QACN,MAAM;QACN,UAAU,EAAE,SAAS;QACrB,KAAK,EAAE,KAAK,IAAI,IAAI;QACpB,QAAQ;QACR,MAAM,EAAE,IAAI,EAAE,MAAM,IAAI,IAAI;QAC5B,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,GAAG;KACf,CAAC;IACF,MAAM,EAAE,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAC9C,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,MAAc,EACd,MAAc;IAEd,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,SAAS,GAAG,gBAAgB,EAAE,CAAC;IACrC,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,MAAM,EAAE;SACL,MAAM,CAAC,gBAAgB,CAAC;SACxB,KAAK,CACJ,GAAG,CACD,EAAE,CAAC,gBAAgB,CAAC,UAAU,EAAE,SAAS,CAAC,EAC1C,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,EACnC,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,CACpC,CACF,CAAC;IACJ,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAAC,MAAc;IAY1D,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,SAAS,GAAG,gBAAgB,EAAE,CAAC;IACrC,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IAEnB,MAAM,QAAQ,GAAG,MAAM,EAAE;SACtB,MAAM,EAAE;SACR,IAAI,CAAC,gBAAgB,CAAC;SACtB,KAAK,CACJ,GAAG,CACD,EAAE,CAAC,gBAAgB,CAAC,UAAU,EAAE,SAAS,CAAC,EAC1C,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,CACpC,CACF,CAAC;IACJ,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAErC,MAAM,UAAU,GAAG,MAAM,EAAE;SACxB,MAAM,CAAC;QACN,EAAE,EAAE,KAAK,CAAC,EAAE;QACZ,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,SAAS,EAAE,KAAK,CAAC,SAAS;KAC3B,CAAC;SACD,IAAI,CAAC,KAAK,CAAC;SACX,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC;IAC1C,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;IAE5D,OAAQ,QAAiC;SACtC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;SACjC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC;SACvC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACT,MAAM,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAE,CAAC;QAC9B,OAAO;YACL,SAAS,EAAE,CAAC,CAAC,EAAE;YACf,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,MAAM,EAAE,CAAC,CAAC,MAAM;SACjB,CAAC;IACJ,CAAC,CAAC,CAAC;AACP,CAAC;AAED,gFAAgF;AAChF,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,MAAc;IACzD,MAAM,gBAAgB,EAAE,CAAC;IACzB,MAAM,EAAE,GAAG,KAAK,EAAE,CAAC;IACnB,MAAM,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;IAC/D,MAAM,EAAE,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;AAC/E,CAAC;AAED,SAAS,gBAAgB;IACvB,MAAM,KAAK,GAAG,mBAAmB,EAAE,CAAC;IACpC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACpE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC","sourcesContent":["import { randomUUID } from \"node:crypto\";\nimport { and, eq, inArray, sql } from \"drizzle-orm\";\nimport { getDbExec, isPostgres } from \"../../db/client.js\";\nimport { createGetDb } from \"../../db/create-get-db.js\";\nimport { accessFilter, assertAccess } from \"../../sharing/access.js\";\nimport {\n  getRequestUserEmail,\n  getRequestOrgId,\n} from \"../../server/request-context.js\";\nimport { tools, toolShares } from \"../schema.js\";\nimport {\n  toolSlots,\n  toolSlotInstalls,\n  TOOL_SLOTS_CREATE_SQL,\n  TOOL_SLOTS_CREATE_SQL_PG,\n  TOOL_SLOTS_BY_SLOT_INDEX_SQL,\n  TOOL_SLOTS_BY_TOOL_INDEX_SQL,\n  TOOL_SLOTS_UNIQUE_INDEX_SQL,\n  TOOL_SLOT_INSTALLS_CREATE_SQL,\n  TOOL_SLOT_INSTALLS_CREATE_SQL_PG,\n  TOOL_SLOT_INSTALLS_BY_USER_SLOT_INDEX_SQL,\n  TOOL_SLOT_INSTALLS_UNIQUE_INDEX_SQL,\n} from \"./schema.js\";\n\nconst getDb = createGetDb({ tools, toolShares, toolSlots, toolSlotInstalls });\n\nlet _initPromise: Promise<void> | undefined;\n\nexport async function ensureSlotTables(): Promise<void> {\n  if (!_initPromise) {\n    _initPromise = (async () => {\n      const client = getDbExec();\n      const pg = isPostgres();\n      await client.execute(\n        pg ? TOOL_SLOTS_CREATE_SQL_PG : TOOL_SLOTS_CREATE_SQL,\n      );\n      await client.execute(TOOL_SLOTS_BY_SLOT_INDEX_SQL);\n      await client.execute(TOOL_SLOTS_BY_TOOL_INDEX_SQL);\n      await client.execute(TOOL_SLOTS_UNIQUE_INDEX_SQL);\n      await client.execute(\n        pg ? TOOL_SLOT_INSTALLS_CREATE_SQL_PG : TOOL_SLOT_INSTALLS_CREATE_SQL,\n      );\n      await client.execute(TOOL_SLOT_INSTALLS_BY_USER_SLOT_INDEX_SQL);\n      await client.execute(TOOL_SLOT_INSTALLS_UNIQUE_INDEX_SQL);\n    })();\n  }\n  return _initPromise;\n}\n\nexport interface ToolSlotRow {\n  id: string;\n  toolId: string;\n  slotId: string;\n  config: string | null;\n  createdAt: string;\n}\n\nexport interface ToolSlotInstallRow {\n  id: string;\n  toolId: string;\n  slotId: string;\n  ownerEmail: string;\n  orgId: string | null;\n  position: number;\n  config: string | null;\n  createdAt: string;\n  updatedAt: string;\n}\n\n/**\n * Declare that a tool can render in a slot. Caller must have editor access on\n * the tool (only people who can edit a tool can change its slot targets).\n */\nexport async function addToolSlotTarget(\n  toolId: string,\n  slotId: string,\n  config?: string,\n): Promise<ToolSlotRow> {\n  await ensureSlotTables();\n  await assertAccess(\"tool\", toolId, \"editor\");\n  const db = getDb();\n  const id = randomUUID();\n  const createdAt = new Date().toISOString();\n  const row: ToolSlotRow = {\n    id,\n    toolId,\n    slotId,\n    config: config ?? null,\n    createdAt,\n  };\n  try {\n    await db.insert(toolSlots).values(row);\n  } catch (err: any) {\n    // Unique index hit — already declared. Treat as idempotent: return existing.\n    if (\n      String(err?.message ?? err)\n        .toLowerCase()\n        .includes(\"unique\")\n    ) {\n      const existing = await db\n        .select()\n        .from(toolSlots)\n        .where(and(eq(toolSlots.toolId, toolId), eq(toolSlots.slotId, slotId)));\n      if (existing[0]) return existing[0] as ToolSlotRow;\n    }\n    throw err;\n  }\n  return row;\n}\n\nexport async function removeToolSlotTarget(\n  toolId: string,\n  slotId: string,\n): Promise<boolean> {\n  await ensureSlotTables();\n  await assertAccess(\"tool\", toolId, \"editor\");\n  const db = getDb();\n  await db\n    .delete(toolSlots)\n    .where(and(eq(toolSlots.toolId, toolId), eq(toolSlots.slotId, slotId)));\n  return true;\n}\n\nexport async function listSlotsForTool(toolId: string): Promise<ToolSlotRow[]> {\n  await ensureSlotTables();\n  await assertAccess(\"tool\", toolId, \"viewer\");\n  const db = getDb();\n  const rows = await db\n    .select()\n    .from(toolSlots)\n    .where(eq(toolSlots.toolId, toolId));\n  return rows as ToolSlotRow[];\n}\n\n/**\n * List tools that declare a slot — but only tools the current user has access\n * to. Joins through the tools access filter.\n */\nexport async function listToolsForSlot(slotId: string): Promise<\n  Array<{\n    toolId: string;\n    name: string;\n    description: string;\n    icon: string | null;\n    config: string | null;\n  }>\n> {\n  await ensureSlotTables();\n  const db = getDb();\n  // Pull tools the user can see, then narrow to ones declaring this slot.\n  const accessible = await db\n    .select({\n      id: tools.id,\n      name: tools.name,\n      description: tools.description,\n      icon: tools.icon,\n    })\n    .from(tools)\n    .where(accessFilter(tools, toolShares));\n  if (accessible.length === 0) return [];\n  const ids = accessible.map((t: any) => t.id);\n  const declarations = await db\n    .select()\n    .from(toolSlots)\n    .where(and(eq(toolSlots.slotId, slotId), inArray(toolSlots.toolId, ids)));\n  const byId = new Map(accessible.map((t: any) => [t.id, t]));\n  return (declarations as ToolSlotRow[]).map((d) => {\n    const t = byId.get(d.toolId)!;\n    return {\n      toolId: d.toolId,\n      name: t.name,\n      description: t.description,\n      icon: t.icon,\n      config: d.config,\n    };\n  });\n}\n\n/**\n * Install a tool into a slot for the current user. Verifies the user has at\n * least viewer access to the tool. Idempotent — re-installing returns the\n * existing row.\n */\nexport async function installToolSlot(\n  toolId: string,\n  slotId: string,\n  opts?: { position?: number; config?: string },\n): Promise<ToolSlotInstallRow> {\n  await ensureSlotTables();\n  await assertAccess(\"tool\", toolId, \"viewer\");\n  const userEmail = requireUserEmail();\n  const orgId = getRequestOrgId();\n  const db = getDb();\n  const existing = await db\n    .select()\n    .from(toolSlotInstalls)\n    .where(\n      and(\n        eq(toolSlotInstalls.ownerEmail, userEmail),\n        eq(toolSlotInstalls.toolId, toolId),\n        eq(toolSlotInstalls.slotId, slotId),\n      ),\n    );\n  if (existing[0]) return existing[0] as ToolSlotInstallRow;\n\n  const id = randomUUID();\n  const now = new Date().toISOString();\n  let position = opts?.position;\n  if (position === undefined) {\n    const rows = await db\n      .select({ pos: sql<number>`MAX(${toolSlotInstalls.position})` })\n      .from(toolSlotInstalls)\n      .where(\n        and(\n          eq(toolSlotInstalls.ownerEmail, userEmail),\n          eq(toolSlotInstalls.slotId, slotId),\n        ),\n      );\n    const maxPos = Number((rows[0] as any)?.pos ?? -1);\n    position = Number.isFinite(maxPos) ? maxPos + 1 : 0;\n  }\n  const row: ToolSlotInstallRow = {\n    id,\n    toolId,\n    slotId,\n    ownerEmail: userEmail,\n    orgId: orgId ?? null,\n    position,\n    config: opts?.config ?? null,\n    createdAt: now,\n    updatedAt: now,\n  };\n  await db.insert(toolSlotInstalls).values(row);\n  return row;\n}\n\nexport async function uninstallToolSlot(\n  toolId: string,\n  slotId: string,\n): Promise<boolean> {\n  await ensureSlotTables();\n  const userEmail = requireUserEmail();\n  const db = getDb();\n  await db\n    .delete(toolSlotInstalls)\n    .where(\n      and(\n        eq(toolSlotInstalls.ownerEmail, userEmail),\n        eq(toolSlotInstalls.toolId, toolId),\n        eq(toolSlotInstalls.slotId, slotId),\n      ),\n    );\n  return true;\n}\n\n/**\n * List the current user's installs for a slot. Joins with `tools` so the\n * caller gets tool name/description/icon/updatedAt without a second query.\n * Tools the user has lost access to are silently skipped (lazy garbage\n * collection).\n */\nexport async function listSlotInstallsForUser(slotId: string): Promise<\n  Array<{\n    installId: string;\n    toolId: string;\n    name: string;\n    description: string;\n    icon: string | null;\n    updatedAt: string;\n    position: number;\n    config: string | null;\n  }>\n> {\n  await ensureSlotTables();\n  const userEmail = requireUserEmail();\n  const db = getDb();\n\n  const installs = await db\n    .select()\n    .from(toolSlotInstalls)\n    .where(\n      and(\n        eq(toolSlotInstalls.ownerEmail, userEmail),\n        eq(toolSlotInstalls.slotId, slotId),\n      ),\n    );\n  if (installs.length === 0) return [];\n\n  const accessible = await db\n    .select({\n      id: tools.id,\n      name: tools.name,\n      description: tools.description,\n      icon: tools.icon,\n      updatedAt: tools.updatedAt,\n    })\n    .from(tools)\n    .where(accessFilter(tools, toolShares));\n  const byId = new Map(accessible.map((t: any) => [t.id, t]));\n\n  return (installs as ToolSlotInstallRow[])\n    .filter((i) => byId.has(i.toolId))\n    .sort((a, b) => a.position - b.position)\n    .map((i) => {\n      const t = byId.get(i.toolId)!;\n      return {\n        installId: i.id,\n        toolId: i.toolId,\n        name: t.name,\n        description: t.description,\n        icon: t.icon,\n        updatedAt: t.updatedAt,\n        position: i.position,\n        config: i.config,\n      };\n    });\n}\n\n/** Delete every slot/install row referencing a tool. Called from deleteTool. */\nexport async function cascadeDeleteToolSlots(toolId: string): Promise<void> {\n  await ensureSlotTables();\n  const db = getDb();\n  await db.delete(toolSlots).where(eq(toolSlots.toolId, toolId));\n  await db.delete(toolSlotInstalls).where(eq(toolSlotInstalls.toolId, toolId));\n}\n\nfunction requireUserEmail(): string {\n  const email = getRequestUserEmail();\n  if (!email) {\n    throw new Error(\"Slot operations require an authenticated user.\");\n  }\n  return email;\n}\n"]}

package/dist/tools/store.d.ts

@@ -0,0 +1,40 @@
+export declare function ensureToolsTables(): Promise<void>;
+export declare function registerToolsShareable(): void;
+export interface ToolRow {
+    id: string;
+    name: string;
+    description: string;
+    content: string;
+    icon: string | null;
+    createdAt: string;
+    updatedAt: string;
+    ownerEmail: string;
+    orgId: string | null;
+    visibility: "private" | "org" | "public";
+}
+export declare function listTools(): Promise<ToolRow[]>;
+export declare function getTool(id: string): Promise<ToolRow | null>;
+export interface CreateToolData {
+    name: string;
+    description?: string;
+    content?: string;
+    icon?: string;
+}
+export declare function createTool(data: CreateToolData): Promise<ToolRow>;
+export interface UpdateToolData {
+    name?: string;
+    description?: string;
+    icon?: string;
+    visibility?: "private" | "org" | "public";
+}
+export declare function updateTool(id: string, data: UpdateToolData): Promise<ToolRow | null>;
+export interface UpdateToolContentOpts {
+    content?: string;
+    patches?: Array<{
+        find: string;
+        replace: string;
+    }>;
+}
+export declare function updateToolContent(id: string, opts: UpdateToolContentOpts): Promise<ToolRow | null>;
+export declare function deleteTool(id: string): Promise<boolean>;
+//# sourceMappingURL=store.d.ts.map

package/dist/tools/store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"store.d.ts","sourceRoot":"","sources":["../../src/tools/store.ts"],"names":[],"mappings":"AAuCA,wBAAsB,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC,CA6CvD;AA4DD,wBAAgB,sBAAsB,SASrC;AAED,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,UAAU,EAAE,SAAS,GAAG,KAAK,GAAG,QAAQ,CAAC;CAC1C;AAED,wBAAsB,SAAS,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC,CAOpD;AAED,wBAAsB,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAIjE;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,wBAAsB,UAAU,CAAC,IAAI,EAAE,cAAc,GAAG,OAAO,CAAC,OAAO,CAAC,CA2BvE;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,SAAS,GAAG,KAAK,GAAG,QAAQ,CAAC;CAC3C;AAED,wBAAsB,UAAU,CAC9B,EAAE,EAAE,MAAM,EACV,IAAI,EAAE,cAAc,GACnB,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAczB;AAED,MAAM,WAAW,qBAAqB;IACpC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACpD;AAED,wBAAsB,iBAAiB,CACrC,EAAE,EAAE,MAAM,EACV,IAAI,EAAE,qBAAqB,GAC1B,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAyBzB;AAED,wBAAsB,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAe7D"}

package/dist/tools/store.js

@@ -0,0 +1,193 @@
+import { randomUUID } from "node:crypto";
+import { eq } from "drizzle-orm";
+import { getDbExec, isPostgres, retryOnDdlRace } from "../db/client.js";
+import { createGetDb } from "../db/create-get-db.js";
+import { accessFilter, assertAccess, resolveAccess, } from "../sharing/access.js";
+import { getRequestUserEmail, getRequestOrgId, } from "../server/request-context.js";
+import { registerShareableResource } from "../sharing/registry.js";
+import { tools, toolShares, TOOLS_CREATE_SQL, TOOLS_CREATE_SQL_PG, TOOL_SHARES_CREATE_SQL, TOOL_SHARES_CREATE_SQL_PG, TOOL_DATA_CREATE_SQL, TOOL_DATA_CREATE_SQL_PG, TOOL_DATA_ITEM_INDEX_SQL, TOOL_DATA_ITEM_INDEX_SQL_PG, TOOL_DATA_DROP_OLD_INDEX_SQL, TOOL_DATA_DROP_OLD_INDEX_SQL_PG, TOOLS_OWNER_INDEX_SQL, TOOLS_ORG_INDEX_SQL, TOOL_SHARES_RESOURCE_INDEX_SQL, TOOL_CONSENTS_CREATE_SQL, TOOL_CONSENTS_CREATE_SQL_PG, TOOL_CONSENTS_VIEWER_INDEX_SQL, } from "./schema.js";
+const getDb = createGetDb({ tools, toolShares });
+let _initPromise;
+export async function ensureToolsTables() {
+    if (!_initPromise) {
+        _initPromise = (async () => {
+            const client = getDbExec();
+            const pg = isPostgres();
+            await retryOnDdlRace(() => client.execute(pg ? TOOLS_CREATE_SQL_PG : TOOLS_CREATE_SQL));
+            await retryOnDdlRace(() => client.execute(pg ? TOOL_SHARES_CREATE_SQL_PG : TOOL_SHARES_CREATE_SQL));
+            await retryOnDdlRace(() => client.execute(pg ? TOOL_DATA_CREATE_SQL_PG : TOOL_DATA_CREATE_SQL));
+            await ensureToolDataItemId(client, pg);
+            await ensureToolDataScope(client, pg);
+            await client.execute(pg ? TOOL_DATA_DROP_OLD_INDEX_SQL_PG : TOOL_DATA_DROP_OLD_INDEX_SQL);
+            await retryOnDdlRace(() => client.execute(pg ? TOOL_DATA_ITEM_INDEX_SQL_PG : TOOL_DATA_ITEM_INDEX_SQL));
+            await retryOnDdlRace(() => client.execute(TOOLS_OWNER_INDEX_SQL));
+            await retryOnDdlRace(() => client.execute(TOOLS_ORG_INDEX_SQL));
+            await retryOnDdlRace(() => client.execute(TOOL_SHARES_RESOURCE_INDEX_SQL));
+            // tool_consents was introduced for an audit-C1 per-viewer consent
+            // gate that we removed once we settled on intra-org trust as the
+            // baseline. The table is kept (additive — never drop) so deploys
+            // that already created it stay healthy; the runtime consent code
+            // is gone. Idempotent CREATE IF NOT EXISTS for fresh schemas.
+            await retryOnDdlRace(() => client.execute(pg ? TOOL_CONSENTS_CREATE_SQL_PG : TOOL_CONSENTS_CREATE_SQL));
+            await retryOnDdlRace(() => client.execute(TOOL_CONSENTS_VIEWER_INDEX_SQL));
+        })();
+    }
+    return _initPromise;
+}
+async function ensureToolDataItemId(client, pg) {
+    if (pg) {
+        await client.execute(`ALTER TABLE tool_data ADD COLUMN IF NOT EXISTS item_id TEXT`);
+        return;
+    }
+    // Keep this additive: legacy rows with item_id=id are still read correctly
+    // through COALESCE(item_id, id), so SQLite never needs a table rebuild here.
+    try {
+        await client.execute(`ALTER TABLE tool_data ADD COLUMN item_id TEXT`);
+    }
+    catch (err) {
+        if (!String(err?.message ?? err)
+            .toLowerCase()
+            .includes("duplicate")) {
+            throw err;
+        }
+    }
+}
+async function ensureToolDataScope(client, pg) {
+    const addCol = (name, def) => {
+        if (pg) {
+            return client.execute(`ALTER TABLE tool_data ADD COLUMN IF NOT EXISTS ${name} ${def}`);
+        }
+        return client
+            .execute(`ALTER TABLE tool_data ADD COLUMN ${name} ${def}`)
+            .catch((err) => {
+            if (!String(err?.message ?? err)
+                .toLowerCase()
+                .includes("duplicate"))
+                throw err;
+        });
+    };
+    await addCol("scope", "TEXT NOT NULL DEFAULT 'user'");
+    await addCol("org_id", "TEXT");
+    await addCol("scope_key", "TEXT NOT NULL DEFAULT 'local@localhost'");
+    // One-time backfill migration: replaces the dev-mode DEFAULT scope_key
+    // with each row's real owner_email. Not a per-request fallback.
+    await client.execute(
+    // guard:allow-localhost-fallback — one-time backfill migration replacing dev-mode default scope_key with the row's real owner_email
+    `UPDATE tool_data SET scope_key = owner_email WHERE scope_key = 'local@localhost' AND owner_email != 'local@localhost'`);
+}
+export function registerToolsShareable() {
+    registerShareableResource({
+        type: "tool",
+        resourceTable: tools,
+        sharesTable: toolShares,
+        displayName: "Tool",
+        titleColumn: "name",
+        getDb: () => getDb(),
+    });
+}
+export async function listTools() {
+    await ensureToolsTables();
+    const db = getDb();
+    return db
+        .select()
+        .from(tools)
+        .where(accessFilter(tools, toolShares));
+}
+export async function getTool(id) {
+    await ensureToolsTables();
+    const access = await resolveAccess("tool", id);
+    return access?.resource ?? null;
+}
+export async function createTool(data) {
+    await ensureToolsTables();
+    const db = getDb();
+    const userEmail = getRequestUserEmail();
+    if (!userEmail)
+        throw new Error("no authenticated user");
+    const orgId = getRequestOrgId();
+    const id = randomUUID();
+    const now = new Date().toISOString();
+    const row = {
+        id,
+        name: data.name,
+        description: data.description ?? "",
+        content: data.content ?? "",
+        icon: data.icon ?? null,
+        createdAt: now,
+        updatedAt: now,
+        ownerEmail: userEmail,
+        orgId: orgId ?? null,
+        // Default to org-visibility when the user has an active organization so
+        // teammates see the tool in their sidebar — matching how analytics
+        // dashboards/analyses are scoped (`templates/analytics/server/lib/
+        // dashboards-store.ts:356`). Solo users (no org) get the private
+        // default. Owners can still flip back to private via update-tool.
+        visibility: orgId ? "org" : "private",
+    };
+    await db.insert(tools).values(row);
+    return row;
+}
+export async function updateTool(id, data) {
+    await ensureToolsTables();
+    await assertAccess("tool", id, "editor");
+    const db = getDb();
+    const updates = {
+        updatedAt: new Date().toISOString(),
+    };
+    if (data.name !== undefined)
+        updates.name = data.name;
+    if (data.description !== undefined)
+        updates.description = data.description;
+    if (data.icon !== undefined)
+        updates.icon = data.icon;
+    if (data.visibility !== undefined)
+        updates.visibility = data.visibility;
+    await db.update(tools).set(updates).where(eq(tools.id, id));
+    const rows = await db.select().from(tools).where(eq(tools.id, id));
+    return rows[0] ?? null;
+}
+export async function updateToolContent(id, opts) {
+    await ensureToolsTables();
+    await assertAccess("tool", id, "editor");
+    const db = getDb();
+    let newContent;
+    if (opts.content !== undefined) {
+        newContent = opts.content;
+    }
+    else if (opts.patches) {
+        const rows = await db.select().from(tools).where(eq(tools.id, id));
+        if (!rows[0])
+            return null;
+        newContent = rows[0].content;
+        for (const patch of opts.patches) {
+            newContent = newContent.replace(patch.find, patch.replace);
+        }
+    }
+    else {
+        return null;
+    }
+    await db
+        .update(tools)
+        .set({ content: newContent, updatedAt: new Date().toISOString() })
+        .where(eq(tools.id, id));
+    const rows = await db.select().from(tools).where(eq(tools.id, id));
+    return rows[0] ?? null;
+}
+export async function deleteTool(id) {
+    await ensureToolsTables();
+    await assertAccess("tool", id, "admin");
+    const db = getDb();
+    const rows = await db.select().from(tools).where(eq(tools.id, id));
+    if (!rows[0])
+        return false;
+    await db.delete(toolShares).where(eq(toolShares.resourceId, id));
+    await getDbExec().execute({
+        sql: `DELETE FROM tool_data WHERE tool_id = ?`,
+        args: [id],
+    });
+    const { cascadeDeleteToolSlots } = await import("./slots/store.js");
+    await cascadeDeleteToolSlots(id);
+    await db.delete(tools).where(eq(tools.id, id));
+    return true;
+}
+//# sourceMappingURL=store.js.map