npm - @agenticmail/enterprise - Versions diffs - 0.5.327 → 0.5.329 - Mend

@agenticmail/enterprise 0.5.327 → 0.5.329

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (888) hide show

package/dist/agent-tools-F3CYENMK.js +13949 -0
package/dist/browser-tool-P57PLVW2.js +4002 -0
package/dist/chunk-3RI3AIJN.js +1519 -0
package/dist/chunk-AD4DFKHR.js +4928 -0
package/dist/chunk-UQXPVWXG.js +5101 -0
package/dist/cli-agent-K6UFZRXC.js +2473 -0
package/dist/cli-serve-4MT7RDEL.js +260 -0
package/dist/cli.js +3 -3
package/dist/dashboard/app.js +1 -1
package/dist/dashboard/components/transport-encryption.js +0 -62
package/dist/dashboard/pages/agent-detail/index.js +5 -2
package/dist/dashboard/pages/agent-detail/manager.js +1 -1
package/dist/dashboard/pages/agent-detail/overview.js +4 -2
package/dist/dashboard/pages/agent-detail/tool-security.js +1 -1
package/dist/dashboard/pages/domain-status.js +3 -6
package/dist/dashboard/pages/memory-transfer.js +1 -1
package/dist/dashboard/pages/messages.js +0 -1
package/dist/dashboard/pages/roles.js +0 -2
package/dist/dashboard/pages/workforce.js +0 -1
package/dist/index.js +3 -3
package/dist/runtime-L5ADJORP.js +45 -0
package/dist/server-KSN56EZQ.js +28 -0
package/dist/setup-UUNBBOQH.js +20 -0
package/logs/cloudflared-error.log +42 -0
package/logs/enterprise-out.log +6 -0
package/package.json +1 -1
package/src/admin/page-registry.ts +0 -290
package/src/admin/routes.ts +0 -2968
package/src/agent-tools/common.ts +0 -260
package/src/agent-tools/index.ts +0 -542
package/src/agent-tools/merge.ts +0 -62
package/src/agent-tools/middleware.ts +0 -436
package/src/agent-tools/schema/typebox.ts +0 -25
package/src/agent-tools/security.ts +0 -352
package/src/agent-tools/tool-resolver.ts +0 -1018
package/src/agent-tools/tools/agenticmail.ts +0 -1017
package/src/agent-tools/tools/bash.ts +0 -179
package/src/agent-tools/tools/browser-tool.schema.ts +0 -112
package/src/agent-tools/tools/browser-tool.ts +0 -388
package/src/agent-tools/tools/browser.ts +0 -764
package/src/agent-tools/tools/edit.ts +0 -100
package/src/agent-tools/tools/enterprise-code-sandbox.ts +0 -395
package/src/agent-tools/tools/enterprise-database.ts +0 -377
package/src/agent-tools/tools/enterprise-diff.ts +0 -580
package/src/agent-tools/tools/enterprise-documents.ts +0 -896
package/src/agent-tools/tools/enterprise-http.ts +0 -485
package/src/agent-tools/tools/enterprise-security-scan.ts +0 -528
package/src/agent-tools/tools/enterprise-spreadsheet.ts +0 -825
package/src/agent-tools/tools/glob.ts +0 -129
package/src/agent-tools/tools/google/calendar.ts +0 -230
package/src/agent-tools/tools/google/chat.ts +0 -725
package/src/agent-tools/tools/google/contacts.ts +0 -209
package/src/agent-tools/tools/google/docs.ts +0 -162
package/src/agent-tools/tools/google/drive.ts +0 -392
package/src/agent-tools/tools/google/forms.ts +0 -367
package/src/agent-tools/tools/google/gmail.ts +0 -897
package/src/agent-tools/tools/google/index.ts +0 -86
package/src/agent-tools/tools/google/maps.ts +0 -543
package/src/agent-tools/tools/google/meeting-voice.ts +0 -885
package/src/agent-tools/tools/google/meetings.ts +0 -1094
package/src/agent-tools/tools/google/sheets.ts +0 -215
package/src/agent-tools/tools/google/slides.ts +0 -559
package/src/agent-tools/tools/google/tasks.ts +0 -200
package/src/agent-tools/tools/grep.ts +0 -178
package/src/agent-tools/tools/integrations/_factory.ts +0 -102
package/src/agent-tools/tools/integrations/activecampaign.ts +0 -14
package/src/agent-tools/tools/integrations/adobe-sign.ts +0 -14
package/src/agent-tools/tools/integrations/adp.ts +0 -14
package/src/agent-tools/tools/integrations/airtable.ts +0 -14
package/src/agent-tools/tools/integrations/apollo.ts +0 -14
package/src/agent-tools/tools/integrations/asana.ts +0 -14
package/src/agent-tools/tools/integrations/auth0.ts +0 -14
package/src/agent-tools/tools/integrations/aws.ts +0 -14
package/src/agent-tools/tools/integrations/azure-devops.ts +0 -14
package/src/agent-tools/tools/integrations/bamboohr.ts +0 -14
package/src/agent-tools/tools/integrations/basecamp.ts +0 -14
package/src/agent-tools/tools/integrations/bigcommerce.ts +0 -14
package/src/agent-tools/tools/integrations/bitbucket.ts +0 -14
package/src/agent-tools/tools/integrations/box.ts +0 -14
package/src/agent-tools/tools/integrations/brex.ts +0 -14
package/src/agent-tools/tools/integrations/buffer.ts +0 -14
package/src/agent-tools/tools/integrations/calendly.ts +0 -14
package/src/agent-tools/tools/integrations/canva.ts +0 -14
package/src/agent-tools/tools/integrations/chargebee.ts +0 -14
package/src/agent-tools/tools/integrations/circleci.ts +0 -14
package/src/agent-tools/tools/integrations/clickup.ts +0 -14
package/src/agent-tools/tools/integrations/close.ts +0 -14
package/src/agent-tools/tools/integrations/cloudflare.ts +0 -14
package/src/agent-tools/tools/integrations/confluence.ts +0 -14
package/src/agent-tools/tools/integrations/contentful.ts +0 -14
package/src/agent-tools/tools/integrations/copper.ts +0 -14
package/src/agent-tools/tools/integrations/crisp.ts +0 -14
package/src/agent-tools/tools/integrations/crowdstrike.ts +0 -14
package/src/agent-tools/tools/integrations/datadog.ts +0 -14
package/src/agent-tools/tools/integrations/digitalocean.ts +0 -14
package/src/agent-tools/tools/integrations/discord.ts +0 -14
package/src/agent-tools/tools/integrations/docker.ts +0 -14
package/src/agent-tools/tools/integrations/docusign.ts +0 -14
package/src/agent-tools/tools/integrations/drift.ts +0 -14
package/src/agent-tools/tools/integrations/dropbox.ts +0 -14
package/src/agent-tools/tools/integrations/figma.ts +0 -14
package/src/agent-tools/tools/integrations/firebase.ts +0 -14
package/src/agent-tools/tools/integrations/flyio.ts +0 -14
package/src/agent-tools/tools/integrations/freshbooks.ts +0 -14
package/src/agent-tools/tools/integrations/freshdesk.ts +0 -14
package/src/agent-tools/tools/integrations/freshsales.ts +0 -14
package/src/agent-tools/tools/integrations/freshservice.ts +0 -14
package/src/agent-tools/tools/integrations/front.ts +0 -14
package/src/agent-tools/tools/integrations/github-actions.ts +0 -14
package/src/agent-tools/tools/integrations/github.ts +0 -14
package/src/agent-tools/tools/integrations/gitlab.ts +0 -14
package/src/agent-tools/tools/integrations/gong.ts +0 -14
package/src/agent-tools/tools/integrations/google-ads.ts +0 -14
package/src/agent-tools/tools/integrations/google-analytics.ts +0 -14
package/src/agent-tools/tools/integrations/google-cloud.ts +0 -14
package/src/agent-tools/tools/integrations/gotomeeting.ts +0 -14
package/src/agent-tools/tools/integrations/grafana.ts +0 -14
package/src/agent-tools/tools/integrations/greenhouse.ts +0 -14
package/src/agent-tools/tools/integrations/gusto.ts +0 -14
package/src/agent-tools/tools/integrations/hashicorp-vault.ts +0 -14
package/src/agent-tools/tools/integrations/heroku.ts +0 -14
package/src/agent-tools/tools/integrations/hibob.ts +0 -14
package/src/agent-tools/tools/integrations/hootsuite.ts +0 -14
package/src/agent-tools/tools/integrations/hubspot.ts +0 -14
package/src/agent-tools/tools/integrations/huggingface.ts +0 -14
package/src/agent-tools/tools/integrations/index.ts +0 -474
package/src/agent-tools/tools/integrations/intercom.ts +0 -14
package/src/agent-tools/tools/integrations/jira.ts +0 -14
package/src/agent-tools/tools/integrations/klaviyo.ts +0 -14
package/src/agent-tools/tools/integrations/kubernetes.ts +0 -14
package/src/agent-tools/tools/integrations/lattice.ts +0 -14
package/src/agent-tools/tools/integrations/launchdarkly.ts +0 -14
package/src/agent-tools/tools/integrations/lever.ts +0 -14
package/src/agent-tools/tools/integrations/linear.ts +0 -14
package/src/agent-tools/tools/integrations/linkedin.ts +0 -14
package/src/agent-tools/tools/integrations/livechat.ts +0 -14
package/src/agent-tools/tools/integrations/loom.ts +0 -14
package/src/agent-tools/tools/integrations/mailchimp.ts +0 -14
package/src/agent-tools/tools/integrations/mailgun.ts +0 -14
package/src/agent-tools/tools/integrations/miro.ts +0 -14
package/src/agent-tools/tools/integrations/mixpanel.ts +0 -14
package/src/agent-tools/tools/integrations/monday.ts +0 -14
package/src/agent-tools/tools/integrations/mongodb-atlas.ts +0 -14
package/src/agent-tools/tools/integrations/neon.ts +0 -14
package/src/agent-tools/tools/integrations/netlify.ts +0 -14
package/src/agent-tools/tools/integrations/netsuite.ts +0 -14
package/src/agent-tools/tools/integrations/newrelic.ts +0 -14
package/src/agent-tools/tools/integrations/notion.ts +0 -14
package/src/agent-tools/tools/integrations/okta.ts +0 -14
package/src/agent-tools/tools/integrations/openai.ts +0 -14
package/src/agent-tools/tools/integrations/opsgenie.ts +0 -14
package/src/agent-tools/tools/integrations/outreach.ts +0 -14
package/src/agent-tools/tools/integrations/paddle.ts +0 -14
package/src/agent-tools/tools/integrations/pagerduty.ts +0 -14
package/src/agent-tools/tools/integrations/pandadoc.ts +0 -14
package/src/agent-tools/tools/integrations/paypal.ts +0 -14
package/src/agent-tools/tools/integrations/personio.ts +0 -14
package/src/agent-tools/tools/integrations/pinecone.ts +0 -14
package/src/agent-tools/tools/integrations/pipedrive.ts +0 -14
package/src/agent-tools/tools/integrations/plaid.ts +0 -14
package/src/agent-tools/tools/integrations/postmark.ts +0 -14
package/src/agent-tools/tools/integrations/power-automate.ts +0 -14
package/src/agent-tools/tools/integrations/quickbooks.ts +0 -14
package/src/agent-tools/tools/integrations/recurly.ts +0 -14
package/src/agent-tools/tools/integrations/reddit.ts +0 -14
package/src/agent-tools/tools/integrations/render.ts +0 -14
package/src/agent-tools/tools/integrations/ringcentral.ts +0 -14
package/src/agent-tools/tools/integrations/rippling.ts +0 -14
package/src/agent-tools/tools/integrations/salesforce.ts +0 -14
package/src/agent-tools/tools/integrations/salesloft.ts +0 -14
package/src/agent-tools/tools/integrations/sanity.ts +0 -14
package/src/agent-tools/tools/integrations/sap.ts +0 -14
package/src/agent-tools/tools/integrations/segment.ts +0 -14
package/src/agent-tools/tools/integrations/sendgrid.ts +0 -14
package/src/agent-tools/tools/integrations/sentry.ts +0 -14
package/src/agent-tools/tools/integrations/servicenow.ts +0 -14
package/src/agent-tools/tools/integrations/shopify.ts +0 -14
package/src/agent-tools/tools/integrations/shortcut.ts +0 -14
package/src/agent-tools/tools/integrations/slack.ts +0 -14
package/src/agent-tools/tools/integrations/smartsheet.ts +0 -14
package/src/agent-tools/tools/integrations/snowflake.ts +0 -14
package/src/agent-tools/tools/integrations/snyk.ts +0 -14
package/src/agent-tools/tools/integrations/splunk.ts +0 -14
package/src/agent-tools/tools/integrations/square.ts +0 -14
package/src/agent-tools/tools/integrations/statuspage.ts +0 -14
package/src/agent-tools/tools/integrations/stripe.ts +0 -14
package/src/agent-tools/tools/integrations/supabase.ts +0 -14
package/src/agent-tools/tools/integrations/teamwork.ts +0 -14
package/src/agent-tools/tools/integrations/telegram.ts +0 -14
package/src/agent-tools/tools/integrations/terraform.ts +0 -14
package/src/agent-tools/tools/integrations/todoist.ts +0 -14
package/src/agent-tools/tools/integrations/trello.ts +0 -14
package/src/agent-tools/tools/integrations/twilio.ts +0 -14
package/src/agent-tools/tools/integrations/twitter.ts +0 -14
package/src/agent-tools/tools/integrations/vercel.ts +0 -14
package/src/agent-tools/tools/integrations/weaviate.ts +0 -14
package/src/agent-tools/tools/integrations/webex.ts +0 -14
package/src/agent-tools/tools/integrations/webflow.ts +0 -14
package/src/agent-tools/tools/integrations/whatsapp.ts +0 -14
package/src/agent-tools/tools/integrations/whereby.ts +0 -14
package/src/agent-tools/tools/integrations/woocommerce.ts +0 -14
package/src/agent-tools/tools/integrations/wordpress.ts +0 -14
package/src/agent-tools/tools/integrations/workday.ts +0 -14
package/src/agent-tools/tools/integrations/wrike.ts +0 -14
package/src/agent-tools/tools/integrations/xero.ts +0 -14
package/src/agent-tools/tools/integrations/youtube.ts +0 -14
package/src/agent-tools/tools/integrations/zendesk.ts +0 -14
package/src/agent-tools/tools/integrations/zoho-crm.ts +0 -14
package/src/agent-tools/tools/integrations/zoom.ts +0 -14
package/src/agent-tools/tools/integrations/zuora.ts +0 -14
package/src/agent-tools/tools/knowledge-search.ts +0 -318
package/src/agent-tools/tools/local/coding.ts +0 -626
package/src/agent-tools/tools/local/dependency-manager.ts +0 -647
package/src/agent-tools/tools/local/file-edit.ts +0 -31
package/src/agent-tools/tools/local/file-list.ts +0 -39
package/src/agent-tools/tools/local/file-ops.ts +0 -48
package/src/agent-tools/tools/local/file-read.ts +0 -39
package/src/agent-tools/tools/local/file-search.ts +0 -46
package/src/agent-tools/tools/local/file-write.ts +0 -28
package/src/agent-tools/tools/local/filesystem.ts +0 -5
package/src/agent-tools/tools/local/index.ts +0 -55
package/src/agent-tools/tools/local/resolve-path.ts +0 -18
package/src/agent-tools/tools/local/shell.ts +0 -277
package/src/agent-tools/tools/local/system-info.ts +0 -29
package/src/agent-tools/tools/management.ts +0 -425
package/src/agent-tools/tools/mcp-bridge.ts +0 -142
package/src/agent-tools/tools/mcp-server-tools.ts +0 -91
package/src/agent-tools/tools/meeting-lifecycle.ts +0 -438
package/src/agent-tools/tools/memory.ts +0 -509
package/src/agent-tools/tools/messaging/index.ts +0 -6
package/src/agent-tools/tools/messaging/telegram.ts +0 -167
package/src/agent-tools/tools/messaging/whatsapp.ts +0 -651
package/src/agent-tools/tools/microsoft/contacts.ts +0 -176
package/src/agent-tools/tools/microsoft/excel-vba.ts +0 -331
package/src/agent-tools/tools/microsoft/excel.ts +0 -261
package/src/agent-tools/tools/microsoft/graph-api.ts +0 -161
package/src/agent-tools/tools/microsoft/index.ts +0 -95
package/src/agent-tools/tools/microsoft/onedrive.ts +0 -429
package/src/agent-tools/tools/microsoft/onenote.ts +0 -186
package/src/agent-tools/tools/microsoft/outlook-calendar.ts +0 -286
package/src/agent-tools/tools/microsoft/outlook-mail.ts +0 -723
package/src/agent-tools/tools/microsoft/planner.ts +0 -200
package/src/agent-tools/tools/microsoft/powerbi.ts +0 -266
package/src/agent-tools/tools/microsoft/powerpoint.ts +0 -186
package/src/agent-tools/tools/microsoft/sharepoint.ts +0 -328
package/src/agent-tools/tools/microsoft/teams.ts +0 -463
package/src/agent-tools/tools/microsoft/todo.ts +0 -181
package/src/agent-tools/tools/oauth-token-provider.ts +0 -101
package/src/agent-tools/tools/read.ts +0 -160
package/src/agent-tools/tools/visual-memory/capture.ts +0 -217
package/src/agent-tools/tools/visual-memory/diff.ts +0 -283
package/src/agent-tools/tools/visual-memory/index.ts +0 -698
package/src/agent-tools/tools/visual-memory/phash.ts +0 -120
package/src/agent-tools/tools/visual-memory/similarity.ts +0 -354
package/src/agent-tools/tools/visual-memory/storage.ts +0 -534
package/src/agent-tools/tools/visual-memory/types.ts +0 -100
package/src/agent-tools/tools/web-fetch-utils.ts +0 -202
package/src/agent-tools/tools/web-fetch.ts +0 -464
package/src/agent-tools/tools/web-search.ts +0 -480
package/src/agent-tools/tools/web-shared.ts +0 -232
package/src/agent-tools/tools/write.ts +0 -68
package/src/agent-tools/types.ts +0 -214
package/src/agenticmail/index.ts +0 -34
package/src/agenticmail/manager.ts +0 -253
package/src/agenticmail/providers/google.ts +0 -391
package/src/agenticmail/providers/imap.ts +0 -454
package/src/agenticmail/providers/index.ts +0 -28
package/src/agenticmail/providers/microsoft.ts +0 -260
package/src/agenticmail/types.ts +0 -173
package/src/auth/routes.ts +0 -1589
package/src/browser/bridge-auth-registry.ts +0 -34
package/src/browser/bridge-server.ts +0 -93
package/src/browser/cdp.helpers.ts +0 -180
package/src/browser/cdp.ts +0 -466
package/src/browser/chrome.executables.ts +0 -625
package/src/browser/chrome.profile-decoration.ts +0 -198
package/src/browser/chrome.ts +0 -349
package/src/browser/client-actions-core.ts +0 -259
package/src/browser/client-actions-observe.ts +0 -184
package/src/browser/client-actions-state.ts +0 -284
package/src/browser/client-actions-types.ts +0 -16
package/src/browser/client-actions-url.ts +0 -11
package/src/browser/client-actions.ts +0 -4
package/src/browser/client-fetch.ts +0 -253
package/src/browser/client.ts +0 -337
package/src/browser/config.ts +0 -301
package/src/browser/constants.ts +0 -8
package/src/browser/control-auth.ts +0 -94
package/src/browser/control-service.ts +0 -81
package/src/browser/csrf.ts +0 -87
package/src/browser/enterprise-compat.ts +0 -562
package/src/browser/extension-relay.ts +0 -834
package/src/browser/http-auth.ts +0 -63
package/src/browser/navigation-guard.ts +0 -50
package/src/browser/paths.ts +0 -49
package/src/browser/playwright.d.ts +0 -12
package/src/browser/profiles-service.ts +0 -187
package/src/browser/profiles.ts +0 -114
package/src/browser/proxy-files.ts +0 -41
package/src/browser/pw-ai-module.ts +0 -52
package/src/browser/pw-ai-state.ts +0 -9
package/src/browser/pw-ai.ts +0 -65
package/src/browser/pw-role-snapshot.ts +0 -434
package/src/browser/pw-session.ts +0 -810
package/src/browser/pw-tools-core.activity.ts +0 -68
package/src/browser/pw-tools-core.downloads.ts +0 -281
package/src/browser/pw-tools-core.interactions.ts +0 -646
package/src/browser/pw-tools-core.responses.ts +0 -124
package/src/browser/pw-tools-core.shared.ts +0 -70
package/src/browser/pw-tools-core.snapshot.ts +0 -213
package/src/browser/pw-tools-core.state.ts +0 -209
package/src/browser/pw-tools-core.storage.ts +0 -128
package/src/browser/pw-tools-core.trace.ts +0 -37
package/src/browser/pw-tools-core.ts +0 -8
package/src/browser/resolved-config-refresh.ts +0 -59
package/src/browser/routes/agent.act.shared.ts +0 -52
package/src/browser/routes/agent.act.ts +0 -575
package/src/browser/routes/agent.debug.ts +0 -149
package/src/browser/routes/agent.shared.ts +0 -143
package/src/browser/routes/agent.snapshot.ts +0 -333
package/src/browser/routes/agent.storage.ts +0 -451
package/src/browser/routes/agent.ts +0 -13
package/src/browser/routes/basic.ts +0 -202
package/src/browser/routes/dispatcher.ts +0 -126
package/src/browser/routes/index.ts +0 -11
package/src/browser/routes/path-output.ts +0 -1
package/src/browser/routes/tabs.ts +0 -217
package/src/browser/routes/types.ts +0 -26
package/src/browser/routes/utils.ts +0 -73
package/src/browser/screenshot.ts +0 -54
package/src/browser/server-context.ts +0 -688
package/src/browser/server-context.types.ts +0 -65
package/src/browser/server-lifecycle.ts +0 -48
package/src/browser/server-middleware.ts +0 -37
package/src/browser/server.ts +0 -110
package/src/browser/target-id.ts +0 -30
package/src/browser/trash.ts +0 -21
package/src/cli-agent.ts +0 -2452
package/src/cli-reset-password.ts +0 -138
package/src/cli-serve.ts +0 -314
package/src/cli.ts +0 -103
package/src/dashboard/app.js +0 -579
package/src/dashboard/assets/brand-logos.js +0 -350
package/src/dashboard/assets/icons/emoji-icons.js +0 -893
package/src/dashboard/assets/logo.png +0 -0
package/src/dashboard/assets/provider-logos.js +0 -139
package/src/dashboard/components/error-boundary.js +0 -21
package/src/dashboard/components/help-button.js +0 -65
package/src/dashboard/components/icons.js +0 -64
package/src/dashboard/components/knowledge-link.js +0 -79
package/src/dashboard/components/modal.js +0 -125
package/src/dashboard/components/org-switcher.js +0 -156
package/src/dashboard/components/persona-fields.js +0 -460
package/src/dashboard/components/settings-help.js +0 -193
package/src/dashboard/components/tag-input.js +0 -96
package/src/dashboard/components/timezones.js +0 -352
package/src/dashboard/components/transport-encryption.js +0 -288
package/src/dashboard/components/utils.js +0 -205
package/src/dashboard/data/countries.js +0 -255
package/src/dashboard/docs/activity.html +0 -253
package/src/dashboard/docs/agent-activity.html +0 -199
package/src/dashboard/docs/agent-autonomy.html +0 -161
package/src/dashboard/docs/agent-budget.html +0 -190
package/src/dashboard/docs/agent-channels.html +0 -189
package/src/dashboard/docs/agent-communication.html +0 -171
package/src/dashboard/docs/agent-configuration.html +0 -194
package/src/dashboard/docs/agent-deployment.html +0 -323
package/src/dashboard/docs/agent-email.html +0 -184
package/src/dashboard/docs/agent-guardrails.html +0 -206
package/src/dashboard/docs/agent-manager.html +0 -226
package/src/dashboard/docs/agent-memory.html +0 -215
package/src/dashboard/docs/agent-overview.html +0 -226
package/src/dashboard/docs/agent-permissions.html +0 -305
package/src/dashboard/docs/agent-personal.html +0 -155
package/src/dashboard/docs/agent-security.html +0 -188
package/src/dashboard/docs/agent-skills.html +0 -224
package/src/dashboard/docs/agent-tool-security.html +0 -205
package/src/dashboard/docs/agent-tools.html +0 -238
package/src/dashboard/docs/agent-whatsapp.html +0 -210
package/src/dashboard/docs/agent-workforce.html +0 -199
package/src/dashboard/docs/agents.html +0 -258
package/src/dashboard/docs/approvals.html +0 -200
package/src/dashboard/docs/audit.html +0 -206
package/src/dashboard/docs/browser-providers.html +0 -313
package/src/dashboard/docs/cluster.html +0 -285
package/src/dashboard/docs/community-skills.html +0 -253
package/src/dashboard/docs/compliance.html +0 -221
package/src/dashboard/docs/dashboard.html +0 -84
package/src/dashboard/docs/database-access.html +0 -322
package/src/dashboard/docs/dlp.html +0 -268
package/src/dashboard/docs/docs-style.css +0 -26
package/src/dashboard/docs/domain-status.html +0 -294
package/src/dashboard/docs/guardrails.html +0 -265
package/src/dashboard/docs/journal.html +0 -197
package/src/dashboard/docs/knowledge-contributions.html +0 -286
package/src/dashboard/docs/knowledge.html +0 -268
package/src/dashboard/docs/memory-transfer.html +0 -311
package/src/dashboard/docs/messages.html +0 -217
package/src/dashboard/docs/multi-tenant.html +0 -311
package/src/dashboard/docs/org-chart.html +0 -239
package/src/dashboard/docs/organizations.html +0 -182
package/src/dashboard/docs/roles.html +0 -195
package/src/dashboard/docs/settings-network.html +0 -321
package/src/dashboard/docs/settings-security.html +0 -347
package/src/dashboard/docs/settings-tool-security.html +0 -176
package/src/dashboard/docs/settings.html +0 -280
package/src/dashboard/docs/skill-connections.html +0 -270
package/src/dashboard/docs/skills.html +0 -206
package/src/dashboard/docs/task-pipeline.html +0 -261
package/src/dashboard/docs/transport-encryption.html +0 -359
package/src/dashboard/docs/users.html +0 -225
package/src/dashboard/docs/vault.html +0 -260
package/src/dashboard/docs/workforce.html +0 -245
package/src/dashboard/index.html +0 -444
package/src/dashboard/pages/activity.js +0 -379
package/src/dashboard/pages/agent-detail/activity.js +0 -277
package/src/dashboard/pages/agent-detail/autonomy.js +0 -244
package/src/dashboard/pages/agent-detail/budget.js +0 -269
package/src/dashboard/pages/agent-detail/channels.js +0 -494
package/src/dashboard/pages/agent-detail/communication.js +0 -296
package/src/dashboard/pages/agent-detail/configuration.js +0 -882
package/src/dashboard/pages/agent-detail/deployment.js +0 -958
package/src/dashboard/pages/agent-detail/email.js +0 -674
package/src/dashboard/pages/agent-detail/guardrails.js +0 -521
package/src/dashboard/pages/agent-detail/index.js +0 -261
package/src/dashboard/pages/agent-detail/manager.js +0 -357
package/src/dashboard/pages/agent-detail/meeting-browser.js +0 -933
package/src/dashboard/pages/agent-detail/memory.js +0 -368
package/src/dashboard/pages/agent-detail/overview.js +0 -844
package/src/dashboard/pages/agent-detail/permissions.js +0 -1163
package/src/dashboard/pages/agent-detail/personal-details.js +0 -404
package/src/dashboard/pages/agent-detail/security.js +0 -409
package/src/dashboard/pages/agent-detail/shared.js +0 -85
package/src/dashboard/pages/agent-detail/skills-section.js +0 -183
package/src/dashboard/pages/agent-detail/tool-security.js +0 -380
package/src/dashboard/pages/agent-detail/tools.js +0 -322
package/src/dashboard/pages/agent-detail/whatsapp.js +0 -824
package/src/dashboard/pages/agent-detail/workforce.js +0 -683
package/src/dashboard/pages/agents.js +0 -1242
package/src/dashboard/pages/approvals.js +0 -100
package/src/dashboard/pages/audit.js +0 -198
package/src/dashboard/pages/cluster.js +0 -512
package/src/dashboard/pages/community-skills.js +0 -1219
package/src/dashboard/pages/compliance.js +0 -475
package/src/dashboard/pages/dashboard.js +0 -180
package/src/dashboard/pages/database-access.js +0 -812
package/src/dashboard/pages/dlp.js +0 -293
package/src/dashboard/pages/domain-status.js +0 -951
package/src/dashboard/pages/guardrails.js +0 -1035
package/src/dashboard/pages/journal.js +0 -172
package/src/dashboard/pages/knowledge-contributions.js +0 -1682
package/src/dashboard/pages/knowledge-import.js +0 -455
package/src/dashboard/pages/knowledge.js +0 -582
package/src/dashboard/pages/login.js +0 -1056
package/src/dashboard/pages/memory-transfer.js +0 -631
package/src/dashboard/pages/messages.js +0 -303
package/src/dashboard/pages/org-chart.js +0 -349
package/src/dashboard/pages/organizations.js +0 -1081
package/src/dashboard/pages/roles.js +0 -780
package/src/dashboard/pages/settings.js +0 -3790
package/src/dashboard/pages/skill-connections.js +0 -982
package/src/dashboard/pages/skills.js +0 -879
package/src/dashboard/pages/task-pipeline.js +0 -684
package/src/dashboard/pages/users.js +0 -867
package/src/dashboard/pages/vault.js +0 -791
package/src/dashboard/pages/workforce.js +0 -851
package/src/dashboard/vendor/react-dom.development.js +0 -29924
package/src/dashboard/vendor/react-dom.production.min.js +0 -267
package/src/dashboard/vendor/react.development.js +0 -3343
package/src/dashboard/vendor/react.production.min.js +0 -31
package/src/database-access/agent-tools.ts +0 -193
package/src/database-access/connection-manager.ts +0 -1341
package/src/database-access/index.ts +0 -21
package/src/database-access/query-sanitizer.ts +0 -220
package/src/database-access/routes.ts +0 -226
package/src/database-access/types.ts +0 -226
package/src/db/adapter.ts +0 -510
package/src/db/dynamodb.ts +0 -454
package/src/db/factory.ts +0 -129
package/src/db/mongodb.ts +0 -360
package/src/db/mysql.ts +0 -531
package/src/db/postgres.ts +0 -863
package/src/db/proxy.ts +0 -39
package/src/db/resolve-driver.ts +0 -29
package/src/db/sql-schema.ts +0 -124
package/src/db/sqlite.ts +0 -493
package/src/db/turso.ts +0 -470
package/src/deploy/fly.ts +0 -368
package/src/deploy/managed.ts +0 -235
package/src/domain-lock/cli-recover.ts +0 -591
package/src/domain-lock/cli-verify.ts +0 -190
package/src/domain-lock/index.ts +0 -220
package/src/engine/activity-routes.ts +0 -154
package/src/engine/activity.ts +0 -568
package/src/engine/agent-autonomy.ts +0 -974
package/src/engine/agent-config.ts +0 -646
package/src/engine/agent-heartbeat.ts +0 -720
package/src/engine/agent-hierarchy.ts +0 -1064
package/src/engine/agent-memory.ts +0 -806
package/src/engine/agent-notify.ts +0 -50
package/src/engine/agent-routes.ts +0 -2583
package/src/engine/agent-status.ts +0 -311
package/src/engine/ambient-memory.ts +0 -401
package/src/engine/approvals.ts +0 -615
package/src/engine/assets/thinking-hum.mp3 +0 -0
package/src/engine/catalog-routes.ts +0 -232
package/src/engine/chat-poller.ts +0 -913
package/src/engine/chat-webhook-routes.ts +0 -304
package/src/engine/cli-build-skill.ts +0 -285
package/src/engine/cli-submit-skill.ts +0 -200
package/src/engine/cli-validate.ts +0 -188
package/src/engine/cluster.ts +0 -278
package/src/engine/communication-routes.ts +0 -139
package/src/engine/communication.ts +0 -765
package/src/engine/community-registry.ts +0 -1529
package/src/engine/community-routes.ts +0 -260
package/src/engine/compliance-routes.ts +0 -133
package/src/engine/compliance.ts +0 -1679
package/src/engine/config-bus.ts +0 -103
package/src/engine/db-adapter.ts +0 -1156
package/src/engine/db-schema.ts +0 -1945
package/src/engine/deploy-schema-routes.ts +0 -176
package/src/engine/deployer.ts +0 -957
package/src/engine/dlp-routes.ts +0 -101
package/src/engine/dlp.ts +0 -410
package/src/engine/email-poller.ts +0 -855
package/src/engine/emoji.ts +0 -106
package/src/engine/guardrail-routes.ts +0 -125
package/src/engine/guardrails.ts +0 -465
package/src/engine/index.ts +0 -255
package/src/engine/journal-routes.ts +0 -56
package/src/engine/journal.ts +0 -249
package/src/engine/knowledge-contribution-routes.ts +0 -633
package/src/engine/knowledge-contribution.ts +0 -1386
package/src/engine/knowledge-import/chunker.ts +0 -241
package/src/engine/knowledge-import/import-manager.ts +0 -416
package/src/engine/knowledge-import/index.ts +0 -27
package/src/engine/knowledge-import/processors/clean.ts +0 -149
package/src/engine/knowledge-import/processors/extract-gdrive.ts +0 -102
package/src/engine/knowledge-import/processors/extract-github.ts +0 -74
package/src/engine/knowledge-import/processors/extract-sharepoint.ts +0 -69
package/src/engine/knowledge-import/processors/extract-web.ts +0 -275
package/src/engine/knowledge-import/processors/index.ts +0 -18
package/src/engine/knowledge-import/processors/pipeline.ts +0 -171
package/src/engine/knowledge-import/processors/types.ts +0 -78
package/src/engine/knowledge-import/processors/validate.ts +0 -150
package/src/engine/knowledge-import/provider-file-upload.ts +0 -95
package/src/engine/knowledge-import/provider-github.ts +0 -144
package/src/engine/knowledge-import/provider-google-sites.ts +0 -323
package/src/engine/knowledge-import/provider-sharepoint.ts +0 -276
package/src/engine/knowledge-import/provider-url.ts +0 -218
package/src/engine/knowledge-import/routes.ts +0 -94
package/src/engine/knowledge-import/types.ts +0 -92
package/src/engine/knowledge-routes.ts +0 -231
package/src/engine/knowledge.ts +0 -587
package/src/engine/lifecycle.ts +0 -1420
package/src/engine/mcp-process-manager.ts +0 -573
package/src/engine/meeting-monitor.ts +0 -483
package/src/engine/meeting-voice-intelligence.ts +0 -340
package/src/engine/memory-routes.ts +0 -142
package/src/engine/memory-transfer-routes.ts +0 -339
package/src/engine/messaging-history.ts +0 -177
package/src/engine/messaging-poller.ts +0 -786
package/src/engine/model-fallback.ts +0 -141
package/src/engine/oauth-connect-routes.ts +0 -603
package/src/engine/oauth-connect.ts +0 -304
package/src/engine/onboarding-routes.ts +0 -148
package/src/engine/onboarding.ts +0 -574
package/src/engine/org-approval-routes.ts +0 -146
package/src/engine/org-integration-routes.ts +0 -399
package/src/engine/org-integrations.ts +0 -608
package/src/engine/org-policies.ts +0 -502
package/src/engine/policy-import-routes.ts +0 -125
package/src/engine/policy-import.ts +0 -1186
package/src/engine/policy-routes.ts +0 -163
package/src/engine/routes.ts +0 -1236
package/src/engine/screen-unlock.ts +0 -136
package/src/engine/session-router.ts +0 -212
package/src/engine/skill-updater-routes.ts +0 -132
package/src/engine/skill-updater.ts +0 -480
package/src/engine/skill-validator.ts +0 -331
package/src/engine/skills/agent-management.ts +0 -119
package/src/engine/skills/agent-memory.ts +0 -19
package/src/engine/skills/agenticmail.ts +0 -116
package/src/engine/skills/core-tools.ts +0 -25
package/src/engine/skills/database-access.ts +0 -78
package/src/engine/skills/enterprise-code-sandbox.ts +0 -113
package/src/engine/skills/enterprise-database.ts +0 -123
package/src/engine/skills/enterprise-diff.ts +0 -95
package/src/engine/skills/enterprise-documents.ts +0 -162
package/src/engine/skills/enterprise-http.ts +0 -99
package/src/engine/skills/enterprise-security-scan.ts +0 -125
package/src/engine/skills/enterprise-spreadsheet.ts +0 -171
package/src/engine/skills/gws-admin.ts +0 -18
package/src/engine/skills/gws-calendar.ts +0 -21
package/src/engine/skills/gws-chat.ts +0 -29
package/src/engine/skills/gws-contacts.ts +0 -20
package/src/engine/skills/gws-docs.ts +0 -18
package/src/engine/skills/gws-drive.ts +0 -23
package/src/engine/skills/gws-forms.ts +0 -23
package/src/engine/skills/gws-gmail.ts +0 -30
package/src/engine/skills/gws-groups.ts +0 -17
package/src/engine/skills/gws-keep.ts +0 -17
package/src/engine/skills/gws-maps.ts +0 -25
package/src/engine/skills/gws-meet.ts +0 -23
package/src/engine/skills/gws-sheets.ts +0 -22
package/src/engine/skills/gws-sites.ts +0 -16
package/src/engine/skills/gws-slides.ts +0 -27
package/src/engine/skills/gws-tasks.ts +0 -22
package/src/engine/skills/gws-vault.ts +0 -17
package/src/engine/skills/index.ts +0 -159
package/src/engine/skills/knowledge-search.ts +0 -18
package/src/engine/skills/local-system.ts +0 -61
package/src/engine/skills/m365-admin.ts +0 -18
package/src/engine/skills/m365-bookings.ts +0 -17
package/src/engine/skills/m365-copilot.ts +0 -17
package/src/engine/skills/m365-excel.ts +0 -60
package/src/engine/skills/m365-forms.ts +0 -17
package/src/engine/skills/m365-onedrive.ts +0 -60
package/src/engine/skills/m365-onenote.ts +0 -17
package/src/engine/skills/m365-outlook.ts +0 -27
package/src/engine/skills/m365-planner.ts +0 -18
package/src/engine/skills/m365-power-automate.ts +0 -18
package/src/engine/skills/m365-power-bi.ts +0 -19
package/src/engine/skills/m365-powerpoint.ts +0 -33
package/src/engine/skills/m365-sharepoint.ts +0 -20
package/src/engine/skills/m365-teams.ts +0 -21
package/src/engine/skills/m365-todo.ts +0 -17
package/src/engine/skills/m365-whiteboard.ts +0 -16
package/src/engine/skills/m365-word.ts +0 -42
package/src/engine/skills/mcp-bridge.ts +0 -45
package/src/engine/skills/meeting-lifecycle.ts +0 -20
package/src/engine/skills/messaging.ts +0 -46
package/src/engine/skills/visual-memory.ts +0 -25
package/src/engine/skills.ts +0 -688
package/src/engine/soul-library.ts +0 -142
package/src/engine/soul-templates.json +0 -1525
package/src/engine/storage-manager.ts +0 -252
package/src/engine/storage-routes.ts +0 -113
package/src/engine/storage.ts +0 -528
package/src/engine/task-poller.ts +0 -394
package/src/engine/task-queue-after-spawn.ts +0 -66
package/src/engine/task-queue-before-spawn.ts +0 -113
package/src/engine/task-queue-routes.ts +0 -161
package/src/engine/task-queue.ts +0 -664
package/src/engine/tenant.ts +0 -409
package/src/engine/tool-catalog.ts +0 -354
package/src/engine/vault-routes.ts +0 -134
package/src/engine/vault.ts +0 -601
package/src/engine/workforce-routes.ts +0 -331
package/src/engine/workforce.ts +0 -1161
package/src/index.ts +0 -77
package/src/lib/cidr.ts +0 -122
package/src/lib/config-store.ts +0 -86
package/src/lib/resilience.ts +0 -326
package/src/lib/text-search.ts +0 -358
package/src/mcp/adapters/activecampaign.adapter.ts +0 -391
package/src/mcp/adapters/adobe-sign.adapter.ts +0 -469
package/src/mcp/adapters/adp.adapter.ts +0 -358
package/src/mcp/adapters/airtable.adapter.ts +0 -273
package/src/mcp/adapters/apollo.adapter.ts +0 -420
package/src/mcp/adapters/asana.adapter.ts +0 -315
package/src/mcp/adapters/auth0.adapter.ts +0 -386
package/src/mcp/adapters/aws.adapter.ts +0 -345
package/src/mcp/adapters/azure-devops.adapter.ts +0 -389
package/src/mcp/adapters/bamboohr.adapter.ts +0 -376
package/src/mcp/adapters/basecamp.adapter.ts +0 -366
package/src/mcp/adapters/bigcommerce.adapter.ts +0 -429
package/src/mcp/adapters/bitbucket.adapter.ts +0 -260
package/src/mcp/adapters/box.adapter.ts +0 -350
package/src/mcp/adapters/brex.adapter.ts +0 -367
package/src/mcp/adapters/buffer.adapter.ts +0 -303
package/src/mcp/adapters/calendly.adapter.ts +0 -262
package/src/mcp/adapters/canva.adapter.ts +0 -256
package/src/mcp/adapters/chargebee.adapter.ts +0 -448
package/src/mcp/adapters/circleci.adapter.ts +0 -216
package/src/mcp/adapters/clickup.adapter.ts +0 -335
package/src/mcp/adapters/close.adapter.ts +0 -390
package/src/mcp/adapters/cloudflare.adapter.ts +0 -378
package/src/mcp/adapters/confluence.adapter.ts +0 -301
package/src/mcp/adapters/contentful.adapter.ts +0 -355
package/src/mcp/adapters/copper.adapter.ts +0 -468
package/src/mcp/adapters/crisp.adapter.ts +0 -415
package/src/mcp/adapters/crowdstrike.adapter.ts +0 -413
package/src/mcp/adapters/datadog.adapter.ts +0 -373
package/src/mcp/adapters/digitalocean.adapter.ts +0 -336
package/src/mcp/adapters/discord.adapter.ts +0 -248
package/src/mcp/adapters/docker.adapter.ts +0 -238
package/src/mcp/adapters/docusign.adapter.ts +0 -431
package/src/mcp/adapters/drift.adapter.ts +0 -386
package/src/mcp/adapters/dropbox.adapter.ts +0 -315
package/src/mcp/adapters/figma.adapter.ts +0 -302
package/src/mcp/adapters/firebase.adapter.ts +0 -446
package/src/mcp/adapters/flyio.adapter.ts +0 -302
package/src/mcp/adapters/freshbooks.adapter.ts +0 -474
package/src/mcp/adapters/freshdesk.adapter.ts +0 -441
package/src/mcp/adapters/freshsales.adapter.ts +0 -457
package/src/mcp/adapters/freshservice.adapter.ts +0 -481
package/src/mcp/adapters/front.adapter.ts +0 -357
package/src/mcp/adapters/github-actions.adapter.ts +0 -329
package/src/mcp/adapters/github.adapter.ts +0 -387
package/src/mcp/adapters/gitlab.adapter.ts +0 -368
package/src/mcp/adapters/gong.adapter.ts +0 -386
package/src/mcp/adapters/google-ads.adapter.ts +0 -363
package/src/mcp/adapters/google-analytics.adapter.ts +0 -316
package/src/mcp/adapters/google-cloud.adapter.ts +0 -312
package/src/mcp/adapters/gotomeeting.adapter.ts +0 -255
package/src/mcp/adapters/grafana.adapter.ts +0 -361
package/src/mcp/adapters/greenhouse.adapter.ts +0 -354
package/src/mcp/adapters/gusto.adapter.ts +0 -329
package/src/mcp/adapters/hashicorp-vault.adapter.ts +0 -355
package/src/mcp/adapters/heroku.adapter.ts +0 -291
package/src/mcp/adapters/hibob.adapter.ts +0 -334
package/src/mcp/adapters/hootsuite.adapter.ts +0 -322
package/src/mcp/adapters/hubspot.adapter.ts +0 -400
package/src/mcp/adapters/huggingface.adapter.ts +0 -349
package/src/mcp/adapters/index.ts +0 -524
package/src/mcp/adapters/intercom.adapter.ts +0 -269
package/src/mcp/adapters/jira.adapter.ts +0 -482
package/src/mcp/adapters/klaviyo.adapter.ts +0 -353
package/src/mcp/adapters/kubernetes.adapter.ts +0 -431
package/src/mcp/adapters/lattice.adapter.ts +0 -339
package/src/mcp/adapters/launchdarkly.adapter.ts +0 -368
package/src/mcp/adapters/lever.adapter.ts +0 -347
package/src/mcp/adapters/linear.adapter.ts +0 -300
package/src/mcp/adapters/linkedin.adapter.ts +0 -331
package/src/mcp/adapters/livechat.adapter.ts +0 -259
package/src/mcp/adapters/loom.adapter.ts +0 -230
package/src/mcp/adapters/mailchimp.adapter.ts +0 -394
package/src/mcp/adapters/mailgun.adapter.ts +0 -425
package/src/mcp/adapters/miro.adapter.ts +0 -274
package/src/mcp/adapters/mixpanel.adapter.ts +0 -324
package/src/mcp/adapters/monday.adapter.ts +0 -308
package/src/mcp/adapters/mongodb-atlas.adapter.ts +0 -345
package/src/mcp/adapters/neon.adapter.ts +0 -312
package/src/mcp/adapters/netlify.adapter.ts +0 -324
package/src/mcp/adapters/netsuite.adapter.ts +0 -411
package/src/mcp/adapters/newrelic.adapter.ts +0 -339
package/src/mcp/adapters/notion.adapter.ts +0 -338
package/src/mcp/adapters/okta.adapter.ts +0 -394
package/src/mcp/adapters/openai.adapter.ts +0 -315
package/src/mcp/adapters/opsgenie.adapter.ts +0 -375
package/src/mcp/adapters/outreach.adapter.ts +0 -372
package/src/mcp/adapters/paddle.adapter.ts +0 -467
package/src/mcp/adapters/pagerduty.adapter.ts +0 -412
package/src/mcp/adapters/pandadoc.adapter.ts +0 -389
package/src/mcp/adapters/paypal.adapter.ts +0 -465
package/src/mcp/adapters/personio.adapter.ts +0 -401
package/src/mcp/adapters/pinecone.adapter.ts +0 -340
package/src/mcp/adapters/pipedrive.adapter.ts +0 -324
package/src/mcp/adapters/plaid.adapter.ts +0 -444
package/src/mcp/adapters/postmark.adapter.ts +0 -387
package/src/mcp/adapters/power-automate.adapter.ts +0 -388
package/src/mcp/adapters/quickbooks.adapter.ts +0 -431
package/src/mcp/adapters/recurly.adapter.ts +0 -433
package/src/mcp/adapters/reddit.adapter.ts +0 -371
package/src/mcp/adapters/render.adapter.ts +0 -332
package/src/mcp/adapters/ringcentral.adapter.ts +0 -281
package/src/mcp/adapters/rippling.adapter.ts +0 -287
package/src/mcp/adapters/salesforce.adapter.ts +0 -321
package/src/mcp/adapters/salesloft.adapter.ts +0 -413
package/src/mcp/adapters/sanity.adapter.ts +0 -363
package/src/mcp/adapters/sap.adapter.ts +0 -483
package/src/mcp/adapters/segment.adapter.ts +0 -260
package/src/mcp/adapters/sendgrid.adapter.ts +0 -265
package/src/mcp/adapters/sentry.adapter.ts +0 -331
package/src/mcp/adapters/servicenow.adapter.ts +0 -468
package/src/mcp/adapters/shopify.adapter.ts +0 -451
package/src/mcp/adapters/shortcut.adapter.ts +0 -290
package/src/mcp/adapters/slack.adapter.ts +0 -380
package/src/mcp/adapters/smartsheet.adapter.ts +0 -326
package/src/mcp/adapters/snowflake.adapter.ts +0 -347
package/src/mcp/adapters/snyk.adapter.ts +0 -394
package/src/mcp/adapters/splunk.adapter.ts +0 -403
package/src/mcp/adapters/square.adapter.ts +0 -467
package/src/mcp/adapters/statuspage.adapter.ts +0 -401
package/src/mcp/adapters/stripe.adapter.ts +0 -380
package/src/mcp/adapters/supabase.adapter.ts +0 -334
package/src/mcp/adapters/teamwork.adapter.ts +0 -404
package/src/mcp/adapters/telegram.adapter.ts +0 -299
package/src/mcp/adapters/terraform.adapter.ts +0 -300
package/src/mcp/adapters/todoist.adapter.ts +0 -239
package/src/mcp/adapters/trello.adapter.ts +0 -316
package/src/mcp/adapters/twilio.adapter.ts +0 -233
package/src/mcp/adapters/twitter.adapter.ts +0 -348
package/src/mcp/adapters/vercel.adapter.ts +0 -219
package/src/mcp/adapters/weaviate.adapter.ts +0 -371
package/src/mcp/adapters/webex.adapter.ts +0 -237
package/src/mcp/adapters/webflow.adapter.ts +0 -287
package/src/mcp/adapters/whatsapp.adapter.ts +0 -273
package/src/mcp/adapters/whereby.adapter.ts +0 -240
package/src/mcp/adapters/woocommerce.adapter.ts +0 -454
package/src/mcp/adapters/wordpress.adapter.ts +0 -455
package/src/mcp/adapters/workday.adapter.ts +0 -354
package/src/mcp/adapters/wrike.adapter.ts +0 -349
package/src/mcp/adapters/xero.adapter.ts +0 -472
package/src/mcp/adapters/youtube.adapter.ts +0 -401
package/src/mcp/adapters/zendesk.adapter.ts +0 -399
package/src/mcp/adapters/zoho-crm.adapter.ts +0 -410
package/src/mcp/adapters/zoom.adapter.ts +0 -241
package/src/mcp/adapters/zuora.adapter.ts +0 -476
package/src/mcp/framework/api-executor.ts +0 -192
package/src/mcp/framework/aws-sigv4.ts +0 -216
package/src/mcp/framework/credential-resolver.ts +0 -128
package/src/mcp/framework/oauth-token-manager.ts +0 -22
package/src/mcp/framework/skill-mcp-framework.ts +0 -226
package/src/mcp/framework/types.ts +0 -130
package/src/mcp/index.ts +0 -124
package/src/mcp/integration-catalog.ts +0 -178
package/src/middleware/dns-rebinding.ts +0 -44
package/src/middleware/egress-filter.ts +0 -104
package/src/middleware/firewall.ts +0 -192
package/src/middleware/geo-ip.ts +0 -156
package/src/middleware/index.ts +0 -390
package/src/middleware/network-config.ts +0 -90
package/src/middleware/proxy-config.ts +0 -71
package/src/middleware/request-limits.ts +0 -59
package/src/middleware/transport-encryption.ts +0 -398
package/src/registry/cli.ts +0 -63
package/src/registry/server.ts +0 -504
package/src/runtime/agent-loop.ts +0 -779
package/src/runtime/compaction.ts +0 -638
package/src/runtime/email-channel.ts +0 -120
package/src/runtime/environment.ts +0 -300
package/src/runtime/followup.ts +0 -211
package/src/runtime/gateway.ts +0 -260
package/src/runtime/hooks.ts +0 -564
package/src/runtime/index.ts +0 -1110
package/src/runtime/llm-client.ts +0 -1056
package/src/runtime/model-router.ts +0 -97
package/src/runtime/providers.ts +0 -228
package/src/runtime/session-manager.ts +0 -345
package/src/runtime/subagent.ts +0 -153
package/src/runtime/tool-executor.ts +0 -208
package/src/runtime/types.ts +0 -255
package/src/security/brute-force.ts +0 -423
package/src/security/config.ts +0 -159
package/src/security/csp.ts +0 -407
package/src/security/external-content.ts +0 -299
package/src/security/index.ts +0 -557
package/src/security/input-sanitizer.ts +0 -452
package/src/security/output-filter.ts +0 -575
package/src/security/port-scanner.ts +0 -342
package/src/security/prompt-guard.ts +0 -387
package/src/security/sql-guard.ts +0 -338
package/src/security/threat-logger.ts +0 -484
package/src/server.ts +0 -828
package/src/setup/company.ts +0 -183
package/src/setup/database.ts +0 -153
package/src/setup/deployment.ts +0 -561
package/src/setup/domain.ts +0 -112
package/src/setup/index.ts +0 -171
package/src/setup/provision.ts +0 -532
package/src/setup/registration.ts +0 -302
package/src/system-prompts/catchup.ts +0 -48
package/src/system-prompts/google/calendar.ts +0 -37
package/src/system-prompts/google/chat.ts +0 -92
package/src/system-prompts/google/contacts.ts +0 -25
package/src/system-prompts/google/docs.ts +0 -29
package/src/system-prompts/google/drive.ts +0 -34
package/src/system-prompts/google/forms.ts +0 -25
package/src/system-prompts/google/gmail.ts +0 -50
package/src/system-prompts/google/index.ts +0 -23
package/src/system-prompts/google/maps.ts +0 -20
package/src/system-prompts/google/meet.ts +0 -130
package/src/system-prompts/google/sheets.ts +0 -32
package/src/system-prompts/google/slides.ts +0 -26
package/src/system-prompts/google/tasks.ts +0 -27
package/src/system-prompts/index.ts +0 -88
package/src/system-prompts/microsoft/contacts.ts +0 -34
package/src/system-prompts/microsoft/excel.ts +0 -52
package/src/system-prompts/microsoft/index.ts +0 -31
package/src/system-prompts/microsoft/onedrive.ts +0 -41
package/src/system-prompts/microsoft/onenote.ts +0 -36
package/src/system-prompts/microsoft/outlook-calendar.ts +0 -37
package/src/system-prompts/microsoft/outlook-mail.ts +0 -46
package/src/system-prompts/microsoft/planner.ts +0 -37
package/src/system-prompts/microsoft/powerbi.ts +0 -38
package/src/system-prompts/microsoft/powerpoint.ts +0 -35
package/src/system-prompts/microsoft/sharepoint.ts +0 -44
package/src/system-prompts/microsoft/teams.ts +0 -49
package/src/system-prompts/microsoft/todo.ts +0 -37
package/src/system-prompts/shared-blocks.ts +0 -87
package/src/system-prompts/task.ts +0 -21
package/src/system-prompts/triage.ts +0 -34
package/src/types/hono-env.ts +0 -18
package/src/types/optional-deps.d.ts +0 -10
/package/{src → dist}/dashboard/HELP-TOOLTIPS-GUIDE.md +0 -0

package/src/dashboard/docs/transport-encryption.html DELETED Viewed

@@ -1,359 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>Transport Encryption — AgenticMail Enterprise</title>
-<link rel="stylesheet" href="/docs/docs-style.css">
-<script>var t = localStorage.getItem('em_theme') || 'dark'; document.documentElement.setAttribute('data-theme', t);</script>
-</head>
-<body>
-<a href="javascript:history.back()" class="back">&larr; Back to Dashboard</a>
-<h1>Transport Encryption</h1>
-<p style="color: var(--text-muted); margin-bottom: 24px;">Application-layer encryption for API data in transit between the dashboard and server — defense-in-depth against network sniffing, MITM attacks, and compromised TLS proxies.</p>
-<div class="toc">
-<h3>Table of Contents</h3>
-<ul>
-<li><a href="#overview">Overview</a></li>
-<li><a href="#why">Why Transport Encryption?</a></li>
-<li><a href="#how-it-works">How It Works</a></li>
-<li><a href="#key-concepts">Key Concepts</a></li>
-<li><a href="#configuration">Configuration</a></li>
-<li><a href="#endpoint-groups">Endpoint Groups</a></li>
-<li><a href="#custom-endpoints">Custom Endpoints</a></li>
-<li><a href="#advanced">Advanced Settings</a></li>
-<li><a href="#best-practices">Best Practices</a></li>
-<li><a href="#troubleshooting">Troubleshooting</a></li>
-<li><a href="#technical-details">Technical Details</a></li>
-<li><a href="#related">Related Pages</a></li>
-</ul>
-</div>
-<h2 id="overview">Overview</h2>
-<p>Transport Encryption adds an additional layer of AES-256-CBC encryption to API calls between the AgenticMail dashboard (your browser) and the server. While HTTPS already encrypts data at the transport layer, this feature provides <strong>application-layer encryption</strong> for defense-in-depth.</p>
-<p>This is particularly important for AgenticMail because the dashboard handles extremely sensitive data:</p>
-<ul>
-<li><strong>LLM API keys</strong> — Anthropic, OpenAI, Google, xAI, and other provider keys worth thousands of dollars</li>
-<li><strong>Database credentials</strong> — Connection strings, passwords, and URLs for PostgreSQL, MySQL, MongoDB, Redis</li>
-<li><strong>OAuth tokens</strong> — Google Workspace, Microsoft 365 access and refresh tokens</li>
-<li><strong>Email/SMTP passwords</strong> — Agent email configuration credentials</li>
-<li><strong>Vault secrets</strong> — Any encrypted secrets stored in the secure vault</li>
-<li><strong>Agent configurations</strong> — WhatsApp tokens, Telegram bot tokens, browser configs</li>
-</ul>
-<p>You can choose to encrypt <strong>all API calls</strong> for maximum security, or selectively encrypt only the endpoint groups that handle sensitive data.</p>
-<h2 id="why">Why Transport Encryption?</h2>
-<p>"But we already use HTTPS!" — Yes, and HTTPS is excellent. However, there are real-world scenarios where HTTPS alone isn't enough:</p>
-<div class="card">
-<h3>Threat Scenarios</h3>
-<table>
-<tr><th>Threat</th><th>HTTPS Alone</th><th>With Transport Encryption</th></tr>
-<tr><td>Standard network sniffing</td><td>Protected</td><td>Protected (double-encrypted)</td></tr>
-<tr><td>Corporate SSL/TLS inspection proxies</td><td><strong>Exposed</strong> — proxy decrypts/re-encrypts</td><td>Protected — inner encryption survives</td></tr>
-<tr><td>Compromised CDN/reverse proxy</td><td><strong>Exposed</strong> — proxy sees plaintext</td><td>Protected — data is still encrypted</td></tr>
-<tr><td>Compromised TLS certificate</td><td><strong>Exposed</strong></td><td>Protected — independent encryption layer</td></tr>
-<tr><td>Debug/logging proxy (Fiddler, Charles)</td><td><strong>Exposed</strong> — designed to expose</td><td>Protected — payload is opaque</td></tr>
-<tr><td>Malicious browser extension reading network</td><td><strong>Exposed</strong> — extension sees decrypted data</td><td>Partially protected — depends on extension capabilities</td></tr>
-<tr><td>Replay attacks</td><td>Session-based</td><td>Protected — timestamp + HMAC prevents reuse</td></tr>
-</table>
-</div>
-<div class="tip">
-<strong>When to enable:</strong> If your AgenticMail instance is behind a corporate proxy, CDN (Cloudflare, AWS CloudFront), or accessed over untrusted networks. Also recommended if you manage high-value API keys or sensitive client data.
-</div>
-<h2 id="how-it-works">How It Works</h2>
-<h3>Encryption Flow</h3>
-<div class="card">
-<p><strong>Outgoing Request (Dashboard → Server):</strong></p>
-<ol>
-<li>Dashboard intercepts the fetch call for a sensitive endpoint</li>
-<li>Request body is serialized to JSON</li>
-<li>A random 16-byte IV is generated</li>
-<li>Data is encrypted with AES-256-CBC using the shared key</li>
-<li>SHA-256 checksum is computed for integrity</li>
-<li>HMAC-SHA256 signature is computed over IV + ciphertext + timestamp + checksum</li>
-<li>Payload is wrapped as <code>{ _enc: "&lt;base64-encoded-payload&gt;" }</code></li>
-<li>Server receives, verifies HMAC, verifies timestamp, decrypts, verifies checksum</li>
-<li>Handler sees the original plaintext JSON</li>
-</ol>
-</div>
-<div class="card">
-<p><strong>Incoming Response (Server → Dashboard):</strong></p>
-<ol>
-<li>Server handler returns normal JSON response</li>
-<li>Middleware checks if client sent <code>x-transport-encryption: 1</code> header</li>
-<li>If yes, response JSON is encrypted with the same algorithm</li>
-<li>Response is wrapped as <code>{ _enc: "&lt;base64-encoded-payload&gt;" }</code></li>
-<li>Response header <code>x-transport-encrypted: 1</code> is set</li>
-<li>Dashboard fetch interceptor detects the header, decrypts the response</li>
-<li>Application code receives the original plaintext JSON</li>
-</ol>
-</div>
-<h3>Key Exchange</h3>
-<p>When encryption is enabled, the dashboard requests a key token from the authenticated endpoint <code>/transport-encryption/client-key</code>. This token is used to derive the same AES and HMAC keys that the server uses. The key exchange only happens once per session and requires authentication.</p>
-<h3>Graceful Degradation</h3>
-<p>If the client doesn't send the <code>x-transport-encryption: 1</code> header (e.g., direct API calls, third-party integrations), responses are sent in plaintext. This ensures backward compatibility — only the dashboard UI uses encryption.</p>
-<h2 id="key-concepts">Key Concepts</h2>
-<div class="card">
-<h3>Encrypt All vs Selective</h3>
-<p><strong>Encrypt All:</strong> Every API call between the dashboard and server is encrypted. Maximum security, slight overhead. Recommended for high-security environments.</p>
-<p><strong>Selective:</strong> Only the endpoint groups you choose are encrypted. Best balance of security and performance — encrypt sensitive groups (API keys, database, vault) while leaving low-risk endpoints (dashboard stats) in plaintext.</p>
-<p><strong>Sensitive Only:</strong> One-click preset that enables encryption for groups marked as "SENSITIVE" — models, auth, email, database, vault, and integrations.</p>
-</div>
-<div class="card">
-<h3>Endpoint Groups</h3>
-<p>Endpoints are organized into 22 logical groups. Each group maps to a set of API path patterns. When you toggle a group, all its endpoints are encrypted/decrypted. Hover over any group in the UI to see the exact path patterns.</p>
-</div>
-<div class="card">
-<h3>Custom Endpoints</h3>
-<p>If you have custom API endpoints (plugins, extensions, or custom routes), you can add their path patterns manually. Use <code>*</code> as a wildcard for single path segments. Example: <code>/api/my-plugin/*/config</code></p>
-</div>
-<h2 id="configuration">Configuration</h2>
-<p>Navigate to <strong>Settings → Security → Transport Encryption</strong>.</p>
-<h3>Step 1: Enable Transport Encryption</h3>
-<p>Toggle "Enable Transport Encryption" to ON. This activates the encryption middleware on the server and the fetch interceptor on the dashboard.</p>
-<h3>Step 2: Choose Encryption Scope</h3>
-<p>Select one of three modes:</p>
-<ul>
-<li><strong>Encrypt All API Calls</strong> — Everything is encrypted. All 22 endpoint groups are activated.</li>
-<li><strong>Sensitive Only</strong> — Pre-selected groups that handle credentials, tokens, and secrets.</li>
-<li><strong>Custom Selection</strong> — Toggle individual groups manually.</li>
-</ul>
-<h3>Step 3: Save</h3>
-<p>Click "Save Security Settings". The configuration takes effect immediately — no server restart required.</p>
-<div class="tip">
-<strong>No restart needed:</strong> Changes to transport encryption take effect immediately. The middleware reads the updated config on the next request.
-</div>
-<h2 id="endpoint-groups">Endpoint Groups</h2>
-<p>Each group covers a logical area of the dashboard. Groups marked <span class="badge badge-advanced">SENSITIVE</span> handle credentials or secrets.</p>
-<table>
-<tr><th>Group</th><th>Description</th><th>Sensitivity</th></tr>
-<tr><td>Settings & Configuration</td><td>System settings, platform config</td><td>Normal</td></tr>
-<tr><td>Models & API Keys</td><td>LLM provider API keys</td><td><span class="badge badge-advanced">SENSITIVE</span></td></tr>
-<tr><td>Authentication</td><td>Login, sessions, 2FA, SSO</td><td><span class="badge badge-advanced">SENSITIVE</span></td></tr>
-<tr><td>Agent Configuration</td><td>Agent configs, tools, permissions</td><td>Normal</td></tr>
-<tr><td>Email & SMTP</td><td>Email/SMTP credentials, domain settings</td><td><span class="badge badge-advanced">SENSITIVE</span></td></tr>
-<tr><td>Database Connections</td><td>Database URLs, credentials, connection strings</td><td><span class="badge badge-advanced">SENSITIVE</span></td></tr>
-<tr><td>Vault & Secrets</td><td>Encrypted secret storage</td><td><span class="badge badge-advanced">SENSITIVE</span></td></tr>
-<tr><td>Organization Integrations</td><td>OAuth tokens, Google/Microsoft integrations</td><td><span class="badge badge-advanced">SENSITIVE</span></td></tr>
-<tr><td>Skills & Credentials</td><td>Skill API tokens</td><td>Normal</td></tr>
-<tr><td>Organizations</td><td>Org management, member data</td><td>Normal</td></tr>
-<tr><td>Knowledge Bases</td><td>KB content, documents, embeddings</td><td>Normal</td></tr>
-<tr><td>Task Pipeline</td><td>Task queue, results, delegation</td><td>Normal</td></tr>
-<tr><td>Workforce & Schedules</td><td>Schedules, clock records, budgets</td><td>Normal</td></tr>
-<tr><td>Messages & Channels</td><td>WhatsApp, Telegram, channel configs</td><td>Normal</td></tr>
-<tr><td>Guardrails & DLP</td><td>Guardrail rules, DLP policies</td><td>Normal</td></tr>
-<tr><td>Activity Journal</td><td>Agent activity logs</td><td>Normal</td></tr>
-<tr><td>Approvals</td><td>Approval requests and decisions</td><td>Normal</td></tr>
-<tr><td>Compliance & Audit</td><td>Compliance reports, audit logs</td><td>Normal</td></tr>
-<tr><td>Domain & DNS</td><td>Domain config, DNS records, SSL</td><td>Normal</td></tr>
-<tr><td>Roles & Permissions</td><td>Role templates, permission profiles</td><td>Normal</td></tr>
-<tr><td>Memory & Transfer</td><td>Agent memories, memory transfer, schedules</td><td><span style="color:var(--danger);font-weight:600">SENSITIVE</span></td></tr>
-<tr><td>Dashboard & Overview</td><td>Dashboard stats, agent summaries</td><td>Normal</td></tr>
-</table>
-<h2 id="custom-endpoints">Custom Endpoints</h2>
-<p>Add custom API path patterns to encrypt endpoints not covered by the built-in groups.</p>
-<h3>Pattern Syntax</h3>
-<ul>
-<li><code>/api/exact/path</code> — Matches exactly</li>
-<li><code>/api/path/*</code> — Wildcard matches one path segment (e.g., <code>/api/path/123</code> but not <code>/api/path/123/sub</code>)</li>
-<li><code>/api/path/*/sub</code> — Wildcard in the middle</li>
-</ul>
-<h3>Examples</h3>
-<pre><code>/api/my-plugin/*/config
-/webhook/incoming
-/api/custom-integration/*</code></pre>
-<h2 id="advanced">Advanced Settings</h2>
-<h3>Payload Max Age</h3>
-<p>Default: <strong>300 seconds (5 minutes)</strong>. Encrypted payloads include a timestamp. If the server receives a payload older than this limit, it's rejected as a potential replay attack. Increase this if you have slow connections or clock drift between client and server.</p>
-<h3>Debug Logging</h3>
-<p>When enabled, encryption/decryption operations are logged to the server console. <strong>Never enable in production</strong> — it could expose sensitive data in log files.</p>
-<h3>Encryption Key</h3>
-<p>The encryption key is derived from environment variables in this priority:</p>
-<ol>
-<li><code>TRANSPORT_ENCRYPTION_KEY</code> — Dedicated key for transport encryption</li>
-<li><code>ENCRYPTION_KEY</code> — Shared encryption key</li>
-<li><code>JWT_SECRET</code> — Falls back to JWT secret</li>
-<li>Built-in default (not recommended for production)</li>
-</ol>
-<div class="warning">
-<strong>Production recommendation:</strong> Set <code>TRANSPORT_ENCRYPTION_KEY</code> in your environment to a strong random string (32+ characters). Using the default key provides obfuscation but not true security.
-</div>
-<h2 id="deployment">Deployment Platforms</h2>
-<p>Transport encryption works on every platform. The encryption key (<code>TRANSPORT_ENCRYPTION_KEY</code>) must be set as an environment variable, which every platform supports.</p>
-<div class="card">
-<h3>Key Generation &amp; Storage</h3>
-<p>During initial setup, the wizard auto-generates a 256-bit key and attempts to:</p>
-<ol>
-<li><strong>Write to <code>.env</code> file</strong> — Works on persistent filesystems (localhost, VPS, bare metal)</li>
-<li><strong>Store in database</strong> — Backup copy in settings table (always works)</li>
-<li><strong>Display to user</strong> — For manual platform configuration (always shown)</li>
-</ol>
-<p>On ephemeral platforms (fly.io, Railway, Docker), the <code>.env</code> write may fail silently. The wizard detects this and shows a clear warning with platform-specific instructions.</p>
-</div>
-<table>
-<tr><th>Platform</th><th>How to Set Keys</th><th>.env Persists?</th></tr>
-<tr><td>Localhost / VPS</td><td>Auto-saved to <code>.env</code></td><td>Yes</td></tr>
-<tr><td>fly.io</td><td><code>fly secrets set TRANSPORT_ENCRYPTION_KEY=&lt;key&gt;</code></td><td>No (ephemeral)</td></tr>
-<tr><td>Railway</td><td>Dashboard &rarr; Variables, or <code>railway variables set</code></td><td>No (ephemeral)</td></tr>
-<tr><td>Render</td><td>Dashboard &rarr; Environment &rarr; Secret Files or Env Vars</td><td>No (ephemeral)</td></tr>
-<tr><td>Docker</td><td><code>docker run -e TRANSPORT_ENCRYPTION_KEY=&lt;key&gt;</code> or docker-compose env</td><td>Only if volume-mounted</td></tr>
-<tr><td>Cloudflare Workers</td><td><code>wrangler secret put TRANSPORT_ENCRYPTION_KEY</code></td><td>No (serverless)</td></tr>
-<tr><td>AWS ECS/Lambda</td><td>Task definition env vars or SSM Parameter Store</td><td>Via SSM/Secrets Manager</td></tr>
-<tr><td>Heroku</td><td><code>heroku config:set TRANSPORT_ENCRYPTION_KEY=&lt;key&gt;</code></td><td>No (ephemeral)</td></tr>
-<tr><td>AgenticMail Cloud</td><td>Managed automatically</td><td>Yes (managed)</td></tr>
-</table>
-<div class="warning">
-<strong>Key must be identical across all instances.</strong> If you run multiple replicas (load-balanced), every instance must have the same <code>TRANSPORT_ENCRYPTION_KEY</code>. Otherwise, a request encrypted by one instance can't be decrypted by another.
-</div>
-<h2 id="best-practices">Best Practices</h2>
-<div class="card">
-<h3>For Most Deployments</h3>
-<ul>
-<li>Enable "Sensitive Only" — covers API keys, database creds, vault, auth, email, and integrations</li>
-<li>Set <code>TRANSPORT_ENCRYPTION_KEY</code> in your environment</li>
-<li>Keep payload max age at 300s unless you have specific latency issues</li>
-<li>Leave debug logging OFF</li>
-</ul>
-</div>
-<div class="card">
-<h3>For High-Security Environments</h3>
-<ul>
-<li>Enable "Encrypt All API Calls"</li>
-<li>Use a dedicated <code>TRANSPORT_ENCRYPTION_KEY</code> (not shared with other services)</li>
-<li>Reduce payload max age to 60-120 seconds</li>
-<li>Combine with HTTPS, HSTS, and strict CSP headers</li>
-<li>Enable audit logging to track all security events</li>
-</ul>
-</div>
-<div class="card">
-<h3>For Development</h3>
-<ul>
-<li>Can be left disabled — HTTPS may not be configured locally</li>
-<li>If testing encryption, enable debug logging temporarily</li>
-<li>The system gracefully degrades — if encryption fails, plaintext is sent</li>
-</ul>
-</div>
-<h2 id="troubleshooting">Troubleshooting</h2>
-<div class="card">
-<h3>Dashboard shows errors after enabling encryption</h3>
-<p><strong>Cause:</strong> Key mismatch between client and server, often after changing the encryption key.</p>
-<p><strong>Fix:</strong> Hard-refresh the dashboard (Ctrl+Shift+R / Cmd+Shift+R) to re-fetch the key token. If the issue persists, disable encryption, refresh, and re-enable.</p>
-</div>
-<div class="card">
-<h3>"Encrypted payload expired" errors</h3>
-<p><strong>Cause:</strong> Clock drift between the client browser and server exceeds the max age setting.</p>
-<p><strong>Fix:</strong> Sync clocks (NTP) or increase the payload max age in Advanced Settings.</p>
-</div>
-<div class="card">
-<h3>"Invalid signature — payload tampered" errors</h3>
-<p><strong>Cause:</strong> A proxy or middleware modified the request body after encryption.</p>
-<p><strong>Fix:</strong> Check for request-modifying proxies, WAFs, or middleware that transform JSON bodies.</p>
-</div>
-<div class="card">
-<h3>API calls from external tools (curl, Postman) fail</h3>
-<p><strong>Cause:</strong> External tools don't send the <code>x-transport-encryption: 1</code> header, so the server doesn't encrypt responses. However, if you send an encrypted request body (<code>{ _enc: "..." }</code>), the server will try to decrypt it.</p>
-<p><strong>Fix:</strong> For external API access, either disable encryption for those endpoints or don't include the encryption header — the server only encrypts responses when the client explicitly requests it.</p>
-</div>
-<div class="card">
-<h3>Performance impact</h3>
-<p>AES-256-CBC encryption/decryption is very fast (hardware-accelerated on modern CPUs). The overhead is typically &lt;1ms per request. For "Encrypt All" mode, you might notice ~2-5ms total overhead across all dashboard API calls. This is negligible compared to network latency.</p>
-</div>
-<h2 id="technical-details">Technical Details</h2>
-<div class="card">
-<h3>Cryptographic Specifications</h3>
-<table>
-<tr><th>Component</th><th>Algorithm</th><th>Details</th></tr>
-<tr><td>Encryption</td><td>AES-256-CBC</td><td>256-bit key, PKCS7 padding</td></tr>
-<tr><td>Key Derivation</td><td>SHA-256</td><td>Separate keys for encryption and HMAC</td></tr>
-<tr><td>Integrity</td><td>SHA-256 checksum</td><td>First 16 hex chars of hash</td></tr>
-<tr><td>Authentication</td><td>HMAC-SHA256</td><td>Signs IV + ciphertext + timestamp + checksum</td></tr>
-<tr><td>IV Generation</td><td>CSPRNG</td><td>16 random bytes per message</td></tr>
-<tr><td>Server Implementation</td><td>Node.js <code>crypto</code></td><td>Native, hardware-accelerated</td></tr>
-<tr><td>Client Implementation</td><td>Web Crypto API</td><td>Browser-native, no dependencies</td></tr>
-</table>
-</div>
-<div class="card">
-<h3>Encrypted Payload Format</h3>
-<pre><code>// Base64-encoded JSON envelope:
-{
-  "v": 1,           // Protocol version
-  "iv": "...",      // Hex-encoded 16-byte IV
-  "d": "...",       // Base64-encoded AES-256-CBC ciphertext
-  "ts": 1709510400, // Unix timestamp (ms)
-  "cs": "...",      // SHA-256 checksum (first 16 hex chars)
-  "sig": "..."      // HMAC-SHA256 signature (first 32 hex chars)
-}
-// Wire format: { "_enc": "&lt;base64 of above JSON&gt;" }</code></pre>
-</div>
-<div class="card">
-<h3>Source Files</h3>
-<ul>
-<li><strong>Server middleware:</strong> <code>src/middleware/transport-encryption.ts</code></li>
-<li><strong>Dashboard client:</strong> <code>src/dashboard/components/transport-encryption.js</code></li>
-<li><strong>Settings UI:</strong> <code>src/dashboard/pages/settings.js</code> (ComprehensiveSecurityTab)</li>
-<li><strong>Route wiring:</strong> <code>src/engine/routes.ts</code></li>
-</ul>
-</div>
-<h2 id="related">Related Pages</h2>
-<div class="nav-links">
-<a href="/docs/settings">Settings</a>
-<a href="/docs/vault">Vault & Secrets</a>
-<a href="/docs/database-access">Database Access</a>
-<a href="/docs/organizations">Organizations</a>
-<a href="/docs/agent-email">Agent Email</a>
-<a href="/docs/skills">Skills</a>
-</div>
-<hr style="margin: 32px 0; border: none; border-top: 1px solid var(--border);">
-<p style="font-size: 12px; color: var(--text-muted);">AgenticMail Enterprise Documentation &mdash; Transport Encryption<br>Found an issue? <a href="https://github.com/agenticmail/enterprise/issues" target="_blank">Report it on GitHub</a></p>
-</body>
-</html>

package/src/dashboard/docs/users.html DELETED Viewed

@@ -1,225 +0,0 @@
-<!DOCTYPE html><html lang="en"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>User Management — AgenticMail Enterprise</title>
-<link rel="stylesheet" href="/docs/docs-style.css">
-<script>document.documentElement.setAttribute('data-theme', localStorage.getItem('em_theme') || 'dark');</script>
-</head><body>
-<a href="javascript:history.back()" class="back">← Back to Dashboard</a>
-<h1>User Management</h1>
-<p style="color:var(--text-muted);margin-bottom:24px">Manage dashboard users, roles, permissions, and access control for your AgenticMail Enterprise instance.</p>
-<div class="toc">
-<h3>Table of Contents</h3>
-<ul>
-<li><a href="#overview">Overview</a></li>
-<li><a href="#how-it-works">How It Works</a></li>
-<li><a href="#key-concepts">Key Concepts</a></li>
-<li><a href="#roles">Role System</a></li>
-<li><a href="#permissions">Permission Editor</a></li>
-<li><a href="#agent-access">Agent Access Control</a></li>
-<li><a href="#org-assignment">Client Organization Assignment</a></li>
-<li><a href="#user-lifecycle">User Lifecycle</a></li>
-<li><a href="#configuration">Configuration &amp; Setup</a></li>
-<li><a href="#best-practices">Best Practices</a></li>
-<li><a href="#troubleshooting">Troubleshooting</a></li>
-<li><a href="#related">Related Pages</a></li>
-</ul>
-</div>
-<h2 id="overview">Overview</h2>
-<div class="card">
-<p><strong>For everyone:</strong> The Users page is where you manage who can access your AgenticMail Enterprise dashboard and what they can see and do. Think of it as the "guest list" for your control center — you decide who gets in, what rooms they can enter, and which agents they can interact with.</p>
-<p><strong>For technical users:</strong> This page implements a full RBAC (Role-Based Access Control) system with page-level and tab-level permission granularity, per-user agent access restrictions, client organization scoping, and a multi-step destructive action workflow. The backend exposes <code>/users</code>, <code>/users/:id/permissions</code>, <code>/page-registry</code>, and <code>/organizations</code> API endpoints.</p>
-</div>
-<h2 id="how-it-works">How It Works</h2>
-<ol>
-<li><strong>Create a user</strong> — provide email, initial password, name, and role. The user is forced to change their password on first login.</li>
-<li><strong>Assign a role</strong> — Owner and Admin get full access automatically. Member and Viewer roles can be restricted via the Permission Editor.</li>
-<li><strong>Configure permissions</strong> — Click the shield icon on any Member/Viewer to control which pages, tabs, and agents they can access.</li>
-<li><strong>Optionally bind to an organization</strong> — Restrict a user to only see agents and data belonging to a specific client organization.</li>
-<li><strong>Manage lifecycle</strong> — Edit, deactivate, reactivate, reset passwords, impersonate, or permanently delete users as needed.</li>
-</ol>
-<h2 id="key-concepts">Key Concepts</h2>
-<h3>Page Registry</h3>
-<p>The backend maintains a registry of all dashboard pages and their tabs. This registry is fetched via <code>GET /page-registry</code> and used by the Permission Editor to generate the access control UI. Pages are organized into three sections:</p>
-<table>
-<thead><tr><th>Section</th><th>Description</th></tr></thead>
-<tbody>
-<tr><td><strong>Overview</strong></td><td>Dashboard home, analytics, and monitoring pages</td></tr>
-<tr><td><strong>Management</strong></td><td>Agent management, email, tools, and operational pages</td></tr>
-<tr><td><strong>Administration</strong></td><td>Users, vault, compliance, DLP, and system settings</td></tr>
-</tbody>
-</table>
-<h3>Permission Format</h3>
-<p>Permissions are stored as a JSON object or the string <code>"*"</code> for full access:</p>
-<pre><code>// Full access
-"*"
-// Granular access — page IDs as keys, true or tab array as values
-{
-  "agents": true,              // All tabs on agents page
-  "vault": ["secrets", "audit"], // Only secrets and audit tabs
-  "_allowedAgents": ["agent-id-1", "agent-id-2"]  // Specific agents only
-}</code></pre>
-<h2 id="roles">Role System</h2>
-<table>
-<thead><tr><th>Role</th><th>Access Level</th><th>Permissions Configurable?</th><th>Notes</th></tr></thead>
-<tbody>
-<tr><td><span class="badge">Owner</span></td><td>Full</td><td>No — always full</td><td>Cannot be restricted. Can impersonate other users.</td></tr>
-<tr><td><span class="badge">Admin</span></td><td>Full</td><td>No — always full</td><td>Cannot be restricted. Full administrative access.</td></tr>
-<tr><td><span class="badge">Member</span></td><td>Configurable</td><td>Yes</td><td>Can view and act on assigned pages/tabs.</td></tr>
-<tr><td><span class="badge">Viewer</span></td><td>Configurable (read-only)</td><td>Yes</td><td>Can view but not modify.</td></tr>
-</tbody>
-</table>
-<div class="tip">
-<strong>Tip:</strong> Owner and Admin users always have full access to all pages — the Permission Editor only affects Member and Viewer roles.
-</div>
-<h2 id="permissions">Permission Editor</h2>
-<p>The Permission Editor (shield icon) opens a modal where you can configure:</p>
-<ul>
-<li><strong>Full Access toggle</strong> — grants unrestricted access to all pages, tabs, and agents.</li>
-<li><strong>Page-level access</strong> — check/uncheck individual pages grouped by section (Overview, Management, Administration).</li>
-<li><strong>Tab-level access</strong> — for pages with tabs (e.g., Agents), expand the page to grant access to specific tabs only.</li>
-<li><strong>Quick actions</strong> — "Select All" and "Select None" buttons for bulk toggling.</li>
-<li><strong>Agent access</strong> — restrict which agents the user can see and manage (see below).</li>
-<li><strong>Organization assignment</strong> — bind user to a client organization.</li>
-</ul>
-<p>The editor also shows an inline permission picker when creating new users with Member or Viewer roles, so you can set permissions before the user is created.</p>
-<h2 id="agent-access">Agent Access Control</h2>
-<p>Beyond page/tab permissions, you can control which agents a user can see:</p>
-<ul>
-<li><strong>All Agents</strong> (default) — the user can see and manage every agent in the system.</li>
-<li><strong>Specific agents</strong> — uncheck "All Agents" and select individual agents from the list. The user will only see these agents across the entire dashboard.</li>
-</ul>
-<div class="warning">
-<strong>Warning:</strong> If you select no agents, the user will see an empty agent list everywhere. Make sure at least one agent is selected.
-</div>
-<h2 id="org-assignment">Client Organization Assignment</h2>
-<p>If your deployment uses multi-tenancy with client organizations:</p>
-<ul>
-<li>Assign a user to a client organization to restrict them to only that organization's agents and data.</li>
-<li>The organization switcher will be locked for that user — they cannot switch to other orgs.</li>
-<li>Users without an org assignment are "Internal Users" and can see everything (subject to their role and permissions).</li>
-</ul>
-<h2 id="user-lifecycle">User Lifecycle</h2>
-<h3>Creating Users</h3>
-<p>Click "Add User" and fill in name, email, initial password (or generate one), and role. For Member/Viewer roles, you can customize permissions inline before creating.</p>
-<div class="tip">
-<strong>Tip:</strong> Use the "Generate" button to create a strong random password. The user will be required to change it on first login.
-</div>
-<h3>Editing Users</h3>
-<p>Click the edit icon to change a user's name, role, or organization. Email cannot be changed after creation.</p>
-<h3>Resetting Passwords</h3>
-<p>Click the lock icon to set a new password. If the user has 2FA enabled, the password reset will not affect their TOTP setup.</p>
-<h3>Impersonation (Owner Only)</h3>
-<p>Owners can click the impersonate icon to view the dashboard as another user, seeing exactly what they see based on their permissions. Useful for debugging access issues.</p>
-<h3>Deactivation vs. Deletion</h3>
-<table>
-<thead><tr><th>Action</th><th>Reversible?</th><th>Effect</th></tr></thead>
-<tbody>
-<tr><td><strong>Deactivate</strong></td><td>Yes</td><td>Blocks login. All data preserved. User sees "contact your organization" message.</td></tr>
-<tr><td><strong>Delete</strong></td><td>No</td><td>Permanently removes user, sessions, API keys, permissions, and 2FA config.</td></tr>
-</tbody>
-</table>
-<div class="danger">
-<strong>Danger:</strong> Deletion is a 5-step process requiring you to type the user's email to confirm. It cannot be undone. Always prefer deactivation unless you are certain.
-</div>
-<h3>5-Step Delete Confirmation</h3>
-<ol>
-<li><strong>Warning</strong> — confirms you understand this is permanent.</li>
-<li><strong>Data loss</strong> — lists all data that will be lost (sessions, audit references, API keys, 2FA).</li>
-<li><strong>Impact assessment</strong> — warns about orphaned agent assignments, approval workflows, and cron jobs.</li>
-<li><strong>Alternative suggestion</strong> — recommends deactivation as the safe option.</li>
-<li><strong>Final confirmation</strong> — type the user's email to confirm deletion.</li>
-</ol>
-<h2 id="configuration">Configuration &amp; Setup</h2>
-<h3>API Endpoints</h3>
-<table>
-<thead><tr><th>Method</th><th>Endpoint</th><th>Description</th></tr></thead>
-<tbody>
-<tr><td>GET</td><td><code>/users</code></td><td>List all users</td></tr>
-<tr><td>POST</td><td><code>/users</code></td><td>Create a new user</td></tr>
-<tr><td>PATCH</td><td><code>/users/:id</code></td><td>Update user (name, role, clientOrgId)</td></tr>
-<tr><td>DELETE</td><td><code>/users/:id</code></td><td>Permanently delete user (requires confirmation token)</td></tr>
-<tr><td>GET</td><td><code>/users/:id/permissions</code></td><td>Get user permissions</td></tr>
-<tr><td>PUT</td><td><code>/users/:id/permissions</code></td><td>Update user permissions</td></tr>
-<tr><td>POST</td><td><code>/users/:id/reset-password</code></td><td>Reset user password</td></tr>
-<tr><td>POST</td><td><code>/users/:id/deactivate</code></td><td>Deactivate user</td></tr>
-<tr><td>POST</td><td><code>/users/:id/reactivate</code></td><td>Reactivate user</td></tr>
-<tr><td>GET</td><td><code>/page-registry</code></td><td>Get page/tab registry for permission editor</td></tr>
-<tr><td>GET</td><td><code>/organizations</code></td><td>List client organizations</td></tr>
-</tbody>
-</table>
-<h3>User Table Columns</h3>
-<p>The users table displays: Name, Email, Role, Organization, Status (Active/Deactivated), Access (Full or page count), 2FA (On/Off), Created date, and Actions.</p>
-<h2 id="best-practices">Best Practices</h2>
-<div class="card">
-<ul>
-<li><strong>Principle of least privilege</strong> — start users with Viewer role and only elevate as needed.</li>
-<li><strong>Use organizations</strong> — for multi-tenant setups, always bind external users to their client org.</li>
-<li><strong>Prefer deactivation</strong> — deactivate users who leave the team instead of deleting them, preserving audit trail integrity.</li>
-<li><strong>Limit Owner accounts</strong> — only 1–2 users should have Owner role. Use Admin for day-to-day administration.</li>
-<li><strong>Review permissions quarterly</strong> — audit who has access to what and remove unnecessary grants.</li>
-<li><strong>Use tab-level restrictions</strong> — if a Member only needs to see agent logs but not configuration, restrict at the tab level.</li>
-<li><strong>Generate passwords</strong> — always use the Generate button rather than creating weak passwords manually.</li>
-</ul>
-</div>
-<h2 id="troubleshooting">Troubleshooting</h2>
-<div class="card">
-<h3>User can't see certain pages</h3>
-<p>Check their role and permissions. If they're a Member or Viewer, click the shield icon to verify which pages are granted. Remember that Owner and Admin roles always have full access.</p>
-<h3>User can't see any agents</h3>
-<p>The agent access control may be set to specific agents with none selected. Open the Permission Editor and either check "All Agents" or select specific agents.</p>
-<h3>Organization switcher is locked</h3>
-<p>The user is bound to a client organization. Edit the user and change their organization to "None (Internal User)" to unlock it.</p>
-<h3>"Cannot delete user" error</h3>
-<p>Ensure you're sending the correct confirmation token: <code>DELETE_USER_{email}</code>. Only Owners can delete users, and you cannot delete yourself.</p>
-<h3>Permissions not taking effect</h3>
-<p>The user may need to refresh their browser or log out and back in for permission changes to take effect.</p>
-<h3>2FA still active after password reset</h3>
-<p>This is by design — resetting a password does not disable two-factor authentication. The user's TOTP setup is preserved.</p>
-</div>
-<h2 id="related">Related Pages</h2>
-<div class="nav">
-<a href="/docs/vault.html">Vault</a> — Manage secrets and credentials that users access.
-<a href="/docs/compliance.html">Compliance</a> — Generate audit reports that reference user actions.
-<a href="/docs/dlp.html">DLP</a> — Data loss prevention rules that apply to user-managed agents.
-</div>
-<div style="margin-top:40px;padding-top:16px;border-top:1px solid var(--border);display:flex;justify-content:space-between;align-items:center;font-size:12px;color:var(--text-muted)">
-  <span>AgenticMail Enterprise Documentation</span>
-  <a href="https://github.com/agenticmail/enterprise/issues" target="_blank" style="display:inline-flex;align-items:center;gap:4px;color:var(--text-muted);text-decoration:none"><svg width="14" height="14" viewBox="0 0 24 24" fill="currentColor"><path d="M12 0C5.37 0 0 5.37 0 12c0 5.31 3.435 9.795 8.205 11.385.6.105.825-.255.825-.57 0-.285-.015-1.23-.015-2.235-3.015.555-3.795-.735-4.035-1.41-.135-.345-.72-1.41-1.23-1.695-.42-.225-1.02-.78-.015-.795.945-.015 1.62.87 1.845 1.23 1.08 1.815 2.805 1.305 3.495.99.105-.78.42-1.305.765-1.605-2.67-.3-5.46-1.335-5.46-5.925 0-1.305.465-2.385 1.23-3.225-.12-.3-.54-1.53.12-3.18 0 0 1.005-.315 3.3 1.23.96-.27 1.98-.405 3-.405s2.04.135 3 .405c2.295-1.56 3.3-1.23 3.3-1.23.66 1.65.24 2.88.12 3.18.765.84 1.23 1.905 1.23 3.225 0 4.605-2.805 5.625-5.475 5.925.435.375.81 1.095.81 2.22 0 1.605-.015 2.895-.015 3.3 0 .315.225.69.825.57A12.02 12.02 0 0024 12c0-6.63-5.37-12-12-12z"/></svg> Report an issue</a>
-</div>
-</body></html>