npm - @agenticmail/enterprise - Versions diffs - 0.5.327 → 0.5.329 - Mend

@agenticmail/enterprise 0.5.327 → 0.5.329

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (888) hide show

package/dist/agent-tools-F3CYENMK.js +13949 -0
package/dist/browser-tool-P57PLVW2.js +4002 -0
package/dist/chunk-3RI3AIJN.js +1519 -0
package/dist/chunk-AD4DFKHR.js +4928 -0
package/dist/chunk-UQXPVWXG.js +5101 -0
package/dist/cli-agent-K6UFZRXC.js +2473 -0
package/dist/cli-serve-4MT7RDEL.js +260 -0
package/dist/cli.js +3 -3
package/dist/dashboard/app.js +1 -1
package/dist/dashboard/components/transport-encryption.js +0 -62
package/dist/dashboard/pages/agent-detail/index.js +5 -2
package/dist/dashboard/pages/agent-detail/manager.js +1 -1
package/dist/dashboard/pages/agent-detail/overview.js +4 -2
package/dist/dashboard/pages/agent-detail/tool-security.js +1 -1
package/dist/dashboard/pages/domain-status.js +3 -6
package/dist/dashboard/pages/memory-transfer.js +1 -1
package/dist/dashboard/pages/messages.js +0 -1
package/dist/dashboard/pages/roles.js +0 -2
package/dist/dashboard/pages/workforce.js +0 -1
package/dist/index.js +3 -3
package/dist/runtime-L5ADJORP.js +45 -0
package/dist/server-KSN56EZQ.js +28 -0
package/dist/setup-UUNBBOQH.js +20 -0
package/logs/cloudflared-error.log +42 -0
package/logs/enterprise-out.log +6 -0
package/package.json +1 -1
package/src/admin/page-registry.ts +0 -290
package/src/admin/routes.ts +0 -2968
package/src/agent-tools/common.ts +0 -260
package/src/agent-tools/index.ts +0 -542
package/src/agent-tools/merge.ts +0 -62
package/src/agent-tools/middleware.ts +0 -436
package/src/agent-tools/schema/typebox.ts +0 -25
package/src/agent-tools/security.ts +0 -352
package/src/agent-tools/tool-resolver.ts +0 -1018
package/src/agent-tools/tools/agenticmail.ts +0 -1017
package/src/agent-tools/tools/bash.ts +0 -179
package/src/agent-tools/tools/browser-tool.schema.ts +0 -112
package/src/agent-tools/tools/browser-tool.ts +0 -388
package/src/agent-tools/tools/browser.ts +0 -764
package/src/agent-tools/tools/edit.ts +0 -100
package/src/agent-tools/tools/enterprise-code-sandbox.ts +0 -395
package/src/agent-tools/tools/enterprise-database.ts +0 -377
package/src/agent-tools/tools/enterprise-diff.ts +0 -580
package/src/agent-tools/tools/enterprise-documents.ts +0 -896
package/src/agent-tools/tools/enterprise-http.ts +0 -485
package/src/agent-tools/tools/enterprise-security-scan.ts +0 -528
package/src/agent-tools/tools/enterprise-spreadsheet.ts +0 -825
package/src/agent-tools/tools/glob.ts +0 -129
package/src/agent-tools/tools/google/calendar.ts +0 -230
package/src/agent-tools/tools/google/chat.ts +0 -725
package/src/agent-tools/tools/google/contacts.ts +0 -209
package/src/agent-tools/tools/google/docs.ts +0 -162
package/src/agent-tools/tools/google/drive.ts +0 -392
package/src/agent-tools/tools/google/forms.ts +0 -367
package/src/agent-tools/tools/google/gmail.ts +0 -897
package/src/agent-tools/tools/google/index.ts +0 -86
package/src/agent-tools/tools/google/maps.ts +0 -543
package/src/agent-tools/tools/google/meeting-voice.ts +0 -885
package/src/agent-tools/tools/google/meetings.ts +0 -1094
package/src/agent-tools/tools/google/sheets.ts +0 -215
package/src/agent-tools/tools/google/slides.ts +0 -559
package/src/agent-tools/tools/google/tasks.ts +0 -200
package/src/agent-tools/tools/grep.ts +0 -178
package/src/agent-tools/tools/integrations/_factory.ts +0 -102
package/src/agent-tools/tools/integrations/activecampaign.ts +0 -14
package/src/agent-tools/tools/integrations/adobe-sign.ts +0 -14
package/src/agent-tools/tools/integrations/adp.ts +0 -14
package/src/agent-tools/tools/integrations/airtable.ts +0 -14
package/src/agent-tools/tools/integrations/apollo.ts +0 -14
package/src/agent-tools/tools/integrations/asana.ts +0 -14
package/src/agent-tools/tools/integrations/auth0.ts +0 -14
package/src/agent-tools/tools/integrations/aws.ts +0 -14
package/src/agent-tools/tools/integrations/azure-devops.ts +0 -14
package/src/agent-tools/tools/integrations/bamboohr.ts +0 -14
package/src/agent-tools/tools/integrations/basecamp.ts +0 -14
package/src/agent-tools/tools/integrations/bigcommerce.ts +0 -14
package/src/agent-tools/tools/integrations/bitbucket.ts +0 -14
package/src/agent-tools/tools/integrations/box.ts +0 -14
package/src/agent-tools/tools/integrations/brex.ts +0 -14
package/src/agent-tools/tools/integrations/buffer.ts +0 -14
package/src/agent-tools/tools/integrations/calendly.ts +0 -14
package/src/agent-tools/tools/integrations/canva.ts +0 -14
package/src/agent-tools/tools/integrations/chargebee.ts +0 -14
package/src/agent-tools/tools/integrations/circleci.ts +0 -14
package/src/agent-tools/tools/integrations/clickup.ts +0 -14
package/src/agent-tools/tools/integrations/close.ts +0 -14
package/src/agent-tools/tools/integrations/cloudflare.ts +0 -14
package/src/agent-tools/tools/integrations/confluence.ts +0 -14
package/src/agent-tools/tools/integrations/contentful.ts +0 -14
package/src/agent-tools/tools/integrations/copper.ts +0 -14
package/src/agent-tools/tools/integrations/crisp.ts +0 -14
package/src/agent-tools/tools/integrations/crowdstrike.ts +0 -14
package/src/agent-tools/tools/integrations/datadog.ts +0 -14
package/src/agent-tools/tools/integrations/digitalocean.ts +0 -14
package/src/agent-tools/tools/integrations/discord.ts +0 -14
package/src/agent-tools/tools/integrations/docker.ts +0 -14
package/src/agent-tools/tools/integrations/docusign.ts +0 -14
package/src/agent-tools/tools/integrations/drift.ts +0 -14
package/src/agent-tools/tools/integrations/dropbox.ts +0 -14
package/src/agent-tools/tools/integrations/figma.ts +0 -14
package/src/agent-tools/tools/integrations/firebase.ts +0 -14
package/src/agent-tools/tools/integrations/flyio.ts +0 -14
package/src/agent-tools/tools/integrations/freshbooks.ts +0 -14
package/src/agent-tools/tools/integrations/freshdesk.ts +0 -14
package/src/agent-tools/tools/integrations/freshsales.ts +0 -14
package/src/agent-tools/tools/integrations/freshservice.ts +0 -14
package/src/agent-tools/tools/integrations/front.ts +0 -14
package/src/agent-tools/tools/integrations/github-actions.ts +0 -14
package/src/agent-tools/tools/integrations/github.ts +0 -14
package/src/agent-tools/tools/integrations/gitlab.ts +0 -14
package/src/agent-tools/tools/integrations/gong.ts +0 -14
package/src/agent-tools/tools/integrations/google-ads.ts +0 -14
package/src/agent-tools/tools/integrations/google-analytics.ts +0 -14
package/src/agent-tools/tools/integrations/google-cloud.ts +0 -14
package/src/agent-tools/tools/integrations/gotomeeting.ts +0 -14
package/src/agent-tools/tools/integrations/grafana.ts +0 -14
package/src/agent-tools/tools/integrations/greenhouse.ts +0 -14
package/src/agent-tools/tools/integrations/gusto.ts +0 -14
package/src/agent-tools/tools/integrations/hashicorp-vault.ts +0 -14
package/src/agent-tools/tools/integrations/heroku.ts +0 -14
package/src/agent-tools/tools/integrations/hibob.ts +0 -14
package/src/agent-tools/tools/integrations/hootsuite.ts +0 -14
package/src/agent-tools/tools/integrations/hubspot.ts +0 -14
package/src/agent-tools/tools/integrations/huggingface.ts +0 -14
package/src/agent-tools/tools/integrations/index.ts +0 -474
package/src/agent-tools/tools/integrations/intercom.ts +0 -14
package/src/agent-tools/tools/integrations/jira.ts +0 -14
package/src/agent-tools/tools/integrations/klaviyo.ts +0 -14
package/src/agent-tools/tools/integrations/kubernetes.ts +0 -14
package/src/agent-tools/tools/integrations/lattice.ts +0 -14
package/src/agent-tools/tools/integrations/launchdarkly.ts +0 -14
package/src/agent-tools/tools/integrations/lever.ts +0 -14
package/src/agent-tools/tools/integrations/linear.ts +0 -14
package/src/agent-tools/tools/integrations/linkedin.ts +0 -14
package/src/agent-tools/tools/integrations/livechat.ts +0 -14
package/src/agent-tools/tools/integrations/loom.ts +0 -14
package/src/agent-tools/tools/integrations/mailchimp.ts +0 -14
package/src/agent-tools/tools/integrations/mailgun.ts +0 -14
package/src/agent-tools/tools/integrations/miro.ts +0 -14
package/src/agent-tools/tools/integrations/mixpanel.ts +0 -14
package/src/agent-tools/tools/integrations/monday.ts +0 -14
package/src/agent-tools/tools/integrations/mongodb-atlas.ts +0 -14
package/src/agent-tools/tools/integrations/neon.ts +0 -14
package/src/agent-tools/tools/integrations/netlify.ts +0 -14
package/src/agent-tools/tools/integrations/netsuite.ts +0 -14
package/src/agent-tools/tools/integrations/newrelic.ts +0 -14
package/src/agent-tools/tools/integrations/notion.ts +0 -14
package/src/agent-tools/tools/integrations/okta.ts +0 -14
package/src/agent-tools/tools/integrations/openai.ts +0 -14
package/src/agent-tools/tools/integrations/opsgenie.ts +0 -14
package/src/agent-tools/tools/integrations/outreach.ts +0 -14
package/src/agent-tools/tools/integrations/paddle.ts +0 -14
package/src/agent-tools/tools/integrations/pagerduty.ts +0 -14
package/src/agent-tools/tools/integrations/pandadoc.ts +0 -14
package/src/agent-tools/tools/integrations/paypal.ts +0 -14
package/src/agent-tools/tools/integrations/personio.ts +0 -14
package/src/agent-tools/tools/integrations/pinecone.ts +0 -14
package/src/agent-tools/tools/integrations/pipedrive.ts +0 -14
package/src/agent-tools/tools/integrations/plaid.ts +0 -14
package/src/agent-tools/tools/integrations/postmark.ts +0 -14
package/src/agent-tools/tools/integrations/power-automate.ts +0 -14
package/src/agent-tools/tools/integrations/quickbooks.ts +0 -14
package/src/agent-tools/tools/integrations/recurly.ts +0 -14
package/src/agent-tools/tools/integrations/reddit.ts +0 -14
package/src/agent-tools/tools/integrations/render.ts +0 -14
package/src/agent-tools/tools/integrations/ringcentral.ts +0 -14
package/src/agent-tools/tools/integrations/rippling.ts +0 -14
package/src/agent-tools/tools/integrations/salesforce.ts +0 -14
package/src/agent-tools/tools/integrations/salesloft.ts +0 -14
package/src/agent-tools/tools/integrations/sanity.ts +0 -14
package/src/agent-tools/tools/integrations/sap.ts +0 -14
package/src/agent-tools/tools/integrations/segment.ts +0 -14
package/src/agent-tools/tools/integrations/sendgrid.ts +0 -14
package/src/agent-tools/tools/integrations/sentry.ts +0 -14
package/src/agent-tools/tools/integrations/servicenow.ts +0 -14
package/src/agent-tools/tools/integrations/shopify.ts +0 -14
package/src/agent-tools/tools/integrations/shortcut.ts +0 -14
package/src/agent-tools/tools/integrations/slack.ts +0 -14
package/src/agent-tools/tools/integrations/smartsheet.ts +0 -14
package/src/agent-tools/tools/integrations/snowflake.ts +0 -14
package/src/agent-tools/tools/integrations/snyk.ts +0 -14
package/src/agent-tools/tools/integrations/splunk.ts +0 -14
package/src/agent-tools/tools/integrations/square.ts +0 -14
package/src/agent-tools/tools/integrations/statuspage.ts +0 -14
package/src/agent-tools/tools/integrations/stripe.ts +0 -14
package/src/agent-tools/tools/integrations/supabase.ts +0 -14
package/src/agent-tools/tools/integrations/teamwork.ts +0 -14
package/src/agent-tools/tools/integrations/telegram.ts +0 -14
package/src/agent-tools/tools/integrations/terraform.ts +0 -14
package/src/agent-tools/tools/integrations/todoist.ts +0 -14
package/src/agent-tools/tools/integrations/trello.ts +0 -14
package/src/agent-tools/tools/integrations/twilio.ts +0 -14
package/src/agent-tools/tools/integrations/twitter.ts +0 -14
package/src/agent-tools/tools/integrations/vercel.ts +0 -14
package/src/agent-tools/tools/integrations/weaviate.ts +0 -14
package/src/agent-tools/tools/integrations/webex.ts +0 -14
package/src/agent-tools/tools/integrations/webflow.ts +0 -14
package/src/agent-tools/tools/integrations/whatsapp.ts +0 -14
package/src/agent-tools/tools/integrations/whereby.ts +0 -14
package/src/agent-tools/tools/integrations/woocommerce.ts +0 -14
package/src/agent-tools/tools/integrations/wordpress.ts +0 -14
package/src/agent-tools/tools/integrations/workday.ts +0 -14
package/src/agent-tools/tools/integrations/wrike.ts +0 -14
package/src/agent-tools/tools/integrations/xero.ts +0 -14
package/src/agent-tools/tools/integrations/youtube.ts +0 -14
package/src/agent-tools/tools/integrations/zendesk.ts +0 -14
package/src/agent-tools/tools/integrations/zoho-crm.ts +0 -14
package/src/agent-tools/tools/integrations/zoom.ts +0 -14
package/src/agent-tools/tools/integrations/zuora.ts +0 -14
package/src/agent-tools/tools/knowledge-search.ts +0 -318
package/src/agent-tools/tools/local/coding.ts +0 -626
package/src/agent-tools/tools/local/dependency-manager.ts +0 -647
package/src/agent-tools/tools/local/file-edit.ts +0 -31
package/src/agent-tools/tools/local/file-list.ts +0 -39
package/src/agent-tools/tools/local/file-ops.ts +0 -48
package/src/agent-tools/tools/local/file-read.ts +0 -39
package/src/agent-tools/tools/local/file-search.ts +0 -46
package/src/agent-tools/tools/local/file-write.ts +0 -28
package/src/agent-tools/tools/local/filesystem.ts +0 -5
package/src/agent-tools/tools/local/index.ts +0 -55
package/src/agent-tools/tools/local/resolve-path.ts +0 -18
package/src/agent-tools/tools/local/shell.ts +0 -277
package/src/agent-tools/tools/local/system-info.ts +0 -29
package/src/agent-tools/tools/management.ts +0 -425
package/src/agent-tools/tools/mcp-bridge.ts +0 -142
package/src/agent-tools/tools/mcp-server-tools.ts +0 -91
package/src/agent-tools/tools/meeting-lifecycle.ts +0 -438
package/src/agent-tools/tools/memory.ts +0 -509
package/src/agent-tools/tools/messaging/index.ts +0 -6
package/src/agent-tools/tools/messaging/telegram.ts +0 -167
package/src/agent-tools/tools/messaging/whatsapp.ts +0 -651
package/src/agent-tools/tools/microsoft/contacts.ts +0 -176
package/src/agent-tools/tools/microsoft/excel-vba.ts +0 -331
package/src/agent-tools/tools/microsoft/excel.ts +0 -261
package/src/agent-tools/tools/microsoft/graph-api.ts +0 -161
package/src/agent-tools/tools/microsoft/index.ts +0 -95
package/src/agent-tools/tools/microsoft/onedrive.ts +0 -429
package/src/agent-tools/tools/microsoft/onenote.ts +0 -186
package/src/agent-tools/tools/microsoft/outlook-calendar.ts +0 -286
package/src/agent-tools/tools/microsoft/outlook-mail.ts +0 -723
package/src/agent-tools/tools/microsoft/planner.ts +0 -200
package/src/agent-tools/tools/microsoft/powerbi.ts +0 -266
package/src/agent-tools/tools/microsoft/powerpoint.ts +0 -186
package/src/agent-tools/tools/microsoft/sharepoint.ts +0 -328
package/src/agent-tools/tools/microsoft/teams.ts +0 -463
package/src/agent-tools/tools/microsoft/todo.ts +0 -181
package/src/agent-tools/tools/oauth-token-provider.ts +0 -101
package/src/agent-tools/tools/read.ts +0 -160
package/src/agent-tools/tools/visual-memory/capture.ts +0 -217
package/src/agent-tools/tools/visual-memory/diff.ts +0 -283
package/src/agent-tools/tools/visual-memory/index.ts +0 -698
package/src/agent-tools/tools/visual-memory/phash.ts +0 -120
package/src/agent-tools/tools/visual-memory/similarity.ts +0 -354
package/src/agent-tools/tools/visual-memory/storage.ts +0 -534
package/src/agent-tools/tools/visual-memory/types.ts +0 -100
package/src/agent-tools/tools/web-fetch-utils.ts +0 -202
package/src/agent-tools/tools/web-fetch.ts +0 -464
package/src/agent-tools/tools/web-search.ts +0 -480
package/src/agent-tools/tools/web-shared.ts +0 -232
package/src/agent-tools/tools/write.ts +0 -68
package/src/agent-tools/types.ts +0 -214
package/src/agenticmail/index.ts +0 -34
package/src/agenticmail/manager.ts +0 -253
package/src/agenticmail/providers/google.ts +0 -391
package/src/agenticmail/providers/imap.ts +0 -454
package/src/agenticmail/providers/index.ts +0 -28
package/src/agenticmail/providers/microsoft.ts +0 -260
package/src/agenticmail/types.ts +0 -173
package/src/auth/routes.ts +0 -1589
package/src/browser/bridge-auth-registry.ts +0 -34
package/src/browser/bridge-server.ts +0 -93
package/src/browser/cdp.helpers.ts +0 -180
package/src/browser/cdp.ts +0 -466
package/src/browser/chrome.executables.ts +0 -625
package/src/browser/chrome.profile-decoration.ts +0 -198
package/src/browser/chrome.ts +0 -349
package/src/browser/client-actions-core.ts +0 -259
package/src/browser/client-actions-observe.ts +0 -184
package/src/browser/client-actions-state.ts +0 -284
package/src/browser/client-actions-types.ts +0 -16
package/src/browser/client-actions-url.ts +0 -11
package/src/browser/client-actions.ts +0 -4
package/src/browser/client-fetch.ts +0 -253
package/src/browser/client.ts +0 -337
package/src/browser/config.ts +0 -301
package/src/browser/constants.ts +0 -8
package/src/browser/control-auth.ts +0 -94
package/src/browser/control-service.ts +0 -81
package/src/browser/csrf.ts +0 -87
package/src/browser/enterprise-compat.ts +0 -562
package/src/browser/extension-relay.ts +0 -834
package/src/browser/http-auth.ts +0 -63
package/src/browser/navigation-guard.ts +0 -50
package/src/browser/paths.ts +0 -49
package/src/browser/playwright.d.ts +0 -12
package/src/browser/profiles-service.ts +0 -187
package/src/browser/profiles.ts +0 -114
package/src/browser/proxy-files.ts +0 -41
package/src/browser/pw-ai-module.ts +0 -52
package/src/browser/pw-ai-state.ts +0 -9
package/src/browser/pw-ai.ts +0 -65
package/src/browser/pw-role-snapshot.ts +0 -434
package/src/browser/pw-session.ts +0 -810
package/src/browser/pw-tools-core.activity.ts +0 -68
package/src/browser/pw-tools-core.downloads.ts +0 -281
package/src/browser/pw-tools-core.interactions.ts +0 -646
package/src/browser/pw-tools-core.responses.ts +0 -124
package/src/browser/pw-tools-core.shared.ts +0 -70
package/src/browser/pw-tools-core.snapshot.ts +0 -213
package/src/browser/pw-tools-core.state.ts +0 -209
package/src/browser/pw-tools-core.storage.ts +0 -128
package/src/browser/pw-tools-core.trace.ts +0 -37
package/src/browser/pw-tools-core.ts +0 -8
package/src/browser/resolved-config-refresh.ts +0 -59
package/src/browser/routes/agent.act.shared.ts +0 -52
package/src/browser/routes/agent.act.ts +0 -575
package/src/browser/routes/agent.debug.ts +0 -149
package/src/browser/routes/agent.shared.ts +0 -143
package/src/browser/routes/agent.snapshot.ts +0 -333
package/src/browser/routes/agent.storage.ts +0 -451
package/src/browser/routes/agent.ts +0 -13
package/src/browser/routes/basic.ts +0 -202
package/src/browser/routes/dispatcher.ts +0 -126
package/src/browser/routes/index.ts +0 -11
package/src/browser/routes/path-output.ts +0 -1
package/src/browser/routes/tabs.ts +0 -217
package/src/browser/routes/types.ts +0 -26
package/src/browser/routes/utils.ts +0 -73
package/src/browser/screenshot.ts +0 -54
package/src/browser/server-context.ts +0 -688
package/src/browser/server-context.types.ts +0 -65
package/src/browser/server-lifecycle.ts +0 -48
package/src/browser/server-middleware.ts +0 -37
package/src/browser/server.ts +0 -110
package/src/browser/target-id.ts +0 -30
package/src/browser/trash.ts +0 -21
package/src/cli-agent.ts +0 -2452
package/src/cli-reset-password.ts +0 -138
package/src/cli-serve.ts +0 -314
package/src/cli.ts +0 -103
package/src/dashboard/app.js +0 -579
package/src/dashboard/assets/brand-logos.js +0 -350
package/src/dashboard/assets/icons/emoji-icons.js +0 -893
package/src/dashboard/assets/logo.png +0 -0
package/src/dashboard/assets/provider-logos.js +0 -139
package/src/dashboard/components/error-boundary.js +0 -21
package/src/dashboard/components/help-button.js +0 -65
package/src/dashboard/components/icons.js +0 -64
package/src/dashboard/components/knowledge-link.js +0 -79
package/src/dashboard/components/modal.js +0 -125
package/src/dashboard/components/org-switcher.js +0 -156
package/src/dashboard/components/persona-fields.js +0 -460
package/src/dashboard/components/settings-help.js +0 -193
package/src/dashboard/components/tag-input.js +0 -96
package/src/dashboard/components/timezones.js +0 -352
package/src/dashboard/components/transport-encryption.js +0 -288
package/src/dashboard/components/utils.js +0 -205
package/src/dashboard/data/countries.js +0 -255
package/src/dashboard/docs/activity.html +0 -253
package/src/dashboard/docs/agent-activity.html +0 -199
package/src/dashboard/docs/agent-autonomy.html +0 -161
package/src/dashboard/docs/agent-budget.html +0 -190
package/src/dashboard/docs/agent-channels.html +0 -189
package/src/dashboard/docs/agent-communication.html +0 -171
package/src/dashboard/docs/agent-configuration.html +0 -194
package/src/dashboard/docs/agent-deployment.html +0 -323
package/src/dashboard/docs/agent-email.html +0 -184
package/src/dashboard/docs/agent-guardrails.html +0 -206
package/src/dashboard/docs/agent-manager.html +0 -226
package/src/dashboard/docs/agent-memory.html +0 -215
package/src/dashboard/docs/agent-overview.html +0 -226
package/src/dashboard/docs/agent-permissions.html +0 -305
package/src/dashboard/docs/agent-personal.html +0 -155
package/src/dashboard/docs/agent-security.html +0 -188
package/src/dashboard/docs/agent-skills.html +0 -224
package/src/dashboard/docs/agent-tool-security.html +0 -205
package/src/dashboard/docs/agent-tools.html +0 -238
package/src/dashboard/docs/agent-whatsapp.html +0 -210
package/src/dashboard/docs/agent-workforce.html +0 -199
package/src/dashboard/docs/agents.html +0 -258
package/src/dashboard/docs/approvals.html +0 -200
package/src/dashboard/docs/audit.html +0 -206
package/src/dashboard/docs/browser-providers.html +0 -313
package/src/dashboard/docs/cluster.html +0 -285
package/src/dashboard/docs/community-skills.html +0 -253
package/src/dashboard/docs/compliance.html +0 -221
package/src/dashboard/docs/dashboard.html +0 -84
package/src/dashboard/docs/database-access.html +0 -322
package/src/dashboard/docs/dlp.html +0 -268
package/src/dashboard/docs/docs-style.css +0 -26
package/src/dashboard/docs/domain-status.html +0 -294
package/src/dashboard/docs/guardrails.html +0 -265
package/src/dashboard/docs/journal.html +0 -197
package/src/dashboard/docs/knowledge-contributions.html +0 -286
package/src/dashboard/docs/knowledge.html +0 -268
package/src/dashboard/docs/memory-transfer.html +0 -311
package/src/dashboard/docs/messages.html +0 -217
package/src/dashboard/docs/multi-tenant.html +0 -311
package/src/dashboard/docs/org-chart.html +0 -239
package/src/dashboard/docs/organizations.html +0 -182
package/src/dashboard/docs/roles.html +0 -195
package/src/dashboard/docs/settings-network.html +0 -321
package/src/dashboard/docs/settings-security.html +0 -347
package/src/dashboard/docs/settings-tool-security.html +0 -176
package/src/dashboard/docs/settings.html +0 -280
package/src/dashboard/docs/skill-connections.html +0 -270
package/src/dashboard/docs/skills.html +0 -206
package/src/dashboard/docs/task-pipeline.html +0 -261
package/src/dashboard/docs/transport-encryption.html +0 -359
package/src/dashboard/docs/users.html +0 -225
package/src/dashboard/docs/vault.html +0 -260
package/src/dashboard/docs/workforce.html +0 -245
package/src/dashboard/index.html +0 -444
package/src/dashboard/pages/activity.js +0 -379
package/src/dashboard/pages/agent-detail/activity.js +0 -277
package/src/dashboard/pages/agent-detail/autonomy.js +0 -244
package/src/dashboard/pages/agent-detail/budget.js +0 -269
package/src/dashboard/pages/agent-detail/channels.js +0 -494
package/src/dashboard/pages/agent-detail/communication.js +0 -296
package/src/dashboard/pages/agent-detail/configuration.js +0 -882
package/src/dashboard/pages/agent-detail/deployment.js +0 -958
package/src/dashboard/pages/agent-detail/email.js +0 -674
package/src/dashboard/pages/agent-detail/guardrails.js +0 -521
package/src/dashboard/pages/agent-detail/index.js +0 -261
package/src/dashboard/pages/agent-detail/manager.js +0 -357
package/src/dashboard/pages/agent-detail/meeting-browser.js +0 -933
package/src/dashboard/pages/agent-detail/memory.js +0 -368
package/src/dashboard/pages/agent-detail/overview.js +0 -844
package/src/dashboard/pages/agent-detail/permissions.js +0 -1163
package/src/dashboard/pages/agent-detail/personal-details.js +0 -404
package/src/dashboard/pages/agent-detail/security.js +0 -409
package/src/dashboard/pages/agent-detail/shared.js +0 -85
package/src/dashboard/pages/agent-detail/skills-section.js +0 -183
package/src/dashboard/pages/agent-detail/tool-security.js +0 -380
package/src/dashboard/pages/agent-detail/tools.js +0 -322
package/src/dashboard/pages/agent-detail/whatsapp.js +0 -824
package/src/dashboard/pages/agent-detail/workforce.js +0 -683
package/src/dashboard/pages/agents.js +0 -1242
package/src/dashboard/pages/approvals.js +0 -100
package/src/dashboard/pages/audit.js +0 -198
package/src/dashboard/pages/cluster.js +0 -512
package/src/dashboard/pages/community-skills.js +0 -1219
package/src/dashboard/pages/compliance.js +0 -475
package/src/dashboard/pages/dashboard.js +0 -180
package/src/dashboard/pages/database-access.js +0 -812
package/src/dashboard/pages/dlp.js +0 -293
package/src/dashboard/pages/domain-status.js +0 -951
package/src/dashboard/pages/guardrails.js +0 -1035
package/src/dashboard/pages/journal.js +0 -172
package/src/dashboard/pages/knowledge-contributions.js +0 -1682
package/src/dashboard/pages/knowledge-import.js +0 -455
package/src/dashboard/pages/knowledge.js +0 -582
package/src/dashboard/pages/login.js +0 -1056
package/src/dashboard/pages/memory-transfer.js +0 -631
package/src/dashboard/pages/messages.js +0 -303
package/src/dashboard/pages/org-chart.js +0 -349
package/src/dashboard/pages/organizations.js +0 -1081
package/src/dashboard/pages/roles.js +0 -780
package/src/dashboard/pages/settings.js +0 -3790
package/src/dashboard/pages/skill-connections.js +0 -982
package/src/dashboard/pages/skills.js +0 -879
package/src/dashboard/pages/task-pipeline.js +0 -684
package/src/dashboard/pages/users.js +0 -867
package/src/dashboard/pages/vault.js +0 -791
package/src/dashboard/pages/workforce.js +0 -851
package/src/dashboard/vendor/react-dom.development.js +0 -29924
package/src/dashboard/vendor/react-dom.production.min.js +0 -267
package/src/dashboard/vendor/react.development.js +0 -3343
package/src/dashboard/vendor/react.production.min.js +0 -31
package/src/database-access/agent-tools.ts +0 -193
package/src/database-access/connection-manager.ts +0 -1341
package/src/database-access/index.ts +0 -21
package/src/database-access/query-sanitizer.ts +0 -220
package/src/database-access/routes.ts +0 -226
package/src/database-access/types.ts +0 -226
package/src/db/adapter.ts +0 -510
package/src/db/dynamodb.ts +0 -454
package/src/db/factory.ts +0 -129
package/src/db/mongodb.ts +0 -360
package/src/db/mysql.ts +0 -531
package/src/db/postgres.ts +0 -863
package/src/db/proxy.ts +0 -39
package/src/db/resolve-driver.ts +0 -29
package/src/db/sql-schema.ts +0 -124
package/src/db/sqlite.ts +0 -493
package/src/db/turso.ts +0 -470
package/src/deploy/fly.ts +0 -368
package/src/deploy/managed.ts +0 -235
package/src/domain-lock/cli-recover.ts +0 -591
package/src/domain-lock/cli-verify.ts +0 -190
package/src/domain-lock/index.ts +0 -220
package/src/engine/activity-routes.ts +0 -154
package/src/engine/activity.ts +0 -568
package/src/engine/agent-autonomy.ts +0 -974
package/src/engine/agent-config.ts +0 -646
package/src/engine/agent-heartbeat.ts +0 -720
package/src/engine/agent-hierarchy.ts +0 -1064
package/src/engine/agent-memory.ts +0 -806
package/src/engine/agent-notify.ts +0 -50
package/src/engine/agent-routes.ts +0 -2583
package/src/engine/agent-status.ts +0 -311
package/src/engine/ambient-memory.ts +0 -401
package/src/engine/approvals.ts +0 -615
package/src/engine/assets/thinking-hum.mp3 +0 -0
package/src/engine/catalog-routes.ts +0 -232
package/src/engine/chat-poller.ts +0 -913
package/src/engine/chat-webhook-routes.ts +0 -304
package/src/engine/cli-build-skill.ts +0 -285
package/src/engine/cli-submit-skill.ts +0 -200
package/src/engine/cli-validate.ts +0 -188
package/src/engine/cluster.ts +0 -278
package/src/engine/communication-routes.ts +0 -139
package/src/engine/communication.ts +0 -765
package/src/engine/community-registry.ts +0 -1529
package/src/engine/community-routes.ts +0 -260
package/src/engine/compliance-routes.ts +0 -133
package/src/engine/compliance.ts +0 -1679
package/src/engine/config-bus.ts +0 -103
package/src/engine/db-adapter.ts +0 -1156
package/src/engine/db-schema.ts +0 -1945
package/src/engine/deploy-schema-routes.ts +0 -176
package/src/engine/deployer.ts +0 -957
package/src/engine/dlp-routes.ts +0 -101
package/src/engine/dlp.ts +0 -410
package/src/engine/email-poller.ts +0 -855
package/src/engine/emoji.ts +0 -106
package/src/engine/guardrail-routes.ts +0 -125
package/src/engine/guardrails.ts +0 -465
package/src/engine/index.ts +0 -255
package/src/engine/journal-routes.ts +0 -56
package/src/engine/journal.ts +0 -249
package/src/engine/knowledge-contribution-routes.ts +0 -633
package/src/engine/knowledge-contribution.ts +0 -1386
package/src/engine/knowledge-import/chunker.ts +0 -241
package/src/engine/knowledge-import/import-manager.ts +0 -416
package/src/engine/knowledge-import/index.ts +0 -27
package/src/engine/knowledge-import/processors/clean.ts +0 -149
package/src/engine/knowledge-import/processors/extract-gdrive.ts +0 -102
package/src/engine/knowledge-import/processors/extract-github.ts +0 -74
package/src/engine/knowledge-import/processors/extract-sharepoint.ts +0 -69
package/src/engine/knowledge-import/processors/extract-web.ts +0 -275
package/src/engine/knowledge-import/processors/index.ts +0 -18
package/src/engine/knowledge-import/processors/pipeline.ts +0 -171
package/src/engine/knowledge-import/processors/types.ts +0 -78
package/src/engine/knowledge-import/processors/validate.ts +0 -150
package/src/engine/knowledge-import/provider-file-upload.ts +0 -95
package/src/engine/knowledge-import/provider-github.ts +0 -144
package/src/engine/knowledge-import/provider-google-sites.ts +0 -323
package/src/engine/knowledge-import/provider-sharepoint.ts +0 -276
package/src/engine/knowledge-import/provider-url.ts +0 -218
package/src/engine/knowledge-import/routes.ts +0 -94
package/src/engine/knowledge-import/types.ts +0 -92
package/src/engine/knowledge-routes.ts +0 -231
package/src/engine/knowledge.ts +0 -587
package/src/engine/lifecycle.ts +0 -1420
package/src/engine/mcp-process-manager.ts +0 -573
package/src/engine/meeting-monitor.ts +0 -483
package/src/engine/meeting-voice-intelligence.ts +0 -340
package/src/engine/memory-routes.ts +0 -142
package/src/engine/memory-transfer-routes.ts +0 -339
package/src/engine/messaging-history.ts +0 -177
package/src/engine/messaging-poller.ts +0 -786
package/src/engine/model-fallback.ts +0 -141
package/src/engine/oauth-connect-routes.ts +0 -603
package/src/engine/oauth-connect.ts +0 -304
package/src/engine/onboarding-routes.ts +0 -148
package/src/engine/onboarding.ts +0 -574
package/src/engine/org-approval-routes.ts +0 -146
package/src/engine/org-integration-routes.ts +0 -399
package/src/engine/org-integrations.ts +0 -608
package/src/engine/org-policies.ts +0 -502
package/src/engine/policy-import-routes.ts +0 -125
package/src/engine/policy-import.ts +0 -1186
package/src/engine/policy-routes.ts +0 -163
package/src/engine/routes.ts +0 -1236
package/src/engine/screen-unlock.ts +0 -136
package/src/engine/session-router.ts +0 -212
package/src/engine/skill-updater-routes.ts +0 -132
package/src/engine/skill-updater.ts +0 -480
package/src/engine/skill-validator.ts +0 -331
package/src/engine/skills/agent-management.ts +0 -119
package/src/engine/skills/agent-memory.ts +0 -19
package/src/engine/skills/agenticmail.ts +0 -116
package/src/engine/skills/core-tools.ts +0 -25
package/src/engine/skills/database-access.ts +0 -78
package/src/engine/skills/enterprise-code-sandbox.ts +0 -113
package/src/engine/skills/enterprise-database.ts +0 -123
package/src/engine/skills/enterprise-diff.ts +0 -95
package/src/engine/skills/enterprise-documents.ts +0 -162
package/src/engine/skills/enterprise-http.ts +0 -99
package/src/engine/skills/enterprise-security-scan.ts +0 -125
package/src/engine/skills/enterprise-spreadsheet.ts +0 -171
package/src/engine/skills/gws-admin.ts +0 -18
package/src/engine/skills/gws-calendar.ts +0 -21
package/src/engine/skills/gws-chat.ts +0 -29
package/src/engine/skills/gws-contacts.ts +0 -20
package/src/engine/skills/gws-docs.ts +0 -18
package/src/engine/skills/gws-drive.ts +0 -23
package/src/engine/skills/gws-forms.ts +0 -23
package/src/engine/skills/gws-gmail.ts +0 -30
package/src/engine/skills/gws-groups.ts +0 -17
package/src/engine/skills/gws-keep.ts +0 -17
package/src/engine/skills/gws-maps.ts +0 -25
package/src/engine/skills/gws-meet.ts +0 -23
package/src/engine/skills/gws-sheets.ts +0 -22
package/src/engine/skills/gws-sites.ts +0 -16
package/src/engine/skills/gws-slides.ts +0 -27
package/src/engine/skills/gws-tasks.ts +0 -22
package/src/engine/skills/gws-vault.ts +0 -17
package/src/engine/skills/index.ts +0 -159
package/src/engine/skills/knowledge-search.ts +0 -18
package/src/engine/skills/local-system.ts +0 -61
package/src/engine/skills/m365-admin.ts +0 -18
package/src/engine/skills/m365-bookings.ts +0 -17
package/src/engine/skills/m365-copilot.ts +0 -17
package/src/engine/skills/m365-excel.ts +0 -60
package/src/engine/skills/m365-forms.ts +0 -17
package/src/engine/skills/m365-onedrive.ts +0 -60
package/src/engine/skills/m365-onenote.ts +0 -17
package/src/engine/skills/m365-outlook.ts +0 -27
package/src/engine/skills/m365-planner.ts +0 -18
package/src/engine/skills/m365-power-automate.ts +0 -18
package/src/engine/skills/m365-power-bi.ts +0 -19
package/src/engine/skills/m365-powerpoint.ts +0 -33
package/src/engine/skills/m365-sharepoint.ts +0 -20
package/src/engine/skills/m365-teams.ts +0 -21
package/src/engine/skills/m365-todo.ts +0 -17
package/src/engine/skills/m365-whiteboard.ts +0 -16
package/src/engine/skills/m365-word.ts +0 -42
package/src/engine/skills/mcp-bridge.ts +0 -45
package/src/engine/skills/meeting-lifecycle.ts +0 -20
package/src/engine/skills/messaging.ts +0 -46
package/src/engine/skills/visual-memory.ts +0 -25
package/src/engine/skills.ts +0 -688
package/src/engine/soul-library.ts +0 -142
package/src/engine/soul-templates.json +0 -1525
package/src/engine/storage-manager.ts +0 -252
package/src/engine/storage-routes.ts +0 -113
package/src/engine/storage.ts +0 -528
package/src/engine/task-poller.ts +0 -394
package/src/engine/task-queue-after-spawn.ts +0 -66
package/src/engine/task-queue-before-spawn.ts +0 -113
package/src/engine/task-queue-routes.ts +0 -161
package/src/engine/task-queue.ts +0 -664
package/src/engine/tenant.ts +0 -409
package/src/engine/tool-catalog.ts +0 -354
package/src/engine/vault-routes.ts +0 -134
package/src/engine/vault.ts +0 -601
package/src/engine/workforce-routes.ts +0 -331
package/src/engine/workforce.ts +0 -1161
package/src/index.ts +0 -77
package/src/lib/cidr.ts +0 -122
package/src/lib/config-store.ts +0 -86
package/src/lib/resilience.ts +0 -326
package/src/lib/text-search.ts +0 -358
package/src/mcp/adapters/activecampaign.adapter.ts +0 -391
package/src/mcp/adapters/adobe-sign.adapter.ts +0 -469
package/src/mcp/adapters/adp.adapter.ts +0 -358
package/src/mcp/adapters/airtable.adapter.ts +0 -273
package/src/mcp/adapters/apollo.adapter.ts +0 -420
package/src/mcp/adapters/asana.adapter.ts +0 -315
package/src/mcp/adapters/auth0.adapter.ts +0 -386
package/src/mcp/adapters/aws.adapter.ts +0 -345
package/src/mcp/adapters/azure-devops.adapter.ts +0 -389
package/src/mcp/adapters/bamboohr.adapter.ts +0 -376
package/src/mcp/adapters/basecamp.adapter.ts +0 -366
package/src/mcp/adapters/bigcommerce.adapter.ts +0 -429
package/src/mcp/adapters/bitbucket.adapter.ts +0 -260
package/src/mcp/adapters/box.adapter.ts +0 -350
package/src/mcp/adapters/brex.adapter.ts +0 -367
package/src/mcp/adapters/buffer.adapter.ts +0 -303
package/src/mcp/adapters/calendly.adapter.ts +0 -262
package/src/mcp/adapters/canva.adapter.ts +0 -256
package/src/mcp/adapters/chargebee.adapter.ts +0 -448
package/src/mcp/adapters/circleci.adapter.ts +0 -216
package/src/mcp/adapters/clickup.adapter.ts +0 -335
package/src/mcp/adapters/close.adapter.ts +0 -390
package/src/mcp/adapters/cloudflare.adapter.ts +0 -378
package/src/mcp/adapters/confluence.adapter.ts +0 -301
package/src/mcp/adapters/contentful.adapter.ts +0 -355
package/src/mcp/adapters/copper.adapter.ts +0 -468
package/src/mcp/adapters/crisp.adapter.ts +0 -415
package/src/mcp/adapters/crowdstrike.adapter.ts +0 -413
package/src/mcp/adapters/datadog.adapter.ts +0 -373
package/src/mcp/adapters/digitalocean.adapter.ts +0 -336
package/src/mcp/adapters/discord.adapter.ts +0 -248
package/src/mcp/adapters/docker.adapter.ts +0 -238
package/src/mcp/adapters/docusign.adapter.ts +0 -431
package/src/mcp/adapters/drift.adapter.ts +0 -386
package/src/mcp/adapters/dropbox.adapter.ts +0 -315
package/src/mcp/adapters/figma.adapter.ts +0 -302
package/src/mcp/adapters/firebase.adapter.ts +0 -446
package/src/mcp/adapters/flyio.adapter.ts +0 -302
package/src/mcp/adapters/freshbooks.adapter.ts +0 -474
package/src/mcp/adapters/freshdesk.adapter.ts +0 -441
package/src/mcp/adapters/freshsales.adapter.ts +0 -457
package/src/mcp/adapters/freshservice.adapter.ts +0 -481
package/src/mcp/adapters/front.adapter.ts +0 -357
package/src/mcp/adapters/github-actions.adapter.ts +0 -329
package/src/mcp/adapters/github.adapter.ts +0 -387
package/src/mcp/adapters/gitlab.adapter.ts +0 -368
package/src/mcp/adapters/gong.adapter.ts +0 -386
package/src/mcp/adapters/google-ads.adapter.ts +0 -363
package/src/mcp/adapters/google-analytics.adapter.ts +0 -316
package/src/mcp/adapters/google-cloud.adapter.ts +0 -312
package/src/mcp/adapters/gotomeeting.adapter.ts +0 -255
package/src/mcp/adapters/grafana.adapter.ts +0 -361
package/src/mcp/adapters/greenhouse.adapter.ts +0 -354
package/src/mcp/adapters/gusto.adapter.ts +0 -329
package/src/mcp/adapters/hashicorp-vault.adapter.ts +0 -355
package/src/mcp/adapters/heroku.adapter.ts +0 -291
package/src/mcp/adapters/hibob.adapter.ts +0 -334
package/src/mcp/adapters/hootsuite.adapter.ts +0 -322
package/src/mcp/adapters/hubspot.adapter.ts +0 -400
package/src/mcp/adapters/huggingface.adapter.ts +0 -349
package/src/mcp/adapters/index.ts +0 -524
package/src/mcp/adapters/intercom.adapter.ts +0 -269
package/src/mcp/adapters/jira.adapter.ts +0 -482
package/src/mcp/adapters/klaviyo.adapter.ts +0 -353
package/src/mcp/adapters/kubernetes.adapter.ts +0 -431
package/src/mcp/adapters/lattice.adapter.ts +0 -339
package/src/mcp/adapters/launchdarkly.adapter.ts +0 -368
package/src/mcp/adapters/lever.adapter.ts +0 -347
package/src/mcp/adapters/linear.adapter.ts +0 -300
package/src/mcp/adapters/linkedin.adapter.ts +0 -331
package/src/mcp/adapters/livechat.adapter.ts +0 -259
package/src/mcp/adapters/loom.adapter.ts +0 -230
package/src/mcp/adapters/mailchimp.adapter.ts +0 -394
package/src/mcp/adapters/mailgun.adapter.ts +0 -425
package/src/mcp/adapters/miro.adapter.ts +0 -274
package/src/mcp/adapters/mixpanel.adapter.ts +0 -324
package/src/mcp/adapters/monday.adapter.ts +0 -308
package/src/mcp/adapters/mongodb-atlas.adapter.ts +0 -345
package/src/mcp/adapters/neon.adapter.ts +0 -312
package/src/mcp/adapters/netlify.adapter.ts +0 -324
package/src/mcp/adapters/netsuite.adapter.ts +0 -411
package/src/mcp/adapters/newrelic.adapter.ts +0 -339
package/src/mcp/adapters/notion.adapter.ts +0 -338
package/src/mcp/adapters/okta.adapter.ts +0 -394
package/src/mcp/adapters/openai.adapter.ts +0 -315
package/src/mcp/adapters/opsgenie.adapter.ts +0 -375
package/src/mcp/adapters/outreach.adapter.ts +0 -372
package/src/mcp/adapters/paddle.adapter.ts +0 -467
package/src/mcp/adapters/pagerduty.adapter.ts +0 -412
package/src/mcp/adapters/pandadoc.adapter.ts +0 -389
package/src/mcp/adapters/paypal.adapter.ts +0 -465
package/src/mcp/adapters/personio.adapter.ts +0 -401
package/src/mcp/adapters/pinecone.adapter.ts +0 -340
package/src/mcp/adapters/pipedrive.adapter.ts +0 -324
package/src/mcp/adapters/plaid.adapter.ts +0 -444
package/src/mcp/adapters/postmark.adapter.ts +0 -387
package/src/mcp/adapters/power-automate.adapter.ts +0 -388
package/src/mcp/adapters/quickbooks.adapter.ts +0 -431
package/src/mcp/adapters/recurly.adapter.ts +0 -433
package/src/mcp/adapters/reddit.adapter.ts +0 -371
package/src/mcp/adapters/render.adapter.ts +0 -332
package/src/mcp/adapters/ringcentral.adapter.ts +0 -281
package/src/mcp/adapters/rippling.adapter.ts +0 -287
package/src/mcp/adapters/salesforce.adapter.ts +0 -321
package/src/mcp/adapters/salesloft.adapter.ts +0 -413
package/src/mcp/adapters/sanity.adapter.ts +0 -363
package/src/mcp/adapters/sap.adapter.ts +0 -483
package/src/mcp/adapters/segment.adapter.ts +0 -260
package/src/mcp/adapters/sendgrid.adapter.ts +0 -265
package/src/mcp/adapters/sentry.adapter.ts +0 -331
package/src/mcp/adapters/servicenow.adapter.ts +0 -468
package/src/mcp/adapters/shopify.adapter.ts +0 -451
package/src/mcp/adapters/shortcut.adapter.ts +0 -290
package/src/mcp/adapters/slack.adapter.ts +0 -380
package/src/mcp/adapters/smartsheet.adapter.ts +0 -326
package/src/mcp/adapters/snowflake.adapter.ts +0 -347
package/src/mcp/adapters/snyk.adapter.ts +0 -394
package/src/mcp/adapters/splunk.adapter.ts +0 -403
package/src/mcp/adapters/square.adapter.ts +0 -467
package/src/mcp/adapters/statuspage.adapter.ts +0 -401
package/src/mcp/adapters/stripe.adapter.ts +0 -380
package/src/mcp/adapters/supabase.adapter.ts +0 -334
package/src/mcp/adapters/teamwork.adapter.ts +0 -404
package/src/mcp/adapters/telegram.adapter.ts +0 -299
package/src/mcp/adapters/terraform.adapter.ts +0 -300
package/src/mcp/adapters/todoist.adapter.ts +0 -239
package/src/mcp/adapters/trello.adapter.ts +0 -316
package/src/mcp/adapters/twilio.adapter.ts +0 -233
package/src/mcp/adapters/twitter.adapter.ts +0 -348
package/src/mcp/adapters/vercel.adapter.ts +0 -219
package/src/mcp/adapters/weaviate.adapter.ts +0 -371
package/src/mcp/adapters/webex.adapter.ts +0 -237
package/src/mcp/adapters/webflow.adapter.ts +0 -287
package/src/mcp/adapters/whatsapp.adapter.ts +0 -273
package/src/mcp/adapters/whereby.adapter.ts +0 -240
package/src/mcp/adapters/woocommerce.adapter.ts +0 -454
package/src/mcp/adapters/wordpress.adapter.ts +0 -455
package/src/mcp/adapters/workday.adapter.ts +0 -354
package/src/mcp/adapters/wrike.adapter.ts +0 -349
package/src/mcp/adapters/xero.adapter.ts +0 -472
package/src/mcp/adapters/youtube.adapter.ts +0 -401
package/src/mcp/adapters/zendesk.adapter.ts +0 -399
package/src/mcp/adapters/zoho-crm.adapter.ts +0 -410
package/src/mcp/adapters/zoom.adapter.ts +0 -241
package/src/mcp/adapters/zuora.adapter.ts +0 -476
package/src/mcp/framework/api-executor.ts +0 -192
package/src/mcp/framework/aws-sigv4.ts +0 -216
package/src/mcp/framework/credential-resolver.ts +0 -128
package/src/mcp/framework/oauth-token-manager.ts +0 -22
package/src/mcp/framework/skill-mcp-framework.ts +0 -226
package/src/mcp/framework/types.ts +0 -130
package/src/mcp/index.ts +0 -124
package/src/mcp/integration-catalog.ts +0 -178
package/src/middleware/dns-rebinding.ts +0 -44
package/src/middleware/egress-filter.ts +0 -104
package/src/middleware/firewall.ts +0 -192
package/src/middleware/geo-ip.ts +0 -156
package/src/middleware/index.ts +0 -390
package/src/middleware/network-config.ts +0 -90
package/src/middleware/proxy-config.ts +0 -71
package/src/middleware/request-limits.ts +0 -59
package/src/middleware/transport-encryption.ts +0 -398
package/src/registry/cli.ts +0 -63
package/src/registry/server.ts +0 -504
package/src/runtime/agent-loop.ts +0 -779
package/src/runtime/compaction.ts +0 -638
package/src/runtime/email-channel.ts +0 -120
package/src/runtime/environment.ts +0 -300
package/src/runtime/followup.ts +0 -211
package/src/runtime/gateway.ts +0 -260
package/src/runtime/hooks.ts +0 -564
package/src/runtime/index.ts +0 -1110
package/src/runtime/llm-client.ts +0 -1056
package/src/runtime/model-router.ts +0 -97
package/src/runtime/providers.ts +0 -228
package/src/runtime/session-manager.ts +0 -345
package/src/runtime/subagent.ts +0 -153
package/src/runtime/tool-executor.ts +0 -208
package/src/runtime/types.ts +0 -255
package/src/security/brute-force.ts +0 -423
package/src/security/config.ts +0 -159
package/src/security/csp.ts +0 -407
package/src/security/external-content.ts +0 -299
package/src/security/index.ts +0 -557
package/src/security/input-sanitizer.ts +0 -452
package/src/security/output-filter.ts +0 -575
package/src/security/port-scanner.ts +0 -342
package/src/security/prompt-guard.ts +0 -387
package/src/security/sql-guard.ts +0 -338
package/src/security/threat-logger.ts +0 -484
package/src/server.ts +0 -828
package/src/setup/company.ts +0 -183
package/src/setup/database.ts +0 -153
package/src/setup/deployment.ts +0 -561
package/src/setup/domain.ts +0 -112
package/src/setup/index.ts +0 -171
package/src/setup/provision.ts +0 -532
package/src/setup/registration.ts +0 -302
package/src/system-prompts/catchup.ts +0 -48
package/src/system-prompts/google/calendar.ts +0 -37
package/src/system-prompts/google/chat.ts +0 -92
package/src/system-prompts/google/contacts.ts +0 -25
package/src/system-prompts/google/docs.ts +0 -29
package/src/system-prompts/google/drive.ts +0 -34
package/src/system-prompts/google/forms.ts +0 -25
package/src/system-prompts/google/gmail.ts +0 -50
package/src/system-prompts/google/index.ts +0 -23
package/src/system-prompts/google/maps.ts +0 -20
package/src/system-prompts/google/meet.ts +0 -130
package/src/system-prompts/google/sheets.ts +0 -32
package/src/system-prompts/google/slides.ts +0 -26
package/src/system-prompts/google/tasks.ts +0 -27
package/src/system-prompts/index.ts +0 -88
package/src/system-prompts/microsoft/contacts.ts +0 -34
package/src/system-prompts/microsoft/excel.ts +0 -52
package/src/system-prompts/microsoft/index.ts +0 -31
package/src/system-prompts/microsoft/onedrive.ts +0 -41
package/src/system-prompts/microsoft/onenote.ts +0 -36
package/src/system-prompts/microsoft/outlook-calendar.ts +0 -37
package/src/system-prompts/microsoft/outlook-mail.ts +0 -46
package/src/system-prompts/microsoft/planner.ts +0 -37
package/src/system-prompts/microsoft/powerbi.ts +0 -38
package/src/system-prompts/microsoft/powerpoint.ts +0 -35
package/src/system-prompts/microsoft/sharepoint.ts +0 -44
package/src/system-prompts/microsoft/teams.ts +0 -49
package/src/system-prompts/microsoft/todo.ts +0 -37
package/src/system-prompts/shared-blocks.ts +0 -87
package/src/system-prompts/task.ts +0 -21
package/src/system-prompts/triage.ts +0 -34
package/src/types/hono-env.ts +0 -18
package/src/types/optional-deps.d.ts +0 -10
/package/{src → dist}/dashboard/HELP-TOOLTIPS-GUIDE.md +0 -0

package/dist/chunk-3RI3AIJN.js ADDED Viewed

@@ -0,0 +1,1519 @@
+import {
+  getSupportedDatabases
+} from "./chunk-PAHT4ABL.js";
+// src/setup/index.ts
+import { execSync as execSync2 } from "child_process";
+import { createRequire } from "module";
+import { join as join2 } from "path";
+// src/setup/company.ts
+function toSlug(name) {
+  return name.toLowerCase().replace(/[^a-z0-9]+/g, "-").replace(/^-|-$/g, "").slice(0, 63);
+}
+function generateAlternatives(companyName) {
+  const base = toSlug(companyName);
+  const words = companyName.trim().split(/\s+/).map((w) => w.toLowerCase().replace(/[^a-z0-9]/g, "")).filter(Boolean);
+  const suggestions = /* @__PURE__ */ new Set();
+  suggestions.add(base);
+  if (words.length >= 2) {
+    const initials = words.map((w) => w[0]).join("");
+    if (initials.length >= 2) suggestions.add(initials);
+  }
+  if (words[0] && words[0] !== base) {
+    suggestions.add(words[0]);
+  }
+  if (words.length >= 3) {
+    suggestions.add(`${words[0]}-${words[words.length - 1]}`);
+  }
+  suggestions.add(`team-${base}`);
+  suggestions.add(`app-${base}`);
+  suggestions.add(`mail-${words[0] || base}`);
+  suggestions.add(`ai-${words[0] || base}`);
+  suggestions.add(`${words[0] || base}-hq`);
+  suggestions.delete(base);
+  return [...suggestions].map((s) => s.slice(0, 63)).slice(0, 5);
+}
+function validateSubdomain(v) {
+  const s = v.trim();
+  if (!s) return "Subdomain is required";
+  if (s.length < 2) return "Subdomain must be at least 2 characters";
+  if (s.length > 63) return "Subdomain must be 63 characters or fewer";
+  if (!/^[a-z0-9]([a-z0-9-]*[a-z0-9])?$/.test(s)) {
+    return "Subdomain must be lowercase letters, numbers, and hyphens (cannot start or end with a hyphen)";
+  }
+  return true;
+}
+async function promptCompanyInfo(inquirer, chalk) {
+  console.log(chalk.bold.cyan("  Step 1 of 5: Company Info"));
+  console.log(chalk.dim("  Tell us about your organization.\n"));
+  const { companyName, adminEmail, adminPassword } = await inquirer.prompt([
+    {
+      type: "input",
+      name: "companyName",
+      message: "Company name:",
+      validate: (v) => {
+        if (!v.trim()) return "Company name is required";
+        if (v.length > 100) return "Company name must be under 100 characters";
+        return true;
+      }
+    },
+    {
+      type: "input",
+      name: "adminEmail",
+      message: "Admin email:",
+      validate: (v) => {
+        if (!v.includes("@") || !v.includes(".")) return "Enter a valid email address";
+        return true;
+      }
+    },
+    {
+      type: "password",
+      name: "adminPassword",
+      message: "Admin password:",
+      mask: "*",
+      validate: (v) => {
+        if (v.length < 8) return "Password must be at least 8 characters";
+        if (!/[A-Z]/.test(v) && !/[0-9]/.test(v)) {
+          return "Password should contain at least one uppercase letter or number";
+        }
+        return true;
+      }
+    }
+  ]);
+  const suggested = toSlug(companyName);
+  const alternatives = generateAlternatives(companyName);
+  console.log("");
+  console.log(chalk.bold("  Subdomain"));
+  console.log(chalk.dim("  Used for your dashboard URL and internal routing.\n"));
+  const choices = [
+    { name: `${suggested}  ${chalk.dim("(recommended)")}`, value: suggested },
+    ...alternatives.map((alt) => ({ name: alt, value: alt })),
+    new inquirer.Separator(),
+    { name: `${chalk.italic("Enter my own...")}`, value: "__custom__" },
+    { name: `${chalk.italic("Generate more suggestions")}`, value: "__regenerate__" }
+  ];
+  let subdomain = suggested;
+  let choosing = true;
+  while (choosing) {
+    const { subdomainChoice } = await inquirer.prompt([{
+      type: "list",
+      name: "subdomainChoice",
+      message: "Choose a subdomain:",
+      choices
+    }]);
+    if (subdomainChoice === "__custom__") {
+      const { custom } = await inquirer.prompt([{
+        type: "input",
+        name: "custom",
+        message: "Custom subdomain:",
+        suffix: chalk.dim("  (lowercase, letters/numbers/hyphens)"),
+        validate: validateSubdomain,
+        filter: (v) => v.trim().toLowerCase()
+      }]);
+      subdomain = custom;
+      choosing = false;
+    } else if (subdomainChoice === "__regenerate__") {
+      const base = toSlug(companyName);
+      const words = companyName.trim().split(/\s+/).map((w2) => w2.toLowerCase().replace(/[^a-z0-9]/g, "")).filter(Boolean);
+      const w = words[0] || base;
+      const rand = () => Math.random().toString(36).slice(2, 5);
+      const fresh = [
+        `${w}-${rand()}`,
+        `${base}-${rand()}`,
+        `${w}-agents`,
+        `${w}-mail`,
+        `${w}-platform`
+      ];
+      choices.splice(
+        1,
+        alternatives.length,
+        ...fresh.map((alt) => ({ name: alt, value: alt }))
+      );
+    } else {
+      subdomain = subdomainChoice;
+      choosing = false;
+    }
+  }
+  console.log(chalk.dim(`  Your subdomain: ${chalk.white(subdomain)}
+`));
+  return { companyName, adminEmail, adminPassword, subdomain };
+}
+// src/setup/database.ts
+var CONNECTION_HINTS = {
+  postgres: "postgresql://user:pass@host:5432/dbname",
+  mysql: "mysql://user:pass@host:3306/dbname",
+  mongodb: "mongodb+srv://user:pass@cluster.mongodb.net/dbname",
+  supabase: "postgresql://postgres:pass@db.xxxx.supabase.co:5432/postgres",
+  neon: "postgresql://user:pass@ep-xxx.us-east-1.aws.neon.tech/dbname?sslmode=require",
+  planetscale: 'mysql://user:pass@aws.connect.psdb.cloud/dbname?ssl={"rejectUnauthorized":true}',
+  cockroachdb: "postgresql://user:pass@cluster.cockroachlabs.cloud:26257/dbname?sslmode=verify-full"
+};
+async function promptDatabase(inquirer, chalk) {
+  console.log("");
+  console.log(chalk.bold.cyan("  Step 2 of 4: Database"));
+  console.log(chalk.dim("  Where should your data live?\n"));
+  const databases = getSupportedDatabases();
+  const supabaseIdx = databases.findIndex((d) => d.type === "supabase");
+  const choices = databases.map((d, _i) => ({
+    name: d.type === "supabase" ? `${d.label}  ${chalk.green("\u2190 recommended (free tier)")}  ${chalk.dim("(cloud)")}` : `${d.label}  ${chalk.dim(`(${d.group})`)}`,
+    value: d.type
+  }));
+  if (supabaseIdx > 0) {
+    const [sb] = choices.splice(supabaseIdx, 1);
+    choices.unshift(sb);
+  }
+  const { dbType } = await inquirer.prompt([
+    {
+      type: "list",
+      name: "dbType",
+      message: "Database backend:",
+      choices
+    }
+  ]);
+  if (dbType === "supabase") {
+    console.log("");
+    console.log(chalk.bold("  Supabase \u2014 Free PostgreSQL Database"));
+    console.log("");
+    console.log(chalk.dim("  If you don't have a Supabase account yet:"));
+    console.log("");
+    console.log(`  1. Go to ${chalk.cyan.underline("https://supabase.com/dashboard")}`);
+    console.log(`  2. Click ${chalk.bold('"Start your project"')} \u2014 sign up with GitHub or email`);
+    console.log(`  3. Create a new project (any name, choose a strong password)`);
+    console.log(`  4. Go to ${chalk.bold("Settings \u2192 Database \u2192 Connection string")}`);
+    console.log(`  5. Select ${chalk.bold('"URI"')} and copy the connection string`);
+    console.log(`  6. Replace ${chalk.yellow("[YOUR-PASSWORD]")} with your project password`);
+    console.log("");
+    console.log(chalk.dim("  Free tier includes: 500MB storage, unlimited API requests, 2 projects"));
+    console.log(chalk.dim("  The connection string looks like:"));
+    console.log(chalk.dim("  postgresql://postgres.[ref]:[password]@aws-0-[region].pooler.supabase.com:6543/postgres"));
+    console.log("");
+  }
+  if (dbType === "sqlite") {
+    const { dbPath } = await inquirer.prompt([{
+      type: "input",
+      name: "dbPath",
+      message: "Database file path:",
+      default: "./agenticmail-enterprise.db"
+    }]);
+    return { type: dbType, connectionString: dbPath };
+  }
+  if (dbType === "dynamodb") {
+    const answers = await inquirer.prompt([
+      {
+        type: "input",
+        name: "region",
+        message: "AWS Region:",
+        default: "us-east-1"
+      },
+      {
+        type: "input",
+        name: "accessKeyId",
+        message: "AWS Access Key ID:",
+        validate: (v) => v.length > 0 || "Required"
+      },
+      {
+        type: "password",
+        name: "secretAccessKey",
+        message: "AWS Secret Access Key:",
+        mask: "*",
+        validate: (v) => v.length > 0 || "Required"
+      }
+    ]);
+    return { type: dbType, ...answers };
+  }
+  if (dbType === "turso") {
+    const answers = await inquirer.prompt([
+      {
+        type: "input",
+        name: "connectionString",
+        message: "Turso database URL:",
+        suffix: chalk.dim("  (e.g. libsql://db-org.turso.io)"),
+        validate: (v) => v.length > 0 || "Required"
+      },
+      {
+        type: "password",
+        name: "authToken",
+        message: "Turso auth token:",
+        mask: "*",
+        validate: (v) => v.length > 0 || "Required"
+      }
+    ]);
+    return { type: dbType, connectionString: answers.connectionString, authToken: answers.authToken };
+  }
+  const hint = CONNECTION_HINTS[dbType] || "";
+  const { connectionString } = await inquirer.prompt([{
+    type: "input",
+    name: "connectionString",
+    message: "Connection string:",
+    suffix: hint ? chalk.dim(`  (e.g. ${hint})`) : "",
+    validate: (v) => v.length > 0 || "Connection string is required"
+  }]);
+  return { type: dbType, connectionString };
+}
+// src/setup/deployment.ts
+import { execSync, exec as execCb } from "child_process";
+import { promisify } from "util";
+import { existsSync, writeFileSync, readFileSync } from "fs";
+import { join } from "path";
+import { homedir, platform, arch } from "os";
+var execP = promisify(execCb);
+var SUBDOMAIN_REGISTRY_URL = process.env.AGENTICMAIL_SUBDOMAIN_REGISTRY_URL || "https://registry.agenticmail.io";
+async function promptDeployment(inquirer, chalk) {
+  console.log("");
+  console.log(chalk.bold.cyan("  Step 3 of 4: Deployment"));
+  console.log(chalk.dim("  Where should your dashboard run?\n"));
+  const { deployTarget } = await inquirer.prompt([{
+    type: "list",
+    name: "deployTarget",
+    message: "Deploy to:",
+    choices: [
+      {
+        name: `AgenticMail Cloud  ${chalk.green("\u2190 recommended")}  ${chalk.dim("(instant URL, zero config)")}`,
+        value: "cloud"
+      },
+      {
+        name: `Cloudflare Tunnel  ${chalk.dim("(self-hosted, free, no ports)")}`,
+        value: "cloudflare-tunnel"
+      },
+      {
+        name: `Fly.io  ${chalk.dim("(your account)")}`,
+        value: "fly"
+      },
+      {
+        name: `Railway  ${chalk.dim("(your account)")}`,
+        value: "railway"
+      },
+      {
+        name: `Docker  ${chalk.dim("(self-hosted)")}`,
+        value: "docker"
+      },
+      {
+        name: `Local  ${chalk.dim("(dev/testing, runs here)")}`,
+        value: "local"
+      }
+    ]
+  }]);
+  if (deployTarget === "cloud") {
+    const cloud = await runCloudSetup(inquirer, chalk);
+    return { target: deployTarget, cloud };
+  }
+  if (deployTarget === "cloudflare-tunnel") {
+    const tunnel = await runTunnelSetup(inquirer, chalk);
+    return { target: deployTarget, tunnel };
+  }
+  return { target: deployTarget };
+}
+async function runCloudSetup(inquirer, chalk) {
+  console.log("");
+  console.log(chalk.bold("  AgenticMail Cloud Setup"));
+  console.log(chalk.dim("  Get a free subdomain on agenticmail.io \u2014 no Cloudflare account needed."));
+  console.log(chalk.dim("  Your instance will be live at https://yourname.agenticmail.io\n"));
+  let subdomain = "";
+  let claimResult = null;
+  while (!subdomain) {
+    const { name } = await inquirer.prompt([{
+      type: "input",
+      name: "name",
+      message: "Choose your subdomain:",
+      suffix: chalk.dim(".agenticmail.io"),
+      validate: (input) => {
+        const cleaned2 = input.toLowerCase().trim();
+        if (cleaned2.length < 3) return "Must be at least 3 characters";
+        if (cleaned2.length > 32) return "Must be 32 characters or fewer";
+        if (!/^[a-z0-9]([a-z0-9-]*[a-z0-9])?$/.test(cleaned2)) return "Only lowercase letters, numbers, and hyphens allowed";
+        return true;
+      }
+    }]);
+    const cleaned = name.toLowerCase().trim();
+    process.stdout.write(chalk.dim(`  Checking ${cleaned}.agenticmail.io... `));
+    try {
+      const checkResp = await fetch(`${SUBDOMAIN_REGISTRY_URL}/check?name=${encodeURIComponent(cleaned)}`);
+      const checkData = await checkResp.json();
+      if (!checkData.available) {
+        console.log(chalk.red("\u2717 " + (checkData.reason || "Not available")));
+        continue;
+      }
+      console.log(chalk.green("\u2713 Available!"));
+    } catch (err) {
+      console.log(chalk.yellow("\u26A0 Could not check availability: " + err.message));
+      console.log(chalk.dim("  Proceeding anyway \u2014 the claim step will verify.\n"));
+    }
+    const { confirmed } = await inquirer.prompt([{
+      type: "confirm",
+      name: "confirmed",
+      message: `Claim ${chalk.bold(cleaned + ".agenticmail.io")}?`,
+      default: true
+    }]);
+    if (!confirmed) continue;
+    const { createHash, randomUUID: randomUUID2 } = await import("crypto");
+    let vaultKey = process.env.AGENTICMAIL_VAULT_KEY;
+    if (!vaultKey) {
+      vaultKey = randomUUID2() + randomUUID2();
+      process.env.AGENTICMAIL_VAULT_KEY = vaultKey;
+    }
+    const vaultKeyHash = createHash("sha256").update(vaultKey).digest("hex");
+    process.stdout.write(chalk.dim("  Provisioning subdomain... "));
+    try {
+      const claimResp = await fetch(`${SUBDOMAIN_REGISTRY_URL}/claim`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ name: cleaned, vaultKeyHash })
+      });
+      claimResult = await claimResp.json();
+      if (claimResult.error) {
+        console.log(chalk.red("\u2717 " + claimResult.error));
+        if (claimResult.error.includes("already has subdomain")) {
+          const { wantsRecover } = await inquirer.prompt([{
+            type: "confirm",
+            name: "wantsRecover",
+            message: "Recover your existing subdomain instead?",
+            default: true
+          }]);
+          if (wantsRecover) {
+            const recoverResp = await fetch(`${SUBDOMAIN_REGISTRY_URL}/recover`, {
+              method: "POST",
+              headers: { "Content-Type": "application/json" },
+              body: JSON.stringify({ vaultKeyHash })
+            });
+            claimResult = await recoverResp.json();
+            if (claimResult.success) {
+              subdomain = claimResult.subdomain;
+              console.log(chalk.green(`\u2713 Recovered: ${claimResult.fqdn}`));
+            } else {
+              console.log(chalk.red("\u2717 Recovery failed: " + (claimResult.error || "Unknown error")));
+            }
+          }
+        }
+        continue;
+      }
+      if (claimResult.success) {
+        subdomain = claimResult.subdomain || cleaned;
+        if (claimResult.recovered) {
+          console.log(chalk.green("\u2713 Recovered existing subdomain"));
+        } else {
+          console.log(chalk.green("\u2713 Subdomain claimed!"));
+        }
+      }
+    } catch (err) {
+      console.log(chalk.red("\u2717 Failed: " + err.message));
+      console.log(chalk.dim("  Check your internet connection and try again.\n"));
+    }
+  }
+  console.log("");
+  console.log(chalk.bold("  Installing cloudflared connector..."));
+  let cloudflaredPath = "";
+  try {
+    cloudflaredPath = execSync("which cloudflared", { encoding: "utf8" }).trim();
+    console.log(chalk.green(`  \u2713 cloudflared found at ${cloudflaredPath}`));
+  } catch {
+    console.log(chalk.dim("  cloudflared not found \u2014 installing..."));
+    try {
+      const os = platform();
+      if (os === "darwin") {
+        execSync("brew install cloudflared", { stdio: "pipe" });
+      } else if (os === "linux") {
+        const archStr = arch() === "arm64" ? "arm64" : "amd64";
+        execSync(`curl -L https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-${archStr} -o /usr/local/bin/cloudflared && chmod +x /usr/local/bin/cloudflared`, { stdio: "pipe" });
+      } else {
+        console.log(chalk.yellow("  Please install cloudflared manually: https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/install-and-setup/installation/"));
+      }
+      cloudflaredPath = execSync("which cloudflared", { encoding: "utf8" }).trim();
+      console.log(chalk.green(`  \u2713 cloudflared installed at ${cloudflaredPath}`));
+    } catch (e) {
+      console.log(chalk.yellow("  \u26A0 Could not auto-install cloudflared."));
+      console.log(chalk.dim("    Install manually: https://developers.cloudflare.com/cloudflare-one/connections/connect-apps/install-and-setup/installation/"));
+    }
+  }
+  const port = 3100;
+  const fqdn = claimResult?.fqdn || `${subdomain}.agenticmail.io`;
+  const tunnelToken = claimResult?.tunnelToken;
+  const tunnelId = claimResult?.tunnelId;
+  console.log("");
+  console.log(chalk.bold.green("  \u2713 Setup Complete!"));
+  console.log("");
+  console.log(`  Your dashboard: ${chalk.bold.cyan("https://" + fqdn)}`);
+  console.log("");
+  console.log(chalk.bgYellow.black.bold("  \u26A0  BACK UP ~/.agenticmail/.env  \u26A0  "));
+  console.log("");
+  console.log(chalk.yellow("  This file contains EVERYTHING needed to recover if your machine crashes:"));
+  console.log("");
+  console.log(chalk.yellow("    DATABASE_URL          \u2014 your database connection"));
+  console.log(chalk.yellow("    JWT_SECRET            \u2014 login session signing key"));
+  console.log(chalk.yellow("    AGENTICMAIL_VAULT_KEY \u2014 encrypted credentials + subdomain recovery"));
+  console.log(chalk.yellow("    CLOUDFLARED_TOKEN     \u2014 tunnel connection token"));
+  console.log(chalk.yellow("    PORT                  \u2014 server port"));
+  console.log("");
+  console.log(chalk.bold.yellow("  Copy this file to a safe place (password manager, cloud drive, etc.)"));
+  console.log(chalk.bold.yellow("  Without it, you CANNOT recover your subdomain or encrypted data."));
+  console.log("");
+  console.log(chalk.dim("  To recover on a new machine:"));
+  console.log(chalk.cyan("    npx @agenticmail/enterprise recover --cloud"));
+  console.log("");
+  console.log("");
+  console.log(chalk.dim("  To start your instance, run these two processes:"));
+  console.log("");
+  console.log(`    ${chalk.cyan("cloudflared tunnel --no-autoupdate run --token " + (tunnelToken || "<your-tunnel-token>"))}`);
+  console.log(`    ${chalk.cyan("npx @agenticmail/enterprise start")}`);
+  console.log("");
+  console.log(chalk.dim("  Or let the setup wizard start them with PM2 (next step).\n"));
+  const envPath = join(homedir(), ".agenticmail", ".env");
+  try {
+    let envContent = "";
+    if (existsSync(envPath)) {
+      envContent = readFileSync(envPath, "utf8");
+    }
+    if (tunnelToken && !envContent.includes("CLOUDFLARED_TOKEN=")) {
+      envContent += `
+CLOUDFLARED_TOKEN=${tunnelToken}
+`;
+    }
+    if (!envContent.includes("AGENTICMAIL_SUBDOMAIN=")) {
+      envContent += `AGENTICMAIL_SUBDOMAIN=${subdomain}
+`;
+    }
+    if (!envContent.includes("AGENTICMAIL_DOMAIN=")) {
+      envContent += `AGENTICMAIL_DOMAIN=${fqdn}
+`;
+    }
+    const { mkdirSync } = await import("fs");
+    mkdirSync(join(homedir(), ".agenticmail"), { recursive: true });
+    writeFileSync(envPath, envContent, { mode: 384 });
+  } catch {
+  }
+  return {
+    subdomain,
+    fqdn,
+    tunnelId: tunnelId || "",
+    tunnelToken: tunnelToken || "",
+    port
+  };
+}
+async function runTunnelSetup(inquirer, chalk) {
+  console.log("");
+  console.log(chalk.bold("  Cloudflare Tunnel Setup"));
+  console.log(chalk.dim("  Exposes your local server to the internet via Cloudflare."));
+  console.log(chalk.dim("  No open ports, free TLS, auto-DNS.\n"));
+  console.log(chalk.bold("  1. Cloudflared CLI"));
+  let installed = false;
+  let version = "";
+  try {
+    version = execSync("cloudflared --version 2>&1", { encoding: "utf8", timeout: 5e3 }).trim();
+    installed = true;
+  } catch {
+  }
+  if (installed) {
+    console.log(chalk.green(`     \u2713 Installed (${version})
+`));
+  } else {
+    console.log(chalk.yellow("     Not installed."));
+    const { doInstall } = await inquirer.prompt([{
+      type: "confirm",
+      name: "doInstall",
+      message: "Install cloudflared now?",
+      default: true
+    }]);
+    if (!doInstall) {
+      console.log(chalk.red("\n  cloudflared is required for tunnel deployment."));
+      console.log(chalk.dim("  Install it manually: https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/downloads/\n"));
+      process.exit(1);
+    }
+    console.log(chalk.dim("     Installing..."));
+    try {
+      await installCloudflared();
+      version = execSync("cloudflared --version 2>&1", { encoding: "utf8", timeout: 5e3 }).trim();
+      console.log(chalk.green(`     \u2713 Installed (${version})
+`));
+    } catch (err) {
+      console.log(chalk.red(`     \u2717 Installation failed: ${err.message}`));
+      console.log(chalk.dim("     Install manually and re-run setup.\n"));
+      process.exit(1);
+    }
+  }
+  console.log(chalk.bold("  2. Cloudflare Authentication"));
+  const cfDir = join(homedir(), ".cloudflared");
+  const certPath = join(cfDir, "cert.pem");
+  const loggedIn = existsSync(certPath);
+  if (loggedIn) {
+    console.log(chalk.green("     \u2713 Already authenticated\n"));
+  } else {
+    console.log(chalk.dim("     This will open your browser to authorize Cloudflare.\n"));
+    const { doLogin } = await inquirer.prompt([{
+      type: "confirm",
+      name: "doLogin",
+      message: "Open browser to login to Cloudflare?",
+      default: true
+    }]);
+    if (!doLogin) {
+      console.log(chalk.red("\n  Cloudflare auth is required. Run `cloudflared tunnel login` manually.\n"));
+      process.exit(1);
+    }
+    console.log(chalk.dim("     Waiting for browser authorization..."));
+    try {
+      await execP("cloudflared tunnel login", { timeout: 12e4 });
+      console.log(chalk.green("     \u2713 Authenticated\n"));
+    } catch (err) {
+      console.log(chalk.red(`     \u2717 Login failed or timed out: ${err.message}`));
+      console.log(chalk.dim("     Complete the browser authorization and try again.\n"));
+      process.exit(1);
+    }
+  }
+  console.log(chalk.bold("  3. Tunnel Configuration"));
+  const { domain, port, tunnelName } = await inquirer.prompt([
+    {
+      type: "input",
+      name: "domain",
+      message: "Domain (e.g. dashboard.yourcompany.com):",
+      validate: (v) => v.includes(".") ? true : "Enter a valid domain"
+    },
+    {
+      type: "number",
+      name: "port",
+      message: "Local port:",
+      default: 3200
+    },
+    {
+      type: "input",
+      name: "tunnelName",
+      message: "Tunnel name:",
+      default: "agenticmail-enterprise"
+    }
+  ]);
+  console.log("");
+  console.log(chalk.bold("  4. Deploying"));
+  let tunnelId = "";
+  try {
+    console.log(chalk.dim("     Creating tunnel..."));
+    const out = execSync(`cloudflared tunnel create ${tunnelName} 2>&1`, { encoding: "utf8", timeout: 3e4 });
+    const match = out.match(/Created tunnel .+ with id ([a-f0-9-]+)/);
+    tunnelId = match?.[1] || "";
+    console.log(chalk.green(`     \u2713 Tunnel created: ${tunnelName} (${tunnelId})`));
+  } catch (e) {
+    if (e.message?.includes("already exists") || e.stderr?.includes("already exists")) {
+      try {
+        const listOut = execSync("cloudflared tunnel list --output json 2>&1", { encoding: "utf8", timeout: 15e3 });
+        const tunnels = JSON.parse(listOut);
+        const existing = tunnels.find((t) => t.name === tunnelName);
+        if (existing) {
+          tunnelId = existing.id;
+          console.log(chalk.green(`     \u2713 Using existing tunnel: ${tunnelName} (${tunnelId})`));
+        }
+      } catch {
+        console.log(chalk.red(`     \u2717 Tunnel "${tunnelName}" exists but couldn't read its ID`));
+        process.exit(1);
+      }
+    } else {
+      console.log(chalk.red(`     \u2717 Failed to create tunnel: ${e.message}`));
+      process.exit(1);
+    }
+  }
+  if (!tunnelId) {
+    console.log(chalk.red("     \u2717 Could not determine tunnel ID"));
+    process.exit(1);
+  }
+  const config = [
+    `tunnel: ${tunnelId}`,
+    `credentials-file: ${join(cfDir, tunnelId + ".json")}`,
+    "",
+    "ingress:",
+    `  - hostname: ${domain}`,
+    `    service: http://localhost:${port}`,
+    "  - service: http_status:404"
+  ].join("\n");
+  writeFileSync(join(cfDir, "config.yml"), config);
+  console.log(chalk.green(`     \u2713 Config written: ${domain} \u2192 localhost:${port}`));
+  try {
+    execSync(`cloudflared tunnel route dns ${tunnelId} ${domain} 2>&1`, { encoding: "utf8", timeout: 3e4 });
+    console.log(chalk.green(`     \u2713 DNS CNAME created: ${domain}`));
+  } catch (e) {
+    if (e.message?.includes("already exists") || e.stderr?.includes("already exists")) {
+      console.log(chalk.green(`     \u2713 DNS CNAME already exists for ${domain}`));
+    } else {
+      console.log(chalk.yellow(`     \u26A0 DNS routing failed \u2014 add CNAME manually: ${domain} \u2192 ${tunnelId}.cfargotunnel.com`));
+    }
+  }
+  let started = false;
+  try {
+    execSync("which pm2", { timeout: 3e3 });
+    try {
+      execSync("pm2 delete cloudflared 2>/dev/null", { timeout: 5e3 });
+    } catch {
+    }
+    execSync(`pm2 start cloudflared --name cloudflared -- tunnel run`, { encoding: "utf8", timeout: 15e3 });
+    try {
+      execSync("pm2 save 2>/dev/null", { timeout: 5e3 });
+    } catch {
+    }
+    try {
+      const startupOut = execSync("pm2 startup 2>&1", { encoding: "utf8", timeout: 15e3 });
+      const sudoMatch = startupOut.match(/sudo .+$/m);
+      if (sudoMatch) try {
+        execSync(sudoMatch[0], { timeout: 15e3, stdio: "pipe" });
+      } catch {
+      }
+    } catch {
+    }
+    console.log(chalk.green("     \u2713 Tunnel running via PM2 (auto-restarts on crash + reboot)"));
+    started = true;
+  } catch {
+  }
+  if (!started) {
+    try {
+      console.log(chalk.dim("     Installing PM2 for process management..."));
+      execSync("npm install -g pm2", { timeout: 6e4, stdio: "pipe" });
+      try {
+        execSync("pm2 delete cloudflared 2>/dev/null", { timeout: 5e3 });
+      } catch {
+      }
+      execSync(`pm2 start cloudflared --name cloudflared -- tunnel run`, { encoding: "utf8", timeout: 15e3 });
+      try {
+        execSync("pm2 save 2>/dev/null", { timeout: 5e3 });
+      } catch {
+      }
+      try {
+        const startupOut = execSync("pm2 startup 2>&1", { encoding: "utf8", timeout: 15e3 });
+        const sudoMatch = startupOut.match(/sudo .+$/m);
+        if (sudoMatch) try {
+          execSync(sudoMatch[0], { timeout: 15e3, stdio: "pipe" });
+        } catch {
+        }
+      } catch {
+      }
+      console.log(chalk.green("     \u2713 PM2 installed + tunnel running (auto-restarts on crash + reboot)"));
+      started = true;
+    } catch {
+      console.log(chalk.yellow("     \u26A0 PM2 not available \u2014 tunnel started in background"));
+      console.log(chalk.dim("       Install PM2 for auto-restart: npm install -g pm2"));
+      try {
+        const { spawn } = await import("child_process");
+        const child = spawn("cloudflared", ["tunnel", "run"], { detached: true, stdio: "ignore" });
+        child.unref();
+        started = true;
+      } catch {
+      }
+    }
+  }
+  console.log("");
+  console.log(chalk.green.bold(`  \u2713 Tunnel deployed! Your dashboard will be at https://${domain}`));
+  console.log("");
+  return { tunnelId, domain, port, tunnelName };
+}
+async function installCloudflared() {
+  const plat = platform();
+  const a = arch();
+  if (plat === "darwin") {
+    try {
+      execSync("which brew", { timeout: 3e3 });
+      execSync("brew install cloudflared 2>&1", { encoding: "utf8", timeout: 12e4 });
+      return;
+    } catch {
+    }
+    const cfArch = a === "arm64" ? "arm64" : "amd64";
+    execSync(
+      `curl -L -o /usr/local/bin/cloudflared https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-darwin-${cfArch} && chmod +x /usr/local/bin/cloudflared`,
+      { timeout: 6e4 }
+    );
+  } else if (plat === "linux") {
+    const cfArch = a === "arm64" ? "arm64" : "amd64";
+    execSync(
+      `curl -L -o /usr/local/bin/cloudflared https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-${cfArch} && chmod +x /usr/local/bin/cloudflared`,
+      { timeout: 6e4 }
+    );
+  } else {
+    throw new Error("Unsupported platform: " + plat);
+  }
+}
+// src/setup/domain.ts
+async function promptDomain(inquirer, chalk, deployTarget) {
+  if (deployTarget === "local") {
+    return {};
+  }
+  console.log("");
+  console.log(chalk.bold.cyan("  Step 4 of 5: Custom Domain"));
+  console.log(chalk.dim("  Configure how your team will access the dashboard.\n"));
+  const targetHints = {
+    cloud: "By default, your dashboard is at <subdomain>.agenticmail.io. Add a custom domain for a branded URL.",
+    docker: "Configure your reverse proxy (nginx, Caddy, etc.) to route your domain to the Docker container.",
+    fly: "After deploying, run `fly certs add <domain>` to provision TLS for your domain.",
+    railway: "Add your domain in Railway project settings after deploying."
+  };
+  if (targetHints[deployTarget]) {
+    console.log(chalk.dim(`  ${targetHints[deployTarget]}`));
+    console.log("");
+  }
+  const { domainMode } = await inquirer.prompt([{
+    type: "list",
+    name: "domainMode",
+    message: "Domain setup:",
+    choices: [
+      {
+        name: `Use default subdomain only  ${chalk.dim("(<subdomain>.agenticmail.io)")}`,
+        value: "subdomain_only"
+      },
+      {
+        name: `Add a custom subdomain  ${chalk.dim("(e.g. agents.yourcompany.com)")}`,
+        value: "custom_subdomain"
+      },
+      {
+        name: `Deploy on my root domain  ${chalk.dim("(e.g. yourcompany.com \u2014 no subdomain)")}`,
+        value: "root_domain"
+      }
+    ]
+  }]);
+  if (domainMode === "subdomain_only") {
+    return {};
+  }
+  const isRoot = domainMode === "root_domain";
+  const { domain } = await inquirer.prompt([{
+    type: "input",
+    name: "domain",
+    message: isRoot ? "Your domain:" : "Custom domain:",
+    suffix: isRoot ? chalk.dim("  (e.g. yourcompany.com)") : chalk.dim("  (e.g. agents.yourcompany.com)"),
+    validate: (v) => {
+      const d = v.trim().toLowerCase();
+      if (!d.includes(".")) return "Enter a valid domain (e.g. yourcompany.com)";
+      if (d.startsWith("http")) return "Enter just the domain, not a URL";
+      if (d.endsWith(".")) return "Do not include a trailing dot";
+      return true;
+    },
+    filter: (v) => v.trim().toLowerCase()
+  }]);
+  if (isRoot) {
+    console.log("");
+    console.log(chalk.bold("  Root Domain Deployment"));
+    console.log(chalk.dim(`  Your dashboard will be accessible at: ${chalk.white("https://" + domain)}`));
+    console.log(chalk.dim("  This means the entire domain is dedicated to your AgenticMail deployment."));
+    console.log("");
+  }
+  console.log("");
+  console.log(chalk.dim("  After setup, you will need DNS records for this domain:"));
+  console.log("");
+  if (isRoot) {
+    console.log(chalk.dim(`  1. ${chalk.white("A record")}         \u2014 point ${domain} to your server IP`));
+    console.log(chalk.dim(`     (or CNAME if your provider allows it at the apex)`));
+  } else {
+    console.log(chalk.dim(`  1. ${chalk.white("CNAME or A record")}  \u2014 routes traffic to your server`));
+  }
+  console.log(chalk.dim(`  2. ${chalk.white("TXT record")}          \u2014 proves domain ownership (next step)`));
+  console.log("");
+  return {
+    customDomain: domain,
+    useRootDomain: isRoot || void 0
+  };
+}
+// src/setup/registration.ts
+import { randomBytes } from "crypto";
+var REGISTRY_BASE_URL = process.env.AGENTICMAIL_REGISTRY_URL || "https://agenticmail.io/enterprise/v1";
+async function promptRegistration(inquirer, chalk, ora, domain, companyName, adminEmail) {
+  if (!domain) {
+    return { registered: false, verificationStatus: "skipped" };
+  }
+  console.log("");
+  console.log(chalk.bold.cyan("  Step 5 of 5: Domain Registration"));
+  console.log(chalk.dim("  Protect your deployment from unauthorized duplication.\n"));
+  const { wantsRegistration } = await inquirer.prompt([{
+    type: "confirm",
+    name: "wantsRegistration",
+    message: `Register ${chalk.bold(domain)} with AgenticMail?`,
+    default: true
+  }]);
+  if (!wantsRegistration) {
+    console.log(chalk.dim("  Skipped. You can register later from the dashboard.\n"));
+    return { registered: false, verificationStatus: "skipped" };
+  }
+  const spinner = ora("Generating deployment key...").start();
+  const { createHash } = await import("crypto");
+  const plaintextKey = randomBytes(32).toString("hex");
+  const keyHash = createHash("sha256").update(plaintextKey).digest("hex");
+  spinner.succeed("Deployment key generated");
+  spinner.start("Registering domain with AgenticMail registry...");
+  const registryUrl = REGISTRY_BASE_URL.replace(/\/$/, "");
+  let registrationId;
+  let dnsChallenge;
+  try {
+    const res = await fetch(`${registryUrl}/domains/register`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({
+        domain: domain.toLowerCase().trim(),
+        keyHash,
+        sha256Hash: keyHash,
+        orgName: companyName,
+        contactEmail: adminEmail
+      }),
+      signal: AbortSignal.timeout(15e3)
+    });
+    const data = await res.json().catch(() => ({}));
+    if (res.status === 409) {
+      spinner.info("Domain already registered \u2014 verifying ownership");
+      console.log("");
+      console.log(chalk.yellow("  This domain is already registered and verified."));
+      console.log(chalk.dim("  Enter your deployment key to prove ownership and continue.\n"));
+      const { deploymentKey } = await inquirer.prompt([{
+        type: "password",
+        name: "deploymentKey",
+        message: "Deployment key:",
+        mask: "*",
+        validate: (v) => v.length === 64 || "Deployment key should be 64 hex characters"
+      }]);
+      const recoverSpinner = ora("Verifying deployment key...").start();
+      try {
+        const recoverRes = await fetch(`${registryUrl}/domains/recover`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            domain: domain.toLowerCase().trim(),
+            deploymentKey
+          }),
+          signal: AbortSignal.timeout(15e3)
+        });
+        const recoverData = await recoverRes.json().catch(() => ({}));
+        if (recoverRes.status === 403) {
+          recoverSpinner.fail("Invalid deployment key");
+          console.log("");
+          console.log(chalk.red("  The deployment key does not match this domain."));
+          console.log("");
+          const { continueAnyway } = await inquirer.prompt([{
+            type: "confirm",
+            name: "continueAnyway",
+            message: "Continue setup without registration?",
+            default: true
+          }]);
+          if (continueAnyway) {
+            return { registered: false, verificationStatus: "skipped" };
+          }
+          process.exit(1);
+        }
+        if (!recoverRes.ok) {
+          throw new Error(recoverData.error || `HTTP ${recoverRes.status}`);
+        }
+        recoverSpinner.succeed("Ownership verified \u2014 domain recovered");
+        registrationId = recoverData.registrationId;
+        dnsChallenge = recoverData.dnsChallenge;
+        const verifyRes = await fetch(`${registryUrl}/domains/verify`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ domain: domain.toLowerCase().trim() }),
+          signal: AbortSignal.timeout(15e3)
+        });
+        const verifyData = await verifyRes.json().catch(() => ({}));
+        const { createHash: createHash2 } = await import("crypto");
+        const localKeyHash = createHash2("sha256").update(deploymentKey).digest("hex");
+        return {
+          registered: true,
+          deploymentKeyHash: localKeyHash,
+          dnsChallenge,
+          registrationId,
+          verificationStatus: verifyData?.verified ? "verified" : "pending_dns"
+        };
+      } catch (err) {
+        recoverSpinner.fail(`Recovery failed: ${err.message}`);
+        const { continueAnyway } = await inquirer.prompt([{
+          type: "confirm",
+          name: "continueAnyway",
+          message: "Continue setup without registration?",
+          default: true
+        }]);
+        if (continueAnyway) {
+          return { registered: false, verificationStatus: "skipped" };
+        }
+        process.exit(1);
+      }
+    }
+    if (!res.ok) {
+      throw new Error(data.error || `HTTP ${res.status}`);
+    }
+    registrationId = data.registrationId;
+    dnsChallenge = data.dnsChallenge;
+    spinner.succeed("Domain registered");
+  } catch (err) {
+    spinner.warn("Registry unavailable");
+    console.log("");
+    console.log(chalk.yellow(`  Could not reach registry: ${err.message}`));
+    console.log(chalk.dim("  You can register later with: npx @agenticmail/enterprise verify-domain"));
+    console.log("");
+    const { continueAnyway } = await inquirer.prompt([{
+      type: "confirm",
+      name: "continueAnyway",
+      message: "Continue setup without registration?",
+      default: true
+    }]);
+    if (continueAnyway) {
+      return { registered: false, verificationStatus: "skipped" };
+    }
+    process.exit(1);
+  }
+  console.log("");
+  console.log(chalk.red.bold("  \u2554\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2557"));
+  console.log(chalk.red.bold("  \u2551") + chalk.white.bold("  DEPLOYMENT KEY \u2014 SAVE THIS NOW                                     ") + chalk.red.bold("\u2551"));
+  console.log(chalk.red.bold("  \u2551") + "                                                                      " + chalk.red.bold("\u2551"));
+  console.log(chalk.red.bold("  \u2551") + `  ${chalk.green.bold(plaintextKey)}  ` + chalk.red.bold("\u2551"));
+  console.log(chalk.red.bold("  \u2551") + "                                                                      " + chalk.red.bold("\u2551"));
+  console.log(chalk.red.bold("  \u2551") + chalk.dim("  This key is shown ONCE. Store it securely (password manager,       ") + chalk.red.bold("\u2551"));
+  console.log(chalk.red.bold("  \u2551") + chalk.dim("  vault, printed backup). You need it to recover this domain.        ") + chalk.red.bold("\u2551"));
+  console.log(chalk.red.bold("  \u255A\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u255D"));
+  console.log("");
+  console.log(chalk.bold("  Add this DNS TXT record to prove domain ownership:"));
+  console.log("");
+  console.log(`  ${chalk.bold("Host:")}   ${chalk.cyan(`_agenticmail-verify.${domain}`)}`);
+  console.log(`  ${chalk.bold("Type:")}   ${chalk.cyan("TXT")}`);
+  console.log(`  ${chalk.bold("Value:")}  ${chalk.cyan(dnsChallenge)}`);
+  console.log("");
+  console.log(chalk.dim("  DNS changes can take up to 48 hours to propagate."));
+  console.log("");
+  await inquirer.prompt([{
+    type: "confirm",
+    name: "keySaved",
+    message: "I have saved my deployment key",
+    default: false
+  }]);
+  const { checkNow } = await inquirer.prompt([{
+    type: "confirm",
+    name: "checkNow",
+    message: "Check DNS verification now?",
+    default: false
+  }]);
+  let verificationStatus = "pending_dns";
+  if (checkNow) {
+    for (let attempt = 1; attempt <= 5; attempt++) {
+      spinner.start(`Checking DNS (attempt ${attempt}/5)...`);
+      try {
+        const res = await fetch(`${registryUrl}/domains/verify`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ domain: domain.toLowerCase().trim() }),
+          signal: AbortSignal.timeout(15e3)
+        });
+        const data = await res.json().catch(() => ({}));
+        if (data.verified) {
+          spinner.succeed("Domain verified!");
+          verificationStatus = "verified";
+          break;
+        }
+      } catch {
+      }
+      if (attempt < 5) {
+        spinner.text = `DNS record not found yet. Retrying in 10s (attempt ${attempt}/5)...`;
+        await new Promise((r) => setTimeout(r, 1e4));
+      } else {
+        spinner.info("DNS record not found yet");
+        console.log(chalk.dim("  Run later: npx @agenticmail/enterprise verify-domain"));
+      }
+    }
+  } else {
+    console.log(chalk.dim("  Run when ready: npx @agenticmail/enterprise verify-domain"));
+  }
+  console.log("");
+  return {
+    registered: true,
+    deploymentKeyHash: keyHash,
+    dnsChallenge,
+    registrationId,
+    verificationStatus
+  };
+}
+// src/setup/provision.ts
+import { randomUUID, randomBytes as randomBytes2 } from "crypto";
+function generateOrgId() {
+  const chars = "ABCDEFGHJKLMNPQRSTUVWXYZ23456789";
+  const bytes = randomBytes2(10);
+  let id = "";
+  for (let i = 0; i < 10; i++) id += chars[bytes[i] % chars.length];
+  return id;
+}
+async function provision(config, ora, chalk) {
+  const spinner = ora("Connecting to database...").start();
+  const jwtSecret = randomUUID() + randomUUID();
+  const vaultKey = randomUUID() + randomUUID();
+  try {
+    const { createAdapter } = await import("./factory-4V2W4BSV.js");
+    const db = await createAdapter({
+      type: config.database.type,
+      connectionString: config.database.connectionString,
+      region: config.database.region,
+      accessKeyId: config.database.accessKeyId,
+      secretAccessKey: config.database.secretAccessKey,
+      authToken: config.database.authToken
+    });
+    spinner.text = "Running migrations...";
+    await db.migrate();
+    spinner.succeed("Database ready");
+    const engineDbInterface = db.getEngineDB();
+    if (engineDbInterface) {
+      spinner.start("Initializing engine...");
+      const { EngineDatabase } = await import("./db-adapter-2T56ORSD.js");
+      const dialectMap = {
+        sqlite: "sqlite",
+        postgres: "postgres",
+        supabase: "postgres",
+        neon: "postgres",
+        cockroachdb: "postgres",
+        mysql: "mysql",
+        planetscale: "mysql",
+        turso: "turso"
+      };
+      const engineDialect = dialectMap[db.getDialect()] || db.getDialect();
+      const engineDb = new EngineDatabase(engineDbInterface, engineDialect);
+      const migResult = await engineDb.migrate();
+      spinner.succeed(`Engine ready (${migResult.applied} migrations applied)`);
+    }
+    spinner.start("Creating company...");
+    const orgId = generateOrgId();
+    const corsOrigins = [];
+    if (config.domain.customDomain) {
+      corsOrigins.push(`https://${config.domain.customDomain}`);
+    }
+    if (config.company.subdomain) {
+      corsOrigins.push(`https://${config.company.subdomain}.agenticmail.io`);
+    }
+    if (config.deployTarget === "local") {
+      corsOrigins.push("http://localhost:3000", "http://localhost:8080", "http://127.0.0.1:3000", "http://127.0.0.1:8080");
+    }
+    await db.updateSettings({
+      name: config.company.companyName,
+      subdomain: config.company.subdomain,
+      domain: config.domain.customDomain,
+      orgId,
+      ...corsOrigins.length > 0 ? {
+        firewallConfig: {
+          network: { corsOrigins }
+        }
+      } : {}
+    });
+    spinner.succeed(`Company created (org: ${orgId})`);
+    if (config.registration?.registered) {
+      spinner.start("Saving domain registration...");
+      await db.updateSettings({
+        deploymentKeyHash: config.registration.deploymentKeyHash,
+        domainRegistrationId: config.registration.registrationId,
+        domainDnsChallenge: config.registration.dnsChallenge,
+        domainRegisteredAt: (/* @__PURE__ */ new Date()).toISOString(),
+        domainStatus: config.registration.verificationStatus === "verified" ? "verified" : "pending_dns",
+        ...config.registration.verificationStatus === "verified" ? { domainVerifiedAt: (/* @__PURE__ */ new Date()).toISOString() } : {}
+      });
+      spinner.succeed("Domain registration saved");
+    }
+    spinner.start("Creating admin account...");
+    let admin;
+    try {
+      admin = await db.createUser({
+        email: config.company.adminEmail,
+        name: "Admin",
+        role: "owner",
+        password: config.company.adminPassword
+      });
+    } catch (err) {
+      if (err.message?.includes("duplicate key") || err.message?.includes("UNIQUE constraint") || err.code === "23505") {
+        admin = await db.getUserByEmail(config.company.adminEmail);
+        if (!admin) throw err;
+        spinner.text = "Admin account already exists, reusing...";
+      } else {
+        throw err;
+      }
+    }
+    await db.logEvent({
+      actor: admin.id,
+      actorType: "system",
+      action: "setup.complete",
+      resource: `company:${config.company.subdomain}`,
+      details: {
+        dbType: config.database.type,
+        deployTarget: config.deployTarget,
+        companyName: config.company.companyName
+      }
+    });
+    spinner.succeed("Admin account created");
+    try {
+      const { writeFileSync: writeFileSync2, existsSync: existsSync2, mkdirSync } = await import("fs");
+      const { join: join3 } = await import("path");
+      const { homedir: homedir2 } = await import("os");
+      const envDir = join3(homedir2(), ".agenticmail");
+      if (!existsSync2(envDir)) mkdirSync(envDir, { recursive: true });
+      const port = config.tunnel?.port || (config.deployTarget === "local" ? 3e3 : void 0) || (config.deployTarget === "docker" ? 3e3 : void 0) || 3200;
+      let existingEnv = "";
+      const envFilePath = join3(envDir, ".env");
+      if (existsSync2(envFilePath)) {
+        try {
+          existingEnv = (await import("fs")).readFileSync(envFilePath, "utf8");
+        } catch {
+        }
+      }
+      const envMap = /* @__PURE__ */ new Map();
+      for (const line of existingEnv.split("\n")) {
+        const t = line.trim();
+        if (!t || t.startsWith("#")) continue;
+        const eq = t.indexOf("=");
+        if (eq > 0) envMap.set(t.slice(0, eq).trim(), t.slice(eq + 1).trim());
+      }
+      envMap.set("DATABASE_URL", config.database.connectionString || "");
+      envMap.set("JWT_SECRET", jwtSecret);
+      envMap.set("AGENTICMAIL_VAULT_KEY", vaultKey);
+      envMap.set("PORT", String(port));
+      if (config.cloud?.tunnelToken) envMap.set("CLOUDFLARED_TOKEN", config.cloud.tunnelToken);
+      if (config.cloud?.subdomain) envMap.set("AGENTICMAIL_SUBDOMAIN", config.cloud.subdomain);
+      if (config.cloud?.fqdn) envMap.set("AGENTICMAIL_DOMAIN", config.cloud.fqdn);
+      const envContent = [
+        "# AgenticMail Enterprise \u2014 auto-generated by setup wizard",
+        "# BACK UP THIS FILE! You need it to recover on a new machine.",
+        ...Array.from(envMap.entries()).map(([k, v]) => `${k}=${v}`)
+      ].join("\n") + "\n";
+      writeFileSync2(join3(envDir, ".env"), envContent, { mode: 384 });
+      spinner.succeed(`Config saved to ~/.agenticmail/.env`);
+    } catch {
+    }
+    const result = await deploy(config, db, jwtSecret, vaultKey, spinner, chalk);
+    return {
+      success: true,
+      url: result.url,
+      jwtSecret,
+      db,
+      serverClose: result.close
+    };
+  } catch (err) {
+    spinner.fail(`Setup failed: ${err.message}`);
+    return {
+      success: false,
+      error: err.message,
+      jwtSecret,
+      db: null
+    };
+  }
+}
+async function deploy(config, db, jwtSecret, vaultKey, spinner, chalk) {
+  const { deployTarget, company, database, domain, tunnel, cloud } = config;
+  if (deployTarget === "cloudflare-tunnel" && tunnel) {
+    spinner.start(`Starting local server on port ${tunnel.port}...`);
+    const { createServer: createServer2 } = await import("./server-KSN56EZQ.js");
+    const server2 = createServer2({ port: tunnel.port, db, jwtSecret });
+    const handle2 = await server2.start();
+    spinner.succeed("Server running");
+    console.log("");
+    console.log(chalk.green.bold("  AgenticMail Enterprise is live!"));
+    console.log("");
+    console.log(`  ${chalk.bold("Public URL:")}  ${chalk.cyan("https://" + tunnel.domain)}`);
+    console.log(`  ${chalk.bold("Local:")}       ${chalk.cyan("http://localhost:" + tunnel.port)}`);
+    console.log(`  ${chalk.bold("Tunnel:")}      ${tunnel.tunnelName} (${tunnel.tunnelId})`);
+    console.log(`  ${chalk.bold("Admin:")}       ${company.adminEmail}`);
+    console.log("");
+    console.log(chalk.dim("  Tunnel is managed by PM2 \u2014 auto-restarts on crash."));
+    console.log(chalk.dim("  Manage: pm2 status | pm2 logs cloudflared | pm2 restart cloudflared"));
+    console.log(chalk.dim("  Press Ctrl+C to stop the server"));
+    return { url: "https://" + tunnel.domain, close: handle2.close };
+  }
+  if (deployTarget === "cloud" && cloud) {
+    spinner.start("Configuring agenticmail.io deployment...");
+    try {
+      const pm2 = await import("pm2");
+      await new Promise((resolve, reject) => {
+        pm2.connect((err) => {
+          if (err) {
+            reject(err);
+            return;
+          }
+          pm2.start({
+            name: "cloudflared",
+            script: "cloudflared",
+            args: `tunnel --no-autoupdate run --token ${cloud.tunnelToken}`,
+            interpreter: "none",
+            autorestart: true
+          }, (e) => {
+            if (e) console.warn(`PM2 cloudflared start: ${e.message}`);
+            pm2.start({
+              name: "enterprise",
+              script: "npx",
+              args: "@agenticmail/enterprise start",
+              env: {
+                PORT: String(cloud.port || 3100),
+                DATABASE_URL: database.connectionString || "",
+                JWT_SECRET: jwtSecret,
+                AGENTICMAIL_VAULT_KEY: vaultKey,
+                AGENTICMAIL_DOMAIN: cloud.fqdn
+              },
+              autorestart: true
+            }, (e2) => {
+              pm2.disconnect();
+              if (e2) reject(e2);
+              else resolve();
+            });
+          });
+        });
+      });
+      try {
+        const { execSync: execSync3 } = await import("child_process");
+        execSync3("pm2 save", { timeout: 1e4, stdio: "pipe" });
+        try {
+          const startupOut = execSync3("pm2 startup 2>&1", { encoding: "utf8", timeout: 15e3 });
+          const sudoMatch = startupOut.match(/sudo .+$/m);
+          if (sudoMatch) {
+            try {
+              execSync3(sudoMatch[0], { timeout: 15e3, stdio: "pipe" });
+            } catch {
+            }
+          }
+        } catch {
+        }
+      } catch {
+      }
+      spinner.succeed(`Live at https://${cloud.fqdn}`);
+      console.log(chalk.dim("  PM2 will auto-restart on crash and survive reboots."));
+    } catch (e) {
+      spinner.warn(`PM2 setup failed: ${e.message}`);
+      console.log(`  Start manually:`);
+      console.log(`    cloudflared tunnel --no-autoupdate run --token ${cloud.tunnelToken}`);
+      console.log(`    npx @agenticmail/enterprise start`);
+    }
+    console.log("");
+    console.log(`  Dashboard: https://${cloud.fqdn}`);
+    console.log(`  To recover on a new machine, keep your AGENTICMAIL_VAULT_KEY safe.`);
+    console.log("");
+    return { url: `https://${cloud.fqdn}` };
+  }
+  if (deployTarget === "docker") {
+    const { generateDockerCompose, generateEnvFile } = await import("./managed-T2RBYB2W.js");
+    const compose = generateDockerCompose({ port: 3e3 });
+    const envFile = generateEnvFile({
+      dbType: database.type,
+      dbConnectionString: database.connectionString || "",
+      jwtSecret,
+      vaultKey
+    });
+    const { writeFileSync: writeFileSync2, existsSync: existsSync2, appendFileSync } = await import("fs");
+    writeFileSync2("docker-compose.yml", compose);
+    writeFileSync2(".env", envFile);
+    if (existsSync2(".gitignore")) {
+      const content = await import("fs").then((f) => f.readFileSync(".gitignore", "utf-8"));
+      if (!content.includes(".env")) {
+        appendFileSync(".gitignore", "\n# Secrets\n.env\n");
+      }
+    } else {
+      writeFileSync2(".gitignore", "# Secrets\n.env\nnode_modules/\n");
+    }
+    spinner.succeed("docker-compose.yml + .env generated");
+    console.log("");
+    console.log(chalk.green.bold("  Docker deployment ready!"));
+    console.log("");
+    console.log(`  Run:       ${chalk.cyan("docker compose up -d")}`);
+    console.log(`  Dashboard: ${chalk.cyan("http://localhost:3000")}`);
+    console.log(chalk.dim("  Secrets stored in .env \u2014 do not commit to git"));
+    if (domain.customDomain) {
+      printCustomDomainInstructions(chalk, domain.customDomain, "docker");
+    }
+    return { url: "http://localhost:3000" };
+  }
+  if (deployTarget === "fly") {
+    const { generateFlyToml } = await import("./managed-T2RBYB2W.js");
+    const flyToml = generateFlyToml(`am-${company.subdomain}`, "iad");
+    const { writeFileSync: writeFileSync2 } = await import("fs");
+    writeFileSync2("fly.toml", flyToml);
+    spinner.succeed("fly.toml generated");
+    console.log("");
+    console.log(chalk.green.bold("  Fly.io deployment ready!"));
+    console.log("");
+    console.log(`  1. ${chalk.cyan("fly launch --copy-config")}`);
+    console.log(`  2. ${chalk.cyan(`fly secrets set DATABASE_URL="${database.connectionString}" JWT_SECRET="${jwtSecret}" AGENTICMAIL_VAULT_KEY="${vaultKey}"`)}`);
+    console.log(`  3. ${chalk.cyan("fly deploy")}`);
+    if (domain.customDomain) {
+      console.log(`  4. ${chalk.cyan(`fly certs add ${domain.customDomain}`)}`);
+      printCustomDomainInstructions(chalk, domain.customDomain, "fly", `am-${company.subdomain}.fly.dev`);
+    }
+    return {};
+  }
+  if (deployTarget === "railway") {
+    const { generateRailwayConfig } = await import("./managed-T2RBYB2W.js");
+    const railwayConfig = generateRailwayConfig();
+    const { writeFileSync: writeFileSync2 } = await import("fs");
+    writeFileSync2("railway.toml", railwayConfig);
+    spinner.succeed("railway.toml generated");
+    console.log("");
+    console.log(chalk.green.bold("  Railway deployment ready!"));
+    console.log("");
+    console.log(`  1. ${chalk.cyan("railway init")}`);
+    console.log(`  2. ${chalk.cyan("railway link")}`);
+    console.log(`  3. ${chalk.cyan("railway up")}`);
+    if (domain.customDomain) {
+      printCustomDomainInstructions(chalk, domain.customDomain, "railway");
+    }
+    return {};
+  }
+  spinner.start("Starting local server...");
+  const { createServer } = await import("./server-KSN56EZQ.js");
+  const server = createServer({ port: 3e3, db, jwtSecret });
+  const handle = await server.start();
+  spinner.succeed("Server running");
+  console.log("");
+  console.log(chalk.green.bold("  AgenticMail Enterprise is running!"));
+  console.log("");
+  console.log(`  ${chalk.bold("Dashboard:")}  ${chalk.cyan("http://localhost:3000")}`);
+  console.log(`  ${chalk.bold("API:")}        ${chalk.cyan("http://localhost:3000/api")}`);
+  console.log(`  ${chalk.bold("Admin:")}      ${company.adminEmail}`);
+  console.log("");
+  console.log(chalk.dim("  Press Ctrl+C to stop"));
+  return { url: "http://localhost:3000", close: handle.close };
+}
+function printCustomDomainInstructions(chalk, domain, target, cnameTarget) {
+  console.log("");
+  console.log(chalk.bold("  Custom Domain DNS Setup"));
+  console.log(chalk.dim(`  Route ${chalk.white(domain)} to your deployment.
+`));
+  if (target === "cloud" && cnameTarget) {
+    console.log(chalk.bold("  Add this DNS record at your domain registrar:"));
+    console.log("");
+    console.log(`  ${chalk.bold("Type:")}   ${chalk.cyan("CNAME")}`);
+    console.log(`  ${chalk.bold("Host:")}   ${chalk.cyan(domain)}`);
+    console.log(`  ${chalk.bold("Value:")}  ${chalk.cyan(cnameTarget)}`);
+  } else if (target === "fly" && cnameTarget) {
+    console.log(chalk.bold("  Add this DNS record at your domain registrar:"));
+    console.log("");
+    console.log(`  ${chalk.bold("Type:")}   ${chalk.cyan("CNAME")}`);
+    console.log(`  ${chalk.bold("Host:")}   ${chalk.cyan(domain)}`);
+    console.log(`  ${chalk.bold("Value:")}  ${chalk.cyan(cnameTarget)}`);
+    console.log("");
+    console.log(chalk.dim("  Fly.io will automatically provision a TLS certificate."));
+  } else if (target === "railway") {
+    console.log(chalk.bold("  After deploying:"));
+    console.log("");
+    console.log(`  1. Open your Railway project dashboard`);
+    console.log(`  2. Go to ${chalk.bold("Settings")} \u2192 ${chalk.bold("Domains")}`);
+    console.log(`  3. Add ${chalk.cyan(domain)} as a custom domain`);
+    console.log(`  4. Railway will show you a ${chalk.bold("CNAME")} target \u2014 add it at your DNS provider`);
+  } else if (target === "docker") {
+    console.log(chalk.bold("  Configure your reverse proxy to route traffic:"));
+    console.log("");
+    console.log(`  ${chalk.bold("Domain:")}  ${chalk.cyan(domain)}`);
+    console.log(`  ${chalk.bold("Target:")}  ${chalk.cyan("localhost:3000")}  ${chalk.dim("(or your Docker host IP)")}`);
+    console.log("");
+    console.log(chalk.dim("  Example with nginx:"));
+    console.log(chalk.dim(""));
+    console.log(chalk.dim("    server {"));
+    console.log(chalk.dim(`      server_name ${domain};`));
+    console.log(chalk.dim("      location / {"));
+    console.log(chalk.dim("        proxy_pass http://localhost:3000;"));
+    console.log(chalk.dim("        proxy_set_header Host $host;"));
+    console.log(chalk.dim("        proxy_set_header X-Real-IP $remote_addr;"));
+    console.log(chalk.dim("      }"));
+    console.log(chalk.dim("    }"));
+    console.log("");
+    console.log(chalk.dim("  Then add a DNS A record pointing to your server IP,"));
+    console.log(chalk.dim("  or a CNAME if you have an existing hostname."));
+  }
+  console.log("");
+  console.log(chalk.dim("  Note: This CNAME/A record routes traffic. A separate TXT record"));
+  console.log(chalk.dim("  for domain verification was (or will be) configured in Step 5."));
+  console.log("");
+}
+// src/setup/index.ts
+var DB_DRIVER_MAP = {
+  postgres: ["pg"],
+  supabase: ["pg"],
+  neon: ["pg"],
+  cockroachdb: ["pg"],
+  mysql: ["mysql2"],
+  planetscale: ["mysql2"],
+  mongodb: ["mongodb"],
+  sqlite: ["better-sqlite3"],
+  turso: ["@libsql/client"],
+  dynamodb: ["@aws-sdk/client-dynamodb", "@aws-sdk/lib-dynamodb"]
+};
+async function ensureDbDriver(dbType, ora, chalk) {
+  const packages = DB_DRIVER_MAP[dbType];
+  if (!packages?.length) return;
+  const missing = [];
+  for (const pkg of packages) {
+    let found = false;
+    try {
+      await import(pkg);
+      found = true;
+    } catch {
+    }
+    if (!found) {
+      try {
+        const req = createRequire(join2(process.cwd(), "index.js"));
+        req.resolve(pkg);
+        found = true;
+      } catch {
+      }
+    }
+    if (!found) {
+      try {
+        const globalPrefix = execSync2("npm prefix -g", { encoding: "utf-8", stdio: ["pipe", "pipe", "pipe"] }).trim();
+        const req = createRequire(join2(globalPrefix, "lib", "node_modules", ".package-lock.json"));
+        req.resolve(pkg);
+        found = true;
+      } catch {
+      }
+    }
+    if (!found) missing.push(pkg);
+  }
+  if (!missing.length) return;
+  const spinner = ora(`Installing database driver: ${missing.join(", ")}...`).start();
+  try {
+    execSync2(`npm install --no-save ${missing.join(" ")}`, {
+      stdio: "pipe",
+      timeout: 12e4,
+      cwd: process.cwd()
+    });
+    spinner.succeed(`Database driver installed: ${missing.join(", ")}`);
+  } catch (err) {
+    spinner.fail(`Failed to install ${missing.join(", ")}`);
+    console.error(chalk.red(`
+  Run manually: npm install ${missing.join(" ")}
+`));
+    process.exit(1);
+  }
+}
+async function runSetupWizard() {
+  const { default: inquirer } = await import("inquirer");
+  const { default: ora } = await import("ora");
+  const { default: chalk } = await import("chalk");
+  console.log("");
+  console.log(chalk.bold("  AgenticMail Enterprise"));
+  console.log(chalk.dim("  AI Agent Identity & Email for Organizations"));
+  console.log("");
+  console.log(chalk.dim("  \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500"));
+  console.log("");
+  const company = await promptCompanyInfo(inquirer, chalk);
+  const database = await promptDatabase(inquirer, chalk);
+  const deploymentResult = await promptDeployment(inquirer, chalk);
+  const deployTarget = deploymentResult.target;
+  const domain = deploymentResult.tunnel ? { customDomain: deploymentResult.tunnel.domain } : deploymentResult.cloud ? { customDomain: deploymentResult.cloud.fqdn } : await promptDomain(inquirer, chalk, deployTarget);
+  const registration = deploymentResult.tunnel || deploymentResult.cloud ? { registered: true, verificationStatus: "verified" } : await promptRegistration(
+    inquirer,
+    chalk,
+    ora,
+    domain.customDomain,
+    company.companyName,
+    company.adminEmail
+  );
+  await ensureDbDriver(database.type, ora, chalk);
+  console.log("");
+  console.log(chalk.dim("  \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500"));
+  console.log("");
+  const result = await provision(
+    { company, database, deployTarget, domain, registration, tunnel: deploymentResult.tunnel, cloud: deploymentResult.cloud },
+    ora,
+    chalk
+  );
+  if (!result.success) {
+    console.error("");
+    console.error(chalk.red(`  Setup failed: ${result.error}`));
+    console.error(chalk.dim("  Check your database connection and try again."));
+    process.exit(1);
+  }
+  console.log("");
+}
+export {
+  promptCompanyInfo,
+  promptDatabase,
+  promptDeployment,
+  promptDomain,
+  promptRegistration,
+  provision,
+  runSetupWizard
+};