npm - @agenticmail/enterprise - Versions diffs - 0.5.327 → 0.5.329 - Mend

@agenticmail/enterprise 0.5.327 → 0.5.329

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (888) hide show

package/dist/agent-tools-F3CYENMK.js +13949 -0
package/dist/browser-tool-P57PLVW2.js +4002 -0
package/dist/chunk-3RI3AIJN.js +1519 -0
package/dist/chunk-AD4DFKHR.js +4928 -0
package/dist/chunk-UQXPVWXG.js +5101 -0
package/dist/cli-agent-K6UFZRXC.js +2473 -0
package/dist/cli-serve-4MT7RDEL.js +260 -0
package/dist/cli.js +3 -3
package/dist/dashboard/app.js +1 -1
package/dist/dashboard/components/transport-encryption.js +0 -62
package/dist/dashboard/pages/agent-detail/index.js +5 -2
package/dist/dashboard/pages/agent-detail/manager.js +1 -1
package/dist/dashboard/pages/agent-detail/overview.js +4 -2
package/dist/dashboard/pages/agent-detail/tool-security.js +1 -1
package/dist/dashboard/pages/domain-status.js +3 -6
package/dist/dashboard/pages/memory-transfer.js +1 -1
package/dist/dashboard/pages/messages.js +0 -1
package/dist/dashboard/pages/roles.js +0 -2
package/dist/dashboard/pages/workforce.js +0 -1
package/dist/index.js +3 -3
package/dist/runtime-L5ADJORP.js +45 -0
package/dist/server-KSN56EZQ.js +28 -0
package/dist/setup-UUNBBOQH.js +20 -0
package/logs/cloudflared-error.log +42 -0
package/logs/enterprise-out.log +6 -0
package/package.json +1 -1
package/src/admin/page-registry.ts +0 -290
package/src/admin/routes.ts +0 -2968
package/src/agent-tools/common.ts +0 -260
package/src/agent-tools/index.ts +0 -542
package/src/agent-tools/merge.ts +0 -62
package/src/agent-tools/middleware.ts +0 -436
package/src/agent-tools/schema/typebox.ts +0 -25
package/src/agent-tools/security.ts +0 -352
package/src/agent-tools/tool-resolver.ts +0 -1018
package/src/agent-tools/tools/agenticmail.ts +0 -1017
package/src/agent-tools/tools/bash.ts +0 -179
package/src/agent-tools/tools/browser-tool.schema.ts +0 -112
package/src/agent-tools/tools/browser-tool.ts +0 -388
package/src/agent-tools/tools/browser.ts +0 -764
package/src/agent-tools/tools/edit.ts +0 -100
package/src/agent-tools/tools/enterprise-code-sandbox.ts +0 -395
package/src/agent-tools/tools/enterprise-database.ts +0 -377
package/src/agent-tools/tools/enterprise-diff.ts +0 -580
package/src/agent-tools/tools/enterprise-documents.ts +0 -896
package/src/agent-tools/tools/enterprise-http.ts +0 -485
package/src/agent-tools/tools/enterprise-security-scan.ts +0 -528
package/src/agent-tools/tools/enterprise-spreadsheet.ts +0 -825
package/src/agent-tools/tools/glob.ts +0 -129
package/src/agent-tools/tools/google/calendar.ts +0 -230
package/src/agent-tools/tools/google/chat.ts +0 -725
package/src/agent-tools/tools/google/contacts.ts +0 -209
package/src/agent-tools/tools/google/docs.ts +0 -162
package/src/agent-tools/tools/google/drive.ts +0 -392
package/src/agent-tools/tools/google/forms.ts +0 -367
package/src/agent-tools/tools/google/gmail.ts +0 -897
package/src/agent-tools/tools/google/index.ts +0 -86
package/src/agent-tools/tools/google/maps.ts +0 -543
package/src/agent-tools/tools/google/meeting-voice.ts +0 -885
package/src/agent-tools/tools/google/meetings.ts +0 -1094
package/src/agent-tools/tools/google/sheets.ts +0 -215
package/src/agent-tools/tools/google/slides.ts +0 -559
package/src/agent-tools/tools/google/tasks.ts +0 -200
package/src/agent-tools/tools/grep.ts +0 -178
package/src/agent-tools/tools/integrations/_factory.ts +0 -102
package/src/agent-tools/tools/integrations/activecampaign.ts +0 -14
package/src/agent-tools/tools/integrations/adobe-sign.ts +0 -14
package/src/agent-tools/tools/integrations/adp.ts +0 -14
package/src/agent-tools/tools/integrations/airtable.ts +0 -14
package/src/agent-tools/tools/integrations/apollo.ts +0 -14
package/src/agent-tools/tools/integrations/asana.ts +0 -14
package/src/agent-tools/tools/integrations/auth0.ts +0 -14
package/src/agent-tools/tools/integrations/aws.ts +0 -14
package/src/agent-tools/tools/integrations/azure-devops.ts +0 -14
package/src/agent-tools/tools/integrations/bamboohr.ts +0 -14
package/src/agent-tools/tools/integrations/basecamp.ts +0 -14
package/src/agent-tools/tools/integrations/bigcommerce.ts +0 -14
package/src/agent-tools/tools/integrations/bitbucket.ts +0 -14
package/src/agent-tools/tools/integrations/box.ts +0 -14
package/src/agent-tools/tools/integrations/brex.ts +0 -14
package/src/agent-tools/tools/integrations/buffer.ts +0 -14
package/src/agent-tools/tools/integrations/calendly.ts +0 -14
package/src/agent-tools/tools/integrations/canva.ts +0 -14
package/src/agent-tools/tools/integrations/chargebee.ts +0 -14
package/src/agent-tools/tools/integrations/circleci.ts +0 -14
package/src/agent-tools/tools/integrations/clickup.ts +0 -14
package/src/agent-tools/tools/integrations/close.ts +0 -14
package/src/agent-tools/tools/integrations/cloudflare.ts +0 -14
package/src/agent-tools/tools/integrations/confluence.ts +0 -14
package/src/agent-tools/tools/integrations/contentful.ts +0 -14
package/src/agent-tools/tools/integrations/copper.ts +0 -14
package/src/agent-tools/tools/integrations/crisp.ts +0 -14
package/src/agent-tools/tools/integrations/crowdstrike.ts +0 -14
package/src/agent-tools/tools/integrations/datadog.ts +0 -14
package/src/agent-tools/tools/integrations/digitalocean.ts +0 -14
package/src/agent-tools/tools/integrations/discord.ts +0 -14
package/src/agent-tools/tools/integrations/docker.ts +0 -14
package/src/agent-tools/tools/integrations/docusign.ts +0 -14
package/src/agent-tools/tools/integrations/drift.ts +0 -14
package/src/agent-tools/tools/integrations/dropbox.ts +0 -14
package/src/agent-tools/tools/integrations/figma.ts +0 -14
package/src/agent-tools/tools/integrations/firebase.ts +0 -14
package/src/agent-tools/tools/integrations/flyio.ts +0 -14
package/src/agent-tools/tools/integrations/freshbooks.ts +0 -14
package/src/agent-tools/tools/integrations/freshdesk.ts +0 -14
package/src/agent-tools/tools/integrations/freshsales.ts +0 -14
package/src/agent-tools/tools/integrations/freshservice.ts +0 -14
package/src/agent-tools/tools/integrations/front.ts +0 -14
package/src/agent-tools/tools/integrations/github-actions.ts +0 -14
package/src/agent-tools/tools/integrations/github.ts +0 -14
package/src/agent-tools/tools/integrations/gitlab.ts +0 -14
package/src/agent-tools/tools/integrations/gong.ts +0 -14
package/src/agent-tools/tools/integrations/google-ads.ts +0 -14
package/src/agent-tools/tools/integrations/google-analytics.ts +0 -14
package/src/agent-tools/tools/integrations/google-cloud.ts +0 -14
package/src/agent-tools/tools/integrations/gotomeeting.ts +0 -14
package/src/agent-tools/tools/integrations/grafana.ts +0 -14
package/src/agent-tools/tools/integrations/greenhouse.ts +0 -14
package/src/agent-tools/tools/integrations/gusto.ts +0 -14
package/src/agent-tools/tools/integrations/hashicorp-vault.ts +0 -14
package/src/agent-tools/tools/integrations/heroku.ts +0 -14
package/src/agent-tools/tools/integrations/hibob.ts +0 -14
package/src/agent-tools/tools/integrations/hootsuite.ts +0 -14
package/src/agent-tools/tools/integrations/hubspot.ts +0 -14
package/src/agent-tools/tools/integrations/huggingface.ts +0 -14
package/src/agent-tools/tools/integrations/index.ts +0 -474
package/src/agent-tools/tools/integrations/intercom.ts +0 -14
package/src/agent-tools/tools/integrations/jira.ts +0 -14
package/src/agent-tools/tools/integrations/klaviyo.ts +0 -14
package/src/agent-tools/tools/integrations/kubernetes.ts +0 -14
package/src/agent-tools/tools/integrations/lattice.ts +0 -14
package/src/agent-tools/tools/integrations/launchdarkly.ts +0 -14
package/src/agent-tools/tools/integrations/lever.ts +0 -14
package/src/agent-tools/tools/integrations/linear.ts +0 -14
package/src/agent-tools/tools/integrations/linkedin.ts +0 -14
package/src/agent-tools/tools/integrations/livechat.ts +0 -14
package/src/agent-tools/tools/integrations/loom.ts +0 -14
package/src/agent-tools/tools/integrations/mailchimp.ts +0 -14
package/src/agent-tools/tools/integrations/mailgun.ts +0 -14
package/src/agent-tools/tools/integrations/miro.ts +0 -14
package/src/agent-tools/tools/integrations/mixpanel.ts +0 -14
package/src/agent-tools/tools/integrations/monday.ts +0 -14
package/src/agent-tools/tools/integrations/mongodb-atlas.ts +0 -14
package/src/agent-tools/tools/integrations/neon.ts +0 -14
package/src/agent-tools/tools/integrations/netlify.ts +0 -14
package/src/agent-tools/tools/integrations/netsuite.ts +0 -14
package/src/agent-tools/tools/integrations/newrelic.ts +0 -14
package/src/agent-tools/tools/integrations/notion.ts +0 -14
package/src/agent-tools/tools/integrations/okta.ts +0 -14
package/src/agent-tools/tools/integrations/openai.ts +0 -14
package/src/agent-tools/tools/integrations/opsgenie.ts +0 -14
package/src/agent-tools/tools/integrations/outreach.ts +0 -14
package/src/agent-tools/tools/integrations/paddle.ts +0 -14
package/src/agent-tools/tools/integrations/pagerduty.ts +0 -14
package/src/agent-tools/tools/integrations/pandadoc.ts +0 -14
package/src/agent-tools/tools/integrations/paypal.ts +0 -14
package/src/agent-tools/tools/integrations/personio.ts +0 -14
package/src/agent-tools/tools/integrations/pinecone.ts +0 -14
package/src/agent-tools/tools/integrations/pipedrive.ts +0 -14
package/src/agent-tools/tools/integrations/plaid.ts +0 -14
package/src/agent-tools/tools/integrations/postmark.ts +0 -14
package/src/agent-tools/tools/integrations/power-automate.ts +0 -14
package/src/agent-tools/tools/integrations/quickbooks.ts +0 -14
package/src/agent-tools/tools/integrations/recurly.ts +0 -14
package/src/agent-tools/tools/integrations/reddit.ts +0 -14
package/src/agent-tools/tools/integrations/render.ts +0 -14
package/src/agent-tools/tools/integrations/ringcentral.ts +0 -14
package/src/agent-tools/tools/integrations/rippling.ts +0 -14
package/src/agent-tools/tools/integrations/salesforce.ts +0 -14
package/src/agent-tools/tools/integrations/salesloft.ts +0 -14
package/src/agent-tools/tools/integrations/sanity.ts +0 -14
package/src/agent-tools/tools/integrations/sap.ts +0 -14
package/src/agent-tools/tools/integrations/segment.ts +0 -14
package/src/agent-tools/tools/integrations/sendgrid.ts +0 -14
package/src/agent-tools/tools/integrations/sentry.ts +0 -14
package/src/agent-tools/tools/integrations/servicenow.ts +0 -14
package/src/agent-tools/tools/integrations/shopify.ts +0 -14
package/src/agent-tools/tools/integrations/shortcut.ts +0 -14
package/src/agent-tools/tools/integrations/slack.ts +0 -14
package/src/agent-tools/tools/integrations/smartsheet.ts +0 -14
package/src/agent-tools/tools/integrations/snowflake.ts +0 -14
package/src/agent-tools/tools/integrations/snyk.ts +0 -14
package/src/agent-tools/tools/integrations/splunk.ts +0 -14
package/src/agent-tools/tools/integrations/square.ts +0 -14
package/src/agent-tools/tools/integrations/statuspage.ts +0 -14
package/src/agent-tools/tools/integrations/stripe.ts +0 -14
package/src/agent-tools/tools/integrations/supabase.ts +0 -14
package/src/agent-tools/tools/integrations/teamwork.ts +0 -14
package/src/agent-tools/tools/integrations/telegram.ts +0 -14
package/src/agent-tools/tools/integrations/terraform.ts +0 -14
package/src/agent-tools/tools/integrations/todoist.ts +0 -14
package/src/agent-tools/tools/integrations/trello.ts +0 -14
package/src/agent-tools/tools/integrations/twilio.ts +0 -14
package/src/agent-tools/tools/integrations/twitter.ts +0 -14
package/src/agent-tools/tools/integrations/vercel.ts +0 -14
package/src/agent-tools/tools/integrations/weaviate.ts +0 -14
package/src/agent-tools/tools/integrations/webex.ts +0 -14
package/src/agent-tools/tools/integrations/webflow.ts +0 -14
package/src/agent-tools/tools/integrations/whatsapp.ts +0 -14
package/src/agent-tools/tools/integrations/whereby.ts +0 -14
package/src/agent-tools/tools/integrations/woocommerce.ts +0 -14
package/src/agent-tools/tools/integrations/wordpress.ts +0 -14
package/src/agent-tools/tools/integrations/workday.ts +0 -14
package/src/agent-tools/tools/integrations/wrike.ts +0 -14
package/src/agent-tools/tools/integrations/xero.ts +0 -14
package/src/agent-tools/tools/integrations/youtube.ts +0 -14
package/src/agent-tools/tools/integrations/zendesk.ts +0 -14
package/src/agent-tools/tools/integrations/zoho-crm.ts +0 -14
package/src/agent-tools/tools/integrations/zoom.ts +0 -14
package/src/agent-tools/tools/integrations/zuora.ts +0 -14
package/src/agent-tools/tools/knowledge-search.ts +0 -318
package/src/agent-tools/tools/local/coding.ts +0 -626
package/src/agent-tools/tools/local/dependency-manager.ts +0 -647
package/src/agent-tools/tools/local/file-edit.ts +0 -31
package/src/agent-tools/tools/local/file-list.ts +0 -39
package/src/agent-tools/tools/local/file-ops.ts +0 -48
package/src/agent-tools/tools/local/file-read.ts +0 -39
package/src/agent-tools/tools/local/file-search.ts +0 -46
package/src/agent-tools/tools/local/file-write.ts +0 -28
package/src/agent-tools/tools/local/filesystem.ts +0 -5
package/src/agent-tools/tools/local/index.ts +0 -55
package/src/agent-tools/tools/local/resolve-path.ts +0 -18
package/src/agent-tools/tools/local/shell.ts +0 -277
package/src/agent-tools/tools/local/system-info.ts +0 -29
package/src/agent-tools/tools/management.ts +0 -425
package/src/agent-tools/tools/mcp-bridge.ts +0 -142
package/src/agent-tools/tools/mcp-server-tools.ts +0 -91
package/src/agent-tools/tools/meeting-lifecycle.ts +0 -438
package/src/agent-tools/tools/memory.ts +0 -509
package/src/agent-tools/tools/messaging/index.ts +0 -6
package/src/agent-tools/tools/messaging/telegram.ts +0 -167
package/src/agent-tools/tools/messaging/whatsapp.ts +0 -651
package/src/agent-tools/tools/microsoft/contacts.ts +0 -176
package/src/agent-tools/tools/microsoft/excel-vba.ts +0 -331
package/src/agent-tools/tools/microsoft/excel.ts +0 -261
package/src/agent-tools/tools/microsoft/graph-api.ts +0 -161
package/src/agent-tools/tools/microsoft/index.ts +0 -95
package/src/agent-tools/tools/microsoft/onedrive.ts +0 -429
package/src/agent-tools/tools/microsoft/onenote.ts +0 -186
package/src/agent-tools/tools/microsoft/outlook-calendar.ts +0 -286
package/src/agent-tools/tools/microsoft/outlook-mail.ts +0 -723
package/src/agent-tools/tools/microsoft/planner.ts +0 -200
package/src/agent-tools/tools/microsoft/powerbi.ts +0 -266
package/src/agent-tools/tools/microsoft/powerpoint.ts +0 -186
package/src/agent-tools/tools/microsoft/sharepoint.ts +0 -328
package/src/agent-tools/tools/microsoft/teams.ts +0 -463
package/src/agent-tools/tools/microsoft/todo.ts +0 -181
package/src/agent-tools/tools/oauth-token-provider.ts +0 -101
package/src/agent-tools/tools/read.ts +0 -160
package/src/agent-tools/tools/visual-memory/capture.ts +0 -217
package/src/agent-tools/tools/visual-memory/diff.ts +0 -283
package/src/agent-tools/tools/visual-memory/index.ts +0 -698
package/src/agent-tools/tools/visual-memory/phash.ts +0 -120
package/src/agent-tools/tools/visual-memory/similarity.ts +0 -354
package/src/agent-tools/tools/visual-memory/storage.ts +0 -534
package/src/agent-tools/tools/visual-memory/types.ts +0 -100
package/src/agent-tools/tools/web-fetch-utils.ts +0 -202
package/src/agent-tools/tools/web-fetch.ts +0 -464
package/src/agent-tools/tools/web-search.ts +0 -480
package/src/agent-tools/tools/web-shared.ts +0 -232
package/src/agent-tools/tools/write.ts +0 -68
package/src/agent-tools/types.ts +0 -214
package/src/agenticmail/index.ts +0 -34
package/src/agenticmail/manager.ts +0 -253
package/src/agenticmail/providers/google.ts +0 -391
package/src/agenticmail/providers/imap.ts +0 -454
package/src/agenticmail/providers/index.ts +0 -28
package/src/agenticmail/providers/microsoft.ts +0 -260
package/src/agenticmail/types.ts +0 -173
package/src/auth/routes.ts +0 -1589
package/src/browser/bridge-auth-registry.ts +0 -34
package/src/browser/bridge-server.ts +0 -93
package/src/browser/cdp.helpers.ts +0 -180
package/src/browser/cdp.ts +0 -466
package/src/browser/chrome.executables.ts +0 -625
package/src/browser/chrome.profile-decoration.ts +0 -198
package/src/browser/chrome.ts +0 -349
package/src/browser/client-actions-core.ts +0 -259
package/src/browser/client-actions-observe.ts +0 -184
package/src/browser/client-actions-state.ts +0 -284
package/src/browser/client-actions-types.ts +0 -16
package/src/browser/client-actions-url.ts +0 -11
package/src/browser/client-actions.ts +0 -4
package/src/browser/client-fetch.ts +0 -253
package/src/browser/client.ts +0 -337
package/src/browser/config.ts +0 -301
package/src/browser/constants.ts +0 -8
package/src/browser/control-auth.ts +0 -94
package/src/browser/control-service.ts +0 -81
package/src/browser/csrf.ts +0 -87
package/src/browser/enterprise-compat.ts +0 -562
package/src/browser/extension-relay.ts +0 -834
package/src/browser/http-auth.ts +0 -63
package/src/browser/navigation-guard.ts +0 -50
package/src/browser/paths.ts +0 -49
package/src/browser/playwright.d.ts +0 -12
package/src/browser/profiles-service.ts +0 -187
package/src/browser/profiles.ts +0 -114
package/src/browser/proxy-files.ts +0 -41
package/src/browser/pw-ai-module.ts +0 -52
package/src/browser/pw-ai-state.ts +0 -9
package/src/browser/pw-ai.ts +0 -65
package/src/browser/pw-role-snapshot.ts +0 -434
package/src/browser/pw-session.ts +0 -810
package/src/browser/pw-tools-core.activity.ts +0 -68
package/src/browser/pw-tools-core.downloads.ts +0 -281
package/src/browser/pw-tools-core.interactions.ts +0 -646
package/src/browser/pw-tools-core.responses.ts +0 -124
package/src/browser/pw-tools-core.shared.ts +0 -70
package/src/browser/pw-tools-core.snapshot.ts +0 -213
package/src/browser/pw-tools-core.state.ts +0 -209
package/src/browser/pw-tools-core.storage.ts +0 -128
package/src/browser/pw-tools-core.trace.ts +0 -37
package/src/browser/pw-tools-core.ts +0 -8
package/src/browser/resolved-config-refresh.ts +0 -59
package/src/browser/routes/agent.act.shared.ts +0 -52
package/src/browser/routes/agent.act.ts +0 -575
package/src/browser/routes/agent.debug.ts +0 -149
package/src/browser/routes/agent.shared.ts +0 -143
package/src/browser/routes/agent.snapshot.ts +0 -333
package/src/browser/routes/agent.storage.ts +0 -451
package/src/browser/routes/agent.ts +0 -13
package/src/browser/routes/basic.ts +0 -202
package/src/browser/routes/dispatcher.ts +0 -126
package/src/browser/routes/index.ts +0 -11
package/src/browser/routes/path-output.ts +0 -1
package/src/browser/routes/tabs.ts +0 -217
package/src/browser/routes/types.ts +0 -26
package/src/browser/routes/utils.ts +0 -73
package/src/browser/screenshot.ts +0 -54
package/src/browser/server-context.ts +0 -688
package/src/browser/server-context.types.ts +0 -65
package/src/browser/server-lifecycle.ts +0 -48
package/src/browser/server-middleware.ts +0 -37
package/src/browser/server.ts +0 -110
package/src/browser/target-id.ts +0 -30
package/src/browser/trash.ts +0 -21
package/src/cli-agent.ts +0 -2452
package/src/cli-reset-password.ts +0 -138
package/src/cli-serve.ts +0 -314
package/src/cli.ts +0 -103
package/src/dashboard/app.js +0 -579
package/src/dashboard/assets/brand-logos.js +0 -350
package/src/dashboard/assets/icons/emoji-icons.js +0 -893
package/src/dashboard/assets/logo.png +0 -0
package/src/dashboard/assets/provider-logos.js +0 -139
package/src/dashboard/components/error-boundary.js +0 -21
package/src/dashboard/components/help-button.js +0 -65
package/src/dashboard/components/icons.js +0 -64
package/src/dashboard/components/knowledge-link.js +0 -79
package/src/dashboard/components/modal.js +0 -125
package/src/dashboard/components/org-switcher.js +0 -156
package/src/dashboard/components/persona-fields.js +0 -460
package/src/dashboard/components/settings-help.js +0 -193
package/src/dashboard/components/tag-input.js +0 -96
package/src/dashboard/components/timezones.js +0 -352
package/src/dashboard/components/transport-encryption.js +0 -288
package/src/dashboard/components/utils.js +0 -205
package/src/dashboard/data/countries.js +0 -255
package/src/dashboard/docs/activity.html +0 -253
package/src/dashboard/docs/agent-activity.html +0 -199
package/src/dashboard/docs/agent-autonomy.html +0 -161
package/src/dashboard/docs/agent-budget.html +0 -190
package/src/dashboard/docs/agent-channels.html +0 -189
package/src/dashboard/docs/agent-communication.html +0 -171
package/src/dashboard/docs/agent-configuration.html +0 -194
package/src/dashboard/docs/agent-deployment.html +0 -323
package/src/dashboard/docs/agent-email.html +0 -184
package/src/dashboard/docs/agent-guardrails.html +0 -206
package/src/dashboard/docs/agent-manager.html +0 -226
package/src/dashboard/docs/agent-memory.html +0 -215
package/src/dashboard/docs/agent-overview.html +0 -226
package/src/dashboard/docs/agent-permissions.html +0 -305
package/src/dashboard/docs/agent-personal.html +0 -155
package/src/dashboard/docs/agent-security.html +0 -188
package/src/dashboard/docs/agent-skills.html +0 -224
package/src/dashboard/docs/agent-tool-security.html +0 -205
package/src/dashboard/docs/agent-tools.html +0 -238
package/src/dashboard/docs/agent-whatsapp.html +0 -210
package/src/dashboard/docs/agent-workforce.html +0 -199
package/src/dashboard/docs/agents.html +0 -258
package/src/dashboard/docs/approvals.html +0 -200
package/src/dashboard/docs/audit.html +0 -206
package/src/dashboard/docs/browser-providers.html +0 -313
package/src/dashboard/docs/cluster.html +0 -285
package/src/dashboard/docs/community-skills.html +0 -253
package/src/dashboard/docs/compliance.html +0 -221
package/src/dashboard/docs/dashboard.html +0 -84
package/src/dashboard/docs/database-access.html +0 -322
package/src/dashboard/docs/dlp.html +0 -268
package/src/dashboard/docs/docs-style.css +0 -26
package/src/dashboard/docs/domain-status.html +0 -294
package/src/dashboard/docs/guardrails.html +0 -265
package/src/dashboard/docs/journal.html +0 -197
package/src/dashboard/docs/knowledge-contributions.html +0 -286
package/src/dashboard/docs/knowledge.html +0 -268
package/src/dashboard/docs/memory-transfer.html +0 -311
package/src/dashboard/docs/messages.html +0 -217
package/src/dashboard/docs/multi-tenant.html +0 -311
package/src/dashboard/docs/org-chart.html +0 -239
package/src/dashboard/docs/organizations.html +0 -182
package/src/dashboard/docs/roles.html +0 -195
package/src/dashboard/docs/settings-network.html +0 -321
package/src/dashboard/docs/settings-security.html +0 -347
package/src/dashboard/docs/settings-tool-security.html +0 -176
package/src/dashboard/docs/settings.html +0 -280
package/src/dashboard/docs/skill-connections.html +0 -270
package/src/dashboard/docs/skills.html +0 -206
package/src/dashboard/docs/task-pipeline.html +0 -261
package/src/dashboard/docs/transport-encryption.html +0 -359
package/src/dashboard/docs/users.html +0 -225
package/src/dashboard/docs/vault.html +0 -260
package/src/dashboard/docs/workforce.html +0 -245
package/src/dashboard/index.html +0 -444
package/src/dashboard/pages/activity.js +0 -379
package/src/dashboard/pages/agent-detail/activity.js +0 -277
package/src/dashboard/pages/agent-detail/autonomy.js +0 -244
package/src/dashboard/pages/agent-detail/budget.js +0 -269
package/src/dashboard/pages/agent-detail/channels.js +0 -494
package/src/dashboard/pages/agent-detail/communication.js +0 -296
package/src/dashboard/pages/agent-detail/configuration.js +0 -882
package/src/dashboard/pages/agent-detail/deployment.js +0 -958
package/src/dashboard/pages/agent-detail/email.js +0 -674
package/src/dashboard/pages/agent-detail/guardrails.js +0 -521
package/src/dashboard/pages/agent-detail/index.js +0 -261
package/src/dashboard/pages/agent-detail/manager.js +0 -357
package/src/dashboard/pages/agent-detail/meeting-browser.js +0 -933
package/src/dashboard/pages/agent-detail/memory.js +0 -368
package/src/dashboard/pages/agent-detail/overview.js +0 -844
package/src/dashboard/pages/agent-detail/permissions.js +0 -1163
package/src/dashboard/pages/agent-detail/personal-details.js +0 -404
package/src/dashboard/pages/agent-detail/security.js +0 -409
package/src/dashboard/pages/agent-detail/shared.js +0 -85
package/src/dashboard/pages/agent-detail/skills-section.js +0 -183
package/src/dashboard/pages/agent-detail/tool-security.js +0 -380
package/src/dashboard/pages/agent-detail/tools.js +0 -322
package/src/dashboard/pages/agent-detail/whatsapp.js +0 -824
package/src/dashboard/pages/agent-detail/workforce.js +0 -683
package/src/dashboard/pages/agents.js +0 -1242
package/src/dashboard/pages/approvals.js +0 -100
package/src/dashboard/pages/audit.js +0 -198
package/src/dashboard/pages/cluster.js +0 -512
package/src/dashboard/pages/community-skills.js +0 -1219
package/src/dashboard/pages/compliance.js +0 -475
package/src/dashboard/pages/dashboard.js +0 -180
package/src/dashboard/pages/database-access.js +0 -812
package/src/dashboard/pages/dlp.js +0 -293
package/src/dashboard/pages/domain-status.js +0 -951
package/src/dashboard/pages/guardrails.js +0 -1035
package/src/dashboard/pages/journal.js +0 -172
package/src/dashboard/pages/knowledge-contributions.js +0 -1682
package/src/dashboard/pages/knowledge-import.js +0 -455
package/src/dashboard/pages/knowledge.js +0 -582
package/src/dashboard/pages/login.js +0 -1056
package/src/dashboard/pages/memory-transfer.js +0 -631
package/src/dashboard/pages/messages.js +0 -303
package/src/dashboard/pages/org-chart.js +0 -349
package/src/dashboard/pages/organizations.js +0 -1081
package/src/dashboard/pages/roles.js +0 -780
package/src/dashboard/pages/settings.js +0 -3790
package/src/dashboard/pages/skill-connections.js +0 -982
package/src/dashboard/pages/skills.js +0 -879
package/src/dashboard/pages/task-pipeline.js +0 -684
package/src/dashboard/pages/users.js +0 -867
package/src/dashboard/pages/vault.js +0 -791
package/src/dashboard/pages/workforce.js +0 -851
package/src/dashboard/vendor/react-dom.development.js +0 -29924
package/src/dashboard/vendor/react-dom.production.min.js +0 -267
package/src/dashboard/vendor/react.development.js +0 -3343
package/src/dashboard/vendor/react.production.min.js +0 -31
package/src/database-access/agent-tools.ts +0 -193
package/src/database-access/connection-manager.ts +0 -1341
package/src/database-access/index.ts +0 -21
package/src/database-access/query-sanitizer.ts +0 -220
package/src/database-access/routes.ts +0 -226
package/src/database-access/types.ts +0 -226
package/src/db/adapter.ts +0 -510
package/src/db/dynamodb.ts +0 -454
package/src/db/factory.ts +0 -129
package/src/db/mongodb.ts +0 -360
package/src/db/mysql.ts +0 -531
package/src/db/postgres.ts +0 -863
package/src/db/proxy.ts +0 -39
package/src/db/resolve-driver.ts +0 -29
package/src/db/sql-schema.ts +0 -124
package/src/db/sqlite.ts +0 -493
package/src/db/turso.ts +0 -470
package/src/deploy/fly.ts +0 -368
package/src/deploy/managed.ts +0 -235
package/src/domain-lock/cli-recover.ts +0 -591
package/src/domain-lock/cli-verify.ts +0 -190
package/src/domain-lock/index.ts +0 -220
package/src/engine/activity-routes.ts +0 -154
package/src/engine/activity.ts +0 -568
package/src/engine/agent-autonomy.ts +0 -974
package/src/engine/agent-config.ts +0 -646
package/src/engine/agent-heartbeat.ts +0 -720
package/src/engine/agent-hierarchy.ts +0 -1064
package/src/engine/agent-memory.ts +0 -806
package/src/engine/agent-notify.ts +0 -50
package/src/engine/agent-routes.ts +0 -2583
package/src/engine/agent-status.ts +0 -311
package/src/engine/ambient-memory.ts +0 -401
package/src/engine/approvals.ts +0 -615
package/src/engine/assets/thinking-hum.mp3 +0 -0
package/src/engine/catalog-routes.ts +0 -232
package/src/engine/chat-poller.ts +0 -913
package/src/engine/chat-webhook-routes.ts +0 -304
package/src/engine/cli-build-skill.ts +0 -285
package/src/engine/cli-submit-skill.ts +0 -200
package/src/engine/cli-validate.ts +0 -188
package/src/engine/cluster.ts +0 -278
package/src/engine/communication-routes.ts +0 -139
package/src/engine/communication.ts +0 -765
package/src/engine/community-registry.ts +0 -1529
package/src/engine/community-routes.ts +0 -260
package/src/engine/compliance-routes.ts +0 -133
package/src/engine/compliance.ts +0 -1679
package/src/engine/config-bus.ts +0 -103
package/src/engine/db-adapter.ts +0 -1156
package/src/engine/db-schema.ts +0 -1945
package/src/engine/deploy-schema-routes.ts +0 -176
package/src/engine/deployer.ts +0 -957
package/src/engine/dlp-routes.ts +0 -101
package/src/engine/dlp.ts +0 -410
package/src/engine/email-poller.ts +0 -855
package/src/engine/emoji.ts +0 -106
package/src/engine/guardrail-routes.ts +0 -125
package/src/engine/guardrails.ts +0 -465
package/src/engine/index.ts +0 -255
package/src/engine/journal-routes.ts +0 -56
package/src/engine/journal.ts +0 -249
package/src/engine/knowledge-contribution-routes.ts +0 -633
package/src/engine/knowledge-contribution.ts +0 -1386
package/src/engine/knowledge-import/chunker.ts +0 -241
package/src/engine/knowledge-import/import-manager.ts +0 -416
package/src/engine/knowledge-import/index.ts +0 -27
package/src/engine/knowledge-import/processors/clean.ts +0 -149
package/src/engine/knowledge-import/processors/extract-gdrive.ts +0 -102
package/src/engine/knowledge-import/processors/extract-github.ts +0 -74
package/src/engine/knowledge-import/processors/extract-sharepoint.ts +0 -69
package/src/engine/knowledge-import/processors/extract-web.ts +0 -275
package/src/engine/knowledge-import/processors/index.ts +0 -18
package/src/engine/knowledge-import/processors/pipeline.ts +0 -171
package/src/engine/knowledge-import/processors/types.ts +0 -78
package/src/engine/knowledge-import/processors/validate.ts +0 -150
package/src/engine/knowledge-import/provider-file-upload.ts +0 -95
package/src/engine/knowledge-import/provider-github.ts +0 -144
package/src/engine/knowledge-import/provider-google-sites.ts +0 -323
package/src/engine/knowledge-import/provider-sharepoint.ts +0 -276
package/src/engine/knowledge-import/provider-url.ts +0 -218
package/src/engine/knowledge-import/routes.ts +0 -94
package/src/engine/knowledge-import/types.ts +0 -92
package/src/engine/knowledge-routes.ts +0 -231
package/src/engine/knowledge.ts +0 -587
package/src/engine/lifecycle.ts +0 -1420
package/src/engine/mcp-process-manager.ts +0 -573
package/src/engine/meeting-monitor.ts +0 -483
package/src/engine/meeting-voice-intelligence.ts +0 -340
package/src/engine/memory-routes.ts +0 -142
package/src/engine/memory-transfer-routes.ts +0 -339
package/src/engine/messaging-history.ts +0 -177
package/src/engine/messaging-poller.ts +0 -786
package/src/engine/model-fallback.ts +0 -141
package/src/engine/oauth-connect-routes.ts +0 -603
package/src/engine/oauth-connect.ts +0 -304
package/src/engine/onboarding-routes.ts +0 -148
package/src/engine/onboarding.ts +0 -574
package/src/engine/org-approval-routes.ts +0 -146
package/src/engine/org-integration-routes.ts +0 -399
package/src/engine/org-integrations.ts +0 -608
package/src/engine/org-policies.ts +0 -502
package/src/engine/policy-import-routes.ts +0 -125
package/src/engine/policy-import.ts +0 -1186
package/src/engine/policy-routes.ts +0 -163
package/src/engine/routes.ts +0 -1236
package/src/engine/screen-unlock.ts +0 -136
package/src/engine/session-router.ts +0 -212
package/src/engine/skill-updater-routes.ts +0 -132
package/src/engine/skill-updater.ts +0 -480
package/src/engine/skill-validator.ts +0 -331
package/src/engine/skills/agent-management.ts +0 -119
package/src/engine/skills/agent-memory.ts +0 -19
package/src/engine/skills/agenticmail.ts +0 -116
package/src/engine/skills/core-tools.ts +0 -25
package/src/engine/skills/database-access.ts +0 -78
package/src/engine/skills/enterprise-code-sandbox.ts +0 -113
package/src/engine/skills/enterprise-database.ts +0 -123
package/src/engine/skills/enterprise-diff.ts +0 -95
package/src/engine/skills/enterprise-documents.ts +0 -162
package/src/engine/skills/enterprise-http.ts +0 -99
package/src/engine/skills/enterprise-security-scan.ts +0 -125
package/src/engine/skills/enterprise-spreadsheet.ts +0 -171
package/src/engine/skills/gws-admin.ts +0 -18
package/src/engine/skills/gws-calendar.ts +0 -21
package/src/engine/skills/gws-chat.ts +0 -29
package/src/engine/skills/gws-contacts.ts +0 -20
package/src/engine/skills/gws-docs.ts +0 -18
package/src/engine/skills/gws-drive.ts +0 -23
package/src/engine/skills/gws-forms.ts +0 -23
package/src/engine/skills/gws-gmail.ts +0 -30
package/src/engine/skills/gws-groups.ts +0 -17
package/src/engine/skills/gws-keep.ts +0 -17
package/src/engine/skills/gws-maps.ts +0 -25
package/src/engine/skills/gws-meet.ts +0 -23
package/src/engine/skills/gws-sheets.ts +0 -22
package/src/engine/skills/gws-sites.ts +0 -16
package/src/engine/skills/gws-slides.ts +0 -27
package/src/engine/skills/gws-tasks.ts +0 -22
package/src/engine/skills/gws-vault.ts +0 -17
package/src/engine/skills/index.ts +0 -159
package/src/engine/skills/knowledge-search.ts +0 -18
package/src/engine/skills/local-system.ts +0 -61
package/src/engine/skills/m365-admin.ts +0 -18
package/src/engine/skills/m365-bookings.ts +0 -17
package/src/engine/skills/m365-copilot.ts +0 -17
package/src/engine/skills/m365-excel.ts +0 -60
package/src/engine/skills/m365-forms.ts +0 -17
package/src/engine/skills/m365-onedrive.ts +0 -60
package/src/engine/skills/m365-onenote.ts +0 -17
package/src/engine/skills/m365-outlook.ts +0 -27
package/src/engine/skills/m365-planner.ts +0 -18
package/src/engine/skills/m365-power-automate.ts +0 -18
package/src/engine/skills/m365-power-bi.ts +0 -19
package/src/engine/skills/m365-powerpoint.ts +0 -33
package/src/engine/skills/m365-sharepoint.ts +0 -20
package/src/engine/skills/m365-teams.ts +0 -21
package/src/engine/skills/m365-todo.ts +0 -17
package/src/engine/skills/m365-whiteboard.ts +0 -16
package/src/engine/skills/m365-word.ts +0 -42
package/src/engine/skills/mcp-bridge.ts +0 -45
package/src/engine/skills/meeting-lifecycle.ts +0 -20
package/src/engine/skills/messaging.ts +0 -46
package/src/engine/skills/visual-memory.ts +0 -25
package/src/engine/skills.ts +0 -688
package/src/engine/soul-library.ts +0 -142
package/src/engine/soul-templates.json +0 -1525
package/src/engine/storage-manager.ts +0 -252
package/src/engine/storage-routes.ts +0 -113
package/src/engine/storage.ts +0 -528
package/src/engine/task-poller.ts +0 -394
package/src/engine/task-queue-after-spawn.ts +0 -66
package/src/engine/task-queue-before-spawn.ts +0 -113
package/src/engine/task-queue-routes.ts +0 -161
package/src/engine/task-queue.ts +0 -664
package/src/engine/tenant.ts +0 -409
package/src/engine/tool-catalog.ts +0 -354
package/src/engine/vault-routes.ts +0 -134
package/src/engine/vault.ts +0 -601
package/src/engine/workforce-routes.ts +0 -331
package/src/engine/workforce.ts +0 -1161
package/src/index.ts +0 -77
package/src/lib/cidr.ts +0 -122
package/src/lib/config-store.ts +0 -86
package/src/lib/resilience.ts +0 -326
package/src/lib/text-search.ts +0 -358
package/src/mcp/adapters/activecampaign.adapter.ts +0 -391
package/src/mcp/adapters/adobe-sign.adapter.ts +0 -469
package/src/mcp/adapters/adp.adapter.ts +0 -358
package/src/mcp/adapters/airtable.adapter.ts +0 -273
package/src/mcp/adapters/apollo.adapter.ts +0 -420
package/src/mcp/adapters/asana.adapter.ts +0 -315
package/src/mcp/adapters/auth0.adapter.ts +0 -386
package/src/mcp/adapters/aws.adapter.ts +0 -345
package/src/mcp/adapters/azure-devops.adapter.ts +0 -389
package/src/mcp/adapters/bamboohr.adapter.ts +0 -376
package/src/mcp/adapters/basecamp.adapter.ts +0 -366
package/src/mcp/adapters/bigcommerce.adapter.ts +0 -429
package/src/mcp/adapters/bitbucket.adapter.ts +0 -260
package/src/mcp/adapters/box.adapter.ts +0 -350
package/src/mcp/adapters/brex.adapter.ts +0 -367
package/src/mcp/adapters/buffer.adapter.ts +0 -303
package/src/mcp/adapters/calendly.adapter.ts +0 -262
package/src/mcp/adapters/canva.adapter.ts +0 -256
package/src/mcp/adapters/chargebee.adapter.ts +0 -448
package/src/mcp/adapters/circleci.adapter.ts +0 -216
package/src/mcp/adapters/clickup.adapter.ts +0 -335
package/src/mcp/adapters/close.adapter.ts +0 -390
package/src/mcp/adapters/cloudflare.adapter.ts +0 -378
package/src/mcp/adapters/confluence.adapter.ts +0 -301
package/src/mcp/adapters/contentful.adapter.ts +0 -355
package/src/mcp/adapters/copper.adapter.ts +0 -468
package/src/mcp/adapters/crisp.adapter.ts +0 -415
package/src/mcp/adapters/crowdstrike.adapter.ts +0 -413
package/src/mcp/adapters/datadog.adapter.ts +0 -373
package/src/mcp/adapters/digitalocean.adapter.ts +0 -336
package/src/mcp/adapters/discord.adapter.ts +0 -248
package/src/mcp/adapters/docker.adapter.ts +0 -238
package/src/mcp/adapters/docusign.adapter.ts +0 -431
package/src/mcp/adapters/drift.adapter.ts +0 -386
package/src/mcp/adapters/dropbox.adapter.ts +0 -315
package/src/mcp/adapters/figma.adapter.ts +0 -302
package/src/mcp/adapters/firebase.adapter.ts +0 -446
package/src/mcp/adapters/flyio.adapter.ts +0 -302
package/src/mcp/adapters/freshbooks.adapter.ts +0 -474
package/src/mcp/adapters/freshdesk.adapter.ts +0 -441
package/src/mcp/adapters/freshsales.adapter.ts +0 -457
package/src/mcp/adapters/freshservice.adapter.ts +0 -481
package/src/mcp/adapters/front.adapter.ts +0 -357
package/src/mcp/adapters/github-actions.adapter.ts +0 -329
package/src/mcp/adapters/github.adapter.ts +0 -387
package/src/mcp/adapters/gitlab.adapter.ts +0 -368
package/src/mcp/adapters/gong.adapter.ts +0 -386
package/src/mcp/adapters/google-ads.adapter.ts +0 -363
package/src/mcp/adapters/google-analytics.adapter.ts +0 -316
package/src/mcp/adapters/google-cloud.adapter.ts +0 -312
package/src/mcp/adapters/gotomeeting.adapter.ts +0 -255
package/src/mcp/adapters/grafana.adapter.ts +0 -361
package/src/mcp/adapters/greenhouse.adapter.ts +0 -354
package/src/mcp/adapters/gusto.adapter.ts +0 -329
package/src/mcp/adapters/hashicorp-vault.adapter.ts +0 -355
package/src/mcp/adapters/heroku.adapter.ts +0 -291
package/src/mcp/adapters/hibob.adapter.ts +0 -334
package/src/mcp/adapters/hootsuite.adapter.ts +0 -322
package/src/mcp/adapters/hubspot.adapter.ts +0 -400
package/src/mcp/adapters/huggingface.adapter.ts +0 -349
package/src/mcp/adapters/index.ts +0 -524
package/src/mcp/adapters/intercom.adapter.ts +0 -269
package/src/mcp/adapters/jira.adapter.ts +0 -482
package/src/mcp/adapters/klaviyo.adapter.ts +0 -353
package/src/mcp/adapters/kubernetes.adapter.ts +0 -431
package/src/mcp/adapters/lattice.adapter.ts +0 -339
package/src/mcp/adapters/launchdarkly.adapter.ts +0 -368
package/src/mcp/adapters/lever.adapter.ts +0 -347
package/src/mcp/adapters/linear.adapter.ts +0 -300
package/src/mcp/adapters/linkedin.adapter.ts +0 -331
package/src/mcp/adapters/livechat.adapter.ts +0 -259
package/src/mcp/adapters/loom.adapter.ts +0 -230
package/src/mcp/adapters/mailchimp.adapter.ts +0 -394
package/src/mcp/adapters/mailgun.adapter.ts +0 -425
package/src/mcp/adapters/miro.adapter.ts +0 -274
package/src/mcp/adapters/mixpanel.adapter.ts +0 -324
package/src/mcp/adapters/monday.adapter.ts +0 -308
package/src/mcp/adapters/mongodb-atlas.adapter.ts +0 -345
package/src/mcp/adapters/neon.adapter.ts +0 -312
package/src/mcp/adapters/netlify.adapter.ts +0 -324
package/src/mcp/adapters/netsuite.adapter.ts +0 -411
package/src/mcp/adapters/newrelic.adapter.ts +0 -339
package/src/mcp/adapters/notion.adapter.ts +0 -338
package/src/mcp/adapters/okta.adapter.ts +0 -394
package/src/mcp/adapters/openai.adapter.ts +0 -315
package/src/mcp/adapters/opsgenie.adapter.ts +0 -375
package/src/mcp/adapters/outreach.adapter.ts +0 -372
package/src/mcp/adapters/paddle.adapter.ts +0 -467
package/src/mcp/adapters/pagerduty.adapter.ts +0 -412
package/src/mcp/adapters/pandadoc.adapter.ts +0 -389
package/src/mcp/adapters/paypal.adapter.ts +0 -465
package/src/mcp/adapters/personio.adapter.ts +0 -401
package/src/mcp/adapters/pinecone.adapter.ts +0 -340
package/src/mcp/adapters/pipedrive.adapter.ts +0 -324
package/src/mcp/adapters/plaid.adapter.ts +0 -444
package/src/mcp/adapters/postmark.adapter.ts +0 -387
package/src/mcp/adapters/power-automate.adapter.ts +0 -388
package/src/mcp/adapters/quickbooks.adapter.ts +0 -431
package/src/mcp/adapters/recurly.adapter.ts +0 -433
package/src/mcp/adapters/reddit.adapter.ts +0 -371
package/src/mcp/adapters/render.adapter.ts +0 -332
package/src/mcp/adapters/ringcentral.adapter.ts +0 -281
package/src/mcp/adapters/rippling.adapter.ts +0 -287
package/src/mcp/adapters/salesforce.adapter.ts +0 -321
package/src/mcp/adapters/salesloft.adapter.ts +0 -413
package/src/mcp/adapters/sanity.adapter.ts +0 -363
package/src/mcp/adapters/sap.adapter.ts +0 -483
package/src/mcp/adapters/segment.adapter.ts +0 -260
package/src/mcp/adapters/sendgrid.adapter.ts +0 -265
package/src/mcp/adapters/sentry.adapter.ts +0 -331
package/src/mcp/adapters/servicenow.adapter.ts +0 -468
package/src/mcp/adapters/shopify.adapter.ts +0 -451
package/src/mcp/adapters/shortcut.adapter.ts +0 -290
package/src/mcp/adapters/slack.adapter.ts +0 -380
package/src/mcp/adapters/smartsheet.adapter.ts +0 -326
package/src/mcp/adapters/snowflake.adapter.ts +0 -347
package/src/mcp/adapters/snyk.adapter.ts +0 -394
package/src/mcp/adapters/splunk.adapter.ts +0 -403
package/src/mcp/adapters/square.adapter.ts +0 -467
package/src/mcp/adapters/statuspage.adapter.ts +0 -401
package/src/mcp/adapters/stripe.adapter.ts +0 -380
package/src/mcp/adapters/supabase.adapter.ts +0 -334
package/src/mcp/adapters/teamwork.adapter.ts +0 -404
package/src/mcp/adapters/telegram.adapter.ts +0 -299
package/src/mcp/adapters/terraform.adapter.ts +0 -300
package/src/mcp/adapters/todoist.adapter.ts +0 -239
package/src/mcp/adapters/trello.adapter.ts +0 -316
package/src/mcp/adapters/twilio.adapter.ts +0 -233
package/src/mcp/adapters/twitter.adapter.ts +0 -348
package/src/mcp/adapters/vercel.adapter.ts +0 -219
package/src/mcp/adapters/weaviate.adapter.ts +0 -371
package/src/mcp/adapters/webex.adapter.ts +0 -237
package/src/mcp/adapters/webflow.adapter.ts +0 -287
package/src/mcp/adapters/whatsapp.adapter.ts +0 -273
package/src/mcp/adapters/whereby.adapter.ts +0 -240
package/src/mcp/adapters/woocommerce.adapter.ts +0 -454
package/src/mcp/adapters/wordpress.adapter.ts +0 -455
package/src/mcp/adapters/workday.adapter.ts +0 -354
package/src/mcp/adapters/wrike.adapter.ts +0 -349
package/src/mcp/adapters/xero.adapter.ts +0 -472
package/src/mcp/adapters/youtube.adapter.ts +0 -401
package/src/mcp/adapters/zendesk.adapter.ts +0 -399
package/src/mcp/adapters/zoho-crm.adapter.ts +0 -410
package/src/mcp/adapters/zoom.adapter.ts +0 -241
package/src/mcp/adapters/zuora.adapter.ts +0 -476
package/src/mcp/framework/api-executor.ts +0 -192
package/src/mcp/framework/aws-sigv4.ts +0 -216
package/src/mcp/framework/credential-resolver.ts +0 -128
package/src/mcp/framework/oauth-token-manager.ts +0 -22
package/src/mcp/framework/skill-mcp-framework.ts +0 -226
package/src/mcp/framework/types.ts +0 -130
package/src/mcp/index.ts +0 -124
package/src/mcp/integration-catalog.ts +0 -178
package/src/middleware/dns-rebinding.ts +0 -44
package/src/middleware/egress-filter.ts +0 -104
package/src/middleware/firewall.ts +0 -192
package/src/middleware/geo-ip.ts +0 -156
package/src/middleware/index.ts +0 -390
package/src/middleware/network-config.ts +0 -90
package/src/middleware/proxy-config.ts +0 -71
package/src/middleware/request-limits.ts +0 -59
package/src/middleware/transport-encryption.ts +0 -398
package/src/registry/cli.ts +0 -63
package/src/registry/server.ts +0 -504
package/src/runtime/agent-loop.ts +0 -779
package/src/runtime/compaction.ts +0 -638
package/src/runtime/email-channel.ts +0 -120
package/src/runtime/environment.ts +0 -300
package/src/runtime/followup.ts +0 -211
package/src/runtime/gateway.ts +0 -260
package/src/runtime/hooks.ts +0 -564
package/src/runtime/index.ts +0 -1110
package/src/runtime/llm-client.ts +0 -1056
package/src/runtime/model-router.ts +0 -97
package/src/runtime/providers.ts +0 -228
package/src/runtime/session-manager.ts +0 -345
package/src/runtime/subagent.ts +0 -153
package/src/runtime/tool-executor.ts +0 -208
package/src/runtime/types.ts +0 -255
package/src/security/brute-force.ts +0 -423
package/src/security/config.ts +0 -159
package/src/security/csp.ts +0 -407
package/src/security/external-content.ts +0 -299
package/src/security/index.ts +0 -557
package/src/security/input-sanitizer.ts +0 -452
package/src/security/output-filter.ts +0 -575
package/src/security/port-scanner.ts +0 -342
package/src/security/prompt-guard.ts +0 -387
package/src/security/sql-guard.ts +0 -338
package/src/security/threat-logger.ts +0 -484
package/src/server.ts +0 -828
package/src/setup/company.ts +0 -183
package/src/setup/database.ts +0 -153
package/src/setup/deployment.ts +0 -561
package/src/setup/domain.ts +0 -112
package/src/setup/index.ts +0 -171
package/src/setup/provision.ts +0 -532
package/src/setup/registration.ts +0 -302
package/src/system-prompts/catchup.ts +0 -48
package/src/system-prompts/google/calendar.ts +0 -37
package/src/system-prompts/google/chat.ts +0 -92
package/src/system-prompts/google/contacts.ts +0 -25
package/src/system-prompts/google/docs.ts +0 -29
package/src/system-prompts/google/drive.ts +0 -34
package/src/system-prompts/google/forms.ts +0 -25
package/src/system-prompts/google/gmail.ts +0 -50
package/src/system-prompts/google/index.ts +0 -23
package/src/system-prompts/google/maps.ts +0 -20
package/src/system-prompts/google/meet.ts +0 -130
package/src/system-prompts/google/sheets.ts +0 -32
package/src/system-prompts/google/slides.ts +0 -26
package/src/system-prompts/google/tasks.ts +0 -27
package/src/system-prompts/index.ts +0 -88
package/src/system-prompts/microsoft/contacts.ts +0 -34
package/src/system-prompts/microsoft/excel.ts +0 -52
package/src/system-prompts/microsoft/index.ts +0 -31
package/src/system-prompts/microsoft/onedrive.ts +0 -41
package/src/system-prompts/microsoft/onenote.ts +0 -36
package/src/system-prompts/microsoft/outlook-calendar.ts +0 -37
package/src/system-prompts/microsoft/outlook-mail.ts +0 -46
package/src/system-prompts/microsoft/planner.ts +0 -37
package/src/system-prompts/microsoft/powerbi.ts +0 -38
package/src/system-prompts/microsoft/powerpoint.ts +0 -35
package/src/system-prompts/microsoft/sharepoint.ts +0 -44
package/src/system-prompts/microsoft/teams.ts +0 -49
package/src/system-prompts/microsoft/todo.ts +0 -37
package/src/system-prompts/shared-blocks.ts +0 -87
package/src/system-prompts/task.ts +0 -21
package/src/system-prompts/triage.ts +0 -34
package/src/types/hono-env.ts +0 -18
package/src/types/optional-deps.d.ts +0 -10
/package/{src → dist}/dashboard/HELP-TOOLTIPS-GUIDE.md +0 -0

package/src/server.ts DELETED Viewed

@@ -1,828 +0,0 @@
-/**
- * AgenticMail Enterprise Server
- *
- * Hono-based API server with full middleware stack.
- * Production-ready: rate limiting, audit logging, RBAC,
- * health checks, graceful shutdown.
- */
-import { Hono } from 'hono';
-import type { AppEnv } from './types/hono-env.js';
-import { cors } from 'hono/cors';
-import { serve } from '@hono/node-server';
-import { readFileSync, existsSync } from 'fs';
-import { homedir } from 'os';
-import { fileURLToPath } from 'url';
-// ─── Production Log Level Filter ─────────────────────────
-const _LOG_LEVEL = (process.env.LOG_LEVEL || 'info').toLowerCase();
-const _LOG_LEVELS: Record<string, number> = { debug: 0, info: 1, warn: 2, error: 3 };
-const _LOG_THRESHOLD = _LOG_LEVELS[_LOG_LEVEL] ?? 1;
-if (_LOG_THRESHOLD > 1) {
-  const _origLog = console.log.bind(console);
-  console.log = function(...args: any[]) {
-    const first = typeof args[0] === 'string' ? args[0] : '';
-    if (first.includes('[error]') || first.includes('[fatal]') || first.includes('ERROR')) _origLog(...args);
-  };
-}
-if (_LOG_THRESHOLD > 2) { console.warn = function() {}; }
-import { dirname, join } from 'path';
-import { createRequire } from 'module';
-// Resolve version at module load time
-let ENTERPRISE_VERSION = 'unknown';
-try {
-  const _require = createRequire(import.meta.url);
-  ENTERPRISE_VERSION = _require('../package.json').version;
-} catch {
-  try { ENTERPRISE_VERSION = JSON.parse(readFileSync(join(process.cwd(), 'node_modules', '@agenticmail', 'enterprise', 'package.json'), 'utf-8')).version; } catch { /* noop */ }
-}
-import type { DatabaseAdapter } from './db/adapter.js';
-import { createDbProxy, type DbProxy } from './db/proxy.js';
-import { createAdminRoutes } from './admin/routes.js';
-import { createAuthRoutes } from './auth/routes.js';
-import {
-  requestIdMiddleware,
-  requestLogger,
-  rateLimiter,
-  securityHeaders,
-  requireHttps,
-  errorHandler,
-  auditLogger,
-  requireRole,
-} from './middleware/index.js';
-import { ipAccessControl } from './middleware/firewall.js';
-import { setNetworkDb, invalidateNetworkConfig } from './middleware/network-config.js';
-import { initProxyConfig } from './middleware/proxy-config.js';
-import { dnsRebindingProtection } from './middleware/dns-rebinding.js';
-import { requestBodyLimit } from './middleware/request-limits.js';
-import { geoIpRestriction } from './middleware/geo-ip.js';
-import { HealthMonitor, CircuitBreaker } from './lib/resilience.js';
-export interface ServerConfig {
-  port: number;
-  db: DatabaseAdapter;
-  jwtSecret: string;
-  corsOrigins?: string[];
-  /** Requests per minute per IP (default: 120) */
-  rateLimit?: number;
-  /** Trusted proxy IPs for X-Forwarded-For */
-  trustedProxies?: string[];
-  /** Enable verbose request logging (default: true) */
-  logging?: boolean;
-  /** Agent runtime configuration (enables standalone agent execution) */
-  runtime?: {
-    enabled?: boolean;
-    defaultModel?: { provider: 'anthropic' | 'openai'; modelId: string; thinkingLevel?: string };
-    apiKeys?: { anthropic?: string; openai?: string };
-  };
-}
-export interface ServerInstance {
-  app: Hono<AppEnv>;
-  start: () => Promise<{ close: () => void }>;
-  healthMonitor: HealthMonitor;
-}
-export function createServer(config: ServerConfig): ServerInstance {
-  const app = new Hono<AppEnv>();
-  // Wrap DB in a transparent proxy for hot-swap support during onboarding
-  const dbProxy = createDbProxy(config.db) as DbProxy;
-  config.db = dbProxy;
-  // ─── Centralized Network Config ─────────────────────
-  // Must be initialized before any middleware that reads network config
-  setNetworkDb(config.db);
-  // Load initial config + apply proxy env vars
-  invalidateNetworkConfig().catch(() => {});
-  initProxyConfig();
-  // ─── DB Circuit Breaker ──────────────────────────────
-  const dbBreaker = new CircuitBreaker({
-    failureThreshold: 5,
-    recoveryTimeMs: 30_000,
-    timeout: 10_000,
-  });
-  // ─── Health Monitor ──────────────────────────────────
-  const healthMonitor = new HealthMonitor(
-    async () => {
-      // Simple connectivity check
-      await config.db.getStats();
-    },
-    { intervalMs: 30_000, timeoutMs: 5_000, unhealthyThreshold: 3 },
-  );
-  healthMonitor.onStatusChange((healthy) => {
-    console.log(
-      `[${new Date().toISOString()}] ${healthy ? '✅' : '❌'} Database health: ${healthy ? 'healthy' : 'unhealthy'}`,
-    );
-  });
-  // ─── Global Middleware ───────────────────────────────
-  // Request ID (first — everything references it)
-  app.use('*', requestIdMiddleware());
-  // Error handler (wraps everything below)
-  app.use('*', errorHandler());
-  // Security headers (DB-backed)
-  app.use('*', securityHeaders());
-  // HTTPS enforcement (DB-backed)
-  app.use('*', requireHttps());
-  // DNS rebinding protection (DB-backed)
-  app.use('*', dnsRebindingProtection());
-  // Request body size limits (DB-backed)
-  app.use('*', requestBodyLimit());
-  // Geo-IP restrictions (DB-backed, requires reverse proxy country headers)
-  app.use('*', geoIpRestriction());
-  // IP access control (firewall, DB-backed with trusted proxy validation)
-  app.use('*', ipAccessControl());
-  // CORS — reads from centralized network config (auto-refreshed)
-  async function getCorsOrigins(): Promise<string[]> {
-    // If config provides explicit origins, use those
-    if (config.corsOrigins && config.corsOrigins.length && config.corsOrigins[0] !== '*') {
-      return config.corsOrigins;
-    }
-    // Read from centralized network config (cached 15s, invalidated on save)
-    const { getNetworkConfig } = await import('./middleware/network-config.js');
-    const netConfig = await getNetworkConfig();
-    const origins = netConfig.network?.corsOrigins;
-    if (origins && Array.isArray(origins) && origins.length > 0) return origins;
-    return []; // empty = allow all
-  }
-  app.use('*', cors({
-    origin: async (origin, _c) => {
-      const allowed = await getCorsOrigins();
-      // If no CORS configured, allow all (open)
-      if (!allowed.length) return origin || '*';
-      // If origin matches any allowed origin, permit
-      if (origin && allowed.includes(origin)) return origin;
-      // Also allow requests with no origin (same-origin, curl, server-to-server)
-      if (!origin) return allowed[0];
-      // Not allowed — return empty string to deny
-      return '';
-    },
-    credentials: true,
-    allowHeaders: ['Content-Type', 'Authorization', 'X-API-Key', 'X-Request-Id', 'X-CSRF-Token'],
-    exposeHeaders: ['X-Request-Id', 'X-RateLimit-Limit', 'X-RateLimit-Remaining', 'Retry-After', 'X-Transport-Encrypted'],
-  }));
-  // Rate limiting
-  app.use('*', rateLimiter({
-    limit: config.rateLimit ?? 300,
-    windowSec: 60,
-    skipPaths: ['/health', '/ready', '/dashboard', '/api/engine/agent-status'],
-  }));
-  // Request logging
-  if (config.logging !== false) {
-    app.use('*', requestLogger());
-  }
-  // ─── Health Endpoints ────────────────────────────────
-  app.get('/health', (c) => c.json({
-    status: 'ok',
-    version: '0.4.0',
-    uptime: process.uptime(),
-  }));
-  app.get('/ready', async (c) => {
-    const dbHealthy = healthMonitor.isHealthy();
-    const status = dbHealthy ? 200 : 503;
-    return c.json({
-      ready: dbHealthy,
-      checks: {
-        database: dbHealthy ? 'ok' : 'unhealthy',
-        circuitBreaker: dbBreaker.getState(),
-      },
-    }, status);
-  });
-  // One-way latch: once setup is complete, skip the bootstrap injection.
-  // Checked once at startup; also flipped by the bootstrap callback.
-  let _setupComplete = false;
-  (async () => {
-    try {
-      const stats = await config.db.getStats();
-      if (stats.totalUsers > 0) _setupComplete = true;
-    } catch { /* not ready yet — will be flipped on first bootstrap */ }
-  })();
-  // ─── Auth Routes (public) ───────────────────────────
-  const authRoutes = createAuthRoutes(config.db, config.jwtSecret, {
-    onBootstrap: () => { _setupComplete = true; },
-    onDbConfigure: (newAdapter) => {
-      const old = dbProxy.__swap(newAdapter);
-      engineInitialized = false;
-      return old;
-    },
-  });
-  app.route('/auth', authRoutes);
-  // ─── Protected API Routes ───────────────────────────
-  const api = new Hono<AppEnv>();
-  // Authentication middleware
-  api.use('*', async (c, next) => {
-    // Skip auth for OAuth callback (browser redirect from Google/Microsoft)
-    if (c.req.path.endsWith('/oauth/callback') && c.req.method === 'GET') {
-      return next();
-    }
-    // Skip auth for Google Chat webhook (Google sends POST with its own auth)
-    if (c.req.path.includes('/chat-webhook') && c.req.method === 'POST') {
-      return next();
-    }
-    // Skip auth for agent status (internal communication + dashboard SSE)
-    // Skip auth for internal service-to-service calls (localhost only)
-    if (c.req.path.includes('/engine/agent-status') || c.req.path.includes('/engine/task-pipeline/webhook') || (c.req.path.includes('/whatsapp/proxy-send') && (c.req.header('host') || '').startsWith('localhost'))) {
-      return next();
-    }
-    // Skip auth for runtime/chat and runtime/hooks — internal dispatch from enterprise to agent process
-    if (c.req.path.includes('/runtime/chat') && c.req.method === 'POST') {
-      return next();
-    }
-    if (c.req.path.includes('/runtime/hooks/') && c.req.method === 'POST') {
-      return next();
-    }
-    // Check API key first
-    const apiKeyHeader = c.req.header('X-API-Key');
-    if (apiKeyHeader) {
-      const key = await dbBreaker.execute(() => config.db.validateApiKey(apiKeyHeader));
-      if (!key) return c.json({ error: 'Invalid API key' }, 401);
-      c.set('userId', key.createdBy);
-      c.set('authType', 'api-key');
-      c.set('apiKeyScopes', key.scopes);
-      return next();
-    }
-    // JWT auth — check httpOnly cookie first, then Authorization header
-    const { getCookie } = await import('hono/cookie');
-    const cookieToken = getCookie(c, 'em_session');
-    const authHeader = c.req.header('Authorization');
-    const jwt = cookieToken || (authHeader?.startsWith('Bearer ') ? authHeader.slice(7) : null);
-    if (!jwt) {
-      return c.json({ error: 'Authentication required' }, 401);
-    }
-    try {
-      const { jwtVerify } = await import('jose');
-      const secret = new TextEncoder().encode(config.jwtSecret);
-      const { payload } = await jwtVerify(jwt, secret);
-      c.set('userId', payload.sub as string);
-      c.set('userRole', (payload.role as string) || '');
-      c.set('userEmail', (payload.email as string) || '');
-      c.set('userOrgId', (payload.orgId as string) || '');
-      c.set('clientOrgId', (payload.clientOrgId as string) || '');
-      c.set('impersonatedBy', (payload.impersonatedBy as string) || '');
-      c.set('authType', cookieToken ? 'cookie' : 'jwt');
-      return next();
-    } catch {
-      return c.json({ error: 'Invalid or expired token' }, 401);
-    }
-  });
-  // ─── Org-scoping enforcement for client-bound users ───
-  // Users with clientOrgId in JWT can ONLY access their bound org's data
-  api.use('*', async (c: any, next: any) => {
-    const clientOrgId = c.get('clientOrgId');
-    if (!clientOrgId) return next(); // Not org-bound, full access
-    // Override orgId in query params to enforce scoping
-    const url = new URL(c.req.url);
-    const requestedOrg = url.searchParams.get('orgId');
-    if (requestedOrg && requestedOrg !== clientOrgId) {
-      return c.json({ error: 'Access denied: you can only access your assigned organization' }, 403);
-    }
-    // INJECT clientOrgId when no orgId is specified — ensures downstream queries are always scoped
-    // Store for downstream handlers; also override userOrgId so audit/filtering uses client org
-    if (!requestedOrg) {
-      c.set('enforcedOrgId', clientOrgId);
-      c.set('userOrgId', clientOrgId);
-    }
-    // Block org listing — only return their own org
-    const path = c.req.path;
-    if (path === '/api/organizations' && c.req.method === 'GET') {
-      // Let it through but we'll filter in the response
-      // Store the clientOrgId for downstream filtering
-    }
-    // Block access to other orgs' data via path params (e.g., /api/engine/stats/:orgId)
-    const orgIdMatch = path.match(/\/stats\/([^/]+)/);
-    if (orgIdMatch && orgIdMatch[1] !== clientOrgId) {
-      return c.json({ error: 'Access denied: you can only access your assigned organization' }, 403);
-    }
-    return next();
-  });
-  // Audit logging on all API mutations
-  api.use('*', auditLogger(config.db));
-  // Transport encryption middleware — encrypts/decrypts sensitive API calls
-  api.use('*', async (c, next) => {
-    try {
-      const { transportEncryptionMiddleware } = await import('./middleware/transport-encryption.js');
-      const mw = transportEncryptionMiddleware();
-      return mw(c, next);
-    } catch {
-      return next();
-    }
-  });
-  // Load transport encryption config from DB early
-  import('./middleware/transport-encryption.js').then(({ setSettingsDb, loadConfig }) => {
-    setSettingsDb(config.db);
-    loadConfig().catch(() => {});
-  }).catch(() => {});
-  // Admin routes
-  const adminRoutes = createAdminRoutes(config.db);
-  api.route('/', adminRoutes);
-  // Engine routes (skills, permissions, deployment, approvals, lifecycle, KB, etc.)
-  // Loaded lazily on first request to avoid top-level await.
-  // On first hit, also initializes the EngineDatabase and runs engine migrations.
-  let engineInitialized = false;
-  api.all('/engine/*', async (c, _next) => {
-    try {
-      const { engineRoutes, setEngineDb } = await import('./engine/routes.js');
-      const { EngineDatabase } = await import('./engine/db-adapter.js');
-      // Initialize engine DB on first request
-      if (!engineInitialized) {
-        engineInitialized = true; // Prevent repeated init attempts on failure
-        // Use the adapter's built-in engine DB interface (SQL adapters expose raw query methods)
-        const engineDbInterface = config.db.getEngineDB();
-        if (!engineDbInterface) {
-          return c.json({
-            error: 'Engine not available',
-            detail: `Engine requires a SQL-compatible database. "${config.db.type}" does not support raw SQL queries. Use postgres, mysql, sqlite, or turso.`,
-          }, 501);
-        }
-        // Map adapter dialect to engine dialect
-        const adapterDialect = config.db.getDialect();
-        const dialectMap: Record<string, string> = {
-          sqlite: 'sqlite', postgres: 'postgres', supabase: 'postgres',
-          neon: 'postgres', cockroachdb: 'postgres', mysql: 'mysql',
-          planetscale: 'mysql', turso: 'turso',
-        };
-        const engineDialect = (dialectMap[adapterDialect] || adapterDialect) as any;
-        const engineDb = new EngineDatabase(engineDbInterface, engineDialect);
-        const migrationResult = await engineDb.migrate();
-        console.log(`[engine] Migrations: ${migrationResult.applied} applied, ${migrationResult.total} total`);
-        await setEngineDb(engineDb, config.db);
-        engineInitialized = true;
-        // Start agent runtime if configured
-        if (config.runtime?.enabled) {
-          try {
-            const { createAgentRuntime } = await import('./runtime/index.js');
-            const { mountRuntimeApp, setRuntime } = await import('./engine/routes.js');
-            // Import lifecycle for email config access
-            let getEmailConfig: ((agentId: string) => any) | undefined;
-            let onTokenRefresh: ((agentId: string, tokens: any) => void) | undefined;
-            let agentMemoryMgr: any;
-            try {
-              const { lifecycle: lc, memoryManager: mm } = await import('./engine/routes.js');
-              agentMemoryMgr = mm;
-              if (lc) {
-                getEmailConfig = (agentId: string) => {
-                  const managed = lc.getAgent(agentId);
-                  const agentEmailCfg = managed?.config?.emailConfig || null;
-                  // If agent has its own config, use it
-                  if (agentEmailCfg?.oauthAccessToken || agentEmailCfg?.smtpHost) return agentEmailCfg;
-                  // Async resolve from org integrations (cache on agent)
-                  try {
-                    const { orgIntegrations: oi } = require('./engine/routes.js');
-                    if (oi && managed) {
-                      const orgId = (managed as any).client_org_id || (managed as any).clientOrgId || null;
-                      oi.resolveEmailConfig(orgId, agentEmailCfg).then((resolved: any) => {
-                        if (resolved && (resolved.oauthAccessToken || resolved.smtpHost)) {
-                          if (!managed.config) managed.config = {} as any;
-                          (managed.config as any).emailConfig = resolved;
-                          (managed.config as any).emailConfig._fromOrgIntegration = true;
-                        }
-                      }).catch(() => {});
-                    }
-                  } catch {}
-                  return agentEmailCfg;
-                };
-                onTokenRefresh = (agentId: string, tokens: any) => {
-                  const managed = lc.getAgent(agentId);
-                  if (managed?.config?.emailConfig) {
-                    if (tokens.accessToken) managed.config.emailConfig.oauthAccessToken = tokens.accessToken;
-                    if (tokens.refreshToken) managed.config.emailConfig.oauthRefreshToken = tokens.refreshToken;
-                    if (tokens.expiresAt) managed.config.emailConfig.oauthTokenExpiry = tokens.expiresAt;
-                    if (!(managed.config.emailConfig as any)?._fromOrgIntegration) {
-                      lc.saveAgent(agentId).catch(() => {});
-                    }
-                  }
-                };
-              }
-            } catch {}
-            const { vault: vaultRef, permissionEngine: permRef, databaseManager: dbMgr } = await import('./engine/routes.js');
-            const runtime = createAgentRuntime({
-              engineDb,
-              adminDb: config.db,
-              defaultModel: config.runtime.defaultModel as any,
-              apiKeys: config.runtime.apiKeys,
-              gatewayEnabled: true,
-              getEmailConfig,
-              onTokenRefresh,
-              agentMemoryManager: agentMemoryMgr,
-              vault: vaultRef,
-              permissionEngine: permRef,
-              databaseManager: dbMgr,
-            } as any);
-            await runtime.start();
-            const runtimeApp = runtime.getApp();
-            if (runtimeApp) {
-              mountRuntimeApp(runtimeApp);
-            }
-            setRuntime(runtime);
-            console.log('[runtime] Agent runtime started and mounted at /api/engine/runtime/*');
-          } catch (runtimeErr: any) {
-            console.warn(`[runtime] Failed to start agent runtime: ${runtimeErr.message}`);
-          }
-        }
-      }
-      // Forward to engine routes — inject auth context as headers
-      const originalUrl = new URL(c.req.url);
-      const subPath = (c.req.path.replace(/^\/api\/engine/, '') || '/') + originalUrl.search;
-      const headers = new Headers(c.req.raw.headers);
-      const userId = c.get('userId');
-      const userRole = c.get('userRole');
-      const userEmail = c.get('userEmail');
-      const authType = c.get('authType');
-      const requestId = c.get('requestId');
-      if (userId) headers.set('X-User-Id', String(userId));
-      if (userRole) headers.set('X-User-Role', String(userRole));
-      if (userEmail) headers.set('X-User-Email', String(userEmail));
-      if (authType) headers.set('X-Auth-Type', String(authType));
-      if (requestId) headers.set('X-Request-Id', String(requestId));
-      // If transport encryption consumed the body, use the decrypted version
-      let subBody: any = undefined;
-      if (c.req.method !== 'GET' && c.req.method !== 'HEAD') {
-        if ((c as any)._decryptedBody !== undefined) {
-          subBody = JSON.stringify((c as any)._decryptedBody);
-        } else {
-          try {
-            // Clone the body to avoid "disturbed or locked" errors
-            subBody = c.req.raw.bodyUsed ? null : c.req.raw.body;
-          } catch {
-            subBody = null;
-          }
-        }
-      }
-      const subReq = new Request(new URL(subPath, 'http://localhost'), {
-        method: c.req.method,
-        headers,
-        body: subBody,
-      });
-      return engineRoutes.fetch(subReq);
-    } catch (e: any) {
-      console.error('[engine] Error:', e.message);
-      return c.json({ error: 'Engine module not available', detail: e.message }, 501);
-    }
-  });
-  app.route('/api', api);
-  // ─── Dashboard (Admin UI) ─────────────────────────────
-  let dashboardHtml: string | null = null;
-  function getDashboardHtml(): string {
-    if (!dashboardHtml) {
-      try {
-        const dir = dirname(fileURLToPath(import.meta.url));
-        dashboardHtml = readFileSync(join(dir, 'dashboard', 'index.html'), 'utf-8');
-      } catch {
-        // Fallback: try relative to cwd
-        try {
-          dashboardHtml = readFileSync(join(process.cwd(), 'node_modules', '@agenticmail', 'enterprise', 'dist', 'dashboard', 'index.html'), 'utf-8');
-        } catch {
-          dashboardHtml = '<html><body><h1>Dashboard not found</h1><p>The dashboard HTML file could not be located.</p></body></html>';
-        }
-      }
-    }
-    return dashboardHtml;
-  }
-  async function serveDashboard(c: any) {
-    let html = getDashboardHtml();
-    // Inject version
-    html = html.replace('</head>', `<script>window.__ENTERPRISE_VERSION__="${ENTERPRISE_VERSION}";</script></head>`);
-    if (!_setupComplete) {
-      const injection = `<script>window.__EM_SETUP_STATE__=${JSON.stringify({ needsBootstrap: true })};</script>`;
-      html = html.replace('</head>', injection + '</head>');
-    }
-    // Inject branding config
-    try {
-      const settings0 = await config.db.getSettings();
-      const branding = settings0?.branding || {};
-      if (settings0?.name && !branding.companyName) branding.companyName = settings0.name;
-      if (Object.keys(branding).length > 0) {
-        const brandScript = `<script>window.__EM_BRANDING__=${JSON.stringify(branding)};</script>`;
-        html = html.replace('</head>', brandScript + '</head>');
-      }
-    } catch { /* non-blocking */ }
-    // Inject domain verification status (informational, does not block)
-    try {
-      const settings = await config.db.getSettings();
-      if (settings.domain && settings.domainStatus) {
-        const domainState = {
-          domain: settings.domain,
-          status: settings.domainStatus,
-          verifiedAt: settings.domainVerifiedAt,
-          dnsChallenge: settings.domainDnsChallenge,
-        };
-        const domainScript = `<script>window.__EM_DOMAIN_STATE__=${JSON.stringify(domainState)};</script>`;
-        html = html.replace('</head>', domainScript + '</head>');
-      }
-    } catch { /* non-blocking */ }
-    return c.html(html);
-  }
-  // Serve branding assets from ~/.agenticmail/branding/
-  app.get('/branding/*', (c) => {
-    const reqPath = c.req.path.replace('/branding/', '').split('?')[0];
-    if (reqPath.includes('..')) return c.json({ error: 'Forbidden' }, 403);
-    const ext = reqPath.substring(reqPath.lastIndexOf('.'));
-    const mimeMap: Record<string, string> = { '.png': 'image/png', '.jpg': 'image/jpeg', '.jpeg': 'image/jpeg', '.svg': 'image/svg+xml', '.ico': 'image/x-icon', '.gif': 'image/gif', '.webp': 'image/webp' };
-    const mime = mimeMap[ext];
-    if (!mime) return c.json({ error: 'Not found' }, 404);
-    const brandDir = join(homedir(), '.agenticmail', 'branding');
-    const filePath = join(brandDir, reqPath);
-    if (!filePath.startsWith(brandDir) || !existsSync(filePath)) return c.json({ error: 'Not found' }, 404);
-    const content = readFileSync(filePath);
-    return new Response(content, { status: 200, headers: { 'Content-Type': mime, 'Cache-Control': 'no-cache, no-store, must-revalidate' } });
-  });
-  app.get('/', (c) => c.redirect('/dashboard'));
-  app.get('/dashboard', serveDashboard);
-  // Serve documentation pages and assets
-  app.get('/docs/:file', (c) => {
-    const file = c.req.param('file').replace(/[^a-z0-9.-]/gi, '');
-    const dir = dirname(fileURLToPath(import.meta.url));
-    // Try exact file first, then append .html
-    let filePath = join(dir, 'dashboard', 'docs', file);
-    if (!existsSync(filePath)) filePath = join(dir, 'dashboard', 'docs', file + '.html');
-    if (existsSync(filePath)) {
-      const content = readFileSync(filePath, 'utf-8');
-      const ct = file.endsWith('.css') ? 'text/css; charset=utf-8' : 'text/html; charset=utf-8';
-      return new Response(content, { status: 200, headers: { 'Content-Type': ct } });
-    }
-    return c.json({ error: 'Documentation page not found' }, 404);
-  });
-  // Serve dashboard JS modules and static assets (components/*.js, pages/*.js, app.js, assets/*)
-  const STATIC_MIME: Record<string, string> = { '.js': 'application/javascript; charset=utf-8', '.png': 'image/png', '.jpg': 'image/jpeg', '.jpeg': 'image/jpeg', '.svg': 'image/svg+xml', '.ico': 'image/x-icon', '.gif': 'image/gif', '.webp': 'image/webp', '.css': 'text/css; charset=utf-8' };
-  app.get('/dashboard/*', (c) => {
-    const reqPath = c.req.path.replace('/dashboard/', '');
-    const ext = reqPath.substring(reqPath.lastIndexOf('.'));
-    const mime = STATIC_MIME[ext];
-    if (mime) {
-      const dir = dirname(fileURLToPath(import.meta.url));
-      const filePath = join(dir, 'dashboard', reqPath);
-      // Prevent path traversal
-      if (!filePath.startsWith(join(dir, 'dashboard'))) {
-        return c.json({ error: 'Forbidden' }, 403);
-      }
-      if (existsSync(filePath)) {
-        const content = readFileSync(filePath);
-        return new Response(content, { status: 200, headers: { 'Content-Type': mime, 'Cache-Control': 'no-cache, no-store, must-revalidate' } });
-      }
-      // Static asset not found — return 404, NOT the SPA HTML
-      // (returning HTML for missing .js causes browser MIME type errors)
-      return c.json({ error: 'Not found', path: c.req.path }, 404);
-    }
-    // Non-asset path — fall through to SPA handler
-    return serveDashboard(c);
-  });
-  // ─── 404 Handler ─────────────────────────────────────
-  app.notFound((c) => {
-    return c.json({ error: 'Not found', path: c.req.path }, 404);
-  });
-  // ─── Server Start ────────────────────────────────────
-  return {
-    app,
-    healthMonitor,
-    start: () => {
-      return new Promise((resolve) => {
-        const server = serve(
-          { fetch: app.fetch, port: config.port },
-          (info) => {
-            console.log(`\n🏢 AgenticMail Enterprise v${ENTERPRISE_VERSION}`);
-            console.log(`   API:    http://localhost:${info.port}/api`);
-            console.log(`   Auth:   http://localhost:${info.port}/auth`);
-            console.log(`   Health: http://localhost:${info.port}/health`);
-            console.log('');
-            // Start health monitoring
-            healthMonitor.start();
-            // Load saved provider API keys from DB (decrypt via vault, pass via runtime config)
-            config.db.getSettings().then(async (settings: any) => {
-              const { SecureVault } = await import('./engine/vault.js');
-              const vaultInst = new SecureVault();
-              const keys = settings?.modelPricingConfig?.providerApiKeys;
-              if (keys && typeof keys === 'object') {
-                for (const [providerId, apiKey] of Object.entries(keys)) {
-                  if (apiKey && typeof apiKey === 'string') {
-                    let decrypted: string;
-                    try {
-                      decrypted = vaultInst.decrypt(apiKey);
-                    } catch {
-                      decrypted = apiKey; // legacy plaintext fallback
-                    }
-                    if (config.runtime?.apiKeys) {
-                      (config.runtime.apiKeys as Record<string, string>)[providerId] = decrypted;
-                    }
-                    console.log(`   🔑 Loaded API key for ${providerId} from DB`);
-                  }
-                }
-              }
-            }).catch(() => {});
-            // Eagerly initialize engine (loads lifecycle, starts chat poller, etc.)
-            // Without this, engine only initializes on first dashboard request
-            (async () => {
-              try {
-                const { engineRoutes, setEngineDb } = await import('./engine/routes.js');
-                const { EngineDatabase } = await import('./engine/db-adapter.js');
-                if (!engineInitialized) {
-                  engineInitialized = true;
-                  const engineDbInterface = config.db.getEngineDB();
-                  if (engineDbInterface) {
-                    const adapterDialect = config.db.getDialect();
-                    const dialectMap: Record<string, string> = {
-                      sqlite: 'sqlite', postgres: 'postgres', supabase: 'postgres',
-                      neon: 'postgres', cockroachdb: 'postgres', mysql: 'mysql',
-                      planetscale: 'mysql', turso: 'turso',
-                    };
-                    const engineDialect = (dialectMap[adapterDialect] || adapterDialect) as any;
-                    const engineDb = new EngineDatabase(engineDbInterface, engineDialect);
-                    const migrationResult = await engineDb.migrate();
-                    console.log(`[engine] Migrations: ${migrationResult.applied} applied, ${migrationResult.total} total`);
-                    await setEngineDb(engineDb, config.db);
-                    // Start agent runtime if configured
-                    if (config.runtime?.enabled) {
-                      try {
-                        const { createAgentRuntime } = await import('./runtime/index.js');
-                        const { mountRuntimeApp, setRuntime } = await import('./engine/routes.js');
-                        let getEmailConfig: ((agentId: string) => any) | undefined;
-                        let onTokenRefresh: ((agentId: string, tokens: any) => void) | undefined;
-                        let agentMemoryMgr: any;
-                        try {
-                          const { lifecycle: lc, memoryManager: mm } = await import('./engine/routes.js');
-                          agentMemoryMgr = mm;
-                          if (lc) {
-                            getEmailConfig = (agentId: string) => {
-                              const managed = lc.getAgent(agentId);
-                              const agentEmailCfg = managed?.config?.emailConfig || null;
-                              if (agentEmailCfg?.oauthAccessToken || agentEmailCfg?.smtpHost) return agentEmailCfg;
-                              try {
-                                const { orgIntegrations: oi } = require('./engine/routes.js');
-                                if (oi && managed) {
-                                  const orgId = (managed as any).client_org_id || (managed as any).clientOrgId || null;
-                                  oi.resolveEmailConfig(orgId, agentEmailCfg).then((resolved: any) => {
-                                    if (resolved && (resolved.oauthAccessToken || resolved.smtpHost)) {
-                                      if (!managed.config) managed.config = {} as any;
-                                      (managed.config as any).emailConfig = resolved;
-                                      (managed.config as any).emailConfig._fromOrgIntegration = true;
-                                    }
-                                  }).catch(() => {});
-                                }
-                              } catch {}
-                              return agentEmailCfg;
-                            };
-                            onTokenRefresh = (agentId: string, tokens: any) => {
-                              const managed = lc.getAgent(agentId);
-                              if (managed?.config?.emailConfig) {
-                                if (tokens.accessToken) managed.config.emailConfig.oauthAccessToken = tokens.accessToken;
-                                if (tokens.refreshToken) managed.config.emailConfig.oauthRefreshToken = tokens.refreshToken;
-                                if (tokens.expiresAt) managed.config.emailConfig.oauthTokenExpiry = tokens.expiresAt;
-                                if (!(managed.config.emailConfig as any)?._fromOrgIntegration) {
-                                  lc.saveAgent(agentId).catch(() => {});
-                                }
-                              }
-                            };
-                          }
-                        } catch {}
-                        const { vault: vaultRef2, permissionEngine: permRef2, databaseManager: dbMgr2 } = await import('./engine/routes.js');
-                        const runtime = createAgentRuntime({
-                          engineDb,
-                          adminDb: config.db,
-                          defaultModel: config.runtime.defaultModel as any,
-                          apiKeys: config.runtime.apiKeys,
-                          gatewayEnabled: true,
-                          getEmailConfig,
-                          onTokenRefresh,
-                          agentMemoryManager: agentMemoryMgr,
-                          vault: vaultRef2,
-                          permissionEngine: permRef2,
-                          hierarchyManager: (await import('./engine/routes.js')).hierarchyManager ?? undefined,
-                          databaseManager: dbMgr2,
-                        } as any);
-                        await runtime.start();
-                        const runtimeApp = runtime.getApp();
-                        if (runtimeApp) mountRuntimeApp(runtimeApp);
-                        setRuntime(runtime);
-                        console.log('[runtime] Agent runtime started');
-                      } catch (runtimeErr: any) {
-                        console.warn(`[runtime] Failed to start: ${runtimeErr.message}`);
-                      }
-                    }
-                    console.log('[engine] Eagerly initialized');
-                    // Auto-check PM2 if any agents use local deployment
-                    try {
-                      const { lifecycle: lcRef } = await import('./engine/routes.js');
-                      if (lcRef) {
-                        const agents = Array.from((lcRef as any).agents?.values?.() || []);
-                        const hasLocalPm2 = agents.some((a: any) => {
-                          const target = a?.config?.deployment?.target;
-                          const pm = a?.config?.deployment?.config?.local?.processManager;
-                          return target === 'local' && (!pm || pm === 'pm2');
-                        });
-                        if (hasLocalPm2) {
-                          const { ensurePm2 } = await import('./engine/deployer.js');
-                          const pm2 = await ensurePm2();
-                          if (pm2.installed) {
-                            console.log(`[startup] PM2 v${pm2.version} available for local deployments`);
-                          } else {
-                            console.warn(`[startup] PM2 auto-install failed: ${pm2.error}`);
-                          }
-                        }
-                      }
-                    } catch {}
-                  }
-                }
-              } catch (e: any) {
-                console.warn(`[engine] Eager init failed: ${e.message}`);
-              }
-            })();
-            // Graceful shutdown
-            const shutdown = () => {
-              console.log('\n⏳ Shutting down gracefully...');
-              healthMonitor.stop();
-              server.close(() => {
-                config.db.disconnect().then(() => {
-                  console.log('✅ Shutdown complete');
-                  process.exit(0);
-                });
-              });
-              // Force exit after 10s
-              setTimeout(() => { process.exit(1); }, 10_000).unref();
-            };
-            process.on('SIGINT', shutdown);
-            process.on('SIGTERM', shutdown);
-            resolve({
-              close: () => {
-                healthMonitor.stop();
-                server.close();
-              },
-            });
-          },
-        );
-      });
-    },
-  };
-}