@agentpress/sdk 0.4.15 → 0.5.2

package/dist/index.d.cts

@@ -137,8 +137,111 @@ interface WebhookResponse {
   /** `true` if an action with the same `externalId` already existed (idempotency). */
   alreadyExists?: boolean;
   skipped?: boolean;
+  /**
+   * `true` when AgentPress accepted the event (HTTP 202) but could not create
+   * an action yet — e.g. no action rule configured, the rule is disabled, or
+   * the user could not be resolved. The event is buffered durably and
+   * auto-processes once an operator fixes the configuration. No `actionId`
+   * is returned in this case; use {@link eventId} to correlate.
+   */
+  buffered?: boolean;
+  /** UUID of the buffered `webhook_events` row (present when `buffered` is `true`). */
+  eventId?: string;
+  /** Machine-readable reason the event was buffered (e.g. `"no_action_rule_configured"`). */
+  reason?: string;
   data?: Record<string, unknown>;
 }
+/** Parameters for {@link signHmacWebhookRequest}. */
+interface SignHmacWebhookRequestParams {
+  /** The webhook listener's shared secret. */
+  secret: string;
+  /**
+   * The exact raw request body string that will be sent. The signature is
+   * computed over `"${timestamp}.${rawBody}"`, so any re-serialization after
+   * signing invalidates it.
+   */
+  rawBody: string;
+  /** Unix timestamp in seconds. @default now */
+  timestamp?: number;
+}
+/** Signed headers returned by {@link signHmacWebhookRequest}. */
+interface SignedHmacWebhookRequest {
+  /** Headers to attach to the outbound HTTP request. */
+  headers: {
+    /** Unix timestamp (seconds) the signature was computed for. */"x-webhook-timestamp": string; /** `v1=<hex HMAC-SHA256 of "${timestamp}.${rawBody}">`. */
+    "x-webhook-signature": string;
+  };
+}
+/**
+ * Verification scheme for an inbound webhook listener
+ * (`POST /webhooks/ingest/:org/:identifier`).
+ *
+ * - `"svix"` — Svix-style signing (`svix-id` / `svix-timestamp` / `svix-signature`).
+ * - `"hmac_sha256"` — `x-webhook-timestamp` + `x-webhook-signature` headers;
+ *   sign with {@link signHmacWebhookRequest}.
+ * - `"shared_token"` — `Authorization: Bearer <token>` or `x-webhook-token`;
+ *   build with {@link sharedTokenHeaders}.
+ * - `"none"` — capability URL: the unguessable random suffix appended to the
+ *   endpoint identifier at creation time is the credential.
+ */
+type WebhookVerificationScheme = "svix" | "hmac_sha256" | "shared_token" | "none";
+/** Environment label for an inbound webhook listener. */
+type WebhookEnvironment = "dev" | "sandbox" | "prod";
+/** Per-listener routing configuration ({@link IWebhookListenerConfig.routingConfig}). */
+interface IWebhookListenerRoutingConfig {
+  /** Event types to skip (marked `skipped`, never dispatched to an agent). */
+  ignoredEventTypes?: string[];
+  /**
+   * `"route"` dispatches buffered events to the target agent;
+   * `"buffer_only"` accepts + logs events but skips agent dispatch.
+   */
+  mode?: "route" | "buffer_only";
+  /** Retention window in days for processed/skipped events. */
+  retentionDays?: number;
+  /** Sender IPs allowed to hit the ingest endpoint. Empty/omitted = all. */
+  ipAllowlist?: string[];
+  /**
+   * Webhook-specific guidance appended to the agent prompt on every
+   * dispatched event (payload shapes, which tools to call, etc.).
+   */
+  instructions?: string;
+  /** Ingest quota for this listener. Defaults to 100, capped at 1000. */
+  rateLimitPerMinute?: number;
+}
+/**
+ * An inbound webhook listener as configured in AgentPress. Listeners receive
+ * external events on `POST /webhooks/ingest/:org/:identifier`, buffer them
+ * durably, and route them into actions for the target agent.
+ */
+interface IWebhookListenerConfig {
+  /** Human-readable display name. */
+  name: string;
+  /** Stable slug used in the ingest URL path. */
+  identifier: string;
+  /** How inbound requests are authenticated. */
+  verificationScheme: WebhookVerificationScheme;
+  /** Environment label for the listener. */
+  environment: WebhookEnvironment;
+  /** Disabled listeners reject inbound events at the edge. */
+  enabled: boolean;
+  /** Agent on the listener's default action rule (quick-setup path). */
+  targetAgentId: string | null;
+  /** Fallback user actions run as when the payload does not resolve one. */
+  runAsUserId: string | null;
+  /** Routing, retention, and rate-limit configuration. */
+  routingConfig: IWebhookListenerRoutingConfig;
+}
+/**
+ * An action rule's listen subscription. Rules that subscribe to a listening
+ * webhook receive its buffered events in addition to the webhook's default
+ * rule, so one listening URL can fan out to several rules.
+ */
+interface IActionRuleListenSubscription {
+  /** Webhook listener this rule subscribes to; `null` = no subscription. */
+  listenWebhookId: string | null;
+  /** Event types to receive; empty array = all event types. */
+  listenEventTypes: string[];
+}
 /** Action lifecycle event types emitted by AgentPress. */
 type ActionEventType = "action.pending_approval" | "action.approved" | "action.completed" | "action.failed" | "action.rejected" | "action.expired";
 /** All public action callback event types emitted by AgentPress. */
@@ -677,6 +780,17 @@ declare class WebhooksClient {
    * Send an arbitrary webhook payload to AgentPress.
    * Signs the payload with HMAC-SHA256 (Svix-compatible).
    *
+   * On the happy path the response is synchronous: `{ success: true,
+   * actionId, data }`, or `{ success, actionId, alreadyExists: true, data }`
+   * when an action with the same `externalId` already existed (idempotency).
+   *
+   * Configuration/resolution failures (no action rule configured, rule
+   * disabled, user unresolved, action insert failure) do NOT throw — the
+   * event is buffered durably and AgentPress responds **202** with
+   * `{ success: true, buffered: true, eventId, reason }`. The event
+   * auto-processes once an operator fixes the configuration, so check
+   * {@link WebhookResponse.buffered} before relying on `actionId`.
+   *
    * @throws ConfigurationError if webhookSecret is not configured
    * @throws HttpError on non-2xx response
    * @throws TimeoutError if request exceeds timeout
@@ -810,5 +924,42 @@ declare class KeyRotationVerifyError extends AgentPressError {
   constructor(reason: KeyRotationVerifyErrorReason, message: string);
 }
 //#endregion
-export { ACTION_EVENT_TYPES, type ActionCallbackPayload, type ActionEventType, type ActionManageResponse, type ActionStatus, ActionsClient, AgentPress, AgentPressError, type AgentPressOptions, type AgentResponse, type ApprovalMode, type ApprovalRuleSyncMode, type ApproveActionParams, ConfigurationError, type CreateUserApprovalParams, type DeleteUserApprovalParams, type GetUserApprovalWebhookMetadataParams, HttpError, type KeyRotationEvent, KeyRotationVerifyError, type KeyRotationVerifyErrorReason, type KeyRotationVerifyParams, type ListUserApprovalsParams, type ListUserApprovalsResponse, type PartnerMcpOptions, type PartnerTokenClaims, PartnerTokenError, type PartnerTokenErrorReason, PartnersClient, type RejectActionParams, type StagedToolCall, type StagedToolCallSummary, type SyncUserApprovalRule, type SyncUserApprovalsParams, type SyncUserApprovalsResponse, TimeoutError, type ToolCallResult, type UpdateUserApprovalParams, UserApprovalsClient, type UserToolApproval, type WebhookApprovalMetadata, type WebhookApprovalToolMetadata, type WebhookResponse, type WebhookSendParams, WebhookSignatureError, type WebhookVerifyParams, WebhooksClient };
+//#region src/webhooks/ingestSigning.d.ts
+/**
+ * Sign an outbound request for an AgentPress inbound webhook listener that
+ * uses the `hmac_sha256` verification scheme
+ * (`POST /webhooks/ingest/:org/:identifier`).
+ *
+ * Produces the two headers AgentPress verifies:
+ *
+ * - `x-webhook-timestamp` — unix seconds; AgentPress rejects timestamps more
+ *   than 5 minutes from its own clock.
+ * - `x-webhook-signature` — `v1=<hex HMAC-SHA256 of "${timestamp}.${rawBody}">`.
+ *
+ * Send the exact `rawBody` string you signed — any re-serialization after
+ * signing (re-ordered keys, whitespace changes) invalidates the signature.
+ *
+ * @example
+ * ```ts
+ * const rawBody = JSON.stringify({ eventType: "review.created", data: {...} });
+ * const { headers } = signHmacWebhookRequest({ secret, rawBody });
+ * await fetch(ingestUrl, {
+ *   method: "POST",
+ *   body: rawBody,
+ *   headers: { "content-type": "application/json", ...headers },
+ * });
+ * ```
+ */
+declare function signHmacWebhookRequest(params: SignHmacWebhookRequestParams): SignedHmacWebhookRequest;
+/**
+ * Build the auth header for an AgentPress inbound webhook listener that uses
+ * the `shared_token` verification scheme. AgentPress also accepts
+ * `Authorization: Bearer <token>`; this helper uses the dedicated
+ * `x-webhook-token` header so it never collides with other auth middleware.
+ */
+declare function sharedTokenHeaders(token: string): {
+  "x-webhook-token": string;
+};
+//#endregion
+export { ACTION_EVENT_TYPES, type ActionCallbackPayload, type ActionEventType, type ActionManageResponse, type ActionStatus, ActionsClient, AgentPress, AgentPressError, type AgentPressOptions, type AgentResponse, type ApprovalMode, type ApprovalRuleSyncMode, type ApproveActionParams, ConfigurationError, type CreateUserApprovalParams, type DeleteUserApprovalParams, type GetUserApprovalWebhookMetadataParams, HttpError, type IActionRuleListenSubscription, type IWebhookListenerConfig, type IWebhookListenerRoutingConfig, type KeyRotationEvent, KeyRotationVerifyError, type KeyRotationVerifyErrorReason, type KeyRotationVerifyParams, type ListUserApprovalsParams, type ListUserApprovalsResponse, type PartnerMcpOptions, type PartnerTokenClaims, PartnerTokenError, type PartnerTokenErrorReason, PartnersClient, type RejectActionParams, type SignHmacWebhookRequestParams, type SignedHmacWebhookRequest, type StagedToolCall, type StagedToolCallSummary, type SyncUserApprovalRule, type SyncUserApprovalsParams, type SyncUserApprovalsResponse, TimeoutError, type ToolCallResult, type UpdateUserApprovalParams, UserApprovalsClient, type UserToolApproval, type WebhookApprovalMetadata, type WebhookApprovalToolMetadata, type WebhookEnvironment, type WebhookResponse, type WebhookSendParams, WebhookSignatureError, type WebhookVerificationScheme, type WebhookVerifyParams, WebhooksClient, sharedTokenHeaders, signHmacWebhookRequest };
 //# sourceMappingURL=index.d.cts.map

package/dist/index.d.cts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.cts","names":[],"sources":["../src/types.ts","../src/http.ts","../src/actions/client.ts","../src/partners/client.ts","../src/userApprovals/client.ts","../src/webhooks/client.ts","../src/client.ts","../src/errors.ts"],"mappings":";;UACiB,iBAAA;EAAiB;EAEhC,aAAA;EAkBa;EAhBb,MAAA;EAoBqC;EAlBrC,OAAA;EAkB6C;EAhB7C,OAAA;EAJA;EAMA,GAAA;EAFA;;;;;;;;;EAYA,UAAA,GAAa,iBAAA;EAIwB;EAFrC,SAAA,IAAa,GAAA,UAAa,IAAA,EAAM,WAAA;EAEa;EAA7C,UAAA,IAAc,GAAA,UAAa,QAAA,EAAU,QAAA;AAAA;;UAItB,iBAAA;EAAiB;;;;;;;EAQhC,OAAA;EAqBiB;AAInB;;;;EAnBE,MAAA;EAuBA;EArBA,QAAA;EAyBA;EAvBA,mBAAA;EA2BA;;;;;EArBA,cAAA;EAiCC;;AAAW;AAId;EAhCE,iBAAA;AAAA;;UAIe,kBAAA;EA8BG;EA5BlB,GAAA;EAkCS;EAhCT,KAAA;EAgCe;EA9Bf,YAAA;EAkC+B;EAhC/B,GAAA;EAgC+B;EA9B/B,GAAA;EAgCA;EA9BA,GAAA;EAgCA;EA9BA,GAAA;EAkCA;EAhCA,GAAA;EAoCA;EAlCA,MAAA;EAkCM;EAhCN,SAAA;EAoCgC;EAlChC,WAAA;EAsCe;EAAA,CApCd,GAAA;AAAA;;UAIc,uBAAA;EAgCA;EA9Bf,OAAA,WAAkB,MAAA;EAkCgB;;;;;EA5BlC,OAAA,EAAS,MAAM;AAAA;;UAIA,gBAAA;EACf,KAAA;EACA,IAAA;EACA,UAAA;EACA,aAAA;;EAEA,SAAA;EA+BA;EA7BA,WAAA;EAiCA;EA/BA,OAAA;EAiCA;EA/BA,MAAA;AAAA;AA+Ba;AAAA,UA3BE,iBAAA;EAiCU;EA/BzB,MAAA;EA+ByB;EA7BzB,OAAA,EAAS,MAAM;AAAA;;UAIA,mBAAA;EAkCwC;EAhCvD,OAAA,WAAkB,MAAM;EA0CT;EAxCf,OAAA;IACE,SAAA;IACA,gBAAA;IACA,gBAAA;EAAA;AAAA;;UAKa,eAAA;EACf,OAAA;EAyCA;EAvCA,QAAA;EAwCW;EAtCX,aAAA;EACA,OAAA;EACA,IAAA,GAAO,MAAM;AAAA;AA6Cf;AAAA,KAvCY,eAAA;;cASC,kBAAA,WAA6B,eAAe;;UAUxC,qBAAA;EAyBb;EAvBF,KAAA;EAwBa;EAtBb,MAAM;AAAA;AAgCE;AAAA,UA5BO,cAAA;EACf,QAAA;EACA,UAAA;EACA,SAAA,EAAW,MAAA;EAiCL;AAIR;;;EAhCE,OAAA,YAAmB,qBAAqB;AAAA;;UAIzB,mBAAA;EA+BP;EA7BR,MAAA;EA6BoB;EA3BpB,cAAA;IACE,QAAA;IACA,SAAA,EAAW,MAAM;EAAA;EA+BG;AAWxB;;;;;;;EAhCE,QAAA;AAAA;AAmCM;AAAA,UA/BS,kBAAA;EAmCa;EAjC5B,MAAA;EAqCyB;EAnCzB,MAAM;AAAA;;UAIS,oBAAA;EACf,OAAA;EACA,QAAA;EACA,MAAA,EAAQ,YAAY;AAAA;;KAMV,YAAA;;UAWK,cAAA;EACf,QAAA;EACA,SAAA,EAAW,MAAM;EACjB,MAAA;AAAA;;UAIe,aAAA;EAcf;EAZA,IAAA;EAcW;EAZX,SAAA,EAAW,cAAc;AAAA;;;;;UAOV,qBAAA;EACf,QAAA;EACA,MAAA,EAAQ,YAAA;EACR,UAAA;EAoBA;EAlBA,SAAA,EAAW,eAAA;EAoBI;EAlBf,aAAA;EAyBA;EAvBA,cAAA,EAAgB,cAAA;EAyBd;EAvBF,UAAA;EAyBE;EAvBF,WAAA;EA4BC;EA1BD,aAAA;EA0BY;EAxBZ,UAAA,EAAY,MAAA;EA8BU;EA5BtB,UAAA;EA4BsB;EA1BtB,MAAA;EAiCU;EA/BV,QAAA;;EAEA,aAAA,EAAe,aAAA;EA6Be;EA3B9B,YAAA;EAkC+B;;;;EA7B/B,YAAA;IACE,IAAA;IACA,QAAA;IACA,WAAA;IACA,WAAA;EAAA;EAiCF;EA9BA,eAAA;EAkCA;EAAA,CAhCC,GAAA;AAAA;AAoCH;AAAA,KA9BY,YAAA;;;;;;KAOA,oBAAA;AAuCE;AAId;;;;AAJc,UAhCG,gBAAA;EACf,EAAA;EACA,KAAA;EACA,MAAA;EACA,eAAA;EACA,QAAA;EACA,IAAA,EAAM,YAAY;EAyClB;EAvCA,SAAA;EA2CA;EAzCA,SAAA;EAyCa;EAvCb,SAAA;AAAA;;UAIe,uBAAA;EAyCf;EAvCA,iBAAA;EA2CA;;;;;;EApCA,MAAA;EAgDA;;AAAS;AAIX;;;EA7CE,YAAA;AAAA;;UAIe,yBAAA;EACf,SAAA,EAAW,gBAAgB;AAAA;;UAIZ,2BAAA;EAgEf;EA9DA,QAAA;EA8DgB;EA5DhB,KAAA;EAgEe;EA9Df,WAAA;;EAEA,eAAA;EA8DA;EA5DA,aAAA;AAAA;;UAIe,uBAAA;EA0DC;EAxDhB,EAAA;EA4De;EA1Df,eAAA;;EAEA,iBAAA;EA0DiB;EAxDjB,WAAA;EA4DmD;EA1DnD,IAAA;EA4DiB;EA1DjB,KAAA;EA6De;EA3Df,mBAAA;;EAEA,cAAA,EAAgB,2BAA2B;EA2D3C;EAzDA,SAAA;AAAA;;UAIe,wBAAA;EA2DA;EAzDf,iBAAA;;;;;;EAMA,MAAA;EAqEO;;AAAoB;AAG7B;;;;EAhEE,YAAA;EAkEW;;;;;EA5DX,eAAA;EAuEE;EArEF,QAAA;EAwEkB;EAtElB,IAAA,GAAO,YAAA;EA0EQ;EAxEf,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;EA4EF;EA1Eb,iBAAA;EACA,IAAA,GAAO,YAAA;EACP,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;EAiEf;EA/DA,iBAAiB;AAAA;;UAIF,oCAAA;EA8Df;EA5DA,iBAAiB;AAAA;AAAA,UAGF,oBAAA;EA6DA;EA3Df,QAAA;;EAEA,IAAA,EAAM,oBAAoB;AAAA;;UAIX,uBAAA;EAyDf;EAvDA,iBAAA;EAyDA;;AAAiB;;EApDjB,MAAA;;ACpcF;;;;ED0cE,YAAA;ECpb2D;;;;EDyb3D,KAAA,EAAO,oBAAoB;AAAA;AAAA,UAGZ,yBAAA;EC9cE;EDgdjB,SAAA,EAAW,gBAAgB;EAC3B,OAAA;IC/cY,4EDidV,SAAA,UCjcY;IDmcZ,QAAA,UCncmC;IDqcnC,OAAA,UCrciD;IDucjD,SAAA,UCvc0D;IDyc1D,aAAA;EAAA;;EAGF,kBAAA;AAAA;;UAIe,eAAA;EACf,OAAA;EACA,OAAA;EACA,GAAA;EACA,aAAA;EACA,MAAA;EACA,UAAA,GAAa,yBAAA;EACb,SAAA,GAAY,iBAAA;EACZ,UAAA,GAAa,iBAAA;AAAA;;UAIE,yBAAA;EACf,OAAA;EACA,MAAA;EACA,QAAA;EACA,mBAAA;EACA,cAAA;EACA,iBAAA;AAAA;;;AA/fF;;;;;AAAA,cCOa,UAAA;EAAA,iBACM,OAAA;EAAA,iBACA,OAAA;EAAA,iBACA,SAAA;EAAA,iBACA,UAAA;cAEL,OAAA,EAAS,eAAA;EDLrB;;;;;;;;;ECqBM,OAAA,IAAW,IAAA,UAAc,IAAA,EAAM,WAAA,GAAc,OAAA,CAAQ,CAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;cCChD,aAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;EFN7B;;;;;;;EEkBT,OAAA,CACJ,QAAA,UACA,MAAA,EAAQ,mBAAA,GACP,OAAA,CAAQ,oBAAA;EFGX;;;AAKiB;AAInB;;;EEMQ,MAAA,CACJ,QAAA,UACA,MAAA,EAAQ,kBAAA,GACP,OAAA,CAAQ,oBAAA;EAAA,QAMG,MAAA;AAAA;;;AF5EhB;;;;;;;AAAA,cGwBa,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,UAAA;EAAA,QACT,IAAA;EAAA,QACA,SAAA;cAEI,OAAA,EAAS,eAAA;EHVrB;;;;;;;;;;;AAI6C;EGuBvC,WAAA,CAAY,KAAA,WAAgB,OAAA,CAAQ,kBAAA;EHnBV;;;;;;EG+G1B,WAAA,IAAe,OAAA;EAAA,QASb,aAAA;EAAA,QASA,OAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;AHrIqC;AAI/C;;;;;;;;;;cIuBa,mBAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;;;;;;;;;;;;;EAiBtC,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJWV;;AAAW;AAId;;;;;;;;EIQQ,kBAAA,CACJ,MAAA,EAAQ,oCAAA,GACP,OAAA,CAAQ,uBAAA;EJFI;AAIjB;;;;;;;;;;;;EImBQ,MAAA,CAAO,MAAA,EAAQ,wBAAA,GAA2B,OAAA,CAAQ,gBAAA;EJPlD;AAIR;;;;;;;;AAIiB;AAIjB;;EI4BQ,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJ5Ba;;;;;;;EIiDlB,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA,CAAQ,gBAAA;EJ/CO;AAKpB;;;;;;;EIgEQ,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA;IAAU,OAAA;EAAA;EJ5DA;EAAA,QIqEC,IAAA;AAAA;;;cCnMH,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;ELEP;;;;;;;;EKW/B,IAAA,CAAK,MAAA,EAAQ,iBAAA,GAAoB,OAAA,CAAQ,eAAA;ELflC;;;;;;EK6Cb,MAAA,CAAO,MAAA,EAAQ,mBAAA;ELzCsB;;;AAAQ;AAI/C;;;EK0DE,aAAA,CAAc,MAAA,EAAQ,mBAAA;ELlDtB;;;;;;;AAqBiB;AAInB;EKwCE,cAAA,CAAe,MAAA,EAAQ,mBAAA,GAAsB,qBAAA;;;;;;;;;;EAsB7C,iBAAA,CAAkB,MAAA,EAAQ,uBAAA,GAA0B,gBAAA;AAAA;;;;;;;;;;;;;;;;;;cCjGzC,UAAA;ENFG;EAAA,SMIE,QAAA,EAAU,cAAA;ENJC;EAAA,SMMX,OAAA,EAAS,aAAA;ENNoB;EAAA,SMQ7B,aAAA,EAAe,mBAAA;ENJC;EAAA,SMMhB,QAAA,EAAU,cAAA;ENNM;;;;cMYpB,OAAA,GAAS,iBAAA;AAAA;;;;ANxCvB;;;cOGa,eAAA,SAAwB,KAAK;cAC5B,OAAA;AAAA;;;;;cAWD,kBAAA,SAA2B,eAAe;cACzC,OAAA;AAAA;;;;;;;;;cAeD,SAAA,SAAkB,eAAe;EAAA,SAC5B,UAAA;EAAA,SACA,YAAA;EAAA,SACA,GAAA;cAEJ,UAAA,UAAoB,YAAA,UAAsB,GAAA;AAAA;;cAW3C,YAAA,SAAqB,eAAe;cACnC,GAAA,UAAa,OAAA;AAAA;;cAQd,qBAAA,SAA8B,eAAe;cAC5C,OAAA;AAAA;;KAQF,uBAAA;APJZ;;;;;AAAA,cOqBa,iBAAA,SAA0B,eAAA;EAAA,SACrB,MAAA,EAAQ,uBAAA;cAEZ,MAAA,EAAQ,uBAAA,EAAyB,OAAA;AAAA;;KASnC,4BAAA;;;;;cAYC,sBAAA,SAA+B,eAAA;EAAA,SAC1B,MAAA,EAAQ,4BAAA;cAEZ,MAAA,EAAQ,4BAAA,EAA8B,OAAA;AAAA"}
+{"version":3,"file":"index.d.cts","names":[],"sources":["../src/types.ts","../src/http.ts","../src/actions/client.ts","../src/partners/client.ts","../src/userApprovals/client.ts","../src/webhooks/client.ts","../src/client.ts","../src/errors.ts","../src/webhooks/ingestSigning.ts"],"mappings":";;UACiB,iBAAA;EAAiB;EAEhC,aAAA;EAkBa;EAhBb,MAAA;EAoBqC;EAlBrC,OAAA;EAkB6C;EAhB7C,OAAA;EAJA;EAMA,GAAA;EAFA;;;;;;;;;EAYA,UAAA,GAAa,iBAAA;EAIwB;EAFrC,SAAA,IAAa,GAAA,UAAa,IAAA,EAAM,WAAA;EAEa;EAA7C,UAAA,IAAc,GAAA,UAAa,QAAA,EAAU,QAAA;AAAA;;UAItB,iBAAA;EAAiB;;;;;;;EAQhC,OAAA;EAqBiB;AAInB;;;;EAnBE,MAAA;EAuBA;EArBA,QAAA;EAyBA;EAvBA,mBAAA;EA2BA;;;;;EArBA,cAAA;EAiCC;;AAAW;AAId;EAhCE,iBAAA;AAAA;;UAIe,kBAAA;EA8BG;EA5BlB,GAAA;EAkCS;EAhCT,KAAA;EAgCe;EA9Bf,YAAA;EAkC+B;EAhC/B,GAAA;EAgC+B;EA9B/B,GAAA;EAgCA;EA9BA,GAAA;EAgCA;EA9BA,GAAA;EAkCA;EAhCA,GAAA;EAoCA;EAlCA,MAAA;EAkCM;EAhCN,SAAA;EAoCgC;EAlChC,WAAA;EAsCe;EAAA,CApCd,GAAA;AAAA;;UAIc,uBAAA;EAgCA;EA9Bf,OAAA,WAAkB,MAAA;EAkCgB;;;;;EA5BlC,OAAA,EAAS,MAAM;AAAA;;UAIA,gBAAA;EACf,KAAA;EACA,IAAA;EACA,UAAA;EACA,aAAA;;EAEA,SAAA;EA+BA;EA7BA,WAAA;EAiCA;EA/BA,OAAA;EAwCA;EAtCA,MAAA;AAAA;;UAIe,iBAAA;EAuCF;EArCb,MAAA;EA2Ce;EAzCf,OAAA,EAAS,MAAM;AAAA;;UAIA,mBAAA;EA6Cf;EA3CA,OAAA,WAAkB,MAAM;EA6Cf;EA3CT,OAAA;IACE,SAAA;IACA,gBAAA;IACA,gBAAA;EAAA;AAAA;;UAKa,eAAA;EACf,OAAA;EA4CuB;EA1CvB,QAAA;EA4DmC;EA1DnC,aAAA;EACA,OAAA;EAyDmC;AAOrC;;;;AAA8B;AAG9B;EA3DE,QAAA;;EAEA,OAAA;EA2DA;EAzDA,MAAA;EACA,IAAA,GAAO,MAAM;AAAA;;UAME,4BAAA;EAkEG;EAhElB,MAAA;EAwEe;;;;;EAlEf,OAAA;EAkF4C;EAhF5C,SAAA;AAAA;;UAIe,wBAAA;EAkEK;EAhEpB,OAAA;IAkEa,+DAhEX,qBAAA,UAoEF;IAlEE,qBAAA;EAAA;AAAA;;AAsE0C;AAQ9C;;;;AAIkB;AAMlB;;;;AAA2B;KAtEf,yBAAA;;KAOA,kBAAA;;UAGK,6BAAA;EA+EA;EA7Ef,iBAAA;;;AAiFM;AAIR;EAhFE,IAAA;;EAEA,aAAA;EA+EA;EA7EA,WAAA;EA+EA;;;;EA1EA,YAAA;EA+EwC;EA7ExC,kBAAA;AAAA;;;;;;UAQe,sBAAA;EA+EF;EA7Eb,IAAA;EAuFQ;EArFR,UAAA;EAyFe;EAvFf,kBAAA,EAAoB,yBAAA;;EAEpB,WAAA,EAAa,kBAAA;EAyFP;EAvFN,OAAA;EA2FmC;EAzFnC,aAAA;EA4FoB;EA1FpB,WAAA;EAyFA;EAvFA,aAAA,EAAe,6BAAA;AAAA;;AAwFK;AAMtB;;;UAtFiB,6BAAA;EAsFO;EApFtB,eAAA;EA+F6B;EA7F7B,gBAAgB;AAAA;;KAMN,eAAA;;cASC,kBAAA,WAA6B,eAAe;;UAUxC,qBAAA;EA2EA;EAzEf,KAAA;;EAEA,MAAM;AAAA;;UAIS,cAAA;EACf,QAAA;EACA,UAAA;EACA,SAAA,EAAW,MAAA;EA2EyB;;;;EAtEpC,OAAA,YAAmB,qBAAqB;AAAA;;UAIzB,mBAAA;EA2Fa;EAzF5B,MAAA;EAkEA;EAhEA,cAAA;IACE,QAAA;IACA,SAAA,EAAW,MAAM;EAAA;EAmEnB;;;;;;;;EAzDA,QAAA;AAAA;;UAIe,kBAAA;EAuEA;EArEf,MAAA;EA4EA;EA1EA,MAAM;AAAA;;UAIS,oBAAA;EACf,OAAA;EACA,QAAA;EACA,MAAA,EAAQ,YAAY;AAAA;AAkFtB;AAAA,KA5EY,YAAA;;UAWK,cAAA;EACf,QAAA;EACA,SAAA,EAAW,MAAM;EACjB,MAAA;AAAA;;UAIe,aAAA;EAwEA;EAtEf,IAAA;;EAEA,SAAA,EAAW,cAAc;AAAA;;;;;UAOV,qBAAA;EACf,QAAA;EACA,MAAA,EAAQ,YAAA;EACR,UAAA;EAsEA;EApEA,SAAA,EAAW,eAAA;EAoEF;EAlET,aAAA;EAsEsC;EApEtC,cAAA,EAAgB,cAAA;EAoEsB;EAlEtC,UAAA;EA2EA;EAzEA,WAAA;EAgFY;EA9EZ,aAAA;EAkFe;EAhFf,UAAA,EAAY,MAAA;;EAEZ,UAAA;EA+E2B;EA7E3B,MAAA;EAiF0C;EA/E1C,QAAA;EA+E0C;EA7E1C,aAAA,EAAe,aAAA;EAiFf;EA/EA,YAAA;EAmFA;;;AAEa;EAhFb,YAAA;IACE,IAAA;IACA,QAAA;IACA,WAAA;IACA,WAAA;EAAA;EAsFF;EAnFA,eAAA;EAuFA;EAAA,CArFC,GAAA;AAAA;;KAMS,YAAA;;;AAuFD;AAIX;;KApFY,oBAAA;;;;;;UAOK,gBAAA;EACf,EAAA;EACA,KAAA;EACA,MAAA;EACA,eAAA;EACA,QAAA;EACA,IAAA,EAAM,YAAY;EAuGH;EArGf,SAAA;;EAEA,SAAA;EAqGA;EAnGA,SAAA;AAAA;;UAIe,uBAAA;EAiGC;EA/FhB,iBAAA;EAmGe;;;;AAEE;AAInB;EAlGE,MAAA;;;AAoGiB;AAGnB;;;EAhGE,YAAA;AAAA;;UAIe,yBAAA;EACf,SAAA,EAAW,gBAAgB;AAAA;AAmG7B;AAAA,UA/FiB,2BAAA;;EAEf,QAAA;EA+FA;EA7FA,KAAA;EAwGA;EAtGA,WAAA;EA2GO;EAzGP,eAAA;EAyG2B;EAvG3B,aAAA;AAAA;;UAIe,uBAAA;EAwGf;EAtGA,EAAA;EAuGA;EArGA,eAAA;EAyGE;EAvGF,iBAAA;EA2GE;EAzGF,WAAA;EA8GA;EA5GA,IAAA;EA4GkB;EA1GlB,KAAA;EA8G8B;EA5G9B,mBAAA;EAkHa;EAhHb,cAAA,EAAgB,2BAA2B;EAkH9B;EAhHb,SAAA;AAAA;;UAIe,wBAAA;EAuGf;EArGA,iBAAA;EAuGA;;;;;EAjGA,MAAA;EAoGa;;AAAiB;AAIhC;;;;EAhGE,YAAA;EAkGA;;;;;EA5FA,eAAA;EAgGiB;EA9FjB,QAAA;;EAEA,IAAA,GAAO,YAAA;ECphBI;EDshBX,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;ECpgB4C;EDsgB3D,iBAAA;EACA,IAAA,GAAO,YAAA;EACP,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;EC9hBE;EDgiBjB,iBAAiB;AAAA;;UAIF,oCAAA;EClhBD;EDohBd,iBAAiB;AAAA;AAAA,UAGF,oBAAA;ECvhBoC;EDyhBnD,QAAA;ECzhB4D;ED2hB5D,IAAA,EAAM,oBAAoB;AAAA;;UAIX,uBAAA;EE9hBJ;EFgiBX,iBAAA;;;;;EAKA,MAAA;EElhBG;;;;;EFwhBH,YAAA;EE1iBiB;;;;EF+iBjB,KAAA,EAAO,oBAAoB;AAAA;AAAA,UAGZ,yBAAA;EEniBT;EFqiBN,SAAA,EAAW,gBAAgB;EAC3B,OAAA;IEpiBE,4EFsiBA,SAAA,UEriBS;IFuiBT,QAAA,UEphBA;IFshBA,OAAA,UErhBA;IFuhBA,SAAA,UEthBS;IFwhBT,aAAA;EAAA;EElhBkB;EFqhBpB,kBAAA;AAAA;;UAIe,eAAA;EACf,OAAA;EACA,OAAA;EACA,GAAA;EACA,aAAA;EACA,MAAA;EACA,UAAA,GAAa,yBAAA;EACb,SAAA,GAAY,iBAAA;EACZ,UAAA,GAAa,iBAAA;AAAA;;UAIE,yBAAA;EACf,OAAA;EACA,MAAA;EACA,QAAA;EACA,mBAAA;EACA,cAAA;EACA,iBAAA;AAAA;;;AAvnBF;;;;;AAAA,cCOa,UAAA;EAAA,iBACM,OAAA;EAAA,iBACA,OAAA;EAAA,iBACA,SAAA;EAAA,iBACA,UAAA;cAEL,OAAA,EAAS,eAAA;EDLrB;;;;;;;;;ECqBM,OAAA,IAAW,IAAA,UAAc,IAAA,EAAM,WAAA,GAAc,OAAA,CAAQ,CAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;cCChD,aAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;EFN7B;;;;;;;EEkBT,OAAA,CACJ,QAAA,UACA,MAAA,EAAQ,mBAAA,GACP,OAAA,CAAQ,oBAAA;EFGX;;;AAKiB;AAInB;;;EEMQ,MAAA,CACJ,QAAA,UACA,MAAA,EAAQ,kBAAA,GACP,OAAA,CAAQ,oBAAA;EAAA,QAMG,MAAA;AAAA;;;AF5EhB;;;;;;;AAAA,cGwBa,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,UAAA;EAAA,QACT,IAAA;EAAA,QACA,SAAA;cAEI,OAAA,EAAS,eAAA;EHVrB;;;;;;;;;;;AAI6C;EGuBvC,WAAA,CAAY,KAAA,WAAgB,OAAA,CAAQ,kBAAA;EHnBV;;;;;;EG+G1B,WAAA,IAAe,OAAA;EAAA,QASb,aAAA;EAAA,QASA,OAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;AHrIqC;AAI/C;;;;;;;;;;cIuBa,mBAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;;;;;;;;;;;;;EAiBtC,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJWV;;AAAW;AAId;;;;;;;;EIQQ,kBAAA,CACJ,MAAA,EAAQ,oCAAA,GACP,OAAA,CAAQ,uBAAA;EJFI;AAIjB;;;;;;;;;;;;EImBQ,MAAA,CAAO,MAAA,EAAQ,wBAAA,GAA2B,OAAA,CAAQ,gBAAA;EJPlD;AAIR;;;;;;;;AAIiB;AAIjB;;EI4BQ,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJ5Ba;;;;;;;EIiDlB,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA,CAAQ,gBAAA;EJ/CO;AAKpB;;;;;;;EIgEQ,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA;IAAU,OAAA;EAAA;EJjDb;EAAA,QI0Dc,IAAA;AAAA;;;cCnMH,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;ELEP;;;;;;;;;;;;;;;;;;;EKsB/B,IAAA,CAAK,MAAA,EAAQ,iBAAA,GAAoB,OAAA,CAAQ,eAAA;ELlBhC;;;;;;EKgDf,MAAA,CAAO,MAAA,EAAQ,mBAAA;EL9Bf;;;;AAWiB;AAInB;;EKoCE,aAAA,CAAc,MAAA,EAAQ,mBAAA;ELpCW;;;;;;;;;EKmDjC,cAAA,CAAe,MAAA,EAAQ,mBAAA,GAAsB,qBAAA;EL/B7C;;;;AAIY;AAId;;;;EK6CE,iBAAA,CAAkB,MAAA,EAAQ,uBAAA,GAA0B,gBAAA;AAAA;;;;;;;;;;;;;;;;;;cC5GzC,UAAA;ENFG;EAAA,SMIE,QAAA,EAAU,cAAA;ENJC;EAAA,SMMX,OAAA,EAAS,aAAA;ENNoB;EAAA,SMQ7B,aAAA,EAAe,mBAAA;ENJC;EAAA,SMMhB,QAAA,EAAU,cAAA;ENNM;;;;cMYpB,OAAA,GAAS,iBAAA;AAAA;;;;ANxCvB;;;cOGa,eAAA,SAAwB,KAAK;cAC5B,OAAA;AAAA;;;;;cAWD,kBAAA,SAA2B,eAAe;cACzC,OAAA;AAAA;;;;;;;;;cAeD,SAAA,SAAkB,eAAe;EAAA,SAC5B,UAAA;EAAA,SACA,YAAA;EAAA,SACA,GAAA;cAEJ,UAAA,UAAoB,YAAA,UAAsB,GAAA;AAAA;;cAW3C,YAAA,SAAqB,eAAe;cACnC,GAAA,UAAa,OAAA;AAAA;;cAQd,qBAAA,SAA8B,eAAe;cAC5C,OAAA;AAAA;;KAQF,uBAAA;APJZ;;;;;AAAA,cOqBa,iBAAA,SAA0B,eAAA;EAAA,SACrB,MAAA,EAAQ,uBAAA;cAEZ,MAAA,EAAQ,uBAAA,EAAyB,OAAA;AAAA;;KASnC,4BAAA;;;;;cAYC,sBAAA,SAA+B,eAAA;EAAA,SAC1B,MAAA,EAAQ,4BAAA;cAEZ,MAAA,EAAQ,4BAAA,EAA8B,OAAA;AAAA;;;AP7GpD;;;;;;;;;;;;;;;;;;;;;;;;AAwB+C;AAxB/C,iBQ+BgB,sBAAA,CACd,MAAA,EAAQ,4BAAA,GACP,wBAAwB;;;;;;;iBAqBX,kBAAA,CAAmB,KAAA;EACjC,iBAAiB;AAAA"}

package/dist/index.d.mts

@@ -137,8 +137,111 @@ interface WebhookResponse {
   /** `true` if an action with the same `externalId` already existed (idempotency). */
   alreadyExists?: boolean;
   skipped?: boolean;
+  /**
+   * `true` when AgentPress accepted the event (HTTP 202) but could not create
+   * an action yet — e.g. no action rule configured, the rule is disabled, or
+   * the user could not be resolved. The event is buffered durably and
+   * auto-processes once an operator fixes the configuration. No `actionId`
+   * is returned in this case; use {@link eventId} to correlate.
+   */
+  buffered?: boolean;
+  /** UUID of the buffered `webhook_events` row (present when `buffered` is `true`). */
+  eventId?: string;
+  /** Machine-readable reason the event was buffered (e.g. `"no_action_rule_configured"`). */
+  reason?: string;
   data?: Record<string, unknown>;
 }
+/** Parameters for {@link signHmacWebhookRequest}. */
+interface SignHmacWebhookRequestParams {
+  /** The webhook listener's shared secret. */
+  secret: string;
+  /**
+   * The exact raw request body string that will be sent. The signature is
+   * computed over `"${timestamp}.${rawBody}"`, so any re-serialization after
+   * signing invalidates it.
+   */
+  rawBody: string;
+  /** Unix timestamp in seconds. @default now */
+  timestamp?: number;
+}
+/** Signed headers returned by {@link signHmacWebhookRequest}. */
+interface SignedHmacWebhookRequest {
+  /** Headers to attach to the outbound HTTP request. */
+  headers: {
+    /** Unix timestamp (seconds) the signature was computed for. */"x-webhook-timestamp": string; /** `v1=<hex HMAC-SHA256 of "${timestamp}.${rawBody}">`. */
+    "x-webhook-signature": string;
+  };
+}
+/**
+ * Verification scheme for an inbound webhook listener
+ * (`POST /webhooks/ingest/:org/:identifier`).
+ *
+ * - `"svix"` — Svix-style signing (`svix-id` / `svix-timestamp` / `svix-signature`).
+ * - `"hmac_sha256"` — `x-webhook-timestamp` + `x-webhook-signature` headers;
+ *   sign with {@link signHmacWebhookRequest}.
+ * - `"shared_token"` — `Authorization: Bearer <token>` or `x-webhook-token`;
+ *   build with {@link sharedTokenHeaders}.
+ * - `"none"` — capability URL: the unguessable random suffix appended to the
+ *   endpoint identifier at creation time is the credential.
+ */
+type WebhookVerificationScheme = "svix" | "hmac_sha256" | "shared_token" | "none";
+/** Environment label for an inbound webhook listener. */
+type WebhookEnvironment = "dev" | "sandbox" | "prod";
+/** Per-listener routing configuration ({@link IWebhookListenerConfig.routingConfig}). */
+interface IWebhookListenerRoutingConfig {
+  /** Event types to skip (marked `skipped`, never dispatched to an agent). */
+  ignoredEventTypes?: string[];
+  /**
+   * `"route"` dispatches buffered events to the target agent;
+   * `"buffer_only"` accepts + logs events but skips agent dispatch.
+   */
+  mode?: "route" | "buffer_only";
+  /** Retention window in days for processed/skipped events. */
+  retentionDays?: number;
+  /** Sender IPs allowed to hit the ingest endpoint. Empty/omitted = all. */
+  ipAllowlist?: string[];
+  /**
+   * Webhook-specific guidance appended to the agent prompt on every
+   * dispatched event (payload shapes, which tools to call, etc.).
+   */
+  instructions?: string;
+  /** Ingest quota for this listener. Defaults to 100, capped at 1000. */
+  rateLimitPerMinute?: number;
+}
+/**
+ * An inbound webhook listener as configured in AgentPress. Listeners receive
+ * external events on `POST /webhooks/ingest/:org/:identifier`, buffer them
+ * durably, and route them into actions for the target agent.
+ */
+interface IWebhookListenerConfig {
+  /** Human-readable display name. */
+  name: string;
+  /** Stable slug used in the ingest URL path. */
+  identifier: string;
+  /** How inbound requests are authenticated. */
+  verificationScheme: WebhookVerificationScheme;
+  /** Environment label for the listener. */
+  environment: WebhookEnvironment;
+  /** Disabled listeners reject inbound events at the edge. */
+  enabled: boolean;
+  /** Agent on the listener's default action rule (quick-setup path). */
+  targetAgentId: string | null;
+  /** Fallback user actions run as when the payload does not resolve one. */
+  runAsUserId: string | null;
+  /** Routing, retention, and rate-limit configuration. */
+  routingConfig: IWebhookListenerRoutingConfig;
+}
+/**
+ * An action rule's listen subscription. Rules that subscribe to a listening
+ * webhook receive its buffered events in addition to the webhook's default
+ * rule, so one listening URL can fan out to several rules.
+ */
+interface IActionRuleListenSubscription {
+  /** Webhook listener this rule subscribes to; `null` = no subscription. */
+  listenWebhookId: string | null;
+  /** Event types to receive; empty array = all event types. */
+  listenEventTypes: string[];
+}
 /** Action lifecycle event types emitted by AgentPress. */
 type ActionEventType = "action.pending_approval" | "action.approved" | "action.completed" | "action.failed" | "action.rejected" | "action.expired";
 /** All public action callback event types emitted by AgentPress. */
@@ -677,6 +780,17 @@ declare class WebhooksClient {
    * Send an arbitrary webhook payload to AgentPress.
    * Signs the payload with HMAC-SHA256 (Svix-compatible).
    *
+   * On the happy path the response is synchronous: `{ success: true,
+   * actionId, data }`, or `{ success, actionId, alreadyExists: true, data }`
+   * when an action with the same `externalId` already existed (idempotency).
+   *
+   * Configuration/resolution failures (no action rule configured, rule
+   * disabled, user unresolved, action insert failure) do NOT throw — the
+   * event is buffered durably and AgentPress responds **202** with
+   * `{ success: true, buffered: true, eventId, reason }`. The event
+   * auto-processes once an operator fixes the configuration, so check
+   * {@link WebhookResponse.buffered} before relying on `actionId`.
+   *
    * @throws ConfigurationError if webhookSecret is not configured
    * @throws HttpError on non-2xx response
    * @throws TimeoutError if request exceeds timeout
@@ -810,5 +924,42 @@ declare class KeyRotationVerifyError extends AgentPressError {
   constructor(reason: KeyRotationVerifyErrorReason, message: string);
 }
 //#endregion
-export { ACTION_EVENT_TYPES, type ActionCallbackPayload, type ActionEventType, type ActionManageResponse, type ActionStatus, ActionsClient, AgentPress, AgentPressError, type AgentPressOptions, type AgentResponse, type ApprovalMode, type ApprovalRuleSyncMode, type ApproveActionParams, ConfigurationError, type CreateUserApprovalParams, type DeleteUserApprovalParams, type GetUserApprovalWebhookMetadataParams, HttpError, type KeyRotationEvent, KeyRotationVerifyError, type KeyRotationVerifyErrorReason, type KeyRotationVerifyParams, type ListUserApprovalsParams, type ListUserApprovalsResponse, type PartnerMcpOptions, type PartnerTokenClaims, PartnerTokenError, type PartnerTokenErrorReason, PartnersClient, type RejectActionParams, type StagedToolCall, type StagedToolCallSummary, type SyncUserApprovalRule, type SyncUserApprovalsParams, type SyncUserApprovalsResponse, TimeoutError, type ToolCallResult, type UpdateUserApprovalParams, UserApprovalsClient, type UserToolApproval, type WebhookApprovalMetadata, type WebhookApprovalToolMetadata, type WebhookResponse, type WebhookSendParams, WebhookSignatureError, type WebhookVerifyParams, WebhooksClient };
+//#region src/webhooks/ingestSigning.d.ts
+/**
+ * Sign an outbound request for an AgentPress inbound webhook listener that
+ * uses the `hmac_sha256` verification scheme
+ * (`POST /webhooks/ingest/:org/:identifier`).
+ *
+ * Produces the two headers AgentPress verifies:
+ *
+ * - `x-webhook-timestamp` — unix seconds; AgentPress rejects timestamps more
+ *   than 5 minutes from its own clock.
+ * - `x-webhook-signature` — `v1=<hex HMAC-SHA256 of "${timestamp}.${rawBody}">`.
+ *
+ * Send the exact `rawBody` string you signed — any re-serialization after
+ * signing (re-ordered keys, whitespace changes) invalidates the signature.
+ *
+ * @example
+ * ```ts
+ * const rawBody = JSON.stringify({ eventType: "review.created", data: {...} });
+ * const { headers } = signHmacWebhookRequest({ secret, rawBody });
+ * await fetch(ingestUrl, {
+ *   method: "POST",
+ *   body: rawBody,
+ *   headers: { "content-type": "application/json", ...headers },
+ * });
+ * ```
+ */
+declare function signHmacWebhookRequest(params: SignHmacWebhookRequestParams): SignedHmacWebhookRequest;
+/**
+ * Build the auth header for an AgentPress inbound webhook listener that uses
+ * the `shared_token` verification scheme. AgentPress also accepts
+ * `Authorization: Bearer <token>`; this helper uses the dedicated
+ * `x-webhook-token` header so it never collides with other auth middleware.
+ */
+declare function sharedTokenHeaders(token: string): {
+  "x-webhook-token": string;
+};
+//#endregion
+export { ACTION_EVENT_TYPES, type ActionCallbackPayload, type ActionEventType, type ActionManageResponse, type ActionStatus, ActionsClient, AgentPress, AgentPressError, type AgentPressOptions, type AgentResponse, type ApprovalMode, type ApprovalRuleSyncMode, type ApproveActionParams, ConfigurationError, type CreateUserApprovalParams, type DeleteUserApprovalParams, type GetUserApprovalWebhookMetadataParams, HttpError, type IActionRuleListenSubscription, type IWebhookListenerConfig, type IWebhookListenerRoutingConfig, type KeyRotationEvent, KeyRotationVerifyError, type KeyRotationVerifyErrorReason, type KeyRotationVerifyParams, type ListUserApprovalsParams, type ListUserApprovalsResponse, type PartnerMcpOptions, type PartnerTokenClaims, PartnerTokenError, type PartnerTokenErrorReason, PartnersClient, type RejectActionParams, type SignHmacWebhookRequestParams, type SignedHmacWebhookRequest, type StagedToolCall, type StagedToolCallSummary, type SyncUserApprovalRule, type SyncUserApprovalsParams, type SyncUserApprovalsResponse, TimeoutError, type ToolCallResult, type UpdateUserApprovalParams, UserApprovalsClient, type UserToolApproval, type WebhookApprovalMetadata, type WebhookApprovalToolMetadata, type WebhookEnvironment, type WebhookResponse, type WebhookSendParams, WebhookSignatureError, type WebhookVerificationScheme, type WebhookVerifyParams, WebhooksClient, sharedTokenHeaders, signHmacWebhookRequest };
 //# sourceMappingURL=index.d.mts.map

package/dist/index.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.mts","names":[],"sources":["../src/types.ts","../src/http.ts","../src/actions/client.ts","../src/partners/client.ts","../src/userApprovals/client.ts","../src/webhooks/client.ts","../src/client.ts","../src/errors.ts"],"mappings":";;UACiB,iBAAA;EAAiB;EAEhC,aAAA;EAkBa;EAhBb,MAAA;EAoBqC;EAlBrC,OAAA;EAkB6C;EAhB7C,OAAA;EAJA;EAMA,GAAA;EAFA;;;;;;;;;EAYA,UAAA,GAAa,iBAAA;EAIwB;EAFrC,SAAA,IAAa,GAAA,UAAa,IAAA,EAAM,WAAA;EAEa;EAA7C,UAAA,IAAc,GAAA,UAAa,QAAA,EAAU,QAAA;AAAA;;UAItB,iBAAA;EAAiB;;;;;;;EAQhC,OAAA;EAqBiB;AAInB;;;;EAnBE,MAAA;EAuBA;EArBA,QAAA;EAyBA;EAvBA,mBAAA;EA2BA;;;;;EArBA,cAAA;EAiCC;;AAAW;AAId;EAhCE,iBAAA;AAAA;;UAIe,kBAAA;EA8BG;EA5BlB,GAAA;EAkCS;EAhCT,KAAA;EAgCe;EA9Bf,YAAA;EAkC+B;EAhC/B,GAAA;EAgC+B;EA9B/B,GAAA;EAgCA;EA9BA,GAAA;EAgCA;EA9BA,GAAA;EAkCA;EAhCA,GAAA;EAoCA;EAlCA,MAAA;EAkCM;EAhCN,SAAA;EAoCgC;EAlChC,WAAA;EAsCe;EAAA,CApCd,GAAA;AAAA;;UAIc,uBAAA;EAgCA;EA9Bf,OAAA,WAAkB,MAAA;EAkCgB;;;;;EA5BlC,OAAA,EAAS,MAAM;AAAA;;UAIA,gBAAA;EACf,KAAA;EACA,IAAA;EACA,UAAA;EACA,aAAA;;EAEA,SAAA;EA+BA;EA7BA,WAAA;EAiCA;EA/BA,OAAA;EAiCA;EA/BA,MAAA;AAAA;AA+Ba;AAAA,UA3BE,iBAAA;EAiCU;EA/BzB,MAAA;EA+ByB;EA7BzB,OAAA,EAAS,MAAM;AAAA;;UAIA,mBAAA;EAkCwC;EAhCvD,OAAA,WAAkB,MAAM;EA0CT;EAxCf,OAAA;IACE,SAAA;IACA,gBAAA;IACA,gBAAA;EAAA;AAAA;;UAKa,eAAA;EACf,OAAA;EAyCA;EAvCA,QAAA;EAwCW;EAtCX,aAAA;EACA,OAAA;EACA,IAAA,GAAO,MAAM;AAAA;AA6Cf;AAAA,KAvCY,eAAA;;cASC,kBAAA,WAA6B,eAAe;;UAUxC,qBAAA;EAyBb;EAvBF,KAAA;EAwBa;EAtBb,MAAM;AAAA;AAgCE;AAAA,UA5BO,cAAA;EACf,QAAA;EACA,UAAA;EACA,SAAA,EAAW,MAAA;EAiCL;AAIR;;;EAhCE,OAAA,YAAmB,qBAAqB;AAAA;;UAIzB,mBAAA;EA+BP;EA7BR,MAAA;EA6BoB;EA3BpB,cAAA;IACE,QAAA;IACA,SAAA,EAAW,MAAM;EAAA;EA+BG;AAWxB;;;;;;;EAhCE,QAAA;AAAA;AAmCM;AAAA,UA/BS,kBAAA;EAmCa;EAjC5B,MAAA;EAqCyB;EAnCzB,MAAM;AAAA;;UAIS,oBAAA;EACf,OAAA;EACA,QAAA;EACA,MAAA,EAAQ,YAAY;AAAA;;KAMV,YAAA;;UAWK,cAAA;EACf,QAAA;EACA,SAAA,EAAW,MAAM;EACjB,MAAA;AAAA;;UAIe,aAAA;EAcf;EAZA,IAAA;EAcW;EAZX,SAAA,EAAW,cAAc;AAAA;;;;;UAOV,qBAAA;EACf,QAAA;EACA,MAAA,EAAQ,YAAA;EACR,UAAA;EAoBA;EAlBA,SAAA,EAAW,eAAA;EAoBI;EAlBf,aAAA;EAyBA;EAvBA,cAAA,EAAgB,cAAA;EAyBd;EAvBF,UAAA;EAyBE;EAvBF,WAAA;EA4BC;EA1BD,aAAA;EA0BY;EAxBZ,UAAA,EAAY,MAAA;EA8BU;EA5BtB,UAAA;EA4BsB;EA1BtB,MAAA;EAiCU;EA/BV,QAAA;;EAEA,aAAA,EAAe,aAAA;EA6Be;EA3B9B,YAAA;EAkC+B;;;;EA7B/B,YAAA;IACE,IAAA;IACA,QAAA;IACA,WAAA;IACA,WAAA;EAAA;EAiCF;EA9BA,eAAA;EAkCA;EAAA,CAhCC,GAAA;AAAA;AAoCH;AAAA,KA9BY,YAAA;;;;;;KAOA,oBAAA;AAuCE;AAId;;;;AAJc,UAhCG,gBAAA;EACf,EAAA;EACA,KAAA;EACA,MAAA;EACA,eAAA;EACA,QAAA;EACA,IAAA,EAAM,YAAY;EAyClB;EAvCA,SAAA;EA2CA;EAzCA,SAAA;EAyCa;EAvCb,SAAA;AAAA;;UAIe,uBAAA;EAyCf;EAvCA,iBAAA;EA2CA;;;;;;EApCA,MAAA;EAgDA;;AAAS;AAIX;;;EA7CE,YAAA;AAAA;;UAIe,yBAAA;EACf,SAAA,EAAW,gBAAgB;AAAA;;UAIZ,2BAAA;EAgEf;EA9DA,QAAA;EA8DgB;EA5DhB,KAAA;EAgEe;EA9Df,WAAA;;EAEA,eAAA;EA8DA;EA5DA,aAAA;AAAA;;UAIe,uBAAA;EA0DC;EAxDhB,EAAA;EA4De;EA1Df,eAAA;;EAEA,iBAAA;EA0DiB;EAxDjB,WAAA;EA4DmD;EA1DnD,IAAA;EA4DiB;EA1DjB,KAAA;EA6De;EA3Df,mBAAA;;EAEA,cAAA,EAAgB,2BAA2B;EA2D3C;EAzDA,SAAA;AAAA;;UAIe,wBAAA;EA2DA;EAzDf,iBAAA;;;;;;EAMA,MAAA;EAqEO;;AAAoB;AAG7B;;;;EAhEE,YAAA;EAkEW;;;;;EA5DX,eAAA;EAuEE;EArEF,QAAA;EAwEkB;EAtElB,IAAA,GAAO,YAAA;EA0EQ;EAxEf,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;EA4EF;EA1Eb,iBAAA;EACA,IAAA,GAAO,YAAA;EACP,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;EAiEf;EA/DA,iBAAiB;AAAA;;UAIF,oCAAA;EA8Df;EA5DA,iBAAiB;AAAA;AAAA,UAGF,oBAAA;EA6DA;EA3Df,QAAA;;EAEA,IAAA,EAAM,oBAAoB;AAAA;;UAIX,uBAAA;EAyDf;EAvDA,iBAAA;EAyDA;;AAAiB;;EApDjB,MAAA;;ACpcF;;;;ED0cE,YAAA;ECpb2D;;;;EDyb3D,KAAA,EAAO,oBAAoB;AAAA;AAAA,UAGZ,yBAAA;EC9cE;EDgdjB,SAAA,EAAW,gBAAgB;EAC3B,OAAA;IC/cY,4EDidV,SAAA,UCjcY;IDmcZ,QAAA,UCncmC;IDqcnC,OAAA,UCrciD;IDucjD,SAAA,UCvc0D;IDyc1D,aAAA;EAAA;;EAGF,kBAAA;AAAA;;UAIe,eAAA;EACf,OAAA;EACA,OAAA;EACA,GAAA;EACA,aAAA;EACA,MAAA;EACA,UAAA,GAAa,yBAAA;EACb,SAAA,GAAY,iBAAA;EACZ,UAAA,GAAa,iBAAA;AAAA;;UAIE,yBAAA;EACf,OAAA;EACA,MAAA;EACA,QAAA;EACA,mBAAA;EACA,cAAA;EACA,iBAAA;AAAA;;;AA/fF;;;;;AAAA,cCOa,UAAA;EAAA,iBACM,OAAA;EAAA,iBACA,OAAA;EAAA,iBACA,SAAA;EAAA,iBACA,UAAA;cAEL,OAAA,EAAS,eAAA;EDLrB;;;;;;;;;ECqBM,OAAA,IAAW,IAAA,UAAc,IAAA,EAAM,WAAA,GAAc,OAAA,CAAQ,CAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;cCChD,aAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;EFN7B;;;;;;;EEkBT,OAAA,CACJ,QAAA,UACA,MAAA,EAAQ,mBAAA,GACP,OAAA,CAAQ,oBAAA;EFGX;;;AAKiB;AAInB;;;EEMQ,MAAA,CACJ,QAAA,UACA,MAAA,EAAQ,kBAAA,GACP,OAAA,CAAQ,oBAAA;EAAA,QAMG,MAAA;AAAA;;;AF5EhB;;;;;;;AAAA,cGwBa,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,UAAA;EAAA,QACT,IAAA;EAAA,QACA,SAAA;cAEI,OAAA,EAAS,eAAA;EHVrB;;;;;;;;;;;AAI6C;EGuBvC,WAAA,CAAY,KAAA,WAAgB,OAAA,CAAQ,kBAAA;EHnBV;;;;;;EG+G1B,WAAA,IAAe,OAAA;EAAA,QASb,aAAA;EAAA,QASA,OAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;AHrIqC;AAI/C;;;;;;;;;;cIuBa,mBAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;;;;;;;;;;;;;EAiBtC,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJWV;;AAAW;AAId;;;;;;;;EIQQ,kBAAA,CACJ,MAAA,EAAQ,oCAAA,GACP,OAAA,CAAQ,uBAAA;EJFI;AAIjB;;;;;;;;;;;;EImBQ,MAAA,CAAO,MAAA,EAAQ,wBAAA,GAA2B,OAAA,CAAQ,gBAAA;EJPlD;AAIR;;;;;;;;AAIiB;AAIjB;;EI4BQ,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJ5Ba;;;;;;;EIiDlB,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA,CAAQ,gBAAA;EJ/CO;AAKpB;;;;;;;EIgEQ,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA;IAAU,OAAA;EAAA;EJ5DA;EAAA,QIqEC,IAAA;AAAA;;;cCnMH,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;ELEP;;;;;;;;EKW/B,IAAA,CAAK,MAAA,EAAQ,iBAAA,GAAoB,OAAA,CAAQ,eAAA;ELflC;;;;;;EK6Cb,MAAA,CAAO,MAAA,EAAQ,mBAAA;ELzCsB;;;AAAQ;AAI/C;;;EK0DE,aAAA,CAAc,MAAA,EAAQ,mBAAA;ELlDtB;;;;;;;AAqBiB;AAInB;EKwCE,cAAA,CAAe,MAAA,EAAQ,mBAAA,GAAsB,qBAAA;;;;;;;;;;EAsB7C,iBAAA,CAAkB,MAAA,EAAQ,uBAAA,GAA0B,gBAAA;AAAA;;;;;;;;;;;;;;;;;;cCjGzC,UAAA;ENFG;EAAA,SMIE,QAAA,EAAU,cAAA;ENJC;EAAA,SMMX,OAAA,EAAS,aAAA;ENNoB;EAAA,SMQ7B,aAAA,EAAe,mBAAA;ENJC;EAAA,SMMhB,QAAA,EAAU,cAAA;ENNM;;;;cMYpB,OAAA,GAAS,iBAAA;AAAA;;;;ANxCvB;;;cOGa,eAAA,SAAwB,KAAK;cAC5B,OAAA;AAAA;;;;;cAWD,kBAAA,SAA2B,eAAe;cACzC,OAAA;AAAA;;;;;;;;;cAeD,SAAA,SAAkB,eAAe;EAAA,SAC5B,UAAA;EAAA,SACA,YAAA;EAAA,SACA,GAAA;cAEJ,UAAA,UAAoB,YAAA,UAAsB,GAAA;AAAA;;cAW3C,YAAA,SAAqB,eAAe;cACnC,GAAA,UAAa,OAAA;AAAA;;cAQd,qBAAA,SAA8B,eAAe;cAC5C,OAAA;AAAA;;KAQF,uBAAA;APJZ;;;;;AAAA,cOqBa,iBAAA,SAA0B,eAAA;EAAA,SACrB,MAAA,EAAQ,uBAAA;cAEZ,MAAA,EAAQ,uBAAA,EAAyB,OAAA;AAAA;;KASnC,4BAAA;;;;;cAYC,sBAAA,SAA+B,eAAA;EAAA,SAC1B,MAAA,EAAQ,4BAAA;cAEZ,MAAA,EAAQ,4BAAA,EAA8B,OAAA;AAAA"}
+{"version":3,"file":"index.d.mts","names":[],"sources":["../src/types.ts","../src/http.ts","../src/actions/client.ts","../src/partners/client.ts","../src/userApprovals/client.ts","../src/webhooks/client.ts","../src/client.ts","../src/errors.ts","../src/webhooks/ingestSigning.ts"],"mappings":";;UACiB,iBAAA;EAAiB;EAEhC,aAAA;EAkBa;EAhBb,MAAA;EAoBqC;EAlBrC,OAAA;EAkB6C;EAhB7C,OAAA;EAJA;EAMA,GAAA;EAFA;;;;;;;;;EAYA,UAAA,GAAa,iBAAA;EAIwB;EAFrC,SAAA,IAAa,GAAA,UAAa,IAAA,EAAM,WAAA;EAEa;EAA7C,UAAA,IAAc,GAAA,UAAa,QAAA,EAAU,QAAA;AAAA;;UAItB,iBAAA;EAAiB;;;;;;;EAQhC,OAAA;EAqBiB;AAInB;;;;EAnBE,MAAA;EAuBA;EArBA,QAAA;EAyBA;EAvBA,mBAAA;EA2BA;;;;;EArBA,cAAA;EAiCC;;AAAW;AAId;EAhCE,iBAAA;AAAA;;UAIe,kBAAA;EA8BG;EA5BlB,GAAA;EAkCS;EAhCT,KAAA;EAgCe;EA9Bf,YAAA;EAkC+B;EAhC/B,GAAA;EAgC+B;EA9B/B,GAAA;EAgCA;EA9BA,GAAA;EAgCA;EA9BA,GAAA;EAkCA;EAhCA,GAAA;EAoCA;EAlCA,MAAA;EAkCM;EAhCN,SAAA;EAoCgC;EAlChC,WAAA;EAsCe;EAAA,CApCd,GAAA;AAAA;;UAIc,uBAAA;EAgCA;EA9Bf,OAAA,WAAkB,MAAA;EAkCgB;;;;;EA5BlC,OAAA,EAAS,MAAM;AAAA;;UAIA,gBAAA;EACf,KAAA;EACA,IAAA;EACA,UAAA;EACA,aAAA;;EAEA,SAAA;EA+BA;EA7BA,WAAA;EAiCA;EA/BA,OAAA;EAwCA;EAtCA,MAAA;AAAA;;UAIe,iBAAA;EAuCF;EArCb,MAAA;EA2Ce;EAzCf,OAAA,EAAS,MAAM;AAAA;;UAIA,mBAAA;EA6Cf;EA3CA,OAAA,WAAkB,MAAM;EA6Cf;EA3CT,OAAA;IACE,SAAA;IACA,gBAAA;IACA,gBAAA;EAAA;AAAA;;UAKa,eAAA;EACf,OAAA;EA4CuB;EA1CvB,QAAA;EA4DmC;EA1DnC,aAAA;EACA,OAAA;EAyDmC;AAOrC;;;;AAA8B;AAG9B;EA3DE,QAAA;;EAEA,OAAA;EA2DA;EAzDA,MAAA;EACA,IAAA,GAAO,MAAM;AAAA;;UAME,4BAAA;EAkEG;EAhElB,MAAA;EAwEe;;;;;EAlEf,OAAA;EAkF4C;EAhF5C,SAAA;AAAA;;UAIe,wBAAA;EAkEK;EAhEpB,OAAA;IAkEa,+DAhEX,qBAAA,UAoEF;IAlEE,qBAAA;EAAA;AAAA;;AAsE0C;AAQ9C;;;;AAIkB;AAMlB;;;;AAA2B;KAtEf,yBAAA;;KAOA,kBAAA;;UAGK,6BAAA;EA+EA;EA7Ef,iBAAA;;;AAiFM;AAIR;EAhFE,IAAA;;EAEA,aAAA;EA+EA;EA7EA,WAAA;EA+EA;;;;EA1EA,YAAA;EA+EwC;EA7ExC,kBAAA;AAAA;;;;;;UAQe,sBAAA;EA+EF;EA7Eb,IAAA;EAuFQ;EArFR,UAAA;EAyFe;EAvFf,kBAAA,EAAoB,yBAAA;;EAEpB,WAAA,EAAa,kBAAA;EAyFP;EAvFN,OAAA;EA2FmC;EAzFnC,aAAA;EA4FoB;EA1FpB,WAAA;EAyFA;EAvFA,aAAA,EAAe,6BAAA;AAAA;;AAwFK;AAMtB;;;UAtFiB,6BAAA;EAsFO;EApFtB,eAAA;EA+F6B;EA7F7B,gBAAgB;AAAA;;KAMN,eAAA;;cASC,kBAAA,WAA6B,eAAe;;UAUxC,qBAAA;EA2EA;EAzEf,KAAA;;EAEA,MAAM;AAAA;;UAIS,cAAA;EACf,QAAA;EACA,UAAA;EACA,SAAA,EAAW,MAAA;EA2EyB;;;;EAtEpC,OAAA,YAAmB,qBAAqB;AAAA;;UAIzB,mBAAA;EA2Fa;EAzF5B,MAAA;EAkEA;EAhEA,cAAA;IACE,QAAA;IACA,SAAA,EAAW,MAAM;EAAA;EAmEnB;;;;;;;;EAzDA,QAAA;AAAA;;UAIe,kBAAA;EAuEA;EArEf,MAAA;EA4EA;EA1EA,MAAM;AAAA;;UAIS,oBAAA;EACf,OAAA;EACA,QAAA;EACA,MAAA,EAAQ,YAAY;AAAA;AAkFtB;AAAA,KA5EY,YAAA;;UAWK,cAAA;EACf,QAAA;EACA,SAAA,EAAW,MAAM;EACjB,MAAA;AAAA;;UAIe,aAAA;EAwEA;EAtEf,IAAA;;EAEA,SAAA,EAAW,cAAc;AAAA;;;;;UAOV,qBAAA;EACf,QAAA;EACA,MAAA,EAAQ,YAAA;EACR,UAAA;EAsEA;EApEA,SAAA,EAAW,eAAA;EAoEF;EAlET,aAAA;EAsEsC;EApEtC,cAAA,EAAgB,cAAA;EAoEsB;EAlEtC,UAAA;EA2EA;EAzEA,WAAA;EAgFY;EA9EZ,aAAA;EAkFe;EAhFf,UAAA,EAAY,MAAA;;EAEZ,UAAA;EA+E2B;EA7E3B,MAAA;EAiF0C;EA/E1C,QAAA;EA+E0C;EA7E1C,aAAA,EAAe,aAAA;EAiFf;EA/EA,YAAA;EAmFA;;;AAEa;EAhFb,YAAA;IACE,IAAA;IACA,QAAA;IACA,WAAA;IACA,WAAA;EAAA;EAsFF;EAnFA,eAAA;EAuFA;EAAA,CArFC,GAAA;AAAA;;KAMS,YAAA;;;AAuFD;AAIX;;KApFY,oBAAA;;;;;;UAOK,gBAAA;EACf,EAAA;EACA,KAAA;EACA,MAAA;EACA,eAAA;EACA,QAAA;EACA,IAAA,EAAM,YAAY;EAuGH;EArGf,SAAA;;EAEA,SAAA;EAqGA;EAnGA,SAAA;AAAA;;UAIe,uBAAA;EAiGC;EA/FhB,iBAAA;EAmGe;;;;AAEE;AAInB;EAlGE,MAAA;;;AAoGiB;AAGnB;;;EAhGE,YAAA;AAAA;;UAIe,yBAAA;EACf,SAAA,EAAW,gBAAgB;AAAA;AAmG7B;AAAA,UA/FiB,2BAAA;;EAEf,QAAA;EA+FA;EA7FA,KAAA;EAwGA;EAtGA,WAAA;EA2GO;EAzGP,eAAA;EAyG2B;EAvG3B,aAAA;AAAA;;UAIe,uBAAA;EAwGf;EAtGA,EAAA;EAuGA;EArGA,eAAA;EAyGE;EAvGF,iBAAA;EA2GE;EAzGF,WAAA;EA8GA;EA5GA,IAAA;EA4GkB;EA1GlB,KAAA;EA8G8B;EA5G9B,mBAAA;EAkHa;EAhHb,cAAA,EAAgB,2BAA2B;EAkH9B;EAhHb,SAAA;AAAA;;UAIe,wBAAA;EAuGf;EArGA,iBAAA;EAuGA;;;;;EAjGA,MAAA;EAoGa;;AAAiB;AAIhC;;;;EAhGE,YAAA;EAkGA;;;;;EA5FA,eAAA;EAgGiB;EA9FjB,QAAA;;EAEA,IAAA,GAAO,YAAA;ECphBI;EDshBX,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;ECpgB4C;EDsgB3D,iBAAA;EACA,IAAA,GAAO,YAAA;EACP,SAAA,GAAY,IAAI;AAAA;;UAID,wBAAA;EC9hBE;EDgiBjB,iBAAiB;AAAA;;UAIF,oCAAA;EClhBD;EDohBd,iBAAiB;AAAA;AAAA,UAGF,oBAAA;ECvhBoC;EDyhBnD,QAAA;ECzhB4D;ED2hB5D,IAAA,EAAM,oBAAoB;AAAA;;UAIX,uBAAA;EE9hBJ;EFgiBX,iBAAA;;;;;EAKA,MAAA;EElhBG;;;;;EFwhBH,YAAA;EE1iBiB;;;;EF+iBjB,KAAA,EAAO,oBAAoB;AAAA;AAAA,UAGZ,yBAAA;EEniBT;EFqiBN,SAAA,EAAW,gBAAgB;EAC3B,OAAA;IEpiBE,4EFsiBA,SAAA,UEriBS;IFuiBT,QAAA,UEphBA;IFshBA,OAAA,UErhBA;IFuhBA,SAAA,UEthBS;IFwhBT,aAAA;EAAA;EElhBkB;EFqhBpB,kBAAA;AAAA;;UAIe,eAAA;EACf,OAAA;EACA,OAAA;EACA,GAAA;EACA,aAAA;EACA,MAAA;EACA,UAAA,GAAa,yBAAA;EACb,SAAA,GAAY,iBAAA;EACZ,UAAA,GAAa,iBAAA;AAAA;;UAIE,yBAAA;EACf,OAAA;EACA,MAAA;EACA,QAAA;EACA,mBAAA;EACA,cAAA;EACA,iBAAA;AAAA;;;AAvnBF;;;;;AAAA,cCOa,UAAA;EAAA,iBACM,OAAA;EAAA,iBACA,OAAA;EAAA,iBACA,SAAA;EAAA,iBACA,UAAA;cAEL,OAAA,EAAS,eAAA;EDLrB;;;;;;;;;ECqBM,OAAA,IAAW,IAAA,UAAc,IAAA,EAAM,WAAA,GAAc,OAAA,CAAQ,CAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;cCChD,aAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;EFN7B;;;;;;;EEkBT,OAAA,CACJ,QAAA,UACA,MAAA,EAAQ,mBAAA,GACP,OAAA,CAAQ,oBAAA;EFGX;;;AAKiB;AAInB;;;EEMQ,MAAA,CACJ,QAAA,UACA,MAAA,EAAQ,kBAAA,GACP,OAAA,CAAQ,oBAAA;EAAA,QAMG,MAAA;AAAA;;;AF5EhB;;;;;;;AAAA,cGwBa,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,UAAA;EAAA,QACT,IAAA;EAAA,QACA,SAAA;cAEI,OAAA,EAAS,eAAA;EHVrB;;;;;;;;;;;AAI6C;EGuBvC,WAAA,CAAY,KAAA,WAAgB,OAAA,CAAQ,kBAAA;EHnBV;;;;;;EG+G1B,WAAA,IAAe,OAAA;EAAA,QASb,aAAA;EAAA,QASA,OAAA;AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;AHrIqC;AAI/C;;;;;;;;;;cIuBa,mBAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;;;;;;;;;;;;;EAiBtC,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJWV;;AAAW;AAId;;;;;;;;EIQQ,kBAAA,CACJ,MAAA,EAAQ,oCAAA,GACP,OAAA,CAAQ,uBAAA;EJFI;AAIjB;;;;;;;;;;;;EImBQ,MAAA,CAAO,MAAA,EAAQ,wBAAA,GAA2B,OAAA,CAAQ,gBAAA;EJPlD;AAIR;;;;;;;;AAIiB;AAIjB;;EI4BQ,IAAA,CACJ,MAAA,EAAQ,uBAAA,GACP,OAAA,CAAQ,yBAAA;EJ5Ba;;;;;;;EIiDlB,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA,CAAQ,gBAAA;EJ/CO;AAKpB;;;;;;;EIgEQ,MAAA,CACJ,EAAA,UACA,MAAA,EAAQ,wBAAA,GACP,OAAA;IAAU,OAAA;EAAA;EJjDb;EAAA,QI0Dc,IAAA;AAAA;;;cCnMH,cAAA;EAAA,iBACM,OAAA;EAAA,iBACA,IAAA;cAEL,OAAA,EAAS,eAAA,EAAiB,IAAA,EAAM,UAAA;ELEP;;;;;;;;;;;;;;;;;;;EKsB/B,IAAA,CAAK,MAAA,EAAQ,iBAAA,GAAoB,OAAA,CAAQ,eAAA;ELlBhC;;;;;;EKgDf,MAAA,CAAO,MAAA,EAAQ,mBAAA;EL9Bf;;;;AAWiB;AAInB;;EKoCE,aAAA,CAAc,MAAA,EAAQ,mBAAA;ELpCW;;;;;;;;;EKmDjC,cAAA,CAAe,MAAA,EAAQ,mBAAA,GAAsB,qBAAA;EL/B7C;;;;AAIY;AAId;;;;EK6CE,iBAAA,CAAkB,MAAA,EAAQ,uBAAA,GAA0B,gBAAA;AAAA;;;;;;;;;;;;;;;;;;cC5GzC,UAAA;ENFG;EAAA,SMIE,QAAA,EAAU,cAAA;ENJC;EAAA,SMMX,OAAA,EAAS,aAAA;ENNoB;EAAA,SMQ7B,aAAA,EAAe,mBAAA;ENJC;EAAA,SMMhB,QAAA,EAAU,cAAA;ENNM;;;;cMYpB,OAAA,GAAS,iBAAA;AAAA;;;;ANxCvB;;;cOGa,eAAA,SAAwB,KAAK;cAC5B,OAAA;AAAA;;;;;cAWD,kBAAA,SAA2B,eAAe;cACzC,OAAA;AAAA;;;;;;;;;cAeD,SAAA,SAAkB,eAAe;EAAA,SAC5B,UAAA;EAAA,SACA,YAAA;EAAA,SACA,GAAA;cAEJ,UAAA,UAAoB,YAAA,UAAsB,GAAA;AAAA;;cAW3C,YAAA,SAAqB,eAAe;cACnC,GAAA,UAAa,OAAA;AAAA;;cAQd,qBAAA,SAA8B,eAAe;cAC5C,OAAA;AAAA;;KAQF,uBAAA;APJZ;;;;;AAAA,cOqBa,iBAAA,SAA0B,eAAA;EAAA,SACrB,MAAA,EAAQ,uBAAA;cAEZ,MAAA,EAAQ,uBAAA,EAAyB,OAAA;AAAA;;KASnC,4BAAA;;;;;cAYC,sBAAA,SAA+B,eAAA;EAAA,SAC1B,MAAA,EAAQ,4BAAA;cAEZ,MAAA,EAAQ,4BAAA,EAA8B,OAAA;AAAA;;;AP7GpD;;;;;;;;;;;;;;;;;;;;;;;;AAwB+C;AAxB/C,iBQ+BgB,sBAAA,CACd,MAAA,EAAQ,4BAAA,GACP,wBAAwB;;;;;;;iBAqBX,kBAAA,CAAmB,KAAA;EACjC,iBAAiB;AAAA"}

package/dist/index.mjs

@@ -618,6 +618,17 @@ var WebhooksClient = class {
 	* Send an arbitrary webhook payload to AgentPress.
 	* Signs the payload with HMAC-SHA256 (Svix-compatible).
 	*
+	* On the happy path the response is synchronous: `{ success: true,
+	* actionId, data }`, or `{ success, actionId, alreadyExists: true, data }`
+	* when an action with the same `externalId` already existed (idempotency).
+	*
+	* Configuration/resolution failures (no action rule configured, rule
+	* disabled, user unresolved, action insert failure) do NOT throw — the
+	* event is buffered durably and AgentPress responds **202** with
+	* `{ success: true, buffered: true, eventId, reason }`. The event
+	* auto-processes once an operator fixes the configuration, so check
+	* {@link WebhookResponse.buffered} before relying on `actionId`.
+	*
 	* @throws ConfigurationError if webhookSecret is not configured
 	* @throws HttpError on non-2xx response
 	* @throws TimeoutError if request exceeds timeout
@@ -781,6 +792,49 @@ const ACTION_EVENT_TYPES = [
 	"action.expired"
 ];
 //#endregion
-export { ACTION_EVENT_TYPES, ActionsClient, AgentPress, AgentPressError, ConfigurationError, HttpError, KeyRotationVerifyError, PartnerTokenError, PartnersClient, TimeoutError, UserApprovalsClient, WebhookSignatureError, WebhooksClient };
+//#region src/webhooks/ingestSigning.ts
+/**
+* Sign an outbound request for an AgentPress inbound webhook listener that
+* uses the `hmac_sha256` verification scheme
+* (`POST /webhooks/ingest/:org/:identifier`).
+*
+* Produces the two headers AgentPress verifies:
+*
+* - `x-webhook-timestamp` — unix seconds; AgentPress rejects timestamps more
+*   than 5 minutes from its own clock.
+* - `x-webhook-signature` — `v1=<hex HMAC-SHA256 of "${timestamp}.${rawBody}">`.
+*
+* Send the exact `rawBody` string you signed — any re-serialization after
+* signing (re-ordered keys, whitespace changes) invalidates the signature.
+*
+* @example
+* ```ts
+* const rawBody = JSON.stringify({ eventType: "review.created", data: {...} });
+* const { headers } = signHmacWebhookRequest({ secret, rawBody });
+* await fetch(ingestUrl, {
+*   method: "POST",
+*   body: rawBody,
+*   headers: { "content-type": "application/json", ...headers },
+* });
+* ```
+*/
+function signHmacWebhookRequest(params) {
+	const timestamp = Math.floor(params.timestamp ?? Date.now() / 1e3).toString();
+	return { headers: {
+		"x-webhook-timestamp": timestamp,
+		"x-webhook-signature": `v1=${createHmac("sha256", params.secret).update(`${timestamp}.${params.rawBody}`).digest("hex")}`
+	} };
+}
+/**
+* Build the auth header for an AgentPress inbound webhook listener that uses
+* the `shared_token` verification scheme. AgentPress also accepts
+* `Authorization: Bearer <token>`; this helper uses the dedicated
+* `x-webhook-token` header so it never collides with other auth middleware.
+*/
+function sharedTokenHeaders(token) {
+	return { "x-webhook-token": token };
+}
+//#endregion
+export { ACTION_EVENT_TYPES, ActionsClient, AgentPress, AgentPressError, ConfigurationError, HttpError, KeyRotationVerifyError, PartnerTokenError, PartnersClient, TimeoutError, UserApprovalsClient, WebhookSignatureError, WebhooksClient, sharedTokenHeaders, signHmacWebhookRequest };
 
 //# sourceMappingURL=index.mjs.map