@ainyc/canonry 4.17.1 → 4.18.1

package/dist/{chunk-ZGHD3IAV.js → chunk-7VDM3JBI.js}

@@ -5,7 +5,7 @@ import {
   loadConfig,
   loadConfigRaw,
   saveConfigPatch
-} from "./chunk-6TWKC3DP.js";
+} from "./chunk-P3SFTXHG.js";
 import {
   DEFAULT_RUN_HISTORY_LIMIT,
   IntelligenceService,
@@ -66,7 +66,7 @@ import {
   schedules,
   trafficSources,
   usageCounters
-} from "./chunk-PAZCY4FF.js";
+} from "./chunk-BN2VQDZ2.js";
 import {
   AGENT_MEMORY_VALUE_MAX_BYTES,
   AGENT_PROVIDER_IDS,
@@ -88,6 +88,7 @@ import {
   TrafficSourceAuthModes,
   TrafficSourceStatuses,
   TrafficSourceTypes,
+  VerificationStatuses,
   absolutizeProjectUrl,
   actionConfidenceLabel,
   agentBusy,
@@ -106,6 +107,8 @@ import {
   dedupeReportActions,
   dedupeReportOpportunities,
   deliveryFailed,
+  deltaPercent,
+  deltaTone,
   determineAnswerMentioned,
   effectiveDomains,
   emptyCitationVisibility,
@@ -113,6 +116,7 @@ import {
   findDuplicateLocationLabels,
   formatDate,
   formatDateRange,
+  formatDeltaCopy,
   formatIsoDate,
   formatNumber,
   formatRatio,
@@ -155,7 +159,7 @@ import {
   visibilityStateFromAnswerMentioned,
   windowCutoff,
   wordpressEnvSchema
-} from "./chunk-Q2OED5JQ.js";
+} from "./chunk-SBZTDECX.js";
 
 // src/telemetry.ts
 import crypto from "crypto";
@@ -314,7 +318,7 @@ import crypto31 from "crypto";
 import fs12 from "fs";
 import path14 from "path";
 import { fileURLToPath as fileURLToPath2 } from "url";
-import { eq as eq35 } from "drizzle-orm";
+import { eq as eq36 } from "drizzle-orm";
 import Fastify from "fastify";
 
 // ../api-routes/src/auth.ts
@@ -2654,7 +2658,7 @@ async function intelligenceRoutes(app) {
 }
 
 // ../api-routes/src/report.ts
-import { and as and5, desc as desc6, eq as eq13, inArray as inArray4, or as or2 } from "drizzle-orm";
+import { and as and5, desc as desc6, eq as eq13, gte, inArray as inArray4, lt, lte, ne, or as or2, sql as sql3 } from "drizzle-orm";
 
 // ../api-routes/src/report-renderer.ts
 var COLORS = {
@@ -4268,11 +4272,151 @@ function renderAiReferrals(report) {
     </div>`
   );
 }
+function serverActivityHeading(audience, hasData) {
+  const isClient = audience === "client";
+  return {
+    id: "server-activity",
+    eyebrow: isClient ? "AI engine attention" : "Section 10",
+    title: "AI Visibility \u2014 Server-Side",
+    intro: isClient ? hasData ? "What AI engines actually do in your server logs over the last 7 days \u2014 the other half of citations." : "Live telemetry from your server logs." : "What AI engines actually do in your server logs \u2014 direct evidence, complementary to citations (which measure what they say)."
+  };
+}
+function renderServerActivity(report, audience) {
+  const sa = report.serverActivity;
+  const isClient = audience === "client";
+  if (!sa) {
+    if (isClient) return "";
+    return section(
+      serverActivityHeading("agency", false),
+      renderEmpty("Connect a server-side traffic source to surface what AI engines do directly in your server logs \u2014 distinct from GA4 click-throughs.")
+    );
+  }
+  if (!sa.hasData) {
+    return section(
+      serverActivityHeading(audience, false),
+      renderEmpty(isClient ? "Your server-side traffic source is connected. Numbers will appear after the next sync." : "Source connected \u2014 collecting your first data. Numbers will appear after the next sync.")
+    );
+  }
+  const formatDelta = (d, suffix) => {
+    const copy = formatDeltaCopy(d, suffix);
+    if (!copy) return "";
+    return `<span class="tone-${deltaTone(d.deltaPct)}">${escapeHtml(copy)}</span>`;
+  };
+  if (isClient) {
+    const clientOperators = sa.byOperator.filter((o) => o.verifiedHits > 0 || o.referralArrivals > 0).slice(0, 5);
+    const clientOperatorRows = clientOperators.map((o) => `
+    <tr>
+      <td>${escapeHtml(o.operator)}</td>
+      <td class="numeric">${formatNumber(o.verifiedHits)}</td>
+      <td class="numeric">${formatNumber(o.referralArrivals)}</td>
+    </tr>`).join("");
+    return section(
+      serverActivityHeading("client", true),
+      `<div class="metric-grid">
+        <div class="metric">
+          <div class="label">AI bots visited your site</div>
+          <div class="value">${formatNumber(sa.verifiedCrawlerHits.current)}</div>
+          <div class="subtitle">${formatDelta(sa.verifiedCrawlerHits, "crawls")}</div>
+        </div>
+        <div class="metric">
+          <div class="label">People clicked through from AI</div>
+          <div class="value">${formatNumber(sa.referralArrivals.current)}</div>
+          <div class="subtitle">${formatDelta(sa.referralArrivals, "arrivals")}</div>
+        </div>
+      </div>
+      ${clientOperatorRows ? `<div class="chart-card"><h3>By AI tool</h3>
+        <table class="report-table">
+          <thead><tr><th>AI tool</th><th class="numeric">Bot visits (7d)</th><th class="numeric">Click-throughs</th></tr></thead>
+          <tbody>${clientOperatorRows}</tbody>
+        </table>
+        <p class="meta">Verified visits only. We confirm each bot via reverse-DNS so the numbers above can't be inflated by anyone faking a user agent.</p>
+      </div>` : ""}`
+    );
+  }
+  const operatorRows = sa.byOperator.map((o) => {
+    const deltaText = o.deltaPct === null ? "\u2014" : `${o.deltaPct > 0 ? "+" : ""}${o.deltaPct}%`;
+    const toneClass = o.deltaPct === null ? "" : `tone-${deltaTone(o.deltaPct)}`;
+    return `
+    <tr>
+      <td>${escapeHtml(o.operator)}</td>
+      <td class="numeric">${formatNumber(o.verifiedHits)}</td>
+      <td class="numeric meta">${formatNumber(o.unverifiedHits)}</td>
+      <td class="numeric">${formatNumber(o.referralArrivals)}</td>
+      <td class="numeric ${toneClass}">${deltaText}</td>
+    </tr>`;
+  }).join("");
+  const pathRows = sa.topCrawledPaths.map((p) => `
+    <tr>
+      <td class="page-cell">${formatLandingPageHtml(p.path)}</td>
+      <td class="numeric">${formatNumber(p.verifiedHits)}</td>
+      <td class="numeric">${p.distinctOperators}</td>
+    </tr>`).join("");
+  const referralProductRows = sa.referralProducts.map((p) => `
+    <tr>
+      <td>${escapeHtml(p.product)}</td>
+      <td class="numeric">${formatNumber(p.arrivals)}</td>
+      <td class="numeric">${p.distinctLandingPaths}</td>
+    </tr>`).join("");
+  const referralLandingRows = sa.topReferralLandingPaths.map((p) => `
+    <tr>
+      <td class="page-cell">${formatLandingPageHtml(p.path)}</td>
+      <td class="numeric">${formatNumber(p.arrivals)}</td>
+      <td class="numeric">${p.distinctProducts}</td>
+    </tr>`).join("");
+  const trendChart = sa.dailyTrend.length > 0 ? renderLineChart(
+    sa.dailyTrend.map((d) => ({ x: d.date, y: d.verifiedCrawlerHits, label: d.date.slice(5) })),
+    COLORS.series[1],
+    "Verified crawler hits over time (last 14 days)"
+  ) : "";
+  return section(
+    serverActivityHeading("agency", true),
+    `<div class="metric-grid">
+      <div class="metric">
+        <div class="label">Verified crawler hits (7d)</div>
+        <div class="value">${formatNumber(sa.verifiedCrawlerHits.current)}</div>
+        <div class="subtitle">${formatDelta(sa.verifiedCrawlerHits, "hits")}</div>
+      </div>
+      <div class="metric">
+        <div class="label">AI-referral arrivals (7d)</div>
+        <div class="value">${formatNumber(sa.referralArrivals.current)}</div>
+        <div class="subtitle">${formatDelta(sa.referralArrivals, "arrivals")}</div>
+      </div>
+    </div>
+    ${trendChart}
+    ${operatorRows ? `<div class="chart-card"><h3>Per AI operator</h3>
+      <p class="meta">Verified means rDNS-confirmed. Unverified bots claim the user-agent but couldn't be verified \u2014 could be the real bot or an imitator.</p>
+      <table class="report-table">
+        <thead><tr><th>Operator</th><th class="numeric">Verified hits</th><th class="numeric">Unverified</th><th class="numeric">Referral arrivals</th><th class="numeric">7d delta</th></tr></thead>
+        <tbody>${operatorRows}</tbody>
+      </table>
+    </div>` : ""}
+    ${pathRows ? `<div class="chart-card"><h3>Top crawled paths</h3>
+      <p class="meta">Pages AI bots fetched most often (verified only, last 7d).</p>
+      <table class="report-table">
+        <thead><tr><th>Path</th><th class="numeric">Verified hits</th><th class="numeric">Distinct operators</th></tr></thead>
+        <tbody>${pathRows}</tbody>
+      </table>
+    </div>` : ""}
+    ${referralProductRows ? `<div class="chart-card"><h3>Click-throughs by AI product</h3>
+      <p class="meta">Where humans landed coming from each AI product (chatgpt.com, claude.ai, \u2026).</p>
+      <table class="report-table">
+        <thead><tr><th>Product</th><th class="numeric">Arrivals</th><th class="numeric">Distinct landing paths</th></tr></thead>
+        <tbody>${referralProductRows}</tbody>
+      </table>
+    </div>` : ""}
+    ${referralLandingRows ? `<div class="chart-card"><h3>Top AI-referral landing paths</h3>
+      <table class="report-table">
+        <thead><tr><th>Path</th><th class="numeric">Arrivals</th><th class="numeric">Distinct products</th></tr></thead>
+        <tbody>${referralLandingRows}</tbody>
+      </table>
+    </div>` : ""}`
+  );
+}
 function renderIndexingHealth(report) {
   const ih = report.indexingHealth;
   if (!ih) {
     return section(
-      { id: "indexing-health", eyebrow: "Section 10", title: "Indexing Health" },
+      { id: "indexing-health", eyebrow: "Section 11", title: "Indexing Health" },
       renderEmpty("Connect Google Search Console or Bing Webmaster Tools and run a sitemap inspection.")
     );
   }
@@ -4294,7 +4438,7 @@ function renderIndexingHealth(report) {
   }).join("");
   const legend = segments.map((s) => `<span><span class="legend-swatch" style="background:${s.color}"></span>${escapeHtml(s.label)}: ${s.count}</span>`).join("");
   return section(
-    { id: "indexing-health", eyebrow: "Section 10", title: "Indexing Health", intro: `Pages absent from ${ih.provider === "google" ? "Google" : "Bing"} are harder for AI engines to retrieve.` },
+    { id: "indexing-health", eyebrow: "Section 11", title: "Indexing Health", intro: `Pages absent from ${ih.provider === "google" ? "Google" : "Bing"} are harder for AI engines to retrieve.` },
     `<div class="metric-grid">
       <div class="metric"><div class="label">Indexed</div><div class="value tone-positive">${formatNumber(ih.indexed)}</div></div>
       <div class="metric"><div class="label">Total inspected</div><div class="value">${formatNumber(ih.total)}</div></div>
@@ -4311,13 +4455,13 @@ function renderCitationsTrend(report) {
   const trend = report.citationsTrend;
   if (trend.length === 0) {
     return section(
-      { id: "citations-trend", eyebrow: "Section 11", title: "Citations Over Time" },
+      { id: "citations-trend", eyebrow: "Section 12", title: "Citations Over Time" },
       renderEmpty("Run multiple checks to see a trend.")
     );
   }
   if (isTrendBaseline(trend)) {
     return section(
-      { id: "citations-trend", eyebrow: "Section 11", title: "Citations Over Time" },
+      { id: "citations-trend", eyebrow: "Section 12", title: "Citations Over Time" },
       renderEmpty(`Building baseline (${trend.length} of ${MIN_TREND_POINTS} checks completed). Trend will appear once more checks are recorded.`)
     );
   }
@@ -4334,7 +4478,7 @@ function renderCitationsTrend(report) {
       <td>${t.providerRates.map((r) => `${escapeHtml(r.provider)}: ${r.citationRate}%`).join(" \xB7 ")}</td>
     </tr>`).join("");
   return section(
-    { id: "citations-trend", eyebrow: "Section 11", title: "Citations Over Time", intro: "Citation coverage across recent checks." },
+    { id: "citations-trend", eyebrow: "Section 12", title: "Citations Over Time", intro: "Citation coverage across recent checks." },
     `${chart}
     <div class="chart-card"><h3>Check-by-check breakdown</h3>
       <table class="report-table">
@@ -4348,7 +4492,7 @@ function renderInsights(report) {
   const list = report.insights;
   if (list.length === 0) {
     return section(
-      { id: "insights", eyebrow: "Section 12", title: "Insights & Alerts" },
+      { id: "insights", eyebrow: "Section 13", title: "Insights & Alerts" },
       renderEmpty("No insights yet \u2014 run a check to generate alerts.")
     );
   }
@@ -4365,7 +4509,7 @@ function renderInsights(report) {
       </tr>`;
   }).join("");
   return section(
-    { id: "insights", eyebrow: "Section 12", title: "Insights & Alerts", intro: "Regressions, gains, and recurring alerts ordered by severity." },
+    { id: "insights", eyebrow: "Section 13", title: "Insights & Alerts", intro: "Regressions, gains, and recurring alerts ordered by severity." },
     `<table class="report-table insights-table">
       <thead><tr>
         <th class="col-severity">Severity</th>
@@ -4407,7 +4551,7 @@ function renderOpportunities(report) {
   return section(
     {
       id: "content-opportunities",
-      eyebrow: "Section 13",
+      eyebrow: "Section 14",
       title: "Content Opportunities",
       intro: "Queries where content work has the clearest path to more AI citations. Opportunity score is 0\u2013100, higher = stronger."
     },
@@ -4433,7 +4577,7 @@ function renderContentGaps(report) {
   return section(
     {
       id: "content-gaps",
-      eyebrow: "Section 14",
+      eyebrow: "Section 15",
       title: "Content Gaps",
       intro: "Tracked queries where competitors are cited and the client is missing."
     },
@@ -4447,7 +4591,7 @@ function renderRecommendedNextSteps(report) {
   const steps = report.recommendedNextSteps;
   if (steps.length === 0) {
     return section(
-      { id: "recommended-next-steps", eyebrow: "Section 15", title: "Recommended Next Steps", intro: "Action items bucketed by timing." },
+      { id: "recommended-next-steps", eyebrow: "Section 16", title: "Recommended Next Steps", intro: "Action items bucketed by timing." },
       renderEmpty("No outstanding actions.")
     );
   }
@@ -4458,7 +4602,7 @@ function renderRecommendedNextSteps(report) {
       <span class="rationale">${escapeHtml(s.rationale)}</span>
     </div>`).join("");
   return section(
-    { id: "recommended-next-steps", eyebrow: "Section 15", title: "Recommended Next Steps", intro: "Action items bucketed by timing." },
+    { id: "recommended-next-steps", eyebrow: "Section 16", title: "Recommended Next Steps", intro: "Action items bucketed by timing." },
     `<div class="steps">${items}</div>`
   );
 }
@@ -4683,6 +4827,10 @@ function renderReportHtml(report, opts = {}) {
   const sections = audience === "client" ? [
     renderClientSummary(report),
     renderWhatsChanged(report, "client"),
+    // Server-side AI visibility runs between WhatsChanged and the action
+    // plan in BOTH the SPA and HTML so clients see the same ordered set
+    // of sections in either surface (per the report-parity rule).
+    renderServerActivity(report, "client"),
     renderAudienceActionPlan(report, "client"),
     renderClientEvidenceSummary(report)
   ].join("\n") : [
@@ -4697,6 +4845,7 @@ function renderReportHtml(report, opts = {}) {
     renderGa(report),
     renderSocial(report),
     renderAiReferrals(report),
+    renderServerActivity(report, "agency"),
     renderIndexingHealth(report),
     renderCitationsTrend(report),
     renderInsights(report),
@@ -5082,6 +5231,9 @@ var TOP_AI_REFERRAL_PAGES_LIMIT = 10;
 var TOP_CAMPAIGN_LIMIT = 10;
 var INSIGHT_LOOKBACK_RUNS = 5;
 var REPORT_WINDOW_DAYS = 30;
+var SERVER_ACTIVITY_HEADLINE_DAYS = 7;
+var SERVER_ACTIVITY_TREND_DAYS = 14;
+var SERVER_ACTIVITY_TOP_PATHS_LIMIT = 10;
 function windowStartDate(endDate, windowDays) {
   const m = /^(\d{4})-(\d{2})-(\d{2})$/.exec(endDate);
   if (!m) return endDate;
@@ -5350,6 +5502,209 @@ function buildAiReferrals(db, projectId) {
   const topLandingPages = [...pageAgg.entries()].map(([page, data]) => ({ page, sessions: data.sessions, users: data.users })).sort((a, b) => b.sessions - a.sessions).slice(0, TOP_AI_REFERRAL_PAGES_LIMIT);
   return { totalSessions: total, totalUsers, bySource, trend, topLandingPages };
 }
+function buildServerActivity(db, projectId) {
+  const sourceRows = db.select({ id: trafficSources.id }).from(trafficSources).where(
+    and5(
+      eq13(trafficSources.projectId, projectId),
+      ne(trafficSources.status, TrafficSourceStatuses.archived)
+    )
+  ).all();
+  if (sourceRows.length === 0) return null;
+  const now = /* @__PURE__ */ new Date();
+  const headlineEnd = now.toISOString();
+  const headlineStartMs = now.getTime() - SERVER_ACTIVITY_HEADLINE_DAYS * 24 * 60 * 6e4;
+  const priorStartMs = headlineStartMs - SERVER_ACTIVITY_HEADLINE_DAYS * 24 * 60 * 6e4;
+  const trendStartMs = now.getTime() - SERVER_ACTIVITY_TREND_DAYS * 24 * 60 * 6e4;
+  const headlineStart = new Date(headlineStartMs).toISOString();
+  const priorStart = new Date(priorStartMs).toISOString();
+  const trendStart = new Date(trendStartMs).toISOString();
+  const sumVerifiedCrawlers = (windowStartIso, windowEndIso, exclusiveEnd = false) => Number(
+    db.select({ total: sql3`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
+      and5(
+        eq13(crawlerEventsHourly.projectId, projectId),
+        eq13(crawlerEventsHourly.verificationStatus, VerificationStatuses.verified),
+        gte(crawlerEventsHourly.tsHour, windowStartIso),
+        exclusiveEnd ? lt(crawlerEventsHourly.tsHour, windowEndIso) : lte(crawlerEventsHourly.tsHour, windowEndIso)
+      )
+    ).get()?.total ?? 0
+  );
+  const sumReferrals = (windowStartIso, windowEndIso, exclusiveEnd = false) => Number(
+    db.select({ total: sql3`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
+      and5(
+        eq13(aiReferralEventsHourly.projectId, projectId),
+        gte(aiReferralEventsHourly.tsHour, windowStartIso),
+        exclusiveEnd ? lt(aiReferralEventsHourly.tsHour, windowEndIso) : lte(aiReferralEventsHourly.tsHour, windowEndIso)
+      )
+    ).get()?.total ?? 0
+  );
+  const verifiedCurrent = sumVerifiedCrawlers(headlineStart, headlineEnd);
+  const verifiedPrior = sumVerifiedCrawlers(priorStart, headlineStart, true);
+  const referralCurrent = sumReferrals(headlineStart, headlineEnd);
+  const referralPrior = sumReferrals(priorStart, headlineStart, true);
+  const crawlerByOperatorRows = db.select({
+    operator: crawlerEventsHourly.operator,
+    verificationStatus: crawlerEventsHourly.verificationStatus,
+    hits: sql3`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)`
+  }).from(crawlerEventsHourly).where(
+    and5(
+      eq13(crawlerEventsHourly.projectId, projectId),
+      gte(crawlerEventsHourly.tsHour, headlineStart),
+      lte(crawlerEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(crawlerEventsHourly.operator, crawlerEventsHourly.verificationStatus).all();
+  const crawlerByOperatorPriorRows = db.select({
+    operator: crawlerEventsHourly.operator,
+    hits: sql3`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)`
+  }).from(crawlerEventsHourly).where(
+    and5(
+      eq13(crawlerEventsHourly.projectId, projectId),
+      eq13(crawlerEventsHourly.verificationStatus, VerificationStatuses.verified),
+      gte(crawlerEventsHourly.tsHour, priorStart),
+      lt(crawlerEventsHourly.tsHour, headlineStart)
+    )
+  ).groupBy(crawlerEventsHourly.operator).all();
+  const referralByOperatorRows = db.select({
+    operator: aiReferralEventsHourly.operator,
+    hits: sql3`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)`
+  }).from(aiReferralEventsHourly).where(
+    and5(
+      eq13(aiReferralEventsHourly.projectId, projectId),
+      gte(aiReferralEventsHourly.tsHour, headlineStart),
+      lte(aiReferralEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(aiReferralEventsHourly.operator).all();
+  const operatorAgg = /* @__PURE__ */ new Map();
+  const ensureOp = (op) => {
+    let entry = operatorAgg.get(op);
+    if (!entry) {
+      entry = { verified: 0, unverified: 0, referrals: 0, prior: 0 };
+      operatorAgg.set(op, entry);
+    }
+    return entry;
+  };
+  for (const r of crawlerByOperatorRows) {
+    const entry = ensureOp(r.operator);
+    if (r.verificationStatus === VerificationStatuses.verified) entry.verified += Number(r.hits);
+    else entry.unverified += Number(r.hits);
+  }
+  for (const r of crawlerByOperatorPriorRows) {
+    ensureOp(r.operator).prior += Number(r.hits);
+  }
+  for (const r of referralByOperatorRows) {
+    ensureOp(r.operator).referrals += Number(r.hits);
+  }
+  const byOperator = [...operatorAgg.entries()].map(([operator, v]) => ({
+    operator,
+    verifiedHits: v.verified,
+    unverifiedHits: v.unverified,
+    referralArrivals: v.referrals,
+    deltaPct: deltaPercent(v.verified, v.prior)
+  })).sort(
+    (a, b) => b.verifiedHits - a.verifiedHits || b.referralArrivals - a.referralArrivals
+  );
+  const topPathsRows = db.select({
+    path: crawlerEventsHourly.pathNormalized,
+    hits: sql3`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)`,
+    operators: sql3`COUNT(DISTINCT ${crawlerEventsHourly.operator})`
+  }).from(crawlerEventsHourly).where(
+    and5(
+      eq13(crawlerEventsHourly.projectId, projectId),
+      eq13(crawlerEventsHourly.verificationStatus, VerificationStatuses.verified),
+      gte(crawlerEventsHourly.tsHour, headlineStart),
+      lte(crawlerEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(crawlerEventsHourly.pathNormalized).orderBy(desc6(sql3`SUM(${crawlerEventsHourly.hits})`)).limit(SERVER_ACTIVITY_TOP_PATHS_LIMIT).all();
+  const topCrawledPaths = topPathsRows.map((r) => ({
+    path: r.path,
+    verifiedHits: Number(r.hits),
+    distinctOperators: Number(r.operators)
+  }));
+  const referralProductsRows = db.select({
+    product: aiReferralEventsHourly.product,
+    arrivals: sql3`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)`,
+    landingPaths: sql3`COUNT(DISTINCT ${aiReferralEventsHourly.landingPathNormalized})`
+  }).from(aiReferralEventsHourly).where(
+    and5(
+      eq13(aiReferralEventsHourly.projectId, projectId),
+      gte(aiReferralEventsHourly.tsHour, headlineStart),
+      lte(aiReferralEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(aiReferralEventsHourly.product).orderBy(desc6(sql3`SUM(${aiReferralEventsHourly.sessionsOrHits})`)).all();
+  const referralProducts = referralProductsRows.map((r) => ({
+    product: r.product,
+    arrivals: Number(r.arrivals),
+    distinctLandingPaths: Number(r.landingPaths)
+  }));
+  const topReferralRows = db.select({
+    path: aiReferralEventsHourly.landingPathNormalized,
+    arrivals: sql3`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)`,
+    products: sql3`COUNT(DISTINCT ${aiReferralEventsHourly.product})`
+  }).from(aiReferralEventsHourly).where(
+    and5(
+      eq13(aiReferralEventsHourly.projectId, projectId),
+      gte(aiReferralEventsHourly.tsHour, headlineStart),
+      lte(aiReferralEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(aiReferralEventsHourly.landingPathNormalized).orderBy(desc6(sql3`SUM(${aiReferralEventsHourly.sessionsOrHits})`)).limit(SERVER_ACTIVITY_TOP_PATHS_LIMIT).all();
+  const topReferralLandingPaths = topReferralRows.map((r) => ({
+    path: r.path,
+    arrivals: Number(r.arrivals),
+    distinctProducts: Number(r.products)
+  }));
+  const crawlerTrendRows = db.select({
+    date: sql3`SUBSTR(${crawlerEventsHourly.tsHour}, 1, 10)`,
+    hits: sql3`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)`
+  }).from(crawlerEventsHourly).where(
+    and5(
+      eq13(crawlerEventsHourly.projectId, projectId),
+      eq13(crawlerEventsHourly.verificationStatus, VerificationStatuses.verified),
+      gte(crawlerEventsHourly.tsHour, trendStart),
+      lte(crawlerEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(sql3`SUBSTR(${crawlerEventsHourly.tsHour}, 1, 10)`).all();
+  const referralTrendRows = db.select({
+    date: sql3`SUBSTR(${aiReferralEventsHourly.tsHour}, 1, 10)`,
+    hits: sql3`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)`
+  }).from(aiReferralEventsHourly).where(
+    and5(
+      eq13(aiReferralEventsHourly.projectId, projectId),
+      gte(aiReferralEventsHourly.tsHour, trendStart),
+      lte(aiReferralEventsHourly.tsHour, headlineEnd)
+    )
+  ).groupBy(sql3`SUBSTR(${aiReferralEventsHourly.tsHour}, 1, 10)`).all();
+  const dailyTrendMap = /* @__PURE__ */ new Map();
+  for (const r of crawlerTrendRows) {
+    const e = dailyTrendMap.get(r.date) ?? { verifiedCrawlerHits: 0, referralArrivals: 0 };
+    e.verifiedCrawlerHits += Number(r.hits);
+    dailyTrendMap.set(r.date, e);
+  }
+  for (const r of referralTrendRows) {
+    const e = dailyTrendMap.get(r.date) ?? { verifiedCrawlerHits: 0, referralArrivals: 0 };
+    e.referralArrivals += Number(r.hits);
+    dailyTrendMap.set(r.date, e);
+  }
+  const dailyTrend = [...dailyTrendMap.entries()].map(([date, v]) => ({ date, ...v })).sort((a, b) => a.date.localeCompare(b.date));
+  return {
+    windowStart: headlineStart,
+    windowEnd: headlineEnd,
+    hasData: verifiedCurrent + referralCurrent + verifiedPrior + referralPrior > 0 || byOperator.length > 0 || topCrawledPaths.length > 0 || referralProducts.length > 0,
+    verifiedCrawlerHits: {
+      current: verifiedCurrent,
+      prior: verifiedPrior,
+      deltaPct: deltaPercent(verifiedCurrent, verifiedPrior)
+    },
+    referralArrivals: {
+      current: referralCurrent,
+      prior: referralPrior,
+      deltaPct: deltaPercent(referralCurrent, referralPrior)
+    },
+    byOperator,
+    topCrawledPaths,
+    referralProducts,
+    dailyTrend,
+    topReferralLandingPaths
+  };
+}
 function buildIndexingHealth(db, projectId) {
   const gsc = db.select().from(gscCoverageSnapshots).where(eq13(gscCoverageSnapshots.projectId, projectId)).orderBy(desc6(gscCoverageSnapshots.date)).limit(1).get();
   if (gsc) {
@@ -6009,6 +6364,7 @@ function buildProjectReport(db, projectName) {
   const gaSection = buildGaSection(db, project.id);
   const socialSection = buildSocialReferrals(db, project.id);
   const aiReferralsSection = buildAiReferrals(db, project.id);
+  const serverActivitySection = buildServerActivity(db, project.id);
   const indexingHealthSection = buildIndexingHealth(db, project.id);
   const citationsTrend = buildCitationsTrend(db, project.id, queryLookup, latestRunLocation);
   const insightList = buildInsightList(db, project.id, latestRunLocation);
@@ -6152,6 +6508,7 @@ function buildProjectReport(db, projectName) {
     ga: gaSection,
     socialReferrals: socialSection,
     aiReferrals: aiReferralsSection,
+    serverActivity: serverActivitySection,
     indexingHealth: indexingHealthSection,
     citationsTrend,
     whatsChanged,
@@ -6355,7 +6712,7 @@ function normalizeDomain2(domain) {
 }
 
 // ../api-routes/src/composites.ts
-import { eq as eq15, and as and6, desc as desc7, sql as sql3, like, or as or3, inArray as inArray6 } from "drizzle-orm";
+import { eq as eq15, and as and6, desc as desc7, sql as sql4, like, or as or3, inArray as inArray6 } from "drizzle-orm";
 var TOP_INSIGHT_LIMIT = 5;
 var SEARCH_HIT_HARD_LIMIT = 50;
 var SEARCH_SNIPPET_RADIUS = 80;
@@ -6461,9 +6818,9 @@ async function compositeRoutes(app) {
       and6(
         eq15(queries.projectId, project.id),
         or3(
-          sql3`${querySnapshots.answerText} LIKE ${pattern} ESCAPE '\\'`,
-          sql3`${querySnapshots.citedDomains} LIKE ${pattern} ESCAPE '\\'`,
-          sql3`${querySnapshots.rawResponse} LIKE ${pattern} ESCAPE '\\'`,
+          sql4`${querySnapshots.answerText} LIKE ${pattern} ESCAPE '\\'`,
+          sql4`${querySnapshots.citedDomains} LIKE ${pattern} ESCAPE '\\'`,
+          sql4`${querySnapshots.rawResponse} LIKE ${pattern} ESCAPE '\\'`,
           like(queries.query, pattern)
         )
       )
@@ -6474,8 +6831,8 @@ async function compositeRoutes(app) {
         or3(
           like(insights.title, pattern),
           like(insights.query, pattern),
-          sql3`${insights.recommendation} LIKE ${pattern} ESCAPE '\\'`,
-          sql3`${insights.cause} LIKE ${pattern} ESCAPE '\\'`
+          sql4`${insights.recommendation} LIKE ${pattern} ESCAPE '\\'`,
+          sql4`${insights.cause} LIKE ${pattern} ESCAPE '\\'`
         )
       )
     ).orderBy(desc7(insights.createdAt)).limit(limit + 1).all();
@@ -10373,7 +10730,7 @@ function formatNotification(row) {
 
 // ../api-routes/src/google.ts
 import crypto14 from "crypto";
-import { eq as eq18, and as and8, desc as desc8, sql as sql4 } from "drizzle-orm";
+import { eq as eq18, and as and8, desc as desc8, sql as sql5 } from "drizzle-orm";
 
 // ../integration-google/src/constants.ts
 var GOOGLE_AUTH_URL = "https://accounts.google.com/o/oauth2/v2/auth";
@@ -11583,11 +11940,11 @@ async function googleRoutes(app, opts) {
     const { startDate, endDate, query, page, limit } = request.query;
     const cutoffDate = !startDate ? windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null : null;
     const conditions = [eq18(gscSearchData.projectId, project.id)];
-    if (startDate) conditions.push(sql4`${gscSearchData.date} >= ${startDate}`);
-    else if (cutoffDate) conditions.push(sql4`${gscSearchData.date} >= ${cutoffDate}`);
-    if (endDate) conditions.push(sql4`${gscSearchData.date} <= ${endDate}`);
-    if (query) conditions.push(sql4`${gscSearchData.query} LIKE ${"%" + query + "%"}`);
-    if (page) conditions.push(sql4`${gscSearchData.page} LIKE ${"%" + page + "%"}`);
+    if (startDate) conditions.push(sql5`${gscSearchData.date} >= ${startDate}`);
+    else if (cutoffDate) conditions.push(sql5`${gscSearchData.date} >= ${cutoffDate}`);
+    if (endDate) conditions.push(sql5`${gscSearchData.date} <= ${endDate}`);
+    if (query) conditions.push(sql5`${gscSearchData.query} LIKE ${"%" + query + "%"}`);
+    if (page) conditions.push(sql5`${gscSearchData.page} LIKE ${"%" + page + "%"}`);
     const rows = app.db.select().from(gscSearchData).where(and8(...conditions)).orderBy(desc8(gscSearchData.date)).limit(parseInt(limit ?? "500", 10)).all();
     return rows.map((r) => ({
       date: r.date,
@@ -12830,7 +13187,7 @@ async function cdpRoutes(app, opts) {
 
 // ../api-routes/src/ga.ts
 import crypto16 from "crypto";
-import { eq as eq21, desc as desc10, and as and11, sql as sql5 } from "drizzle-orm";
+import { eq as eq21, desc as desc10, and as and11, sql as sql6 } from "drizzle-orm";
 function gaLog(level, action, ctx) {
   const entry = { ts: (/* @__PURE__ */ new Date()).toISOString(), level, module: "GA4Routes", action, ...ctx };
   const stream = level === "error" ? process.stderr : process.stdout;
@@ -13127,8 +13484,8 @@ async function ga4Routes(app, opts) {
           tx.delete(gaTrafficSnapshots).where(
             and11(
               eq21(gaTrafficSnapshots.projectId, project.id),
-              sql5`${gaTrafficSnapshots.date} >= ${summary.periodStart}`,
-              sql5`${gaTrafficSnapshots.date} <= ${summary.periodEnd}`
+              sql6`${gaTrafficSnapshots.date} >= ${summary.periodStart}`,
+              sql6`${gaTrafficSnapshots.date} <= ${summary.periodEnd}`
             )
           ).run();
           for (const row of rows) {
@@ -13151,8 +13508,8 @@ async function ga4Routes(app, opts) {
           tx.delete(gaAiReferrals).where(
             and11(
               eq21(gaAiReferrals.projectId, project.id),
-              sql5`${gaAiReferrals.date} >= ${summary.periodStart}`,
-              sql5`${gaAiReferrals.date} <= ${summary.periodEnd}`
+              sql6`${gaAiReferrals.date} >= ${summary.periodStart}`,
+              sql6`${gaAiReferrals.date} <= ${summary.periodEnd}`
             )
           ).run();
           for (const row of aiReferrals) {
@@ -13177,8 +13534,8 @@ async function ga4Routes(app, opts) {
           tx.delete(gaSocialReferrals).where(
             and11(
               eq21(gaSocialReferrals.projectId, project.id),
-              sql5`${gaSocialReferrals.date} >= ${summary.periodStart}`,
-              sql5`${gaSocialReferrals.date} <= ${summary.periodEnd}`
+              sql6`${gaSocialReferrals.date} >= ${summary.periodStart}`,
+              sql6`${gaSocialReferrals.date} <= ${summary.periodEnd}`
             )
           ).run();
           for (const row of socialReferrals) {
@@ -13268,11 +13625,11 @@ async function ga4Routes(app, opts) {
     const cutoff = windowCutoff(window);
     const cutoffDate = cutoff?.slice(0, 10) ?? null;
     const snapshotConditions = [eq21(gaTrafficSnapshots.projectId, project.id)];
-    if (cutoffDate) snapshotConditions.push(sql5`${gaTrafficSnapshots.date} >= ${cutoffDate}`);
+    if (cutoffDate) snapshotConditions.push(sql6`${gaTrafficSnapshots.date} >= ${cutoffDate}`);
     const aiConditions = [eq21(gaAiReferrals.projectId, project.id)];
-    if (cutoffDate) aiConditions.push(sql5`${gaAiReferrals.date} >= ${cutoffDate}`);
+    if (cutoffDate) aiConditions.push(sql6`${gaAiReferrals.date} >= ${cutoffDate}`);
     const socialConditions = [eq21(gaSocialReferrals.projectId, project.id)];
-    if (cutoffDate) socialConditions.push(sql5`${gaSocialReferrals.date} >= ${cutoffDate}`);
+    if (cutoffDate) socialConditions.push(sql6`${gaSocialReferrals.date} >= ${cutoffDate}`);
     const windowSummaryRow = cutoffDate ? app.db.select({
       totalSessions: gaTrafficWindowSummaries.totalSessions,
       totalOrganicSessions: gaTrafficWindowSummaries.totalOrganicSessions,
@@ -13285,9 +13642,9 @@ async function ga4Routes(app, opts) {
       )
     ).get() : null;
     const snapshotTotalsRow = cutoffDate && !windowSummaryRow ? app.db.select({
-      totalSessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.sessions}), 0)`,
-      totalOrganicSessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.organicSessions}), 0)`,
-      totalUsers: sql5`COALESCE(SUM(${gaTrafficSnapshots.users}), 0)`
+      totalSessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.sessions}), 0)`,
+      totalOrganicSessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.organicSessions}), 0)`,
+      totalUsers: sql6`COALESCE(SUM(${gaTrafficSnapshots.users}), 0)`
     }).from(gaTrafficSnapshots).where(and11(...snapshotConditions)).get() : null;
     const summaryRow = cutoffDate ? windowSummaryRow ?? snapshotTotalsRow : app.db.select({
       totalSessions: gaTrafficSummaries.totalSessions,
@@ -13295,38 +13652,38 @@ async function ga4Routes(app, opts) {
       totalUsers: gaTrafficSummaries.totalUsers
     }).from(gaTrafficSummaries).where(eq21(gaTrafficSummaries.projectId, project.id)).get();
     const directTotalRow = windowSummaryRow ? { totalDirectSessions: windowSummaryRow.totalDirectSessions } : app.db.select({
-      totalDirectSessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)`
+      totalDirectSessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)`
     }).from(gaTrafficSnapshots).where(and11(...snapshotConditions)).get();
     const summaryMeta = app.db.select({
       periodStart: gaTrafficSummaries.periodStart,
       periodEnd: gaTrafficSummaries.periodEnd
     }).from(gaTrafficSummaries).where(eq21(gaTrafficSummaries.projectId, project.id)).get();
     const rows = app.db.select({
-      landingPage: sql5`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`,
-      sessions: sql5`SUM(${gaTrafficSnapshots.sessions})`,
-      organicSessions: sql5`SUM(${gaTrafficSnapshots.organicSessions})`,
-      directSessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)`,
-      users: sql5`SUM(${gaTrafficSnapshots.users})`
-    }).from(gaTrafficSnapshots).where(and11(...snapshotConditions)).groupBy(sql5`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`).orderBy(sql5`SUM(${gaTrafficSnapshots.sessions}) DESC`).limit(limit).all();
+      landingPage: sql6`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`,
+      sessions: sql6`SUM(${gaTrafficSnapshots.sessions})`,
+      organicSessions: sql6`SUM(${gaTrafficSnapshots.organicSessions})`,
+      directSessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)`,
+      users: sql6`SUM(${gaTrafficSnapshots.users})`
+    }).from(gaTrafficSnapshots).where(and11(...snapshotConditions)).groupBy(sql6`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`).orderBy(sql6`SUM(${gaTrafficSnapshots.sessions}) DESC`).limit(limit).all();
     const aiReferralRows = app.db.select({
       source: gaAiReferrals.source,
       medium: gaAiReferrals.medium,
       sourceDimension: gaAiReferrals.sourceDimension,
-      sessions: sql5`SUM(${gaAiReferrals.sessions})`,
-      users: sql5`SUM(${gaAiReferrals.users})`
+      sessions: sql6`SUM(${gaAiReferrals.sessions})`,
+      users: sql6`SUM(${gaAiReferrals.users})`
     }).from(gaAiReferrals).where(and11(...aiConditions)).groupBy(gaAiReferrals.source, gaAiReferrals.medium, gaAiReferrals.sourceDimension).all();
     const aiReferralLandingPageRows = app.db.select({
       source: gaAiReferrals.source,
       medium: gaAiReferrals.medium,
       sourceDimension: gaAiReferrals.sourceDimension,
-      landingPage: sql5`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`,
-      sessions: sql5`SUM(${gaAiReferrals.sessions})`,
-      users: sql5`SUM(${gaAiReferrals.users})`
+      landingPage: sql6`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`,
+      sessions: sql6`SUM(${gaAiReferrals.sessions})`,
+      users: sql6`SUM(${gaAiReferrals.users})`
     }).from(gaAiReferrals).where(and11(...aiConditions)).groupBy(
       gaAiReferrals.source,
       gaAiReferrals.medium,
       gaAiReferrals.sourceDimension,
-      sql5`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`
+      sql6`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`
     ).all();
     const aiReferrals = pickWinningDimension(
       aiReferralRows,
@@ -13337,10 +13694,10 @@ async function ga4Routes(app, opts) {
       (r) => `${r.source}\0${r.medium}\0${r.landingPage}`
     );
     const aiDeduped = app.db.select({
-      sessions: sql5`COALESCE(SUM(max_sessions), 0)`,
-      users: sql5`COALESCE(SUM(max_users), 0)`
+      sessions: sql6`COALESCE(SUM(max_sessions), 0)`,
+      users: sql6`COALESCE(SUM(max_users), 0)`
     }).from(
-      sql5`(
+      sql6`(
           SELECT date, source, medium,
                  MAX(dimension_sessions) AS max_sessions,
                  MAX(dimension_users) AS max_users
@@ -13349,7 +13706,7 @@ async function ga4Routes(app, opts) {
                    SUM(sessions) AS dimension_sessions,
                    SUM(users) AS dimension_users
             FROM ga_ai_referrals
-            WHERE project_id = ${project.id}${cutoffDate ? sql5` AND date >= ${cutoffDate}` : sql5``}
+            WHERE project_id = ${project.id}${cutoffDate ? sql6` AND date >= ${cutoffDate}` : sql6``}
             GROUP BY date, source, medium, source_dimension
           )
           GROUP BY date, source, medium
@@ -13357,8 +13714,8 @@ async function ga4Routes(app, opts) {
     ).get();
     const aiBySessionRows = app.db.select({
       channelGroup: gaAiReferrals.channelGroup,
-      sessions: sql5`COALESCE(SUM(${gaAiReferrals.sessions}), 0)`,
-      users: sql5`COALESCE(SUM(${gaAiReferrals.users}), 0)`
+      sessions: sql6`COALESCE(SUM(${gaAiReferrals.sessions}), 0)`,
+      users: sql6`COALESCE(SUM(${gaAiReferrals.users}), 0)`
     }).from(gaAiReferrals).where(and11(...aiConditions, eq21(gaAiReferrals.sourceDimension, "session"))).groupBy(gaAiReferrals.channelGroup).all();
     const aiSessionsByChannelGroup = /* @__PURE__ */ new Map();
     let aiBySessionUsers = 0;
@@ -13371,12 +13728,12 @@ async function ga4Routes(app, opts) {
       source: gaSocialReferrals.source,
       medium: gaSocialReferrals.medium,
       channelGroup: gaSocialReferrals.channelGroup,
-      sessions: sql5`SUM(${gaSocialReferrals.sessions})`,
-      users: sql5`SUM(${gaSocialReferrals.users})`
-    }).from(gaSocialReferrals).where(and11(...socialConditions)).groupBy(gaSocialReferrals.source, gaSocialReferrals.medium, gaSocialReferrals.channelGroup).orderBy(sql5`SUM(${gaSocialReferrals.sessions}) DESC`).all();
+      sessions: sql6`SUM(${gaSocialReferrals.sessions})`,
+      users: sql6`SUM(${gaSocialReferrals.users})`
+    }).from(gaSocialReferrals).where(and11(...socialConditions)).groupBy(gaSocialReferrals.source, gaSocialReferrals.medium, gaSocialReferrals.channelGroup).orderBy(sql6`SUM(${gaSocialReferrals.sessions}) DESC`).all();
     const socialTotals = app.db.select({
-      sessions: sql5`SUM(${gaSocialReferrals.sessions})`,
-      users: sql5`SUM(${gaSocialReferrals.users})`
+      sessions: sql6`SUM(${gaSocialReferrals.sessions})`,
+      users: sql6`SUM(${gaSocialReferrals.users})`
     }).from(gaSocialReferrals).where(and11(...socialConditions)).get();
     const latestSync = app.db.select({ syncedAt: gaTrafficSummaries.syncedAt }).from(gaTrafficSummaries).where(eq21(gaTrafficSummaries.projectId, project.id)).orderBy(desc10(gaTrafficSummaries.syncedAt)).limit(1).get();
     const total = summaryRow?.totalSessions ?? 0;
@@ -13459,21 +13816,21 @@ async function ga4Routes(app, opts) {
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const cutoffDate = windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null;
     const conditions = [eq21(gaAiReferrals.projectId, project.id)];
-    if (cutoffDate) conditions.push(sql5`${gaAiReferrals.date} >= ${cutoffDate}`);
+    if (cutoffDate) conditions.push(sql6`${gaAiReferrals.date} >= ${cutoffDate}`);
     const rows = app.db.select({
       date: gaAiReferrals.date,
       source: gaAiReferrals.source,
       medium: gaAiReferrals.medium,
-      landingPage: sql5`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`,
+      landingPage: sql6`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`,
       sourceDimension: gaAiReferrals.sourceDimension,
-      sessions: sql5`SUM(${gaAiReferrals.sessions})`,
-      users: sql5`SUM(${gaAiReferrals.users})`
+      sessions: sql6`SUM(${gaAiReferrals.sessions})`,
+      users: sql6`SUM(${gaAiReferrals.users})`
     }).from(gaAiReferrals).where(and11(...conditions)).groupBy(
       gaAiReferrals.date,
       gaAiReferrals.source,
       gaAiReferrals.medium,
       gaAiReferrals.sourceDimension,
-      sql5`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`
+      sql6`COALESCE(${gaAiReferrals.landingPageNormalized}, ${gaAiReferrals.landingPage})`
     ).orderBy(gaAiReferrals.date).all();
     return rows;
   });
@@ -13482,7 +13839,7 @@ async function ga4Routes(app, opts) {
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const cutoffDate = windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null;
     const conditions = [eq21(gaSocialReferrals.projectId, project.id)];
-    if (cutoffDate) conditions.push(sql5`${gaSocialReferrals.date} >= ${cutoffDate}`);
+    if (cutoffDate) conditions.push(sql6`${gaSocialReferrals.date} >= ${cutoffDate}`);
     const rows = app.db.select({
       date: gaSocialReferrals.date,
       source: gaSocialReferrals.source,
@@ -13503,10 +13860,10 @@ async function ga4Routes(app, opts) {
       d.setDate(d.getDate() - n);
       return fmt(d);
     };
-    const sumSocial = (from, to) => app.db.select({ sessions: sql5`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and11(
+    const sumSocial = (from, to) => app.db.select({ sessions: sql6`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and11(
       eq21(gaSocialReferrals.projectId, project.id),
-      sql5`${gaSocialReferrals.date} >= ${from}`,
-      sql5`${gaSocialReferrals.date} < ${to}`
+      sql6`${gaSocialReferrals.date} >= ${from}`,
+      sql6`${gaSocialReferrals.date} < ${to}`
     )).get();
     const current7d = sumSocial(daysAgo2(7), fmt(today));
     const prev7d = sumSocial(daysAgo2(14), daysAgo2(7));
@@ -13515,19 +13872,19 @@ async function ga4Routes(app, opts) {
     const pct = (cur, prev) => prev === 0 ? null : Math.round((cur - prev) / prev * 100);
     const sourceCurrent = app.db.select({
       source: gaSocialReferrals.source,
-      sessions: sql5`SUM(${gaSocialReferrals.sessions})`
+      sessions: sql6`SUM(${gaSocialReferrals.sessions})`
     }).from(gaSocialReferrals).where(and11(
       eq21(gaSocialReferrals.projectId, project.id),
-      sql5`${gaSocialReferrals.date} >= ${daysAgo2(7)}`,
-      sql5`${gaSocialReferrals.date} < ${fmt(today)}`
+      sql6`${gaSocialReferrals.date} >= ${daysAgo2(7)}`,
+      sql6`${gaSocialReferrals.date} < ${fmt(today)}`
     )).groupBy(gaSocialReferrals.source).all();
     const sourcePrev = app.db.select({
       source: gaSocialReferrals.source,
-      sessions: sql5`SUM(${gaSocialReferrals.sessions})`
+      sessions: sql6`SUM(${gaSocialReferrals.sessions})`
     }).from(gaSocialReferrals).where(and11(
       eq21(gaSocialReferrals.projectId, project.id),
-      sql5`${gaSocialReferrals.date} >= ${daysAgo2(14)}`,
-      sql5`${gaSocialReferrals.date} < ${daysAgo2(7)}`
+      sql6`${gaSocialReferrals.date} >= ${daysAgo2(14)}`,
+      sql6`${gaSocialReferrals.date} < ${daysAgo2(7)}`
     )).groupBy(gaSocialReferrals.source).all();
     const prevMap = new Map(sourcePrev.map((r) => [r.source, r.sessions]));
     let biggestMover = null;
@@ -13566,16 +13923,16 @@ async function ga4Routes(app, opts) {
       return fmt(d);
     };
     const pct = (cur, prev) => prev === 0 ? null : Math.round((cur - prev) / prev * 100);
-    const sumTotal = (from, to) => app.db.select({ sessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.sessions}), 0)` }).from(gaTrafficSnapshots).where(and11(eq21(gaTrafficSnapshots.projectId, project.id), sql5`${gaTrafficSnapshots.date} >= ${from}`, sql5`${gaTrafficSnapshots.date} < ${to}`)).get();
-    const sumOrganic = (from, to) => app.db.select({ sessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.organicSessions}), 0)` }).from(gaTrafficSnapshots).where(and11(eq21(gaTrafficSnapshots.projectId, project.id), sql5`${gaTrafficSnapshots.date} >= ${from}`, sql5`${gaTrafficSnapshots.date} < ${to}`)).get();
-    const sumDirect = (from, to) => app.db.select({ sessions: sql5`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)` }).from(gaTrafficSnapshots).where(and11(eq21(gaTrafficSnapshots.projectId, project.id), sql5`${gaTrafficSnapshots.date} >= ${from}`, sql5`${gaTrafficSnapshots.date} < ${to}`)).get();
-    const sumAi = (from, to) => app.db.select({ sessions: sql5`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and11(
+    const sumTotal = (from, to) => app.db.select({ sessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.sessions}), 0)` }).from(gaTrafficSnapshots).where(and11(eq21(gaTrafficSnapshots.projectId, project.id), sql6`${gaTrafficSnapshots.date} >= ${from}`, sql6`${gaTrafficSnapshots.date} < ${to}`)).get();
+    const sumOrganic = (from, to) => app.db.select({ sessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.organicSessions}), 0)` }).from(gaTrafficSnapshots).where(and11(eq21(gaTrafficSnapshots.projectId, project.id), sql6`${gaTrafficSnapshots.date} >= ${from}`, sql6`${gaTrafficSnapshots.date} < ${to}`)).get();
+    const sumDirect = (from, to) => app.db.select({ sessions: sql6`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)` }).from(gaTrafficSnapshots).where(and11(eq21(gaTrafficSnapshots.projectId, project.id), sql6`${gaTrafficSnapshots.date} >= ${from}`, sql6`${gaTrafficSnapshots.date} < ${to}`)).get();
+    const sumAi = (from, to) => app.db.select({ sessions: sql6`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and11(
       eq21(gaAiReferrals.projectId, project.id),
-      sql5`${gaAiReferrals.date} >= ${from}`,
-      sql5`${gaAiReferrals.date} < ${to}`,
+      sql6`${gaAiReferrals.date} >= ${from}`,
+      sql6`${gaAiReferrals.date} < ${to}`,
       eq21(gaAiReferrals.sourceDimension, "session")
     )).get();
-    const sumSocial = (from, to) => app.db.select({ sessions: sql5`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and11(eq21(gaSocialReferrals.projectId, project.id), sql5`${gaSocialReferrals.date} >= ${from}`, sql5`${gaSocialReferrals.date} < ${to}`)).get();
+    const sumSocial = (from, to) => app.db.select({ sessions: sql6`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and11(eq21(gaSocialReferrals.projectId, project.id), sql6`${gaSocialReferrals.date} >= ${from}`, sql6`${gaSocialReferrals.date} < ${to}`)).get();
     const todayStr = fmt(today);
     const buildTrend = (sum) => {
       const c7 = sum(daysAgo2(7), todayStr)?.sessions ?? 0;
@@ -13584,16 +13941,16 @@ async function ga4Routes(app, opts) {
       const p30 = sum(daysAgo2(60), daysAgo2(30))?.sessions ?? 0;
       return { sessions7d: c7, sessionsPrev7d: p7, trend7dPct: pct(c7, p7), sessions30d: c30, sessionsPrev30d: p30, trend30dPct: pct(c30, p30) };
     };
-    const aiSourceCurrent = app.db.select({ source: gaAiReferrals.source, sessions: sql5`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and11(
+    const aiSourceCurrent = app.db.select({ source: gaAiReferrals.source, sessions: sql6`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and11(
       eq21(gaAiReferrals.projectId, project.id),
-      sql5`${gaAiReferrals.date} >= ${daysAgo2(7)}`,
-      sql5`${gaAiReferrals.date} < ${todayStr}`,
+      sql6`${gaAiReferrals.date} >= ${daysAgo2(7)}`,
+      sql6`${gaAiReferrals.date} < ${todayStr}`,
       eq21(gaAiReferrals.sourceDimension, "session")
     )).groupBy(gaAiReferrals.source).all();
-    const aiSourcePrev = app.db.select({ source: gaAiReferrals.source, sessions: sql5`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and11(
+    const aiSourcePrev = app.db.select({ source: gaAiReferrals.source, sessions: sql6`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and11(
       eq21(gaAiReferrals.projectId, project.id),
-      sql5`${gaAiReferrals.date} >= ${daysAgo2(14)}`,
-      sql5`${gaAiReferrals.date} < ${daysAgo2(7)}`,
+      sql6`${gaAiReferrals.date} >= ${daysAgo2(14)}`,
+      sql6`${gaAiReferrals.date} < ${daysAgo2(7)}`,
       eq21(gaAiReferrals.sourceDimension, "session")
     )).groupBy(gaAiReferrals.source).all();
     const findBiggestMover = (current, prev) => {
@@ -13610,8 +13967,8 @@ async function ga4Routes(app, opts) {
       }
       return mover;
     };
-    const socialSourceCurrent = app.db.select({ source: gaSocialReferrals.source, sessions: sql5`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and11(eq21(gaSocialReferrals.projectId, project.id), sql5`${gaSocialReferrals.date} >= ${daysAgo2(7)}`, sql5`${gaSocialReferrals.date} < ${todayStr}`)).groupBy(gaSocialReferrals.source).all();
-    const socialSourcePrev = app.db.select({ source: gaSocialReferrals.source, sessions: sql5`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and11(eq21(gaSocialReferrals.projectId, project.id), sql5`${gaSocialReferrals.date} >= ${daysAgo2(14)}`, sql5`${gaSocialReferrals.date} < ${daysAgo2(7)}`)).groupBy(gaSocialReferrals.source).all();
+    const socialSourceCurrent = app.db.select({ source: gaSocialReferrals.source, sessions: sql6`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and11(eq21(gaSocialReferrals.projectId, project.id), sql6`${gaSocialReferrals.date} >= ${daysAgo2(7)}`, sql6`${gaSocialReferrals.date} < ${todayStr}`)).groupBy(gaSocialReferrals.source).all();
+    const socialSourcePrev = app.db.select({ source: gaSocialReferrals.source, sessions: sql6`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and11(eq21(gaSocialReferrals.projectId, project.id), sql6`${gaSocialReferrals.date} >= ${daysAgo2(14)}`, sql6`${gaSocialReferrals.date} < ${daysAgo2(7)}`)).groupBy(gaSocialReferrals.source).all();
     return {
       total: buildTrend(sumTotal),
       organic: buildTrend(sumOrganic),
@@ -13627,12 +13984,12 @@ async function ga4Routes(app, opts) {
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const cutoffDate = windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null;
     const conditions = [eq21(gaTrafficSnapshots.projectId, project.id)];
-    if (cutoffDate) conditions.push(sql5`${gaTrafficSnapshots.date} >= ${cutoffDate}`);
+    if (cutoffDate) conditions.push(sql6`${gaTrafficSnapshots.date} >= ${cutoffDate}`);
     const rows = app.db.select({
       date: gaTrafficSnapshots.date,
-      sessions: sql5`SUM(${gaTrafficSnapshots.sessions})`,
-      organicSessions: sql5`SUM(${gaTrafficSnapshots.organicSessions})`,
-      users: sql5`SUM(${gaTrafficSnapshots.users})`
+      sessions: sql6`SUM(${gaTrafficSnapshots.sessions})`,
+      organicSessions: sql6`SUM(${gaTrafficSnapshots.organicSessions})`,
+      users: sql6`SUM(${gaTrafficSnapshots.users})`
     }).from(gaTrafficSnapshots).where(and11(...conditions)).groupBy(gaTrafficSnapshots.date).orderBy(gaTrafficSnapshots.date).all();
     return rows.map((r) => ({
       date: r.date,
@@ -13645,11 +14002,11 @@ async function ga4Routes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const trafficPages = app.db.select({
-      landingPage: sql5`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`,
-      sessions: sql5`SUM(${gaTrafficSnapshots.sessions})`,
-      organicSessions: sql5`SUM(${gaTrafficSnapshots.organicSessions})`,
-      users: sql5`SUM(${gaTrafficSnapshots.users})`
-    }).from(gaTrafficSnapshots).where(eq21(gaTrafficSnapshots.projectId, project.id)).groupBy(sql5`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`).orderBy(sql5`SUM(${gaTrafficSnapshots.sessions}) DESC`).all();
+      landingPage: sql6`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`,
+      sessions: sql6`SUM(${gaTrafficSnapshots.sessions})`,
+      organicSessions: sql6`SUM(${gaTrafficSnapshots.organicSessions})`,
+      users: sql6`SUM(${gaTrafficSnapshots.users})`
+    }).from(gaTrafficSnapshots).where(eq21(gaTrafficSnapshots.projectId, project.id)).groupBy(sql6`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`).orderBy(sql6`SUM(${gaTrafficSnapshots.sessions}) DESC`).all();
     return {
       pages: trafficPages.map((r) => ({
         landingPage: r.landingPage,
@@ -15286,7 +15643,7 @@ async function wordpressRoutes(app, opts) {
 
 // ../api-routes/src/backlinks.ts
 import crypto18 from "crypto";
-import { and as and13, asc as asc2, desc as desc11, eq as eq22, sql as sql6 } from "drizzle-orm";
+import { and as and13, asc as asc2, desc as desc11, eq as eq22, sql as sql7 } from "drizzle-orm";
 
 // ../integration-commoncrawl/src/constants.ts
 import os3 from "os";
@@ -15570,7 +15927,7 @@ async function queryBacklinks(opts) {
   const reversed = opts.targets.map(reverseDomain);
   const targetList = reversed.map(quote).join(", ");
   const limitClause = opts.limitPerTarget ? `QUALIFY row_number() OVER (PARTITION BY t.target_rev_domain ORDER BY v.num_hosts DESC) <= ${Math.floor(opts.limitPerTarget)}` : "";
-  const sql12 = `
+  const sql14 = `
     WITH vertices AS (
       SELECT * FROM read_csv(
         ${quote(opts.vertexPath)},
@@ -15606,7 +15963,7 @@ async function queryBacklinks(opts) {
   const conn = await instance.connect();
   let rows;
   try {
-    const reader = await conn.runAndReadAll(sql12);
+    const reader = await conn.runAndReadAll(sql14);
     rows = reader.getRowObjects();
   } finally {
     conn.disconnectSync?.();
@@ -15683,7 +16040,7 @@ function pruneCachedRelease(release, opts = {}) {
 }
 
 // ../api-routes/src/backlinks-filter.ts
-import { and as and12, ne, notLike } from "drizzle-orm";
+import { and as and12, ne as ne2, notLike } from "drizzle-orm";
 var BACKLINK_FILTER_PATTERNS = [
   "*.google.com",
   "*.googleusercontent.com",
@@ -15700,10 +16057,10 @@ function backlinkCrawlerExclusionClause() {
   for (const pattern of BACKLINK_FILTER_PATTERNS) {
     if (pattern.startsWith("*.")) {
       const suffix = pattern.slice(2);
-      conditions.push(ne(backlinkDomains.linkingDomain, suffix));
+      conditions.push(ne2(backlinkDomains.linkingDomain, suffix));
       conditions.push(notLike(backlinkDomains.linkingDomain, `%.${suffix}`));
     } else {
-      conditions.push(ne(backlinkDomains.linkingDomain, pattern));
+      conditions.push(ne2(backlinkDomains.linkingDomain, pattern));
     }
   }
   const combined = and12(...conditions);
@@ -15782,12 +16139,12 @@ function computeFilteredSummary(db, base) {
   );
   const filteredCondition = and13(baseDomainCondition, backlinkCrawlerExclusionClause());
   const unfilteredAgg = db.select({
-    count: sql6`count(*)`,
-    total: sql6`coalesce(sum(${backlinkDomains.numHosts}), 0)`
+    count: sql7`count(*)`,
+    total: sql7`coalesce(sum(${backlinkDomains.numHosts}), 0)`
   }).from(backlinkDomains).where(baseDomainCondition).get();
   const filteredAgg = db.select({
-    count: sql6`count(*)`,
-    total: sql6`coalesce(sum(${backlinkDomains.numHosts}), 0)`
+    count: sql7`count(*)`,
+    total: sql7`coalesce(sum(${backlinkDomains.numHosts}), 0)`
   }).from(backlinkDomains).where(filteredCondition).get();
   const top10Rows = db.select({ numHosts: backlinkDomains.numHosts }).from(backlinkDomains).where(filteredCondition).orderBy(desc11(backlinkDomains.numHosts)).limit(10).all();
   const totalLinkingDomains = Number(filteredAgg?.count ?? 0);
@@ -15961,7 +16318,7 @@ async function backlinksRoutes(app, opts) {
       eq22(backlinkDomains.release, targetRelease)
     );
     const domainCondition = excludeCrawlers ? and13(baseDomainCondition, backlinkCrawlerExclusionClause()) : baseDomainCondition;
-    const totalRow = app.db.select({ count: sql6`count(*)` }).from(backlinkDomains).where(domainCondition).get();
+    const totalRow = app.db.select({ count: sql7`count(*)` }).from(backlinkDomains).where(domainCondition).get();
     const rows = app.db.select({
       linkingDomain: backlinkDomains.linkingDomain,
       numHosts: backlinkDomains.numHosts
@@ -15996,7 +16353,7 @@ async function backlinksRoutes(app, opts) {
 
 // ../api-routes/src/traffic.ts
 import crypto20 from "crypto";
-import { and as and14, desc as desc12, eq as eq23, gte, lte, sql as sql7 } from "drizzle-orm";
+import { and as and14, desc as desc12, eq as eq23, gte as gte2, lte as lte2, sql as sql8 } from "drizzle-orm";
 
 // ../integration-cloud-run/src/auth.ts
 import crypto19 from "crypto";
@@ -16849,7 +17206,7 @@ async function trafficRoutes(app, opts) {
             crawlerEventsHourly.status
           ],
           set: {
-            hits: sql7`${crawlerEventsHourly.hits} + ${bucket.hits}`,
+            hits: sql8`${crawlerEventsHourly.hits} + ${bucket.hits}`,
             sampledUserAgent: bucket.sampledUserAgent,
             updatedAt: finishedAt
           }
@@ -16884,7 +17241,7 @@ async function trafficRoutes(app, opts) {
             aiReferralEventsHourly.status
           ],
           set: {
-            sessionsOrHits: sql7`${aiReferralEventsHourly.sessionsOrHits} + ${bucket.hits}`,
+            sessionsOrHits: sql8`${aiReferralEventsHourly.sessionsOrHits} + ${bucket.hits}`,
             updatedAt: finishedAt
           }
         }).run();
@@ -16952,22 +17309,22 @@ async function trafficRoutes(app, opts) {
     return response;
   });
   function buildSourceDetail(projectId, row, since) {
-    const crawlerTotals = app.db.select({ total: sql7`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
+    const crawlerTotals = app.db.select({ total: sql8`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
       and14(
         eq23(crawlerEventsHourly.sourceId, row.id),
-        gte(crawlerEventsHourly.tsHour, since)
+        gte2(crawlerEventsHourly.tsHour, since)
       )
     ).get();
-    const aiTotals = app.db.select({ total: sql7`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
+    const aiTotals = app.db.select({ total: sql8`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
       and14(
         eq23(aiReferralEventsHourly.sourceId, row.id),
-        gte(aiReferralEventsHourly.tsHour, since)
+        gte2(aiReferralEventsHourly.tsHour, since)
       )
     ).get();
-    const sampleTotals = app.db.select({ total: sql7`COUNT(*)` }).from(rawEventSamples).where(
+    const sampleTotals = app.db.select({ total: sql8`COUNT(*)` }).from(rawEventSamples).where(
       and14(
         eq23(rawEventSamples.sourceId, row.id),
-        gte(rawEventSamples.ts, since)
+        gte2(rawEventSamples.ts, since)
       )
     ).get();
     const latestRun = app.db.select().from(runs).where(
@@ -17061,12 +17418,12 @@ async function trafficRoutes(app, opts) {
     if (kind === "all" || kind === TrafficEventKinds.crawler) {
       const crawlerFilters = [
         eq23(crawlerEventsHourly.projectId, project.id),
-        gte(crawlerEventsHourly.tsHour, sinceIso),
-        lte(crawlerEventsHourly.tsHour, untilIso)
+        gte2(crawlerEventsHourly.tsHour, sinceIso),
+        lte2(crawlerEventsHourly.tsHour, untilIso)
       ];
       if (sourceIdParam) crawlerFilters.push(eq23(crawlerEventsHourly.sourceId, sourceIdParam));
       const crawlerWhere = and14(...crawlerFilters);
-      const total = app.db.select({ total: sql7`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(crawlerWhere).get();
+      const total = app.db.select({ total: sql8`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(crawlerWhere).get();
       crawlerTotal = Number(total?.total ?? 0);
       const rows = app.db.select().from(crawlerEventsHourly).where(crawlerWhere).orderBy(desc12(crawlerEventsHourly.tsHour)).limit(limit).all();
       for (const r of rows) {
@@ -17086,12 +17443,12 @@ async function trafficRoutes(app, opts) {
     if (kind === "all" || kind === TrafficEventKinds["ai-referral"]) {
       const aiFilters = [
         eq23(aiReferralEventsHourly.projectId, project.id),
-        gte(aiReferralEventsHourly.tsHour, sinceIso),
-        lte(aiReferralEventsHourly.tsHour, untilIso)
+        gte2(aiReferralEventsHourly.tsHour, sinceIso),
+        lte2(aiReferralEventsHourly.tsHour, untilIso)
       ];
       if (sourceIdParam) aiFilters.push(eq23(aiReferralEventsHourly.sourceId, sourceIdParam));
       const aiWhere = and14(...aiFilters);
-      const total = app.db.select({ total: sql7`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(aiWhere).get();
+      const total = app.db.select({ total: sql8`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(aiWhere).get();
       aiReferralTotal = Number(total?.total ?? 0);
       const rows = app.db.select().from(aiReferralEventsHourly).where(aiWhere).orderBy(desc12(aiReferralEventsHourly.tsHour)).limit(limit).all();
       for (const r of rows) {
@@ -17744,12 +18101,308 @@ var providersConfiguredCheck = {
 };
 var PROVIDERS_CHECKS = [providersConfiguredCheck];
 
+// ../api-routes/src/doctor/checks/traffic-source.ts
+import { and as and15, eq as eq24, gte as gte3, ne as ne3, sql as sql9 } from "drizzle-orm";
+var RECENT_DATA_WARN_DAYS = 7;
+var RECENT_DATA_FAIL_DAYS = 30;
+function skippedNoProject2() {
+  return {
+    status: CheckStatuses.skipped,
+    code: "traffic.no-project",
+    summary: "Project context required for traffic source checks.",
+    remediation: "Run `canonry doctor --project <name>` to scope this check to a project."
+  };
+}
+function loadProbes(ctx) {
+  if (!ctx.project) return [];
+  const rows = ctx.db.select().from(trafficSources).where(
+    and15(
+      eq24(trafficSources.projectId, ctx.project.id),
+      ne3(trafficSources.status, TrafficSourceStatuses.archived)
+    )
+  ).all();
+  return rows.map((r) => ({
+    id: r.id,
+    projectId: r.projectId,
+    projectName: ctx.project.name,
+    sourceType: r.sourceType,
+    displayName: r.displayName,
+    status: r.status,
+    lastSyncedAt: r.lastSyncedAt,
+    lastError: r.lastError,
+    configJson: r.configJson
+  }));
+}
+var sourceConnectedCheck = {
+  id: "traffic.source.connected",
+  category: CheckCategories.integrations,
+  scope: CheckScopes.project,
+  title: "Traffic source connected",
+  run: (ctx) => {
+    if (!ctx.project) return skippedNoProject2();
+    const sources = loadProbes(ctx);
+    if (sources.length === 0) {
+      return {
+        status: CheckStatuses.skipped,
+        code: "traffic.source.none",
+        summary: "No server-side traffic source connected \u2014 server-log AI visibility data unavailable for this project.",
+        remediation: "Connect a traffic source via `canonry traffic connect <type> <project>` to surface crawler hits and AI-referral arrivals from your server logs.",
+        details: { sourceCount: 0 }
+      };
+    }
+    const errored = sources.filter((s) => s.status === "error");
+    if (errored.length > 0 && errored.length === sources.length) {
+      return {
+        status: CheckStatuses.fail,
+        code: "traffic.source.all-errored",
+        summary: `All ${sources.length} traffic source(s) are in error state. No data is being ingested.`,
+        remediation: errored[0].lastError ? `Latest error: "${errored[0].lastError}". Re-connect the source or run \`canonry traffic sync <project> --source <id>\` to retry.` : "Run `canonry traffic sources <project>` to inspect the failing source(s) and re-connect.",
+        details: { sourceCount: sources.length, erroredIds: errored.map((s) => s.id) }
+      };
+    }
+    if (errored.length > 0) {
+      return {
+        status: CheckStatuses.warn,
+        code: "traffic.source.partially-errored",
+        summary: `${errored.length} of ${sources.length} traffic source(s) are in error state.`,
+        remediation: "Run `canonry traffic sources <project>` to inspect the failing sources individually.",
+        details: { sourceCount: sources.length, erroredIds: errored.map((s) => s.id) }
+      };
+    }
+    return {
+      status: CheckStatuses.ok,
+      code: "traffic.source.connected",
+      summary: `${sources.length} traffic source(s) connected: ${sources.map((s) => s.displayName).join(", ")}.`,
+      details: { sourceCount: sources.length, sourceTypes: [...new Set(sources.map((s) => s.sourceType))] }
+    };
+  }
+};
+var recentDataCheck = {
+  id: "traffic.source.recent-data",
+  category: CheckCategories.integrations,
+  scope: CheckScopes.project,
+  title: "Traffic source recent data",
+  run: (ctx) => {
+    if (!ctx.project) return skippedNoProject2();
+    const sources = loadProbes(ctx);
+    if (sources.length === 0) {
+      return {
+        status: CheckStatuses.skipped,
+        code: "traffic.recent-data.no-source",
+        summary: "No traffic source connected \u2014 recent-data check skipped."
+      };
+    }
+    const now = /* @__PURE__ */ new Date();
+    const warnCutoff = new Date(now.getTime() - RECENT_DATA_WARN_DAYS * 24 * 60 * 6e4).toISOString();
+    const failCutoff = new Date(now.getTime() - RECENT_DATA_FAIL_DAYS * 24 * 60 * 6e4).toISOString();
+    const recentCrawlers = Number(
+      ctx.db.select({ total: sql9`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
+        and15(
+          eq24(crawlerEventsHourly.projectId, ctx.project.id),
+          gte3(crawlerEventsHourly.tsHour, warnCutoff)
+        )
+      ).get()?.total ?? 0
+    );
+    const recentReferrals = Number(
+      ctx.db.select({ total: sql9`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
+        and15(
+          eq24(aiReferralEventsHourly.projectId, ctx.project.id),
+          gte3(aiReferralEventsHourly.tsHour, warnCutoff)
+        )
+      ).get()?.total ?? 0
+    );
+    if (recentCrawlers > 0 || recentReferrals > 0) {
+      return {
+        status: CheckStatuses.ok,
+        code: "traffic.recent-data.fresh",
+        summary: `${recentCrawlers} crawler hit(s) and ${recentReferrals} AI-referral arrival(s) in the last ${RECENT_DATA_WARN_DAYS} days.`,
+        details: { crawlerHits: recentCrawlers, referralArrivals: recentReferrals, windowDays: RECENT_DATA_WARN_DAYS }
+      };
+    }
+    const olderCrawlers = Number(
+      ctx.db.select({ total: sql9`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
+        and15(
+          eq24(crawlerEventsHourly.projectId, ctx.project.id),
+          gte3(crawlerEventsHourly.tsHour, failCutoff)
+        )
+      ).get()?.total ?? 0
+    );
+    const lastSyncedAt = sources.map((s) => s.lastSyncedAt).filter(Boolean).sort().at(-1) ?? null;
+    if (olderCrawlers > 0 || lastSyncedAt) {
+      return {
+        status: CheckStatuses.warn,
+        code: "traffic.recent-data.stale",
+        summary: `No crawler hits or AI-referral arrivals in the last ${RECENT_DATA_WARN_DAYS} days, though older data exists.`,
+        remediation: lastSyncedAt ? `Last sync: ${lastSyncedAt}. Run \`canonry traffic sync <project>\` to refresh, or check the source connection.` : "Run `canonry traffic sync <project>` to pull recent events.",
+        details: { lastSyncedAt, sourceCount: sources.length }
+      };
+    }
+    return {
+      status: CheckStatuses.fail,
+      code: "traffic.recent-data.empty",
+      summary: `No traffic data in the last ${RECENT_DATA_FAIL_DAYS} days. The source is connected but isn't ingesting.`,
+      remediation: "Verify the source's configuration with `canonry traffic sources <project>` and run a manual sync to confirm credentials + scopes are still valid.",
+      details: { sourceCount: sources.length }
+    };
+  }
+};
+async function runValidator(source, validator, fallbackId, fallbackLabel) {
+  if (!validator) {
+    return {
+      source,
+      output: {
+        status: CheckStatuses.skipped,
+        code: `traffic.${fallbackId}.no-validator`,
+        summary: `No ${fallbackLabel} validator registered for source type "${source.sourceType}".`
+      }
+    };
+  }
+  try {
+    const result = await validator(source);
+    if (!result) {
+      return {
+        source,
+        output: {
+          status: CheckStatuses.skipped,
+          code: `traffic.${fallbackId}.unsupported`,
+          summary: `Validator for "${source.sourceType}" does not implement ${fallbackLabel} validation.`
+        }
+      };
+    }
+    return { source, output: result };
+  } catch (e) {
+    const msg = e instanceof Error ? e.message : String(e);
+    return {
+      source,
+      output: {
+        status: CheckStatuses.fail,
+        code: `traffic.${fallbackId}.validator-error`,
+        summary: `${fallbackLabel} validator threw: ${msg}.`,
+        remediation: "Check the source configuration and credentials, then re-run the doctor."
+      }
+    };
+  }
+}
+function summarizePerSourceResults(fallbackId, fallbackLabel, results) {
+  const failed = results.filter((r) => r.output.status === CheckStatuses.fail);
+  const warned = results.filter((r) => r.output.status === CheckStatuses.warn);
+  const skipped = results.filter((r) => r.output.status === CheckStatuses.skipped);
+  const ok = results.filter((r) => r.output.status === CheckStatuses.ok);
+  const detail = {
+    sources: results.map((r) => ({
+      id: r.source.id,
+      sourceType: r.source.sourceType,
+      displayName: r.source.displayName,
+      status: r.output.status,
+      code: r.output.code,
+      summary: r.output.summary
+    }))
+  };
+  if (failed.length > 0) {
+    return {
+      status: CheckStatuses.fail,
+      code: `traffic.${fallbackId}.failed`,
+      summary: `${failed.length} of ${results.length} source(s) failed ${fallbackLabel} validation: ${failed.map((r) => `${r.source.displayName} (${r.output.summary})`).join("; ")}.`,
+      remediation: failed[0].output.remediation ?? `Inspect the failing source(s) \u2014 see details.sources for per-source codes.`,
+      details: detail
+    };
+  }
+  if (warned.length > 0) {
+    return {
+      status: CheckStatuses.warn,
+      code: `traffic.${fallbackId}.warned`,
+      summary: `${warned.length} of ${results.length} source(s) raised warnings during ${fallbackLabel} validation.`,
+      remediation: warned[0].output.remediation ?? `Review the warning(s) \u2014 see details.sources.`,
+      details: detail
+    };
+  }
+  if (ok.length > 0) {
+    return {
+      status: CheckStatuses.ok,
+      code: `traffic.${fallbackId}.ok`,
+      summary: `${ok.length} source(s) passed ${fallbackLabel} validation${skipped.length > 0 ? ` (${skipped.length} skipped)` : ""}.`,
+      details: detail
+    };
+  }
+  return {
+    status: CheckStatuses.skipped,
+    code: `traffic.${fallbackId}.all-skipped`,
+    summary: `No source-type validator was available for any of the ${results.length} connected source(s).`,
+    details: detail
+  };
+}
+var credentialsCheck = {
+  id: "traffic.source.credentials",
+  category: CheckCategories.auth,
+  scope: CheckScopes.project,
+  title: "Traffic source credentials",
+  run: async (ctx) => {
+    if (!ctx.project) return skippedNoProject2();
+    const sources = loadProbes(ctx);
+    if (sources.length === 0) {
+      return {
+        status: CheckStatuses.skipped,
+        code: "traffic.credentials.no-source",
+        summary: "No traffic source connected \u2014 credentials check skipped."
+      };
+    }
+    const validators = ctx.trafficSourceValidators ?? {};
+    const results = await Promise.all(
+      sources.map(
+        (s) => runValidator(
+          s,
+          validators[s.sourceType]?.validateCredentials?.bind(validators[s.sourceType]),
+          "credentials",
+          "credentials"
+        )
+      )
+    );
+    return summarizePerSourceResults("credentials", "credentials", results);
+  }
+};
+var scopesCheck2 = {
+  id: "traffic.source.scopes",
+  category: CheckCategories.auth,
+  scope: CheckScopes.project,
+  title: "Traffic source scopes",
+  run: async (ctx) => {
+    if (!ctx.project) return skippedNoProject2();
+    const sources = loadProbes(ctx);
+    if (sources.length === 0) {
+      return {
+        status: CheckStatuses.skipped,
+        code: "traffic.scopes.no-source",
+        summary: "No traffic source connected \u2014 scopes check skipped."
+      };
+    }
+    const validators = ctx.trafficSourceValidators ?? {};
+    const results = await Promise.all(
+      sources.map(
+        (s) => runValidator(
+          s,
+          validators[s.sourceType]?.validateScopes?.bind(validators[s.sourceType]),
+          "scopes",
+          "scopes"
+        )
+      )
+    );
+    return summarizePerSourceResults("scopes", "scopes", results);
+  }
+};
+var TRAFFIC_SOURCE_CHECKS = [
+  sourceConnectedCheck,
+  recentDataCheck,
+  credentialsCheck,
+  scopesCheck2
+];
+
 // ../api-routes/src/doctor/registry.ts
 var ALL_CHECKS = [
   ...GOOGLE_AUTH_CHECKS,
   ...BING_AUTH_CHECKS,
   ...GA_AUTH_CHECKS,
-  ...PROVIDERS_CHECKS
+  ...PROVIDERS_CHECKS,
+  ...TRAFFIC_SOURCE_CHECKS
 ];
 var CHECK_BY_ID = Object.fromEntries(
   ALL_CHECKS.map((check) => [check.id, check])
@@ -17836,7 +18489,8 @@ async function doctorRoutes(app, opts) {
       ga4CredentialStore: opts.ga4CredentialStore,
       getGoogleAuthConfig: opts.getGoogleAuthConfig,
       redirectUri,
-      providerSummary: opts.providerSummary
+      providerSummary: opts.providerSummary,
+      trafficSourceValidators: opts.trafficSourceValidators
     };
     return runChecks(ctx, ALL_CHECKS, { checkIds });
   });
@@ -17856,7 +18510,8 @@ async function doctorRoutes(app, opts) {
       ga4CredentialStore: opts.ga4CredentialStore,
       getGoogleAuthConfig: opts.getGoogleAuthConfig,
       redirectUri,
-      providerSummary: opts.providerSummary
+      providerSummary: opts.providerSummary,
+      trafficSourceValidators: opts.trafficSourceValidators
     };
     return runChecks(ctx, ALL_CHECKS, { checkIds });
   });
@@ -17995,13 +18650,57 @@ async function apiRoutes(app, opts) {
       ga4CredentialStore: opts.ga4CredentialStore,
       getGoogleAuthConfig: opts.getGoogleAuthConfig,
       publicUrl: opts.publicUrl,
-      providerSummary: opts.providerSummary
+      providerSummary: opts.providerSummary,
+      trafficSourceValidators: buildTrafficSourceValidators(opts)
     });
     if (opts.registerAuthenticatedRoutes) {
       await opts.registerAuthenticatedRoutes(api);
     }
   }, { prefix: opts.routePrefix ?? "/api/v1" });
 }
+function buildTrafficSourceValidators(opts) {
+  const validators = {};
+  if (opts.cloudRunCredentialStore) {
+    const store = opts.cloudRunCredentialStore;
+    const resolveToken = opts.resolveCloudRunAccessToken ?? defaultResolveAccessToken;
+    validators["cloud-run"] = {
+      validateCredentials: async (source) => {
+        const record = store.getConnection(source.projectName);
+        if (!record) {
+          return {
+            status: CheckStatuses.fail,
+            code: "traffic.credentials.missing",
+            summary: `No Cloud Run credential found in ~/.canonry/config.yaml for project "${source.projectName}".`,
+            remediation: "Re-run `canonry traffic connect cloud-run <project> --gcp-project <id> --service-account-key <path>`."
+          };
+        }
+        try {
+          await resolveToken(record);
+          return {
+            status: CheckStatuses.ok,
+            code: "traffic.credentials.resolved",
+            summary: `Cloud Run access token resolves for "${source.displayName}" (project ${record.gcpProjectId}).`
+          };
+        } catch (e) {
+          const msg = e instanceof Error ? e.message : String(e);
+          return {
+            status: CheckStatuses.fail,
+            code: "traffic.credentials.resolve-failed",
+            summary: `Failed to resolve Cloud Run access token: ${msg}.`,
+            remediation: "Verify the service-account key in ~/.canonry/config.yaml is unexpired and well-formed. Re-connect the source if needed."
+          };
+        }
+      },
+      // Cloud Run scopes are implicit in the service-account key — Cloud
+      // Logging viewer is the only required scope today, and it's enforced
+      // at the IAM layer rather than baked into the token. We surface a
+      // skipped result so the framework is uniform without producing a
+      // false signal.
+      validateScopes: () => null
+    };
+  }
+  return Object.keys(validators).length > 0 ? validators : void 0;
+}
 
 // src/server.ts
 import os6 from "os";
@@ -20493,7 +21192,7 @@ import crypto22 from "crypto";
 import fs7 from "fs";
 import path9 from "path";
 import os5 from "os";
-import { and as and15, eq as eq24, inArray as inArray7, sql as sql8 } from "drizzle-orm";
+import { and as and16, eq as eq25, inArray as inArray7, sql as sql10 } from "drizzle-orm";
 
 // src/run-telemetry.ts
 import crypto21 from "crypto";
@@ -20838,7 +21537,7 @@ var JobRunner = class {
     if (stale.length === 0) return;
     const now = (/* @__PURE__ */ new Date()).toISOString();
     for (const run of stale) {
-      this.db.update(runs).set({ status: "failed", finishedAt: now, error: "Server restarted while run was in progress" }).where(eq24(runs.id, run.id)).run();
+      this.db.update(runs).set({ status: "failed", finishedAt: now, error: "Server restarted while run was in progress" }).where(eq25(runs.id, run.id)).run();
       log.warn("run.recovered-stale", { runId: run.id, previousStatus: run.status });
     }
   }
@@ -20872,10 +21571,10 @@ var JobRunner = class {
         throw new Error(`Run ${runId} is not executable from status '${existingRun.status}'`);
       }
       if (existingRun.status === "queued") {
-        this.db.update(runs).set({ status: "running", startedAt: now }).where(and15(eq24(runs.id, runId), eq24(runs.status, "queued"))).run();
+        this.db.update(runs).set({ status: "running", startedAt: now }).where(and16(eq25(runs.id, runId), eq25(runs.status, "queued"))).run();
       }
       this.throwIfRunCancelled(runId);
-      const project = this.db.select().from(projects).where(eq24(projects.id, projectId)).get();
+      const project = this.db.select().from(projects).where(eq25(projects.id, projectId)).get();
       if (!project) {
         throw new Error(`Project ${projectId} not found`);
       }
@@ -20896,8 +21595,8 @@ var JobRunner = class {
         throw new Error("No providers configured. Add at least one provider API key.");
       }
       log.info("run.dispatch", { runId, providerCount: activeProviders.length, providers: activeProviders.map((p) => p.adapter.name) });
-      projectQueries = this.db.select().from(queries).where(eq24(queries.projectId, projectId)).all();
-      const projectCompetitors = this.db.select().from(competitors).where(eq24(competitors.projectId, projectId)).all();
+      projectQueries = this.db.select().from(queries).where(eq25(queries.projectId, projectId)).all();
+      const projectCompetitors = this.db.select().from(competitors).where(eq25(competitors.projectId, projectId)).all();
       const competitorDomains = projectCompetitors.map((c) => c.domain);
       const allDomains = effectiveDomains({
         canonicalDomain: project.canonicalDomain,
@@ -20915,7 +21614,7 @@ var JobRunner = class {
       const todayPeriod = getCurrentUsageDay();
       for (const p of activeProviders) {
         const providerScope = `${projectId}:${p.adapter.name}`;
-        const providerUsage = this.db.select().from(usageCounters).where(eq24(usageCounters.scope, providerScope)).all().filter((r) => r.period === todayPeriod && r.metric === "queries").reduce((sum, r) => sum + r.count, 0);
+        const providerUsage = this.db.select().from(usageCounters).where(eq25(usageCounters.scope, providerScope)).all().filter((r) => r.period === todayPeriod && r.metric === "queries").reduce((sum, r) => sum + r.count, 0);
         const limit = p.config.quotaPolicy.maxRequestsPerDay;
         if (providerUsage + queriesPerProvider > limit) {
           throw new Error(
@@ -21058,12 +21757,12 @@ var JobRunner = class {
       const someFailed = providerErrors.size > 0;
       if (allFailed) {
         const errorDetail = serializeRunError(buildRunErrorFromMessages(providerErrors));
-        this.db.update(runs).set({ status: "failed", finishedAt: (/* @__PURE__ */ new Date()).toISOString(), error: errorDetail }).where(eq24(runs.id, runId)).run();
+        this.db.update(runs).set({ status: "failed", finishedAt: (/* @__PURE__ */ new Date()).toISOString(), error: errorDetail }).where(eq25(runs.id, runId)).run();
       } else if (someFailed) {
         const errorDetail = serializeRunError(buildRunErrorFromMessages(providerErrors));
-        this.db.update(runs).set({ status: "partial", finishedAt: (/* @__PURE__ */ new Date()).toISOString(), error: errorDetail }).where(eq24(runs.id, runId)).run();
+        this.db.update(runs).set({ status: "partial", finishedAt: (/* @__PURE__ */ new Date()).toISOString(), error: errorDetail }).where(eq25(runs.id, runId)).run();
       } else {
-        this.db.update(runs).set({ status: "completed", finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq24(runs.id, runId)).run();
+        this.db.update(runs).set({ status: "completed", finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq25(runs.id, runId)).run();
       }
       this.flushProviderUsage(projectId, providerDispatchCounts);
       const finalStatus = allFailed ? "failed" : someFailed ? "partial" : "completed";
@@ -21109,7 +21808,7 @@ var JobRunner = class {
         status: "failed",
         finishedAt: (/* @__PURE__ */ new Date()).toISOString(),
         error: errorMessage
-      }).where(eq24(runs.id, runId)).run();
+      }).where(eq25(runs.id, runId)).run();
       this.flushProviderUsage(projectId, providerDispatchCounts);
       const abortReason = classifyRunAbortReason(errorMessage);
       const phases = buildPhases({ startTime, providerCallStart, providerCallEnd });
@@ -21162,7 +21861,7 @@ var JobRunner = class {
       updatedAt: now
     }).onConflictDoUpdate({
       target: [usageCounters.scope, usageCounters.period, usageCounters.metric],
-      set: { count: sql8`${usageCounters.count} + ${count}`, updatedAt: now }
+      set: { count: sql10`${usageCounters.count} + ${count}`, updatedAt: now }
     }).run();
   }
   flushProviderUsage(projectId, providerDispatchCounts) {
@@ -21177,7 +21876,7 @@ var JobRunner = class {
       finishedAt: runs.finishedAt,
       error: runs.error,
       trigger: runs.trigger
-    }).from(runs).where(eq24(runs.id, runId)).get();
+    }).from(runs).where(eq25(runs.id, runId)).get();
   }
   isRunCancelled(runId) {
     return this.getRunState(runId)?.status === "cancelled";
@@ -21193,7 +21892,7 @@ var JobRunner = class {
       this.db.update(runs).set({
         finishedAt: (/* @__PURE__ */ new Date()).toISOString(),
         error: currentRun.error ?? "Cancelled by user"
-      }).where(eq24(runs.id, runId)).run();
+      }).where(eq25(runs.id, runId)).run();
     }
     trackEvent(
       "run.completed",
@@ -21231,7 +21930,7 @@ function buildPhases(input) {
 
 // src/gsc-sync.ts
 import crypto23 from "crypto";
-import { eq as eq25, and as and16, sql as sql9 } from "drizzle-orm";
+import { eq as eq26, and as and17, sql as sql11 } from "drizzle-orm";
 var log2 = createLogger("GscSync");
 function formatDate3(d) {
   return d.toISOString().split("T")[0];
@@ -21243,13 +21942,13 @@ function daysAgo(n) {
 }
 async function executeGscSync(db, runId, projectId, opts) {
   const now = (/* @__PURE__ */ new Date()).toISOString();
-  db.update(runs).set({ status: "running", startedAt: now }).where(eq25(runs.id, runId)).run();
+  db.update(runs).set({ status: "running", startedAt: now }).where(eq26(runs.id, runId)).run();
   try {
     const { clientId: googleClientId, clientSecret: googleClientSecret } = getGoogleAuthConfig(opts.config);
     if (!googleClientId || !googleClientSecret) {
       throw new Error("Google OAuth is not configured in the local Canonry config");
     }
-    const project = db.select().from(projects).where(eq25(projects.id, projectId)).get();
+    const project = db.select().from(projects).where(eq26(projects.id, projectId)).get();
     if (!project) {
       throw new Error(`Project not found: ${projectId}`);
     }
@@ -21283,10 +21982,10 @@ async function executeGscSync(db, runId, projectId, opts) {
     });
     log2.info("fetch.complete", { runId, projectId, rowCount: rows.length });
     db.delete(gscSearchData).where(
-      and16(
-        eq25(gscSearchData.projectId, projectId),
-        sql9`${gscSearchData.date} >= ${startDate}`,
-        sql9`${gscSearchData.date} <= ${endDate}`
+      and17(
+        eq26(gscSearchData.projectId, projectId),
+        sql11`${gscSearchData.date} >= ${startDate}`,
+        sql11`${gscSearchData.date} <= ${endDate}`
       )
     ).run();
     const batchSize = 500;
@@ -21351,7 +22050,7 @@ async function executeGscSync(db, runId, projectId, opts) {
         log2.error("inspect.url-failed", { runId, projectId, url: pageUrl, error: err instanceof Error ? err.message : String(err) });
       }
     }
-    const allInspections = db.select().from(gscUrlInspections).where(eq25(gscUrlInspections.projectId, projectId)).all();
+    const allInspections = db.select().from(gscUrlInspections).where(eq26(gscUrlInspections.projectId, projectId)).all();
     const latestByUrl = /* @__PURE__ */ new Map();
     for (const row of allInspections) {
       const existing = latestByUrl.get(row.url);
@@ -21372,7 +22071,7 @@ async function executeGscSync(db, runId, projectId, opts) {
       }
     }
     const snapshotDate = formatDate3(/* @__PURE__ */ new Date());
-    db.delete(gscCoverageSnapshots).where(and16(eq25(gscCoverageSnapshots.projectId, projectId), eq25(gscCoverageSnapshots.date, snapshotDate))).run();
+    db.delete(gscCoverageSnapshots).where(and17(eq26(gscCoverageSnapshots.projectId, projectId), eq26(gscCoverageSnapshots.date, snapshotDate))).run();
     db.insert(gscCoverageSnapshots).values({
       id: crypto23.randomUUID(),
       projectId,
@@ -21383,11 +22082,11 @@ async function executeGscSync(db, runId, projectId, opts) {
       reasonBreakdown: JSON.stringify(reasonCounts),
       createdAt: (/* @__PURE__ */ new Date()).toISOString()
     }).run();
-    db.update(runs).set({ status: "completed", finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq25(runs.id, runId)).run();
+    db.update(runs).set({ status: "completed", finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq26(runs.id, runId)).run();
     log2.info("sync.completed", { runId, projectId, searchDataRows: rows.length, urlInspections: topPages.length, indexed: snapIndexed, notIndexed: snapNotIndexed });
   } catch (err) {
     const errorMsg = err instanceof Error ? err.message : String(err);
-    db.update(runs).set({ status: "failed", error: errorMsg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq25(runs.id, runId)).run();
+    db.update(runs).set({ status: "failed", error: errorMsg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq26(runs.id, runId)).run();
     log2.error("sync.failed", { runId, projectId, error: errorMsg });
     throw err;
   }
@@ -21395,7 +22094,7 @@ async function executeGscSync(db, runId, projectId, opts) {
 
 // src/gsc-inspect-sitemap.ts
 import crypto24 from "crypto";
-import { eq as eq26, and as and17 } from "drizzle-orm";
+import { eq as eq27, and as and18 } from "drizzle-orm";
 
 // src/sitemap-parser.ts
 var log3 = createLogger("SitemapParser");
@@ -21516,13 +22215,13 @@ async function parseSitemapRecursive(url, urls, visited, depth, isChild) {
 var log4 = createLogger("InspectSitemap");
 async function executeInspectSitemap(db, runId, projectId, opts) {
   const now = (/* @__PURE__ */ new Date()).toISOString();
-  db.update(runs).set({ status: "running", startedAt: now }).where(eq26(runs.id, runId)).run();
+  db.update(runs).set({ status: "running", startedAt: now }).where(eq27(runs.id, runId)).run();
   try {
     const { clientId: googleClientId, clientSecret: googleClientSecret } = getGoogleAuthConfig(opts.config);
     if (!googleClientId || !googleClientSecret) {
       throw new Error("Google OAuth is not configured in the local Canonry config");
     }
-    const project = db.select().from(projects).where(eq26(projects.id, projectId)).get();
+    const project = db.select().from(projects).where(eq27(projects.id, projectId)).get();
     if (!project) {
       throw new Error(`Project not found: ${projectId}`);
     }
@@ -21590,7 +22289,7 @@ async function executeInspectSitemap(db, runId, projectId, opts) {
         await new Promise((r) => setTimeout(r, 1e3));
       }
     }
-    const allInspections = db.select().from(gscUrlInspections).where(eq26(gscUrlInspections.projectId, projectId)).all();
+    const allInspections = db.select().from(gscUrlInspections).where(eq27(gscUrlInspections.projectId, projectId)).all();
     const latestByUrl = /* @__PURE__ */ new Map();
     for (const row of allInspections) {
       const existing = latestByUrl.get(row.url);
@@ -21611,7 +22310,7 @@ async function executeInspectSitemap(db, runId, projectId, opts) {
       }
     }
     const snapshotDate = (/* @__PURE__ */ new Date()).toISOString().split("T")[0];
-    db.delete(gscCoverageSnapshots).where(and17(eq26(gscCoverageSnapshots.projectId, projectId), eq26(gscCoverageSnapshots.date, snapshotDate))).run();
+    db.delete(gscCoverageSnapshots).where(and18(eq27(gscCoverageSnapshots.projectId, projectId), eq27(gscCoverageSnapshots.date, snapshotDate))).run();
     db.insert(gscCoverageSnapshots).values({
       id: crypto24.randomUUID(),
       projectId,
@@ -21623,11 +22322,11 @@ async function executeInspectSitemap(db, runId, projectId, opts) {
       createdAt: (/* @__PURE__ */ new Date()).toISOString()
     }).run();
     const status = errors > 0 && inspected > 0 ? "partial" : errors === urls.length ? "failed" : "completed";
-    db.update(runs).set({ status, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq26(runs.id, runId)).run();
+    db.update(runs).set({ status, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq27(runs.id, runId)).run();
     log4.info("inspect.completed", { runId, projectId, inspected, errors, total: urls.length, indexed: snapIndexed, notIndexed: snapNotIndexed });
   } catch (err) {
     const errorMsg = err instanceof Error ? err.message : String(err);
-    db.update(runs).set({ status: "failed", error: errorMsg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq26(runs.id, runId)).run();
+    db.update(runs).set({ status: "failed", error: errorMsg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq27(runs.id, runId)).run();
     log4.error("inspect.failed", { runId, projectId, error: errorMsg });
     throw err;
   }
@@ -21635,7 +22334,7 @@ async function executeInspectSitemap(db, runId, projectId, opts) {
 
 // src/bing-inspect-sitemap.ts
 import crypto25 from "crypto";
-import { eq as eq27, desc as desc13 } from "drizzle-orm";
+import { eq as eq28, desc as desc13 } from "drizzle-orm";
 var log5 = createLogger("BingInspectSitemap");
 function parseBingDate2(value) {
   if (!value) return null;
@@ -21653,9 +22352,9 @@ function isBlockingIssueType2(issueType) {
 }
 async function executeBingInspectSitemap(db, runId, projectId, opts) {
   const startedAt = (/* @__PURE__ */ new Date()).toISOString();
-  db.update(runs).set({ status: RunStatuses.running, startedAt }).where(eq27(runs.id, runId)).run();
+  db.update(runs).set({ status: RunStatuses.running, startedAt }).where(eq28(runs.id, runId)).run();
   try {
-    const project = db.select().from(projects).where(eq27(projects.id, projectId)).get();
+    const project = db.select().from(projects).where(eq28(projects.id, projectId)).get();
     if (!project) {
       throw new Error(`Project not found: ${projectId}`);
     }
@@ -21673,7 +22372,7 @@ async function executeBingInspectSitemap(db, runId, projectId, opts) {
     if (sitemapUrls.length === 0) {
       throw new Error("No URLs found in sitemap");
     }
-    const trackedRows = db.select({ url: bingUrlInspections.url }).from(bingUrlInspections).where(eq27(bingUrlInspections.projectId, projectId)).all();
+    const trackedRows = db.select({ url: bingUrlInspections.url }).from(bingUrlInspections).where(eq28(bingUrlInspections.projectId, projectId)).all();
     const trackedUrls = new Set(trackedRows.map((r) => r.url));
     const discovered = sitemapUrls.filter((u) => !trackedUrls.has(u));
     log5.info("sitemap.diff", {
@@ -21756,7 +22455,7 @@ async function executeBingInspectSitemap(db, runId, projectId, opts) {
         await new Promise((r) => setTimeout(r, 1e3));
       }
     }
-    const allInspections = db.select().from(bingUrlInspections).where(eq27(bingUrlInspections.projectId, projectId)).orderBy(desc13(bingUrlInspections.inspectedAt)).all();
+    const allInspections = db.select().from(bingUrlInspections).where(eq28(bingUrlInspections.projectId, projectId)).orderBy(desc13(bingUrlInspections.inspectedAt)).all();
     const latestByUrl = /* @__PURE__ */ new Map();
     const definitiveByUrl = /* @__PURE__ */ new Map();
     for (const row of allInspections) {
@@ -21799,7 +22498,7 @@ async function executeBingInspectSitemap(db, runId, projectId, opts) {
       }
     }).run();
     const status = errors === sitemapUrls.length ? RunStatuses.failed : errors > 0 ? RunStatuses.partial : RunStatuses.completed;
-    db.update(runs).set({ status, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq27(runs.id, runId)).run();
+    db.update(runs).set({ status, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq28(runs.id, runId)).run();
     log5.info("inspect.completed", {
       runId,
       projectId,
@@ -21813,7 +22512,7 @@ async function executeBingInspectSitemap(db, runId, projectId, opts) {
     });
   } catch (err) {
     const errorMsg = err instanceof Error ? err.message : String(err);
-    db.update(runs).set({ status: RunStatuses.failed, error: errorMsg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq27(runs.id, runId)).run();
+    db.update(runs).set({ status: RunStatuses.failed, error: errorMsg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq28(runs.id, runId)).run();
     log5.error("inspect.failed", { runId, projectId, error: errorMsg });
     throw err;
   }
@@ -21822,7 +22521,7 @@ async function executeBingInspectSitemap(db, runId, projectId, opts) {
 // src/commoncrawl-sync.ts
 import crypto26 from "crypto";
 import path10 from "path";
-import { and as and18, eq as eq28, sql as sql10 } from "drizzle-orm";
+import { and as and19, eq as eq29, sql as sql12 } from "drizzle-orm";
 var log6 = createLogger("CommonCrawlSync");
 var INSERT_CHUNK_SIZE = 1e4;
 function defaultDeps() {
@@ -21848,7 +22547,7 @@ async function executeReleaseSync(db, syncId, opts) {
       phaseDetail: "downloading vertices + edges",
       updatedAt: downloadStartedAt,
       error: null
-    }).where(eq28(ccReleaseSyncs.id, syncId)).run();
+    }).where(eq29(ccReleaseSyncs.id, syncId)).run();
     const paths = ccReleasePaths(release);
     const releaseCacheDir = path10.join(deps.cacheDir, release);
     const vertexPath = path10.join(releaseCacheDir, paths.vertexFilename);
@@ -21871,7 +22570,7 @@ async function executeReleaseSync(db, syncId, opts) {
       vertexSha256: vertex.sha256,
       edgesSha256: edges.sha256,
       updatedAt: downloadFinishedAt
-    }).where(eq28(ccReleaseSyncs.id, syncId)).run();
+    }).where(eq29(ccReleaseSyncs.id, syncId)).run();
     const allProjects = db.select().from(projects).all();
     const targets = Array.from(new Set(allProjects.map((p) => p.canonicalDomain)));
     let rows = [];
@@ -21887,8 +22586,8 @@ async function executeReleaseSync(db, syncId, opts) {
     }
     const queriedAt = deps.now().toISOString();
     db.transaction((tx) => {
-      tx.delete(backlinkDomains).where(eq28(backlinkDomains.releaseSyncId, syncId)).run();
-      tx.delete(backlinkSummaries).where(eq28(backlinkSummaries.releaseSyncId, syncId)).run();
+      tx.delete(backlinkDomains).where(eq29(backlinkDomains.releaseSyncId, syncId)).run();
+      tx.delete(backlinkSummaries).where(eq29(backlinkSummaries.releaseSyncId, syncId)).run();
       const expanded = [];
       for (const r of rows) {
         const projectIds = projectsByDomain.get(r.targetDomain);
@@ -21947,7 +22646,7 @@ async function executeReleaseSync(db, syncId, opts) {
       domainsDiscovered: rows.length,
       updatedAt: finishedAt,
       error: null
-    }).where(eq28(ccReleaseSyncs.id, syncId)).run();
+    }).where(eq29(ccReleaseSyncs.id, syncId)).run();
     log6.info("sync.completed", {
       syncId,
       release,
@@ -21977,7 +22676,7 @@ async function executeReleaseSync(db, syncId, opts) {
       error: errorMsg,
       phaseDetail: null,
       updatedAt: finishedAt
-    }).where(eq28(ccReleaseSyncs.id, syncId)).run();
+    }).where(eq29(ccReleaseSyncs.id, syncId)).run();
     log6.error("sync.failed", { syncId, release, error: errorMsg });
     throw err;
   }
@@ -22013,7 +22712,7 @@ function computeSummary(rows) {
 // src/backlink-extract.ts
 import crypto27 from "crypto";
 import fs8 from "fs";
-import { and as and19, desc as desc14, eq as eq29 } from "drizzle-orm";
+import { and as and20, desc as desc14, eq as eq30 } from "drizzle-orm";
 var log7 = createLogger("BacklinkExtract");
 function defaultDeps2() {
   return {
@@ -22025,13 +22724,13 @@ function defaultDeps2() {
 async function executeBacklinkExtract(db, runId, projectId, opts = {}) {
   const deps = { ...defaultDeps2(), ...opts.deps };
   const startedAt = deps.now().toISOString();
-  db.update(runs).set({ status: RunStatuses.running, startedAt }).where(eq29(runs.id, runId)).run();
+  db.update(runs).set({ status: RunStatuses.running, startedAt }).where(eq30(runs.id, runId)).run();
   try {
-    const project = db.select().from(projects).where(eq29(projects.id, projectId)).get();
+    const project = db.select().from(projects).where(eq30(projects.id, projectId)).get();
     if (!project) {
       throw new Error(`Project not found: ${projectId}`);
     }
-    const sync = opts.release ? db.select().from(ccReleaseSyncs).where(eq29(ccReleaseSyncs.release, opts.release)).get() : db.select().from(ccReleaseSyncs).where(eq29(ccReleaseSyncs.status, CcReleaseSyncStatuses.ready)).orderBy(desc14(ccReleaseSyncs.createdAt)).limit(1).get();
+    const sync = opts.release ? db.select().from(ccReleaseSyncs).where(eq30(ccReleaseSyncs.release, opts.release)).get() : db.select().from(ccReleaseSyncs).where(eq30(ccReleaseSyncs.status, CcReleaseSyncStatuses.ready)).orderBy(desc14(ccReleaseSyncs.createdAt)).limit(1).get();
     if (!sync) {
       throw new Error("No ready release sync available \u2014 run `canonry backlinks sync` first");
     }
@@ -22059,7 +22758,7 @@ async function executeBacklinkExtract(db, runId, projectId, opts = {}) {
     const targetDomain = project.canonicalDomain;
     db.transaction((tx) => {
       tx.delete(backlinkDomains).where(
-        and19(eq29(backlinkDomains.projectId, projectId), eq29(backlinkDomains.release, release))
+        and20(eq30(backlinkDomains.projectId, projectId), eq30(backlinkDomains.release, release))
       ).run();
       if (rows.length > 0) {
         const values = rows.map((r) => ({
@@ -22099,7 +22798,7 @@ async function executeBacklinkExtract(db, runId, projectId, opts = {}) {
       }).run();
     });
     const finishedAt = deps.now().toISOString();
-    db.update(runs).set({ status: RunStatuses.completed, finishedAt }).where(eq29(runs.id, runId)).run();
+    db.update(runs).set({ status: RunStatuses.completed, finishedAt }).where(eq30(runs.id, runId)).run();
     log7.info("extract.completed", { runId, projectId, release, rows: rows.length });
   } catch (err) {
     const errorMsg = err instanceof Error ? err.message : String(err);
@@ -22108,7 +22807,7 @@ async function executeBacklinkExtract(db, runId, projectId, opts = {}) {
       status: RunStatuses.failed,
       error: errorMsg,
       finishedAt
-    }).where(eq29(runs.id, runId)).run();
+    }).where(eq30(runs.id, runId)).run();
     log7.error("extract.failed", { runId, projectId, error: errorMsg });
     throw err;
   }
@@ -22181,7 +22880,7 @@ var ProviderRegistry = class {
 
 // src/scheduler.ts
 import cron from "node-cron";
-import { and as and20, eq as eq30 } from "drizzle-orm";
+import { and as and21, eq as eq31 } from "drizzle-orm";
 var log8 = createLogger("Scheduler");
 function taskKey(projectId, kind) {
   return `${projectId}::${kind}`;
@@ -22196,7 +22895,7 @@ var Scheduler = class {
   }
   /** Load all enabled schedules from DB and register cron jobs. */
   start() {
-    const allSchedules = this.db.select().from(schedules).where(eq30(schedules.enabled, 1)).all();
+    const allSchedules = this.db.select().from(schedules).where(eq31(schedules.enabled, 1)).all();
     for (const schedule of allSchedules) {
       const missedRunAt = schedule.nextRunAt;
       this.registerCronTask(schedule);
@@ -22226,7 +22925,7 @@ var Scheduler = class {
       this.stopTask(key, existing, "Stopped");
       this.tasks.delete(key);
     }
-    const schedule = this.db.select().from(schedules).where(and20(eq30(schedules.projectId, projectId), eq30(schedules.kind, kind))).get();
+    const schedule = this.db.select().from(schedules).where(and21(eq31(schedules.projectId, projectId), eq31(schedules.kind, kind))).get();
     if (schedule && schedule.enabled === 1) {
       this.registerCronTask(schedule);
     }
@@ -22267,14 +22966,14 @@ var Scheduler = class {
     this.db.update(schedules).set({
       nextRunAt: task.getNextRun()?.toISOString() ?? null,
       updatedAt: (/* @__PURE__ */ new Date()).toISOString()
-    }).where(eq30(schedules.id, scheduleId)).run();
+    }).where(eq31(schedules.id, scheduleId)).run();
     const label = schedule.preset ?? cronExpr;
     log8.info("cron.registered", { projectId, kind, schedule: label, timezone });
   }
   triggerRun(scheduleId, projectId, kind) {
     try {
       const now = (/* @__PURE__ */ new Date()).toISOString();
-      const currentSchedule = this.db.select().from(schedules).where(eq30(schedules.id, scheduleId)).get();
+      const currentSchedule = this.db.select().from(schedules).where(eq31(schedules.id, scheduleId)).get();
       if (!currentSchedule || currentSchedule.enabled !== 1) {
         log8.warn("schedule.stale", { scheduleId, projectId, kind, msg: "schedule no longer exists or is disabled" });
         this.remove(projectId, kind);
@@ -22282,7 +22981,7 @@ var Scheduler = class {
       }
       const task = this.tasks.get(taskKey(projectId, kind));
       const nextRunAt = task?.getNextRun()?.toISOString() ?? null;
-      const project = this.db.select().from(projects).where(eq30(projects.id, projectId)).get();
+      const project = this.db.select().from(projects).where(eq31(projects.id, projectId)).get();
       if (!project) {
         log8.error("project.not-found", { projectId, kind, msg: "skipping scheduled run" });
         this.remove(projectId, kind);
@@ -22302,7 +23001,7 @@ var Scheduler = class {
           lastRunAt: now,
           nextRunAt,
           updatedAt: now
-        }).where(eq30(schedules.id, currentSchedule.id)).run();
+        }).where(eq31(schedules.id, currentSchedule.id)).run();
         log8.info("traffic-sync.triggered", { projectName: project.name, sourceId });
         this.callbacks.onTrafficSyncRequested(project.name, sourceId);
         return;
@@ -22330,7 +23029,7 @@ var Scheduler = class {
         this.db.update(schedules).set({
           nextRunAt,
           updatedAt: now
-        }).where(eq30(schedules.id, currentSchedule.id)).run();
+        }).where(eq31(schedules.id, currentSchedule.id)).run();
         return;
       }
       const runId = queueResult.runId;
@@ -22338,7 +23037,7 @@ var Scheduler = class {
         lastRunAt: now,
         nextRunAt,
         updatedAt: now
-      }).where(eq30(schedules.id, currentSchedule.id)).run();
+      }).where(eq31(schedules.id, currentSchedule.id)).run();
       const scheduleProviders = parseJsonColumn(currentSchedule.providers, []);
       const providers = scheduleProviders.length > 0 ? scheduleProviders : void 0;
       log8.info("run.triggered", { runId, projectName: project.name, providers: providers ?? "all" });
@@ -22350,7 +23049,7 @@ var Scheduler = class {
 };
 
 // src/notifier.ts
-import { eq as eq31, desc as desc15, and as and21, or as or4 } from "drizzle-orm";
+import { eq as eq32, desc as desc15, and as and22, or as or4 } from "drizzle-orm";
 import crypto28 from "crypto";
 var log9 = createLogger("Notifier");
 var Notifier = class {
@@ -22363,18 +23062,18 @@ var Notifier = class {
   /** Called after a run completes (success, partial, or failed). */
   async onRunCompleted(runId, projectId) {
     log9.info("run.completed", { runId, projectId });
-    const notifs = this.db.select().from(notifications).where(eq31(notifications.projectId, projectId)).all().filter((n) => n.enabled === 1);
+    const notifs = this.db.select().from(notifications).where(eq32(notifications.projectId, projectId)).all().filter((n) => n.enabled === 1);
     if (notifs.length === 0) {
       log9.info("notifications.none-enabled", { projectId });
       return;
     }
     log9.info("notifications.found", { projectId, count: notifs.length });
-    const run = this.db.select().from(runs).where(eq31(runs.id, runId)).get();
+    const run = this.db.select().from(runs).where(eq32(runs.id, runId)).get();
     if (!run) {
       log9.error("run.not-found", { runId, msg: "skipping notification dispatch" });
       return;
     }
-    const project = this.db.select().from(projects).where(eq31(projects.id, projectId)).get();
+    const project = this.db.select().from(projects).where(eq32(projects.id, projectId)).get();
     if (!project) {
       log9.error("project.not-found", { projectId, msg: "skipping notification dispatch" });
       return;
@@ -22421,11 +23120,11 @@ var Notifier = class {
     if (criticalInsights.length > 0) insightEvents.push("insight.critical");
     if (highInsights.length > 0) insightEvents.push("insight.high");
     if (insightEvents.length === 0) return;
-    const notifs = this.db.select().from(notifications).where(eq31(notifications.projectId, projectId)).all().filter((n) => n.enabled === 1);
+    const notifs = this.db.select().from(notifications).where(eq32(notifications.projectId, projectId)).all().filter((n) => n.enabled === 1);
     if (notifs.length === 0) return;
-    const run = this.db.select().from(runs).where(eq31(runs.id, runId)).get();
+    const run = this.db.select().from(runs).where(eq32(runs.id, runId)).get();
     if (!run) return;
-    const project = this.db.select().from(projects).where(eq31(projects.id, projectId)).get();
+    const project = this.db.select().from(projects).where(eq32(projects.id, projectId)).get();
     if (!project) return;
     for (const notif of notifs) {
       const config = parseJsonColumn(notif.config, { url: "", events: [] });
@@ -22456,9 +23155,9 @@ var Notifier = class {
   }
   computeTransitions(runId, projectId) {
     const recentRuns = this.db.select().from(runs).where(
-      and21(
-        eq31(runs.projectId, projectId),
-        or4(eq31(runs.status, "completed"), eq31(runs.status, "partial"))
+      and22(
+        eq32(runs.projectId, projectId),
+        or4(eq32(runs.status, "completed"), eq32(runs.status, "partial"))
       )
     ).orderBy(desc15(runs.createdAt)).limit(2).all();
     if (recentRuns.length < 2) return [];
@@ -22470,12 +23169,12 @@ var Notifier = class {
       query: queries.query,
       provider: querySnapshots.provider,
       citationState: querySnapshots.citationState
-    }).from(querySnapshots).leftJoin(queries, eq31(querySnapshots.queryId, queries.id)).where(eq31(querySnapshots.runId, currentRunId)).all();
+    }).from(querySnapshots).leftJoin(queries, eq32(querySnapshots.queryId, queries.id)).where(eq32(querySnapshots.runId, currentRunId)).all();
     const previousSnapshots = this.db.select({
       queryId: querySnapshots.queryId,
       provider: querySnapshots.provider,
       citationState: querySnapshots.citationState
-    }).from(querySnapshots).where(eq31(querySnapshots.runId, previousRunId)).all();
+    }).from(querySnapshots).where(eq32(querySnapshots.runId, previousRunId)).all();
     const prevMap = /* @__PURE__ */ new Map();
     for (const s of previousSnapshots) {
       prevMap.set(`${s.queryId}:${s.provider}`, s.citationState);
@@ -22592,7 +23291,7 @@ var RunCoordinator = class {
 
 // src/agent/session-registry.ts
 import crypto30 from "crypto";
-import { eq as eq33 } from "drizzle-orm";
+import { eq as eq34 } from "drizzle-orm";
 
 // src/agent/session.ts
 import fs11 from "fs";
@@ -22942,7 +23641,7 @@ function resolveSessionProviderAndModel(config, opts) {
 
 // src/agent/memory-store.ts
 import crypto29 from "crypto";
-import { and as and22, desc as desc16, eq as eq32, like as like2, sql as sql11 } from "drizzle-orm";
+import { and as and23, desc as desc16, eq as eq33, like as like2, sql as sql13 } from "drizzle-orm";
 var COMPACTION_KEY_PREFIX = "compaction:";
 var COMPACTION_NOTES_PER_SESSION = 3;
 function rowToDto2(row) {
@@ -22956,7 +23655,7 @@ function rowToDto2(row) {
   };
 }
 function listMemoryEntries(db, projectId, opts = {}) {
-  const query = db.select().from(agentMemory).where(eq32(agentMemory.projectId, projectId)).orderBy(desc16(agentMemory.updatedAt));
+  const query = db.select().from(agentMemory).where(eq33(agentMemory.projectId, projectId)).orderBy(desc16(agentMemory.updatedAt));
   const rows = opts.limit === void 0 ? query.all() : query.limit(opts.limit).all();
   return rows.map(rowToDto2);
 }
@@ -22987,12 +23686,12 @@ function upsertMemoryEntry(db, args) {
       updatedAt: now
     }
   }).run();
-  const row = db.select().from(agentMemory).where(and22(eq32(agentMemory.projectId, args.projectId), eq32(agentMemory.key, args.key))).get();
+  const row = db.select().from(agentMemory).where(and23(eq33(agentMemory.projectId, args.projectId), eq33(agentMemory.key, args.key))).get();
   if (!row) throw new Error("memory upsert produced no row");
   return rowToDto2(row);
 }
 function deleteMemoryEntry(db, projectId, key) {
-  const result = db.delete(agentMemory).where(and22(eq32(agentMemory.projectId, projectId), eq32(agentMemory.key, key))).run();
+  const result = db.delete(agentMemory).where(and23(eq33(agentMemory.projectId, projectId), eq33(agentMemory.key, key))).run();
   const changes = result.changes ?? 0;
   return changes > 0;
 }
@@ -23021,16 +23720,16 @@ function writeCompactionNote(db, args) {
     }).run();
     const sessionPrefix = `${COMPACTION_KEY_PREFIX}${args.sessionId}:`;
     const existing = tx.select({ id: agentMemory.id, updatedAt: agentMemory.updatedAt }).from(agentMemory).where(
-      and22(
-        eq32(agentMemory.projectId, args.projectId),
+      and23(
+        eq33(agentMemory.projectId, args.projectId),
         like2(agentMemory.key, `${sessionPrefix}%`)
       )
     ).orderBy(desc16(agentMemory.updatedAt)).all();
     const stale = existing.slice(COMPACTION_NOTES_PER_SESSION).map((r) => r.id);
     if (stale.length > 0) {
-      tx.delete(agentMemory).where(sql11`${agentMemory.id} IN (${sql11.join(stale.map((s) => sql11`${s}`), sql11`, `)})`).run();
+      tx.delete(agentMemory).where(sql13`${agentMemory.id} IN (${sql13.join(stale.map((s) => sql13`${s}`), sql13`, `)})`).run();
     }
-    const row = tx.select().from(agentMemory).where(and22(eq32(agentMemory.projectId, args.projectId), eq32(agentMemory.key, key))).get();
+    const row = tx.select().from(agentMemory).where(and23(eq33(agentMemory.projectId, args.projectId), eq33(agentMemory.key, key))).get();
     if (row) inserted = rowToDto2(row);
   });
   if (!inserted) throw new Error("compaction note write produced no row");
@@ -23212,7 +23911,7 @@ var SessionRegistry = class {
           modelProvider: effectiveProvider,
           modelId: effectiveModelId,
           updatedAt: (/* @__PURE__ */ new Date()).toISOString()
-        }).where(eq33(agentSessions.projectId, projectId)).run();
+        }).where(eq34(agentSessions.projectId, projectId)).run();
       }
       const agent2 = createAeroSession({
         projectName,
@@ -23426,7 +24125,7 @@ ${lines.join("\n")}
       modelProvider: nextProvider,
       modelId: nextModelId,
       updatedAt: (/* @__PURE__ */ new Date()).toISOString()
-    }).where(eq33(agentSessions.projectId, projectId)).run();
+    }).where(eq34(agentSessions.projectId, projectId)).run();
   }
   /** Persist a session's transcript back to the DB. Call after any run settles. */
   save(projectName) {
@@ -23588,11 +24287,11 @@ ${lines.join("\n")}
     return id;
   }
   tryResolveProjectId(projectName) {
-    const row = this.opts.db.select({ id: projects.id }).from(projects).where(eq33(projects.name, projectName)).get();
+    const row = this.opts.db.select({ id: projects.id }).from(projects).where(eq34(projects.name, projectName)).get();
     return row?.id;
   }
   loadRow(projectId) {
-    const row = this.opts.db.select().from(agentSessions).where(eq33(agentSessions.projectId, projectId)).get();
+    const row = this.opts.db.select().from(agentSessions).where(eq34(agentSessions.projectId, projectId)).get();
     return row ?? null;
   }
   insertRow(params) {
@@ -23611,14 +24310,14 @@ ${lines.join("\n")}
   }
   updateRow(projectId, patch) {
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    this.opts.db.update(agentSessions).set({ ...patch, updatedAt: now }).where(eq33(agentSessions.projectId, projectId)).run();
+    this.opts.db.update(agentSessions).set({ ...patch, updatedAt: now }).where(eq34(agentSessions.projectId, projectId)).run();
   }
 };
 
 // src/agent/agent-routes.ts
-import { eq as eq34 } from "drizzle-orm";
+import { eq as eq35 } from "drizzle-orm";
 function resolveProject2(db, name) {
-  const row = db.select({ id: projects.id, name: projects.name }).from(projects).where(eq34(projects.name, name)).get();
+  const row = db.select({ id: projects.id, name: projects.name }).from(projects).where(eq35(projects.name, name)).get();
   if (!row) throw notFound("project", name);
   return row;
 }
@@ -23627,7 +24326,7 @@ function registerAgentRoutes(app, opts) {
     "/projects/:name/agent/transcript",
     async (request) => {
       const project = resolveProject2(opts.db, request.params.name);
-      const row = opts.db.select().from(agentSessions).where(eq34(agentSessions.projectId, project.id)).get();
+      const row = opts.db.select().from(agentSessions).where(eq35(agentSessions.projectId, project.id)).get();
       if (!row) {
         return { messages: [], modelProvider: null, modelId: null, updatedAt: null };
       }
@@ -23651,7 +24350,7 @@ function registerAgentRoutes(app, opts) {
     async (request) => {
       const project = resolveProject2(opts.db, request.params.name);
       opts.sessionRegistry.reset(project.name);
-      opts.db.update(agentSessions).set({ messages: "[]", followUpQueue: "[]", updatedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq34(agentSessions.projectId, project.id)).run();
+      opts.db.update(agentSessions).set({ messages: "[]", followUpQueue: "[]", updatedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq35(agentSessions.projectId, project.id)).run();
       return { status: "reset" };
     }
   );
@@ -24673,7 +25372,7 @@ async function createServer(opts) {
     intelligenceService,
     (runId, projectId, result) => notifier.dispatchInsightWebhooks(runId, projectId, result),
     async ({ runId, projectId, insightCount, criticalOrHigh }) => {
-      const project = opts.db.select({ name: projects.name }).from(projects).where(eq35(projects.id, projectId)).get();
+      const project = opts.db.select({ name: projects.name }).from(projects).where(eq36(projects.id, projectId)).get();
       if (!project) return;
       sessionRegistry.queueFollowUp(project.name, {
         role: "user",
@@ -24833,7 +25532,7 @@ async function createServer(opts) {
   const apiPrefix = basePath ? `${basePath}api/v1` : "/api/v1";
   if (opts.config.apiKey) {
     const keyHash = hashApiKey(opts.config.apiKey);
-    const existing = opts.db.select().from(apiKeys).where(eq35(apiKeys.keyHash, keyHash)).get();
+    const existing = opts.db.select().from(apiKeys).where(eq36(apiKeys.keyHash, keyHash)).get();
     if (!existing) {
       const prefix = opts.config.apiKey.slice(0, 12);
       opts.db.insert(apiKeys).values({
@@ -24885,7 +25584,7 @@ async function createServer(opts) {
   };
   const getDefaultApiKey = () => {
     if (!opts.config.apiKey) return void 0;
-    return opts.db.select().from(apiKeys).where(eq35(apiKeys.keyHash, hashApiKey(opts.config.apiKey))).get();
+    return opts.db.select().from(apiKeys).where(eq36(apiKeys.keyHash, hashApiKey(opts.config.apiKey))).get();
   };
   const createPasswordSession = (reply) => {
     const key = getDefaultApiKey();
@@ -24942,12 +25641,12 @@ async function createServer(opts) {
       return reply.send({ authenticated: true });
     }
     if (apiKey) {
-      const key = opts.db.select().from(apiKeys).where(eq35(apiKeys.keyHash, hashApiKey(apiKey))).get();
+      const key = opts.db.select().from(apiKeys).where(eq36(apiKeys.keyHash, hashApiKey(apiKey))).get();
       if (!key || key.revokedAt) {
         const err2 = authInvalid();
         return reply.status(err2.statusCode).send(err2.toJSON());
       }
-      opts.db.update(apiKeys).set({ lastUsedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq35(apiKeys.id, key.id)).run();
+      opts.db.update(apiKeys).set({ lastUsedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq36(apiKeys.id, key.id)).run();
       const sessionId = createSession(key.id);
       reply.header("set-cookie", serializeSessionCookie({
         name: SESSION_COOKIE_NAME,