@ainyc/canonry 4.68.1 → 4.69.1

package/dist/{chunk-Y24OE7R3.js → chunk-WFM2O72W.js}

@@ -32,6 +32,8 @@ import {
   absolutizeProjectUrl,
   actionConfidenceLabel,
   agentProvidersResponseDtoSchema,
+  apiKeyDtoSchema,
+  apiKeyListDtoSchema,
   auditLogEntrySchema,
   authInvalid,
   authRequired,
@@ -74,6 +76,8 @@ import {
   contentTargetDismissalDtoSchema,
   contentTargetDismissalsResponseDtoSchema,
   contentTargetsResponseDtoSchema,
+  createApiKeyRequestSchema,
+  createdApiKeyDtoSchema,
   dedupeReportActions,
   dedupeReportOpportunities,
   deliveryFailed,
@@ -208,10 +212,10 @@ import {
   wordpressSchemaDeployResultDtoSchema,
   wordpressSchemaStatusResultDtoSchema,
   wordpressStatusDtoSchema
-} from "./chunk-D75O5A27.js";
+} from "./chunk-5FM7QRYD.js";
 
 // src/intelligence-service.ts
-import { eq as eq30, desc as desc15, asc as asc3, and as and23, ne as ne5, or as or5, inArray as inArray11, gte as gte6, lte as lte3 } from "drizzle-orm";
+import { eq as eq31, desc as desc16, asc as asc3, and as and23, ne as ne5, or as or5, inArray as inArray11, gte as gte6, lte as lte3 } from "drizzle-orm";
 
 // ../db/src/client.ts
 import { mkdirSync } from "fs";
@@ -4326,19 +4330,26 @@ function buildRunHistory(runs2, snapshotsByRunId, limit = DEFAULT_RUN_HISTORY_LI
   return recent.map((run) => {
     const snapshots = snapshotsByRunId.get(run.id) ?? [];
     const queryCited = /* @__PURE__ */ new Map();
+    const queryMentioned = /* @__PURE__ */ new Map();
     for (const snap of snapshots) {
       if (!queryCited.has(snap.queryId)) queryCited.set(snap.queryId, false);
       if (snap.citationState === CitationStates.cited) queryCited.set(snap.queryId, true);
+      if (!queryMentioned.has(snap.queryId)) queryMentioned.set(snap.queryId, false);
+      if (snap.answerMentioned === true) queryMentioned.set(snap.queryId, true);
     }
     const totalCount = queryCited.size;
     const citedCount = [...queryCited.values()].filter(Boolean).length;
     const citationRate = totalCount > 0 ? Math.round(citedCount / totalCount * 100) : 0;
+    const mentionedCount = [...queryMentioned.values()].filter(Boolean).length;
+    const mentionRate = totalCount > 0 ? Math.round(mentionedCount / totalCount * 100) : 0;
     return {
       runId: run.id,
       createdAt: run.createdAt,
       citedCount,
       totalCount,
       citationRate,
+      mentionedCount,
+      mentionRate,
       status: run.status
     };
   });
@@ -4831,7 +4842,7 @@ function requireScope(request, scope) {
   if (key.scopes.includes("*") || key.scopes.includes(scope)) return;
   throw forbidden(`This action requires the "${scope}" scope on your API key.`);
 }
-function hashKey(key) {
+function hashApiKey(key) {
   return crypto2.createHash("sha256").update(key).digest("hex");
 }
 var SKIP_PATHS = ["/health"];
@@ -4870,7 +4881,7 @@ async function authPlugin(app, opts = {}) {
         throw authRequired();
       }
       const token = parts[1];
-      const hash = hashKey(token);
+      const hash = hashApiKey(token);
       key = app.db.select().from(apiKeys).where(eq(apiKeys.keyHash, hash)).get();
       if (!key || key.revokedAt) {
         throw authInvalid();
@@ -12030,6 +12041,7 @@ async function compositeRoutes(app) {
     const attentionItems = buildAttentionItems(insightRows, allRuns);
     const sparklineRuns = visibilityRuns.slice(0, DEFAULT_RUN_HISTORY_LIMIT).map((r) => ({ id: r.id, createdAt: r.createdAt, status: r.status }));
     const runHistory = buildRunHistory(sparklineRuns, snapshotsByRun);
+    scores.mention.trend = runHistory.map((p) => p.mentionRate);
     scores.visibility.trend = runHistory.map((p) => p.citationRate);
     const suggestedQueries = buildSuggestedQueriesFromGsc(
       app,
@@ -12190,17 +12202,30 @@ function loadSnapshotsByRunIds(app, runIds) {
 }
 function summarizeFromSnapshots(snapshots) {
   const empty = {
-    queryCounts: { totalQueries: 0, citedQueries: 0, notCitedQueries: 0, citedRate: 0 },
+    queryCounts: {
+      totalQueries: 0,
+      citedQueries: 0,
+      notCitedQueries: 0,
+      citedRate: 0,
+      mentionedQueries: 0,
+      notMentionedQueries: 0,
+      mentionRate: 0
+    },
     providers: []
   };
   if (snapshots.length === 0) return empty;
   const perQuery = /* @__PURE__ */ new Map();
+  const perQueryMentioned = /* @__PURE__ */ new Map();
   const perProvider = /* @__PURE__ */ new Map();
   for (const snap of snapshots) {
     const cited = snap.citationState === CitationStates.cited;
     if (!perQuery.has(snap.queryId) || cited) {
       perQuery.set(snap.queryId, cited);
     }
+    const mentioned = snap.answerMentioned === true;
+    if (!perQueryMentioned.has(snap.queryId) || mentioned) {
+      perQueryMentioned.set(snap.queryId, mentioned);
+    }
     const bucket = perProvider.get(snap.provider) ?? { cited: 0, total: 0 };
     bucket.total += 1;
     if (cited) bucket.cited += 1;
@@ -12213,6 +12238,12 @@ function summarizeFromSnapshots(snapshots) {
   }
   const notCitedQueries = totalQueries - citedQueries;
   const citedRate = totalQueries === 0 ? 0 : Number((citedQueries / totalQueries).toFixed(4));
+  let mentionedQueries = 0;
+  for (const wasMentioned of perQueryMentioned.values()) {
+    if (wasMentioned) mentionedQueries += 1;
+  }
+  const notMentionedQueries = totalQueries - mentionedQueries;
+  const mentionRate = totalQueries === 0 ? 0 : Number((mentionedQueries / totalQueries).toFixed(4));
   const providers = [...perProvider.entries()].map(([provider, { cited, total }]) => ({
     provider,
     cited,
@@ -12220,7 +12251,15 @@ function summarizeFromSnapshots(snapshots) {
     citedRate: total === 0 ? 0 : Number((cited / total).toFixed(4))
   })).sort((a, b) => a.provider.localeCompare(b.provider));
   return {
-    queryCounts: { totalQueries, citedQueries, notCitedQueries, citedRate },
+    queryCounts: {
+      totalQueries,
+      citedQueries,
+      notCitedQueries,
+      citedRate,
+      mentionedQueries,
+      notMentionedQueries,
+      mentionRate
+    },
     providers
   };
 }
@@ -12548,6 +12587,8 @@ function makeSnippet(text2, query) {
 import { z } from "zod";
 var SCHEMA_TABLE = {
   AgentProvidersResponseDto: agentProvidersResponseDtoSchema,
+  ApiKeyDto: apiKeyDtoSchema,
+  ApiKeyListDto: apiKeyListDtoSchema,
   AuditLogEntry: auditLogEntrySchema,
   BacklinkHistoryEntry: backlinkHistoryEntrySchema,
   BacklinkListResponse: backlinkListResponseSchema,
@@ -12575,6 +12616,8 @@ var SCHEMA_TABLE = {
   ContentTargetDismissalDto: contentTargetDismissalDtoSchema,
   ContentTargetDismissalsResponseDto: contentTargetDismissalsResponseDtoSchema,
   ContentTargetsResponseDto: contentTargetsResponseDtoSchema,
+  CreateApiKeyRequest: createApiKeyRequestSchema,
+  CreatedApiKeyDto: createdApiKeyDtoSchema,
   RecommendationExplanationDto: recommendationExplanationDtoSchema,
   DiscoveryPromotePreview: discoveryPromotePreviewSchema,
   DiscoveryPromoteResult: discoveryPromoteResultSchema,
@@ -12742,6 +12785,13 @@ var notificationIdParameter = {
   description: "Notification ID.",
   schema: stringSchema
 };
+var keyIdParameter = {
+  name: "id",
+  in: "path",
+  required: true,
+  description: "API key ID.",
+  schema: stringSchema
+};
 var providerNameParameter = {
   name: "name",
   in: "path",
@@ -13665,6 +13715,50 @@ var routeCatalog = [
       501: errorResponse("Google settings updates are not supported.")
     }
   },
+  {
+    method: "get",
+    path: "/api/v1/keys",
+    summary: "List API keys",
+    description: "Returns every API key on the instance, newest first, as SAFE metadata only \u2014 id, name, key prefix, scopes, created / last-used / revoked timestamps. The stored hash and the plaintext token are NEVER returned here; the raw token is shown exactly once at creation. Ungated: any valid bearer can list.",
+    tags: ["keys"],
+    responses: {
+      200: jsonResponse("Keys returned.", "ApiKeyListDto")
+    }
+  },
+  {
+    method: "post",
+    path: "/api/v1/keys",
+    summary: "Create an API key",
+    description: 'Mints a new `cnry_\u2026` API key. Requires the `keys.write` scope (the default `*` key satisfies it). The response includes the plaintext `key` field exactly ONCE \u2014 it is stored only as a sha256 hash and cannot be recovered later, so persist it on receipt. Omit `scopes` to default to `["*"]`.',
+    tags: ["keys"],
+    requestBody: {
+      required: true,
+      content: {
+        "application/json": {
+          schema: { $ref: "#/components/schemas/CreateApiKeyRequest" }
+        }
+      }
+    },
+    responses: {
+      200: jsonResponse("Key created. Includes the one-time plaintext `key`.", "CreatedApiKeyDto"),
+      400: errorResponse("Invalid request body."),
+      403: errorResponse("Missing the keys.write scope.")
+    }
+  },
+  {
+    method: "post",
+    path: "/api/v1/keys/{id}/revoke",
+    summary: "Revoke an API key",
+    description: "Revokes the key by id. Requires the `keys.write` scope. Revocation is immediate \u2014 the auth layer rejects a revoked key on the next request. Idempotent: revoking an already-revoked key returns it unchanged. Refuses to revoke the key the caller is currently authenticating with (use a different key).",
+    tags: ["keys"],
+    parameters: [keyIdParameter],
+    responses: {
+      200: jsonResponse("Key revoked (or already revoked).", "ApiKeyDto"),
+      400: errorResponse("Cannot revoke the currently-authenticating key."),
+      403: errorResponse("Missing the keys.write scope."),
+      404: errorResponse("Key not found.")
+    }
+  },
   {
     method: "post",
     path: "/api/v1/snapshot",
@@ -16514,6 +16608,96 @@ async function settingsRoutes(app, opts) {
   });
 }
 
+// ../api-routes/src/keys.ts
+import crypto12 from "crypto";
+import { desc as desc9, eq as eq17 } from "drizzle-orm";
+var KEYS_WRITE_SCOPE = "keys.write";
+function toApiKeyDto(row) {
+  return {
+    id: row.id,
+    name: row.name,
+    keyPrefix: row.keyPrefix,
+    scopes: Array.isArray(row.scopes) ? row.scopes : [],
+    createdAt: row.createdAt,
+    lastUsedAt: row.lastUsedAt ?? null,
+    revokedAt: row.revokedAt ?? null
+  };
+}
+async function keysRoutes(app) {
+  app.get("/keys", async () => {
+    const rows = app.db.select().from(apiKeys).orderBy(desc9(apiKeys.createdAt)).all();
+    return { keys: rows.map(toApiKeyDto) };
+  });
+  app.post("/keys", async (request) => {
+    requireScope(request, KEYS_WRITE_SCOPE);
+    const parsed = createApiKeyRequestSchema.safeParse(request.body);
+    if (!parsed.success) {
+      throw validationError("Invalid API key request", { issues: parsed.error.issues });
+    }
+    const { name, scopes } = parsed.data;
+    const raw = `cnry_${crypto12.randomBytes(16).toString("hex")}`;
+    const keyHash = hashApiKey(raw);
+    const keyPrefix = raw.slice(0, 9);
+    const id = crypto12.randomUUID();
+    const now = (/* @__PURE__ */ new Date()).toISOString();
+    const effectiveScopes = scopes ?? ["*"];
+    app.db.transaction((tx) => {
+      tx.insert(apiKeys).values({
+        id,
+        name,
+        keyHash,
+        keyPrefix,
+        scopes: effectiveScopes,
+        createdAt: now
+      }).run();
+      writeAuditLog(tx, auditFromRequest(request, {
+        actor: "api",
+        action: "api-key.created",
+        entityType: "api-key",
+        entityId: id,
+        diff: { name, keyPrefix, scopes: effectiveScopes }
+      }));
+    });
+    const dto = {
+      id,
+      name,
+      keyPrefix,
+      scopes: effectiveScopes,
+      createdAt: now,
+      lastUsedAt: null,
+      revokedAt: null,
+      key: raw
+    };
+    return dto;
+  });
+  app.post("/keys/:id/revoke", async (request) => {
+    requireScope(request, KEYS_WRITE_SCOPE);
+    const { id } = request.params;
+    const row = app.db.select().from(apiKeys).where(eq17(apiKeys.id, id)).get();
+    if (!row) {
+      throw notFound("API key", id);
+    }
+    if (request.apiKey?.id === id) {
+      throw validationError("Cannot revoke the API key you are currently authenticating with");
+    }
+    if (row.revokedAt) {
+      return toApiKeyDto(row);
+    }
+    const now = (/* @__PURE__ */ new Date()).toISOString();
+    app.db.transaction((tx) => {
+      tx.update(apiKeys).set({ revokedAt: now }).where(eq17(apiKeys.id, id)).run();
+      writeAuditLog(tx, auditFromRequest(request, {
+        actor: "api",
+        action: "api-key.revoked",
+        entityType: "api-key",
+        entityId: id,
+        diff: { name: row.name, keyPrefix: row.keyPrefix }
+      }));
+    });
+    return toApiKeyDto({ ...row, revokedAt: now });
+  });
+}
+
 // ../api-routes/src/snapshot.ts
 async function snapshotRoutes(app, opts) {
   app.post("/snapshot", async (request) => {
@@ -16573,8 +16757,8 @@ async function telemetryRoutes(app, opts) {
 }
 
 // ../api-routes/src/schedules.ts
-import crypto12 from "crypto";
-import { and as and12, eq as eq17 } from "drizzle-orm";
+import crypto13 from "crypto";
+import { and as and12, eq as eq18 } from "drizzle-orm";
 function parseKindParam(raw) {
   if (raw === void 0 || raw === null || raw === "") return SchedulableRunKinds["answer-visibility"];
   const parsed = schedulableRunKindSchema.safeParse(raw);
@@ -16601,7 +16785,7 @@ async function scheduleRoutes(app, opts) {
       if (!sourceId) {
         throw validationError('"sourceId" is required when kind is "traffic-sync"');
       }
-      const sourceRow = app.db.select().from(trafficSources).where(eq17(trafficSources.id, sourceId)).get();
+      const sourceRow = app.db.select().from(trafficSources).where(eq18(trafficSources.id, sourceId)).get();
       if (!sourceRow || sourceRow.projectId !== project.id) {
         throw notFound("Traffic source", sourceId);
       }
@@ -16643,7 +16827,7 @@ async function scheduleRoutes(app, opts) {
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
     const enabledBool = enabled !== false;
-    const existing = app.db.select().from(schedules).where(and12(eq17(schedules.projectId, project.id), eq17(schedules.kind, kind))).get();
+    const existing = app.db.select().from(schedules).where(and12(eq18(schedules.projectId, project.id), eq18(schedules.kind, kind))).get();
     if (existing) {
       app.db.update(schedules).set({
         cronExpr,
@@ -16653,10 +16837,10 @@ async function scheduleRoutes(app, opts) {
         sourceId: sourceId ?? null,
         enabled: enabledBool,
         updatedAt: now
-      }).where(eq17(schedules.id, existing.id)).run();
+      }).where(eq18(schedules.id, existing.id)).run();
     } else {
       app.db.insert(schedules).values({
-        id: crypto12.randomUUID(),
+        id: crypto13.randomUUID(),
         projectId: project.id,
         kind,
         cronExpr,
@@ -16677,13 +16861,13 @@ async function scheduleRoutes(app, opts) {
       diff: { kind, cronExpr, preset, timezone, providers, sourceId }
     });
     opts.onScheduleUpdated?.("upsert", project.id, kind);
-    const schedule = app.db.select().from(schedules).where(and12(eq17(schedules.projectId, project.id), eq17(schedules.kind, kind))).get();
+    const schedule = app.db.select().from(schedules).where(and12(eq18(schedules.projectId, project.id), eq18(schedules.kind, kind))).get();
     return reply.status(existing ? 200 : 201).send(formatSchedule(schedule));
   });
   app.get("/projects/:name/schedule", async (request, reply) => {
     const project = resolveProject(app.db, request.params.name);
     const kind = parseKindParam(request.query?.kind);
-    const schedule = app.db.select().from(schedules).where(and12(eq17(schedules.projectId, project.id), eq17(schedules.kind, kind))).get();
+    const schedule = app.db.select().from(schedules).where(and12(eq18(schedules.projectId, project.id), eq18(schedules.kind, kind))).get();
     if (!schedule) {
       throw notFound("Schedule", `${request.params.name} (kind=${kind})`);
     }
@@ -16692,11 +16876,11 @@ async function scheduleRoutes(app, opts) {
   app.delete("/projects/:name/schedule", async (request, reply) => {
     const project = resolveProject(app.db, request.params.name);
     const kind = parseKindParam(request.query?.kind);
-    const schedule = app.db.select().from(schedules).where(and12(eq17(schedules.projectId, project.id), eq17(schedules.kind, kind))).get();
+    const schedule = app.db.select().from(schedules).where(and12(eq18(schedules.projectId, project.id), eq18(schedules.kind, kind))).get();
     if (!schedule) {
       throw notFound("Schedule", `${request.params.name} (kind=${kind})`);
     }
-    app.db.delete(schedules).where(eq17(schedules.id, schedule.id)).run();
+    app.db.delete(schedules).where(eq18(schedules.id, schedule.id)).run();
     writeAuditLog(app.db, {
       projectId: project.id,
       actor: "api",
@@ -16728,8 +16912,8 @@ function formatSchedule(row) {
 }
 
 // ../api-routes/src/notifications.ts
-import crypto13 from "crypto";
-import { eq as eq18 } from "drizzle-orm";
+import crypto14 from "crypto";
+import { eq as eq19 } from "drizzle-orm";
 var VALID_EVENTS = ["citation.lost", "citation.gained", "run.completed", "run.failed", "insight.critical", "insight.high"];
 async function notificationRoutes(app, opts = {}) {
   const allowLoopback = opts.allowLoopbackWebhooks === true;
@@ -16748,8 +16932,8 @@ async function notificationRoutes(app, opts = {}) {
       throw validationError(`Invalid event(s): ${invalid.join(", ")}. Must be one of: ${VALID_EVENTS.join(", ")}`);
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const id = crypto13.randomUUID();
-    const webhookSecret = crypto13.randomBytes(32).toString("hex");
+    const id = crypto14.randomUUID();
+    const webhookSecret = crypto14.randomBytes(32).toString("hex");
     app.db.insert(notifications).values({
       id,
       projectId: project.id,
@@ -16769,22 +16953,22 @@ async function notificationRoutes(app, opts = {}) {
       diff: { channel, ...redactNotificationUrl(url), events }
     });
     return reply.status(201).send({
-      ...formatNotification(app.db.select().from(notifications).where(eq18(notifications.id, id)).get()),
+      ...formatNotification(app.db.select().from(notifications).where(eq19(notifications.id, id)).get()),
       webhookSecret
     });
   });
   app.get("/projects/:name/notifications", async (request, reply) => {
     const project = resolveProject(app.db, request.params.name);
-    const rows = app.db.select().from(notifications).where(eq18(notifications.projectId, project.id)).all();
+    const rows = app.db.select().from(notifications).where(eq19(notifications.projectId, project.id)).all();
     return reply.send(rows.map(formatNotification));
   });
   app.delete("/projects/:name/notifications/:id", async (request, reply) => {
     const project = resolveProject(app.db, request.params.name);
-    const notification = app.db.select().from(notifications).where(eq18(notifications.id, request.params.id)).get();
+    const notification = app.db.select().from(notifications).where(eq19(notifications.id, request.params.id)).get();
     if (!notification || notification.projectId !== project.id) {
       throw notFound("Notification", request.params.id);
     }
-    app.db.delete(notifications).where(eq18(notifications.id, notification.id)).run();
+    app.db.delete(notifications).where(eq19(notifications.id, notification.id)).run();
     writeAuditLog(app.db, {
       projectId: project.id,
       actor: "api",
@@ -16796,7 +16980,7 @@ async function notificationRoutes(app, opts = {}) {
   });
   app.post("/projects/:name/notifications/:id/test", async (request, reply) => {
     const project = resolveProject(app.db, request.params.name);
-    const notification = app.db.select().from(notifications).where(eq18(notifications.id, request.params.id)).get();
+    const notification = app.db.select().from(notifications).where(eq19(notifications.id, request.params.id)).get();
     if (!notification || notification.projectId !== project.id) {
       throw notFound("Notification", request.params.id);
     }
@@ -16848,8 +17032,8 @@ function formatNotification(row) {
 }
 
 // ../api-routes/src/google.ts
-import crypto16 from "crypto";
-import { eq as eq19, and as and13, desc as desc9, sql as sql8, inArray as inArray9 } from "drizzle-orm";
+import crypto17 from "crypto";
+import { eq as eq20, and as and13, desc as desc10, sql as sql8, inArray as inArray9 } from "drizzle-orm";
 
 // ../api-routes/src/gbp-summary.ts
 function computeMetricTotals(rows) {
@@ -17351,7 +17535,7 @@ async function inspectUrl(accessToken, inspectionUrl, siteUrl) {
 }
 
 // ../integration-google-analytics/src/ga4-client.ts
-import crypto14 from "crypto";
+import crypto15 from "crypto";
 
 // ../integration-google-analytics/src/constants.ts
 var GA4_DATA_API_BASE = "https://analyticsdata.googleapis.com/v1beta";
@@ -17458,7 +17642,7 @@ function createServiceAccountJwt(clientEmail, privateKey, scope) {
   const headerB64 = encode(header);
   const payloadB64 = encode(payload);
   const signingInput = `${headerB64}.${payloadB64}`;
-  const sign = crypto14.createSign("RSA-SHA256");
+  const sign = crypto15.createSign("RSA-SHA256");
   sign.update(signingInput);
   const signature = sign.sign(privateKey, "base64url");
   return `${signingInput}.${signature}`;
@@ -18298,7 +18482,7 @@ async function listPlaceActionLinks(accessToken, locationName, opts = {}) {
 }
 
 // ../integration-google-business-profile/src/lodging-client.ts
-import crypto15 from "crypto";
+import crypto16 from "crypto";
 async function getLodging(accessToken, locationName, opts = {}) {
   const url = `${GBP_LODGING_BASE}/${locationName}/lodging?readMask=*`;
   try {
@@ -18325,7 +18509,7 @@ function isPopulated(value) {
   return true;
 }
 function hashLodging(lodging) {
-  return crypto15.createHash("sha256").update(stableStringify2(lodging)).digest("hex");
+  return crypto16.createHash("sha256").update(stableStringify2(lodging)).digest("hex");
 }
 function stableStringify2(value) {
   if (value === null || typeof value !== "object") return JSON.stringify(value);
@@ -18347,7 +18531,7 @@ function scopesForConnectionType(type) {
   }
 }
 function signState(payload, secret) {
-  return crypto16.createHmac("sha256", secret).update(payload).digest("hex");
+  return crypto17.createHmac("sha256", secret).update(payload).digest("hex");
 }
 function buildSignedState(data, secret) {
   const payload = JSON.stringify(data);
@@ -18358,7 +18542,7 @@ function verifySignedState(encoded, secret) {
   try {
     const { payload, sig } = JSON.parse(Buffer.from(encoded, "base64url").toString());
     const expected = signState(payload, secret);
-    if (!crypto16.timingSafeEqual(Buffer.from(sig, "hex"), Buffer.from(expected, "hex"))) return null;
+    if (!crypto17.timingSafeEqual(Buffer.from(sig, "hex"), Buffer.from(expected, "hex"))) return null;
     return JSON.parse(payload);
   } catch {
     return null;
@@ -18513,7 +18697,7 @@ async function googleRoutes(app, opts) {
     if (!projectId) {
       return reply.status(400).send("Stale OAuth state \u2014 restart the connect flow.");
     }
-    const project = app.db.select().from(projects).where(eq19(projects.id, projectId)).get();
+    const project = app.db.select().from(projects).where(eq20(projects.id, projectId)).get();
     if (!project) {
       return reply.status(400).send("Project no longer exists. Restart the connect flow.");
     }
@@ -18628,7 +18812,7 @@ async function googleRoutes(app, opts) {
       throw validationError('No GSC connection found for this domain. Run "canonry google connect" first.');
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto16.randomUUID();
+    const runId = crypto17.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -18641,14 +18825,14 @@ async function googleRoutes(app, opts) {
     if (opts.onGscSyncRequested) {
       opts.onGscSyncRequested(runId, project.id, { days, full });
     }
-    const run = app.db.select().from(runs).where(eq19(runs.id, runId)).get();
+    const run = app.db.select().from(runs).where(eq20(runs.id, runId)).get();
     return run;
   });
   app.get("/projects/:name/google/gsc/performance", async (request) => {
     const project = resolveProject(app.db, request.params.name);
     const { startDate, endDate, query, page, limit, offset } = request.query;
     const cutoffDate = !startDate ? windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null : null;
-    const conditions = [eq19(gscSearchData.projectId, project.id)];
+    const conditions = [eq20(gscSearchData.projectId, project.id)];
     if (startDate) conditions.push(sql8`${gscSearchData.date} >= ${startDate}`);
     else if (cutoffDate) conditions.push(sql8`${gscSearchData.date} >= ${cutoffDate}`);
     if (endDate) conditions.push(sql8`${gscSearchData.date} <= ${endDate}`);
@@ -18656,7 +18840,7 @@ async function googleRoutes(app, opts) {
     if (page) conditions.push(sql8`${gscSearchData.page} LIKE ${"%" + page + "%"}`);
     const limitVal = Math.max(parseInt(limit ?? "500", 10) || 0, 1);
     const offsetVal = Math.max(parseInt(offset ?? "0", 10) || 0, 0);
-    const rows = app.db.select().from(gscSearchData).where(and13(...conditions)).orderBy(desc9(gscSearchData.date)).limit(limitVal).offset(offsetVal).all();
+    const rows = app.db.select().from(gscSearchData).where(and13(...conditions)).orderBy(desc10(gscSearchData.date)).limit(limitVal).offset(offsetVal).all();
     return rows.map((r) => ({
       date: r.date,
       query: r.query,
@@ -18673,7 +18857,7 @@ async function googleRoutes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     const { startDate, endDate } = request.query;
     const cutoffDate = !startDate ? windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null : null;
-    const conditions = [eq19(gscSearchData.projectId, project.id)];
+    const conditions = [eq20(gscSearchData.projectId, project.id)];
     if (startDate) conditions.push(sql8`${gscSearchData.date} >= ${startDate}`);
     else if (cutoffDate) conditions.push(sql8`${gscSearchData.date} >= ${cutoffDate}`);
     if (endDate) conditions.push(sql8`${gscSearchData.date} <= ${endDate}`);
@@ -18721,7 +18905,7 @@ async function googleRoutes(app, opts) {
     const mob = ir.mobileUsabilityResult;
     const rich = ir.richResultsResult;
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const id = crypto16.randomUUID();
+    const id = crypto17.randomUUID();
     app.db.insert(gscUrlInspections).values({
       id,
       projectId: project.id,
@@ -18759,9 +18943,9 @@ async function googleRoutes(app, opts) {
   app.get("/projects/:name/google/gsc/inspections", async (request) => {
     const project = resolveProject(app.db, request.params.name);
     const { url, limit } = request.query;
-    const conditions = [eq19(gscUrlInspections.projectId, project.id)];
-    if (url) conditions.push(eq19(gscUrlInspections.url, url));
-    const rows = app.db.select().from(gscUrlInspections).where(and13(...conditions)).orderBy(desc9(gscUrlInspections.inspectedAt)).limit(parseInt(limit ?? "100", 10)).all();
+    const conditions = [eq20(gscUrlInspections.projectId, project.id)];
+    if (url) conditions.push(eq20(gscUrlInspections.url, url));
+    const rows = app.db.select().from(gscUrlInspections).where(and13(...conditions)).orderBy(desc10(gscUrlInspections.inspectedAt)).limit(parseInt(limit ?? "100", 10)).all();
     return rows.map((r) => ({
       id: r.id,
       url: r.url,
@@ -18780,7 +18964,7 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/google/gsc/deindexed", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const allInspections = app.db.select().from(gscUrlInspections).where(eq19(gscUrlInspections.projectId, project.id)).orderBy(desc9(gscUrlInspections.inspectedAt)).all();
+    const allInspections = app.db.select().from(gscUrlInspections).where(eq20(gscUrlInspections.projectId, project.id)).orderBy(desc10(gscUrlInspections.inspectedAt)).all();
     const byUrl = /* @__PURE__ */ new Map();
     for (const row of allInspections) {
       const existing = byUrl.get(row.url);
@@ -18808,7 +18992,7 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/google/gsc/coverage", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const allInspections = app.db.select().from(gscUrlInspections).where(eq19(gscUrlInspections.projectId, project.id)).orderBy(desc9(gscUrlInspections.inspectedAt)).all();
+    const allInspections = app.db.select().from(gscUrlInspections).where(eq20(gscUrlInspections.projectId, project.id)).orderBy(desc10(gscUrlInspections.inspectedAt)).all();
     const canonicalUrl = (url) => url.replace(/^http:\/\//, "https://");
     const latestByUrl = /* @__PURE__ */ new Map();
     const historyByUrl = /* @__PURE__ */ new Map();
@@ -18857,7 +19041,7 @@ async function googleRoutes(app, opts) {
     const total = latestByUrl.size;
     const indexed = indexedUrls.length;
     const notIndexed = notIndexedUrls.length;
-    const latestSnapshot = app.db.select({ createdAt: gscCoverageSnapshots.createdAt }).from(gscCoverageSnapshots).where(eq19(gscCoverageSnapshots.projectId, project.id)).orderBy(desc9(gscCoverageSnapshots.createdAt)).limit(1).get();
+    const latestSnapshot = app.db.select({ createdAt: gscCoverageSnapshots.createdAt }).from(gscCoverageSnapshots).where(eq20(gscCoverageSnapshots.projectId, project.id)).orderBy(desc10(gscCoverageSnapshots.createdAt)).limit(1).get();
     const lastSyncedAt = latestSnapshot?.createdAt ?? null;
     const formatRow = (r) => ({
       id: r.id,
@@ -18908,7 +19092,7 @@ async function googleRoutes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     const parsed = parseInt(request.query.limit ?? "90", 10);
     const limit = Number.isNaN(parsed) || parsed <= 0 ? 90 : parsed;
-    const rows = app.db.select().from(gscCoverageSnapshots).where(eq19(gscCoverageSnapshots.projectId, project.id)).orderBy(desc9(gscCoverageSnapshots.date)).limit(limit).all();
+    const rows = app.db.select().from(gscCoverageSnapshots).where(eq20(gscCoverageSnapshots.projectId, project.id)).orderBy(desc10(gscCoverageSnapshots.date)).limit(limit).all();
     return rows.map((r) => ({
       date: r.date,
       indexed: r.indexed,
@@ -18956,7 +19140,7 @@ async function googleRoutes(app, opts) {
       updatedAt: (/* @__PURE__ */ new Date()).toISOString()
     });
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto16.randomUUID();
+    const runId = crypto17.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -18968,7 +19152,7 @@ async function googleRoutes(app, opts) {
     if (opts.onInspectSitemapRequested) {
       opts.onInspectSitemapRequested(runId, project.id, { sitemapUrl });
     }
-    const run = app.db.select().from(runs).where(eq19(runs.id, runId)).get();
+    const run = app.db.select().from(runs).where(eq20(runs.id, runId)).get();
     return { sitemaps, primarySitemapUrl: sitemapUrl, run };
   });
   app.post("/projects/:name/google/gsc/inspect-sitemap", async (request) => {
@@ -18982,7 +19166,7 @@ async function googleRoutes(app, opts) {
       throw validationError("No GSC property configured for this connection");
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto16.randomUUID();
+    const runId = crypto17.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -18995,7 +19179,7 @@ async function googleRoutes(app, opts) {
     if (opts.onInspectSitemapRequested) {
       opts.onInspectSitemapRequested(runId, project.id, { sitemapUrl: sitemapUrl ?? void 0 });
     }
-    const run = app.db.select().from(runs).where(eq19(runs.id, runId)).get();
+    const run = app.db.select().from(runs).where(eq20(runs.id, runId)).get();
     return run;
   });
   app.put("/projects/:name/google/connections/:type/sitemap", async (request) => {
@@ -19042,7 +19226,7 @@ async function googleRoutes(app, opts) {
     const { accessToken } = await getValidToken(store, project.canonicalDomain, "gsc", googleClientId, googleClientSecret);
     let urlsToNotify = request.body?.urls ?? [];
     if (request.body?.allUnindexed) {
-      const allInspections = app.db.select().from(gscUrlInspections).where(eq19(gscUrlInspections.projectId, project.id)).orderBy(desc9(gscUrlInspections.inspectedAt)).all();
+      const allInspections = app.db.select().from(gscUrlInspections).where(eq20(gscUrlInspections.projectId, project.id)).orderBy(desc10(gscUrlInspections.inspectedAt)).all();
       const latestByUrl = /* @__PURE__ */ new Map();
       for (const row of allInspections) {
         if (!latestByUrl.has(row.url)) {
@@ -19153,7 +19337,7 @@ async function googleRoutes(app, opts) {
     };
   }
   function listSelectionResponse(projectId) {
-    const rows = app.db.select().from(gbpLocations).where(eq19(gbpLocations.projectId, projectId)).all();
+    const rows = app.db.select().from(gbpLocations).where(eq20(gbpLocations.projectId, projectId)).all();
     const dtos = rows.map(rowToDto2);
     return {
       locations: dtos,
@@ -19162,15 +19346,15 @@ async function googleRoutes(app, opts) {
     };
   }
   function clearGbpProjectData(tx, projectId) {
-    tx.delete(gbpDailyMetrics).where(eq19(gbpDailyMetrics.projectId, projectId)).run();
-    tx.delete(gbpKeywordImpressions).where(eq19(gbpKeywordImpressions.projectId, projectId)).run();
-    tx.delete(gbpKeywordMonthly).where(eq19(gbpKeywordMonthly.projectId, projectId)).run();
-    tx.delete(gbpPlaceActions).where(eq19(gbpPlaceActions.projectId, projectId)).run();
-    tx.delete(gbpLodgingSnapshots).where(eq19(gbpLodgingSnapshots.projectId, projectId)).run();
-    tx.delete(gbpLocations).where(eq19(gbpLocations.projectId, projectId)).run();
+    tx.delete(gbpDailyMetrics).where(eq20(gbpDailyMetrics.projectId, projectId)).run();
+    tx.delete(gbpKeywordImpressions).where(eq20(gbpKeywordImpressions.projectId, projectId)).run();
+    tx.delete(gbpKeywordMonthly).where(eq20(gbpKeywordMonthly.projectId, projectId)).run();
+    tx.delete(gbpPlaceActions).where(eq20(gbpPlaceActions.projectId, projectId)).run();
+    tx.delete(gbpLodgingSnapshots).where(eq20(gbpLodgingSnapshots.projectId, projectId)).run();
+    tx.delete(gbpLocations).where(eq20(gbpLocations.projectId, projectId)).run();
   }
   function currentProjectAccount(projectId) {
-    const row = app.db.select({ accountName: gbpLocations.accountName }).from(gbpLocations).where(eq19(gbpLocations.projectId, projectId)).limit(1).get();
+    const row = app.db.select({ accountName: gbpLocations.accountName }).from(gbpLocations).where(eq20(gbpLocations.projectId, projectId)).limit(1).get();
     return row?.accountName ?? null;
   }
   app.post("/projects/:name/gbp/locations/discover", async (request) => {
@@ -19240,7 +19424,7 @@ async function googleRoutes(app, opts) {
     app.db.transaction((tx) => {
       if (switching) clearGbpProjectData(tx, project.id);
       for (const remote of remoteLocations) {
-        const existing = tx.select().from(gbpLocations).where(and13(eq19(gbpLocations.projectId, project.id), eq19(gbpLocations.locationName, remote.name))).get();
+        const existing = tx.select().from(gbpLocations).where(and13(eq20(gbpLocations.projectId, project.id), eq20(gbpLocations.locationName, remote.name))).get();
         if (existing) {
           tx.update(gbpLocations).set({
             accountName,
@@ -19251,10 +19435,10 @@ async function googleRoutes(app, opts) {
             placeId: remote.metadata?.placeId ?? null,
             mapsUri: remote.metadata?.mapsUri ?? null,
             updatedAt: now
-          }).where(eq19(gbpLocations.id, existing.id)).run();
+          }).where(eq20(gbpLocations.id, existing.id)).run();
         } else {
           tx.insert(gbpLocations).values({
-            id: crypto16.randomUUID(),
+            id: crypto17.randomUUID(),
             projectId: project.id,
             accountName,
             locationName: remote.name,
@@ -19334,11 +19518,11 @@ async function googleRoutes(app, opts) {
       throw validationError(parsed.error.issues[0]?.message ?? "Invalid selection request");
     }
     const { selected } = parsed.data;
-    const existing = app.db.select().from(gbpLocations).where(and13(eq19(gbpLocations.projectId, project.id), eq19(gbpLocations.locationName, locationName))).get();
+    const existing = app.db.select().from(gbpLocations).where(and13(eq20(gbpLocations.projectId, project.id), eq20(gbpLocations.locationName, locationName))).get();
     if (!existing) throw notFound("GBP location", locationName);
     const now = (/* @__PURE__ */ new Date()).toISOString();
     app.db.transaction((tx) => {
-      tx.update(gbpLocations).set({ selected, updatedAt: now }).where(eq19(gbpLocations.id, existing.id)).run();
+      tx.update(gbpLocations).set({ selected, updatedAt: now }).where(eq20(gbpLocations.id, existing.id)).run();
       writeAuditLog(tx, {
         projectId: project.id,
         actor: "api",
@@ -19347,7 +19531,7 @@ async function googleRoutes(app, opts) {
         entityId: locationName
       });
     });
-    const refreshed = app.db.select().from(gbpLocations).where(eq19(gbpLocations.id, existing.id)).get();
+    const refreshed = app.db.select().from(gbpLocations).where(eq20(gbpLocations.id, existing.id)).get();
     return rowToDto2(refreshed);
   });
   app.delete("/projects/:name/gbp/connection", async (request, reply) => {
@@ -19377,7 +19561,7 @@ async function googleRoutes(app, opts) {
       throw validationError(parsed.error.issues[0]?.message ?? "Invalid sync request");
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto16.randomUUID();
+    const runId = crypto17.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -19391,10 +19575,10 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/gbp/metrics", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const conditions = [eq19(gbpDailyMetrics.projectId, project.id)];
-    if (request.query.locationName) conditions.push(eq19(gbpDailyMetrics.locationName, request.query.locationName));
-    if (request.query.metric) conditions.push(eq19(gbpDailyMetrics.metric, request.query.metric));
-    const rows = app.db.select().from(gbpDailyMetrics).where(and13(...conditions)).orderBy(desc9(gbpDailyMetrics.date)).all();
+    const conditions = [eq20(gbpDailyMetrics.projectId, project.id)];
+    if (request.query.locationName) conditions.push(eq20(gbpDailyMetrics.locationName, request.query.locationName));
+    if (request.query.metric) conditions.push(eq20(gbpDailyMetrics.metric, request.query.metric));
+    const rows = app.db.select().from(gbpDailyMetrics).where(and13(...conditions)).orderBy(desc10(gbpDailyMetrics.date)).all();
     return {
       metrics: rows.map((r) => ({ locationName: r.locationName, date: r.date, metric: r.metric, value: r.value })),
       total: rows.length
@@ -19402,8 +19586,8 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/gbp/keywords", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const conditions = [eq19(gbpKeywordImpressions.projectId, project.id)];
-    if (request.query.locationName) conditions.push(eq19(gbpKeywordImpressions.locationName, request.query.locationName));
+    const conditions = [eq20(gbpKeywordImpressions.projectId, project.id)];
+    if (request.query.locationName) conditions.push(eq20(gbpKeywordImpressions.locationName, request.query.locationName));
     const rows = app.db.select().from(gbpKeywordImpressions).where(and13(...conditions)).all();
     rows.sort((a, b) => (b.valueCount ?? -1) - (a.valueCount ?? -1));
     const thresholded = rows.filter((r) => r.valueThreshold !== null).length;
@@ -19422,8 +19606,8 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/gbp/place-actions", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const conditions = [eq19(gbpPlaceActions.projectId, project.id)];
-    if (request.query.locationName) conditions.push(eq19(gbpPlaceActions.locationName, request.query.locationName));
+    const conditions = [eq20(gbpPlaceActions.projectId, project.id)];
+    if (request.query.locationName) conditions.push(eq20(gbpPlaceActions.locationName, request.query.locationName));
     const rows = app.db.select().from(gbpPlaceActions).where(and13(...conditions)).all();
     return {
       placeActions: rows.map((r) => ({
@@ -19439,9 +19623,9 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/gbp/lodging", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const conditions = [eq19(gbpLodgingSnapshots.projectId, project.id)];
-    if (request.query.locationName) conditions.push(eq19(gbpLodgingSnapshots.locationName, request.query.locationName));
-    const rows = app.db.select().from(gbpLodgingSnapshots).where(and13(...conditions)).orderBy(desc9(gbpLodgingSnapshots.syncedAt)).all();
+    const conditions = [eq20(gbpLodgingSnapshots.projectId, project.id)];
+    if (request.query.locationName) conditions.push(eq20(gbpLodgingSnapshots.locationName, request.query.locationName));
+    const rows = app.db.select().from(gbpLodgingSnapshots).where(and13(...conditions)).orderBy(desc10(gbpLodgingSnapshots.syncedAt)).all();
     const latestByLocation = /* @__PURE__ */ new Map();
     for (const row of rows) {
       if (!latestByLocation.has(row.locationName)) latestByLocation.set(row.locationName, row);
@@ -19456,9 +19640,9 @@ async function googleRoutes(app, opts) {
   });
   app.get("/projects/:name/gbp/places", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const conditions = [eq19(gbpPlaceDetails.projectId, project.id)];
-    if (request.query.locationName) conditions.push(eq19(gbpPlaceDetails.locationName, request.query.locationName));
-    const rows = app.db.select().from(gbpPlaceDetails).where(and13(...conditions)).orderBy(desc9(gbpPlaceDetails.syncedAt)).all();
+    const conditions = [eq20(gbpPlaceDetails.projectId, project.id)];
+    if (request.query.locationName) conditions.push(eq20(gbpPlaceDetails.locationName, request.query.locationName));
+    const rows = app.db.select().from(gbpPlaceDetails).where(and13(...conditions)).orderBy(desc10(gbpPlaceDetails.syncedAt)).all();
     const latestByLocation = /* @__PURE__ */ new Map();
     for (const row of rows) {
       if (!latestByLocation.has(row.locationName)) latestByLocation.set(row.locationName, row);
@@ -19477,7 +19661,7 @@ async function googleRoutes(app, opts) {
   app.get("/projects/:name/gbp/summary", async (request) => {
     const project = resolveProject(app.db, request.params.name);
     const locationName = request.query.locationName ?? null;
-    const locationNames = locationName ? [locationName] : app.db.select({ n: gbpLocations.locationName }).from(gbpLocations).where(and13(eq19(gbpLocations.projectId, project.id), eq19(gbpLocations.selected, true))).all().map((r) => r.n);
+    const locationNames = locationName ? [locationName] : app.db.select({ n: gbpLocations.locationName }).from(gbpLocations).where(and13(eq20(gbpLocations.projectId, project.id), eq20(gbpLocations.selected, true))).all().map((r) => r.n);
     const today = (/* @__PURE__ */ new Date()).toISOString().slice(0, 10);
     if (locationNames.length === 0) {
       return buildGbpSummary({
@@ -19490,10 +19674,10 @@ async function googleRoutes(app, opts) {
         lodging: []
       });
     }
-    const metricRows = app.db.select().from(gbpDailyMetrics).where(and13(eq19(gbpDailyMetrics.projectId, project.id), inArray9(gbpDailyMetrics.locationName, locationNames))).all();
-    const keywordRows = app.db.select().from(gbpKeywordImpressions).where(and13(eq19(gbpKeywordImpressions.projectId, project.id), inArray9(gbpKeywordImpressions.locationName, locationNames))).all();
-    const placeActionRows = app.db.select().from(gbpPlaceActions).where(and13(eq19(gbpPlaceActions.projectId, project.id), inArray9(gbpPlaceActions.locationName, locationNames))).all();
-    const lodgingRows = app.db.select().from(gbpLodgingSnapshots).where(and13(eq19(gbpLodgingSnapshots.projectId, project.id), inArray9(gbpLodgingSnapshots.locationName, locationNames))).orderBy(desc9(gbpLodgingSnapshots.syncedAt)).all();
+    const metricRows = app.db.select().from(gbpDailyMetrics).where(and13(eq20(gbpDailyMetrics.projectId, project.id), inArray9(gbpDailyMetrics.locationName, locationNames))).all();
+    const keywordRows = app.db.select().from(gbpKeywordImpressions).where(and13(eq20(gbpKeywordImpressions.projectId, project.id), inArray9(gbpKeywordImpressions.locationName, locationNames))).all();
+    const placeActionRows = app.db.select().from(gbpPlaceActions).where(and13(eq20(gbpPlaceActions.projectId, project.id), inArray9(gbpPlaceActions.locationName, locationNames))).all();
+    const lodgingRows = app.db.select().from(gbpLodgingSnapshots).where(and13(eq20(gbpLodgingSnapshots.projectId, project.id), inArray9(gbpLodgingSnapshots.locationName, locationNames))).orderBy(desc10(gbpLodgingSnapshots.syncedAt)).all();
     const latestLodgingByLocation = /* @__PURE__ */ new Map();
     for (const row of lodgingRows) {
       if (!latestLodgingByLocation.has(row.locationName)) {
@@ -19513,8 +19697,8 @@ async function googleRoutes(app, opts) {
 }
 
 // ../api-routes/src/bing.ts
-import crypto17 from "crypto";
-import { eq as eq20, and as and14, desc as desc10 } from "drizzle-orm";
+import crypto18 from "crypto";
+import { eq as eq21, and as and14, desc as desc11 } from "drizzle-orm";
 
 // ../integration-bing/src/constants.ts
 var BING_WMT_API_BASE = "https://ssl.bing.com/webmaster/api.svc/json";
@@ -19842,7 +20026,7 @@ async function bingRoutes(app, opts) {
     const store = requireConnectionStore();
     const project = resolveProject(app.db, request.params.name);
     requireConnection(store, project.canonicalDomain);
-    const allInspections = app.db.select().from(bingUrlInspections).where(eq20(bingUrlInspections.projectId, project.id)).orderBy(desc10(bingUrlInspections.inspectedAt)).all();
+    const allInspections = app.db.select().from(bingUrlInspections).where(eq21(bingUrlInspections.projectId, project.id)).orderBy(desc11(bingUrlInspections.inspectedAt)).all();
     const latestByUrl = /* @__PURE__ */ new Map();
     const definitiveByUrl = /* @__PURE__ */ new Map();
     for (const row of allInspections) {
@@ -19899,7 +20083,7 @@ async function bingRoutes(app, opts) {
       const snapshotDate = (/* @__PURE__ */ new Date()).toISOString().split("T")[0];
       const now = (/* @__PURE__ */ new Date()).toISOString();
       app.db.insert(bingCoverageSnapshots).values({
-        id: crypto17.randomUUID(),
+        id: crypto18.randomUUID(),
         projectId: project.id,
         syncRunId: snapshotRunId,
         date: snapshotDate,
@@ -19931,7 +20115,7 @@ async function bingRoutes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     const parsed = parseInt(request.query.limit ?? "90", 10);
     const limit = Number.isNaN(parsed) || parsed <= 0 ? 90 : parsed;
-    const rows = app.db.select().from(bingCoverageSnapshots).where(eq20(bingCoverageSnapshots.projectId, project.id)).orderBy(desc10(bingCoverageSnapshots.date)).limit(limit).all();
+    const rows = app.db.select().from(bingCoverageSnapshots).where(eq21(bingCoverageSnapshots.projectId, project.id)).orderBy(desc11(bingCoverageSnapshots.date)).limit(limit).all();
     return rows.map((r) => ({
       date: r.date,
       indexed: r.indexed,
@@ -19943,8 +20127,8 @@ async function bingRoutes(app, opts) {
     requireConnectionStore();
     const project = resolveProject(app.db, request.params.name);
     const { url, limit } = request.query;
-    const whereClause = url ? and14(eq20(bingUrlInspections.projectId, project.id), eq20(bingUrlInspections.url, url)) : eq20(bingUrlInspections.projectId, project.id);
-    const filtered = app.db.select().from(bingUrlInspections).where(whereClause).orderBy(desc10(bingUrlInspections.inspectedAt)).limit(Math.max(1, Math.min(parseInt(limit ?? "100", 10) || 100, 1e3))).all();
+    const whereClause = url ? and14(eq21(bingUrlInspections.projectId, project.id), eq21(bingUrlInspections.url, url)) : eq21(bingUrlInspections.projectId, project.id);
+    const filtered = app.db.select().from(bingUrlInspections).where(whereClause).orderBy(desc11(bingUrlInspections.inspectedAt)).limit(Math.max(1, Math.min(parseInt(limit ?? "100", 10) || 100, 1e3))).all();
     return filtered.map((r) => ({
       id: r.id,
       url: r.url,
@@ -19970,7 +20154,7 @@ async function bingRoutes(app, opts) {
       throw validationError("url is required");
     }
     const startedAt = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto17.randomUUID();
+    const runId = crypto18.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -19991,7 +20175,7 @@ async function bingRoutes(app, opts) {
         discoveryDate: result.DiscoveryDate ?? null
       });
       const now = (/* @__PURE__ */ new Date()).toISOString();
-      const id = crypto17.randomUUID();
+      const id = crypto18.randomUUID();
       const httpCode = result.HttpStatus ?? result.HttpCode ?? null;
       const lastCrawledDate = parseBingDate(result.LastCrawledDate);
       const inIndexDate = parseBingDate(result.InIndexDate);
@@ -20033,7 +20217,7 @@ async function bingRoutes(app, opts) {
         anchorCount: result.AnchorCount ?? null,
         discoveryDate
       }).run();
-      app.db.update(runs).set({ status: RunStatuses.completed, finishedAt: now }).where(eq20(runs.id, runId)).run();
+      app.db.update(runs).set({ status: RunStatuses.completed, finishedAt: now }).where(eq21(runs.id, runId)).run();
       return {
         id,
         url,
@@ -20049,7 +20233,7 @@ async function bingRoutes(app, opts) {
     } catch (e) {
       const msg = e instanceof Error ? e.message : String(e);
       bingLog("error", "inspect-url.failed", { domain: project.canonicalDomain, url, error: msg });
-      app.db.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq20(runs.id, runId)).run();
+      app.db.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq21(runs.id, runId)).run();
       throw e;
     }
   });
@@ -20061,7 +20245,7 @@ async function bingRoutes(app, opts) {
       throw validationError('No Bing site configured. Run "canonry bing set-site <project> <url>" first.');
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto17.randomUUID();
+    const runId = crypto18.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -20076,7 +20260,7 @@ async function bingRoutes(app, opts) {
     } else {
       bingLog("warn", "inspect-sitemap.no-callback", { domain: project.canonicalDomain, runId });
     }
-    const run = app.db.select().from(runs).where(eq20(runs.id, runId)).get();
+    const run = app.db.select().from(runs).where(eq21(runs.id, runId)).get();
     return run;
   });
   app.post("/projects/:name/bing/request-indexing", async (request) => {
@@ -20088,7 +20272,7 @@ async function bingRoutes(app, opts) {
     }
     let urlsToSubmit = request.body?.urls ?? [];
     if (request.body?.allUnindexed) {
-      const allInspections = app.db.select().from(bingUrlInspections).where(eq20(bingUrlInspections.projectId, project.id)).orderBy(desc10(bingUrlInspections.inspectedAt)).all();
+      const allInspections = app.db.select().from(bingUrlInspections).where(eq21(bingUrlInspections.projectId, project.id)).orderBy(desc11(bingUrlInspections.inspectedAt)).all();
       const latestByUrl = /* @__PURE__ */ new Map();
       for (const row of allInspections) {
         if (!latestByUrl.has(row.url)) {
@@ -20175,14 +20359,14 @@ async function bingRoutes(app, opts) {
 import fs from "fs";
 import path from "path";
 import os from "os";
-import { eq as eq21, and as and15 } from "drizzle-orm";
+import { eq as eq22, and as and15 } from "drizzle-orm";
 function getScreenshotDir() {
   return path.join(os.homedir(), ".canonry", "screenshots");
 }
 async function cdpRoutes(app, opts) {
   app.get("/screenshots/:snapshotId", async (request, reply) => {
     const { snapshotId } = request.params;
-    const snapshot = app.db.select({ screenshotPath: querySnapshots.screenshotPath }).from(querySnapshots).where(eq21(querySnapshots.id, snapshotId)).get();
+    const snapshot = app.db.select({ screenshotPath: querySnapshots.screenshotPath }).from(querySnapshots).where(eq22(querySnapshots.id, snapshotId)).get();
     if (!snapshot?.screenshotPath) {
       const err = notFound("Screenshot", snapshotId);
       return reply.code(err.statusCode).send(err.toJSON());
@@ -20249,7 +20433,7 @@ async function cdpRoutes(app, opts) {
     async (request, reply) => {
       const project = resolveProject(app.db, request.params.name);
       const { runId } = request.params;
-      const run = app.db.select().from(runs).where(and15(eq21(runs.id, runId), eq21(runs.projectId, project.id))).get();
+      const run = app.db.select().from(runs).where(and15(eq22(runs.id, runId), eq22(runs.projectId, project.id))).get();
       if (!run) {
         const err = notFound("Run", runId);
         return reply.code(err.statusCode).send(err.toJSON());
@@ -20262,8 +20446,8 @@ async function cdpRoutes(app, opts) {
         citedDomains: querySnapshots.citedDomains,
         screenshotPath: querySnapshots.screenshotPath,
         rawResponse: querySnapshots.rawResponse
-      }).from(querySnapshots).where(eq21(querySnapshots.runId, runId)).all());
-      const queryRows = app.db.select({ id: queries.id, query: queries.query }).from(queries).where(eq21(queries.projectId, project.id)).all();
+      }).from(querySnapshots).where(eq22(querySnapshots.runId, runId)).all());
+      const queryRows = app.db.select({ id: queries.id, query: queries.query }).from(queries).where(eq22(queries.projectId, project.id)).all();
       const queryMap = new Map(queryRows.map((q) => [q.id, q.query]));
       const byQuery = /* @__PURE__ */ new Map();
       for (const snap of snapshots) {
@@ -20345,8 +20529,8 @@ async function cdpRoutes(app, opts) {
 }
 
 // ../api-routes/src/ga.ts
-import crypto18 from "crypto";
-import { eq as eq22, desc as desc11, and as and16, sql as sql9 } from "drizzle-orm";
+import crypto19 from "crypto";
+import { eq as eq23, desc as desc12, and as and16, sql as sql9 } from "drizzle-orm";
 function gaLog(level, action, ctx) {
   const entry = { ts: (/* @__PURE__ */ new Date()).toISOString(), level, module: "GA4Routes", action, ...ctx };
   const stream = level === "error" ? process.stderr : process.stdout;
@@ -20553,10 +20737,10 @@ async function ga4Routes(app, opts) {
     if (!saConn && !oauthConn) {
       throw notFound("GA4 connection", project.name);
     }
-    app.db.delete(gaTrafficSnapshots).where(eq22(gaTrafficSnapshots.projectId, project.id)).run();
-    app.db.delete(gaTrafficSummaries).where(eq22(gaTrafficSummaries.projectId, project.id)).run();
-    app.db.delete(gaAiReferrals).where(eq22(gaAiReferrals.projectId, project.id)).run();
-    app.db.delete(gaSocialReferrals).where(eq22(gaSocialReferrals.projectId, project.id)).run();
+    app.db.delete(gaTrafficSnapshots).where(eq23(gaTrafficSnapshots.projectId, project.id)).run();
+    app.db.delete(gaTrafficSummaries).where(eq23(gaTrafficSummaries.projectId, project.id)).run();
+    app.db.delete(gaAiReferrals).where(eq23(gaAiReferrals.projectId, project.id)).run();
+    app.db.delete(gaSocialReferrals).where(eq23(gaSocialReferrals.projectId, project.id)).run();
     const propertyId = saConn?.propertyId ?? oauthConn?.propertyId ?? null;
     opts.ga4CredentialStore?.deleteConnection(project.name);
     opts.googleConnectionStore?.deleteConnection(project.canonicalDomain, "ga4");
@@ -20577,7 +20761,7 @@ async function ga4Routes(app, opts) {
     if (!connected) {
       return { connected: false, propertyId: null, clientEmail: null, authMethod: null, lastSyncedAt: null };
     }
-    const latestSync = app.db.select({ syncedAt: gaTrafficSummaries.syncedAt }).from(gaTrafficSummaries).where(eq22(gaTrafficSummaries.projectId, project.id)).orderBy(desc11(gaTrafficSummaries.syncedAt)).limit(1).get();
+    const latestSync = app.db.select({ syncedAt: gaTrafficSummaries.syncedAt }).from(gaTrafficSummaries).where(eq23(gaTrafficSummaries.projectId, project.id)).orderBy(desc12(gaTrafficSummaries.syncedAt)).limit(1).get();
     return {
       connected: true,
       propertyId: saConn?.propertyId ?? oauthConn?.propertyId ?? null,
@@ -20601,7 +20785,7 @@ async function ga4Routes(app, opts) {
     const syncAi = !only || only === "ai";
     const syncSocial = !only || only === "social";
     const startedAt = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto18.randomUUID();
+    const runId = crypto19.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -20642,14 +20826,14 @@ async function ga4Routes(app, opts) {
         if (syncTraffic) {
           tx.delete(gaTrafficSnapshots).where(
             and16(
-              eq22(gaTrafficSnapshots.projectId, project.id),
+              eq23(gaTrafficSnapshots.projectId, project.id),
               sql9`${gaTrafficSnapshots.date} >= ${summary.periodStart}`,
               sql9`${gaTrafficSnapshots.date} <= ${summary.periodEnd}`
             )
           ).run();
           for (const row of rows) {
             tx.insert(gaTrafficSnapshots).values({
-              id: crypto18.randomUUID(),
+              id: crypto19.randomUUID(),
               projectId: project.id,
               date: row.date,
               landingPage: row.landingPage,
@@ -20666,14 +20850,14 @@ async function ga4Routes(app, opts) {
         if (syncAi) {
           tx.delete(gaAiReferrals).where(
             and16(
-              eq22(gaAiReferrals.projectId, project.id),
+              eq23(gaAiReferrals.projectId, project.id),
               sql9`${gaAiReferrals.date} >= ${summary.periodStart}`,
               sql9`${gaAiReferrals.date} <= ${summary.periodEnd}`
             )
           ).run();
           for (const row of aiReferrals) {
             tx.insert(gaAiReferrals).values({
-              id: crypto18.randomUUID(),
+              id: crypto19.randomUUID(),
               projectId: project.id,
               date: row.date,
               source: row.source,
@@ -20692,14 +20876,14 @@ async function ga4Routes(app, opts) {
         if (syncSocial) {
           tx.delete(gaSocialReferrals).where(
             and16(
-              eq22(gaSocialReferrals.projectId, project.id),
+              eq23(gaSocialReferrals.projectId, project.id),
               sql9`${gaSocialReferrals.date} >= ${summary.periodStart}`,
               sql9`${gaSocialReferrals.date} <= ${summary.periodEnd}`
             )
           ).run();
           for (const row of socialReferrals) {
             tx.insert(gaSocialReferrals).values({
-              id: crypto18.randomUUID(),
+              id: crypto19.randomUUID(),
               projectId: project.id,
               date: row.date,
               source: row.source,
@@ -20713,9 +20897,9 @@ async function ga4Routes(app, opts) {
           }
         }
         if (syncSummary) {
-          tx.delete(gaTrafficSummaries).where(eq22(gaTrafficSummaries.projectId, project.id)).run();
+          tx.delete(gaTrafficSummaries).where(eq23(gaTrafficSummaries.projectId, project.id)).run();
           tx.insert(gaTrafficSummaries).values({
-            id: crypto18.randomUUID(),
+            id: crypto19.randomUUID(),
             projectId: project.id,
             periodStart: summary.periodStart,
             periodEnd: summary.periodEnd,
@@ -20725,10 +20909,10 @@ async function ga4Routes(app, opts) {
             syncedAt: now,
             syncRunId: runId
           }).run();
-          tx.delete(gaTrafficWindowSummaries).where(eq22(gaTrafficWindowSummaries.projectId, project.id)).run();
+          tx.delete(gaTrafficWindowSummaries).where(eq23(gaTrafficWindowSummaries.projectId, project.id)).run();
           for (const ws of windowSummaries) {
             tx.insert(gaTrafficWindowSummaries).values({
-              id: crypto18.randomUUID(),
+              id: crypto19.randomUUID(),
               projectId: project.id,
               windowKey: ws.windowKey,
               periodStart: ws.periodStart,
@@ -20743,7 +20927,7 @@ async function ga4Routes(app, opts) {
           }
         }
       });
-      app.db.update(runs).set({ status: RunStatuses.completed, finishedAt: now }).where(eq22(runs.id, runId)).run();
+      app.db.update(runs).set({ status: RunStatuses.completed, finishedAt: now }).where(eq23(runs.id, runId)).run();
       const syncedComponents = only ? [
         ...syncTraffic ? ["traffic"] : [],
         ...syncSummary ? ["summary"] : [],
@@ -20772,7 +20956,7 @@ async function ga4Routes(app, opts) {
     } catch (e) {
       const msg = e instanceof Error ? e.message : String(e);
       gaLog("error", "sync.fetch-failed", { projectId: project.id, runId, error: msg });
-      app.db.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq22(runs.id, runId)).run();
+      app.db.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: (/* @__PURE__ */ new Date()).toISOString() }).where(eq23(runs.id, runId)).run();
       throw e;
     }
   });
@@ -20783,11 +20967,11 @@ async function ga4Routes(app, opts) {
     const window = parseWindow(request.query.window);
     const cutoff = windowCutoff(window);
     const cutoffDate = cutoff?.slice(0, 10) ?? null;
-    const snapshotConditions = [eq22(gaTrafficSnapshots.projectId, project.id)];
+    const snapshotConditions = [eq23(gaTrafficSnapshots.projectId, project.id)];
     if (cutoffDate) snapshotConditions.push(sql9`${gaTrafficSnapshots.date} >= ${cutoffDate}`);
-    const aiConditions = [eq22(gaAiReferrals.projectId, project.id)];
+    const aiConditions = [eq23(gaAiReferrals.projectId, project.id)];
     if (cutoffDate) aiConditions.push(sql9`${gaAiReferrals.date} >= ${cutoffDate}`);
-    const socialConditions = [eq22(gaSocialReferrals.projectId, project.id)];
+    const socialConditions = [eq23(gaSocialReferrals.projectId, project.id)];
     if (cutoffDate) socialConditions.push(sql9`${gaSocialReferrals.date} >= ${cutoffDate}`);
     const windowSummaryRow = cutoffDate ? app.db.select({
       totalSessions: gaTrafficWindowSummaries.totalSessions,
@@ -20796,8 +20980,8 @@ async function ga4Routes(app, opts) {
       totalUsers: gaTrafficWindowSummaries.totalUsers
     }).from(gaTrafficWindowSummaries).where(
       and16(
-        eq22(gaTrafficWindowSummaries.projectId, project.id),
-        eq22(gaTrafficWindowSummaries.windowKey, window)
+        eq23(gaTrafficWindowSummaries.projectId, project.id),
+        eq23(gaTrafficWindowSummaries.windowKey, window)
       )
     ).get() : null;
     const snapshotTotalsRow = cutoffDate && !windowSummaryRow ? app.db.select({
@@ -20809,14 +20993,14 @@ async function ga4Routes(app, opts) {
       totalSessions: gaTrafficSummaries.totalSessions,
       totalOrganicSessions: gaTrafficSummaries.totalOrganicSessions,
       totalUsers: gaTrafficSummaries.totalUsers
-    }).from(gaTrafficSummaries).where(eq22(gaTrafficSummaries.projectId, project.id)).get();
+    }).from(gaTrafficSummaries).where(eq23(gaTrafficSummaries.projectId, project.id)).get();
     const directTotalRow = windowSummaryRow ? { totalDirectSessions: windowSummaryRow.totalDirectSessions } : app.db.select({
       totalDirectSessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)`
     }).from(gaTrafficSnapshots).where(and16(...snapshotConditions)).get();
     const summaryMeta = app.db.select({
       periodStart: gaTrafficSummaries.periodStart,
       periodEnd: gaTrafficSummaries.periodEnd
-    }).from(gaTrafficSummaries).where(eq22(gaTrafficSummaries.projectId, project.id)).get();
+    }).from(gaTrafficSummaries).where(eq23(gaTrafficSummaries.projectId, project.id)).get();
     const rows = app.db.select({
       landingPage: sql9`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`,
       sessions: sql9`SUM(${gaTrafficSnapshots.sessions})`,
@@ -20875,7 +21059,7 @@ async function ga4Routes(app, opts) {
       channelGroup: gaAiReferrals.channelGroup,
       sessions: sql9`COALESCE(SUM(${gaAiReferrals.sessions}), 0)`,
       users: sql9`COALESCE(SUM(${gaAiReferrals.users}), 0)`
-    }).from(gaAiReferrals).where(and16(...aiConditions, eq22(gaAiReferrals.sourceDimension, "session"))).groupBy(gaAiReferrals.channelGroup).all();
+    }).from(gaAiReferrals).where(and16(...aiConditions, eq23(gaAiReferrals.sourceDimension, "session"))).groupBy(gaAiReferrals.channelGroup).all();
     const aiSessionsByChannelGroup = /* @__PURE__ */ new Map();
     let aiBySessionUsers = 0;
     for (const row of aiBySessionRows) {
@@ -20894,7 +21078,7 @@ async function ga4Routes(app, opts) {
       sessions: sql9`SUM(${gaSocialReferrals.sessions})`,
       users: sql9`SUM(${gaSocialReferrals.users})`
     }).from(gaSocialReferrals).where(and16(...socialConditions)).get();
-    const latestSync = app.db.select({ syncedAt: gaTrafficSummaries.syncedAt }).from(gaTrafficSummaries).where(eq22(gaTrafficSummaries.projectId, project.id)).orderBy(desc11(gaTrafficSummaries.syncedAt)).limit(1).get();
+    const latestSync = app.db.select({ syncedAt: gaTrafficSummaries.syncedAt }).from(gaTrafficSummaries).where(eq23(gaTrafficSummaries.projectId, project.id)).orderBy(desc12(gaTrafficSummaries.syncedAt)).limit(1).get();
     const total = summaryRow?.totalSessions ?? 0;
     const totalDirectSessions = directTotalRow?.totalDirectSessions ?? 0;
     const totalOrganicSessions = summaryRow?.totalOrganicSessions ?? 0;
@@ -20974,7 +21158,7 @@ async function ga4Routes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const cutoffDate = windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null;
-    const conditions = [eq22(gaAiReferrals.projectId, project.id)];
+    const conditions = [eq23(gaAiReferrals.projectId, project.id)];
     if (cutoffDate) conditions.push(sql9`${gaAiReferrals.date} >= ${cutoffDate}`);
     const rows = app.db.select({
       date: gaAiReferrals.date,
@@ -20997,7 +21181,7 @@ async function ga4Routes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const cutoffDate = windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null;
-    const conditions = [eq22(gaSocialReferrals.projectId, project.id)];
+    const conditions = [eq23(gaSocialReferrals.projectId, project.id)];
     if (cutoffDate) conditions.push(sql9`${gaSocialReferrals.date} >= ${cutoffDate}`);
     const rows = app.db.select({
       date: gaSocialReferrals.date,
@@ -21020,7 +21204,7 @@ async function ga4Routes(app, opts) {
       return fmt(d);
     };
     const sumSocial = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and16(
-      eq22(gaSocialReferrals.projectId, project.id),
+      eq23(gaSocialReferrals.projectId, project.id),
       sql9`${gaSocialReferrals.date} >= ${from}`,
       sql9`${gaSocialReferrals.date} < ${to}`
     )).get();
@@ -21033,7 +21217,7 @@ async function ga4Routes(app, opts) {
       source: gaSocialReferrals.source,
       sessions: sql9`SUM(${gaSocialReferrals.sessions})`
     }).from(gaSocialReferrals).where(and16(
-      eq22(gaSocialReferrals.projectId, project.id),
+      eq23(gaSocialReferrals.projectId, project.id),
       sql9`${gaSocialReferrals.date} >= ${daysAgo(7)}`,
       sql9`${gaSocialReferrals.date} < ${fmt(today)}`
     )).groupBy(gaSocialReferrals.source).all();
@@ -21041,7 +21225,7 @@ async function ga4Routes(app, opts) {
       source: gaSocialReferrals.source,
       sessions: sql9`SUM(${gaSocialReferrals.sessions})`
     }).from(gaSocialReferrals).where(and16(
-      eq22(gaSocialReferrals.projectId, project.id),
+      eq23(gaSocialReferrals.projectId, project.id),
       sql9`${gaSocialReferrals.date} >= ${daysAgo(14)}`,
       sql9`${gaSocialReferrals.date} < ${daysAgo(7)}`
     )).groupBy(gaSocialReferrals.source).all();
@@ -21082,16 +21266,16 @@ async function ga4Routes(app, opts) {
       return fmt(d);
     };
     const pct = (cur, prev) => prev === 0 ? null : Math.round((cur - prev) / prev * 100);
-    const sumTotal = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.sessions}), 0)` }).from(gaTrafficSnapshots).where(and16(eq22(gaTrafficSnapshots.projectId, project.id), sql9`${gaTrafficSnapshots.date} >= ${from}`, sql9`${gaTrafficSnapshots.date} < ${to}`)).get();
-    const sumOrganic = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.organicSessions}), 0)` }).from(gaTrafficSnapshots).where(and16(eq22(gaTrafficSnapshots.projectId, project.id), sql9`${gaTrafficSnapshots.date} >= ${from}`, sql9`${gaTrafficSnapshots.date} < ${to}`)).get();
-    const sumDirect = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)` }).from(gaTrafficSnapshots).where(and16(eq22(gaTrafficSnapshots.projectId, project.id), sql9`${gaTrafficSnapshots.date} >= ${from}`, sql9`${gaTrafficSnapshots.date} < ${to}`)).get();
+    const sumTotal = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.sessions}), 0)` }).from(gaTrafficSnapshots).where(and16(eq23(gaTrafficSnapshots.projectId, project.id), sql9`${gaTrafficSnapshots.date} >= ${from}`, sql9`${gaTrafficSnapshots.date} < ${to}`)).get();
+    const sumOrganic = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.organicSessions}), 0)` }).from(gaTrafficSnapshots).where(and16(eq23(gaTrafficSnapshots.projectId, project.id), sql9`${gaTrafficSnapshots.date} >= ${from}`, sql9`${gaTrafficSnapshots.date} < ${to}`)).get();
+    const sumDirect = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaTrafficSnapshots.directSessions}), 0)` }).from(gaTrafficSnapshots).where(and16(eq23(gaTrafficSnapshots.projectId, project.id), sql9`${gaTrafficSnapshots.date} >= ${from}`, sql9`${gaTrafficSnapshots.date} < ${to}`)).get();
     const sumAi = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and16(
-      eq22(gaAiReferrals.projectId, project.id),
+      eq23(gaAiReferrals.projectId, project.id),
       sql9`${gaAiReferrals.date} >= ${from}`,
       sql9`${gaAiReferrals.date} < ${to}`,
-      eq22(gaAiReferrals.sourceDimension, "session")
+      eq23(gaAiReferrals.sourceDimension, "session")
     )).get();
-    const sumSocial = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and16(eq22(gaSocialReferrals.projectId, project.id), sql9`${gaSocialReferrals.date} >= ${from}`, sql9`${gaSocialReferrals.date} < ${to}`)).get();
+    const sumSocial = (from, to) => app.db.select({ sessions: sql9`COALESCE(SUM(${gaSocialReferrals.sessions}), 0)` }).from(gaSocialReferrals).where(and16(eq23(gaSocialReferrals.projectId, project.id), sql9`${gaSocialReferrals.date} >= ${from}`, sql9`${gaSocialReferrals.date} < ${to}`)).get();
     const todayStr = fmt(today);
     const buildTrend = (sum) => {
       const c7 = sum(daysAgo(7), todayStr)?.sessions ?? 0;
@@ -21101,16 +21285,16 @@ async function ga4Routes(app, opts) {
       return { sessions7d: c7, sessionsPrev7d: p7, trend7dPct: pct(c7, p7), sessions30d: c30, sessionsPrev30d: p30, trend30dPct: pct(c30, p30) };
     };
     const aiSourceCurrent = app.db.select({ source: gaAiReferrals.source, sessions: sql9`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and16(
-      eq22(gaAiReferrals.projectId, project.id),
+      eq23(gaAiReferrals.projectId, project.id),
       sql9`${gaAiReferrals.date} >= ${daysAgo(7)}`,
       sql9`${gaAiReferrals.date} < ${todayStr}`,
-      eq22(gaAiReferrals.sourceDimension, "session")
+      eq23(gaAiReferrals.sourceDimension, "session")
     )).groupBy(gaAiReferrals.source).all();
     const aiSourcePrev = app.db.select({ source: gaAiReferrals.source, sessions: sql9`COALESCE(SUM(${gaAiReferrals.sessions}), 0)` }).from(gaAiReferrals).where(and16(
-      eq22(gaAiReferrals.projectId, project.id),
+      eq23(gaAiReferrals.projectId, project.id),
       sql9`${gaAiReferrals.date} >= ${daysAgo(14)}`,
       sql9`${gaAiReferrals.date} < ${daysAgo(7)}`,
-      eq22(gaAiReferrals.sourceDimension, "session")
+      eq23(gaAiReferrals.sourceDimension, "session")
     )).groupBy(gaAiReferrals.source).all();
     const findBiggestMover = (current, prev) => {
       const prevMap = new Map(prev.map((r) => [r.source, r.sessions]));
@@ -21126,8 +21310,8 @@ async function ga4Routes(app, opts) {
       }
       return mover;
     };
-    const socialSourceCurrent = app.db.select({ source: gaSocialReferrals.source, sessions: sql9`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and16(eq22(gaSocialReferrals.projectId, project.id), sql9`${gaSocialReferrals.date} >= ${daysAgo(7)}`, sql9`${gaSocialReferrals.date} < ${todayStr}`)).groupBy(gaSocialReferrals.source).all();
-    const socialSourcePrev = app.db.select({ source: gaSocialReferrals.source, sessions: sql9`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and16(eq22(gaSocialReferrals.projectId, project.id), sql9`${gaSocialReferrals.date} >= ${daysAgo(14)}`, sql9`${gaSocialReferrals.date} < ${daysAgo(7)}`)).groupBy(gaSocialReferrals.source).all();
+    const socialSourceCurrent = app.db.select({ source: gaSocialReferrals.source, sessions: sql9`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and16(eq23(gaSocialReferrals.projectId, project.id), sql9`${gaSocialReferrals.date} >= ${daysAgo(7)}`, sql9`${gaSocialReferrals.date} < ${todayStr}`)).groupBy(gaSocialReferrals.source).all();
+    const socialSourcePrev = app.db.select({ source: gaSocialReferrals.source, sessions: sql9`SUM(${gaSocialReferrals.sessions})` }).from(gaSocialReferrals).where(and16(eq23(gaSocialReferrals.projectId, project.id), sql9`${gaSocialReferrals.date} >= ${daysAgo(14)}`, sql9`${gaSocialReferrals.date} < ${daysAgo(7)}`)).groupBy(gaSocialReferrals.source).all();
     return {
       total: buildTrend(sumTotal),
       organic: buildTrend(sumOrganic),
@@ -21142,7 +21326,7 @@ async function ga4Routes(app, opts) {
     const project = resolveProject(app.db, request.params.name);
     requireGa4Connection(opts, project.name, project.canonicalDomain);
     const cutoffDate = windowCutoff(parseWindow(request.query.window))?.slice(0, 10) ?? null;
-    const conditions = [eq22(gaTrafficSnapshots.projectId, project.id)];
+    const conditions = [eq23(gaTrafficSnapshots.projectId, project.id)];
     if (cutoffDate) conditions.push(sql9`${gaTrafficSnapshots.date} >= ${cutoffDate}`);
     const rows = app.db.select({
       date: gaTrafficSnapshots.date,
@@ -21165,7 +21349,7 @@ async function ga4Routes(app, opts) {
       sessions: sql9`SUM(${gaTrafficSnapshots.sessions})`,
       organicSessions: sql9`SUM(${gaTrafficSnapshots.organicSessions})`,
       users: sql9`SUM(${gaTrafficSnapshots.users})`
-    }).from(gaTrafficSnapshots).where(eq22(gaTrafficSnapshots.projectId, project.id)).groupBy(sql9`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`).orderBy(sql9`SUM(${gaTrafficSnapshots.sessions}) DESC`).all();
+    }).from(gaTrafficSnapshots).where(eq23(gaTrafficSnapshots.projectId, project.id)).groupBy(sql9`COALESCE(${gaTrafficSnapshots.landingPageNormalized}, ${gaTrafficSnapshots.landingPage})`).orderBy(sql9`SUM(${gaTrafficSnapshots.sessions}) DESC`).all();
     return {
       pages: trafficPages.map((r) => ({
         landingPage: r.landingPage,
@@ -21299,7 +21483,7 @@ function parseSchemaPageEntry(entry) {
 }
 
 // ../integration-wordpress/src/wordpress-client.ts
-import crypto19 from "crypto";
+import crypto20 from "crypto";
 function validateUsername(username) {
   if (!username || typeof username !== "string" || username.trim().length === 0) {
     throw new WordpressApiError("AUTH_INVALID", "Username is required and must be a non-empty string", 400);
@@ -21512,7 +21696,7 @@ function buildSnippet(content) {
   return `${text2.slice(0, 157)}...`;
 }
 function contentHash(content) {
-  return crypto19.createHash("sha256").update(content).digest("hex");
+  return crypto20.createHash("sha256").update(content).digest("hex");
 }
 function buildAmbiguousSlugMessage(slug, pages) {
   const candidates = pages.map((page) => {
@@ -22801,8 +22985,8 @@ async function wordpressRoutes(app, opts) {
 }
 
 // ../api-routes/src/backlinks.ts
-import crypto20 from "crypto";
-import { and as and18, asc as asc2, desc as desc12, eq as eq23, sql as sql10 } from "drizzle-orm";
+import crypto21 from "crypto";
+import { and as and18, asc as asc2, desc as desc13, eq as eq24, sql as sql10 } from "drizzle-orm";
 
 // ../integration-commoncrawl/src/constants.ts
 import os2 from "os";
@@ -23289,8 +23473,8 @@ function mapRunRow(row) {
   };
 }
 function latestSummaryForProject(db, projectId, release) {
-  const condition = release ? and18(eq23(backlinkSummaries.projectId, projectId), eq23(backlinkSummaries.release, release)) : eq23(backlinkSummaries.projectId, projectId);
-  return db.select().from(backlinkSummaries).where(condition).orderBy(desc12(backlinkSummaries.queriedAt)).limit(1).get();
+  const condition = release ? and18(eq24(backlinkSummaries.projectId, projectId), eq24(backlinkSummaries.release, release)) : eq24(backlinkSummaries.projectId, projectId);
+  return db.select().from(backlinkSummaries).where(condition).orderBy(desc13(backlinkSummaries.queriedAt)).limit(1).get();
 }
 function parseExcludeCrawlers(value) {
   if (!value) return false;
@@ -23299,8 +23483,8 @@ function parseExcludeCrawlers(value) {
 }
 function computeFilteredSummary(db, base) {
   const baseDomainCondition = and18(
-    eq23(backlinkDomains.projectId, base.projectId),
-    eq23(backlinkDomains.release, base.release)
+    eq24(backlinkDomains.projectId, base.projectId),
+    eq24(backlinkDomains.release, base.release)
   );
   const filteredCondition = and18(baseDomainCondition, backlinkCrawlerExclusionClause());
   const unfilteredAgg = db.select({
@@ -23311,7 +23495,7 @@ function computeFilteredSummary(db, base) {
     count: sql10`count(*)`,
     total: sql10`coalesce(sum(${backlinkDomains.numHosts}), 0)`
   }).from(backlinkDomains).where(filteredCondition).get();
-  const top10Rows = db.select({ numHosts: backlinkDomains.numHosts }).from(backlinkDomains).where(filteredCondition).orderBy(desc12(backlinkDomains.numHosts)).limit(10).all();
+  const top10Rows = db.select({ numHosts: backlinkDomains.numHosts }).from(backlinkDomains).where(filteredCondition).orderBy(desc13(backlinkDomains.numHosts)).limit(10).all();
   const totalLinkingDomains = Number(filteredAgg?.count ?? 0);
   const totalHosts = Number(filteredAgg?.total ?? 0);
   const unfilteredLinkingDomains = Number(unfilteredAgg?.count ?? 0);
@@ -23371,7 +23555,7 @@ async function backlinksRoutes(app, opts) {
         "@duckdb/node-api is not installed. Run `canonry backlinks install` to enable the backlinks feature."
       );
     }
-    const existing = app.db.select().from(ccReleaseSyncs).where(eq23(ccReleaseSyncs.release, release)).get();
+    const existing = app.db.select().from(ccReleaseSyncs).where(eq24(ccReleaseSyncs.release, release)).get();
     const now = (/* @__PURE__ */ new Date()).toISOString();
     if (existing) {
       if (NON_TERMINAL_SYNC_STATUSES.has(existing.status)) {
@@ -23382,12 +23566,12 @@ async function backlinksRoutes(app, opts) {
         phaseDetail: null,
         error: null,
         updatedAt: now
-      }).where(eq23(ccReleaseSyncs.id, existing.id)).run();
+      }).where(eq24(ccReleaseSyncs.id, existing.id)).run();
       opts.onReleaseSyncRequested(existing.id, release);
-      const refreshed = app.db.select().from(ccReleaseSyncs).where(eq23(ccReleaseSyncs.id, existing.id)).get();
+      const refreshed = app.db.select().from(ccReleaseSyncs).where(eq24(ccReleaseSyncs.id, existing.id)).get();
       return reply.status(200).send(mapSyncRow(refreshed));
     }
-    const id = crypto20.randomUUID();
+    const id = crypto21.randomUUID();
     app.db.insert(ccReleaseSyncs).values({
       id,
       release,
@@ -23396,15 +23580,15 @@ async function backlinksRoutes(app, opts) {
       updatedAt: now
     }).run();
     opts.onReleaseSyncRequested(id, release);
-    const inserted = app.db.select().from(ccReleaseSyncs).where(eq23(ccReleaseSyncs.id, id)).get();
+    const inserted = app.db.select().from(ccReleaseSyncs).where(eq24(ccReleaseSyncs.id, id)).get();
     return reply.status(201).send(mapSyncRow(inserted));
   });
   app.get("/backlinks/syncs/latest", async (_request, reply) => {
-    const row = app.db.select().from(ccReleaseSyncs).orderBy(desc12(ccReleaseSyncs.updatedAt)).limit(1).get();
+    const row = app.db.select().from(ccReleaseSyncs).orderBy(desc13(ccReleaseSyncs.updatedAt)).limit(1).get();
     return reply.send(row ? mapSyncRow(row) : null);
   });
   app.get("/backlinks/syncs", async (_request, reply) => {
-    const rows = app.db.select().from(ccReleaseSyncs).orderBy(desc12(ccReleaseSyncs.updatedAt)).all();
+    const rows = app.db.select().from(ccReleaseSyncs).orderBy(desc13(ccReleaseSyncs.updatedAt)).all();
     return reply.send(rows.map(mapSyncRow));
   });
   app.get("/backlinks/releases", async (_request, reply) => {
@@ -23444,7 +23628,7 @@ async function backlinksRoutes(app, opts) {
       throw validationError("Invalid release id");
     }
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const runId = crypto20.randomUUID();
+    const runId = crypto21.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -23454,7 +23638,7 @@ async function backlinksRoutes(app, opts) {
       createdAt: now
     }).run();
     opts.onBacklinkExtractRequested(runId, project.id, release);
-    const run = app.db.select().from(runs).where(eq23(runs.id, runId)).get();
+    const run = app.db.select().from(runs).where(eq24(runs.id, runId)).get();
     return reply.status(201).send(mapRunRow(run));
   });
   app.get(
@@ -23479,15 +23663,15 @@ async function backlinksRoutes(app, opts) {
     const offset = Math.max(parseInt(request.query.offset ?? "0", 10) || 0, 0);
     const excludeCrawlers = parseExcludeCrawlers(request.query.excludeCrawlers);
     const baseDomainCondition = and18(
-      eq23(backlinkDomains.projectId, project.id),
-      eq23(backlinkDomains.release, targetRelease)
+      eq24(backlinkDomains.projectId, project.id),
+      eq24(backlinkDomains.release, targetRelease)
     );
     const domainCondition = excludeCrawlers ? and18(baseDomainCondition, backlinkCrawlerExclusionClause()) : baseDomainCondition;
     const totalRow = app.db.select({ count: sql10`count(*)` }).from(backlinkDomains).where(domainCondition).get();
     const rows = app.db.select({
       linkingDomain: backlinkDomains.linkingDomain,
       numHosts: backlinkDomains.numHosts
-    }).from(backlinkDomains).where(domainCondition).orderBy(desc12(backlinkDomains.numHosts)).limit(limit).offset(offset).all();
+    }).from(backlinkDomains).where(domainCondition).orderBy(desc13(backlinkDomains.numHosts)).limit(limit).offset(offset).all();
     let summary = null;
     if (summaryRow) {
       summary = excludeCrawlers ? computeFilteredSummary(app.db, summaryRow) : mapSummaryRow(summaryRow);
@@ -23503,7 +23687,7 @@ async function backlinksRoutes(app, opts) {
     "/projects/:name/backlinks/history",
     async (request, reply) => {
       const project = resolveProject(app.db, request.params.name);
-      const rows = app.db.select().from(backlinkSummaries).where(eq23(backlinkSummaries.projectId, project.id)).orderBy(asc2(backlinkSummaries.queriedAt)).all();
+      const rows = app.db.select().from(backlinkSummaries).where(eq24(backlinkSummaries.projectId, project.id)).orderBy(asc2(backlinkSummaries.queriedAt)).all();
       const response = rows.map((r) => ({
         release: r.release,
         totalLinkingDomains: r.totalLinkingDomains,
@@ -23517,12 +23701,12 @@ async function backlinksRoutes(app, opts) {
 }
 
 // ../api-routes/src/traffic.ts
-import crypto22 from "crypto";
+import crypto23 from "crypto";
 import { Agent as UndiciAgent } from "undici";
-import { and as and19, desc as desc13, eq as eq24, gte as gte3, lte as lte2, sql as sql11 } from "drizzle-orm";
+import { and as and19, desc as desc14, eq as eq25, gte as gte3, lte as lte2, sql as sql11 } from "drizzle-orm";
 
 // ../integration-cloud-run/src/auth.ts
-import crypto21 from "crypto";
+import crypto22 from "crypto";
 var GOOGLE_TOKEN_URL3 = "https://oauth2.googleapis.com/token";
 var CLOUD_LOGGING_READ_SCOPE = "https://www.googleapis.com/auth/logging.read";
 var TOKEN_REQUEST_TIMEOUT_MS = 3e4;
@@ -23551,7 +23735,7 @@ function createServiceAccountJwt2(clientEmail, privateKey, scope) {
   const headerB64 = encode(header);
   const payloadB64 = encode(payload);
   const signingInput = `${headerB64}.${payloadB64}`;
-  const sign = crypto21.createSign("RSA-SHA256");
+  const sign = crypto22.createSign("RSA-SHA256");
   sign.update(signingInput);
   const signature = sign.sign(privateKey, "base64url");
   return `${signingInput}.${signature}`;
@@ -27312,8 +27496,8 @@ async function runBackfillTask(options) {
     const failedAt = (/* @__PURE__ */ new Date()).toISOString();
     try {
       app.db.transaction((tx) => {
-        tx.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: failedAt }).where(eq24(runs.id, runId)).run();
-        tx.update(trafficSources).set({ status: TrafficSourceStatuses.error, lastError: msg, updatedAt: failedAt }).where(eq24(trafficSources.id, sourceRow.id)).run();
+        tx.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: failedAt }).where(eq25(runs.id, runId)).run();
+        tx.update(trafficSources).set({ status: TrafficSourceStatuses.error, lastError: msg, updatedAt: failedAt }).where(eq25(trafficSources.id, sourceRow.id)).run();
       });
     } catch {
     }
@@ -27328,7 +27512,7 @@ async function runBackfillTask(options) {
   if (allEvents.length === 0) {
     const finishedAt2 = (/* @__PURE__ */ new Date()).toISOString();
     try {
-      app.db.update(runs).set({ status: RunStatuses.completed, finishedAt: finishedAt2 }).where(eq24(runs.id, runId)).run();
+      app.db.update(runs).set({ status: RunStatuses.completed, finishedAt: finishedAt2 }).where(eq25(runs.id, runId)).run();
     } catch {
     }
     return;
@@ -27351,28 +27535,28 @@ async function runBackfillTask(options) {
     app.db.transaction((tx) => {
       tx.delete(crawlerEventsHourly).where(
         and19(
-          eq24(crawlerEventsHourly.sourceId, sourceRow.id),
+          eq25(crawlerEventsHourly.sourceId, sourceRow.id),
           gte3(crawlerEventsHourly.tsHour, windowStartIso),
           lte2(crawlerEventsHourly.tsHour, windowEndIso)
         )
       ).run();
       tx.delete(aiUserFetchEventsHourly).where(
         and19(
-          eq24(aiUserFetchEventsHourly.sourceId, sourceRow.id),
+          eq25(aiUserFetchEventsHourly.sourceId, sourceRow.id),
           gte3(aiUserFetchEventsHourly.tsHour, windowStartIso),
           lte2(aiUserFetchEventsHourly.tsHour, windowEndIso)
         )
       ).run();
       tx.delete(aiReferralEventsHourly).where(
         and19(
-          eq24(aiReferralEventsHourly.sourceId, sourceRow.id),
+          eq25(aiReferralEventsHourly.sourceId, sourceRow.id),
           gte3(aiReferralEventsHourly.tsHour, windowStartIso),
           lte2(aiReferralEventsHourly.tsHour, windowEndIso)
         )
       ).run();
       tx.delete(rawEventSamples).where(
         and19(
-          eq24(rawEventSamples.sourceId, sourceRow.id),
+          eq25(rawEventSamples.sourceId, sourceRow.id),
           gte3(rawEventSamples.ts, windowStartIso),
           lte2(rawEventSamples.ts, windowEndIso)
         )
@@ -27437,7 +27621,7 @@ async function runBackfillTask(options) {
           }
         })();
         tx.insert(rawEventSamples).values({
-          id: crypto22.randomUUID(),
+          id: crypto23.randomUUID(),
           projectId: project.id,
           sourceId: sourceRow.id,
           ts: sample.observedAt,
@@ -27461,8 +27645,8 @@ async function runBackfillTask(options) {
         lastError: null,
         lastEventIds: newRingBuffer,
         updatedAt: finishedAt
-      }).where(eq24(trafficSources.id, sourceRow.id)).run();
-      tx.update(runs).set({ status: RunStatuses.completed, finishedAt }).where(eq24(runs.id, runId)).run();
+      }).where(eq25(trafficSources.id, sourceRow.id)).run();
+      tx.update(runs).set({ status: RunStatuses.completed, finishedAt }).where(eq25(runs.id, runId)).run();
     });
   } catch (e) {
     markFailed(`Backfill rollup write failed: ${e instanceof Error ? e.message : String(e)}`);
@@ -27543,7 +27727,7 @@ async function trafficRoutes(app, opts) {
       createdAt: existing?.createdAt ?? now,
       updatedAt: now
     });
-    const activeSource = app.db.select().from(trafficSources).where(eq24(trafficSources.projectId, project.id)).all().find((row) => row.sourceType === TrafficSourceTypes["cloud-run"] && row.status !== TrafficSourceStatuses.archived);
+    const activeSource = app.db.select().from(trafficSources).where(eq25(trafficSources.projectId, project.id)).all().find((row) => row.sourceType === TrafficSourceTypes["cloud-run"] && row.status !== TrafficSourceStatuses.archived);
     const config = {
       gcpProjectId,
       serviceName: serviceName ?? null,
@@ -27559,10 +27743,10 @@ async function trafficRoutes(app, opts) {
         lastError: null,
         configJson: config,
         updatedAt: now
-      }).where(eq24(trafficSources.id, activeSource.id)).run();
-      sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, activeSource.id)).get();
+      }).where(eq25(trafficSources.id, activeSource.id)).run();
+      sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, activeSource.id)).get();
     } else {
-      const newId = crypto22.randomUUID();
+      const newId = crypto23.randomUUID();
       app.db.insert(trafficSources).values({
         id: newId,
         projectId: project.id,
@@ -27577,7 +27761,7 @@ async function trafficRoutes(app, opts) {
         createdAt: now,
         updatedAt: now
       }).run();
-      sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, newId)).get();
+      sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, newId)).get();
     }
     writeAuditLog(app.db, {
       projectId: project.id,
@@ -27629,7 +27813,7 @@ async function trafficRoutes(app, opts) {
       createdAt: existing?.createdAt ?? now,
       updatedAt: now
     });
-    const activeSource = app.db.select().from(trafficSources).where(eq24(trafficSources.projectId, project.id)).all().find((row) => row.sourceType === TrafficSourceTypes.wordpress && row.status !== TrafficSourceStatuses.archived);
+    const activeSource = app.db.select().from(trafficSources).where(eq25(trafficSources.projectId, project.id)).all().find((row) => row.sourceType === TrafficSourceTypes.wordpress && row.status !== TrafficSourceStatuses.archived);
     const config = { baseUrl, username };
     const fallbackName = displayName ?? `WordPress \xB7 ${new URL(baseUrl).host}`;
     let sourceRow;
@@ -27640,10 +27824,10 @@ async function trafficRoutes(app, opts) {
         lastError: null,
         configJson: config,
         updatedAt: now
-      }).where(eq24(trafficSources.id, activeSource.id)).run();
-      sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, activeSource.id)).get();
+      }).where(eq25(trafficSources.id, activeSource.id)).run();
+      sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, activeSource.id)).get();
     } else {
-      const newId = crypto22.randomUUID();
+      const newId = crypto23.randomUUID();
       app.db.insert(trafficSources).values({
         id: newId,
         projectId: project.id,
@@ -27658,7 +27842,7 @@ async function trafficRoutes(app, opts) {
         createdAt: now,
         updatedAt: now
       }).run();
-      sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, newId)).get();
+      sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, newId)).get();
     }
     writeAuditLog(app.db, {
       projectId: project.id,
@@ -27712,7 +27896,7 @@ async function trafficRoutes(app, opts) {
       createdAt: existing?.createdAt ?? now,
       updatedAt: now
     });
-    const activeSource = app.db.select().from(trafficSources).where(eq24(trafficSources.projectId, project.id)).all().find((row) => row.sourceType === TrafficSourceTypes.vercel && row.status !== TrafficSourceStatuses.archived);
+    const activeSource = app.db.select().from(trafficSources).where(eq25(trafficSources.projectId, project.id)).all().find((row) => row.sourceType === TrafficSourceTypes.vercel && row.status !== TrafficSourceStatuses.archived);
     const config = { projectId, teamId, environment };
     const fallbackName = displayName ?? `Vercel \xB7 ${projectId}`;
     let sourceRow;
@@ -27723,10 +27907,10 @@ async function trafficRoutes(app, opts) {
         lastError: null,
         configJson: config,
         updatedAt: now
-      }).where(eq24(trafficSources.id, activeSource.id)).run();
-      sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, activeSource.id)).get();
+      }).where(eq25(trafficSources.id, activeSource.id)).run();
+      sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, activeSource.id)).get();
     } else {
-      const newId = crypto22.randomUUID();
+      const newId = crypto23.randomUUID();
       app.db.insert(trafficSources).values({
         id: newId,
         projectId: project.id,
@@ -27749,7 +27933,7 @@ async function trafficRoutes(app, opts) {
         createdAt: now,
         updatedAt: now
       }).run();
-      sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, newId)).get();
+      sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, newId)).get();
     }
     writeAuditLog(app.db, {
       projectId: project.id,
@@ -27762,7 +27946,7 @@ async function trafficRoutes(app, opts) {
   });
   app.post("/projects/:name/traffic/sources/:id/sync", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, request.params.id)).get();
+    const sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, request.params.id)).get();
     if (!sourceRow || sourceRow.projectId !== project.id) {
       throw notFound("Traffic source", request.params.id);
     }
@@ -27774,7 +27958,7 @@ async function trafficRoutes(app, opts) {
     const windowEnd = /* @__PURE__ */ new Date();
     const startedAt = windowEnd.toISOString();
     const syncStartedAtMs = windowEnd.getTime();
-    const runId = crypto22.randomUUID();
+    const runId = crypto23.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -27788,8 +27972,8 @@ async function trafficRoutes(app, opts) {
     const markFailed = (msg, errorCode) => {
       const failedAt = (/* @__PURE__ */ new Date()).toISOString();
       app.db.transaction((tx) => {
-        tx.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: failedAt }).where(eq24(runs.id, runId)).run();
-        tx.update(trafficSources).set({ status: TrafficSourceStatuses.error, lastError: msg, updatedAt: failedAt }).where(eq24(trafficSources.id, sourceRow.id)).run();
+        tx.update(runs).set({ status: RunStatuses.failed, error: msg, finishedAt: failedAt }).where(eq25(runs.id, runId)).run();
+        tx.update(trafficSources).set({ status: TrafficSourceStatuses.error, lastError: msg, updatedAt: failedAt }).where(eq25(trafficSources.id, sourceRow.id)).run();
       });
       try {
         opts.onTrafficSynced?.({
@@ -27869,7 +28053,7 @@ async function trafficRoutes(app, opts) {
       }
       const credential = credentialStore.getConnection(project.name);
       if (!credential) {
-        app.db.delete(runs).where(eq24(runs.id, runId)).run();
+        app.db.delete(runs).where(eq25(runs.id, runId)).run();
         throw validationError(
           `No WordPress credential found for project "${project.name}". Run "canonry traffic connect wordpress" first.`
         );
@@ -27918,12 +28102,12 @@ async function trafficRoutes(app, opts) {
       auditAction = "traffic.vercel.synced";
       const credentialStore = opts.vercelTrafficCredentialStore;
       if (!credentialStore) {
-        app.db.delete(runs).where(eq24(runs.id, runId)).run();
+        app.db.delete(runs).where(eq25(runs.id, runId)).run();
         throw validationError("Vercel traffic credential storage is not configured for this deployment");
       }
       const credential = credentialStore.getConnection(project.name);
       if (!credential) {
-        app.db.delete(runs).where(eq24(runs.id, runId)).run();
+        app.db.delete(runs).where(eq25(runs.id, runId)).run();
         throw validationError(
           `No Vercel credential found for project "${project.name}". Run "canonry traffic connect vercel" first.`
         );
@@ -27983,7 +28167,7 @@ async function trafficRoutes(app, opts) {
     let aiReferralHitsCount = 0;
     let unknownHitsCount = 0;
     app.db.transaction((tx) => {
-      const latestRow = tx.select().from(trafficSources).where(eq24(trafficSources.id, sourceRow.id)).get();
+      const latestRow = tx.select().from(trafficSources).where(eq25(trafficSources.id, sourceRow.id)).get();
       const previousIds = latestRow.lastEventIds ?? [];
       const seenEventIds = new Set(previousIds);
       const dedupedEvents = seenEventIds.size === 0 ? allEvents : allEvents.filter((e) => !seenEventIds.has(e.eventId));
@@ -28116,7 +28300,7 @@ async function trafficRoutes(app, opts) {
           }
         })();
         tx.insert(rawEventSamples).values({
-          id: crypto22.randomUUID(),
+          id: crypto23.randomUUID(),
           projectId: project.id,
           sourceId: sourceRow.id,
           ts: sample.observedAt,
@@ -28149,8 +28333,8 @@ async function trafficRoutes(app, opts) {
       if (sourceRow.sourceType === TrafficSourceTypes.wordpress) {
         sourceUpdate.lastCursor = nextCursor ?? null;
       }
-      tx.update(trafficSources).set(sourceUpdate).where(eq24(trafficSources.id, sourceRow.id)).run();
-      tx.update(runs).set({ status: RunStatuses.completed, finishedAt }).where(eq24(runs.id, runId)).run();
+      tx.update(trafficSources).set(sourceUpdate).where(eq25(trafficSources.id, sourceRow.id)).run();
+      tx.update(runs).set({ status: RunStatuses.completed, finishedAt }).where(eq25(runs.id, runId)).run();
     });
     writeAuditLog(app.db, {
       projectId: project.id,
@@ -28200,7 +28384,7 @@ async function trafficRoutes(app, opts) {
   });
   app.post("/projects/:name/traffic/sources/:id/backfill", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const sourceRow = app.db.select().from(trafficSources).where(eq24(trafficSources.id, request.params.id)).get();
+    const sourceRow = app.db.select().from(trafficSources).where(eq25(trafficSources.id, request.params.id)).get();
     if (!sourceRow || sourceRow.projectId !== project.id) {
       throw notFound("Traffic source", request.params.id);
     }
@@ -28350,7 +28534,7 @@ async function trafficRoutes(app, opts) {
       };
     }
     const startedAt = windowEnd.toISOString();
-    const runId = crypto22.randomUUID();
+    const runId = crypto23.randomUUID();
     app.db.insert(runs).values({
       id: runId,
       projectId: project.id,
@@ -28386,35 +28570,35 @@ async function trafficRoutes(app, opts) {
   function buildSourceDetail(projectId, row, since) {
     const crawlerTotals = app.db.select({ total: sql11`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
       and19(
-        eq24(crawlerEventsHourly.sourceId, row.id),
+        eq25(crawlerEventsHourly.sourceId, row.id),
         gte3(crawlerEventsHourly.tsHour, since)
       )
     ).get();
     const aiUserFetchTotals = app.db.select({ total: sql11`COALESCE(SUM(${aiUserFetchEventsHourly.hits}), 0)` }).from(aiUserFetchEventsHourly).where(
       and19(
-        eq24(aiUserFetchEventsHourly.sourceId, row.id),
+        eq25(aiUserFetchEventsHourly.sourceId, row.id),
         gte3(aiUserFetchEventsHourly.tsHour, since)
       )
     ).get();
     const aiTotals = app.db.select({ total: sql11`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
       and19(
-        eq24(aiReferralEventsHourly.sourceId, row.id),
+        eq25(aiReferralEventsHourly.sourceId, row.id),
         gte3(aiReferralEventsHourly.tsHour, since)
       )
     ).get();
     const sampleTotals = app.db.select({ total: sql11`COUNT(*)` }).from(rawEventSamples).where(
       and19(
-        eq24(rawEventSamples.sourceId, row.id),
+        eq25(rawEventSamples.sourceId, row.id),
         gte3(rawEventSamples.ts, since)
       )
     ).get();
     const latestRun = app.db.select().from(runs).where(
       and19(
-        eq24(runs.projectId, projectId),
-        eq24(runs.kind, RunKinds["traffic-sync"]),
-        eq24(runs.sourceId, row.id)
+        eq25(runs.projectId, projectId),
+        eq25(runs.kind, RunKinds["traffic-sync"]),
+        eq25(runs.sourceId, row.id)
       )
-    ).orderBy(desc13(runs.startedAt)).limit(1).get();
+    ).orderBy(desc14(runs.startedAt)).limit(1).get();
     return {
       ...rowToDto(row),
       totals24h: {
@@ -28440,7 +28624,7 @@ async function trafficRoutes(app, opts) {
         "`advanceToNow` must be `true`. There is no implicit reset."
       );
     }
-    const sourceRow = app.db.select().from(trafficSources).where(and19(eq24(trafficSources.projectId, project.id), eq24(trafficSources.id, request.params.id))).get();
+    const sourceRow = app.db.select().from(trafficSources).where(and19(eq25(trafficSources.projectId, project.id), eq25(trafficSources.id, request.params.id))).get();
     if (!sourceRow) {
       throw notFound("traffic source", request.params.id);
     }
@@ -28457,7 +28641,7 @@ async function trafficRoutes(app, opts) {
         status: TrafficSourceStatuses.connected,
         lastError: null,
         updatedAt: now
-      }).where(eq24(trafficSources.id, sourceRow.id)).run();
+      }).where(eq25(trafficSources.id, sourceRow.id)).run();
       writeAuditLog(tx, auditFromRequest(request, {
         projectId: project.id,
         actor: "api",
@@ -28465,20 +28649,20 @@ async function trafficRoutes(app, opts) {
         entityType: "traffic_source",
         entityId: sourceRow.id
       }));
-      updatedRow = tx.select().from(trafficSources).where(eq24(trafficSources.id, sourceRow.id)).get();
+      updatedRow = tx.select().from(trafficSources).where(eq25(trafficSources.id, sourceRow.id)).get();
     });
     return buildSourceDetail(project.id, updatedRow, new Date(Date.now() - 24 * 60 * 6e4).toISOString());
   });
   app.get("/projects/:name/traffic/sources", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const rows = app.db.select().from(trafficSources).where(eq24(trafficSources.projectId, project.id)).orderBy(desc13(trafficSources.createdAt)).all();
+    const rows = app.db.select().from(trafficSources).where(eq25(trafficSources.projectId, project.id)).orderBy(desc14(trafficSources.createdAt)).all();
     const sources = rows.filter((row) => row.status !== TrafficSourceStatuses.archived).map(rowToDto);
     const response = { sources };
     return response;
   });
   app.get("/projects/:name/traffic/status", async (request) => {
     const project = resolveProject(app.db, request.params.name);
-    const rows = app.db.select().from(trafficSources).where(eq24(trafficSources.projectId, project.id)).orderBy(desc13(trafficSources.createdAt)).all();
+    const rows = app.db.select().from(trafficSources).where(eq25(trafficSources.projectId, project.id)).orderBy(desc14(trafficSources.createdAt)).all();
     const since = new Date(Date.now() - 24 * 60 * 6e4).toISOString();
     const sources = rows.filter((row) => row.status !== TrafficSourceStatuses.archived).map((row) => buildSourceDetail(project.id, row, since));
     const response = { sources };
@@ -28488,7 +28672,7 @@ async function trafficRoutes(app, opts) {
     "/projects/:name/traffic/sources/:id",
     async (request) => {
       const project = resolveProject(app.db, request.params.name);
-      const row = app.db.select().from(trafficSources).where(eq24(trafficSources.id, request.params.id)).get();
+      const row = app.db.select().from(trafficSources).where(eq25(trafficSources.id, request.params.id)).get();
       if (!row || row.projectId !== project.id) {
         throw notFound("Traffic source", request.params.id);
       }
@@ -28539,15 +28723,15 @@ async function trafficRoutes(app, opts) {
     let aiReferralTotal = 0;
     if (kind === "all" || kind === TrafficEventKinds.crawler) {
       const crawlerFilters = [
-        eq24(crawlerEventsHourly.projectId, project.id),
+        eq25(crawlerEventsHourly.projectId, project.id),
         gte3(crawlerEventsHourly.tsHour, sinceIso),
         lte2(crawlerEventsHourly.tsHour, untilIso)
       ];
-      if (sourceIdParam) crawlerFilters.push(eq24(crawlerEventsHourly.sourceId, sourceIdParam));
+      if (sourceIdParam) crawlerFilters.push(eq25(crawlerEventsHourly.sourceId, sourceIdParam));
       const crawlerWhere = and19(...crawlerFilters);
       const total = app.db.select({ total: sql11`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(crawlerWhere).get();
       crawlerTotal = Number(total?.total ?? 0);
-      const rows = app.db.select().from(crawlerEventsHourly).where(crawlerWhere).orderBy(desc13(crawlerEventsHourly.tsHour)).limit(limit).all();
+      const rows = app.db.select().from(crawlerEventsHourly).where(crawlerWhere).orderBy(desc14(crawlerEventsHourly.tsHour)).limit(limit).all();
       for (const r of rows) {
         events.push({
           kind: TrafficEventKinds.crawler,
@@ -28564,15 +28748,15 @@ async function trafficRoutes(app, opts) {
     }
     if (kind === "all" || kind === TrafficEventKinds["ai-user-fetch"]) {
       const userFetchFilters = [
-        eq24(aiUserFetchEventsHourly.projectId, project.id),
+        eq25(aiUserFetchEventsHourly.projectId, project.id),
         gte3(aiUserFetchEventsHourly.tsHour, sinceIso),
         lte2(aiUserFetchEventsHourly.tsHour, untilIso)
       ];
-      if (sourceIdParam) userFetchFilters.push(eq24(aiUserFetchEventsHourly.sourceId, sourceIdParam));
+      if (sourceIdParam) userFetchFilters.push(eq25(aiUserFetchEventsHourly.sourceId, sourceIdParam));
       const userFetchWhere = and19(...userFetchFilters);
       const total = app.db.select({ total: sql11`COALESCE(SUM(${aiUserFetchEventsHourly.hits}), 0)` }).from(aiUserFetchEventsHourly).where(userFetchWhere).get();
       aiUserFetchTotal = Number(total?.total ?? 0);
-      const rows = app.db.select().from(aiUserFetchEventsHourly).where(userFetchWhere).orderBy(desc13(aiUserFetchEventsHourly.tsHour)).limit(limit).all();
+      const rows = app.db.select().from(aiUserFetchEventsHourly).where(userFetchWhere).orderBy(desc14(aiUserFetchEventsHourly.tsHour)).limit(limit).all();
       for (const r of rows) {
         events.push({
           kind: TrafficEventKinds["ai-user-fetch"],
@@ -28589,15 +28773,15 @@ async function trafficRoutes(app, opts) {
     }
     if (kind === "all" || kind === TrafficEventKinds["ai-referral"]) {
       const aiFilters = [
-        eq24(aiReferralEventsHourly.projectId, project.id),
+        eq25(aiReferralEventsHourly.projectId, project.id),
         gte3(aiReferralEventsHourly.tsHour, sinceIso),
         lte2(aiReferralEventsHourly.tsHour, untilIso)
       ];
-      if (sourceIdParam) aiFilters.push(eq24(aiReferralEventsHourly.sourceId, sourceIdParam));
+      if (sourceIdParam) aiFilters.push(eq25(aiReferralEventsHourly.sourceId, sourceIdParam));
       const aiWhere = and19(...aiFilters);
       const total = app.db.select({ total: sql11`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(aiWhere).get();
       aiReferralTotal = Number(total?.total ?? 0);
-      const rows = app.db.select().from(aiReferralEventsHourly).where(aiWhere).orderBy(desc13(aiReferralEventsHourly.tsHour)).limit(limit).all();
+      const rows = app.db.select().from(aiReferralEventsHourly).where(aiWhere).orderBy(desc14(aiReferralEventsHourly.tsHour)).limit(limit).all();
       for (const r of rows) {
         events.push({
           kind: TrafficEventKinds["ai-referral"],
@@ -28630,7 +28814,7 @@ async function trafficRoutes(app, opts) {
 }
 
 // ../api-routes/src/doctor/checks/agent.ts
-import crypto23 from "crypto";
+import crypto24 from "crypto";
 import fs6 from "fs";
 import path7 from "path";
 var REQUIRED_SKILLS = ["canonry", "aero"];
@@ -28783,7 +28967,7 @@ function isInstalled(dir) {
 }
 function hashInstalledFile(filePath) {
   try {
-    return crypto23.createHash("sha256").update(fs6.readFileSync(filePath)).digest("hex");
+    return crypto24.createHash("sha256").update(fs6.readFileSync(filePath)).digest("hex");
   } catch {
     return void 0;
   }
@@ -29085,7 +29269,7 @@ var ga4ConnectionCheck = {
 var GA_AUTH_CHECKS = [ga4ConnectionCheck];
 
 // ../api-routes/src/doctor/checks/gbp-auth.ts
-import { and as and20, eq as eq25 } from "drizzle-orm";
+import { and as and20, eq as eq26 } from "drizzle-orm";
 var RECENT_SYNC_WARN_DAYS = 7;
 var RECENT_SYNC_FAIL_DAYS = 30;
 function skippedNoProject() {
@@ -29318,7 +29502,7 @@ var recentSyncCheck = {
   title: "GBP recent sync",
   run: (ctx) => {
     if (!ctx.project) return skippedNoProject();
-    const selected = ctx.db.select({ locationName: gbpLocations.locationName, syncedAt: gbpLocations.syncedAt }).from(gbpLocations).where(and20(eq25(gbpLocations.projectId, ctx.project.id), eq25(gbpLocations.selected, true))).all();
+    const selected = ctx.db.select({ locationName: gbpLocations.locationName, syncedAt: gbpLocations.syncedAt }).from(gbpLocations).where(and20(eq26(gbpLocations.projectId, ctx.project.id), eq26(gbpLocations.selected, true))).all();
     if (selected.length === 0) {
       return {
         status: CheckStatuses.skipped,
@@ -29378,7 +29562,7 @@ var GBP_AUTH_CHECK_BY_ID = Object.fromEntries(
 );
 
 // ../api-routes/src/doctor/checks/places.ts
-import { eq as eq26 } from "drizzle-orm";
+import { eq as eq27 } from "drizzle-orm";
 var apiKeyCheck = {
   id: "gbp.places.api-key",
   category: CheckCategories.auth,
@@ -29423,7 +29607,7 @@ var apiKeyCheck = {
         details: { tier: cfg.tier }
       };
     }
-    const rows = ctx.db.select({ placeId: gbpLocations.placeId, selected: gbpLocations.selected }).from(gbpLocations).where(eq26(gbpLocations.projectId, ctx.project.id)).all();
+    const rows = ctx.db.select({ placeId: gbpLocations.placeId, selected: gbpLocations.selected }).from(gbpLocations).where(eq27(gbpLocations.projectId, ctx.project.id)).all();
     const selected = rows.filter((r) => r.selected);
     const locationsWithPlaceId = selected.filter((r) => Boolean(r.placeId)).length;
     const details = {
@@ -29862,7 +30046,7 @@ var RUNTIME_STATE_CHECKS = [
 ];
 
 // ../api-routes/src/doctor/checks/traffic-source.ts
-import { and as and21, eq as eq27, gte as gte4, ne as ne4, sql as sql12 } from "drizzle-orm";
+import { and as and21, eq as eq28, gte as gte4, ne as ne4, sql as sql12 } from "drizzle-orm";
 var RECENT_DATA_WARN_DAYS = 7;
 var RECENT_DATA_FAIL_DAYS = 30;
 function skippedNoProject3() {
@@ -29877,7 +30061,7 @@ function loadProbes(ctx) {
   if (!ctx.project) return [];
   const rows = ctx.db.select().from(trafficSources).where(
     and21(
-      eq27(trafficSources.projectId, ctx.project.id),
+      eq28(trafficSources.projectId, ctx.project.id),
       ne4(trafficSources.status, TrafficSourceStatuses.archived)
     )
   ).all();
@@ -29958,7 +30142,7 @@ var recentDataCheck = {
     const recentCrawlers = Number(
       ctx.db.select({ total: sql12`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
         and21(
-          eq27(crawlerEventsHourly.projectId, ctx.project.id),
+          eq28(crawlerEventsHourly.projectId, ctx.project.id),
           gte4(crawlerEventsHourly.tsHour, warnCutoff)
         )
       ).get()?.total ?? 0
@@ -29966,7 +30150,7 @@ var recentDataCheck = {
     const recentReferrals = Number(
       ctx.db.select({ total: sql12`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
         and21(
-          eq27(aiReferralEventsHourly.projectId, ctx.project.id),
+          eq28(aiReferralEventsHourly.projectId, ctx.project.id),
           gte4(aiReferralEventsHourly.tsHour, warnCutoff)
         )
       ).get()?.total ?? 0
@@ -29982,7 +30166,7 @@ var recentDataCheck = {
     const olderCrawlers = Number(
       ctx.db.select({ total: sql12`COALESCE(SUM(${crawlerEventsHourly.hits}), 0)` }).from(crawlerEventsHourly).where(
         and21(
-          eq27(crawlerEventsHourly.projectId, ctx.project.id),
+          eq28(crawlerEventsHourly.projectId, ctx.project.id),
           gte4(crawlerEventsHourly.tsHour, failCutoff)
         )
       ).get()?.total ?? 0
@@ -29990,7 +30174,7 @@ var recentDataCheck = {
     const olderReferrals = Number(
       ctx.db.select({ total: sql12`COALESCE(SUM(${aiReferralEventsHourly.sessionsOrHits}), 0)` }).from(aiReferralEventsHourly).where(
         and21(
-          eq27(aiReferralEventsHourly.projectId, ctx.project.id),
+          eq28(aiReferralEventsHourly.projectId, ctx.project.id),
           gte4(aiReferralEventsHourly.tsHour, failCutoff)
         )
       ).get()?.total ?? 0
@@ -30368,8 +30552,8 @@ async function doctorRoutes(app, opts) {
 }
 
 // ../api-routes/src/discovery/routes.ts
-import crypto24 from "crypto";
-import { and as and22, desc as desc14, eq as eq28, gte as gte5, inArray as inArray10 } from "drizzle-orm";
+import crypto25 from "crypto";
+import { and as and22, desc as desc15, eq as eq29, gte as gte5, inArray as inArray10 } from "drizzle-orm";
 var MAX_INFLIGHT_DISCOVERY_AGE_MS = 2 * 60 * 60 * 1e3;
 async function discoveryRoutes(app, opts) {
   app.post("/projects/:name/discover/run", async (request, reply) => {
@@ -30402,20 +30586,20 @@ async function discoveryRoutes(app, opts) {
     const ageFloorIso = new Date(Date.now() - MAX_INFLIGHT_DISCOVERY_AGE_MS).toISOString();
     const decision = app.db.transaction((tx) => {
       const existing = tx.select({ id: discoverySessions.id, runId: discoverySessions.runId }).from(discoverySessions).where(and22(
-        eq28(discoverySessions.projectId, project.id),
-        eq28(discoverySessions.icpDescription, icpDescription),
+        eq29(discoverySessions.projectId, project.id),
+        eq29(discoverySessions.icpDescription, icpDescription),
         inArray10(discoverySessions.status, [
           DiscoverySessionStatuses.queued,
           DiscoverySessionStatuses.seeding,
           DiscoverySessionStatuses.probing
         ]),
         gte5(discoverySessions.createdAt, ageFloorIso)
-      )).orderBy(desc14(discoverySessions.createdAt)).get();
+      )).orderBy(desc15(discoverySessions.createdAt)).get();
       if (existing && existing.runId) {
         return { reused: true, sessionId: existing.id, runId: existing.runId };
       }
-      const sessionId = crypto24.randomUUID();
-      const runId = crypto24.randomUUID();
+      const sessionId = crypto25.randomUUID();
+      const runId = crypto25.randomUUID();
       tx.insert(discoverySessions).values({
         id: sessionId,
         projectId: project.id,
@@ -30473,7 +30657,7 @@ async function discoveryRoutes(app, opts) {
       const project = resolveProject(app.db, request.params.name);
       const parsedLimit = parseInt(request.query.limit ?? "", 10);
       const limit = Number.isNaN(parsedLimit) || parsedLimit <= 0 ? 50 : parsedLimit;
-      const rows = app.db.select().from(discoverySessions).where(eq28(discoverySessions.projectId, project.id)).orderBy(desc14(discoverySessions.createdAt)).limit(limit).all();
+      const rows = app.db.select().from(discoverySessions).where(eq29(discoverySessions.projectId, project.id)).orderBy(desc15(discoverySessions.createdAt)).limit(limit).all();
       return reply.send(rows.map(serializeSession));
     }
   );
@@ -30481,11 +30665,11 @@ async function discoveryRoutes(app, opts) {
     "/projects/:name/discover/sessions/:id",
     async (request, reply) => {
       const project = resolveProject(app.db, request.params.name);
-      const session = app.db.select().from(discoverySessions).where(eq28(discoverySessions.id, request.params.id)).get();
+      const session = app.db.select().from(discoverySessions).where(eq29(discoverySessions.id, request.params.id)).get();
       if (!session || session.projectId !== project.id) {
         throw notFound("Discovery session", request.params.id);
       }
-      const probeRows = app.db.select().from(discoveryProbes).where(eq28(discoveryProbes.sessionId, session.id)).all();
+      const probeRows = app.db.select().from(discoveryProbes).where(eq29(discoveryProbes.sessionId, session.id)).all();
       const detail = {
         ...serializeSession(session),
         probes: probeRows.map(serializeProbe)
@@ -30497,12 +30681,12 @@ async function discoveryRoutes(app, opts) {
     "/projects/:name/discover/sessions/:id/promote",
     async (request, reply) => {
       const project = resolveProject(app.db, request.params.name);
-      const session = app.db.select().from(discoverySessions).where(eq28(discoverySessions.id, request.params.id)).get();
+      const session = app.db.select().from(discoverySessions).where(eq29(discoverySessions.id, request.params.id)).get();
       if (!session || session.projectId !== project.id) {
         throw notFound("Discovery session", request.params.id);
       }
-      const probeRows = app.db.select().from(discoveryProbes).where(eq28(discoveryProbes.sessionId, session.id)).all();
-      const existingCompetitors = app.db.select({ domain: competitors.domain }).from(competitors).where(eq28(competitors.projectId, project.id)).all().map((r) => r.domain.toLowerCase());
+      const probeRows = app.db.select().from(discoveryProbes).where(eq29(discoveryProbes.sessionId, session.id)).all();
+      const existingCompetitors = app.db.select({ domain: competitors.domain }).from(competitors).where(eq29(competitors.projectId, project.id)).all().map((r) => r.domain.toLowerCase());
       const seenCompetitors = new Set(existingCompetitors);
       const cited = /* @__PURE__ */ new Set();
       const aspirational = /* @__PURE__ */ new Set();
@@ -30531,7 +30715,7 @@ async function discoveryRoutes(app, opts) {
   );
   app.post("/projects/:name/discover/sessions/:id/promote", async (request, reply) => {
     const project = resolveProject(app.db, request.params.name);
-    const session = app.db.select().from(discoverySessions).where(eq28(discoverySessions.id, request.params.id)).get();
+    const session = app.db.select().from(discoverySessions).where(eq29(discoverySessions.id, request.params.id)).get();
     if (!session || session.projectId !== project.id) {
       throw notFound("Discovery session", request.params.id);
     }
@@ -30554,7 +30738,7 @@ async function discoveryRoutes(app, opts) {
     const bucketSet = new Set(buckets);
     const includeCompetitors = parsed.data.includeCompetitors ?? true;
     const competitorTypes = parsed.data.competitorTypes ?? DEFAULT_DISCOVERY_PROMOTE_COMPETITOR_TYPES;
-    const probeRows = app.db.select().from(discoveryProbes).where(eq28(discoveryProbes.sessionId, session.id)).all();
+    const probeRows = app.db.select().from(discoveryProbes).where(eq29(discoveryProbes.sessionId, session.id)).all();
     const candidateQueries = /* @__PURE__ */ new Set();
     for (const probe of probeRows) {
       if (!probe.bucket) continue;
@@ -30562,7 +30746,7 @@ async function discoveryRoutes(app, opts) {
       if (bucket.success && bucketSet.has(bucket.data)) candidateQueries.add(probe.query);
     }
     const existingQueries = new Set(
-      app.db.select({ query: queries.query }).from(queries).where(eq28(queries.projectId, project.id)).all().map((r) => r.query.toLowerCase())
+      app.db.select({ query: queries.query }).from(queries).where(eq29(queries.projectId, project.id)).all().map((r) => r.query.toLowerCase())
     );
     const promotedQueries = [];
     const skippedQueries = [];
@@ -30578,7 +30762,7 @@ async function discoveryRoutes(app, opts) {
     const skippedCompetitors = [];
     if (includeCompetitors) {
       const existingCompetitors = new Set(
-        app.db.select({ domain: competitors.domain }).from(competitors).where(eq28(competitors.projectId, project.id)).all().map((r) => r.domain.toLowerCase())
+        app.db.select({ domain: competitors.domain }).from(competitors).where(eq29(competitors.projectId, project.id)).all().map((r) => r.domain.toLowerCase())
       );
       const competitorMap = parseCompetitorMap(session.competitorMap);
       for (const entry of selectEligibleCompetitors(competitorMap, competitorTypes)) {
@@ -30597,7 +30781,7 @@ async function discoveryRoutes(app, opts) {
       app.db.transaction((tx) => {
         for (const query of promotedQueries) {
           tx.insert(queries).values({
-            id: crypto24.randomUUID(),
+            id: crypto25.randomUUID(),
             projectId: project.id,
             query,
             provenance,
@@ -30606,7 +30790,7 @@ async function discoveryRoutes(app, opts) {
         }
         for (const domain of promotedCompetitors) {
           tx.insert(competitors).values({
-            id: crypto24.randomUUID(),
+            id: crypto25.randomUUID(),
             projectId: project.id,
             domain,
             provenance,
@@ -30680,8 +30864,8 @@ function selectEligibleCompetitors(competitorMap, competitorTypes) {
 }
 
 // ../api-routes/src/discovery/orchestrate.ts
-import crypto25 from "crypto";
-import { eq as eq29 } from "drizzle-orm";
+import crypto26 from "crypto";
+import { eq as eq30 } from "drizzle-orm";
 var DEFAULT_DEDUP_THRESHOLD = 0.85;
 var DEFAULT_MAX_PROBES = 100;
 var ABSOLUTE_MAX_PROBES = 500;
@@ -30736,7 +30920,7 @@ async function executeDiscovery(opts) {
     status: DiscoverySessionStatuses.seeding,
     dedupThreshold,
     startedAt
-  }).where(eq29(discoverySessions.id, opts.sessionId)).run();
+  }).where(eq30(discoverySessions.id, opts.sessionId)).run();
   const seedResult = await opts.deps.seed({
     project: opts.project,
     icpDescription: opts.icpDescription,
@@ -30756,7 +30940,7 @@ async function executeDiscovery(opts) {
     seedProvider: seedResult.provider,
     seedCountRaw,
     seedCount
-  }).where(eq29(discoverySessions.id, opts.sessionId)).run();
+  }).where(eq30(discoverySessions.id, opts.sessionId)).run();
   const probeRows = [];
   const buckets = { cited: 0, aspirational: 0, "wasted-surface": 0 };
   for (const query of probedCanonicals) {
@@ -30769,7 +30953,7 @@ async function executeDiscovery(opts) {
     probeRows.push({ citedDomains: probe.citedDomains, bucket });
     buckets[bucket]++;
     opts.db.insert(discoveryProbes).values({
-      id: crypto25.randomUUID(),
+      id: crypto26.randomUUID(),
       sessionId: opts.sessionId,
       projectId: opts.project.id,
       query,
@@ -30796,7 +30980,7 @@ async function executeDiscovery(opts) {
     wastedCount: buckets["wasted-surface"],
     competitorMap,
     finishedAt: (/* @__PURE__ */ new Date()).toISOString()
-  }).where(eq29(discoverySessions.id, opts.sessionId)).run();
+  }).where(eq30(discoverySessions.id, opts.sessionId)).run();
   return {
     buckets,
     competitorMap,
@@ -30810,7 +30994,7 @@ function markSessionFailed(db, sessionId, error) {
     status: DiscoverySessionStatuses.failed,
     error,
     finishedAt: (/* @__PURE__ */ new Date()).toISOString()
-  }).where(eq29(discoverySessions.id, sessionId)).run();
+  }).where(eq30(discoverySessions.id, sessionId)).run();
 }
 function dedupeStrings(input) {
   const seen = /* @__PURE__ */ new Set();
@@ -30917,6 +31101,7 @@ async function apiRoutes(app, opts) {
       bing: opts.bingSettingsSummary,
       onBingUpdate: opts.onBingSettingsUpdate
     });
+    await api.register(keysRoutes);
     await api.register(snapshotRoutes, {
       onSnapshotRequested: opts.onSnapshotRequested
     });
@@ -31138,7 +31323,7 @@ function buildTrafficSourceValidators(opts) {
 }
 
 // src/intelligence-service.ts
-import crypto26 from "crypto";
+import crypto27 from "crypto";
 
 // src/logger.ts
 var IS_TTY = process.stdout.isTTY === true;
@@ -31370,15 +31555,15 @@ var IntelligenceService = class {
   analyzeAndPersist(runId, projectId) {
     const recentRuns = this.db.select().from(runs).where(
       and23(
-        eq30(runs.projectId, projectId),
-        or5(eq30(runs.status, "completed"), eq30(runs.status, "partial")),
+        eq31(runs.projectId, projectId),
+        or5(eq31(runs.status, "completed"), eq31(runs.status, "partial")),
         // Defensive: RunCoordinator already skips probes before this is
         // called, but if a future call site invokes analyzeAndPersist
         // directly for a probe, probes still must not pollute the
         // intelligence window.
         ne5(runs.trigger, RunTriggers.probe)
       )
-    ).orderBy(desc15(runs.finishedAt), desc15(runs.createdAt)).limit(HISTORY_WINDOW_RUNS).all();
+    ).orderBy(desc16(runs.finishedAt), desc16(runs.createdAt)).limit(HISTORY_WINDOW_RUNS).all();
     if (recentRuns.length === 0) {
       log.info("intelligence.skip", { runId, reason: "no completed runs" });
       return null;
@@ -31453,7 +31638,7 @@ var IntelligenceService = class {
    * Returns the persisted insights so the coordinator can count critical/high.
    */
   analyzeAndPersistGbp(runId, projectId) {
-    const runRow = this.db.select({ createdAt: runs.createdAt, startedAt: runs.startedAt, finishedAt: runs.finishedAt }).from(runs).where(eq30(runs.id, runId)).get();
+    const runRow = this.db.select({ createdAt: runs.createdAt, startedAt: runs.startedAt, finishedAt: runs.finishedAt }).from(runs).where(eq31(runs.id, runId)).get();
     if (!runRow) {
       log.info("gbp-intelligence.skip", { runId, reason: "run not found" });
       this.persistGbpInsights(runId, projectId, [], []);
@@ -31462,8 +31647,8 @@ var IntelligenceService = class {
     const windowStart = runRow.startedAt ?? runRow.createdAt;
     const windowEnd = runRow.finishedAt ?? (/* @__PURE__ */ new Date()).toISOString();
     const selected = this.db.select().from(gbpLocations).where(and23(
-      eq30(gbpLocations.projectId, projectId),
-      eq30(gbpLocations.selected, true),
+      eq31(gbpLocations.projectId, projectId),
+      eq31(gbpLocations.selected, true),
       gte6(gbpLocations.syncedAt, windowStart),
       lte3(gbpLocations.syncedAt, windowEnd)
     )).all();
@@ -31498,10 +31683,10 @@ var IntelligenceService = class {
   }
   /** Build the per-location signal bundle the GBP analyzer consumes. */
   buildGbpLocationSignals(projectId, locationName, displayName, fallbackDate) {
-    const metricRows = this.db.select({ metric: gbpDailyMetrics.metric, date: gbpDailyMetrics.date, value: gbpDailyMetrics.value }).from(gbpDailyMetrics).where(and23(eq30(gbpDailyMetrics.projectId, projectId), eq30(gbpDailyMetrics.locationName, locationName))).all();
-    const placeActionRows = this.db.select({ placeActionType: gbpPlaceActions.placeActionType, providerType: gbpPlaceActions.providerType }).from(gbpPlaceActions).where(and23(eq30(gbpPlaceActions.projectId, projectId), eq30(gbpPlaceActions.locationName, locationName))).all();
-    const lodgingRow = this.db.select({ populatedGroupCount: gbpLodgingSnapshots.populatedGroupCount }).from(gbpLodgingSnapshots).where(and23(eq30(gbpLodgingSnapshots.projectId, projectId), eq30(gbpLodgingSnapshots.locationName, locationName))).orderBy(desc15(gbpLodgingSnapshots.syncedAt)).limit(1).get();
-    const placeRow = this.db.select({ attributes: gbpPlaceDetails.attributes }).from(gbpPlaceDetails).where(and23(eq30(gbpPlaceDetails.projectId, projectId), eq30(gbpPlaceDetails.locationName, locationName))).orderBy(desc15(gbpPlaceDetails.syncedAt)).limit(1).get();
+    const metricRows = this.db.select({ metric: gbpDailyMetrics.metric, date: gbpDailyMetrics.date, value: gbpDailyMetrics.value }).from(gbpDailyMetrics).where(and23(eq31(gbpDailyMetrics.projectId, projectId), eq31(gbpDailyMetrics.locationName, locationName))).all();
+    const placeActionRows = this.db.select({ placeActionType: gbpPlaceActions.placeActionType, providerType: gbpPlaceActions.providerType }).from(gbpPlaceActions).where(and23(eq31(gbpPlaceActions.projectId, projectId), eq31(gbpPlaceActions.locationName, locationName))).all();
+    const lodgingRow = this.db.select({ populatedGroupCount: gbpLodgingSnapshots.populatedGroupCount }).from(gbpLodgingSnapshots).where(and23(eq31(gbpLodgingSnapshots.projectId, projectId), eq31(gbpLodgingSnapshots.locationName, locationName))).orderBy(desc16(gbpLodgingSnapshots.syncedAt)).limit(1).get();
+    const placeRow = this.db.select({ attributes: gbpPlaceDetails.attributes }).from(gbpPlaceDetails).where(and23(eq31(gbpPlaceDetails.projectId, projectId), eq31(gbpPlaceDetails.locationName, locationName))).orderBy(desc16(gbpPlaceDetails.syncedAt)).limit(1).get();
     const placesAmenities = placeRow ? extractPlaceAmenities(placeRow.attributes) : [];
     const summary = buildGbpSummary({
       locationName,
@@ -31533,7 +31718,7 @@ var IntelligenceService = class {
   /** Build the month-over-month keyword series for a location from the
    *  accumulating gbp_keyword_monthly table (latest complete month vs prior). */
   buildGbpKeywordTrend(projectId, locationName) {
-    const rows = this.db.select({ month: gbpKeywordMonthly.month, keyword: gbpKeywordMonthly.keyword, valueCount: gbpKeywordMonthly.valueCount }).from(gbpKeywordMonthly).where(and23(eq30(gbpKeywordMonthly.projectId, projectId), eq30(gbpKeywordMonthly.locationName, locationName))).all();
+    const rows = this.db.select({ month: gbpKeywordMonthly.month, keyword: gbpKeywordMonthly.keyword, valueCount: gbpKeywordMonthly.valueCount }).from(gbpKeywordMonthly).where(and23(eq31(gbpKeywordMonthly.projectId, projectId), eq31(gbpKeywordMonthly.locationName, locationName))).all();
     if (rows.length === 0) return { recentMonth: null, priorMonth: null, points: [] };
     const months = [...new Set(rows.map((r) => r.month))].sort().reverse();
     const recentMonth = months[0] ?? null;
@@ -31564,7 +31749,7 @@ var IntelligenceService = class {
    */
   persistGbpInsights(runId, projectId, gbpInsights, coveredLocationNames) {
     const covered = new Set(coveredLocationNames);
-    const existing = this.db.select({ id: insights.id, dismissed: insights.dismissed }).from(insights).where(and23(eq30(insights.projectId, projectId), eq30(insights.provider, GBP_INSIGHT_PROVIDER))).all();
+    const existing = this.db.select({ id: insights.id, dismissed: insights.dismissed }).from(insights).where(and23(eq31(insights.projectId, projectId), eq31(insights.provider, GBP_INSIGHT_PROVIDER))).all();
     const staleIds = [];
     const dismissedSlots = /* @__PURE__ */ new Set();
     for (const row of existing) {
@@ -31575,7 +31760,7 @@ var IntelligenceService = class {
     }
     this.db.transaction((tx) => {
       for (const id of staleIds) {
-        tx.delete(insights).where(eq30(insights.id, id)).run();
+        tx.delete(insights).where(eq31(insights.id, id)).run();
       }
       for (const insight of gbpInsights) {
         const parsed = parseGbpInsightId(insight.id);
@@ -31653,7 +31838,7 @@ var IntelligenceService = class {
    *     create per run + aggregate). DB is left untouched.
    */
   backfill(projectName, opts, onProgress) {
-    const project = this.db.select().from(projects).where(eq30(projects.name, projectName)).get();
+    const project = this.db.select().from(projects).where(eq31(projects.name, projectName)).get();
     if (!project) {
       throw new Error(`Project "${projectName}" not found`);
     }
@@ -31667,8 +31852,8 @@ var IntelligenceService = class {
     }
     const allRuns = this.db.select().from(runs).where(
       and23(
-        eq30(runs.projectId, project.id),
-        or5(eq30(runs.status, "completed"), eq30(runs.status, "partial")),
+        eq31(runs.projectId, project.id),
+        or5(eq31(runs.status, "completed"), eq31(runs.status, "partial")),
         // Backfill must not replay probe runs as if they were real sweeps.
         ne5(runs.trigger, RunTriggers.probe)
       )
@@ -31747,7 +31932,7 @@ var IntelligenceService = class {
     return { processed, skipped, totalInsights };
   }
   loadTrackedCompetitors(projectId) {
-    return this.db.select({ domain: competitors.domain }).from(competitors).where(eq30(competitors.projectId, projectId)).all().map((r) => r.domain);
+    return this.db.select({ domain: competitors.domain }).from(competitors).where(eq31(competitors.projectId, projectId)).all().map((r) => r.domain);
   }
   /**
    * Wipe transition signals from an analysis result while keeping health.
@@ -31768,15 +31953,15 @@ var IntelligenceService = class {
   }
   persistResult(result, runId, projectId) {
     const previouslyDismissed = /* @__PURE__ */ new Set();
-    const existingInsights = this.db.select({ query: insights.query, provider: insights.provider, type: insights.type, dismissed: insights.dismissed }).from(insights).where(eq30(insights.runId, runId)).all();
+    const existingInsights = this.db.select({ query: insights.query, provider: insights.provider, type: insights.type, dismissed: insights.dismissed }).from(insights).where(eq31(insights.runId, runId)).all();
     for (const row of existingInsights) {
       if (row.dismissed) {
         previouslyDismissed.add(`${row.query}:${row.provider}:${row.type}`);
       }
     }
     this.db.transaction((tx) => {
-      tx.delete(insights).where(eq30(insights.runId, runId)).run();
-      tx.delete(healthSnapshots).where(eq30(healthSnapshots.runId, runId)).run();
+      tx.delete(insights).where(eq31(insights.runId, runId)).run();
+      tx.delete(healthSnapshots).where(eq31(healthSnapshots.runId, runId)).run();
       const now = (/* @__PURE__ */ new Date()).toISOString();
       for (const insight of result.insights) {
         const wasDismissed = previouslyDismissed.has(`${insight.query}:${insight.provider}:${insight.type}`);
@@ -31796,7 +31981,7 @@ var IntelligenceService = class {
         }).run();
       }
       tx.insert(healthSnapshots).values({
-        id: crypto26.randomUUID(),
+        id: crypto27.randomUUID(),
         projectId,
         runId,
         overallCitedRate: String(result.health.overallCitedRate),
@@ -31827,14 +32012,14 @@ var IntelligenceService = class {
   applySeverityTiering(rawInsights, excludeRunId, projectId) {
     const regressions = rawInsights.filter((i) => i.type === "regression");
     if (regressions.length === 0) return rawInsights;
-    const gscRows = this.db.select({ query: gscSearchData.query, impressions: gscSearchData.impressions }).from(gscSearchData).where(eq30(gscSearchData.projectId, projectId)).all();
+    const gscRows = this.db.select({ query: gscSearchData.query, impressions: gscSearchData.impressions }).from(gscSearchData).where(eq31(gscSearchData.projectId, projectId)).all();
     const gscConnected = gscRows.length > 0;
     const gscImpressionsByQuery = /* @__PURE__ */ new Map();
     for (const row of gscRows) {
       const key = row.query.toLowerCase();
       gscImpressionsByQuery.set(key, (gscImpressionsByQuery.get(key) ?? 0) + row.impressions);
     }
-    const projectRow = this.db.select({ locations: projects.locations }).from(projects).where(eq30(projects.id, projectId)).get();
+    const projectRow = this.db.select({ locations: projects.locations }).from(projects).where(eq31(projects.id, projectId)).get();
     const locationCount = Math.max(
       1,
       (projectRow?.locations ?? []).length
@@ -31842,13 +32027,13 @@ var IntelligenceService = class {
     const ROWS_PER_GROUP_BUDGET = Math.max(2, locationCount);
     const recentRunRows = this.db.select({ id: runs.id, createdAt: runs.createdAt }).from(runs).where(
       and23(
-        eq30(runs.projectId, projectId),
-        eq30(runs.kind, RunKinds["answer-visibility"]),
-        or5(eq30(runs.status, "completed"), eq30(runs.status, "partial")),
+        eq31(runs.projectId, projectId),
+        eq31(runs.kind, RunKinds["answer-visibility"]),
+        or5(eq31(runs.status, "completed"), eq31(runs.status, "partial")),
         // Defensive — see top of file.
         ne5(runs.trigger, RunTriggers.probe)
       )
-    ).orderBy(desc15(runs.createdAt), desc15(runs.id)).limit((RECURRENCE_LOOKBACK_RUNS + 1) * ROWS_PER_GROUP_BUDGET).all();
+    ).orderBy(desc16(runs.createdAt), desc16(runs.id)).limit((RECURRENCE_LOOKBACK_RUNS + 1) * ROWS_PER_GROUP_BUDGET).all();
     const recentGroups = groupRunsByCreatedAt(recentRunRows);
     const recentRunIds = [];
     const recentRunIdToCreatedAt = /* @__PURE__ */ new Map();
@@ -31864,7 +32049,7 @@ var IntelligenceService = class {
     const haveHistory = recentRunIds.length > 0;
     const priorRegressionsByPair = /* @__PURE__ */ new Map();
     if (haveHistory) {
-      const priorRows = this.db.select({ query: insights.query, provider: insights.provider, runId: insights.runId }).from(insights).where(and23(eq30(insights.type, "regression"), inArray11(insights.runId, recentRunIds))).all();
+      const priorRows = this.db.select({ query: insights.query, provider: insights.provider, runId: insights.runId }).from(insights).where(and23(eq31(insights.type, "regression"), inArray11(insights.runId, recentRunIds))).all();
       const regressionGroups = /* @__PURE__ */ new Map();
       for (const row of priorRows) {
         if (!row.runId) continue;
@@ -31893,7 +32078,7 @@ var IntelligenceService = class {
     });
   }
   buildRunData(runId, projectId, completedAt, location = null) {
-    const projectDomainRow = this.db.select({ canonicalDomain: projects.canonicalDomain, ownedDomains: projects.ownedDomains }).from(projects).where(eq30(projects.id, projectId)).get();
+    const projectDomainRow = this.db.select({ canonicalDomain: projects.canonicalDomain, ownedDomains: projects.ownedDomains }).from(projects).where(eq31(projects.id, projectId)).get();
     const projectDomains = projectDomainRow ? effectiveDomains({
       canonicalDomain: projectDomainRow.canonicalDomain,
       ownedDomains: projectDomainRow.ownedDomains
@@ -31909,7 +32094,7 @@ var IntelligenceService = class {
       citedDomains: querySnapshots.citedDomains,
       competitorOverlap: querySnapshots.competitorOverlap,
       snapshotLocation: querySnapshots.location
-    }).from(querySnapshots).leftJoin(queries, eq30(querySnapshots.queryId, queries.id)).where(eq30(querySnapshots.runId, runId)).all();
+    }).from(querySnapshots).leftJoin(queries, eq31(querySnapshots.queryId, queries.id)).where(eq31(querySnapshots.runId, runId)).all();
     const snapshots = [];
     let orphanCount = 0;
     for (const r of rows) {