npm - @classytic/arc - Versions diffs - 2.11.1 → 2.11.3 - Mend

@classytic/arc 2.11.1 → 2.11.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (70) hide show

package/LICENSE +21 -21
package/README.md +143 -673
package/bin/arc.js +2 -2
package/dist/{BaseController-JNV08qOT.mjs → BaseController-swXruJ2_.mjs} +2 -2
package/dist/{actionPermissions-C8YYU92K.mjs → actionPermissions-sUUKDhtP.mjs} +4 -2
package/dist/adapters/index.d.mts +2 -2
package/dist/audit/index.d.mts +1 -1
package/dist/auth/index.d.mts +1 -1
package/dist/auth/index.mjs +1 -1
package/dist/cli/commands/docs.mjs +1 -1
package/dist/cli/commands/generate.d.mts +0 -2
package/dist/cli/commands/generate.mjs +15 -15
package/dist/cli/commands/init.mjs +24 -22
package/dist/context/index.mjs +1 -1
package/dist/core/index.d.mts +2 -2
package/dist/core/index.mjs +3 -3
package/dist/{core-DXdSSFW-.mjs → core-DnUsRpuX.mjs} +20 -8
package/dist/{createActionRouter-BwaSM0No.mjs → createActionRouter-u3ql2EDo.mjs} +73 -13
package/dist/{createApp-P1d6rjPy.mjs → createApp-BFxtdKy6.mjs} +1 -1
package/dist/docs/index.d.mts +1 -1
package/dist/docs/index.mjs +1 -1
package/dist/{eventPlugin--5HIkdPU.mjs → eventPlugin-KrFIQ097.mjs} +1 -1
package/dist/events/index.d.mts +1 -1
package/dist/events/index.mjs +11 -3
package/dist/factory/index.d.mts +1 -1
package/dist/factory/index.mjs +1 -1
package/dist/hooks/index.d.mts +1 -1
package/dist/idempotency/index.d.mts +1 -1
package/dist/{index-C_bgx9o4.d.mts → index-6u4_Gg6G.d.mts} +34 -0
package/dist/{index-CvM1e09j.d.mts → index-BbMrcvGp.d.mts} +1 -1
package/dist/{index-pUczGjO0.d.mts → index-BdXnTPRj.d.mts} +1 -1
package/dist/{index-smCAoA5W.d.mts → index-DdQ3O9Pg.d.mts} +1 -1
package/dist/index.d.mts +4 -4
package/dist/index.mjs +6 -6
package/dist/integrations/index.d.mts +1 -1
package/dist/integrations/mcp/index.d.mts +2 -2
package/dist/integrations/mcp/index.mjs +1 -1
package/dist/integrations/mcp/testing.d.mts +1 -1
package/dist/integrations/mcp/testing.mjs +1 -1
package/dist/middleware/index.d.mts +1 -1
package/dist/{openapi-C0L9ar7m.mjs → openapi-BGUn7Ki1.mjs} +2 -2
package/dist/org/index.d.mts +1 -1
package/dist/permissions/index.mjs +1 -1
package/dist/{permissions-B4vU9L0Q.mjs → permissions-gd_aUWrR.mjs} +42 -0
package/dist/pipeline/index.d.mts +1 -1
package/dist/plugins/index.d.mts +1 -1
package/dist/plugins/index.mjs +1 -1
package/dist/plugins/tracing-entry.mjs +1 -1
package/dist/presets/filesUpload.d.mts +1 -1
package/dist/presets/filesUpload.mjs +1 -1
package/dist/presets/index.d.mts +1 -1
package/dist/presets/index.mjs +1 -1
package/dist/presets/multiTenant.d.mts +1 -1
package/dist/presets/search.d.mts +1 -1
package/dist/presets/search.mjs +1 -1
package/dist/{presets-k604Lj99.mjs → presets-Z7P5w4gF.mjs} +1 -1
package/dist/registry/index.d.mts +1 -1
package/dist/{requestContext-CfRkaxwf.mjs → requestContext-C5XeK3VA.mjs} +15 -0
package/dist/{resourceToTools--okX6QBr.mjs → resourceToTools-ByZpgjeH.mjs} +5 -4
package/dist/{routerShared-DeESFp4a.mjs → routerShared-BqLRb5l7.mjs} +60 -3
package/dist/testing/index.d.mts +2 -2
package/dist/testing/index.mjs +1 -1
package/dist/types/index.d.mts +1 -1
package/dist/{types-Bh_gEJBi.d.mts → types-9beEMe25.d.mts} +1 -1
package/dist/{types-BdA4uMBV.d.mts → types-BH7dEGvU.d.mts} +1 -1
package/dist/utils/index.d.mts +1 -1
package/dist/utils/index.mjs +1 -1
package/dist/{utils-D3Yxnrwr.mjs → utils-CcYTj09l.mjs} +1 -1
package/package.json +5 -1
package/skills/arc/references/events.md +489 -489

package/bin/arc.js CHANGED Viewed

@@ -334,7 +334,7 @@ GLOBAL OPTIONS
 INIT OPTIONS
   --mongokit               Use MongoKit adapter (default, recommended)
-  --custom                 Use custom adapter (empty template)
+  --custom                 Use custom / Drizzle-ready adapter template
   --better-auth            Use Better Auth (default, recommended)
   --jwt                    Use Arc built-in JWT auth
   --multi-tenant, --multi  Multi-tenant mode (adds org scoping)
@@ -346,7 +346,7 @@ INIT OPTIONS
   --skip-install           Skip npm install after scaffolding
 GENERATE SUBCOMMANDS
-  resource, r       Generate full resource (model, repo, controller, schemas, resource)
+  resource, r       Generate resource-first scaffold (model, repo, resource, test)
   controller, c     Generate controller only
   model, m          Generate model only
   repository, repo  Generate repository only

package/dist/{BaseController-JNV08qOT.mjs → BaseController-swXruJ2_.mjs} RENAMED Viewed

@@ -1,9 +1,9 @@
 import { h as SYSTEM_FIELDS, o as DEFAULT_TENANT_FIELD } from "./constants-BhY1OHoH.mjs";
 import { arcLog } from "./logger/index.mjs";
 import { _ as isElevated, n as PUBLIC_SCOPE, o as getOrgId, v as isMember } from "./types-AOD8fxIw.mjs";
-import { M as simpleEqualityMatcher, j as getUserId, k as ArcQueryParser } from "./utils-D3Yxnrwr.mjs";
+import { M as simpleEqualityMatcher, j as getUserId, k as ArcQueryParser } from "./utils-CcYTj09l.mjs";
 import { t as buildQueryKey } from "./keys-CARyUjiR.mjs";
-import { M as applyFieldWritePermissions, P as resolveEffectiveRoles } from "./permissions-B4vU9L0Q.mjs";
+import { M as applyFieldWritePermissions, P as resolveEffectiveRoles } from "./permissions-gd_aUWrR.mjs";
 import { t as getUserRoles } from "./types-DV9WDfeg.mjs";
 import { r as ForbiddenError } from "./errors-D5c-5BJL.mjs";
 //#region src/core/AccessControl.ts

package/dist/{actionPermissions-C8YYU92K.mjs → actionPermissions-sUUKDhtP.mjs} RENAMED Viewed

@@ -5,8 +5,10 @@
 *
 * Callers decide what "no gate" means:
 *   - HTTP: boot-time throw in `normalizeActionsToRouterConfig`.
-*   - MCP: treated as allow (legacy) — but the HTTP fallback now fills the
-*     gap when `permissions.update` is set, so the MCP hole closes too.
+*   - MCP: tool-generation throw in `resourceToTools` (mirrors HTTP — the
+*     two surfaces fail closed identically so MCP can't expose an
+*     unauthenticated mutating tool when the HTTP plugin lifecycle hasn't
+*     run).
 *   - OpenAPI: docs advertise the endpoint as unauthenticated.
 */
 function resolveActionPermission(input) {

package/dist/adapters/index.d.mts CHANGED Viewed

@@ -1,3 +1,3 @@
-import { An as RelationMetadata, En as AdapterFactory, Mn as SchemaMetadata, Nn as ValidationResult, On as DataAdapter, jn as RepositoryLike, kn as FieldMetadata } from "../index-C_bgx9o4.mjs";
-import { a as PrismaQueryParserOptions, c as MongooseAdapterOptions, d as DrizzleAdapterOptions, f as createDrizzleAdapter, i as PrismaQueryParser, l as createMongooseAdapter, n as PrismaAdapterOptions, o as createPrismaAdapter, r as PrismaQueryOptions, s as MongooseAdapter, t as PrismaAdapter, u as DrizzleAdapter } from "../index-CvM1e09j.mjs";
+import { An as RelationMetadata, En as AdapterFactory, Mn as SchemaMetadata, Nn as ValidationResult, On as DataAdapter, jn as RepositoryLike, kn as FieldMetadata } from "../index-6u4_Gg6G.mjs";
+import { a as PrismaQueryParserOptions, c as MongooseAdapterOptions, d as DrizzleAdapterOptions, f as createDrizzleAdapter, i as PrismaQueryParser, l as createMongooseAdapter, n as PrismaAdapterOptions, o as createPrismaAdapter, r as PrismaQueryOptions, s as MongooseAdapter, t as PrismaAdapter, u as DrizzleAdapter } from "../index-BbMrcvGp.mjs";
 export { AdapterFactory, DataAdapter, DrizzleAdapter, DrizzleAdapterOptions, FieldMetadata, MongooseAdapter, MongooseAdapterOptions, PrismaAdapter, PrismaAdapterOptions, PrismaQueryOptions, PrismaQueryParser, PrismaQueryParserOptions, RelationMetadata, RepositoryLike, SchemaMetadata, ValidationResult, createDrizzleAdapter, createMongooseAdapter, createPrismaAdapter };

package/dist/audit/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { jn as RepositoryLike } from "../index-C_bgx9o4.mjs";
+import { jn as RepositoryLike } from "../index-6u4_Gg6G.mjs";
 import { d as UserBase } from "../fields-C8Y0XLAu.mjs";
 import { FastifyPluginAsync } from "fastify";

package/dist/auth/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { Ot as AuthHelpers, kt as AuthPluginOptions } from "../index-C_bgx9o4.mjs";
+import { Ot as AuthHelpers, kt as AuthPluginOptions } from "../index-6u4_Gg6G.mjs";
 import { c as PermissionCheck } from "../fields-C8Y0XLAu.mjs";
 import { t as ExternalOpenApiPaths } from "../externalPaths-Bapitwvd.mjs";
 import { a as SessionManagerOptions, c as createSessionManager, i as SessionData, n as MemorySessionStoreOptions, o as SessionManagerResult, r as SessionCookieOptions, s as SessionStore, t as MemorySessionStore } from "../sessionManager-D-oNWHz3.mjs";

package/dist/auth/index.mjs CHANGED Viewed

@@ -1,4 +1,4 @@
-import { _ as requireTeamMembership, m as requireOrgRole, p as requireOrgMembership } from "../permissions-B4vU9L0Q.mjs";
+import { _ as requireTeamMembership, m as requireOrgRole, p as requireOrgMembership } from "../permissions-gd_aUWrR.mjs";
 import { n as normalizeRoles, t as getUserRoles } from "../types-DV9WDfeg.mjs";
 import { t as ArcError } from "../errors-D5c-5BJL.mjs";
 import { n as extractBetterAuthOpenApi } from "../betterAuthOpenApi-DwxtK3uG.mjs";

package/dist/cli/commands/docs.mjs CHANGED Viewed

@@ -1,5 +1,5 @@
 import { t as ResourceRegistry } from "../../ResourceRegistry-DkAeAuTX.mjs";
-import { t as buildOpenApiSpec } from "../../openapi-C0L9ar7m.mjs";
+import { t as buildOpenApiSpec } from "../../openapi-BGUn7Ki1.mjs";
 import { dirname, resolve } from "node:path";
 import { pathToFileURL } from "node:url";
 import { mkdirSync, writeFileSync } from "node:fs";

package/dist/cli/commands/generate.d.mts CHANGED Viewed

@@ -6,8 +6,6 @@
  * - src/resources/product/product.model.ts
  * - src/resources/product/product.repository.ts
  * - src/resources/product/product.resource.ts
- * - src/resources/product/product.controller.ts
- * - src/resources/product/product.schemas.ts
  *
  * Handles kebab-case names: `arc g r org-profile` generates:
  * - Class names: OrgProfile, OrgProfileRepository

package/dist/cli/commands/generate.mjs CHANGED Viewed

@@ -9,8 +9,6 @@ import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";
 * - src/resources/product/product.model.ts
 * - src/resources/product/product.repository.ts
 * - src/resources/product/product.resource.ts
-* - src/resources/product/product.controller.ts
-* - src/resources/product/product.schemas.ts
 *
 * Handles kebab-case names: `arc g r org-profile` generates:
 * - Class names: OrgProfile, OrgProfileRepository
@@ -58,7 +56,7 @@ ${ts ? `
 export interface I${name} {
   name: string;
   description?: string;
-  isActive: boolean;
+  ${isMultiTenant ? "organizationId: string;\n  " : ""}isActive: boolean;
 }
 export type ${name}Document = HydratedDocument<I${name}>;
@@ -67,14 +65,14 @@ const ${camel}Schema = new Schema${ts ? `<I${name}>` : ""}(
   {
     name: { type: String, required: true, trim: true },
     description: { type: String, trim: true },
-    isActive: { type: Boolean, default: true },
+    ${isMultiTenant ? "organizationId: { type: String, required: true, index: true },\n    " : ""}isActive: { type: Boolean, default: true },
   },
   { timestamps: true }
 );
 // Indexes
 ${camel}Schema.index({ name: 1 });
-${camel}Schema.index({ isActive: 1 });
+${isMultiTenant ? `${camel}Schema.index({ organizationId: 1, isActive: 1 });\n` : ""}${camel}Schema.index({ isActive: 1 });
 const ${name} = mongoose.models.${name} || mongoose.model('${name}', ${camel}Schema);
 export default ${name};
@@ -193,20 +191,21 @@ export default crudSchemas;
  */
 import { defineResource, createMongooseAdapter } from '@classytic/arc';
-import { requireAuth, requireRoles } from '@classytic/arc/permissions';
+import { allOf, requireOrgMembership, requireRoles } from '@classytic/arc/permissions';
+import { multiTenantPreset } from '@classytic/arc/presets';
 import ${name}${ts ? `, { type I${name} }` : ""} from './${fileName}.model.js';
 import ${camel}Repository from './${fileName}.repository.js';${queryParserImport}
 const ${camel}Resource = defineResource${ts ? `<I${name}>` : ""}({
   name: '${fileName}',
   adapter: createMongooseAdapter({ model: ${name}, repository: ${camel}Repository }),${queryParserConfig}
-  presets: ['softDelete'],
+  presets: ['softDelete', multiTenantPreset({ tenantField: 'organizationId' })],
   permissions: {
-    list: requireAuth(),
-    get: requireAuth(),
-    create: requireRoles(['admin']),
-    update: requireRoles(['admin']),
-    delete: requireRoles(['admin']),
+    list: requireOrgMembership(),
+    get: requireOrgMembership(),
+    create: allOf(requireOrgMembership(), requireRoles(['admin'])),
+    update: allOf(requireOrgMembership(), requireRoles(['admin'])),
+    delete: allOf(requireOrgMembership(), requireRoles(['admin'])),
   },
 });
@@ -367,7 +366,7 @@ async function generate(type, args) {
 	}
 }
 /**
-* Generate a full resource
+* Generate a resource-first scaffold
 */
 async function generateResource(name, lowerName, resourcePath, templates, ext, includeMcp = false) {
 	console.log(`\nGenerating resource: ${name}...\n`);
@@ -417,8 +416,9 @@ Next steps:
    src/resources/${lowerName}/${lowerName}.model.${ext}
 3. Adjust permissions in ${lowerName}.resource.${ext}:
-${isMultiTenant ? `   - requireAuth()          → any authenticated user
-   - requireRoles(['admin']) → specific platform roles` : `   - requireAuth()          → any authenticated user
+${isMultiTenant ? `   - requireOrgMembership() → member of the current organization
+   - multiTenantPreset()    → injects and filters organizationId
+   - requireRoles(['admin']) → admin writes inside the org scope` : `   - requireAuth()          → any authenticated user
    - requireRoles(['admin']) → specific platform roles`}
 4. Run tests:

package/dist/cli/commands/init.mjs CHANGED Viewed

@@ -26,7 +26,7 @@ async function init(options = {}) {
 `);
 	const config = await gatherConfig(options);
 	console.log(`\nCreating project: ${config.name}`);
-	console.log(`   Adapter: ${config.adapter === "mongokit" ? "MongoKit (MongoDB)" : "Custom"}`);
+	console.log(`   Adapter: ${config.adapter === "mongokit" ? "MongoKit (MongoDB)" : "Custom / Drizzle-ready"}`);
 	console.log(`   Auth: ${config.auth === "better-auth" ? "Better Auth (recommended)" : "Arc JWT"}`);
 	console.log(`   Tenant: ${config.tenant === "multi" ? "Multi-tenant" : "Single-tenant"}`);
 	console.log(`   Language: ${config.typescript ? "TypeScript" : "JavaScript"}`);
@@ -156,7 +156,7 @@ async function gatherConfig(options) {
 	try {
 		const name = options.name || await question("Project name: ") || "my-arc-app";
 		let adapter = options.adapter || "mongokit";
-		if (!options.adapter && !nonInteractive) adapter = await question("Database adapter [1=MongoKit (recommended), 2=Custom]: ") === "2" ? "custom" : "mongokit";
+		if (!options.adapter && !nonInteractive) adapter = await question("Database adapter [1=MongoKit (recommended), 2=Custom / Drizzle-ready]: ") === "2" ? "custom" : "mongokit";
 		let auth = options.auth || "better-auth";
 		if (!options.auth && !nonInteractive) auth = await question("Auth strategy [1=Better Auth (recommended), 2=Arc JWT]: ") === "2" ? "jwt" : "better-auth";
 		let tenant = options.tenant || "single";
@@ -171,12 +171,12 @@ async function gatherConfig(options) {
 			console.log("    MongoDB Atlas works with the raw driver (mongodb 6.15+ with nodejs_compat_v2),");
 			console.log("    but MongoKit depends on Mongoose. Options:");
 			console.log("    1. Use AWS Lambda / Vercel Serverless (Node.js) — Mongoose works normally");
-			console.log("    2. Use Cloudflare Hyperdrive + PostgreSQL (switch to Prisma/Drizzle adapter)");
+			console.log("    2. Use Cloudflare Hyperdrive + PostgreSQL (wire sqlitekit/Drizzle via custom adapter)");
 			console.log("    3. Continue with MongoKit — works on Lambda/Vercel, NOT on Cloudflare Workers");
 			console.log("");
 			if ((await question("Continue with MongoKit? [y/N]: ")).toLowerCase() !== "y") {
 				adapter = "custom";
-				console.log("  Switched to custom adapter. You can wire Drizzle, Prisma, or the raw MongoDB driver.");
+				console.log("  Switched to custom adapter. Wire sqlitekit/Drizzle here; Prisma remains experimental.");
 			}
 		}
 		return {
@@ -465,7 +465,7 @@ src/
 │   ├── env.${ext}              # Env loader (import first!)
 │   └── index.${ext}            # App config
 ├── shared/                  # Shared utilities
-│   ├── adapter.${ext}          # ${config.adapter === "mongokit" ? "MongoKit adapter factory" : "Custom adapter"}
+│   ├── adapter.${ext}          # ${config.adapter === "mongokit" ? "MongoKit adapter factory" : "Custom / Drizzle-ready adapter"}
 │   ├── permissions.${ext}      # Permission helpers
 │   └── presets/             # ${config.tenant === "multi" ? "Multi-tenant presets" : "Standard presets"}
 ├── plugins/                 # App-specific plugins
@@ -995,29 +995,31 @@ function customAdapterTemplate(config) {
 	return `/**
  * Custom Adapter Factory
  *
- * Implement your own database adapter here.
+ * Use this for sqlitekit/Drizzle, Prisma experiments, or any repository
+ * that satisfies Arc's RepositoryLike contract.
  */
-import { createMongooseAdapter } from '@classytic/arc';
-${ts ? "import type { Model } from 'mongoose';" : ""}
+${ts ? "import type { DataAdapter, RepositoryLike } from '@classytic/arc/adapters';" : ""}
 /**
- * Create a custom adapter for a resource
+ * Create a custom adapter for a resource.
  *
- * Implement this based on your database choice:
- * - Prisma: Use @classytic/prismakit (coming soon)
- * - Drizzle: Create custom adapter
- * - Raw SQL: Create custom adapter
- */
-export function createAdapter${ts ? "<TDoc>" : ""}(
-  model${ts ? ": Model<TDoc>" : ""},
-  repository${ts ? ": any" : ""}
-)${ts ? ": ReturnType<typeof createMongooseAdapter>" : ""} {
-  // SCAFFOLD: Replace with your custom adapter implementation
-  return createMongooseAdapter({
-    model,
+ * Recommended SQL path:
+ * - sqlitekit repository + Arc's createDrizzleAdapter for Drizzle tables
+ *
+ * Experimental path:
+ * - Prisma can be wired with createPrismaAdapter, but keep it opt-in until
+ *   your app has integration coverage.
+ */
+export function createAdapter${ts ? "<TDoc = unknown>" : ""}(
+  _source${ts ? ": unknown" : ""},
+  repository${ts ? ": RepositoryLike<TDoc>" : ""}
+)${ts ? ": DataAdapter<TDoc>" : ""} {
+  return {
+    type: 'custom',
+    name: 'custom-repository',
     repository,
-  });
+  };
 }
 `;
 }

package/dist/context/index.mjs CHANGED Viewed

@@ -1,2 +1,2 @@
-import { t as requestContext } from "../requestContext-CfRkaxwf.mjs";
+import { t as requestContext } from "../requestContext-C5XeK3VA.mjs";
 export { requestContext };

package/dist/core/index.d.mts CHANGED Viewed

@@ -1,3 +1,3 @@
-import { B as ResourceDefinition, Gt as TreeMixin, Ht as SoftDeleteExt, Jt as BulkExt, Kt as SlugExt, Ut as SoftDeleteMixin, V as defineResource, Vt as BaseController, Wt as TreeExt, Yt as BulkMixin, an as QueryResolverConfig, cn as AccessControl, in as QueryResolver, ln as AccessControlConfig, nn as BaseCrudController, on as BodySanitizer, qt as SlugMixin, rn as ListResult, sn as BodySanitizerConfig, tn as BaseControllerOptions } from "../index-C_bgx9o4.mjs";
-import { C as MAX_REGEX_LENGTH, D as RESERVED_QUERY_PARAMS, E as MutationOperation, O as SYSTEM_FIELDS, S as MAX_FILTER_DEPTH, T as MUTATION_OPERATIONS, _ as DEFAULT_UPDATE_METHOD, a as getControllerScope, b as HookOperation, c as createCrudRouter, d as CrudOperation, f as DEFAULT_ID_FIELD, g as DEFAULT_TENANT_FIELD, h as DEFAULT_SORT, i as getControllerContext, l as createPermissionMiddleware, m as DEFAULT_MAX_LIMIT, n as createFastifyHandler, o as sendControllerResponse, p as DEFAULT_LIMIT, r as createRequestContext, s as defineResourceVariants, t as createCrudHandlers, u as CRUD_OPERATIONS, v as HOOK_OPERATIONS, w as MAX_SEARCH_LENGTH, x as HookPhase, y as HOOK_PHASES } from "../index-pUczGjO0.mjs";
+import { B as ResourceDefinition, Gt as TreeMixin, Ht as SoftDeleteExt, Jt as BulkExt, Kt as SlugExt, Ut as SoftDeleteMixin, V as defineResource, Vt as BaseController, Wt as TreeExt, Yt as BulkMixin, an as QueryResolverConfig, cn as AccessControl, in as QueryResolver, ln as AccessControlConfig, nn as BaseCrudController, on as BodySanitizer, qt as SlugMixin, rn as ListResult, sn as BodySanitizerConfig, tn as BaseControllerOptions } from "../index-6u4_Gg6G.mjs";
+import { C as MAX_REGEX_LENGTH, D as RESERVED_QUERY_PARAMS, E as MutationOperation, O as SYSTEM_FIELDS, S as MAX_FILTER_DEPTH, T as MUTATION_OPERATIONS, _ as DEFAULT_UPDATE_METHOD, a as getControllerScope, b as HookOperation, c as createCrudRouter, d as CrudOperation, f as DEFAULT_ID_FIELD, g as DEFAULT_TENANT_FIELD, h as DEFAULT_SORT, i as getControllerContext, l as createPermissionMiddleware, m as DEFAULT_MAX_LIMIT, n as createFastifyHandler, o as sendControllerResponse, p as DEFAULT_LIMIT, r as createRequestContext, s as defineResourceVariants, t as createCrudHandlers, u as CRUD_OPERATIONS, v as HOOK_OPERATIONS, w as MAX_SEARCH_LENGTH, x as HookPhase, y as HOOK_PHASES } from "../index-BdXnTPRj.mjs";
 export { AccessControl, AccessControlConfig, BaseController, BaseControllerOptions, BaseCrudController, BodySanitizer, BodySanitizerConfig, BulkExt, BulkMixin, CRUD_OPERATIONS, CrudOperation, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, HOOK_OPERATIONS, HOOK_PHASES, HookOperation, HookPhase, ListResult, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, MutationOperation, QueryResolver, QueryResolverConfig, RESERVED_QUERY_PARAMS, ResourceDefinition, SYSTEM_FIELDS, SlugExt, SlugMixin, SoftDeleteExt, SoftDeleteMixin, TreeExt, TreeMixin, createCrudHandlers, createCrudRouter, createFastifyHandler, createPermissionMiddleware, createRequestContext, defineResource, defineResourceVariants, getControllerContext, getControllerScope, sendControllerResponse };

package/dist/core/index.mjs CHANGED Viewed

@@ -1,5 +1,5 @@
 import { a as DEFAULT_SORT, c as HOOK_OPERATIONS, d as MAX_REGEX_LENGTH, f as MAX_SEARCH_LENGTH, h as SYSTEM_FIELDS, i as DEFAULT_MAX_LIMIT, l as HOOK_PHASES, m as RESERVED_QUERY_PARAMS, n as DEFAULT_ID_FIELD, o as DEFAULT_TENANT_FIELD, p as MUTATION_OPERATIONS, r as DEFAULT_LIMIT, s as DEFAULT_UPDATE_METHOD, t as CRUD_OPERATIONS, u as MAX_FILTER_DEPTH } from "../constants-BhY1OHoH.mjs";
-import { a as BulkMixin, c as BodySanitizer, i as SlugMixin, l as AccessControl, n as TreeMixin, o as BaseCrudController, r as SoftDeleteMixin, s as QueryResolver, t as BaseController } from "../BaseController-JNV08qOT.mjs";
-import { _ as getControllerScope, g as getControllerContext, h as createRequestContext, m as createFastifyHandler, p as createCrudHandlers, v as sendControllerResponse } from "../routerShared-DeESFp4a.mjs";
-import { a as createPermissionMiddleware, i as createCrudRouter, n as ResourceDefinition, r as defineResource, t as defineResourceVariants } from "../core-DXdSSFW-.mjs";
+import { a as BulkMixin, c as BodySanitizer, i as SlugMixin, l as AccessControl, n as TreeMixin, o as BaseCrudController, r as SoftDeleteMixin, s as QueryResolver, t as BaseController } from "../BaseController-swXruJ2_.mjs";
+import { _ as getControllerContext, g as createRequestContext, h as createFastifyHandler, m as createCrudHandlers, v as getControllerScope, y as sendControllerResponse } from "../routerShared-BqLRb5l7.mjs";
+import { a as createPermissionMiddleware, i as createCrudRouter, n as ResourceDefinition, r as defineResource, t as defineResourceVariants } from "../core-DnUsRpuX.mjs";
 export { AccessControl, BaseController, BaseCrudController, BodySanitizer, BulkMixin, CRUD_OPERATIONS, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, HOOK_OPERATIONS, HOOK_PHASES, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, QueryResolver, RESERVED_QUERY_PARAMS, ResourceDefinition, SYSTEM_FIELDS, SlugMixin, SoftDeleteMixin, TreeMixin, createCrudHandlers, createCrudRouter, createFastifyHandler, createPermissionMiddleware, createRequestContext, defineResource, defineResourceVariants, getControllerContext, getControllerScope, sendControllerResponse };

package/dist/{core-DXdSSFW-.mjs → core-DnUsRpuX.mjs} RENAMED Viewed

@@ -1,12 +1,12 @@
 import { s as DEFAULT_UPDATE_METHOD, t as CRUD_OPERATIONS } from "./constants-BhY1OHoH.mjs";
 import { arcLog } from "./logger/index.mjs";
-import { m as assertValidConfig, y as getDefaultCrudSchemas } from "./utils-D3Yxnrwr.mjs";
-import { t as BaseController } from "./BaseController-JNV08qOT.mjs";
+import { m as assertValidConfig, y as getDefaultCrudSchemas } from "./utils-CcYTj09l.mjs";
+import { t as BaseController } from "./BaseController-swXruJ2_.mjs";
 import { n as convertRouteSchema, t as convertOpenApiSchemas } from "./schemaConverter-B0oKLuqI.mjs";
-import { c as buildPreHandlerChain, d as resolveRouterPluginMw, f as selectPluginMw, i as buildAuthMiddleware, l as buildRateLimitConfig, m as createFastifyHandler, o as buildCrudPermissionMw, p as createCrudHandlers, r as buildArcDecorator, s as buildPipelineHandler, u as resolvePipelineSteps, y as buildRequestScopeProjection } from "./routerShared-DeESFp4a.mjs";
-import { t as applyPresets } from "./presets-k604Lj99.mjs";
+import { b as buildRequestScopeProjection, c as buildPreHandlerChain, d as resolveRoutePreHandlers, f as resolveRouterPluginMw, h as createFastifyHandler, i as buildAuthMiddleware, l as buildRateLimitConfig, m as createCrudHandlers, o as buildCrudPermissionMw, p as selectPluginMw, r as buildArcDecorator, s as buildPipelineHandler, u as resolvePipelineSteps } from "./routerShared-BqLRb5l7.mjs";
+import { t as applyPresets } from "./presets-Z7P5w4gF.mjs";
 import { t as hasEvents } from "./typeGuards-CcFZXgU7.mjs";
-import { t as resolveActionPermission } from "./actionPermissions-C8YYU92K.mjs";
+import { t as resolveActionPermission } from "./actionPermissions-sUUKDhtP.mjs";
 //#region src/core/createCrudRouter.ts
 /**
 * Mount custom routes (from presets or user-defined `routes`) on Fastify.
@@ -39,7 +39,7 @@ function createCustomRoutes(fastify, routes, controller, options) {
 			...route.description ? { description: route.description } : {},
 			...convertedSchema ?? {}
 		};
-		const customPreHandlers = typeof route.preHandler === "function" ? route.preHandler(fastify) : route.preHandler ?? [];
+		const customPreHandlers = resolveRoutePreHandlers(route.preHandler, fastify, `${route.method} ${route.path}`);
 		const preHandler = buildPreHandlerChain({
 			preAuth: route.preAuth ?? [],
 			arcDecorator,
@@ -469,7 +469,19 @@ function resolveOrAutoCreateController(resolvedConfig, adapter, repository, hasC
 		if (typeof ctrl.setQueryParser === "function") ctrl.setQueryParser(resolvedConfig.queryParser);
 		else arcLog("defineResource").warn(`Resource "${resolvedConfig.name}" declares a custom \`queryParser\` but its controller does not expose \`setQueryParser(qp)\`. The parser will NOT be threaded into the controller's query resolution — operator filters (\`[contains]\`, \`[like]\`, etc.) may fall back to the controller's internal default. Extend \`BaseController\` / \`BaseCrudController\` (both implement \`setQueryParser\`) OR add the method to your custom controller to honor the resource-level parser.`);
 	}
-	if (controller || !hasCrudRoutes || !repository) return controller;
+	if (controller) {
+		const droppedOptions = [];
+		if (resolvedConfig.tenantField !== void 0) droppedOptions.push("tenantField");
+		if (resolvedConfig.schemaOptions !== void 0 && Object.keys(resolvedConfig.schemaOptions).length > 0) droppedOptions.push("schemaOptions");
+		if (resolvedConfig.idField !== void 0) droppedOptions.push("idField");
+		if (resolvedConfig.defaultSort !== void 0) droppedOptions.push("defaultSort");
+		if (resolvedConfig.cache !== void 0) droppedOptions.push("cache");
+		if (resolvedConfig.onFieldWriteDenied !== void 0) droppedOptions.push("onFieldWriteDenied");
+		if (resolvedConfig._controllerOptions !== void 0) droppedOptions.push("preset-injected fields (slug/softDelete/parent)");
+		if (droppedOptions.length > 0) arcLog("defineResource").warn(`Resource "${resolvedConfig.name}" declares a custom controller AND resource-level option(s) [${droppedOptions.join(", ")}]. Arc only threads these when it auto-builds the controller — when you pass your own, they are dropped silently and the controller falls back to its own defaults (e.g. tenantField → 'organizationId'). Forward them to your controller's \`super(repo, { ... })\` call. Same root cause as the \`queryParser\` warn above.`);
+		return controller;
+	}
+	if (!hasCrudRoutes || !repository) return controller;
 	const qp = resolvedConfig.queryParser;
 	let maxLimitFromParser;
 	if (qp?.getQuerySchema) {
@@ -869,7 +881,7 @@ var ResourceDefinition = class {
 					fields: self.fields
 				});
 				if (self.actions && Object.keys(self.actions).length > 0) {
-					const { createActionRouter } = await import("./createActionRouter-BwaSM0No.mjs").then((n) => n.n);
+					const { createActionRouter } = await import("./createActionRouter-u3ql2EDo.mjs").then((n) => n.n);
 					createActionRouter(typedInstance, {
 						...normalizeActionsToRouterConfig(self.actions, self.actionPermissions, self.tag, self.permissions, self.name, typedInstance.log),
 						resourceName: self.name,

package/dist/{createActionRouter-BwaSM0No.mjs → createActionRouter-u3ql2EDo.mjs} RENAMED Viewed

@@ -1,5 +1,5 @@
 import { t as __exportAll } from "./chunk-BpYLSNr0.mjs";
-import { a as buildAuthMiddlewareForPermissions, c as buildPreHandlerChain, d as resolveRouterPluginMw, f as selectPluginMw, l as buildRateLimitConfig, n as buildActionPipelineHandler, r as buildArcDecorator, t as buildActionPermissionMw, u as resolvePipelineSteps, v as sendControllerResponse } from "./routerShared-DeESFp4a.mjs";
+import { a as buildAuthMiddlewareForPermissions, c as buildPreHandlerChain, f as resolveRouterPluginMw, l as buildRateLimitConfig, n as buildActionPipelineHandler, p as selectPluginMw, r as buildArcDecorator, t as buildActionPermissionMw, u as resolvePipelineSteps, y as sendControllerResponse } from "./routerShared-BqLRb5l7.mjs";
 import { n as schemaIRToJsonSchemaBranch, t as normalizeSchemaIR } from "./schemaIR-BlG9bY7v.mjs";
 //#region src/core/createActionRouter.ts
 var createActionRouter_exports = /* @__PURE__ */ __exportAll({
@@ -118,34 +118,94 @@ function createActionRouter(fastify, config) {
 * {
 *   "type": "object",
 *   "required": ["action"],
+*   "properties": {
+*     "action": { "type": "string", "enum": ["dispatch", "approve"] },
+*     "carrier": { "type": "string" }
+*   },
 *   "oneOf": [
-*     { "properties": { "action": { "const": "dispatch" }, "carrier": {...} }, "required": ["action", "carrier"] },
-*     { "properties": { "action": { "const": "approve"  } }, "required": ["action"] }
+*     {
+*       "properties": {
+*         "action": { "const": "dispatch" },
+*         "carrier": { "type": "string" }       // ← every branch lists the union
+*       },
+*       "required": ["action", "carrier"]
+*     },
+*     {
+*       "properties": {
+*         "action": { "const": "approve" },
+*         "carrier": { "type": "string" }       // ← even though approve doesn't use it
+*       },
+*       "required": ["action"]
+*     }
 *   ]
 * }
 * ```
 *
-* AJV validates this natively, so an action call missing required fields is
-* rejected with HTTP 400 before the handler ever runs.
+* **Why every branch carries the full property union.** AJV's
+* `removeAdditional: 'all'` (Fastify's framework default) interacts badly
+* with `oneOf`: when a branch's `properties` lacks a field, AJV strips it
+* from the body during that branch's evaluation — *even if a different
+* branch would have allowed it*. The strip mutates the body before
+* `oneOf` finishes discriminating, so by the time the matching branch
+* wins, the body has already lost fields. Concretely: `actions: { verify:
+* {}, hold: { schema: z.object({ amount, reason }.optional()) } }` +
+* `POST { action: 'hold', amount: 1, reason }` lands at the handler as
+* `{ action: 'hold' }`. Empirically reproduced and locked at
+* [tests/core/action-discriminator-strip.test.ts](../../tests/core/action-discriminator-strip.test.ts).
+*
+* Listing every action's properties on every branch makes per-branch
+* removeAdditional walks see every caller field as "in this branch's
+* properties," so nothing gets stripped during oneOf evaluation. The
+* `required` array stays per-action, so the handler still gets called
+* only when the matching branch's required-field contract is satisfied.
+* Per-branch `additionalProperties: false` (Zod v4 default) carries
+* through but, under host removeAdditional: 'all', it can no longer
+* reject sibling-action fields — those become silently stripped at top
+* level instead. That's the host's opt-in to stripping; arc's job is to
+* stop accidentally losing the action's *own* declared fields.
+*
+* Under arc's own `createApp` (`removeAdditional: false`), strict-mode
+* rejection still functions normally — see
+* [tests/core/action-strict-schema-parity.test.ts](../../tests/core/action-strict-schema-parity.test.ts).
 *
 * Exported so OpenAPI generation and MCP tool generation can reuse the same
 * schema shape (single source of truth).
 */
 function buildActionBodySchema(actionEnum, actionSchemas = {}) {
-	const branches = [];
+	const unionProperties = {};
+	const irs = [];
 	for (const actionName of actionEnum) {
 		const ir = normalizeSchemaIR(actionSchemas[actionName]);
-		branches.push(schemaIRToJsonSchemaBranch(ir, {
-			properties: { action: {
-				type: "string",
-				const: actionName
-			} },
-			required: ["action"]
-		}));
+		irs.push({
+			name: actionName,
+			ir
+		});
+		for (const [key, val] of Object.entries(ir.properties)) unionProperties[key] = val;
 	}
+	const branches = [];
+	for (const { name, ir } of irs) branches.push(schemaIRToJsonSchemaBranch({
+		...ir,
+		properties: {
+			...unionProperties,
+			...ir.properties
+		}
+	}, {
+		properties: { action: {
+			type: "string",
+			const: name
+		} },
+		required: ["action"]
+	}));
 	return {
 		type: "object",
 		required: ["action"],
+		properties: {
+			action: {
+				type: "string",
+				enum: [...actionEnum]
+			},
+			...unionProperties
+		},
 		oneOf: branches
 	};
 }

package/dist/{createApp-P1d6rjPy.mjs → createApp-BFxtdKy6.mjs} RENAMED Viewed

@@ -204,7 +204,7 @@ async function registerArcCore(fastify, config, trackPlugin) {
 	await fastify.register(arcCorePlugin, { emitEvents: config.arcPlugins?.emitEvents !== false });
 	trackPlugin("arc-core");
 	if (config.arcPlugins?.events !== false) {
-		const { default: eventPlugin } = await import("./eventPlugin--5HIkdPU.mjs").then((n) => n.n);
+		const { default: eventPlugin } = await import("./eventPlugin-KrFIQ097.mjs").then((n) => n.n);
 		const eventOpts = typeof config.arcPlugins?.events === "object" ? config.arcPlugins.events : {};
 		await fastify.register(eventPlugin, {
 			...eventOpts,

package/dist/docs/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { p as RegistryEntry } from "../index-C_bgx9o4.mjs";
+import { p as RegistryEntry } from "../index-6u4_Gg6G.mjs";
 import { t as ExternalOpenApiPaths } from "../externalPaths-Bapitwvd.mjs";
 import { FastifyPluginAsync } from "fastify";

package/dist/docs/index.mjs CHANGED Viewed

@@ -1,5 +1,5 @@
 import { t as getUserRoles } from "../types-DV9WDfeg.mjs";
-import { n as openApiPlugin, r as openapi_default, t as buildOpenApiSpec } from "../openapi-C0L9ar7m.mjs";
+import { n as openApiPlugin, r as openapi_default, t as buildOpenApiSpec } from "../openapi-BGUn7Ki1.mjs";
 import fp from "fastify-plugin";
 //#region src/docs/scalar.ts
 const scalarPlugin = async (fastify, opts = {}) => {

package/dist/{eventPlugin--5HIkdPU.mjs → eventPlugin-KrFIQ097.mjs} RENAMED Viewed

@@ -1,5 +1,5 @@
 import { t as __exportAll } from "./chunk-BpYLSNr0.mjs";
-import { t as requestContext } from "./requestContext-CfRkaxwf.mjs";
+import { t as requestContext } from "./requestContext-C5XeK3VA.mjs";
 import fp from "fastify-plugin";
 //#region src/events/EventTransport.ts
 /**

package/dist/events/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { jn as RepositoryLike } from "../index-C_bgx9o4.mjs";
+import { jn as RepositoryLike } from "../index-6u4_Gg6G.mjs";
 import { a as EventMeta, c as MemoryEventTransportOptions, d as createEvent, i as EventLogger, l as PublishManyResult, n as DomainEvent, o as EventTransport, r as EventHandler, s as MemoryEventTransport, t as DeadLetteredEvent, u as createChildEvent } from "../EventTransport-CfVEGaEl.mjs";
 import { a as withRetry, c as EventDefinitionOutput, d as EventSchema, f as ValidationResult, i as createDeadLetterPublisher, l as EventRegistry, m as defineEvent, n as eventPlugin, o as CustomValidator, p as createEventRegistry, r as RetryOptions, s as EventDefinitionInput, t as EventPluginOptions, u as EventRegistryOptions } from "../eventPlugin-CUNjYYRY.mjs";
 import { RedisEventTransportOptions, RedisLike } from "./transports/redis.mjs";

package/dist/events/index.mjs CHANGED Viewed

@@ -1,4 +1,4 @@
-import { a as MemoryEventTransport, i as withRetry, o as createChildEvent, r as createDeadLetterPublisher, s as createEvent, t as eventPlugin } from "../eventPlugin--5HIkdPU.mjs";
+import { a as MemoryEventTransport, i as withRetry, o as createChildEvent, r as createDeadLetterPublisher, s as createEvent, t as eventPlugin } from "../eventPlugin-KrFIQ097.mjs";
 import { n as createSafeGetOne, t as createIsDuplicateKeyError } from "../store-helpers-BhrzxvyQ.mjs";
 import { and, anyOf, eq, lte, ne, or } from "@classytic/repo-core/filter";
 import { update } from "@classytic/repo-core/update";
@@ -217,12 +217,16 @@ function crudEventType(resource, suffix) {
 }
 /** Arc framework lifecycle events — emitted automatically by the framework */
 const ARC_LIFECYCLE_EVENTS = Object.freeze({
+	/** Emitted when a resource plugin is registered */
 	RESOURCE_REGISTERED: "arc.resource.registered",
+	/** Emitted when Arc is fully ready (all resources registered, onReady fired) */
 	READY: "arc.ready"
 });
 /** Cache-specific event types for observability and external triggers */
 const CACHE_EVENTS = Object.freeze({
+	/** Emitted when a resource's cache version is bumped */
 	VERSION_BUMPED: "arc.cache.version.bumped",
+	/** Emitted when a tag version is bumped */
 	TAG_VERSION_BUMPED: "arc.cache.tag.bumped"
 });
 //#endregion
@@ -489,7 +493,7 @@ function repositoryAsOutboxStore(repository) {
 				code: error.code
 			} : { message: error.message };
 			const firstFailedAt = current.firstFailedAt ?? now;
-			await r.findOneAndUpdate(filter, update({ set: {
+			if (await r.findOneAndUpdate(filter, update({ set: {
 				status: targetStatus,
 				visibleAt,
 				leaseOwner: null,
@@ -497,7 +501,11 @@ function repositoryAsOutboxStore(repository) {
 				lastFailedAt: now,
 				lastError: errorInfo,
 				firstFailedAt
-			} }), { returnDocument: "after" });
+			} }), { returnDocument: "after" })) return;
+			if (options?.consumerId) {
+				const after = await safeGetOne(baseFilter);
+				if (after && after.leaseOwner !== options.consumerId) throw new OutboxOwnershipError(eventId, options.consumerId, after.leaseOwner);
+			}
 		},
 		async getDeadLettered(limit) {
 			return unwrapDocs(await r.getAll({

package/dist/factory/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { a as CustomPluginAuthOption, c as RawBodyOptions, d as ResourceLike, f as ResourceModule, i as CustomAuthenticatorOption, l as UnderPressureOptions, n as BetterAuthOption, o as JwtAuthOption, p as loadResources, r as CreateAppOptions, s as MultipartOptions, t as AuthOption, u as LoadResourcesOptions } from "../types-BdA4uMBV.mjs";
+import { a as CustomPluginAuthOption, c as RawBodyOptions, d as ResourceLike, f as ResourceModule, i as CustomAuthenticatorOption, l as UnderPressureOptions, n as BetterAuthOption, o as JwtAuthOption, p as loadResources, r as CreateAppOptions, s as MultipartOptions, t as AuthOption, u as LoadResourcesOptions } from "../types-BH7dEGvU.mjs";
 import { FastifyInstance } from "fastify";
 //#region src/factory/createApp.d.ts

package/dist/factory/index.mjs CHANGED Viewed

@@ -1,4 +1,4 @@
-import { a as edgePreset, c as testingPreset, i as developmentPreset, n as createApp, o as getPreset, s as productionPreset, t as ArcFactory } from "../createApp-P1d6rjPy.mjs";
+import { a as edgePreset, c as testingPreset, i as developmentPreset, n as createApp, o as getPreset, s as productionPreset, t as ArcFactory } from "../createApp-BFxtdKy6.mjs";
 import { t as loadResources } from "../loadResources-CPpkyKfM.mjs";
 //#region src/factory/edge.ts
 /**

package/dist/hooks/index.d.mts CHANGED Viewed

@@ -1,2 +1,2 @@
-import { Cn as beforeUpdate, Sn as beforeDelete, Tn as defineHook, _n as HookSystemOptions, bn as afterUpdate, dn as HookContext, fn as HookHandler, gn as HookSystem, hn as HookRegistration, mn as HookPhase, pn as HookOperation, un as DefineHookOptions, vn as afterCreate, wn as createHookSystem, xn as beforeCreate, yn as afterDelete } from "../index-C_bgx9o4.mjs";
+import { Cn as beforeUpdate, Sn as beforeDelete, Tn as defineHook, _n as HookSystemOptions, bn as afterUpdate, dn as HookContext, fn as HookHandler, gn as HookSystem, hn as HookRegistration, mn as HookPhase, pn as HookOperation, un as DefineHookOptions, vn as afterCreate, wn as createHookSystem, xn as beforeCreate, yn as afterDelete } from "../index-6u4_Gg6G.mjs";
 export { type DefineHookOptions, type HookContext, type HookHandler, type HookOperation, type HookPhase, type HookRegistration, HookSystem, type HookSystemOptions, afterCreate, afterDelete, afterUpdate, beforeCreate, beforeDelete, beforeUpdate, createHookSystem, defineHook };

package/dist/idempotency/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { jn as RepositoryLike } from "../index-C_bgx9o4.mjs";
+import { jn as RepositoryLike } from "../index-6u4_Gg6G.mjs";
 import { i as createIdempotencyResult, n as IdempotencyResult, r as IdempotencyStore, t as IdempotencyLock } from "../interface-CkkWm5uR.mjs";
 import { i as RedisIdempotencyStoreOptions, n as RedisClient } from "../redis-Cm1gnRDf.mjs";
 import { FastifyPluginAsync } from "fastify";