@context-vault/core 2.10.3 → 2.12.0

package/src/index/db.js

@@ -55,7 +55,9 @@ export const SCHEMA_DDL = `
     file_path       TEXT UNIQUE,
     identity_key    TEXT,
     expires_at      TEXT,
+    superseded_by   TEXT,
     created_at      TEXT DEFAULT (datetime('now')),
+    updated_at      TEXT,
     user_id         TEXT,
     team_id         TEXT,
     body_encrypted  BLOB,
@@ -67,9 +69,11 @@ export const SCHEMA_DDL = `
   CREATE INDEX IF NOT EXISTS idx_vault_kind ON vault(kind);
   CREATE INDEX IF NOT EXISTS idx_vault_category ON vault(category);
   CREATE INDEX IF NOT EXISTS idx_vault_category_created ON vault(category, created_at DESC);
+  CREATE INDEX IF NOT EXISTS idx_vault_updated ON vault(updated_at DESC);
   CREATE INDEX IF NOT EXISTS idx_vault_user ON vault(user_id);
   CREATE INDEX IF NOT EXISTS idx_vault_team ON vault(team_id);
   CREATE UNIQUE INDEX IF NOT EXISTS idx_vault_identity ON vault(user_id, kind, identity_key) WHERE identity_key IS NOT NULL;
+  CREATE INDEX IF NOT EXISTS idx_vault_superseded ON vault(superseded_by) WHERE superseded_by IS NOT NULL;
 
   -- Single FTS5 table
   CREATE VIRTUAL TABLE IF NOT EXISTS vault_fts USING fts5(
@@ -147,13 +151,13 @@ export async function initDatabase(dbPath) {
 
     const freshDb = createDb(dbPath);
     freshDb.exec(SCHEMA_DDL);
-    freshDb.exec("PRAGMA user_version = 7");
+    freshDb.exec("PRAGMA user_version = 9");
     return freshDb;
   }
 
   if (version < 5) {
     db.exec(SCHEMA_DDL);
-    db.exec("PRAGMA user_version = 7");
+    db.exec("PRAGMA user_version = 9");
   } else if (version === 5) {
     // v5 -> v6 migration: add multi-tenancy + encryption columns
     // Wrapped in transaction with duplicate-column guards for idempotent retry
@@ -171,24 +175,91 @@ export async function initDatabase(dbPath) {
       addColumnSafe(`ALTER TABLE vault ADD COLUMN meta_encrypted BLOB`);
       addColumnSafe(`ALTER TABLE vault ADD COLUMN iv BLOB`);
       addColumnSafe(`ALTER TABLE vault ADD COLUMN team_id TEXT`);
+      addColumnSafe(`ALTER TABLE vault ADD COLUMN updated_at TEXT`);
+      addColumnSafe(`ALTER TABLE vault ADD COLUMN superseded_by TEXT`);
       db.exec(`CREATE INDEX IF NOT EXISTS idx_vault_user ON vault(user_id)`);
       db.exec(`CREATE INDEX IF NOT EXISTS idx_vault_team ON vault(team_id)`);
       db.exec(`DROP INDEX IF EXISTS idx_vault_identity`);
       db.exec(
         `CREATE UNIQUE INDEX IF NOT EXISTS idx_vault_identity ON vault(user_id, kind, identity_key) WHERE identity_key IS NOT NULL`,
       );
-      db.exec("PRAGMA user_version = 7");
+      db.exec(
+        `UPDATE vault SET updated_at = created_at WHERE updated_at IS NULL`,
+      );
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_updated ON vault(updated_at DESC)`,
+      );
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_superseded ON vault(superseded_by) WHERE superseded_by IS NOT NULL`,
+      );
+      db.exec("PRAGMA user_version = 9");
     });
   } else if (version === 6) {
-    // v6 -> v7 migration: add team_id column
+    // v6 -> v7+v8+v9 migration: add team_id, updated_at, superseded_by columns
     runTransaction(db, () => {
       try {
         db.exec(`ALTER TABLE vault ADD COLUMN team_id TEXT`);
       } catch (e) {
         if (!e.message.includes("duplicate column")) throw e;
       }
+      try {
+        db.exec(`ALTER TABLE vault ADD COLUMN updated_at TEXT`);
+      } catch (e) {
+        if (!e.message.includes("duplicate column")) throw e;
+      }
+      try {
+        db.exec(`ALTER TABLE vault ADD COLUMN superseded_by TEXT`);
+      } catch (e) {
+        if (!e.message.includes("duplicate column")) throw e;
+      }
       db.exec(`CREATE INDEX IF NOT EXISTS idx_vault_team ON vault(team_id)`);
-      db.exec("PRAGMA user_version = 7");
+      db.exec(
+        `UPDATE vault SET updated_at = created_at WHERE updated_at IS NULL`,
+      );
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_updated ON vault(updated_at DESC)`,
+      );
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_superseded ON vault(superseded_by) WHERE superseded_by IS NOT NULL`,
+      );
+      db.exec("PRAGMA user_version = 9");
+    });
+  } else if (version === 7) {
+    // v7 -> v8+v9 migration: add updated_at, superseded_by columns
+    runTransaction(db, () => {
+      try {
+        db.exec(`ALTER TABLE vault ADD COLUMN updated_at TEXT`);
+      } catch (e) {
+        if (!e.message.includes("duplicate column")) throw e;
+      }
+      try {
+        db.exec(`ALTER TABLE vault ADD COLUMN superseded_by TEXT`);
+      } catch (e) {
+        if (!e.message.includes("duplicate column")) throw e;
+      }
+      db.exec(
+        `UPDATE vault SET updated_at = created_at WHERE updated_at IS NULL`,
+      );
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_updated ON vault(updated_at DESC)`,
+      );
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_superseded ON vault(superseded_by) WHERE superseded_by IS NOT NULL`,
+      );
+      db.exec("PRAGMA user_version = 9");
+    });
+  } else if (version === 8) {
+    // v8 -> v9 migration: add superseded_by column
+    runTransaction(db, () => {
+      try {
+        db.exec(`ALTER TABLE vault ADD COLUMN superseded_by TEXT`);
+      } catch (e) {
+        if (!e.message.includes("duplicate column")) throw e;
+      }
+      db.exec(
+        `CREATE INDEX IF NOT EXISTS idx_vault_superseded ON vault(superseded_by) WHERE superseded_by IS NOT NULL`,
+      );
+      db.exec("PRAGMA user_version = 9");
     });
   }
 
@@ -199,13 +270,13 @@ export function prepareStatements(db) {
   try {
     return {
       insertEntry: db.prepare(
-        `INSERT INTO vault (id, user_id, kind, category, title, body, meta, tags, source, file_path, identity_key, expires_at, created_at) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`,
+        `INSERT INTO vault (id, user_id, kind, category, title, body, meta, tags, source, file_path, identity_key, expires_at, created_at, updated_at) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`,
       ),
       insertEntryEncrypted: db.prepare(
-        `INSERT INTO vault (id, user_id, kind, category, title, body, meta, tags, source, file_path, identity_key, expires_at, created_at, body_encrypted, title_encrypted, meta_encrypted, iv) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`,
+        `INSERT INTO vault (id, user_id, kind, category, title, body, meta, tags, source, file_path, identity_key, expires_at, created_at, updated_at, body_encrypted, title_encrypted, meta_encrypted, iv) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`,
       ),
       updateEntry: db.prepare(
-        `UPDATE vault SET title = ?, body = ?, meta = ?, tags = ?, source = ?, category = ?, identity_key = ?, expires_at = ? WHERE file_path = ?`,
+        `UPDATE vault SET title = ?, body = ?, meta = ?, tags = ?, source = ?, category = ?, identity_key = ?, expires_at = ?, updated_at = datetime('now') WHERE file_path = ?`,
       ),
       deleteEntry: db.prepare(`DELETE FROM vault WHERE id = ?`),
       getRowid: db.prepare(`SELECT rowid FROM vault WHERE id = ?`),
@@ -215,12 +286,18 @@ export function prepareStatements(db) {
         `SELECT * FROM vault WHERE kind = ? AND identity_key = ? AND user_id IS ?`,
       ),
       upsertByIdentityKey: db.prepare(
-        `UPDATE vault SET title = ?, body = ?, meta = ?, tags = ?, source = ?, category = ?, file_path = ?, expires_at = ? WHERE kind = ? AND identity_key = ? AND user_id IS ?`,
+        `UPDATE vault SET title = ?, body = ?, meta = ?, tags = ?, source = ?, category = ?, file_path = ?, expires_at = ?, updated_at = datetime('now') WHERE kind = ? AND identity_key = ? AND user_id IS ?`,
       ),
       insertVecStmt: db.prepare(
         `INSERT INTO vault_vec (rowid, embedding) VALUES (?, ?)`,
       ),
       deleteVecStmt: db.prepare(`DELETE FROM vault_vec WHERE rowid = ?`),
+      updateSupersededBy: db.prepare(
+        `UPDATE vault SET superseded_by = ? WHERE id = ?`,
+      ),
+      clearSupersededByRef: db.prepare(
+        `UPDATE vault SET superseded_by = NULL WHERE superseded_by = ?`,
+      ),
     };
   } catch (e) {
     throw new Error(

package/src/index/index.js

@@ -111,6 +111,7 @@ export async function indexEntry(
           identity_key || null,
           expires_at || null,
           createdAt,
+          createdAt,
           encrypted.body_encrypted,
           encrypted.title_encrypted,
           encrypted.meta_encrypted,
@@ -131,6 +132,7 @@ export async function indexEntry(
           identity_key || null,
           expires_at || null,
           createdAt,
+          createdAt,
         );
       }
     } catch (e) {
@@ -186,6 +188,39 @@ export async function indexEntry(
   }
 }
 
+/**
+ * Prune expired entries: delete files, vec rows, and DB rows for all entries
+ * where expires_at <= now(). Safe to call on startup or CLI — non-destructive
+ * to active data.
+ *
+ * @param {import('../server/types.js').BaseCtx} ctx
+ * @returns {Promise<number>} count of pruned entries
+ */
+export async function pruneExpired(ctx) {
+  const expired = ctx.db
+    .prepare(
+      "SELECT id, file_path FROM vault WHERE expires_at IS NOT NULL AND expires_at <= datetime('now')",
+    )
+    .all();
+
+  for (const row of expired) {
+    if (row.file_path) {
+      try {
+        unlinkSync(row.file_path);
+      } catch {}
+    }
+    const vRowid = ctx.stmts.getRowid.get(row.id)?.rowid;
+    if (vRowid) {
+      try {
+        ctx.deleteVec(Number(vRowid));
+      } catch {}
+    }
+    ctx.stmts.deleteEntry.run(row.id);
+  }
+
+  return expired.length;
+}
+
 /**
  * Bulk reindex: sync vault directory into the database.
  * P2: Wrapped in a transaction for atomicity.
@@ -205,7 +240,7 @@ export async function reindex(ctx, opts = {}) {
   // Use INSERT OR IGNORE for reindex — handles files with duplicate frontmatter IDs
   // user_id is NULL for reindex (always local mode)
   const upsertEntry = ctx.db.prepare(
-    `INSERT OR IGNORE INTO vault (id, user_id, kind, category, title, body, meta, tags, source, file_path, identity_key, expires_at, created_at) VALUES (?, NULL, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`,
+    `INSERT OR IGNORE INTO vault (id, user_id, kind, category, title, body, meta, tags, source, file_path, identity_key, expires_at, created_at, updated_at) VALUES (?, NULL, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`,
   );
 
   // Auto-discover kind directories, supporting both:
@@ -309,6 +344,7 @@ export async function reindex(ctx, opts = {}) {
             identity_key,
             expires_at,
             created,
+            fmMeta.updated || created,
           );
           if (result.changes > 0) {
             const rowidResult = ctx.stmts.getRowid.get(id);

package/src/index.js

@@ -47,7 +47,7 @@ export {
   deleteVec,
 } from "./index/db.js";
 export { embed, embedBatch, resetEmbedPipeline } from "./index/embed.js";
-export { indexEntry, reindex } from "./index/index.js";
+export { indexEntry, reindex, pruneExpired } from "./index/index.js";
 
 // Retrieve layer
 export { hybridSearch } from "./retrieve/index.js";

package/src/retrieve/index.js

@@ -9,10 +9,23 @@
 
 const FTS_WEIGHT = 0.4;
 const VEC_WEIGHT = 0.6;
+const NEAR_DUP_THRESHOLD = 0.92;
 
 /**
- * Strip FTS5 metacharacters from query words and build an AND query.
- * Returns null if no valid words remain.
+ * Dot product of two Float32Array vectors (cosine similarity for unit vectors).
+ */
+export function dotProduct(a, b) {
+  let sum = 0;
+  for (let i = 0; i < a.length; i++) sum += a[i] * b[i];
+  return sum;
+}
+
+/**
+ * Build a tiered FTS5 query that prioritises phrase match, then proximity,
+ * then AND.  Multi-word queries become:
+ *   "word1 word2" OR NEAR("word1" "word2", 10) OR "word1" AND "word2"
+ * Single-word queries remain a simple quoted term.
+ * Returns null if no valid words remain after stripping FTS5 metacharacters.
  */
 export function buildFtsQuery(query) {
   const words = query
@@ -20,7 +33,11 @@ export function buildFtsQuery(query) {
     .map((w) => w.replace(/[*"():^~{}]/g, ""))
     .filter((w) => w.length > 0);
   if (!words.length) return null;
-  return words.map((w) => `"${w}"`).join(" AND ");
+  if (words.length === 1) return `"${words[0]}"`;
+  const phrase = `"${words.join(" ")}"`;
+  const near = `NEAR(${words.map((w) => `"${w}"`).join(" ")}, 10)`;
+  const and = words.map((w) => `"${w}"`).join(" AND ");
+  return `${phrase} OR ${near} OR ${and}`;
 }
 
 /**
@@ -44,6 +61,7 @@ export function buildFilterClauses({
   until,
   userIdFilter,
   teamIdFilter,
+  includeSuperseeded = false,
 }) {
   const clauses = [];
   const params = [];
@@ -68,6 +86,9 @@ export function buildFilterClauses({
     params.push(until);
   }
   clauses.push("(e.expires_at IS NULL OR e.expires_at > datetime('now'))");
+  if (!includeSuperseeded) {
+    clauses.push("e.superseded_by IS NULL");
+  }
   return { clauses, params };
 }
 
@@ -92,15 +113,19 @@ export async function hybridSearch(
     decayDays = 30,
     userIdFilter,
     teamIdFilter = null,
+    includeSuperseeded = false,
   } = {},
 ) {
   const results = new Map();
+  const idToRowid = new Map();
+  let queryVec = null;
   const extraFilters = buildFilterClauses({
     categoryFilter,
     since,
     until,
     userIdFilter,
     teamIdFilter,
+    includeSuperseeded,
   });
 
   // FTS5 search
@@ -144,7 +169,7 @@ export async function hybridSearch(
       .prepare("SELECT COUNT(*) as c FROM vault_vec")
       .get().c;
     if (vecCount > 0) {
-      const queryVec = await ctx.embed(query);
+      queryVec = await ctx.embed(query);
       if (queryVec) {
         // Increase limits in hosted mode to compensate for post-filtering
         const hasPostFilter = userIdFilter !== undefined || teamIdFilter;
@@ -188,6 +213,7 @@ export async function hybridSearch(
               continue;
 
             const { rowid: _rowid, ...cleanRow } = row;
+            idToRowid.set(cleanRow.id, Number(row.rowid));
             // sqlite-vec returns L2 distance [0, 2] for normalized vectors.
             // Convert to similarity [1, 0] with: 1 - distance/2
             const vecScore = Math.max(0, 1 - vr.distance / 2) * VEC_WEIGHT;
@@ -215,5 +241,56 @@ export async function hybridSearch(
   }
 
   const sorted = [...results.values()].sort((a, b) => b.score - a.score);
+
+  // Near-duplicate suppression: when embeddings are available and we have more
+  // candidates than needed, skip results that are too similar to already-selected ones.
+  if (queryVec && idToRowid.size > 0 && sorted.length > limit) {
+    const rowidsToFetch = sorted
+      .filter((c) => idToRowid.has(c.id))
+      .map((c) => idToRowid.get(c.id));
+
+    const embeddingMap = new Map();
+    if (rowidsToFetch.length > 0) {
+      try {
+        const placeholders = rowidsToFetch.map(() => "?").join(",");
+        const vecData = ctx.db
+          .prepare(
+            `SELECT rowid, embedding FROM vault_vec WHERE rowid IN (${placeholders})`,
+          )
+          .all(...rowidsToFetch);
+        for (const row of vecData) {
+          const buf = row.embedding;
+          if (buf) {
+            embeddingMap.set(
+              Number(row.rowid),
+              new Float32Array(buf.buffer, buf.byteOffset, buf.byteLength / 4),
+            );
+          }
+        }
+      } catch (_) {
+        return sorted.slice(offset, offset + limit);
+      }
+    }
+
+    const selected = [];
+    const selectedVecs = [];
+    for (const candidate of sorted) {
+      if (selected.length >= offset + limit) break;
+      const rowid = idToRowid.get(candidate.id);
+      const vec = rowid !== undefined ? embeddingMap.get(rowid) : null;
+      if (vec && selectedVecs.length > 0) {
+        let maxSim = 0;
+        for (const sv of selectedVecs) {
+          const sim = dotProduct(sv, vec);
+          if (sim > maxSim) maxSim = sim;
+        }
+        if (maxSim > NEAR_DUP_THRESHOLD) continue;
+      }
+      selected.push(candidate);
+      if (vec) selectedVecs.push(vec);
+    }
+    return selected.slice(offset, offset + limit);
+  }
+
   return sorted.slice(offset, offset + limit);
 }

package/src/server/tools/context-status.js

@@ -1,4 +1,4 @@
-import { gatherVaultStatus } from "../../core/status.js";
+import { gatherVaultStatus, computeGrowthWarnings } from "../../core/status.js";
 import { errorLogPath, errorLogCount } from "../../core/error-log.js";
 import { ok } from "../helpers.js";
 
@@ -40,7 +40,7 @@ export function handler(_args, ctx) {
     `Data dir:  ${config.dataDir}`,
     `Config:    ${config.configPath}`,
     `Resolved via: ${status.resolvedFrom}`,
-    `Schema:    v7 (teams)`,
+    `Schema:    v9 (updated_at, superseded_by)`,
   ];
 
   if (status.embeddingStatus) {
@@ -58,7 +58,7 @@ export function handler(_args, ctx) {
   lines.push(`Decay:     ${config.eventDecayDays} days (event recency window)`);
   if (status.expiredCount > 0) {
     lines.push(
-      `Expired:   ${status.expiredCount} entries (pruned on next reindex)`,
+      `Expired:   ${status.expiredCount} entries pending prune (run \`context-vault prune\` to remove now)`,
     );
   }
 
@@ -93,6 +93,25 @@ export function handler(_args, ctx) {
     lines.push(`Auto-reindex will fix this on next search or save.`);
   }
 
+  if (status.staleKnowledge?.length > 0) {
+    lines.push(``);
+    lines.push(`### ⚠ Potentially Stale Knowledge`);
+    lines.push(
+      `Not updated within kind staleness window (pattern: 180d, decision: 365d, reference: 90d):`,
+    );
+    for (const entry of status.staleKnowledge) {
+      const lastUpdated = entry.last_updated
+        ? entry.last_updated.split("T")[0]
+        : "unknown";
+      lines.push(
+        `- "${entry.title}" (${entry.kind}) — last updated ${lastUpdated}`,
+      );
+    }
+    lines.push(
+      `Use save_context to refresh or add expires_at to retire stale entries.`,
+    );
+  }
+
   // Error log
   const logPath = errorLogPath(config.dataDir);
   const logCount = errorLogCount(config.dataDir);
@@ -120,6 +139,21 @@ export function handler(_args, ctx) {
     }
   }
 
+  // Growth warnings
+  const growth = computeGrowthWarnings(status, config.thresholds);
+  if (growth.hasWarnings) {
+    lines.push("", "### ⚠ Vault Growth Warning");
+    for (const w of growth.warnings) {
+      lines.push(`  ${w.message}`);
+    }
+    if (growth.actions.length) {
+      lines.push("", "Suggested growth actions:");
+      for (const a of growth.actions) {
+        lines.push(`  • ${a}`);
+      }
+    }
+  }
+
   // Suggested actions
   const actions = [];
   if (status.stalePaths)

package/src/server/tools/get-context.js

@@ -42,6 +42,12 @@ export const inputSchema = {
     .optional()
     .describe("ISO date, return entries created before this"),
   limit: z.number().optional().describe("Max results to return (default 10)"),
+  include_superseded: z
+    .boolean()
+    .optional()
+    .describe(
+      "If true, include entries that have been superseded by newer ones. Default: false.",
+    ),
 };
 
 /**
@@ -50,7 +56,17 @@ export const inputSchema = {
  * @param {import('../types.js').ToolShared} shared
  */
 export async function handler(
-  { query, kind, category, identity_key, tags, since, until, limit },
+  {
+    query,
+    kind,
+    category,
+    identity_key,
+    tags,
+    since,
+    until,
+    limit,
+    include_superseded,
+  },
   ctx,
   { ensureIndexed, reindexFailed },
 ) {
@@ -126,6 +142,7 @@ export async function handler(
       limit: fetchLimit,
       decayDays: config.eventDecayDays || 30,
       userIdFilter: userId,
+      includeSuperseeded: include_superseded ?? false,
     });
 
     // Post-filter by tags if provided, then apply requested limit
@@ -238,8 +255,12 @@ export async function handler(
     lines.push(
       `### [${i + 1}/${filtered.length}] ${r.title || "(untitled)"} [${r.kind}/${r.category}]`,
     );
+    const dateStr =
+      r.updated_at && r.updated_at !== r.created_at
+        ? `${r.created_at} (updated ${r.updated_at})`
+        : r.created_at || "";
     lines.push(
-      `${r.score.toFixed(3)} · ${tagStr} · ${relPath} · id: \`${r.id}\``,
+      `${r.score.toFixed(3)} · ${tagStr} · ${relPath} · ${dateStr} · id: \`${r.id}\``,
     );
     lines.push(r.body?.slice(0, 300) + (r.body?.length > 300 ? "..." : ""));
     lines.push("");

package/src/server/tools/ingest-url.js

@@ -65,17 +65,6 @@ export async function handler(
 
   await ensureIndexed();
 
-  // Hosted tier limit enforcement
-  if (ctx.checkLimits) {
-    const usage = ctx.checkLimits();
-    if (usage.entryCount >= usage.maxEntries) {
-      return err(
-        `Entry limit reached (${usage.maxEntries}). Upgrade to Pro for unlimited entries.`,
-        "LIMIT_EXCEEDED",
-      );
-    }
-  }
-
   try {
     const { ingestUrl } = await import("../../capture/ingest-url.js");
     const entryData = await ingestUrl(targetUrl, { kind, tags });

package/src/server/tools/list-context.js

@@ -6,7 +6,7 @@ import { ok } from "../helpers.js";
 export const name = "list_context";
 
 export const description =
-  "Browse vault entries without a search query. Returns id, title, kind, category, tags, created_at. Use get_context with a query for semantic search. Use this to browse by tags or find recent entries.";
+  "Browse vault entries without a search query. Returns id, title, kind, category, tags, created_at, updated_at. Use get_context with a query for semantic search. Use this to browse by tags or find recent entries.";
 
 export const inputSchema = {
   kind: z
@@ -101,7 +101,7 @@ export async function handler(
   params.push(fetchLimit, effectiveOffset);
   const rows = ctx.db
     .prepare(
-      `SELECT id, title, kind, category, tags, created_at, SUBSTR(body, 1, 120) as preview FROM vault ${where} ORDER BY created_at DESC LIMIT ? OFFSET ?`,
+      `SELECT id, title, kind, category, tags, created_at, updated_at, SUBSTR(body, 1, 120) as preview FROM vault ${where} ORDER BY created_at DESC LIMIT ? OFFSET ?`,
     )
     .all(...params);
 
@@ -140,8 +140,12 @@ export async function handler(
   for (const r of filtered) {
     const entryTags = r.tags ? JSON.parse(r.tags) : [];
     const tagStr = entryTags.length ? entryTags.join(", ") : "none";
+    const dateStr =
+      r.updated_at && r.updated_at !== r.created_at
+        ? `${r.created_at} (updated ${r.updated_at})`
+        : r.created_at;
     lines.push(
-      `- **${r.title || "(untitled)"}** [${r.kind}/${r.category}] — ${tagStr} — ${r.created_at} — \`${r.id}\``,
+      `- **${r.title || "(untitled)"}** [${r.kind}/${r.category}] — ${tagStr} — ${dateStr} — \`${r.id}\``,
     );
     if (r.preview)
       lines.push(