npm - @cosmicdrift/kumiko-bundled-features - Versions diffs - 0.2.3 → 0.4.0 - Mend

@cosmicdrift/kumiko-bundled-features 0.2.3 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (127) hide show

package/src/cap-counter/handlers/mark-soft-warned.write.ts CHANGED Viewed

@@ -25,7 +25,7 @@ export const markSoftWarnedHandler: WriteHandlerDef = {
   schema: markSoftWarnedSchema,
   access: { roles: ["SystemAdmin"] },
   handler: async (event, ctx) => {
-    const payload = event.payload as z.infer<typeof markSoftWarnedSchema>;
+    const payload = event.payload as z.infer<typeof markSoftWarnedSchema>; // @cast-boundary engine-payload
     const aggregateId = capCounterAggregateId(
       event.user.tenantId,
       payload.capName,
@@ -42,7 +42,7 @@ export const markSoftWarnedHandler: WriteHandlerDef = {
     if (!row) {
       throw new Error("cap-counter:mark-soft-warned: row vanished between length-check and read");
     }
-    const currentVersion = row["version"] as number;
+    const currentVersion = row["version"] as number; // @cast-boundary db-row
     return executor.update(
       {

package/src/channel-email/email-channel.ts CHANGED Viewed

@@ -34,7 +34,7 @@ export function createEmailChannel(options: EmailChannelOptions): DeliveryChanne
         template: message.notificationType,
         variables,
       });
-      const subject = (variables["subject"] as string) ?? message.title;
+      const subject = (variables["subject"] as string) ?? message.title; // @cast-boundary dynamic-key
       await transport.send({
         to: address,

package/src/channel-email/types.ts CHANGED Viewed

@@ -20,7 +20,7 @@ export function createInMemoryTransport(): EmailTransport & {
   const sent: EmailMessage[] = [];
   const transport = {
     sent,
-    failNext: null as null | { message: string },
+    failNext: null as null | { message: string }, // @cast-boundary generic-record
     async send(message: EmailMessage) {
       if (transport.failNext) {
         const err = new Error(transport.failNext.message);

package/src/compliance-profiles/handlers/for-tenant.query.ts CHANGED Viewed

@@ -26,7 +26,7 @@ export const forTenantQuery = defineQueryHandler({
       ctx.db,
       tenantComplianceProfileTable,
       eq(tenantComplianceProfileTable["tenantId"], query.user.tenantId),
-    )) as { profileKey: string; override: string | null } | null;
+    )) as { profileKey: string; override: string | null } | null; // @cast-boundary db-runner
     if (!row) {
       return resolveComplianceProfile({});
@@ -34,7 +34,7 @@ export const forTenantQuery = defineQueryHandler({
     const override = parseOverride(row.override, query.user.tenantId);
     return resolveComplianceProfile({
-      selection: row.profileKey as ComplianceProfileKey,
+      selection: row.profileKey as ComplianceProfileKey, // @cast-boundary engine-payload
       override,
     });
   },
@@ -46,9 +46,10 @@ function parseOverride(
 ): ComplianceProfileOverride | undefined {
   if (!raw || raw.trim() === "") return undefined;
   try {
-    const parsed = JSON.parse(raw) as ComplianceProfileOverride;
-    return parsed;
-  } catch (e) {
+    const parsed: unknown = JSON.parse(raw);
+    return parsed as ComplianceProfileOverride; // @cast-boundary engine-payload
+  } catch (e: unknown) {
+    const reason = e instanceof Error ? e.message : String(e);
     // Defensiv: ungültiges JSON wird als "kein Override" behandelt. Der
     // set-profile-Handler validiert Zod das Override schon — invalides
     // JSON in der DB ist also nur möglich bei manueller DB-Manipulation
@@ -56,7 +57,7 @@ function parseOverride(
     // Operator-Sichtbarkeit via console.warn — Telemetry-Hook spaeter.
     // biome-ignore lint/suspicious/noConsole: operator visibility for DB-corruption edge-case
     console.warn(
-      `[compliance-profiles:for-tenant] tenant ${tenantId}: stored override is not valid JSON, falling back to base profile. Reason: ${(e as Error).message}`,
+      `[compliance-profiles:for-tenant] tenant ${tenantId}: stored override is not valid JSON, falling back to base profile. Reason: ${reason}`,
     );
     return undefined;
   }

package/src/compliance-profiles/handlers/needs-profile.query.ts CHANGED Viewed

@@ -27,7 +27,7 @@ export const needsProfileQuery = defineQueryHandler({
       ctx.db,
       tenantComplianceProfileTable,
       eq(tenantComplianceProfileTable["tenantId"], query.user.tenantId),
-    )) as { profileKey: ComplianceProfileKey } | null;
+    )) as { profileKey: ComplianceProfileKey } | null; // @cast-boundary db-runner
     if (!row) {
       return {

package/src/compliance-profiles/handlers/set-profile.write.ts CHANGED Viewed

@@ -1,6 +1,5 @@
 import { ROLES } from "@cosmicdrift/kumiko-framework/auth";
 import {
-  type ComplianceProfileKey,
   complianceProfileOverrideSchema,
   SELECTABLE_PROFILE_KEYS,
 } from "@cosmicdrift/kumiko-framework/compliance";
@@ -27,9 +26,7 @@ const crud = createEventStoreExecutor(tenantComplianceProfileTable, tenantCompli
 // X1) — minimal-no-region ist Default-Fallback fuer "noch keine Wahl",
 // nicht eine waehlbare Production-Option. Symmetrisch zu
 // SELECTABLE_PROFILE_KEYS aus der framework/compliance-Liste.
-const profileKeySchema = z.enum(
-  SELECTABLE_PROFILE_KEYS as readonly [ComplianceProfileKey, ...ComplianceProfileKey[]],
-);
+const profileKeySchema = z.enum(SELECTABLE_PROFILE_KEYS);
 // Tenant-Admin setzt Profile-Key + optional Override-JSON.
 //
@@ -69,7 +66,7 @@ export const setProfileWrite = defineWriteHandler({
         }),
       );
     }
-    const tenantId = (tenantOverride ?? event.user.tenantId) as TenantId;
+    const tenantId = (tenantOverride ?? event.user.tenantId) as TenantId; // @cast-boundary engine-payload
     const executorUser = tenantOverride !== undefined ? { ...event.user, tenantId } : event.user;
     // Override-Validation: muss parseables JSON-Object sein UND dem
@@ -85,12 +82,13 @@ export const setProfileWrite = defineWriteHandler({
       let parsed: unknown;
       try {
         parsed = JSON.parse(event.payload.override);
-      } catch (e) {
+      } catch (e: unknown) {
+        const parseError = e instanceof Error ? e.message : String(e);
         return writeFailure(
           new UnprocessableError("compliance_override_invalid_json", {
             details: {
               reason: "compliance_override_invalid_json",
-              parseError: (e as Error).message,
+              parseError,
             },
           }),
         );
@@ -106,7 +104,7 @@ export const setProfileWrite = defineWriteHandler({
       ctx.db,
       tenantComplianceProfileTable,
       eq(tenantComplianceProfileTable["tenantId"], tenantId),
-    )) as { id: string; version: number } | null;
+    )) as { id: string; version: number } | null; // @cast-boundary db-runner
     if (existing) {
       const result = await crud.update(

package/src/compliance-profiles/resolve-for-tenant.ts CHANGED Viewed

@@ -31,7 +31,7 @@ export async function resolveProfileForTenant(
     args.db,
     tenantComplianceProfileTable,
     eq(tenantComplianceProfileTable["tenantId"], args.tenantId),
-  )) as { profileKey: string; override: string | null } | null;
+  )) as { profileKey: string; override: string | null } | null; // @cast-boundary db-runner
   if (!row) {
     return resolveComplianceProfile({});
@@ -39,7 +39,7 @@ export async function resolveProfileForTenant(
   const override = parseOverride(row.override, args.tenantId);
   return resolveComplianceProfile({
-    selection: row.profileKey as ComplianceProfileKey,
+    selection: row.profileKey as ComplianceProfileKey, // @cast-boundary engine-payload
     override,
   });
 }
@@ -50,11 +50,13 @@ function parseOverride(
 ): ComplianceProfileOverride | undefined {
   if (!raw || raw.trim() === "") return undefined;
   try {
-    return JSON.parse(raw) as ComplianceProfileOverride;
-  } catch (e) {
+    const parsed: unknown = JSON.parse(raw);
+    return parsed as ComplianceProfileOverride; // @cast-boundary engine-payload
+  } catch (e: unknown) {
+    const reason = e instanceof Error ? e.message : String(e);
     // biome-ignore lint/suspicious/noConsole: operator visibility for DB-corruption edge-case
     console.warn(
-      `[compliance-profiles:resolve-for-tenant] tenant ${tenantId}: stored override is not valid JSON, ignoring. Reason: ${(e as Error).message}`,
+      `[compliance-profiles:resolve-for-tenant] tenant ${tenantId}: stored override is not valid JSON, ignoring. Reason: ${reason}`,
     );
     return undefined;
   }

package/src/compliance-profiles/seeding.ts CHANGED Viewed

@@ -56,7 +56,7 @@ export async function seedComplianceProfile(
     db,
     tenantComplianceProfileTable,
     eq(tenantComplianceProfileTable["tenantId"], opts.tenantId),
-  )) as { id: string; version: number } | null;
+  )) as { id: string; version: number } | null; // @cast-boundary db-runner
   if (existing) {
     const result = await executor.update(

package/src/config/resolver.ts CHANGED Viewed

@@ -179,7 +179,7 @@ export function createConfigResolver(options: ConfigResolverOptions = {}): Confi
       const result = new Map<string, ConfigRow>();
       for (const row of rows) {
-        const r = row as ConfigRow;
+        const r = row as ConfigRow; // @cast-boundary db-row
         // Higher specificity wins: user > tenant > system. Under the ES
         // schema system rows carry SYSTEM_TENANT_ID instead of NULL, so the
         // "tenant set" check compares against the sentinel rather than null.

package/src/data-retention/_internal/parse-override.ts CHANGED Viewed

@@ -14,10 +14,11 @@ export function parseRetentionOverrideOrNull(
   let parsed: unknown;
   try {
     parsed = JSON.parse(raw);
-  } catch (e) {
+  } catch (e: unknown) {
+    const reason = e instanceof Error ? e.message : String(e);
     // biome-ignore lint/suspicious/noConsole: operator visibility for DB-corruption edge-case
     console.warn(
-      `[${callerLabel}] tenant ${tenantId}: stored override is not valid JSON, ignoring. Reason: ${(e as Error).message}`,
+      `[${callerLabel}] tenant ${tenantId}: stored override is not valid JSON, ignoring. Reason: ${reason}`,
     );
     return null;
   }

package/src/data-retention/handlers/policy-for.query.ts CHANGED Viewed

@@ -33,7 +33,7 @@ export const policyForQuery = defineQueryHandler({
       tenantRetentionOverrideTable,
       eq(tenantRetentionOverrideTable["tenantId"], query.user.tenantId),
       eq(tenantRetentionOverrideTable["entityName"], entityName),
-    )) as { config: string | null } | null;
+    )) as { config: string | null } | null; // @cast-boundary db-runner
     const tenantOverride = parseRetentionOverrideOrNull(
       overrideRow?.config ?? null,

package/src/data-retention/keep-for.ts CHANGED Viewed

@@ -19,7 +19,7 @@ const UNIT_TO_DAYS: Readonly<Record<string, number>> = {
   w: 7,
   m: 30,
   y: 365,
-};
+} satisfies Readonly<Record<string, number>>;
 export class InvalidKeepForError extends Error {
   constructor(spec: string) {

package/src/data-retention/presets.ts CHANGED Viewed

@@ -58,7 +58,7 @@ export const RETENTION_PRESETS: Readonly<Record<RetentionPresetKey, RetentionPre
     session: { keepFor: "30d", strategy: "hardDelete", reference: "lastSeenAt" },
     invoice: { keepFor: "10y", strategy: "blockDelete", reference: "createdAt" },
   },
-};
+} satisfies Readonly<Record<RetentionPresetKey, RetentionPreset>>;
 /**
  * Auswählbare Presets für den Onboarding-Banner. "default" ist Migration-

package/src/data-retention/resolve-for-tenant.ts CHANGED Viewed

@@ -28,7 +28,7 @@ export async function resolveRetentionPolicyForTenant(
     tenantRetentionOverrideTable,
     eq(tenantRetentionOverrideTable["tenantId"], args.tenantId),
     eq(tenantRetentionOverrideTable["entityName"], args.entityName),
-  )) as { config: string | null } | null;
+  )) as { config: string | null } | null; // @cast-boundary db-runner
   const tenantOverride = parseRetentionOverrideOrNull(
     overrideRow?.config ?? null,

package/src/delivery/__tests__/delivery.integration.ts CHANGED Viewed

@@ -27,8 +27,10 @@ import { createChannelPushFeature } from "../../channel-push/feature";
 import { createInMemoryPushTransport } from "../../channel-push/types";
 import { createConfigFeature } from "../../config/feature";
 import { configValuesTable } from "../../config/table";
+import { createRendererFoundationFeature } from "../../renderer-foundation/feature";
 import { createRendererSimpleFeature } from "../../renderer-simple/feature";
 import { simpleRenderer } from "../../renderer-simple/simple-renderer";
+import { createTemplateResolverFeature } from "../../template-resolver/feature";
 import { TenantQueries } from "../../tenant/constants";
 import { createTenantFeature } from "../../tenant/feature";
 import { tenantMembershipsTable } from "../../tenant/membership-table";
@@ -241,6 +243,8 @@ const ticketFeature = defineFeature("tickets", (r) => {
 const configFeature = createConfigFeature();
 const tenantFeature = createTenantFeature();
+const templateResolverFeature = createTemplateResolverFeature();
+const rendererFoundationFeature = createRendererFoundationFeature();
 const deliveryFeature = createDeliveryFeature();
 const channelInAppFeature = createChannelInAppFeature();
 const rendererSimpleFeature = createRendererSimpleFeature();
@@ -256,6 +260,8 @@ const channelPushFeature = createChannelPushFeature({
 const features = [
   configFeature,
   tenantFeature,
+  templateResolverFeature,
+  rendererFoundationFeature,
   deliveryFeature,
   channelInAppFeature,
   rendererSimpleFeature,

package/src/delivery/delivery-service.ts CHANGED Viewed

@@ -18,7 +18,6 @@ import type {
   DeliveryChannel,
   DeliveryLogEntry,
   DeliveryService,
-  NotificationRenderer,
 } from "./types";
 export type RateLimitConfig = {
@@ -56,17 +55,10 @@ export function collectChannels(registry: Registry): DeliveryChannel[] {
   });
 }
-// Build renderer map from registry extension usages
-export function collectRenderers(registry: Registry): Map<string, NotificationRenderer> {
-  const usages = registry.getExtensionUsages("notificationRenderer");
-  const map = new Map<string, NotificationRenderer>();
-  for (const usage of usages) {
-    // @cast-boundary engine-payload — extension-usage carries unknown options
-    const opts = usage.options as { render: NotificationRenderer["render"] };
-    map.set(usage.entityName, { name: usage.entityName, render: opts.render });
-  }
-  return map;
-}
+// `collectRenderers` entfernt 2026-05-19: notificationRenderer-Extension-Point
+// wurde nie konsumiert (channel-email nimmt renderer als Konstruktor-Option,
+// nicht aus Extension-Usages). Multi-Kind-Plugin-Pool lebt jetzt im
+// `renderer-foundation`-Bundle via `collectRendererPlugins`.
 export function createDeliveryService(options: DeliveryServiceOptions): DeliveryService {
   const {

package/src/delivery/feature.ts CHANGED Viewed

@@ -31,7 +31,7 @@ export function createDeliveryFeature(): FeatureDefinition {
       table: deliveryAttemptsTable,
       apply: {
         [DELIVERY_ATTEMPT_EVENT]: async (event, tx) => {
-          const p = event.payload as z.infer<typeof deliveryAttemptSchema>;
+          const p = event.payload as z.infer<typeof deliveryAttemptSchema>; // @cast-boundary engine-payload
           // PK = aggregateId — replaying the same event twice conflicts on
           // the PK rather than silently duplicating the log row.
           await tx.insert(deliveryAttemptsTable).values({
@@ -48,13 +48,15 @@ export function createDeliveryFeature(): FeatureDefinition {
       },
     });
-    // Extension points: channels and renderers register as features
+    // Extension point: delivery-channels (email/in-app/push). Renderer-
+    // Extension-Point lebt jetzt im `renderer-foundation`-Bundle als
+    // `renderer` (Multi-Kind-Plugin-Contract). delivery hostet keinen
+    // eigenen mehr — channel-email nimmt renderer als direkte
+    // Konstruktor-Option (siehe email-channel.ts), nicht via Extension-
+    // Usage. Migration 2026-05-19.
     r.extendsRegistrar("deliveryChannel", {
       onRegister: () => {},
     });
-    r.extendsRegistrar("notificationRenderer", {
-      onRegister: () => {},
-    });
     const handlers = {
       setPreference: r.writeHandler(setPreferenceWrite),

package/src/delivery/index.ts CHANGED Viewed

@@ -8,7 +8,6 @@ export {
 } from "./constants";
 export {
   collectChannels,
-  collectRenderers,
   createDeliveryService,
   type DeliveryServiceOptions,
   type KillSwitchResolver,

package/src/delivery/testing.ts CHANGED Viewed

@@ -41,7 +41,6 @@ export function createDeliveryTestContext(
     _notifyFactory:
       (user: { id: number; tenantId: TenantId }, tenantId: TenantId) =>
       (notificationType: string, notifyOptions: Record<string, unknown>) =>
-        // @cast-boundary engine-bridge — generic test-helper → typed entity-specific notify()
-        deliveryService.notify(notificationType, notifyOptions as never, user as never, tenantId),
+        deliveryService.notify(notificationType, notifyOptions as never, user as never, tenantId), // @cast-boundary engine-bridge
   };
 }

package/src/delivery/upsert-preference.ts CHANGED Viewed

@@ -137,7 +137,7 @@ export async function upsertPreference(
 // minor driver-version shifts without drifting wide.
 function isUniqueViolation(err: unknown): boolean {
   if (typeof err !== "object" || err === null) return false;
-  const e = err as { code?: unknown; cause?: { code?: unknown }; message?: unknown };
+  const e = err as { code?: unknown; cause?: { code?: unknown }; message?: unknown }; // @cast-boundary error-details
   if (e.code === "23505") return true;
   if (e.cause && typeof e.cause === "object" && e.cause.code === "23505") return true;
   if (typeof e.message === "string" && e.message.includes("23505")) return true;

package/src/feature-toggles/feature.ts CHANGED Viewed

@@ -78,7 +78,7 @@ export function createFeatureTogglesFeature(options: FeatureTogglesOptions): Fea
           // (validated on append). Shallow-cast to a typed shape rather
           // than re-parsing — the payload round-trips through JSON and is
           // fixed at the source.
-          const payload = event.payload as { featureName: string; enabled: boolean };
+          const payload = event.payload as { featureName: string; enabled: boolean }; // @cast-boundary engine-payload
           options.getRuntime().apply(payload.featureName, payload.enabled);
         },
       },

package/src/feature-toggles/handlers/list.query.ts CHANGED Viewed

@@ -12,7 +12,7 @@ export const listQuery = defineQueryHandler({
   access: { roles: ["SystemAdmin", "Admin"] },
   handler: async (_event, ctx) => {
     type Row = typeof globalFeatureStateTable.$inferSelect;
-    const rows = (await ctx.db.select().from(globalFeatureStateTable)) as Row[];
+    const rows = (await ctx.db.select().from(globalFeatureStateTable)) as Row[]; // @cast-boundary db-row
     return {
       items: rows.map((r) => ({
         featureName: r.featureName,

package/src/feature-toggles/handlers/registered.query.ts CHANGED Viewed

@@ -21,7 +21,7 @@ export const registeredQuery = defineQueryHandler({
         featureName: globalFeatureStateTable.featureName,
         enabled: globalFeatureStateTable.enabled,
       })
-      .from(globalFeatureStateTable)) as OverrideRow[];
+      .from(globalFeatureStateTable)) as OverrideRow[]; // @cast-boundary db-row
     const overrides = new Map(overrideRows.map((r) => [r.featureName, r.enabled]));
     // SystemAdmin operator-tooling: das listing soll die PLATTFORM-truth
@@ -31,7 +31,14 @@ export const registeredQuery = defineQueryHandler({
     // dokumentiert in DispatcherOptions.effectiveFeatures.
     const effective = ctx.effectiveFeatures?.(SYSTEM_TENANT_ID);
-    const items = [];
+    const items: Array<{
+      name: string;
+      toggleable: boolean;
+      default: boolean | null;
+      override: boolean | null;
+      requires: readonly string[];
+      effective: boolean | null;
+    }> = [];
     for (const feature of ctx.registry.features.values()) {
       const toggleable = feature.toggleableDefault !== undefined;
       const override = overrides.get(feature.name);

package/src/feature-toggles/handlers/set.write.ts CHANGED Viewed

@@ -71,7 +71,7 @@ export function createSetWriteHandler(getRuntime: () => GlobalFeatureToggleRunti
         .select()
         .from(globalFeatureStateTable)
         .where(eq(globalFeatureStateTable.featureName, featureName))
-        .limit(1)) as StateRow[];
+        .limit(1)) as StateRow[]; // @cast-boundary db-row
       const previousEnabled = existing?.enabled ?? null;
@@ -123,11 +123,11 @@ export function createSetWriteHandler(getRuntime: () => GlobalFeatureToggleRunti
       // and filtering by payload.featureName is trivial at query time.
       // This mirrors how `config` handles the same constraint for
       // its config-changed events.
-      // appendEventUnsafe — bundled-features ohne lokalen Wrapper. Apps
+      // unsafeAppendEvent — bundled-features ohne lokalen Wrapper. Apps
       // mit `yarn kumiko codegen` kriegen `.kumiko/define.ts` als strict-
       // path; bundled-features bleibt bei der unsafe-Variante. Schema-
       // Validation läuft trotzdem via r.defineEvent("toggle-set", ...).
-      await ctx.appendEventUnsafe({
+      await ctx.unsafeAppendEvent({
         aggregateId: SYSTEM_TENANT_ID,
         aggregateType: FEATURE_TOGGLE_AGGREGATE_TYPE,
         type: FEATURE_TOGGLE_SET_EVENT_NAME,

package/src/file-foundation/feature.ts CHANGED Viewed

@@ -137,7 +137,7 @@ export async function createFileProviderForTenant(
     await ctxConfig(fileFoundationFeature.exports.configKeys.provider),
     FEATURE_NAME,
     "provider",
-  ) as string;
+  ) as string; // @cast-boundary engine-payload
   if (provider.length === 0) {
     const usages = ctx.registry.getExtensionUsages("fileProvider");
     const known = usages.map((u) => u.entityName).join(", ") || "<none>";

package/src/file-provider-s3/feature.ts CHANGED Viewed

@@ -129,13 +129,13 @@ async function buildS3Provider(
     await ctxConfig(fileProviderS3Feature.exports.configKeys.endpoint),
     FEATURE_NAME,
     "endpoint",
-  ) as string;
+  ) as string; // @cast-boundary engine-payload
   const endpoint = endpointRaw.length > 0 ? endpointRaw : undefined;
   const forcePathStyle = requireDefined(
     await ctxConfig(fileProviderS3Feature.exports.configKeys.forcePathStyle),
     FEATURE_NAME,
     "forcePathStyle",
-  ) as boolean;
+  ) as boolean; // @cast-boundary engine-payload
   const accessKeyId = requireNonEmpty(
     await ctxConfig(fileProviderS3Feature.exports.configKeys.accessKeyId),
     FEATURE_NAME,

package/src/files-provider-s3/s3-provider.ts CHANGED Viewed

@@ -154,7 +154,7 @@ export function createS3Provider(config: S3ProviderConfig): FileStorageProvider
           }
           // SdkStream is AsyncIterable<Buffer> on node. Buffer extends
           // Uint8Array; cast sichert die Surface ohne neue runtime-deps.
-          const body = response.Body as AsyncIterable<Uint8Array>;
+          const body = response.Body as AsyncIterable<Uint8Array>; // @cast-boundary engine-bridge
           for await (const chunk of body) {
             yield chunk;
           }
@@ -174,7 +174,7 @@ export function createS3Provider(config: S3ProviderConfig): FileStorageProvider
         // S3 SDK throws either NotFound or a generic 404. Check both the
         // `.name` property (newer SDKs) and the `$metadata.httpStatusCode`
         // (what the SDK guarantees on every error).
-        const err = error as { name?: string; $metadata?: { httpStatusCode?: number } };
+        const err = error as { name?: string; $metadata?: { httpStatusCode?: number } }; // @cast-boundary error-details
         if (err.name === "NotFound" || err.$metadata?.httpStatusCode === 404) {
           return false;
         }

package/src/jobs/handlers/list.query.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import { defineQueryHandler } from "@cosmicdrift/kumiko-framework/engine";
-import { and, desc, eq } from "drizzle-orm";
+import { and, desc, eq, type SQL } from "drizzle-orm";
 import { z } from "zod";
 import { type JobRunStatus, jobRunsTable } from "../job-run-table";
@@ -13,13 +13,13 @@ export const listQuery = defineQueryHandler({
   access: { roles: ["SystemAdmin"] },
   handler: async (query, ctx) => {
     const db = ctx.db;
-    const conditions = [];
+    const conditions: SQL[] = [];
     if (query.payload.jobName) {
       conditions.push(eq(jobRunsTable.jobName, query.payload.jobName));
     }
     if (query.payload.status) {
-      conditions.push(eq(jobRunsTable.status, query.payload.status as JobRunStatus));
+      conditions.push(eq(jobRunsTable.status, query.payload.status as JobRunStatus)); // @cast-boundary engine-payload
     }
     const limit = query.payload.limit ?? 50;

package/src/jobs/handlers/trigger.write.ts CHANGED Viewed

@@ -14,7 +14,7 @@ export const triggerWrite = defineWriteHandler({
   handler: async (event, ctx) => {
     const registry = ctx.registry;
     // `jobRunner` is a dynamic context extension — not a core HandlerContext field.
-    const jobRunner = ctx["jobRunner"] as JobRunner;
+    const jobRunner = ctx["jobRunner"] as JobRunner; // @cast-boundary dynamic-key
     const jobDef = registry.getJob(event.payload.jobName);
     if (!jobDef) {

package/src/legal-pages/constants.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+// @runtime client
 // Feature name
 export const LEGAL_PAGES_FEATURE = "legal-pages" as const;

package/src/legal-pages/web/client-plugin.ts ADDED Viewed

@@ -0,0 +1,82 @@
+// @runtime client
+// Client-Feature-Factory für legal-pages Visual-Tree. Liefert statische
+// Tree-Knoten für die DACH-Compliance-Blöcke (imprint, privacy in de/en).
+// Jeder Knoten linkt auf text-content's edit-Action — reines Cross-Feature-
+// Linking, kein eigener State oder Fetch nötig.
+//
+// **Static statt fetch**: legal-pages weiß out-of-the-box welche Blocks
+// existieren (LEGAL_REQUIRED_BLOCKS + LEGAL_OPTIONAL_BLOCKS aus constants).
+// Anders als text-content's Provider (der alle Slugs des Tenants holt)
+// ist diese Liste bekannt zur Build-Zeit — kein /api/query-Round-trip nötig.
+//
+// **Content-State unbekannt**: V.1.2 setzt keine state-Markierung; alle
+// Knoten erscheinen "filled" (default). V.1.3+ könnte via by-slug-Query
+// ermitteln ob ein Block tatsächlich body hat und „stub" markieren wenn
+// leer (Provider-Author-Hinweis dass Block existiert aber befüllt werden
+// muss). Aktuell ist legal-pages's Boot-Check der primäre Wächter für
+// fehlende Pflicht-Blocks.
+import type { TreeChildrenSubscribe, TreeNode } from "@cosmicdrift/kumiko-framework/engine";
+import type { ClientFeatureDefinition } from "@cosmicdrift/kumiko-renderer-web";
+import { LEGAL_OPTIONAL_BLOCKS, LEGAL_REQUIRED_BLOCKS } from "../constants";
+const treeProvider: TreeChildrenSubscribe = () => (emit) => {
+  // V.1.5d Slug-first Verschachtelung (Variante C):
+  //   📁 Legal
+  //     📁 imprint
+  //       de
+  //       en
+  //     📁 privacy
+  //       de
+  //       en
+  //
+  // Slug ist der Übersetzungs-Anker — User pflegt DE+EN-Versionen
+  // desselben Inhalts zusammen statt nach Sprache zu gruppieren.
+  // Sub-Items sind reine Sprach-Leaves; Label = Sprache, target zeigt
+  // auf text-content:edit mit slug+lang.
+  // Group all blocks by slug, collect set of langs per slug.
+  const bySlug = new Map<string, string[]>();
+  for (const b of [...LEGAL_REQUIRED_BLOCKS, ...LEGAL_OPTIONAL_BLOCKS]) {
+    const langs = bySlug.get(b.slug) ?? [];
+    if (!langs.includes(b.lang)) langs.push(b.lang);
+    bySlug.set(b.slug, langs);
+  }
+  const slugFolders: TreeNode[] = [];
+  for (const slug of [...bySlug.keys()].sort()) {
+    const langs = bySlug.get(slug);
+    if (langs === undefined) continue;
+    const langLeaves: TreeNode[] = langs.sort().map((lang) => ({
+      label: lang,
+      target: {
+        featureId: "text-content",
+        action: "edit",
+        args: { slug, lang },
+      },
+    }));
+    slugFolders.push({
+      label: slug,
+      icon: "folder",
+      state: "filled",
+      children: langLeaves,
+    });
+  }
+  emit([
+    {
+      label: "Legal",
+      icon: "folder",
+      state: "filled",
+      children: slugFolders,
+    },
+  ]);
+  return () => {};
+};
+export function legalPagesClient(): ClientFeatureDefinition {
+  return {
+    name: "legal-pages",
+    treeProvider,
+  };
+}

package/src/legal-pages/web/index.ts ADDED Viewed

@@ -0,0 +1,4 @@
+// @runtime client
+// Public exports für die Browser-Seite des legal-pages Features.
+export { legalPagesClient } from "./client-plugin";

package/src/mail-foundation/feature.ts CHANGED Viewed

@@ -134,7 +134,7 @@ export async function createTransportForTenant(
     await ctxConfig(mailFoundationFeature.exports.configKeys.provider),
     FEATURE_NAME,
     "provider",
-  ) as string;
+  ) as string; // @cast-boundary engine-payload
   if (provider.length === 0) {
     const usages = ctx.registry.getExtensionUsages("mailTransport");
     const known = usages.map((u) => u.entityName).join(", ") || "<none>";

package/src/mail-transport-smtp/feature.ts CHANGED Viewed

@@ -140,12 +140,12 @@ async function buildSmtpTransport(ctx: HandlerContext, tenantId: string): Promis
     await ctxConfig(mailTransportSmtpFeature.exports.configKeys.port),
     FEATURE_NAME,
     "port",
-  ) as number;
+  ) as number; // @cast-boundary engine-payload
   const secure = requireDefined(
     await ctxConfig(mailTransportSmtpFeature.exports.configKeys.secure),
     FEATURE_NAME,
     "secure",
-  ) as boolean;
+  ) as boolean; // @cast-boundary engine-payload
   const from = requireNonEmpty(
     await ctxConfig(mailTransportSmtpFeature.exports.configKeys.from),
     FEATURE_NAME,