@fuzdev/fuz_app 0.50.0 → 0.51.0

package/dist/actions/CLAUDE.md

@@ -116,8 +116,8 @@ not the runtime):
 - `ImportBuilder` — tracks value / type / namespace imports; emits `import type` when every entry on a module is a type (tree-shaking). Namespace (`* as specs`) entries are emitted verbatim. Public surface: `add`, `add_type`, `add_many`, `add_types`, `build`, `preview`, `has_imports`, `import_count`, `clear`.
 - `get_executor_phases(spec, executor)` — phases a given executor (`'frontend' | 'backend'`) participates in for the spec. Deduplicates via `Set` (handles `initiator: 'both'` overlap).
 - `get_handler_return_type(spec, phase, imports, collections_path?)` — the TS type a phase handler must return; triggers the `ActionOutputs` import (sourced from `collections_path`, default `'./action_collections.js'`) as a side effect.
-- `generate_phase_handlers(spec, executor, imports, {action_event_type?, collections_path?})` — emits the typed handler-map fragment for one action; consumers compose these into `ActionHandlers` types.
-- `generate_actions_api_method_signature(spec, {sync_returns_value?})` — single source of truth for the typed `FrontendActionsApi` method shape. Threads `options?: RpcClientCallOptions` (`{signal?, transport_name?, queue?}`) onto every async method — `request_response`, `remote_notification`, and async `local_call` — and wraps the return in `Promise<Result<...>>`. Notifications were previously emitted as `=> void`, mismatching the runtime (`create_remote_notification_method` returns a Promise that resolves to `Result<{value: void}>`); regenerate consumer typed clients to pick up the corrected shape.
+- `generate_phase_handlers(spec, executor, imports, {action_event_type?, collections_path?})` — emits the typed handler-map fragment for one action; consumers compose these into `ActionHandlers` types. Returns `''` when the spec contributes no phases on the given executor (e.g. a backend-only `local_call` asked for `'frontend'`) so wrappers' `.filter(Boolean)` drops the row entirely instead of emitting a useless `${method}?: never` for a method that doesn't belong on this side.
+- `generate_actions_api_method_signature(spec, imports, {sync_returns_value?, collections_path?})` — single source of truth for the typed `FrontendActionsApi` method shape. Threads `options?: RpcClientCallOptions` (`{signal?, transport_name?, queue?}`) onto every async method — `request_response`, `remote_notification`, and async `local_call` — and wraps the return in `Promise<Result<...>>`. Registers exactly the imports the emitted line references on `imports` — `ActionInputs` only when the spec has input, `RpcClientCallOptions` only when async, `Result` / `JsonrpcErrorObject` only when the return wraps in `Result`. Mirrors the leaf-level pattern `get_handler_return_type` already follows so wrappers no longer pre-register imports a per-spec emit might not actually use.
 - `create_banner(origin_path)` — gen banner comment.
 - `to_action_spec_identifier(method)` / `to_action_spec_input_identifier` / `to_action_spec_output_identifier` — naming convention helpers (emit `foo_action_spec` / `foo_action_spec.input` / `foo_action_spec.output`).
 - `PROTOCOL_ACTION_METHODS` (+ `ProtocolActionMethod` type) — readonly tuple `['heartbeat', 'cancel']`. Pairs with `protocol_actions` / `protocol_action_specs` in `actions/protocol.ts` (the runtime bundles). Consumers spread when filtering backend `request_response` methods so dispatcher-owned protocol actions don't leak into `BackendRequestResponseMethod` / handler maps.

package/dist/actions/action_codegen.d.ts

@@ -118,6 +118,15 @@ export declare const get_handler_return_type: (spec: ActionSpecUnion, phase: Act
  * Generates the phase handlers for an action spec using the unified ActionEvent type
  * with the new phase/step type parameters.
  *
+ * Returns `''` when the spec contributes no phases on the given executor side
+ * (e.g. a backend-only `local_call` asked for `'frontend'`). Upstream wrappers
+ * compose blocks with `.filter(Boolean)` so empty entries are dropped from the
+ * generated handler map. The earlier shape was `${method}?: never`, which read
+ * as "calling this here is a type error" but in practice produced useless rows
+ * on `FrontendActionHandlers` for methods that don't belong on this side at
+ * all — drop the row instead so the typed surface only carries methods the
+ * executor actually handles.
+ *
  * @param options.action_event_type - custom type name to use instead of `ActionEvent`
  *   (consumers can define a narrowed type that carries typed input/output via their codegen maps)
  * @param options.collections_path - import path the side-effect `ActionOutputs` import
@@ -151,19 +160,28 @@ export declare const to_action_spec_output_identifier: (method: string) => strin
  * failure). Earlier emit shapes declared notifications as `=> void` —
  * regenerate consumer typed clients to pick up the corrected return.
  *
- * Consumers must import `ActionInputs`, `ActionOutputs`, `Result`,
- * `JsonrpcErrorObject`, and (for async) `RpcClientCallOptions` into the
- * generated module — the helper only emits the type references.
+ * Registers exactly the imports the emitted line references on `imports`:
+ * `ActionInputs` (when the spec has input), `ActionOutputs` (always),
+ * `RpcClientCallOptions` (async only), and `Result` + `JsonrpcErrorObject`
+ * (any return shape that wraps the value in `Result<{value}, {error}>` —
+ * every async method, plus sync `local_call` when `sync_returns_value:
+ * false`). Mirrors the leaf-level pattern `get_handler_return_type` already
+ * follows so wrappers no longer pre-register imports a per-spec emit might
+ * not actually use.
  *
  * @param spec - the action spec to emit
+ * @param imports - import builder to register references on
  * @param options.sync_returns_value - when true (default), sync local_call
  *   methods return the output value directly; when false they're wrapped in
  *   `Result<{value, error}>` like async methods. Set to `false` if your
  *   FrontendActionsApi treats every method uniformly.
+ * @param options.collections_path - import path that `ActionInputs` /
+ *   `ActionOutputs` resolve to. Defaults to `'./action_collections.js'`.
  * @returns one line like `foo: (input: ActionInputs['foo'], options?: RpcClientCallOptions) => Promise<Result<...>>;`
  */
-export declare const generate_actions_api_method_signature: (spec: ActionSpecUnion, options?: {
+export declare const generate_actions_api_method_signature: (spec: ActionSpecUnion, imports: ImportBuilder, options?: {
     sync_returns_value?: boolean;
+    collections_path?: string;
 }) => string;
 /** Discriminator for `generate_action_method_enums` — which method-set enums to emit. */
 export type ActionMethodEnumKind = 'all' | 'request_response' | 'remote_notification' | 'local_call' | 'frontend' | 'backend' | 'frontend_handled' | 'backend_handled' | 'broadcast';
@@ -300,8 +318,11 @@ export declare const generate_action_event_datas: (specs: ReadonlyArray<ActionSp
  * (e.g. omit additional methods alongside the default protocol-action
  * filter) via `method_filter`.
  *
- * Adds the `Result`, `JsonrpcErrorObject`, and `RpcClientCallOptions` type
- * imports plus `ActionInputs` / `ActionOutputs` (sourced from `collections_path`).
+ * Imports are registered by the leaf `generate_actions_api_method_signature`
+ * per emitted line — only what the spec set actually references shows up on
+ * `imports`. A spec set with no async methods skips `RpcClientCallOptions`;
+ * one with no inputs skips `ActionInputs`; sync `local_call` methods with
+ * `sync_returns_value: true` (the default) skip `Result` / `JsonrpcErrorObject`.
  *
  * The interface name is fixed at `FrontendActionsApi` — the symmetric counterpart
  * of `BackendActionsApi`. Earlier consumer-named variants (`MyActionsApi`,

package/dist/actions/action_codegen.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"action_codegen.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/actions/action_codegen.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAC,eAAe,EAAE,gBAAgB,EAAC,MAAM,kBAAkB,CAAC;AAGxE;;;;;;;GAOG;AACH,eAAO,MAAM,uBAAuB,kCAAmC,CAAC;AAExE,8FAA8F;AAC9F,MAAM,MAAM,oBAAoB,GAAG,CAAC,OAAO,uBAAuB,CAAC,CAAC,MAAM,CAAC,CAAC;AAI5E;;;;;;;;;;GAUG;AACH,eAAO,MAAM,yBAAyB,GAAI,QAAQ,MAAM,KAAG,MAAM,IAAI,oBACrC,CAAC;AAEjC;;GAEG;AACH,UAAU,UAAU;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,GAAG,OAAO,GAAG,WAAW,CAAC;CACrC;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,qBAAa,aAAa;;IACzB,OAAO,EAAE,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAa;IAE1D;;;;OAIG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAQrC;;;;OAIG;IACH,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAI1C;;OAEG;IACH,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,IAAI;IAOrD;;OAEG;IACH,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,IAAI;IAgCtD;;;OAGG;IACH,KAAK,IAAI,MAAM;IAIf;;OAEG;IACH,WAAW,IAAI,OAAO;IAItB;;OAEG;IACH,IAAI,YAAY,IAAI,MAAM,CAEzB;IAED;;;OAGG;IACH,OAAO,IAAI,KAAK,CAAC,MAAM,CAAC;IAIxB;;OAEG;IACH,KAAK,IAAI,IAAI;CAqDb;AAED;;GAEG;AACH,eAAO,MAAM,mBAAmB,GAC/B,MAAM,eAAe,EACrB,UAAU,UAAU,GAAG,SAAS,KAC9B,KAAK,CAAC,gBAAgB,CA4DxB,CAAC;AAEF,gHAAgH;AAChH,eAAO,MAAM,wBAAwB,4BAA4B,CAAC;AAElE,4FAA4F;AAC5F,eAAO,MAAM,oBAAoB,sBAAsB,CAAC;AAExD,sGAAsG;AACtG,eAAO,MAAM,sBAAsB,0BAA0B,CAAC;AAE9D;;;;GAIG;AACH,eAAO,MAAM,uBAAuB,GACnC,MAAM,eAAe,EACrB,OAAO,gBAAgB,EACvB,SAAS,aAAa,EACtB,mBAAkB,MAAiC,KACjD,MAkBF,CAAC;AAEF;;;;;;;;GAQG;AACH,eAAO,MAAM,uBAAuB,GACnC,MAAM,eAAe,EACrB,UAAU,UAAU,GAAG,SAAS,EAChC,SAAS,aAAa,EACtB,UAAU;IAAC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CAAC,KAC/D,MA2BF,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa,GAAI,aAAa,MAAM,KAAG,MACU,CAAC;AAG/D,eAAO,MAAM,yBAAyB,GAAI,QAAQ,MAAM,KAAG,MAAiC,CAAC;AAC7F,eAAO,MAAM,+BAA+B,GAAI,QAAQ,MAAM,KAAG,MACpB,CAAC;AAC9C,eAAO,MAAM,gCAAgC,GAAI,QAAQ,MAAM,KAAG,MACpB,CAAC;AAE/C;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,eAAO,MAAM,qCAAqC,GACjD,MAAM,eAAe,EACrB,UAAU;IAAC,kBAAkB,CAAC,EAAE,OAAO,CAAA;CAAC,KACtC,MAoBF,CAAC;AA0CF,yFAAyF;AACzF,MAAM,MAAM,oBAAoB,GAC7B,KAAK,GACL,kBAAkB,GAClB,qBAAqB,GACrB,YAAY,GACZ,UAAU,GACV,SAAS,GACT,kBAAkB,GAClB,iBAAiB,GACjB,WAAW,CAAC;AAEf,0CAA0C;AAC1C,eAAO,MAAM,4BAA4B,EAAE,WAAW,CAAC,oBAAoB,CAUzE,CAAC;AAsCH;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,eAAO,MAAM,4BAA4B,GACxC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IAAC,IAAI,CAAC,EAAE,WAAW,CAAC,oBAAoB,CAAC,CAAC;IAAC,wBAAwB,CAAC,EAAE,OAAO,CAAA;CAAC,KACtF,MAiFF,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,iCAAiC,GAC7C,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,SAAS;IACR,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,OAAO,CAAC;IAC9C,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAMF,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,iCAAiC,GAC7C,SAAS,aAAa,EACtB,UAAU;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAAC,cAAc,CAAC,EAAE,MAAM,CAAA;CAAC,KAC5D,MAcF,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,4BAA4B,GACxC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IACjD,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAkCF,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,8BAA8B,GAC1C,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IACjD,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MA0DF,CAAC;AAEF;;;;;;;;;;;;;;;;;;;GAmBG;AACH,eAAO,MAAM,2BAA2B,GACvC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IAAC,SAAS,CAAC,EAAE,OAAO,CAAC;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAAC,wBAAwB,CAAC,EAAE,OAAO,CAAA;CAAC,KAC5F,MA0CF,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,6BAA6B,GACzC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,aAAa,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,OAAO,CAAC;IACnD,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAwCF,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,iCAAiC,GAC7C,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAAC,wBAAwB,CAAC,EAAE,OAAO,CAAA;CAAC,KACvE,MA+BF,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,eAAO,MAAM,4BAA4B,GACxC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IACjD,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAwCF,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,eAAO,MAAM,oCAAoC,GAChD,SAAS,aAAa,EACtB,UAAU;IACT,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;CACxB,KACC,MAqBF,CAAC;AAMF;;;;;GAKG;AACH,MAAM,WAAW,UAAU;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,aAAa,CAAC,eAAe,CAAC,CAAC;CACtC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AACH,eAAO,MAAM,0BAA0B,GACtC,SAAS,aAAa,CAAC,UAAU,CAAC,EAClC,SAAS,aAAa,KACpB;IACF,YAAY,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IAChD,SAAS,EAAE,aAAa,CAAC,eAAe,CAAC,CAAC;CA6B1C,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,eAAO,MAAM,gBAAgB,GAAI,OAAO;IACvC,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,aAAa,CAAC;IACvB,MAAM,EAAE,aAAa,CAAC,MAAM,CAAC,CAAC;CAC9B,KAAG,MAYH,CAAC"}
+{"version":3,"file":"action_codegen.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/actions/action_codegen.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAC,eAAe,EAAE,gBAAgB,EAAC,MAAM,kBAAkB,CAAC;AAGxE;;;;;;;GAOG;AACH,eAAO,MAAM,uBAAuB,kCAAmC,CAAC;AAExE,8FAA8F;AAC9F,MAAM,MAAM,oBAAoB,GAAG,CAAC,OAAO,uBAAuB,CAAC,CAAC,MAAM,CAAC,CAAC;AAI5E;;;;;;;;;;GAUG;AACH,eAAO,MAAM,yBAAyB,GAAI,QAAQ,MAAM,KAAG,MAAM,IAAI,oBACrC,CAAC;AAEjC;;GAEG;AACH,UAAU,UAAU;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,GAAG,OAAO,GAAG,WAAW,CAAC;CACrC;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,qBAAa,aAAa;;IACzB,OAAO,EAAE,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAa;IAE1D;;;;OAIG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAQrC;;;;OAIG;IACH,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAI1C;;OAEG;IACH,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,IAAI;IAOrD;;OAEG;IACH,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,IAAI;IAgCtD;;;OAGG;IACH,KAAK,IAAI,MAAM;IAIf;;OAEG;IACH,WAAW,IAAI,OAAO;IAItB;;OAEG;IACH,IAAI,YAAY,IAAI,MAAM,CAEzB;IAED;;;OAGG;IACH,OAAO,IAAI,KAAK,CAAC,MAAM,CAAC;IAIxB;;OAEG;IACH,KAAK,IAAI,IAAI;CAqDb;AAED;;GAEG;AACH,eAAO,MAAM,mBAAmB,GAC/B,MAAM,eAAe,EACrB,UAAU,UAAU,GAAG,SAAS,KAC9B,KAAK,CAAC,gBAAgB,CA4DxB,CAAC;AAEF,gHAAgH;AAChH,eAAO,MAAM,wBAAwB,4BAA4B,CAAC;AAElE,4FAA4F;AAC5F,eAAO,MAAM,oBAAoB,sBAAsB,CAAC;AAExD,sGAAsG;AACtG,eAAO,MAAM,sBAAsB,0BAA0B,CAAC;AAE9D;;;;GAIG;AACH,eAAO,MAAM,uBAAuB,GACnC,MAAM,eAAe,EACrB,OAAO,gBAAgB,EACvB,SAAS,aAAa,EACtB,mBAAkB,MAAiC,KACjD,MAkBF,CAAC;AAEF;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,uBAAuB,GACnC,MAAM,eAAe,EACrB,UAAU,UAAU,GAAG,SAAS,EAChC,SAAS,aAAa,EACtB,UAAU;IAAC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CAAC,KAC/D,MA2BF,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa,GAAI,aAAa,MAAM,KAAG,MACU,CAAC;AAG/D,eAAO,MAAM,yBAAyB,GAAI,QAAQ,MAAM,KAAG,MAAiC,CAAC;AAC7F,eAAO,MAAM,+BAA+B,GAAI,QAAQ,MAAM,KAAG,MACpB,CAAC;AAC9C,eAAO,MAAM,gCAAgC,GAAI,QAAQ,MAAM,KAAG,MACpB,CAAC;AAE/C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AACH,eAAO,MAAM,qCAAqC,GACjD,MAAM,eAAe,EACrB,SAAS,aAAa,EACtB,UAAU;IAAC,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CAAC,KACjE,MA+BF,CAAC;AA0CF,yFAAyF;AACzF,MAAM,MAAM,oBAAoB,GAC7B,KAAK,GACL,kBAAkB,GAClB,qBAAqB,GACrB,YAAY,GACZ,UAAU,GACV,SAAS,GACT,kBAAkB,GAClB,iBAAiB,GACjB,WAAW,CAAC;AAEf,0CAA0C;AAC1C,eAAO,MAAM,4BAA4B,EAAE,WAAW,CAAC,oBAAoB,CAUzE,CAAC;AAsCH;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,eAAO,MAAM,4BAA4B,GACxC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IAAC,IAAI,CAAC,EAAE,WAAW,CAAC,oBAAoB,CAAC,CAAC;IAAC,wBAAwB,CAAC,EAAE,OAAO,CAAA;CAAC,KACtF,MAiFF,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,iCAAiC,GAC7C,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,SAAS;IACR,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,OAAO,CAAC;IAC9C,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAMF,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,iCAAiC,GAC7C,SAAS,aAAa,EACtB,UAAU;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAAC,cAAc,CAAC,EAAE,MAAM,CAAA;CAAC,KAC5D,MAcF,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,4BAA4B,GACxC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IACjD,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAkCF,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,8BAA8B,GAC1C,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IACjD,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MA0DF,CAAC;AAEF;;;;;;;;;;;;;;;;;;;GAmBG;AACH,eAAO,MAAM,2BAA2B,GACvC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IAAC,SAAS,CAAC,EAAE,OAAO,CAAC;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAAC,wBAAwB,CAAC,EAAE,OAAO,CAAA;CAAC,KAC5F,MA0CF,CAAC;AAEF;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,6BAA6B,GACzC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,aAAa,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,OAAO,CAAC;IACnD,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAmCF,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,iCAAiC,GAC7C,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAAC,wBAAwB,CAAC,EAAE,OAAO,CAAA;CAAC,KACvE,MA+BF,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,eAAO,MAAM,4BAA4B,GACxC,OAAO,aAAa,CAAC,eAAe,CAAC,EACrC,SAAS,aAAa,EACtB,UAAU;IACT,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IACjD,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACnC,KACC,MAwCF,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,eAAO,MAAM,oCAAoC,GAChD,SAAS,aAAa,EACtB,UAAU;IACT,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;CACxB,KACC,MAqBF,CAAC;AAMF;;;;;GAKG;AACH,MAAM,WAAW,UAAU;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,aAAa,CAAC,eAAe,CAAC,CAAC;CACtC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AACH,eAAO,MAAM,0BAA0B,GACtC,SAAS,aAAa,CAAC,UAAU,CAAC,EAClC,SAAS,aAAa,KACpB;IACF,YAAY,EAAE,CAAC,IAAI,EAAE,eAAe,KAAK,MAAM,CAAC;IAChD,SAAS,EAAE,aAAa,CAAC,eAAe,CAAC,CAAC;CA6B1C,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,eAAO,MAAM,gBAAgB,GAAI,OAAO;IACvC,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,aAAa,CAAC;IACvB,MAAM,EAAE,aAAa,CAAC,MAAM,CAAC,CAAC;CAC9B,KAAG,MAYH,CAAC"}

package/dist/actions/action_codegen.js

@@ -278,6 +278,15 @@ export const get_handler_return_type = (spec, phase, imports, collections_path =
  * Generates the phase handlers for an action spec using the unified ActionEvent type
  * with the new phase/step type parameters.
  *
+ * Returns `''` when the spec contributes no phases on the given executor side
+ * (e.g. a backend-only `local_call` asked for `'frontend'`). Upstream wrappers
+ * compose blocks with `.filter(Boolean)` so empty entries are dropped from the
+ * generated handler map. The earlier shape was `${method}?: never`, which read
+ * as "calling this here is a type error" but in practice produced useless rows
+ * on `FrontendActionHandlers` for methods that don't belong on this side at
+ * all — drop the row instead so the typed surface only carries methods the
+ * executor actually handles.
+ *
  * @param options.action_event_type - custom type name to use instead of `ActionEvent`
  *   (consumers can define a narrowed type that carries typed input/output via their codegen maps)
  * @param options.collections_path - import path the side-effect `ActionOutputs` import
@@ -287,7 +296,7 @@ export const generate_phase_handlers = (spec, executor, imports, options) => {
     const { method } = spec;
     const phases = get_executor_phases(spec, executor);
     if (phases.length === 0) {
-        return `${method}?: never`;
+        return '';
     }
     const action_event_type = options?.action_event_type ?? 'ActionEvent';
     const collections_path = options?.collections_path ?? DEFAULT_COLLECTIONS_PATH;
@@ -331,32 +340,52 @@ export const to_action_spec_output_identifier = (method) => `${to_action_spec_id
  * failure). Earlier emit shapes declared notifications as `=> void` —
  * regenerate consumer typed clients to pick up the corrected return.
  *
- * Consumers must import `ActionInputs`, `ActionOutputs`, `Result`,
- * `JsonrpcErrorObject`, and (for async) `RpcClientCallOptions` into the
- * generated module — the helper only emits the type references.
+ * Registers exactly the imports the emitted line references on `imports`:
+ * `ActionInputs` (when the spec has input), `ActionOutputs` (always),
+ * `RpcClientCallOptions` (async only), and `Result` + `JsonrpcErrorObject`
+ * (any return shape that wraps the value in `Result<{value}, {error}>` —
+ * every async method, plus sync `local_call` when `sync_returns_value:
+ * false`). Mirrors the leaf-level pattern `get_handler_return_type` already
+ * follows so wrappers no longer pre-register imports a per-spec emit might
+ * not actually use.
  *
  * @param spec - the action spec to emit
+ * @param imports - import builder to register references on
  * @param options.sync_returns_value - when true (default), sync local_call
  *   methods return the output value directly; when false they're wrapped in
  *   `Result<{value, error}>` like async methods. Set to `false` if your
  *   FrontendActionsApi treats every method uniformly.
+ * @param options.collections_path - import path that `ActionInputs` /
+ *   `ActionOutputs` resolve to. Defaults to `'./action_collections.js'`.
  * @returns one line like `foo: (input: ActionInputs['foo'], options?: RpcClientCallOptions) => Promise<Result<...>>;`
  */
-export const generate_actions_api_method_signature = (spec, options) => {
+export const generate_actions_api_method_signature = (spec, imports, options) => {
     const sync_returns_value = options?.sync_returns_value ?? true;
+    const collections_path = options?.collections_path ?? DEFAULT_COLLECTIONS_PATH;
     const innermost_type_name = zod_get_base_type(spec.input);
     const has_input = innermost_type_name !== 'null' && innermost_type_name !== 'void';
     const input_param = has_input
         ? `input${spec.input.safeParse(undefined).success ? '?' : ''}: ActionInputs['${spec.method}']`
         : 'input?: void';
+    if (has_input)
+        imports.add_type(collections_path, 'ActionInputs');
+    imports.add_type(collections_path, 'ActionOutputs');
     const is_async = spec.kind === 'request_response' || spec.kind === 'remote_notification' || spec.async;
     const options_param = is_async ? ', options?: RpcClientCallOptions' : '';
+    if (is_async) {
+        imports.add_type('@fuzdev/fuz_app/actions/rpc_client.js', 'RpcClientCallOptions');
+    }
     const result_return = `Result<{value: ActionOutputs['${spec.method}']}, {error: JsonrpcErrorObject}>`;
     const return_type = is_async
         ? `Promise<${result_return}>`
         : sync_returns_value
             ? `ActionOutputs['${spec.method}']`
             : result_return;
+    const wraps_in_result = is_async || !sync_returns_value;
+    if (wraps_in_result) {
+        imports.add_type('@fuzdev/fuz_util/result.js', 'Result');
+        imports.add_type('@fuzdev/fuz_app/http/jsonrpc.js', 'JsonrpcErrorObject');
+    }
     return `${spec.method}: (${input_param}${options_param}) => ${return_type};`;
 };
 // --------------------------------------------------------------------------
@@ -711,8 +740,11 @@ ${lines.join('\n')}
  * (e.g. omit additional methods alongside the default protocol-action
  * filter) via `method_filter`.
  *
- * Adds the `Result`, `JsonrpcErrorObject`, and `RpcClientCallOptions` type
- * imports plus `ActionInputs` / `ActionOutputs` (sourced from `collections_path`).
+ * Imports are registered by the leaf `generate_actions_api_method_signature`
+ * per emitted line — only what the spec set actually references shows up on
+ * `imports`. A spec set with no async methods skips `RpcClientCallOptions`;
+ * one with no inputs skips `ActionInputs`; sync `local_call` methods with
+ * `sync_returns_value: true` (the default) skip `Result` / `JsonrpcErrorObject`.
  *
  * The interface name is fixed at `FrontendActionsApi` — the symmetric counterpart
  * of `BackendActionsApi`. Earlier consumer-named variants (`MyActionsApi`,
@@ -738,14 +770,10 @@ export const generate_frontend_actions_api = (specs, imports, options) => {
         return `${interface_doc}
 export interface FrontendActionsApi {}`;
     }
-    const collections_path = options?.collections_path ?? DEFAULT_COLLECTIONS_PATH;
-    imports.add_type('@fuzdev/fuz_util/result.js', 'Result');
-    imports.add_type('@fuzdev/fuz_app/http/jsonrpc.js', 'JsonrpcErrorObject');
-    imports.add_type('@fuzdev/fuz_app/actions/rpc_client.js', 'RpcClientCallOptions');
-    imports.add_types(collections_path, 'ActionInputs', 'ActionOutputs');
     const lines = filtered
-        .map((spec) => generate_actions_api_method_signature(spec, {
+        .map((spec) => generate_actions_api_method_signature(spec, imports, {
         sync_returns_value: options?.sync_returns_value,
+        collections_path: options?.collections_path,
     }))
         .map((line) => `\t${line}`)
         .join('\n');

package/dist/actions/action_registry.d.ts

@@ -17,7 +17,7 @@
  *
  * Cache discipline: `spec_by_method` (Map) and the internal streams-target
  * set lazy-memoize because the Map is consulted per-RPC dispatch
- * (`frontend_rpc_client.ts` wires it into `lookup_action_spec`) and the
+ * (`actions/frontend_rpc_client.ts` wires it into `lookup_action_spec`) and the
  * streams set is rebuilt by two public getters. Array-returning getters
  * recompute on each call so callers can mutate the result freely
  * (`.sort()`, `.push(injected)` on a copy, etc.) without affecting the

package/dist/actions/action_registry.js

@@ -17,7 +17,7 @@
  *
  * Cache discipline: `spec_by_method` (Map) and the internal streams-target
  * set lazy-memoize because the Map is consulted per-RPC dispatch
- * (`frontend_rpc_client.ts` wires it into `lookup_action_spec`) and the
+ * (`actions/frontend_rpc_client.ts` wires it into `lookup_action_spec`) and the
  * streams set is rebuilt by two public getters. Array-returning getters
  * recompute on each call so callers can mutate the result freely
  * (`.sort()`, `.push(injected)` on a copy, etc.) without affecting the

package/dist/actions/action_spec.d.ts

@@ -3,7 +3,7 @@
  *
  * Extracted from zzz's action system. Action specs define method, kind,
  * auth, side effects, and input/output schemas. Bridge functions in
- * `action_bridge.ts` derive `RouteSpec` and `EventSpec` from them.
+ * `actions/action_bridge.ts` derive `RouteSpec` and `EventSpec` from them.
  *
  * TODO @action-system-review The action system (action_spec, action_registry,
  * action_codegen, action_bridge) will evolve significantly as RPC patterns settle.

package/dist/actions/action_spec.js

@@ -3,7 +3,7 @@
  *
  * Extracted from zzz's action system. Action specs define method, kind,
  * auth, side effects, and input/output schemas. Bridge functions in
- * `action_bridge.ts` derive `RouteSpec` and `EventSpec` from them.
+ * `actions/action_bridge.ts` derive `RouteSpec` and `EventSpec` from them.
  *
  * TODO @action-system-review The action system (action_spec, action_registry,
  * action_codegen, action_bridge) will evolve significantly as RPC patterns settle.

package/dist/actions/action_types.d.ts

@@ -1,8 +1,8 @@
 /**
  * Shared type surface for the action system — context, handler, composable Action tuple.
  *
- * These types sit above `action_spec.ts` (pure Zod schemas) and below the
- * dispatchers (`register_action_ws.ts`, `action_rpc.ts`). Extracted so the
+ * These types sit above `actions/action_spec.ts` (pure Zod schemas) and below the
+ * dispatchers (`actions/register_action_ws.ts`, `actions/action_rpc.ts`). Extracted so the
  * shared protocol actions (e.g. `heartbeat_action`) can name them without
  * pulling in server-only modules.
  *

package/dist/actions/action_types.js

@@ -1,8 +1,8 @@
 /**
  * Shared type surface for the action system — context, handler, composable Action tuple.
  *
- * These types sit above `action_spec.ts` (pure Zod schemas) and below the
- * dispatchers (`register_action_ws.ts`, `action_rpc.ts`). Extracted so the
+ * These types sit above `actions/action_spec.ts` (pure Zod schemas) and below the
+ * dispatchers (`actions/register_action_ws.ts`, `actions/action_rpc.ts`). Extracted so the
  * shared protocol actions (e.g. `heartbeat_action`) can name them without
  * pulling in server-only modules.
  *

package/dist/actions/cancel.d.ts

@@ -14,7 +14,7 @@
  * handler). The handler exists for symmetry with other protocol actions
  * like `heartbeat_action`; the dispatcher never calls it. Consumers
  * spread `cancel_action` (or the `protocol_actions` bundle from
- * `./protocol.js`) into their server's `actions` array so `spec_by_method`
+ * `actions/protocol.ts`) into their server's `actions` array so `spec_by_method`
  * knows about it (enabling input validation on incoming cancels) and so
  * `create_rpc_client` codegen produces `app.api.cancel()` when desired —
  * though `FrontendWebsocketClient.request({signal})` sends the cancel on
@@ -69,7 +69,7 @@ export declare const cancel_action_spec: {
 export declare const cancel_handler: () => void;
 /**
  * Protocol-action tuple — spread into the server's `actions` array (or via
- * `protocol_actions` from `./protocol.js`) so the dispatcher registers the
+ * `protocol_actions` from `actions/protocol.ts`) so the dispatcher registers the
  * spec for input validation and so `create_rpc_client` codegen sees the
  * method. The client doesn't need to call it directly;
  * `FrontendWebsocketClient.request({signal})` sends the cancel notification

package/dist/actions/cancel.js

@@ -14,7 +14,7 @@
  * handler). The handler exists for symmetry with other protocol actions
  * like `heartbeat_action`; the dispatcher never calls it. Consumers
  * spread `cancel_action` (or the `protocol_actions` bundle from
- * `./protocol.js`) into their server's `actions` array so `spec_by_method`
+ * `actions/protocol.ts`) into their server's `actions` array so `spec_by_method`
  * knows about it (enabling input validation on incoming cancels) and so
  * `create_rpc_client` codegen produces `app.api.cancel()` when desired —
  * though `FrontendWebsocketClient.request({signal})` sends the cancel on
@@ -66,7 +66,7 @@ export const cancel_action_spec = {
 export const cancel_handler = () => { }; // eslint-disable-line @typescript-eslint/no-empty-function
 /**
  * Protocol-action tuple — spread into the server's `actions` array (or via
- * `protocol_actions` from `./protocol.js`) so the dispatcher registers the
+ * `protocol_actions` from `actions/protocol.ts`) so the dispatcher registers the
  * spec for input validation and so `create_rpc_client` codegen sees the
  * method. The client doesn't need to call it directly;
  * `FrontendWebsocketClient.request({signal})` sends the cancel notification

package/dist/actions/heartbeat.d.ts

@@ -1,7 +1,7 @@
 /**
  * Shared heartbeat action — a fuz_app protocol action carrying both a spec
  * and a handler in one tuple. Consumers spread `heartbeat_action` (or the
- * `protocol_actions` bundle from `./protocol.js`) into the server's
+ * `protocol_actions` bundle from `actions/protocol.ts`) into the server's
  * `actions` array so disconnect detection works identically across every
  * repo without per-consumer ping plumbing.
  *
@@ -39,7 +39,7 @@ export declare const heartbeat_action_spec: {
 export declare const heartbeat_handler: () => Record<string, never>;
 /**
  * Protocol-action tuple — spread into the server's `actions` array for
- * dispatch (or via `protocol_actions` from `./protocol.js`) so the
+ * dispatch (or via `protocol_actions` from `actions/protocol.ts`) so the
  * dispatcher resolves the heartbeat handler. The frontend-side spread
  * happens via `protocol_action_specs` — the client doesn't run the echo
  * handler, but the spec must be in `ActionRegistry` so `create_rpc_client`

package/dist/actions/heartbeat.js

@@ -1,7 +1,7 @@
 /**
  * Shared heartbeat action — a fuz_app protocol action carrying both a spec
  * and a handler in one tuple. Consumers spread `heartbeat_action` (or the
- * `protocol_actions` bundle from `./protocol.js`) into the server's
+ * `protocol_actions` bundle from `actions/protocol.ts`) into the server's
  * `actions` array so disconnect detection works identically across every
  * repo without per-consumer ping plumbing.
  *
@@ -38,7 +38,7 @@ export const heartbeat_action_spec = {
 export const heartbeat_handler = () => ({});
 /**
  * Protocol-action tuple — spread into the server's `actions` array for
- * dispatch (or via `protocol_actions` from `./protocol.js`) so the
+ * dispatch (or via `protocol_actions` from `actions/protocol.ts`) so the
  * dispatcher resolves the heartbeat handler. The frontend-side spread
  * happens via `protocol_action_specs` — the client doesn't run the echo
  * handler, but the spec must be in `ActionRegistry` so `create_rpc_client`

package/dist/actions/protocol.d.ts

@@ -7,7 +7,7 @@
  * fuz_app, not consumer domain logic. The split is intentional: the server
  * needs `{spec, handler}` tuples to drive dispatch; the frontend
  * `ActionRegistry` only stores specs. The codegen
- * `include_protocol_actions: false` default (in `action_codegen.ts`) is the
+ * `include_protocol_actions: false` default (in `actions/action_codegen.ts`) is the
  * third leg of this contract — protocol actions are excluded from
  * generated typed surfaces because consumers spread them in at
  * registration time.

package/dist/actions/protocol.js

@@ -7,7 +7,7 @@
  * fuz_app, not consumer domain logic. The split is intentional: the server
  * needs `{spec, handler}` tuples to drive dispatch; the frontend
  * `ActionRegistry` only stores specs. The codegen
- * `include_protocol_actions: false` default (in `action_codegen.ts`) is the
+ * `include_protocol_actions: false` default (in `actions/action_codegen.ts`) is the
  * third leg of this contract — protocol actions are excluded from
  * generated typed surfaces because consumers spread them in at
  * registration time.

package/dist/actions/register_action_ws.d.ts

@@ -157,7 +157,7 @@ export interface RegisterActionWsResult {
  * - Per-action auth: `public` / `authenticated` pass through (upgrade auth
  *   already verified identity); `keeper` requires `daemon_token` credential
  *   type *and* the keeper role; role-based `{role}` requires the named role
- *   via `has_role`, matching the HTTP path in `action_rpc.ts`.
+ *   via `has_role`, matching the HTTP path in `actions/action_rpc.ts`.
  * - DEV mode validates handler output against the spec's `output` schema and
  *   warns on mismatches.
  *

package/dist/actions/register_action_ws.js

@@ -55,7 +55,7 @@ export const DEFAULT_SERVER_HEARTBEAT_TIMEOUT = 60_000;
  * - Per-action auth: `public` / `authenticated` pass through (upgrade auth
  *   already verified identity); `keeper` requires `daemon_token` credential
  *   type *and* the keeper role; role-based `{role}` requires the named role
- *   via `has_role`, matching the HTTP path in `action_rpc.ts`.
+ *   via `has_role`, matching the HTTP path in `actions/action_rpc.ts`.
  * - DEV mode validates handler output against the spec's `output` schema and
  *   warns on mismatches.
  *

package/dist/auth/account_routes.d.ts

@@ -4,7 +4,7 @@
  * Returns `RouteSpec[]` — caller applies them to Hono via `apply_route_specs`.
  *
  * Four REST flows remain here; each has a concrete reason to stay REST
- * rather than moving to `account_actions.ts`:
+ * rather than moving to `auth/account_actions.ts`:
  *
  * - `POST /login` — issues a signed `Set-Cookie` and pre-handler rate-limits
  *   by IP + per-canonical-account before password hashing.
@@ -15,7 +15,7 @@
  *   callers should use the `account_verify` RPC action for the typed payload.
  *
  * Session listing/revocation and API token CRUD are on the RPC endpoint —
- * see `account_actions.ts`. Signup is in `signup_routes.ts`. Defaults are
+ * see `auth/account_actions.ts`. Signup is in `auth/signup_routes.ts`. Defaults are
  * closed/safe: accounts are created through bootstrap, admin action, or
  * invite.
  *
@@ -184,7 +184,7 @@ export type PasswordChangeOutput = z.infer<typeof PasswordChangeOutput>;
  *
  * The returned specs cover the three flows that stay REST after the RPC
  * migration (login, logout, password change). Self-service session/token
- * management and verify are on `account_actions.ts`.
+ * management and verify are on `auth/account_actions.ts`.
  *
  * @param deps - stateless capabilities (keyring, password, log)
  * @param options - per-factory configuration (session_options, ip_rate_limiter, login_account_rate_limiter)

package/dist/auth/account_routes.js

@@ -4,7 +4,7 @@
  * Returns `RouteSpec[]` — caller applies them to Hono via `apply_route_specs`.
  *
  * Four REST flows remain here; each has a concrete reason to stay REST
- * rather than moving to `account_actions.ts`:
+ * rather than moving to `auth/account_actions.ts`:
  *
  * - `POST /login` — issues a signed `Set-Cookie` and pre-handler rate-limits
  *   by IP + per-canonical-account before password hashing.
@@ -15,7 +15,7 @@
  *   callers should use the `account_verify` RPC action for the typed payload.
  *
  * Session listing/revocation and API token CRUD are on the RPC endpoint —
- * see `account_actions.ts`. Signup is in `signup_routes.ts`. Defaults are
+ * see `auth/account_actions.ts`. Signup is in `auth/signup_routes.ts`. Defaults are
  * closed/safe: accounts are created through bootstrap, admin action, or
  * invite.
  *
@@ -167,7 +167,7 @@ export const PasswordChangeOutput = z.strictObject({
  *
  * The returned specs cover the three flows that stay REST after the RPC
  * migration (login, logout, password change). Self-service session/token
- * management and verify are on `account_actions.ts`.
+ * management and verify are on `auth/account_actions.ts`.
  *
  * @param deps - stateless capabilities (keyring, password, log)
  * @param options - per-factory configuration (session_options, ip_rate_limiter, login_account_rate_limiter)

package/dist/auth/account_schema.d.ts

@@ -4,7 +4,7 @@
  * Defines the runtime types for the fuz identity system:
  * `Account`, `Actor`, `Permit`, `AuthSession`, and `ApiToken`.
  *
- * DDL lives in `ddl.ts`; role system in `role_schema.ts`.
+ * DDL lives in `auth/ddl.ts`; role system in `auth/role_schema.ts`.
  * See docs/identity.md for design rationale.
  *
  * @module

package/dist/auth/account_schema.js

@@ -4,7 +4,7 @@
  * Defines the runtime types for the fuz identity system:
  * `Account`, `Actor`, `Permit`, `AuthSession`, and `ApiToken`.
  *
- * DDL lives in `ddl.ts`; role system in `role_schema.ts`.
+ * DDL lives in `auth/ddl.ts`; role system in `auth/role_schema.ts`.
  * See docs/identity.md for design rationale.
  *
  * @module

package/dist/auth/api_token.d.ts

@@ -4,7 +4,7 @@
  * Tokens use the format `secret_fuz_token_<base64url>` and are stored
  * as blake3 hashes. These are pure cryptographic operations with no
  * framework dependency — the bearer auth middleware that validates
- * tokens lives in `bearer_auth.ts`.
+ * tokens lives in `auth/bearer_auth.ts`.
  *
  * @module
  */

package/dist/auth/api_token.js

@@ -4,7 +4,7 @@
  * Tokens use the format `secret_fuz_token_<base64url>` and are stored
  * as blake3 hashes. These are pure cryptographic operations with no
  * framework dependency — the bearer auth middleware that validates
- * tokens lives in `bearer_auth.ts`.
+ * tokens lives in `auth/bearer_auth.ts`.
  *
  * @module
  */

package/dist/auth/audit_log_routes.d.ts

@@ -2,7 +2,7 @@
  * Audit log SSE stream route.
  *
  * The two list-reads (`audit_log_list`, `audit_log_permit_history`) moved to
- * RPC in `admin_actions.ts`, and the admin session listing moved to
+ * RPC in `auth/admin_actions.ts`, and the admin session listing moved to
  * `admin_session_list` on the same file. What remains here is the optional
  * `GET /audit-log/stream` SSE route — streams aren't an action-kind, so they
  * stay on REST. The event payload broadcast on the stream surfaces via

package/dist/auth/audit_log_routes.js

@@ -2,7 +2,7 @@
  * Audit log SSE stream route.
  *
  * The two list-reads (`audit_log_list`, `audit_log_permit_history`) moved to
- * RPC in `admin_actions.ts`, and the admin session listing moved to
+ * RPC in `auth/admin_actions.ts`, and the admin session listing moved to
  * `admin_session_list` on the same file. What remains here is the optional
  * `GET /audit-log/stream` SSE route — streams aren't an action-kind, so they
  * stay on REST. The event payload broadcast on the stream surfaces via

package/dist/auth/audit_log_schema.d.ts

@@ -242,7 +242,7 @@ export interface CreateAuditLogConfigOptions {
      *
      * Collisions with builtin event-type strings throw at construction.
      * Schemas are run via `safeParse` at insert time; mismatches log + count
-     * but never throw (fail-open — see the drift counters in `audit_log_queries.ts`).
+     * but never throw (fail-open — see the drift counters in `auth/audit_log_queries.ts`).
      */
     extra_events?: Readonly<Record<string, z.ZodType | null>>;
 }

package/dist/auth/daemon_token.d.ts

@@ -3,7 +3,7 @@
  *
  * Pure auth operations with no I/O or state management.
  * The middleware, rotation, and persistence logic lives in
- * `daemon_token_middleware.ts`.
+ * `auth/daemon_token_middleware.ts`.
  *
  * @module
  */

package/dist/auth/daemon_token.js

@@ -3,7 +3,7 @@
  *
  * Pure auth operations with no I/O or state management.
  * The middleware, rotation, and persistence logic lives in
- * `daemon_token_middleware.ts`.
+ * `auth/daemon_token_middleware.ts`.
  *
  * @module
  */

package/dist/auth/daemon_token_middleware.d.ts

@@ -4,7 +4,7 @@
  * Manages the lifecycle of filesystem-resident daemon tokens: writing to disk,
  * rotation on an interval, and HTTP middleware for authentication.
  *
- * Pure token primitives (schema, generation, validation) live in `daemon_token.ts`.
+ * Pure token primitives (schema, generation, validation) live in `auth/daemon_token.ts`.
  * See docs/identity.md for design rationale.
  *
  * @module

package/dist/auth/daemon_token_middleware.js

@@ -4,7 +4,7 @@
  * Manages the lifecycle of filesystem-resident daemon tokens: writing to disk,
  * rotation on an interval, and HTTP middleware for authentication.
  *
- * Pure token primitives (schema, generation, validation) live in `daemon_token.ts`.
+ * Pure token primitives (schema, generation, validation) live in `auth/daemon_token.ts`.
  * See docs/identity.md for design rationale.
  *
  * @module

package/dist/auth/ddl.d.ts

@@ -1,7 +1,7 @@
 /**
  * Auth table DDL — CREATE TABLE, index, and seed statements.
  *
- * Consumed by `migrations.ts`. Separated from `account_schema.ts`
+ * Consumed by `auth/migrations.ts`. Separated from `auth/account_schema.ts`
  * to isolate DDL concerns from runtime types.
  *
  * @module

package/dist/auth/ddl.js

@@ -1,7 +1,7 @@
 /**
  * Auth table DDL — CREATE TABLE, index, and seed statements.
  *
- * Consumed by `migrations.ts`. Separated from `account_schema.ts`
+ * Consumed by `auth/migrations.ts`. Separated from `auth/account_schema.ts`
  * to isolate DDL concerns from runtime types.
  *
  * @module

package/dist/auth/password.d.ts

@@ -2,7 +2,7 @@
  * Password hashing type definitions.
  *
  * Defines the `PasswordHashDeps` injectable interface and `PASSWORD_LENGTH_MIN`.
- * Concrete Argon2id implementation lives in `password_argon2.ts`.
+ * Concrete Argon2id implementation lives in `auth/password_argon2.ts`.
  *
  * @module
  */

package/dist/auth/password.js

@@ -2,7 +2,7 @@
  * Password hashing type definitions.
  *
  * Defines the `PasswordHashDeps` injectable interface and `PASSWORD_LENGTH_MIN`.
- * Concrete Argon2id implementation lives in `password_argon2.ts`.
+ * Concrete Argon2id implementation lives in `auth/password_argon2.ts`.
  *
  * @module
  */

package/dist/auth/route_guards.d.ts

@@ -3,7 +3,7 @@
  *
  * Maps `RouteAuth` discriminants to auth middleware handlers.
  * Injected into `apply_route_specs` to decouple the generic HTTP
- * framework (`route_spec.ts`) from auth-specific middleware.
+ * framework (`http/route_spec.ts`) from auth-specific middleware.
  *
  * @module
  */

package/dist/auth/route_guards.js

@@ -3,7 +3,7 @@
  *
  * Maps `RouteAuth` discriminants to auth middleware handlers.
  * Injected into `apply_route_specs` to decouple the generic HTTP
- * framework (`route_spec.ts`) from auth-specific middleware.
+ * framework (`http/route_spec.ts`) from auth-specific middleware.
  *
  * @module
  */

package/dist/auth/self_service_role_action_specs.d.ts

@@ -3,7 +3,7 @@
  * and the codegen-ready registry.
  *
  * Client-safe: no query-layer or audit-write imports. Handler factory
- * lives in `self_service_role_actions.ts`.
+ * lives in `auth/self_service_role_actions.ts`.
  *
  * @module
  */

package/dist/auth/self_service_role_action_specs.js

@@ -3,7 +3,7 @@
  * and the codegen-ready registry.
  *
  * Client-safe: no query-layer or audit-write imports. Handler factory
- * lives in `self_service_role_actions.ts`.
+ * lives in `auth/self_service_role_actions.ts`.
  *
  * @module
  */

package/dist/auth/self_service_role_actions.d.ts

@@ -25,7 +25,7 @@
  * the existing `permit_offer_create({role})` precedent rather than
  * generating per-role methods.
  *
- * Specs and schemas live in `self_service_role_action_specs.ts` so
+ * Specs and schemas live in `auth/self_service_role_action_specs.ts` so
  * client-side codegen can import the surface without dragging in the
  * query layer.
  *

package/dist/auth/self_service_role_actions.js

@@ -25,7 +25,7 @@
  * the existing `permit_offer_create({role})` precedent rather than
  * generating per-role methods.
  *
- * Specs and schemas live in `self_service_role_action_specs.ts` so
+ * Specs and schemas live in `auth/self_service_role_action_specs.ts` so
  * client-side codegen can import the surface without dragging in the
  * query layer.
  *

package/dist/auth/session_queries.d.ts

@@ -57,7 +57,7 @@ export declare const query_session_touch: (deps: QueryDeps, token_hash: string)
  * The `_unscoped` suffix is the safety signal — there is no `account_id`
  * constraint, so callers must guarantee the hash came from a trusted
  * source (the authenticated session cookie path is the only safe production
- * caller — see `account_routes.ts` `/logout`). For user-facing revocation
+ * caller — see `auth/account_routes.ts` `/logout`). For user-facing revocation
  * of a specific session by ID, use `query_session_revoke_for_account`
  * (IDOR-guarded).
  */

package/dist/auth/session_queries.js

@@ -77,7 +77,7 @@ export const query_session_touch = async (deps, token_hash) => {
  * The `_unscoped` suffix is the safety signal — there is no `account_id`
  * constraint, so callers must guarantee the hash came from a trusted
  * source (the authenticated session cookie path is the only safe production
- * caller — see `account_routes.ts` `/logout`). For user-facing revocation
+ * caller — see `auth/account_routes.ts` `/logout`). For user-facing revocation
  * of a specific session by ID, use `query_session_revoke_for_account`
  * (IDOR-guarded).
  */

package/dist/auth/signup_routes.d.ts

@@ -3,7 +3,7 @@
  *
  * Public endpoint that creates an account. When `open_signup` is disabled
  * (default), a matching unclaimed invite is required. When enabled, anyone
- * can sign up without an invite. Follows the `bootstrap_routes.ts` pattern.
+ * can sign up without an invite. Follows the `auth/bootstrap_routes.ts` pattern.
  *
  * @module
  */

package/dist/auth/signup_routes.js

@@ -3,7 +3,7 @@
  *
  * Public endpoint that creates an account. When `open_signup` is disabled
  * (default), a matching unclaimed invite is required. When enabled, anyone
- * can sign up without an invite. Follows the `bootstrap_routes.ts` pattern.
+ * can sign up without an invite. Follows the `auth/bootstrap_routes.ts` pattern.
  *
  * @module
  */

package/dist/cli/util.d.ts

@@ -1,7 +1,7 @@
 /**
  * CLI utilities for colors, confirmation, and command delegation.
  *
- * For structured CLI logging, see `create_cli_logger` in `logger.ts`.
+ * For structured CLI logging, see `create_cli_logger` in `cli/logger.ts`.
  *
  * @module
  */

package/dist/cli/util.js

@@ -1,7 +1,7 @@
 /**
  * CLI utilities for colors, confirmation, and command delegation.
  *
- * For structured CLI logging, see `create_cli_logger` in `logger.ts`.
+ * For structured CLI logging, see `create_cli_logger` in `cli/logger.ts`.
  *
  * @module
  */

package/dist/db/create_db.d.ts

@@ -8,7 +8,7 @@
  *
  * Both `pg` and `@electric-sql/pglite` are optional peer dependencies,
  * dynamically imported only when needed. For direct driver construction
- * without auto-detection, use `db_pg.ts` or `db_pglite.ts`.
+ * without auto-detection, use `db/db_pg.ts` or `db/db_pglite.ts`.
  *
  * @module
  */
@@ -29,7 +29,7 @@ export interface CreateDbResult {
  * know which driver is in use.
  *
  * For direct driver construction without URL routing, import
- * `create_pg_db` from `db_pg.ts` or `create_pglite_db` from `db_pglite.ts`.
+ * `create_pg_db` from `db/db_pg.ts` or `create_pglite_db` from `db/db_pglite.ts`.
  *
  * @param database_url - connection URL (`postgres://`, `postgresql://`, `file://`, or `memory://`)
  * @returns database instance, close callback, type, and display name

package/dist/db/create_db.js

@@ -8,7 +8,7 @@
  *
  * Both `pg` and `@electric-sql/pglite` are optional peer dependencies,
  * dynamically imported only when needed. For direct driver construction
- * without auto-detection, use `db_pg.ts` or `db_pglite.ts`.
+ * without auto-detection, use `db/db_pg.ts` or `db/db_pglite.ts`.
  *
  * @module
  */
@@ -22,7 +22,7 @@ import { create_pglite_db } from './db_pglite.js';
  * know which driver is in use.
  *
  * For direct driver construction without URL routing, import
- * `create_pg_db` from `db_pg.ts` or `create_pglite_db` from `db_pglite.ts`.
+ * `create_pg_db` from `db/db_pg.ts` or `create_pglite_db` from `db/db_pglite.ts`.
  *
  * @param database_url - connection URL (`postgres://`, `postgresql://`, `file://`, or `memory://`)
  * @returns database instance, close callback, type, and display name

package/dist/db/db.d.ts

@@ -5,7 +5,7 @@
  * Both `pg.Pool` and `@electric-sql/pglite` satisfy this interface.
  *
  * Transaction safety is provided by an injected `transaction` callback —
- * the driver adapters (`db_pg.ts`, `db_pglite.ts`) supply the driver-appropriate
+ * the driver adapters (`db/db_pg.ts`, `db/db_pglite.ts`) supply the driver-appropriate
  * implementation. Close is handled externally (returned alongside the Db
  * as `DbDriverResult`), not as a method on this class.
  *
@@ -55,8 +55,8 @@ export declare const no_nested_transaction: DbDeps['transaction'];
 /**
  * Database wrapper providing a consistent query and transaction interface.
  *
- * Construct via `create_pg_db()` from `db_pg.ts` or `create_pglite_db()` from
- * `db_pglite.ts` for proper transaction support, or via `create_db()` for
+ * Construct via `create_pg_db()` from `db/db_pg.ts` or `create_pglite_db()` from
+ * `db/db_pglite.ts` for proper transaction support, or via `create_db()` for
  * URL-based auto-detection.
  *
  * @example

package/dist/db/db.js

@@ -5,7 +5,7 @@
  * Both `pg.Pool` and `@electric-sql/pglite` satisfy this interface.
  *
  * Transaction safety is provided by an injected `transaction` callback —
- * the driver adapters (`db_pg.ts`, `db_pglite.ts`) supply the driver-appropriate
+ * the driver adapters (`db/db_pg.ts`, `db/db_pglite.ts`) supply the driver-appropriate
  * implementation. Close is handled externally (returned alongside the Db
  * as `DbDriverResult`), not as a method on this class.
  *
@@ -24,8 +24,8 @@ export const no_nested_transaction = () => {
 /**
  * Database wrapper providing a consistent query and transaction interface.
  *
- * Construct via `create_pg_db()` from `db_pg.ts` or `create_pglite_db()` from
- * `db_pglite.ts` for proper transaction support, or via `create_db()` for
+ * Construct via `create_pg_db()` from `db/db_pg.ts` or `create_pglite_db()` from
+ * `db/db_pglite.ts` for proper transaction support, or via `create_db()` for
  * URL-based auto-detection.
  *
  * @example

package/dist/hono_context.d.ts

@@ -7,7 +7,7 @@
  * Import this module once in your app to get type-safe access to
  * `auth_session_id`, `request_context`, and `credential_type` on the Hono context.
  *
- * In practice, this is auto-loaded by `app_server.ts` (side-effect import)
+ * In practice, this is auto-loaded by `server/app_server.ts` (side-effect import)
  * and transitively by auth middleware modules that import `CREDENTIAL_TYPE_KEY`.
  * Consumers don't need a manual import unless bypassing the standard server assembly.
  *

package/dist/hono_context.js

@@ -7,7 +7,7 @@
  * Import this module once in your app to get type-safe access to
  * `auth_session_id`, `request_context`, and `credential_type` on the Hono context.
  *
- * In practice, this is auto-loaded by `app_server.ts` (side-effect import)
+ * In practice, this is auto-loaded by `server/app_server.ts` (side-effect import)
  * and transitively by auth middleware modules that import `CREDENTIAL_TYPE_KEY`.
  * Consumers don't need a manual import unless bypassing the standard server assembly.
  *

package/dist/http/jsonrpc_errors.d.ts

@@ -7,10 +7,10 @@
  * codes stay in consumers — add by casting `as JsonrpcErrorCode`.
  *
  * `JsonrpcErrorCode` and `JsonrpcErrorObject` types are Zod-inferred
- * from `jsonrpc.ts` — this module re-uses those as the single source
+ * from `http/jsonrpc.ts` — this module re-uses those as the single source
  * of truth.
  *
- * Complementary to `error_schemas.ts`: that module is declarative
+ * Complementary to `http/error_schemas.ts`: that module is declarative
  * (Zod schemas for surface introspection), this one is runtime
  * (throw + catch + map).
  *

package/dist/http/jsonrpc_errors.js

@@ -7,10 +7,10 @@
  * codes stay in consumers — add by casting `as JsonrpcErrorCode`.
  *
  * `JsonrpcErrorCode` and `JsonrpcErrorObject` types are Zod-inferred
- * from `jsonrpc.ts` — this module re-uses those as the single source
+ * from `http/jsonrpc.ts` — this module re-uses those as the single source
  * of truth.
  *
- * Complementary to `error_schemas.ts`: that module is declarative
+ * Complementary to `http/error_schemas.ts`: that module is declarative
  * (Zod schemas for surface introspection), this one is runtime
  * (throw + catch + map).
  *

package/dist/http/jsonrpc_helpers.d.ts

@@ -2,8 +2,8 @@
  * JSON-RPC message builders, type guards, and converters.
  *
  * Used by the SAES runtime (ActionEvent, ActionPeer, transports) and
- * the RPC endpoint dispatcher. Complements `jsonrpc.ts` (schemas) and
- * `jsonrpc_errors.ts` (error infrastructure).
+ * the RPC endpoint dispatcher. Complements `http/jsonrpc.ts` (schemas) and
+ * `http/jsonrpc_errors.ts` (error infrastructure).
  *
  * @module
  */

package/dist/http/jsonrpc_helpers.js

@@ -2,8 +2,8 @@
  * JSON-RPC message builders, type guards, and converters.
  *
  * Used by the SAES runtime (ActionEvent, ActionPeer, transports) and
- * the RPC endpoint dispatcher. Complements `jsonrpc.ts` (schemas) and
- * `jsonrpc_errors.ts` (error infrastructure).
+ * the RPC endpoint dispatcher. Complements `http/jsonrpc.ts` (schemas) and
+ * `http/jsonrpc_errors.ts` (error infrastructure).
  *
  * @module
  */

package/dist/http/middleware_spec.d.ts

@@ -1,7 +1,7 @@
 /**
  * Middleware spec type — named middleware layer definition.
  *
- * Separated from `route_spec.ts` so middleware modules can import this
+ * Separated from `http/route_spec.ts` so middleware modules can import this
  * type without creating an upward dependency on routes.
  *
  * @module

package/dist/http/middleware_spec.js

@@ -1,7 +1,7 @@
 /**
  * Middleware spec type — named middleware layer definition.
  *
- * Separated from `route_spec.ts` so middleware modules can import this
+ * Separated from `http/route_spec.ts` so middleware modules can import this
  * type without creating an upward dependency on routes.
  *
  * @module

package/dist/http/origin.d.ts

@@ -3,7 +3,7 @@
  *
  * Verifies requests are coming from expected origins/referers.
  * CSRF protection is provided by `SameSite: strict` on session cookies
- * (see `session_middleware.ts`). This module provides origin allowlisting
+ * (see `auth/session_middleware.ts`). This module provides origin allowlisting
  * for locally-running services — preventing untrusted websites from
  * making requests as the user browses the web.
  *

package/dist/http/origin.js

@@ -3,7 +3,7 @@
  *
  * Verifies requests are coming from expected origins/referers.
  * CSRF protection is provided by `SameSite: strict` on session cookies
- * (see `session_middleware.ts`). This module provides origin allowlisting
+ * (see `auth/session_middleware.ts`). This module provides origin allowlisting
  * for locally-running services — preventing untrusted websites from
  * making requests as the user browses the web.
  *

package/dist/http/schema_helpers.d.ts

@@ -1,7 +1,7 @@
 /**
  * Shared pure helpers for schema introspection and middleware matching.
  *
- * Used by both `route_spec.ts` (input validation) and `surface.ts`
+ * Used by both `http/route_spec.ts` (input validation) and `http/surface.ts`
  * (attack surface generation). Extracted to avoid circular dependencies
  * between routes and middleware.
  *

package/dist/http/schema_helpers.js

@@ -1,7 +1,7 @@
 /**
  * Shared pure helpers for schema introspection and middleware matching.
  *
- * Used by both `route_spec.ts` (input validation) and `surface.ts`
+ * Used by both `http/route_spec.ts` (input validation) and `http/surface.ts`
  * (attack surface generation). Extracted to avoid circular dependencies
  * between routes and middleware.
  *

package/dist/http/surface.d.ts

@@ -2,7 +2,7 @@
  * App surface generation — JSON-serializable attack surface from route and middleware specs.
  *
  * Pure schema helpers (`is_null_schema`, `schema_to_surface`, `middleware_applies`,
- * `merge_error_schemas`) live in `schema_helpers.ts`.
+ * `merge_error_schemas`) live in `http/schema_helpers.ts`.
  *
  * @module
  */

package/dist/http/surface.js

@@ -2,7 +2,7 @@
  * App surface generation — JSON-serializable attack surface from route and middleware specs.
  *
  * Pure schema helpers (`is_null_schema`, `schema_to_surface`, `middleware_applies`,
- * `merge_error_schemas`) live in `schema_helpers.ts`.
+ * `merge_error_schemas`) live in `http/schema_helpers.ts`.
  *
  * @module
  */

package/dist/runtime/deno.d.ts

@@ -11,7 +11,7 @@ import type { RuntimeDeps } from './deps.js';
 /**
  * Create a runtime backed by Deno APIs.
  *
- * Returns an object satisfying all `*Deps` interfaces from `deps.ts`.
+ * Returns an object satisfying all `*Deps` interfaces from `runtime/deps.ts`.
  * Pass to shared functions that accept `EnvDeps`, `FsReadDeps`, etc.
  *
  * @param args - CLI arguments (typically `Deno.args`)

package/dist/runtime/deno.js

@@ -10,7 +10,7 @@
 /**
  * Create a runtime backed by Deno APIs.
  *
- * Returns an object satisfying all `*Deps` interfaces from `deps.ts`.
+ * Returns an object satisfying all `*Deps` interfaces from `runtime/deps.ts`.
  * Pass to shared functions that accept `EnvDeps`, `FsReadDeps`, etc.
  *
  * @param args - CLI arguments (typically `Deno.args`)

package/dist/runtime/node.d.ts

@@ -1,7 +1,7 @@
 /**
  * Node.js implementation of `RuntimeDeps`.
  *
- * Provides the same interface as `deno.ts` but backed by Node.js APIs.
+ * Provides the same interface as `runtime/deno.ts` but backed by Node.js APIs.
  * Used for running servers in Node.js and for tests (vitest runs in Node).
  *
  * @module

package/dist/runtime/node.js

@@ -1,7 +1,7 @@
 /**
  * Node.js implementation of `RuntimeDeps`.
  *
- * Provides the same interface as `deno.ts` but backed by Node.js APIs.
+ * Provides the same interface as `runtime/deno.ts` but backed by Node.js APIs.
  * Used for running servers in Node.js and for tests (vitest runs in Node).
  *
  * @module

package/dist/testing/rpc_attack_surface.js

@@ -306,7 +306,7 @@ const describe_rpc_adversarial_envelopes = (options) => {
  * For each method with a non-null input schema, generates test cases
  * from the schema (wrong types, missing fields, format violations)
  * and wraps them in valid JSON-RPC envelopes. Reuses
- * `generate_input_test_cases` from `adversarial_input.ts`.
+ * `generate_input_test_cases` from `testing/adversarial_input.ts`.
  */
 const describe_rpc_adversarial_params = (options) => {
     const { build, roles } = options;

package/dist/testing/rpc_helpers.js

@@ -3,7 +3,7 @@ import './assert_dev_env.js';
  * JSON-RPC test helpers — request construction, response assertion, and
  * one-shot call ergonomics.
  *
- * Shared by `rpc_attack_surface.ts`, `rpc_round_trip.ts`, and
+ * Shared by `testing/rpc_attack_surface.ts`, `testing/rpc_round_trip.ts`, and
  * consumer-facing admin/audit suites that exercise RPC methods directly.
  *
  * @module

package/dist/testing/ws_round_trip.js

@@ -203,7 +203,7 @@ const build_multi_role_request_context = (account_id, roles) => {
 /**
  * Stub `RequestContext` for single-role or public fakes. Hardcoded
  * ids (`acc_1` / `act_1`) mirror `create_test_request_context` in
- * `auth_apps.ts`.
+ * `testing/auth_apps.ts`.
  */
 const build_simple_request_context = (role) => ({
     account: create_test_account({ id: 'acc_1', username: 'testuser' }),

package/dist/ui/account_sessions_state.svelte.d.ts

@@ -1,7 +1,7 @@
 /**
  * Reactive state for managing the authenticated account's auth sessions on a
  * settings page. Reads and mutations flow through a narrow RPC adapter; the
- * REST routes that backed this class moved to `account_actions.ts` in the
+ * REST routes that backed this class moved to `auth/account_actions.ts` in the
  * 2026-04-23 RPC migration.
  *
  * @module
@@ -14,7 +14,7 @@ import type { AuthSessionJson } from '../auth/account_schema.js';
  * interfaces (`AdminAccountsRpc`, `AuditLogRpc`, `AdminInvitesRpc`).
  *
  * The three methods wrap the corresponding action specs on
- * `account_actions.ts`:
+ * `auth/account_actions.ts`:
  *
  * - `list` → `account_session_list`
  * - `revoke` → `account_session_revoke` (IDOR-guarded by `account_id` server-side)

package/dist/ui/account_sessions_state.svelte.js

@@ -1,7 +1,7 @@
 /**
  * Reactive state for managing the authenticated account's auth sessions on a
  * settings page. Reads and mutations flow through a narrow RPC adapter; the
- * REST routes that backed this class moved to `account_actions.ts` in the
+ * REST routes that backed this class moved to `auth/account_actions.ts` in the
  * 2026-04-23 RPC migration.
  *
  * @module

package/dist/ui/admin_rpc_adapters.d.ts

@@ -21,7 +21,7 @@
  * ```
  *
  * The throwing Proxy spreads the JSON-RPC `{code, message, data?}` onto
- * the thrown `Error` so form components (e.g. `PermitOfferForm.svelte`)
+ * the thrown `Error` so form components (e.g. `ui/PermitOfferForm.svelte`)
  * can match on `error.data?.reason` via `ERROR_OFFER_*` constants —
  * optional chaining is required because JSON-RPC `data` is spec-level
  * optional. Consumers that need a custom unwrap strategy can construct

package/dist/ui/admin_rpc_adapters.js

@@ -21,7 +21,7 @@
  * ```
  *
  * The throwing Proxy spreads the JSON-RPC `{code, message, data?}` onto
- * the thrown `Error` so form components (e.g. `PermitOfferForm.svelte`)
+ * the thrown `Error` so form components (e.g. `ui/PermitOfferForm.svelte`)
  * can match on `error.data?.reason` via `ERROR_OFFER_*` constants —
  * optional chaining is required because JSON-RPC `data` is spec-level
  * optional. Consumers that need a custom unwrap strategy can construct

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@fuzdev/fuz_app",
-  "version": "0.50.0",
+  "version": "0.51.0",
   "description": "fullstack app library",
   "glyph": "🗝",
   "logo": "logo.svg",