@gencow/core 0.1.23 → 0.1.25

package/dist/crud.d.ts

@@ -72,11 +72,11 @@ type CrudOptions<T extends PgTable> = {
      * api.ts codegen에도 지정된 메서드만 포함됨.
      * @example crud(table, { methods: ['list', 'get', 'create'] })
      */
-    methods?: ('list' | 'get' | 'create' | 'update' | 'remove')[];
+    methods?: ("list" | "get" | "create" | "update" | "remove")[];
 };
 /** 지원 연산자 목록 */
 declare const FILTER_OPS: readonly ["eq", "ne", "gt", "gte", "lt", "lte", "in", "nin", "like", "ilike"];
-type FilterOp = typeof FILTER_OPS[number];
+type FilterOp = (typeof FILTER_OPS)[number];
 /**
  * 단일 필터 연산자를 Drizzle SQL 조건으로 변환.
  * 지원하지 않는 op이거나 값 타입이 맞지 않으면 undefined 반환 (묵살).

package/dist/crud.js

@@ -34,7 +34,7 @@
  * 📄 ownerRls: docs/specs/spec-ownerrls-complete.md
  * 📦 참조: saas-js/drizzle-crud 팩토리 패턴
  */
-import { eq, ne, gt, gte, lt, lte, desc, asc, like, ilike, inArray, notInArray, or, and, count as drizzleCount, getTableName, getTableColumns } from "drizzle-orm";
+import { eq, ne, gt, gte, lt, lte, desc, asc, like, ilike, inArray, notInArray, or, and, count as drizzleCount, getTableName, getTableColumns, } from "drizzle-orm";
 import { getTableConfig } from "drizzle-orm/pg-core";
 import { query, mutation } from "./reactive.js";
 import { v } from "./v.js";
@@ -95,7 +95,12 @@ function detectOwnerMeta(table) {
         const propName = resolvePropertyName(table, meta.columnName);
         const col = anyTable[propName];
         if (col) {
-            return { column: col, columnName: meta.columnName, propertyName: propName, readPublic: meta.readPublic };
+            return {
+                column: col,
+                columnName: meta.columnName,
+                propertyName: propName,
+                readPublic: meta.readPublic,
+            };
         }
     }
     // 2. getTableConfig().policies로 pgPolicy 존재 감지 + convention 탐색
@@ -129,7 +134,7 @@ function detectOwnerMeta(table) {
 /** 재귀 필터 최대 깊이 — DoS 방어 (깊이 초과 시 조건 묵살) */
 const MAX_FILTER_DEPTH = 5;
 /** 지원 연산자 목록 */
-const FILTER_OPS = ['eq', 'ne', 'gt', 'gte', 'lt', 'lte', 'in', 'nin', 'like', 'ilike'];
+const FILTER_OPS = ["eq", "ne", "gt", "gte", "lt", "lte", "in", "nin", "like", "ilike"];
 function isValidFilterOp(op) {
     return FILTER_OPS.includes(op);
 }
@@ -139,29 +144,36 @@ function isValidFilterOp(op) {
  */
 export function applyFilterOp(col, op, value) {
     switch (op) {
-        case 'eq': return eq(col, value);
-        case 'ne': return ne(col, value);
-        case 'gt': return gt(col, value);
-        case 'gte': return gte(col, value);
-        case 'lt': return lt(col, value);
-        case 'lte': return lte(col, value);
-        case 'in':
+        case "eq":
+            return eq(col, value);
+        case "ne":
+            return ne(col, value);
+        case "gt":
+            return gt(col, value);
+        case "gte":
+            return gte(col, value);
+        case "lt":
+            return lt(col, value);
+        case "lte":
+            return lte(col, value);
+        case "in":
             if (!Array.isArray(value) || value.length === 0)
                 return undefined;
             return inArray(col, value);
-        case 'nin':
+        case "nin":
             if (!Array.isArray(value) || value.length === 0)
                 return undefined;
             return notInArray(col, value);
-        case 'like':
-            if (typeof value !== 'string')
+        case "like":
+            if (typeof value !== "string")
                 return undefined;
             return like(col, value);
-        case 'ilike':
-            if (typeof value !== 'string')
+        case "ilike":
+            if (typeof value !== "string")
                 return undefined;
             return ilike(col, value);
-        default: return undefined;
+        default:
+            return undefined;
     }
 }
 /**
@@ -193,11 +205,11 @@ export function parseFilterNode(node, table, allowedFields, depth = 0) {
     const conditions = [];
     for (const [key, val] of Object.entries(node)) {
         // ── OR 논리 그룹 ──
-        if (key === 'OR') {
+        if (key === "OR") {
             if (!Array.isArray(val))
                 continue; // 잘못된 타입 → 묵살
             const orConds = val
-                .filter((child) => child != null && typeof child === 'object' && !Array.isArray(child))
+                .filter((child) => child != null && typeof child === "object" && !Array.isArray(child))
                 .map((child) => parseFilterNode(child, table, allowedFields, depth + 1))
                 .filter((c) => c !== undefined);
             if (orConds.length > 0)
@@ -205,11 +217,11 @@ export function parseFilterNode(node, table, allowedFields, depth = 0) {
             continue;
         }
         // ── AND 논리 그룹 ──
-        if (key === 'AND') {
+        if (key === "AND") {
             if (!Array.isArray(val))
                 continue;
             const andConds = val
-                .filter((child) => child != null && typeof child === 'object' && !Array.isArray(child))
+                .filter((child) => child != null && typeof child === "object" && !Array.isArray(child))
                 .map((child) => parseFilterNode(child, table, allowedFields, depth + 1))
                 .filter((c) => c !== undefined);
             if (andConds.length > 0)
@@ -224,7 +236,7 @@ export function parseFilterNode(node, table, allowedFields, depth = 0) {
         if (!col)
             continue;
         // 명시적 연산자: { op: 'gte', value: 10 }
-        if (val != null && typeof val === 'object' && !Array.isArray(val) && 'op' in val) {
+        if (val != null && typeof val === "object" && !Array.isArray(val) && "op" in val) {
             const { op, value } = val;
             if (!isValidFilterOp(op))
                 continue; // 미지원 op → 묵살
@@ -274,7 +286,7 @@ export function crud(table, options) {
     // ownerRls() 메타데이터가 감지되면 모든 CRUD에 userId 필터 자동 주입
     const ownerMeta = detectOwnerMeta(table);
     // 부트 로그용 레지스트리 등록 (S1: 중복 방지 — hot-reload/methods 분할 대응)
-    if (ownerMeta && !_ownerRlsTables.some(t => t.tableName === tableName)) {
+    if (ownerMeta && !_ownerRlsTables.some((t) => t.tableName === tableName)) {
         _ownerRlsTables.push({
             tableName,
             columnName: ownerMeta.columnName,
@@ -305,7 +317,7 @@ export function crud(table, options) {
         // Dynamic filters — v3 재귀적 파싱 엔진 (OR/AND 중첩, 연산자 매핑)
         // allowedFilters 설정 시: 화이트리스트 필드만 허용 (재귀 검증)
         // allowedFilters 미설정 시: 필터 전체 무시 (Secure by Default — v2 호환)
-        if (args?.filters && typeof args.filters === 'object' && options?.allowedFilters?.length) {
+        if (args?.filters && typeof args.filters === "object" && options?.allowedFilters?.length) {
             const allowedFields = options.allowedFilters;
             const filterCondition = parseFilterNode(args.filters, anyTable, allowedFields);
             if (filterCondition)
@@ -340,203 +352,208 @@ export function crud(table, options) {
     }
     // ── methods 필터링: 지정된 메서드만 레지스트리 등록 ──
     // methods 옵션 미지정 시 전체 5개 등록 (하위호환)
-    const enabledMethods = new Set(options?.methods ?? ['list', 'get', 'create', 'update', 'remove']);
+    const enabledMethods = new Set(options?.methods ?? ["list", "get", "create", "update", "remove"]);
     // ── list ──────────────────────────────────────
-    const listDef = !enabledMethods.has('list') ? undefined : query(`${prefix}.list`, {
-        public: isPublic,
-        args: {
-            page: v.optional(v.number()),
-            limit: v.optional(v.number()),
-            search: v.optional(v.string()),
-            orderBy: v.optional(v.string()),
-            orderDir: v.optional(v.string()),
-            filters: v.optional(v.any()),
-        },
-        handler: async (ctx, args) => {
-            // S2: requireAuth 통합 — ownerRls(readPublic=false)이면 인증 필수
-            const needsAuth = !isPublic || (ownerMeta && !ownerMeta.readPublic);
-            const user = needsAuth ? ctx.auth.requireAuth() : null;
-            const page = Math.max(1, args?.page || 1);
-            const limit = Math.min(Math.max(1, args?.limit || defaultLimit), maxLimit);
-            const offset = (page - 1) * limit;
-            let whereClause = buildWhereConditions(args);
-            // ── ownerRls Layer 1: list에 userId 필터 주입 ──
-            if (ownerMeta && !ownerMeta.readPublic && user) {
-                const ownerFilter = eq(ownerMeta.column, user.id);
-                whereClause = whereClause ? and(whereClause, ownerFilter) : ownerFilter;
-            }
-            // Order
-            let orderByClause;
-            if (args?.orderBy && anyTable[args.orderBy]) {
-                const col = anyTable[args.orderBy];
-                orderByClause = args.orderDir === "asc" ? asc(col) : desc(col);
-            }
-            else {
-                orderByClause = desc(defaultOrderCol);
-            }
-            // One transaction: SET LOCAL user id (createRlsDb) + list + count for RLS.
-            return await inRlsOrPlainTx(ctx.db, async (tx) => {
-                const results = await tx.select()
-                    .from(anyTable)
-                    .where(whereClause)
-                    .orderBy(orderByClause)
-                    .limit(limit)
-                    .offset(offset);
-                const countResult = await tx.select({ count: drizzleCount() })
-                    .from(anyTable)
-                    .where(whereClause);
-                return {
-                    data: results,
-                    total: Number(countResult[0]?.count ?? 0),
-                };
-            });
-        }
-    });
+    const listDef = !enabledMethods.has("list")
+        ? undefined
+        : query(`${prefix}.list`, {
+            public: isPublic,
+            args: {
+                page: v.optional(v.number()),
+                limit: v.optional(v.number()),
+                search: v.optional(v.string()),
+                orderBy: v.optional(v.string()),
+                orderDir: v.optional(v.string()),
+                filters: v.optional(v.any()),
+            },
+            handler: async (ctx, args) => {
+                // S2: requireAuth 통합 — ownerRls(readPublic=false)이면 인증 필수
+                const needsAuth = !isPublic || (ownerMeta && !ownerMeta.readPublic);
+                const user = needsAuth ? ctx.auth.requireAuth() : null;
+                const page = Math.max(1, args?.page || 1);
+                const limit = Math.min(Math.max(1, args?.limit || defaultLimit), maxLimit);
+                const offset = (page - 1) * limit;
+                let whereClause = buildWhereConditions(args);
+                // ── ownerRls Layer 1: list에 userId 필터 주입 ──
+                if (ownerMeta && !ownerMeta.readPublic && user) {
+                    const ownerFilter = eq(ownerMeta.column, user.id);
+                    whereClause = whereClause ? and(whereClause, ownerFilter) : ownerFilter;
+                }
+                // Order
+                let orderByClause;
+                if (args?.orderBy && anyTable[args.orderBy]) {
+                    const col = anyTable[args.orderBy];
+                    orderByClause = args.orderDir === "asc" ? asc(col) : desc(col);
+                }
+                else {
+                    orderByClause = desc(defaultOrderCol);
+                }
+                // One transaction: SET LOCAL user id (createRlsDb) + list + count for RLS.
+                return await inRlsOrPlainTx(ctx.db, async (tx) => {
+                    const results = await tx
+                        .select()
+                        .from(anyTable)
+                        .where(whereClause)
+                        .orderBy(orderByClause)
+                        .limit(limit)
+                        .offset(offset);
+                    const countResult = await tx.select({ count: drizzleCount() }).from(anyTable).where(whereClause);
+                    return {
+                        data: results,
+                        total: Number(countResult[0]?.count ?? 0),
+                    };
+                });
+            },
+        });
     // ── get ───────────────────────────────────────
-    const getDef = !enabledMethods.has('get') ? undefined : query(`${prefix}.get`, {
-        public: isPublic,
-        args: { id: idValidator },
-        handler: async (ctx, args) => {
-            // S2: requireAuth 통합
-            const needsAuth = !isPublic || (ownerMeta && !ownerMeta.readPublic);
-            const user = needsAuth ? ctx.auth.requireAuth() : null;
-            let whereCond = eq(pk, args.id);
-            // ── ownerRls Layer 1: get에 userId 필터 주입 ──
-            if (ownerMeta && !ownerMeta.readPublic && user) {
-                whereCond = and(whereCond, eq(ownerMeta.column, user.id));
-            }
-            if (options?.softDelete) {
-                const sdField = anyTable[options.softDelete.field];
-                whereCond = and(whereCond, eq(sdField, null));
-            }
-            return await inRlsOrPlainTx(ctx.db, async (tx) => {
-                const [result] = await tx.select().from(anyTable).where(whereCond).limit(1);
-                return result ?? null;
-            });
-        }
-    });
+    const getDef = !enabledMethods.has("get")
+        ? undefined
+        : query(`${prefix}.get`, {
+            public: isPublic,
+            args: { id: idValidator },
+            handler: async (ctx, args) => {
+                // S2: requireAuth 통합
+                const needsAuth = !isPublic || (ownerMeta && !ownerMeta.readPublic);
+                const user = needsAuth ? ctx.auth.requireAuth() : null;
+                let whereCond = eq(pk, args.id);
+                // ── ownerRls Layer 1: get에 userId 필터 주입 ──
+                if (ownerMeta && !ownerMeta.readPublic && user) {
+                    whereCond = and(whereCond, eq(ownerMeta.column, user.id));
+                }
+                if (options?.softDelete) {
+                    const sdField = anyTable[options.softDelete.field];
+                    whereCond = and(whereCond, eq(sdField, null));
+                }
+                return await inRlsOrPlainTx(ctx.db, async (tx) => {
+                    const [result] = await tx.select().from(anyTable).where(whereCond).limit(1);
+                    return result ?? null;
+                });
+            },
+        });
     // ── create ────────────────────────────────────
-    const createDef = !enabledMethods.has('create') ? undefined : mutation(`${prefix}.create`, {
-        public: isPublic,
-        handler: async (ctx, args) => {
-            // ownerRls 테이블은 항상 인증 필수 (보안 우선)
-            const user = (ownerMeta || !isPublic) ? ctx.auth.requireAuth() : null;
-            let insertData = { ...args };
-            // ── ownerRls Layer 1: create 시 userId 강제 주입 ──
-            // 명시적으로 타인 userId를 보낸 경우는 즉시 차단 (fail-closed).
-            if (ownerMeta && user) {
-                const requestedOwner = insertData[ownerMeta.propertyName] ??
-                    insertData[ownerMeta.columnName] ??
-                    insertData.userId;
-                if (requestedOwner != null && requestedOwner !== user.id) {
-                    throw new Error("Forbidden: cannot create resource for another user");
+    const createDef = !enabledMethods.has("create")
+        ? undefined
+        : mutation(`${prefix}.create`, {
+            public: isPublic,
+            handler: async (ctx, args) => {
+                // ownerRls 테이블은 항상 인증 필수 (보안 우선)
+                const user = ownerMeta || !isPublic ? ctx.auth.requireAuth() : null;
+                let insertData = { ...args };
+                // ── ownerRls Layer 1: create 시 userId 강제 주입 ──
+                // 명시적으로 타인 userId를 보낸 경우는 즉시 차단 (fail-closed).
+                if (ownerMeta && user) {
+                    const requestedOwner = insertData[ownerMeta.propertyName] ?? insertData[ownerMeta.columnName] ?? insertData.userId;
+                    if (requestedOwner != null && requestedOwner !== user.id) {
+                        throw new Error("Forbidden: cannot create resource for another user");
+                    }
                 }
-            }
-            // S1 수정: propertyName(JS명)을 키로 사용 — Drizzle insert 호환
-            // 사용자 입력을 덮어씀 (보안: 타인 ID로 데이터 생성 방지)
-            if (ownerMeta && user) {
-                insertData[ownerMeta.propertyName] = user.id;
-            }
-            else if (userIdCol && user && !insertData.userId) {
-                // ownerRls 미적용 테이블의 기존 자동 주입 동작 유지
-                insertData.userId = user.id;
-            }
-            // beforeCreate 훅
-            if (options?.hooks?.beforeCreate) {
-                insertData = await options.hooks.beforeCreate(insertData);
-            }
-            const [result] = await inRlsOrPlainTx(ctx.db, async (tx) => tx.insert(anyTable).values(insertData).returning());
-            // Realtime push — { data, total } 형태로 emit
-            // ownerRls 시 해당 사용자 데이터만 push (타 사용자에게 누출 방지)
-            // S5: requireAuth로 확실한 userId 획득 (getUserIdentity null 방지)
-            if (useRealtime && enabledMethods.has('list')) {
-                const currentUserId = user?.id;
-                const listResult = await fetchListWithTotal(ctx.db, undefined, currentUserId);
-                ctx.realtime.emit(`${prefix}.list`, listResult);
-            }
-            return result;
-        }
-    });
-    // ── update ────────────────────────────────────
-    const updateDef = !enabledMethods.has('update') ? undefined : mutation(`${prefix}.update`, {
-        public: isPublic,
-        handler: async (ctx, args) => {
-            // ownerRls 테이블은 항상 인증 필수
-            const user = (ownerMeta || !isPublic) ? ctx.auth.requireAuth() : null;
-            const { id, ...updates } = args;
-            let updateData = { ...updates };
-            // ── ownerRls Layer 1: update 시 userId 변경 차단 + 소유자 검증 ──
-            let updateWhere = eq(pk, id);
-            if (ownerMeta && user) {
-                // WHERE id = ? AND user_id = ? (타인 데이터 수정 불가)
-                updateWhere = and(eq(pk, id), eq(ownerMeta.column, user.id));
-                // S1 수정: propertyName(JS명)으로 userId 변경 시도 차단
-                delete updateData[ownerMeta.propertyName];
-                // DB명도 방어적으로 삭제 (만약 클라이언트가 DB명으로 보낸 경우)
-                if (ownerMeta.propertyName !== ownerMeta.columnName) {
-                    delete updateData[ownerMeta.columnName];
+                // S1 수정: propertyName(JS명)을 키로 사용 — Drizzle insert 호환
+                // 사용자 입력을 덮어씀 (보안: 타인 ID로 데이터 생성 방지)
+                if (ownerMeta && user) {
+                    insertData[ownerMeta.propertyName] = user.id;
                 }
-            }
-            // updatedAt 자동 갱신
-            if (anyTable["updatedAt"]) {
-                updateData.updatedAt = new Date();
-            }
-            // beforeUpdate 훅
-            if (options?.hooks?.beforeUpdate) {
-                updateData = await options.hooks.beforeUpdate(updateData);
-            }
-            const [result] = await inRlsOrPlainTx(ctx.db, async (tx) => tx.update(anyTable)
-                .set(updateData)
-                .where(updateWhere)
-                .returning());
-            // Realtime push (list + get 양쪽) — { data, total } 형태
-            // S5: ownerRls 시 user.id 사용 (getUserIdentity null 방지)
-            if (useRealtime) {
-                const currentUserId = ownerMeta ? user?.id : undefined;
-                if (enabledMethods.has('list')) {
+                else if (userIdCol && user && !insertData.userId) {
+                    // ownerRls 미적용 테이블의 기존 자동 주입 동작 유지
+                    insertData.userId = user.id;
+                }
+                // beforeCreate 훅
+                if (options?.hooks?.beforeCreate) {
+                    insertData = await options.hooks.beforeCreate(insertData);
+                }
+                const [result] = await inRlsOrPlainTx(ctx.db, async (tx) => tx.insert(anyTable).values(insertData).returning());
+                // Realtime push — { data, total } 형태로 emit
+                // ownerRls 시 해당 사용자 데이터만 push (타 사용자에게 누출 방지)
+                // S5: requireAuth로 확실한 userId 획득 (getUserIdentity null 방지)
+                if (useRealtime && enabledMethods.has("list")) {
+                    const currentUserId = user?.id;
                     const listResult = await fetchListWithTotal(ctx.db, undefined, currentUserId);
                     ctx.realtime.emit(`${prefix}.list`, listResult);
                 }
-                if (enabledMethods.has('get')) {
-                    ctx.realtime.emit(`${prefix}.get`, result);
+                return result;
+            },
+        });
+    // ── update ────────────────────────────────────
+    const updateDef = !enabledMethods.has("update")
+        ? undefined
+        : mutation(`${prefix}.update`, {
+            public: isPublic,
+            handler: async (ctx, args) => {
+                // ownerRls 테이블은 항상 인증 필수
+                const user = ownerMeta || !isPublic ? ctx.auth.requireAuth() : null;
+                const { id, ...updates } = args;
+                let updateData = { ...updates };
+                // ── ownerRls Layer 1: update 시 userId 변경 차단 + 소유자 검증 ──
+                let updateWhere = eq(pk, id);
+                if (ownerMeta && user) {
+                    // WHERE id = ? AND user_id = ? (타인 데이터 수정 불가)
+                    updateWhere = and(eq(pk, id), eq(ownerMeta.column, user.id));
+                    // S1 수정: propertyName(JS명)으로 userId 변경 시도 차단
+                    delete updateData[ownerMeta.propertyName];
+                    // DB명도 방어적으로 삭제 (만약 클라이언트가 DB명으로 보낸 경우)
+                    if (ownerMeta.propertyName !== ownerMeta.columnName) {
+                        delete updateData[ownerMeta.columnName];
+                    }
                 }
-            }
-            return result;
-        }
-    });
+                // updatedAt 자동 갱신
+                if (anyTable["updatedAt"]) {
+                    updateData.updatedAt = new Date();
+                }
+                // beforeUpdate 훅
+                if (options?.hooks?.beforeUpdate) {
+                    updateData = await options.hooks.beforeUpdate(updateData);
+                }
+                const [result] = await inRlsOrPlainTx(ctx.db, async (tx) => tx.update(anyTable).set(updateData).where(updateWhere).returning());
+                // Realtime push (list + get 양쪽) — { data, total } 형태
+                // S5: ownerRls 시 user.id 사용 (getUserIdentity null 방지)
+                if (useRealtime) {
+                    const currentUserId = ownerMeta ? user?.id : undefined;
+                    if (enabledMethods.has("list")) {
+                        const listResult = await fetchListWithTotal(ctx.db, undefined, currentUserId);
+                        ctx.realtime.emit(`${prefix}.list`, listResult);
+                    }
+                    if (enabledMethods.has("get")) {
+                        ctx.realtime.emit(`${prefix}.get`, result);
+                    }
+                }
+                return result;
+            },
+        });
     // ── remove ────────────────────────────────────
-    const removeDef = !enabledMethods.has('remove') ? undefined : mutation(`${prefix}.remove`, {
-        public: isPublic,
-        handler: async (ctx, args) => {
-            // ownerRls 테이블은 항상 인증 필수
-            const user = (ownerMeta || !isPublic) ? ctx.auth.requireAuth() : null;
-            // ── ownerRls Layer 1: remove 시 소유자 검증 ──
-            let deleteWhere = eq(pk, args.id);
-            if (ownerMeta && user) {
-                // WHERE id = ? AND user_id = ? (타인 데이터 삭제 불가)
-                deleteWhere = and(eq(pk, args.id), eq(ownerMeta.column, user.id));
-            }
-            await inRlsOrPlainTx(ctx.db, async (tx) => {
-                if (options?.softDelete) {
-                    const sdField = options.softDelete.field;
-                    await tx.update(anyTable)
-                        .set({ [sdField]: new Date() })
-                        .where(deleteWhere);
+    const removeDef = !enabledMethods.has("remove")
+        ? undefined
+        : mutation(`${prefix}.remove`, {
+            public: isPublic,
+            handler: async (ctx, args) => {
+                // ownerRls 테이블은 항상 인증 필수
+                const user = ownerMeta || !isPublic ? ctx.auth.requireAuth() : null;
+                // ── ownerRls Layer 1: remove 시 소유자 검증 ──
+                let deleteWhere = eq(pk, args.id);
+                if (ownerMeta && user) {
+                    // WHERE id = ? AND user_id = ? (타인 데이터 삭제 불가)
+                    deleteWhere = and(eq(pk, args.id), eq(ownerMeta.column, user.id));
                 }
-                else {
-                    await tx.delete(anyTable).where(deleteWhere);
+                await inRlsOrPlainTx(ctx.db, async (tx) => {
+                    if (options?.softDelete) {
+                        const sdField = options.softDelete.field;
+                        await tx
+                            .update(anyTable)
+                            .set({ [sdField]: new Date() })
+                            .where(deleteWhere);
+                    }
+                    else {
+                        await tx.delete(anyTable).where(deleteWhere);
+                    }
+                });
+                // Realtime push — { data, total } 형태
+                // S5: ownerRls 시 user.id 사용
+                if (useRealtime && enabledMethods.has("list")) {
+                    const currentUserId = ownerMeta ? user?.id : undefined;
+                    const listResult = await fetchListWithTotal(ctx.db, undefined, currentUserId);
+                    ctx.realtime.emit(`${prefix}.list`, listResult);
                 }
-            });
-            // Realtime push — { data, total } 형태
-            // S5: ownerRls 시 user.id 사용
-            if (useRealtime && enabledMethods.has('list')) {
-                const currentUserId = ownerMeta ? user?.id : undefined;
-                const listResult = await fetchListWithTotal(ctx.db, undefined, currentUserId);
-                ctx.realtime.emit(`${prefix}.list`, listResult);
-            }
-            return { success: true };
-        }
-    });
+                return { success: true };
+            },
+        });
     // 반환 객체는 항상 5개 키를 가지지만, 비활성 메서드는 undefined.
     // 사용자가 destructure 시 undefined를 받으면 export하지 않으므로
     // codegen의 레지스트리에 등록되지 않아 api.ts 불일치가 해소됨.

package/dist/index.d.ts

@@ -4,11 +4,15 @@
  * Provides: query, mutation, storage, scheduler, auth
  * All with Convex-compatible DX patterns.
  */
-export type { GencowCtx, AuthCtx, UserIdentity, QueryDef, MutationDef, RealtimeCtx, HttpActionDef, HttpActionRequest, HttpActionResponse, HttpActionHandler, AIContext, AIMessage, AIResult } from "./reactive.js";
-export { query, mutation, httpAction, buildRealtimeCtx, subscribe, unsubscribe, registerClient, deregisterClient, handleWsMessage, getQueryHandler, getQueryDef, getRegisteredQueries, getRegisteredMutations, getRegisteredHttpActions } from "./reactive.js";
+export type { GencowCtx, AuthCtx, UserIdentity, QueryDef, MutationDef, RealtimeCtx, HttpActionDef, HttpActionRequest, HttpActionResponse, HttpActionHandler, AIContext, AIMessage, AIResult, } from "./reactive.js";
+export { query, mutation, httpAction, buildRealtimeCtx, subscribe, unsubscribe, registerClient, deregisterClient, handleWsMessage, getQueryHandler, getQueryDef, getRegisteredQueries, getRegisteredMutations, getRegisteredHttpActions, } from "./reactive.js";
 export type { Storage } from "./storage.js";
 export { createScheduler, getSchedulerInfo } from "./scheduler.js";
-export type { Scheduler, ScheduleOptions, FailedJob, CreateSchedulerOptions, ScheduledJobRecord } from "./scheduler.js";
+export type { Scheduler, ScheduleOptions, FailedJob, CreateSchedulerOptions, ScheduledJobRecord, } from "./scheduler.js";
+export { workflow, getWorkflowDef, getRegisteredWorkflows, getWorkflowResumeActionName, getWorkflowRealtimeKey, createWorkflowRealtimeToken, serializeWorkflowValue, deserializeWorkflowValue, parseWorkflowDurationMs, DEFAULT_WORKFLOW_MAX_DURATION_MS, DEFAULT_WORKFLOW_MAX_RETRIES, WORKFLOW_RESUME_ACTION_PREFIX, WORKFLOW_REALTIME_KEY_PREFIX, } from "./workflow.js";
+export { deriveWorkflowStatus } from "./workflow-types.js";
+export type { WorkflowCtx, WorkflowHandler, WorkflowOptions, WorkflowDef, WorkflowResumePayload, WorkflowStartResult, WorkflowSignalResult, WorkflowStatus, WorkflowDerivedStatus, WorkflowSummary, WorkflowSnapshot, WorkflowStepSnapshot, WorkflowListArgs, WorkflowDuration, } from "./workflow-types.js";
+export { loadWorkflowSnapshot } from "./workflows-api.js";
 export { v, parseArgs, GencowValidationError } from "./v.js";
 export type { Validator, Infer, InferArgs } from "./v.js";
 export { withRetry } from "./retry.js";

package/dist/index.js

@@ -4,8 +4,11 @@
  * Provides: query, mutation, storage, scheduler, auth
  * All with Convex-compatible DX patterns.
  */
-export { query, mutation, httpAction, buildRealtimeCtx, subscribe, unsubscribe, registerClient, deregisterClient, handleWsMessage, getQueryHandler, getQueryDef, getRegisteredQueries, getRegisteredMutations, getRegisteredHttpActions } from "./reactive.js";
+export { query, mutation, httpAction, buildRealtimeCtx, subscribe, unsubscribe, registerClient, deregisterClient, handleWsMessage, getQueryHandler, getQueryDef, getRegisteredQueries, getRegisteredMutations, getRegisteredHttpActions, } from "./reactive.js";
 export { createScheduler, getSchedulerInfo } from "./scheduler.js";
+export { workflow, getWorkflowDef, getRegisteredWorkflows, getWorkflowResumeActionName, getWorkflowRealtimeKey, createWorkflowRealtimeToken, serializeWorkflowValue, deserializeWorkflowValue, parseWorkflowDurationMs, DEFAULT_WORKFLOW_MAX_DURATION_MS, DEFAULT_WORKFLOW_MAX_RETRIES, WORKFLOW_RESUME_ACTION_PREFIX, WORKFLOW_REALTIME_KEY_PREFIX, } from "./workflow.js";
+export { deriveWorkflowStatus } from "./workflow-types.js";
+export { loadWorkflowSnapshot } from "./workflows-api.js";
 export { v, parseArgs, GencowValidationError } from "./v.js";
 export { withRetry } from "./retry.js";
 export { cronJobs } from "./crons.js";

package/dist/reactive.js

@@ -85,7 +85,10 @@ export function mutation(nameOrInvalidatesOrDef, handlerOrDef, name) {
         actualHandler = nameOrInvalidatesOrDef.handler;
         argsSchema = nameOrInvalidatesOrDef.args;
         isPublic = nameOrInvalidatesOrDef.public === true;
-        mutName = nameOrInvalidatesOrDef.name || (typeof name === "string" ? name : "") || `mutation_${++mutationCounter}`;
+        mutName =
+            nameOrInvalidatesOrDef.name ||
+                (typeof name === "string" ? name : "") ||
+                `mutation_${++mutationCounter}`;
     }
     // 이름 미지정 시 경고 — 디버깅 지원
     if (mutName.startsWith("mutation_")) {
@@ -224,8 +227,12 @@ export function buildRealtimeCtx(options) {
                 _pendingRefresh.push(queryKey);
             }
         },
-        get _hasEmitted() { return _hasEmitted; },
-        get _pendingRefresh() { return [..._pendingRefresh]; },
+        get _hasEmitted() {
+            return _hasEmitted;
+        },
+        get _pendingRefresh() {
+            return [..._pendingRefresh];
+        },
         async _flushRefresh() {
             if (_pendingRefresh.length === 0)
                 return;

package/dist/retry.js

@@ -71,5 +71,5 @@ export async function withRetry(fn, options = {}) {
 }
 // ─── 내부 유틸리티 ──────────────────────────────────────
 function sleep(ms) {
-    return new Promise(resolve => setTimeout(resolve, ms));
+    return new Promise((resolve) => setTimeout(resolve, ms));
 }