npm - @healthcloudai/hc-safe-cdx - Versions diffs - 0.4.1 → 0.4.2 - Mend

@healthcloudai/hc-safe-cdx 0.4.1 → 0.4.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +340 -1211
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,10 +1,8 @@
 # Healthcheck Safe CDX Connector
-Safe CDX supports the diagnostic test workflow performed by an authenticated patient. It provides the SDK methods used to retrieve available test profiles, resolve a selected test by GTIN, prepare and upload test images, process test results, and complete the test flow.
+SDK client for the Safe CDX diagnostic test workflow. `HCSafeCDXClient` handles authenticated requests to the Safe CDX service on behalf of a logged-in patient.
-`HCSafeCDXClient` uses the authenticated patient context provided by `HCLoginClient`. The client derives its own Safe CDX service URL from the configured environment, sends authenticated requests to Safe CDX routes, and wraps request payloads internally where the API expects the standard `Data` envelope.
-Image upload is handled separately because the upload target is a pre-signed storage URL rather than a Safe CDX API route.
+---
 ## Installation
@@ -12,17 +10,19 @@ Image upload is handled separately because the upload target is a pre-signed sto
 npm install @healthcloudai/hc-safe-cdx @healthcloudai/hc-http @healthcloudai/hc-login-connector
 ```
+---
 ## Import
 ```ts
-import { FetchClient } from "@healthcloudai/hc-http";
-import { HCLoginClient } from "@healthcloudai/hc-login-connector";
 import { HCSafeCDXClient } from "@healthcloudai/hc-safe-cdx";
+import { HCLoginClient } from "@healthcloudai/hc-login-connector";
+import { FetchClient } from "@healthcloudai/hc-http";
 ```
-## Setup
+---
-Create the shared HTTP client, authenticate the patient through `HCLoginClient`, and then create the Safe CDX client with the authenticated login instance.
+## Setup
 ```ts
 const httpClient = new FetchClient();
@@ -34,485 +34,207 @@ await loginClient.login(email, password);
 const safeCdx = new HCSafeCDXClient(httpClient, loginClient);
 ```
-The Safe CDX connector does not perform login and does not require a separate `setAccessToken(...)` step. Authenticated headers are read from the existing `HCLoginClient` instance.
-## Client Configuration
-### Service URL
-Safe CDX uses its own service base URL and does not reuse `loginClient.getBaseUrl()`. The client reads the configured environment through `loginClient.getEnvironment()` and resolves the Safe CDX host internally.
+Safe CDX derives its own service URL from `loginClient.getEnvironment()`. It does **not** use `loginClient.getBaseUrl()`.
+---
-### Optional API Key
+## API Key
-When an environment requires an API key header, configure it on the Safe CDX client:
+When the environment requires an API key:
 ```ts
 safeCdx.setApiKey("x-api-key", apiKeyValue);
 ```
-The configured API key header is added to Safe CDX API route requests together with the patient authentication headers.
+---
-## Request Contract
+## Service URL
-SDK methods receive only the values needed by the consuming application. The consumer does not manually provide the backend `Data` wrapper, tenant context, patient identity values, or authentication headers.
+Safe CDX calls a different backend from all other connectors.
-For POST requests, `HCSafeCDXClient` constructs the API request envelope internally:
+| Environment | Base URL |
+|---|---|
+| `dev` | `https://dev-api-hcs.healthcloud-services.com/api/console/hcservice/safecdx` |
+| `uat` | `https://uat-api-hcs.healthcloud-services.com/api/console/hcservice/safecdx` |
+| `prod` | `https://api-hcs.healthcloud-services.com/api/console/hcservice/safecdx` |
-```ts
-interface APIRequest<T> {
-    Data: T;
-}
-```
+---
-For example:
+## Response Shapes
-```ts
-await safeCdx.submitAnswers({
-    UserTestResultId: userTestResultId,
-    Result: [
-        {
-            Analyte: "Purchase",
-            ReportedValue: "drug store",
-            StoredValue: "drug store",
-            Score: "0"
-        }
-    ]
-});
-```
+Safe CDX methods return one of three distinct shapes. Read them differently depending on the method — check the table at the bottom.
-The client sends:
+### Shape A — `APIResponse<T>` (standard Health Cloud envelope)
-```json
+```ts
 {
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>",
-        "Result": [
-            {
-                "Analyte": "Purchase",
-                "ReportedValue": "drug store",
-                "StoredValue": "drug store",
-                "Score": "0"
-            }
-        ]
-    }
+  IsOK: boolean;
+  ErrorMessage: string | null;
+  Data: T | null;        // actual payload directly in Data
 }
 ```
-## Response Contract
-Safe CDX methods return the response shape produced by their backend endpoint without unwrapping or transforming it.
-Most documented methods return the standard Health Cloud response envelope:
+Access:
 ```ts
-interface APIResponse<T> {
-    Data: T | null;
-    IsOK: boolean;
-    ErrorMessage: string | null;
+const r = await safeCdx.getTestProfileByGTIN(gtin);
+if (r.IsOK) {
+  const id = r.Data?.ID;
 }
 ```
-Several Safe CDX operations return a service response inside `APIResponse.Data`, or return that service response directly:
+---
+### Shape B — `APIResponse<SafeAPIResponse<T>>` (double-wrapped)
+The Health Cloud gateway wraps the SafeCDX vendor response without normalising it. `Data` is itself a vendor envelope.
 ```ts
-interface SafeAPIResponse<T> {
-    success: boolean;
-    data: T | null;
+{
+  IsOK: boolean;
+  ErrorMessage: string | null;
+  Data: {
+    success: boolean;    // vendor-level success flag
+    data: T | null;      // actual payload
     message: string | null;
     code: number;
+  } | null;
 }
 ```
-The following methods return `SafeAPIResponse<T>` directly, without the outer `APIResponse<T>` wrapper:
+Access — always check **both** levels:
 ```ts
-safeCdx.updateCvmlStatus(...)
-safeCdx.getCvmlResults(...)
-safeCdx.getResultDetails(...)
-safeCdx.getImageCaptureUrl(...)
+const r = await safeCdx.listTestProfilesByAccount();
+if (r.IsOK && r.Data?.success) {
+  const profiles = r.Data.data;   // T is here
+}
+// r.IsOK can be true while r.Data?.success is false
+// r.Data?.message contains the vendor error description
 ```
-`HCSafeCDXClient` does not replace an API-defined response with a different return value. Local errors may still be thrown before or outside a Safe CDX API response, such as invalid API key configuration or a failed direct image upload. Transport-level handling for unsuccessful HTTP responses is determined by the supplied `HttpClient`.
+---
-## Parameter Design
+### Shape C — `SafeAPIResponse<T>` (vendor envelope only, no outer wrapper)
-Public methods follow the documented patient workflow request shapes.
+Four methods return the vendor structure directly — no `APIResponse` outer layer.
 ```ts
-safeCdx.getTestProfileByGTIN(gtin)
-safeCdx.listTestProfilesByAccount(includeRegisterTestDetails?)
-safeCdx.createUploadUrl(userTestResultId, gtin, imageType?)
-safeCdx.updateCvmlStatus(imageOfCaptureId, cvmlStatus)
-safeCdx.getCvmlResults(imageOfCaptureId)
-safeCdx.listPendingResults(excludeStatus?)
-safeCdx.getLastResults(excludeStatus?)
-safeCdx.listTestHistory(excludeStatus?)
-safeCdx.getResultDetails(userTestResultId)
-safeCdx.getResultPdf(userTestResultId)
-safeCdx.getImageCaptureUrl(userTestResultId)
-safeCdx.resumeFlow(userTestResultId, resumed?)
-safeCdx.finalizeTest(userTestResultId)
+{
+  success: boolean;
+  data: T | null;
+  message: string | null;
+  code: number;
+}
 ```
+Access:
+```ts
+const r = await safeCdx.getCvmlResults(imageOfCaptureId);
+if (r.success) {
+  const cvmlStatus = r.data?.cvmlStatus;
+}
+```
+---
 ## Typical Patient Workflow
 ```ts
-const profiles = await safeCdx.listTestProfilesByAccount();
-const profile = await safeCdx.getTestProfileByGTIN("850024942325");
-if (!profile.IsOK || !profile.Data) {
-    throw new Error(profile.ErrorMessage ?? "Unable to resolve the test profile.");
+// 1. List available test profiles
+const profilesResponse = await safeCdx.listTestProfilesByAccount();
+if (!profilesResponse.IsOK || !profilesResponse.Data?.success) {
+  throw new Error(profilesResponse.Data?.message ?? profilesResponse.ErrorMessage ?? "Failed to list profiles");
 }
+const profiles = profilesResponse.Data.data;  // TestProfileByAccountItem[]
-const userTestResultId = profile.Data.ID;
-const gtin = profile.Data.DiagnosticProfile?.TestInfo.gtin;
-if (!userTestResultId || !gtin) {
-    throw new Error("The selected test profile does not include the required workflow identifiers.");
+// 2. Resolve profile by GTIN
+const profileResponse = await safeCdx.getTestProfileByGTIN(profiles[0].gtin);
+if (!profileResponse.IsOK || !profileResponse.Data) {
+  throw new Error(profileResponse.ErrorMessage ?? "Failed to resolve profile");
 }
+const userTestResultId = profileResponse.Data.ID!;
+const gtin = profileResponse.Data.DiagnosticProfile?.TestInfo.gtin ?? profiles[0].gtin;
-const upload = await safeCdx.createUploadUrl(userTestResultId, gtin);
-if (!upload.IsOK || !upload.Data?.preSignedURL || !upload.Data.Metadata?.UploadId) {
-    throw new Error(upload.ErrorMessage ?? "Unable to prepare image upload.");
+// 3. Create upload URL
+const uploadResponse = await safeCdx.createUploadUrl(userTestResultId, gtin);
+if (!uploadResponse.IsOK || !uploadResponse.Data?.preSignedURL) {
+  throw new Error(uploadResponse.ErrorMessage ?? "Failed to get upload URL");
 }
+const preSignedURL = uploadResponse.Data.preSignedURL;
+const imageOfCaptureId = uploadResponse.Data.Metadata!.UploadId!;
-const preSignedURL = upload.Data.preSignedURL;
-const imageOfCaptureId = upload.Data.Metadata.UploadId;
+// 4. Upload image (direct to S3 — no auth headers)
 await safeCdx.uploadImage(preSignedURL, imageBody, "image/jpeg");
+// 5. Notify CVML processing started
 await safeCdx.updateCvmlStatus(imageOfCaptureId, "ImageProcessing");
-const cvmlResults = await safeCdx.getCvmlResults(imageOfCaptureId);
+// 6. Get CVML analysis results
+const cvml = await safeCdx.getCvmlResults(imageOfCaptureId);
+if (!cvml.success) throw new Error(cvml.message ?? "CVML failed");
-await safeCdx.submitAnswers({
-    UserTestResultId: userTestResultId,
-    Result: [
-        {
-            Analyte: "Purchase",
-            ReportedValue: "drug store",
-            StoredValue: "drug store",
-            Score: "0"
-        }
-    ]
+// 7. Submit analyte answers
+const submitResponse = await safeCdx.submitAnswers({
+  UserTestResultId: userTestResultId,
+  Result: [{ Analyte: "Purchase", ReportedValue: "drug store", StoredValue: "drug store", Score: "0" }],
 });
-await safeCdx.finalizeTest(userTestResultId);
-const details = await safeCdx.getResultDetails(userTestResultId);
-const pdf = await safeCdx.getResultPdf(userTestResultId);
-const imageCaptureUrl = await safeCdx.getImageCaptureUrl(userTestResultId);
-```
-The application is responsible for preserving workflow values returned between steps, including `userTestResultId`, `gtin`, `preSignedURL`, and `imageOfCaptureId`.
-## Public Methods
-### `listTestProfilesByAccount(...)`
-Lists test profiles available to the authenticated patient account. The backend resolves the tenant from the authenticated patient context.
-#### Signature
-```ts
-safeCdx.listTestProfilesByAccount(
-    includeRegisterTestDetails?: boolean
-): Promise<SafeAPIResponse<TestProfileByAccountItem[]>>
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `includeRegisterTestDetails` | `boolean` | No | Includes registration-specific test details when `true`. Defaults to `true`. |
-#### Usage
-```ts
-const profiles = await safeCdx.listTestProfilesByAccount();
-```
-```ts
-const profiles = await safeCdx.listTestProfilesByAccount(true);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "IncludeRegisterTestDetails": true
-    }
+if (!submitResponse.IsOK || !submitResponse.Data?.success) {
+  throw new Error(submitResponse.Data?.message ?? submitResponse.ErrorMessage ?? "Submit failed");
 }
-```
-#### API response example
-```json
-{
-  "Data": {
-    "success": true,
-    "data": [
-      {
-        "gtin": "810172700093",
-        "productName": "Speedy Swab COVID-19 + Flu Self-Test",
-        "description": "",
-        "testKitImageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/RegisterTest/Image/4307c803740644ab8c4594f69783c1d8-638694157517533356.png",
-        "language": "en",
-        "registerTestDetail": {
-          "title": "Scan the barcode",
-          "description": "<p><span style=\"font-size: 12pt; font-family: Avenir, -apple-system, BlinkMacSystemFont, Helvetica, Arial, sans-serif;\">Hold your phone over the barcode on the box.</span></p>",
-          "buttonTitle": "Scan Code",
-          "imageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/RegisterTest/Image/1ccc293f924a4c5bb2c5fc76f474c625-638769599179275771.png"
-        }
-      },
-      {
-        "gtin": "860002060439",
-        "productName": "Winx UTI Test + Treat",
-        "description": "",
-        "testKitImageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/RegisterTest/Image/36649cb6377c435a9e4f83af0f2fea46-639058689126409862.png",
-        "language": "en",
-        "registerTestDetail": {
-          "title": "",
-          "description": "<p></p>",
-          "buttonTitle": "Scan Barcode on the Box",
-          "imageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/RegisterTest/Image/ad72c9b8c3324c1cb7aa9dbf29e46d64-638905990491115782.png"
-        }
-      },
-      {
-        "gtin": "850024942325",
-        "productName": "Vaginal Health pH Test + Treat",
-        "description": "",
-        "testKitImageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/RegisterTest/Image/3cebedbb69cb4455af33da5ab524ec93-639058688331122684.png",
-        "language": "en",
-        "registerTestDetail": {
-          "title": "",
-          "description": "<p></p>",
-          "buttonTitle": "Scan Barcode on the Box",
-          "imageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/RegisterTest/Image/1475ae0004084d749ee2dfc9123af952-638905989776168388.png"
-        }
-      }
-    ],
-    "message": "Success",
-    "code": 0
-  },
-  "ErrorMessage": null,
-  "IsOK": true
-}
+// 8. Finalize
+await safeCdx.finalizeTest(userTestResultId);
 ```
 ---
-### `getTestProfileByGTIN(...)`
+## Methods
-Resolves the Safe CDX test profile associated with a GTIN barcode.
+### `getTestProfileByGTIN(gtin)` — GET
-#### Signature
+Resolves the test profile for a GTIN barcode. Returns **Shape A**.
 ```ts
 safeCdx.getTestProfileByGTIN(gtin: string): Promise<APIResponse<GetTestProfileByGTINData>>
 ```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `gtin` | `string` | Yes | GTIN barcode value used to resolve the test profile. |
-#### Usage
 ```ts
-const profile = await safeCdx.getTestProfileByGTIN("850024942325");
+const r = await safeCdx.getTestProfileByGTIN("850024942325");
+// r.IsOK, r.Data?.ID, r.Data?.DiagnosticProfile
 ```
-#### API response example
+Example response:
 ```json
 {
   "Data": {
     "ID": "6a104bba6068dd9a213db810",
-    "FHIRID": null,
-    "CQLID": null,
     "TestName": "UTI Test + Treat",
     "CustomTestName": "UTI Test + Treat",
     "IsDeactivated": false,
     "IsOrderable": true,
-    "EnablePublicHealthReporting": true,
-    "IsSelfAssessmentMode": true,
     "CaptureMethod": 0,
-    "IsMLDisabled": false,
-    "ShortName": "UTI Test + Treat",
-    "DescriptionHTML": null,
-    "OrderableName": "Winx Health",
-    "VendorName": null,
-    "ManufactureName": null,
-    "VendorTestID": "0123",
-    "Sku": "SH00131",
-    "LabTestType": null,
-    "TestClassification": "NOT_SPECIFIED",
-    "KitRegistrationRequired": false,
-    "RequiresProviderVerificationOfResults": false,
     "DiagnosticProfile": {
       "_id": "6780031a991814469e88237f",
-      "Created": "2025-01-09T17:10:50.8Z",
-      "Modified": "2026-05-06T12:39:08.732Z",
       "TestInfo": {
         "gtin": "860002060439",
-        "testInfoHeader": "Winx Health",
         "productName": "Winx UTI Test + Treat",
-        "testCategory": "Rapid",
-        "fdaStatus": "EUA",
         "cvmlTestName": "winx-uti",
         "cvmlDuration": 20,
         "isCVMLResult": true,
-        "accountIds": [
-          "winxhealth",
-          "safehealth",
-          "test-account",
-          "speedyswab",
-          "healthcheck"
-        ],
-        "cvmlRetryLimit": 2,
-        "failoverEnabled": true,
-        "cvmlPollingPolicy": "FullResult"
+        "cvmlRetryLimit": 2
       },
       "Analyte": [
         {
           "_id": "1",
-          "DisplayOrder": 1,
-          "Display": "CVML",
           "Name": "Leukocyte",
           "Question": "What is the Leukocyte reading?",
-          "Image": "/analyte/WinxLeuk.png",
           "Responses": [
-            {
-              "value": "Negative -",
-              "displayOrder": 1,
-              "storedValue": "Neg",
-              "cvmlValue": "Neg",
-              "score": "0"
-            },
-            {
-              "value": "Positive 70+",
-              "displayOrder": 3,
-              "storedValue": "70+",
-              "cvmlValue": "70+",
-              "score": "4"
-            }
-          ]
-        },
-        {
-          "_id": "2",
-          "DisplayOrder": 2,
-          "Display": "CVML",
-          "Name": "Nitrite",
-          "Question": "What is the Nitrite reading?",
-          "Image": "/analyte/WinxNitr.png",
-          "Responses": [
-            {
-              "value": "Negative",
-              "displayOrder": 1,
-              "storedValue": "Neg",
-              "cvmlValue": "Neg",
-              "score": "0"
-            },
-            {
-              "value": "Positive High++",
-              "displayOrder": 3,
-              "storedValue": "High++",
-              "cvmlValue": "High++",
-              "score": "2"
-            }
-          ]
-        }
-      ],
-      "Cta": [
-        {
-          "id": "1",
-          "title": "No UTI is detected",
-          "instructions": "If you're still having symptoms, we recommend talking to your doctor about additional testing.",
-          "linkType": "url",
-          "linkText": "Find a Doctor",
-          "linkValue": "https://book.zocdoc.com/?utm_source=winx&utm_medium=app&utm_campaign=testandtreat"
-        }
-      ],
-      "Indication": [
-        {
-          "id": "4",
-          "title": "Indication",
-          "text": "Results suggest you have a UTI",
-          "recommendTitle": "Recommendation",
-          "recommendText": "Drink lots of water and connect with a doctor to discuss treatment and next steps.",
-          "ctaId": "2"
-        }
-      ],
-      "Decision": [
-        {
-          "calculation": "Total: analyte.responses.score",
-          "results": [
-            {
-              "indicationId": "4",
-              "value": "4"
-            }
+            { "value": "Negative -", "storedValue": "Neg", "score": "0" },
+            { "value": "Positive 70+", "storedValue": "70+", "score": "4" }
           ]
         }
       ]
-    },
-    "ProductAssetDetail": {
-      "imageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/ProductAsset/Image/47197f0c75844ba3b11335f7bfe1959b-639062362985442065.png",
-      "body": "<p></p>"
-    },
-    "DisclaimerDetail": {
-      "body": "<p><span style=\"font-family: Avenir, -apple-system, BlinkMacSystemFont, Helvetica, Arial, sans-serif; font-size: 14pt;\">At this time please refer back to your paper Instructions For Use (IFU).</span></p>",
-      "title": "Record Results",
-      "continueButtonTitle": "Continue",
-      "showDisclaimer": false
-    },
-    "ScanImageDetail": {
-      "ImageUrl": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/ScanImage/Image/590172d7548e4b3eb09bfe42679fc6b1-638900206144635626.png"
-    },
-    "Instructions": [
-      {
-        "NavigationTitle": "Instructional Video",
-        "Type": "CollectionInstructionOnly",
-        "Title": "Instructional Video",
-        "ButtonTitle": "Continue",
-        "TimeInSeconds": 0,
-        "VideoUrl": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/LabTestOrderable/CollectionInstruction/Video/3a74d7091d65455ab675f8ddd5f9d9d5-638918232791589391.mp4",
-        "SequenceOrder": 0
-      }
-    ],
-    "BillingInfo": {
-      "Taxable": false
-    },
-    "Associations": null,
-    "TestReportAsset": null,
-    "Articles": [],
-    "TestResults": [
-      {
-        "PatientTestResult": 0,
-        "ResultTitle": "Positive",
-        "ResultDisplay": "Positive",
-        "TreatmentPlanDescription": "",
-        "IsReturnToDashboardAllowed": false,
-        "IsOrderTestAllowed": false,
-        "IsFindTestRetailerAllowed": false
-      }
-    ],
-    "GS1GTINs": null,
-    "Included": null,
-    "LOINCCodes": null,
-    "TestLOINCCodes": null,
-    "TestSNOMEDCTCodes": null,
-    "Created": "2024-12-23T18:00:48.619Z",
-    "Modified": "2026-05-13T17:07:07.048Z",
-    "CreatedByID": null,
-    "ModifiedByID": null,
-    "TenantID": null
+    }
   },
   "ErrorMessage": null,
   "IsOK": true
@@ -521,58 +243,85 @@ const profile = await safeCdx.getTestProfileByGTIN("850024942325");
 ---
-### `createUploadUrl(...)`
+### `listTestProfilesByAccount(includeRegisterTestDetails?)` — POST
-Creates a pre-signed URL for uploading a test image.
+Lists test profiles for the patient's account. Returns **Shape B** — read `r.Data.data` for the array.
-#### Signature
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `includeRegisterTestDetails` | `boolean` | `true` | Include registration UI details |
 ```ts
-safeCdx.createUploadUrl(
-    userTestResultId: string,
-    gtin: string,
-    imageType?: string
-): Promise<APIResponse<CreateUploadUrlData>>
+safeCdx.listTestProfilesByAccount(
+  includeRegisterTestDetails?: boolean
+): Promise<APIResponse<SafeAPIResponse<TestProfileByAccountItem[]>>>
 ```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `userTestResultId` | `string` | Yes | Test result identifier reused through the workflow. |
-| `gtin` | `string` | Yes | GTIN associated with the selected test. |
-| `imageType` | `string` | No | Image type used in upload metadata. Defaults to `"jpg"`. |
-#### Usage
 ```ts
-const upload = await safeCdx.createUploadUrl(
-    userTestResultId,
-    gtin,
-    "jpg"
-);
+const r = await safeCdx.listTestProfilesByAccount();
+if (r.IsOK && r.Data?.success) {
+  const profiles = r.Data.data;  // TestProfileByAccountItem[]
+}
 ```
-#### API request sent internally
+Example response:
 ```json
 {
-    "Data": {
-        "Gtin": "<GTIN>",
-        "UserTestResultId": "<USER_TEST_RESULT_ID>",
-        "Metadata": {
-            "ImageType": "jpg"
+  "Data": {
+    "success": true,
+    "data": [
+      {
+        "gtin": "860002060439",
+        "productName": "Winx UTI Test + Treat",
+        "testKitImageURL": "https://safe-content-cache-us-west-2-quality-speed.s3-us-west-2.amazonaws.com/...",
+        "language": "en",
+        "registerTestDetail": {
+          "title": "",
+          "buttonTitle": "Scan Barcode on the Box"
         }
-    }
+      }
+    ],
+    "message": "Success",
+    "code": 0
+  },
+  "ErrorMessage": null,
+  "IsOK": true
 }
 ```
-#### API response example
+---
+### `createUploadUrl(userTestResultId, gtin, imageType?)` — POST
+Creates a pre-signed S3 URL for uploading the test image. Returns **Shape A**.
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `userTestResultId` | `string` | — | From `getTestProfileByGTIN` response (`Data.ID`) |
+| `gtin` | `string` | — | GTIN of the selected test |
+| `imageType` | `string` | `"jpg"` | Image format for upload metadata |
+```ts
+safeCdx.createUploadUrl(
+  userTestResultId: string,
+  gtin: string,
+  imageType?: string
+): Promise<APIResponse<CreateUploadUrlData>>
+```
+```ts
+const r = await safeCdx.createUploadUrl(userTestResultId, gtin);
+const preSignedURL = r.Data?.preSignedURL;
+const imageOfCaptureId = r.Data?.Metadata?.UploadId;
+```
+Example response:
 ```json
 {
   "Data": {
-    "preSignedURL": "https://sf-us-west-2-lower-neural-cdx-img-uploads-quality.s3.us-west-2.amazonaws.com/healthcheck/winx-uti/860002060439_6a104bba6068dd9a213db810-1.jpg?X-Amz-Expires=1200&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=***&X-Amz-Date=20260522T123118Z&X-Amz-SignedHeaders=host&X-Amz-Signature=***",
+    "preSignedURL": "https://sf-us-west-2-lower-neural-cdx-img-uploads-quality.s3.us-west-2.amazonaws.com/healthcheck/winx-uti/...?X-Amz-Expires=1200&...",
     "Metadata": {
       "UploadId": "860002060439_6a104bba6068dd9a213db810-1",
       "Type": "Rapid Test Kit Upload",
@@ -586,97 +335,53 @@ const upload = await safeCdx.createUploadUrl(
 ---
-### `uploadImage(...)`
+### `uploadImage(preSignedURL, image, contentType?)` — PUT (direct S3)
-Uploads an image directly to the pre-signed URL returned by `createUploadUrl(...)`. This method does not call a Safe CDX API route and does not send Health Cloud authentication headers.
+Uploads the image directly to the pre-signed storage URL. Returns `Promise<void>`.
-#### Signature
+**Does not call a Safe CDX API route. Does not send Health Cloud auth headers.** The pre-signed URL provides its own credential. Invalid `preSignedURL`, `image`, or `contentType` input throws `ValidationError`. A non-2xx storage response throws an HTTP-status-mapped connector error.
-```ts
-safeCdx.uploadImage(
-    preSignedURL: string,
-    image: BodyInit,
-    contentType?: string
-): Promise<void>
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `preSignedURL` | `string` | Yes | Temporary storage upload URL returned by `createUploadUrl(...)`. |
-| `image` | `BodyInit` | Yes | Raw image body, such as a `File`, `Blob` or compatible upload body. |
-| `contentType` | `string` | No | MIME type of the uploaded file. Defaults to `"image/jpeg"`. |
-#### Usage
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `preSignedURL` | `string` | — | From `createUploadUrl` response |
+| `image` | `BodyInit` | — | Raw image — `File`, `Blob`, `Buffer`, etc. |
+| `contentType` | `string` | `"image/jpeg"` | MIME type |
 ```ts
-await safeCdx.uploadImage(
-    preSignedURL,
-    imageBody,
-    "image/jpeg"
-);
+await safeCdx.uploadImage(preSignedURL, imageBody, "image/jpeg");
 ```
-A failed direct upload throws `SafeCDXError`.
 ---
-### `updateCvmlStatus(...)`
+### `updateCvmlStatus(imageOfCaptureId, cvmlStatus)` — POST
-Updates the CVML processing status for a captured image. This endpoint returns `SafeAPIResponse<T>` directly.
+Notifies the CVML service of the processing status for an image capture. Returns **Shape C** — read `r.success` and `r.data` directly.
-#### Signature
+| Parameter | Type | Description |
+|---|---|---|
+| `imageOfCaptureId` | `string` | `UploadId` from `createUploadUrl` metadata |
+| `cvmlStatus` | `string` | Processing status, e.g. `"ImageProcessing"` |
 ```ts
 safeCdx.updateCvmlStatus(
-    imageOfCaptureId: string,
-    cvmlStatus: string
-): Promise<UpdateCvmlStatusResponse>
+  imageOfCaptureId: string,
+  cvmlStatus: string
+): Promise<UpdateCvmlStatusResponse>  // = SafeAPIResponse<EntityReferenceData>
 ```
-`UpdateCvmlStatusResponse` is:
-```ts
-type UpdateCvmlStatusResponse =
-    SafeAPIResponse<EntityReferenceData>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `imageOfCaptureId` | `string` | Yes | Identifier returned in the image upload metadata. |
-| `cvmlStatus` | `string` | Yes | CVML processing status to apply, such as `"ImageProcessing"`. |
-#### Usage
 ```ts
-const response = await safeCdx.updateCvmlStatus(
-    imageOfCaptureId,
-    "ImageProcessing"
-);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "ImageOfCaptureId": "<IMAGE_OF_CAPTURE_ID>",
-        "CvmlStatus": "ImageProcessing"
-    }
+const r = await safeCdx.updateCvmlStatus(imageOfCaptureId, "ImageProcessing");
+if (r.success) {
+  const id = r.data?._id;
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "success": true,
-  "data": {
-    "_id": "6a104bba6068dd9a213db810"
-  },
+  "data": { "_id": "6a104bba6068dd9a213db810" },
   "message": "Success",
   "code": 0
 }
@@ -684,75 +389,47 @@ const response = await safeCdx.updateCvmlStatus(
 ---
-### `getCvmlResults(...)`
+### `getCvmlResults(imageOfCaptureId)` — GET
-Polls CVML results for a captured image. This endpoint returns `SafeAPIResponse<T>` directly.
-#### Signature
+Returns CVML analysis results for a captured image. Returns **Shape C**.
 ```ts
 safeCdx.getCvmlResults(
-    imageOfCaptureId: string
-): Promise<GetCvmlResultsResponse>
+  imageOfCaptureId: string
+): Promise<GetCvmlResultsResponse>  // = SafeAPIResponse<CvmlResultsData>
 ```
-`GetCvmlResultsResponse` is:
 ```ts
-type GetCvmlResultsResponse =
-    SafeAPIResponse<CvmlResultsData>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `imageOfCaptureId` | `string` | Yes | Identifier of the captured image being processed. |
-#### Usage
-```ts
-const response = await safeCdx.getCvmlResults(imageOfCaptureId);
+const r = await safeCdx.getCvmlResults(imageOfCaptureId);
+if (r.success) {
+  const cvmlStatus = r.data?.cvmlStatus;  // e.g. "Retake", "Positive", "Negative"
+}
 ```
-#### API response example
+Example response:
 ```json
 {
   "success": true,
   "data": {
-    "userID": "5d00527a-2a9c-4d68-a7f4-8f154b2ca3e6",
+    "_id": "6a104bba6068dd9a213db810",
     "status": "Started",
     "cvmlStatus": "Retake",
     "gtin": "860002060439",
     "isCVMLResult": true,
-    "isSelfReportingPostTest": false,
-    "schemaVersion": 1,
     "capture": {
       "retryCount": 0,
-      "retryLimit": 0,
+      "retryLimit": 2,
       "failoverEnabled": true,
       "lastCvmlStatus": "Retake",
       "failoverTriggered": false
     },
-    "questionnaireSnapshot": {
-      "isValid": []
-    },
-    "resumed": false,
     "imageOfCaptureResult": {
       "parsed": {
         "outcome": "Retake",
-        "responseCode": "Err4",
-        "responseMessage": "ml_result_code_error_04_msg",
-        "responseTitle": "ml_result_code_error_04_title"
+        "responseCode": "Err4"
       }
-    },
-    "failoverEnabled": true,
-    "failoverTriggered": false,
-    "resumable": false,
-    "showValidity": false,
-    "showError": true,
-    "_id": "6a104bba6068dd9a213db810"
+    }
   },
   "message": "Success",
   "code": 0
@@ -761,54 +438,28 @@ const response = await safeCdx.getCvmlResults(imageOfCaptureId);
 ---
-### `listPendingResults(...)`
+### `listPendingResults(excludeStatus?)` — POST
-Returns pending or incomplete test results for the authenticated patient.
+Returns incomplete or pending test results for the patient. Returns **Shape B**.
-#### Signature
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `excludeStatus` | `string` | `"Invalid,Canceled"` | Comma-separated statuses to exclude |
 ```ts
 safeCdx.listPendingResults(
-    excludeStatus?: string
-): Promise<APIResponse<GetPendingResultsData>>
+  excludeStatus?: string
+): Promise<APIResponse<SafeAPIResponse<TestResultSummary[]>>>
 ```
-`GetPendingResultsData` is:
 ```ts
-type GetPendingResultsData =
-    SafeAPIResponse<TestResultSummary[]>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `excludeStatus` | `string` | No | Comma-separated statuses excluded from the returned results. Defaults to `"Invalid,Canceled"`. |
-#### Usage
-```ts
-const pending = await safeCdx.listPendingResults();
-```
-```ts
-const pending = await safeCdx.listPendingResults(
-    "Invalid,Canceled"
-);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "ExcludeStatus": "Invalid,Canceled"
-    }
+const r = await safeCdx.listPendingResults();
+if (r.IsOK && r.Data?.success) {
+  const pending = r.Data.data;  // TestResultSummary[]
 }
 ```
-#### API response example
+Example response:
 ```json
 {
@@ -816,68 +467,14 @@ const pending = await safeCdx.listPendingResults(
     "success": true,
     "data": [
       {
+        "_id": "6a104bba6068dd9a213db810",
         "status": "Started",
         "cvmlStatus": "Retake",
         "gtin": "860002060439",
         "testName": "Winx UTI Test + Treat",
         "recordedDate": "2026-05-22T12:49:26.047Z",
-        "isCVMLBackground": false,
-        "isCVMLResult": true,
-        "isSelfReportingPostTest": false,
-        "isSelfReportingPreTest": false,
-        "viewed": false,
-        "schemaVersion": 1,
-        "capture": {
-          "retryCount": 0,
-          "retryLimit": 0,
-          "failoverEnabled": true,
-          "lastCvmlStatus": "Retake",
-          "failoverTriggered": false
-        },
-        "questionnaireSnapshot": {
-          "isValid": []
-        },
-        "resumed": false,
-        "failoverEnabled": true,
-        "failoverTriggered": false,
         "resumable": true,
-        "resumeNext": "SelfReporting",
-        "showValidity": false,
-        "showError": true,
-        "_id": "6a104bba6068dd9a213db810"
-      },
-      {
-        "status": "Started",
-        "gtin": "810172700093",
-        "testName": "Speedy Swab COVID-19 + Flu Self-Test",
-        "recordedDate": "2026-05-22T10:11:10.181Z",
-        "isCVMLBackground": true,
-        "isCVMLResult": false,
-        "isSelfReportingPostTest": true,
-        "isSelfReportingPreTest": false,
-        "viewed": false,
-        "schemaVersion": 1,
-        "capture": {
-          "retryCount": 0,
-          "retryLimit": 0,
-          "failoverEnabled": true,
-          "failoverTriggered": false
-        },
-        "questionnaireSnapshot": {
-          "isValid": [
-            {
-              "display": "post-test",
-              "question": "Do you see a control line (C)?"
-            }
-          ]
-        },
-        "resumed": false,
-        "failoverEnabled": true,
-        "failoverTriggered": false,
-        "resumable": false,
-        "showValidity": false,
-        "showError": true,
-        "_id": "6a102bbe6068dd9a213db80f"
+        "resumeNext": "SelfReporting"
       }
     ],
     "message": "Success",
@@ -890,186 +487,41 @@ const pending = await safeCdx.listPendingResults(
 ---
-### `getLastResults(...)`
+### `getLastResults(excludeStatus?)` — POST
-Returns the most recent test result for the authenticated patient.
+Returns the most recent test result for the patient. Returns **Shape B**. `Data.data` may be `null` if no results exist.
-#### Signature
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `excludeStatus` | `string` | `"Invalid"` | Status to exclude |
 ```ts
 safeCdx.getLastResults(
-    excludeStatus?: string
-): Promise<APIResponse<GetLastResultsData>>
-```
-`GetLastResultsData` is:
-```ts
-type GetLastResultsData =
-    SafeAPIResponse<TestResultDetails>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `excludeStatus` | `string` | No | Status excluded from the returned result. Defaults to `"Invalid"`. |
-#### Usage
-```ts
-const lastResult = await safeCdx.getLastResults();
+  excludeStatus?: string
+): Promise<APIResponse<SafeAPIResponse<TestResultDetails>>>
 ```
 ```ts
-const lastResult = await safeCdx.getLastResults("Invalid");
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "ExcludeStatus": "Invalid"
-    }
+const r = await safeCdx.getLastResults();
+if (r.IsOK && r.Data?.success && r.Data.data) {
+  const latest = r.Data.data;  // TestResultDetails
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "Data": {
     "success": true,
     "data": {
-      "cvmlUploadId": "6a104bba6068dd9a213db810",
-      "userID": "5d00527a-2a9c-4d68-a7f4-8f154b2ca3e6",
-      "tenantID": "healthcheck",
-      "isSelfAssessment": false,
+      "_id": "6a104bba6068dd9a213db810",
       "status": "Started",
       "cvmlStatus": "Retake",
       "gtin": "860002060439",
-      "testInfoHeader": "Winx Health",
       "testName": "Winx UTI Test + Treat",
-      "imageOfCapture": "860002060439_6a104bba6068dd9a213db810-1.jpg",
-      "imageOfCaptureUploadAt": "2026-05-22T12:31:18.333Z",
-      "imageOfCaptureResults": [
-        {
-          "imageOfCapture": "860002060439_6a104bba6068dd9a213db810-1.jpg",
-          "uploadAt": "2026-05-22T12:31:18.333Z",
-          "cvmlStatus": "Retake",
-          "parsed": {
-            "outcome": "Retake",
-            "responseCode": "Err4",
-            "responseMessage": "ml_result_code_error_04_msg",
-            "responseTitle": "ml_result_code_error_04_title"
-          }
-        }
-      ],
-      "resultPDF": "archive/2026/05/22/12/48/7ecfd730-c4c3-4cd6-8b12-4210b9a2db28.pdf",
-      "result": [
-        {
-          "analyte": "Purchase",
-          "reportedValue": "drug store",
-          "storedValue": "drug store",
-          "score": "0"
-        }
-      ],
       "recordedDate": "2026-05-22T12:49:26.047Z",
-      "cvmlTestName": "winx-uti",
-      "isCVMLBackground": false,
-      "isCVMLResult": true,
-      "isSelfReportingPostTest": false,
-      "isSelfReportingPreTest": false,
-      "viewed": false,
-      "finalized": false,
-      "schemaVersion": 1,
-      "capture": {
-        "retryCount": 1,
-        "retryLimit": 2,
-        "failoverEnabled": true,
-        "lastCvmlStatus": "Retake",
-        "failoverTriggered": false
-      },
-      "questionnaireSnapshot": {
-        "isValid": [],
-        "analyte": [
-          {
-            "_id": "1",
-            "displayOrder": 1,
-            "display": "CVML",
-            "name": "Leukocyte",
-            "question": "What is the Leukocyte reading?",
-            "image": "WinxLeuk.png",
-            "cvmlOrder": 1,
-            "responses": [
-              {
-                "value": "Negative -",
-                "displayOrder": 1,
-                "storedValue": "Neg",
-                "cvmlValue": "Neg",
-                "score": "0"
-              },
-              {
-                "value": "Trace 15+-",
-                "displayOrder": 2,
-                "storedValue": "15+-",
-                "cvmlValue": "15+-",
-                "score": "3"
-              },
-              {
-                "value": "Positive 70+",
-                "displayOrder": 3,
-                "storedValue": "70+",
-                "cvmlValue": "70+",
-                "score": "4"
-              }
-            ]
-          },
-          {
-            "_id": "2",
-            "displayOrder": 2,
-            "display": "CVML",
-            "name": "Nitrite",
-            "question": "What is the Nitrite reading?",
-            "image": "WinxNitr.png",
-            "cvmlOrder": 2,
-            "responses": [
-              {
-                "value": "Negative",
-                "displayOrder": 1,
-                "storedValue": "Neg",
-                "cvmlValue": "Neg",
-                "score": "0"
-              },
-              {
-                "value": "Positive Low+",
-                "displayOrder": 2,
-                "storedValue": "Low+",
-                "cvmlValue": "Low+",
-                "score": "2"
-              },
-              {
-                "value": "Positive High++",
-                "displayOrder": 3,
-                "storedValue": "High++",
-                "cvmlValue": "High++",
-                "score": "2"
-              }
-            ]
-          }
-        ]
-      },
-      "resumed": false,
-      "language": "en",
-      "labVendor": "Winx Health",
-      "labTestType": "Home Test (Rapid)",
-      "externalId": "test-user@example.com",
-      "positiveAnalytes": [],
-      "_id": "6a104bba6068dd9a213db810",
-      "modifier": "5d00527a-2a9c-4d68-a7f4-8f154b2ca3e6",
-      "created": "2026-05-22T12:27:38.731Z",
-      "modified": "2026-05-22T12:49:26.047Z"
+      "finalized": false
     },
     "message": "Success",
     "code": 0
@@ -1081,52 +533,28 @@ const lastResult = await safeCdx.getLastResults("Invalid");
 ---
-### `listTestHistory(...)`
+### `listTestHistory(excludeStatus?)` — POST
-Returns test result history for the authenticated patient.
+Returns the full test result history for the patient. Returns **Shape B**.
-#### Signature
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `excludeStatus` | `string` | `"Invalid"` | Status to exclude |
 ```ts
 safeCdx.listTestHistory(
-    excludeStatus?: string
-): Promise<APIResponse<GetTestHistoryData>>
+  excludeStatus?: string
+): Promise<APIResponse<SafeAPIResponse<TestResultSummary[]>>>
 ```
-`GetTestHistoryData` is:
 ```ts
-type GetTestHistoryData =
-    SafeAPIResponse<TestResultSummary[]>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `excludeStatus` | `string` | No | Status excluded from the returned history. Defaults to `"Invalid"`. |
-#### Usage
-```ts
-const history = await safeCdx.listTestHistory();
-```
-```ts
-const history = await safeCdx.listTestHistory("Invalid");
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "ExcludeStatus": "Invalid"
-    }
+const r = await safeCdx.listTestHistory();
+if (r.IsOK && r.Data?.success) {
+  const history = r.Data.data;  // TestResultSummary[]
 }
 ```
-#### API response example
+Example response:
 ```json
 {
@@ -1134,29 +562,11 @@ const history = await safeCdx.listTestHistory("Invalid");
     "success": true,
     "data": [
       {
+        "_id": "6a104bba6068dd9a213db810",
         "status": "Started",
-        "cvmlStatus": "Retake",
-        "testInfoHeader": "Winx Health",
         "testName": "Winx UTI Test + Treat",
         "recordedDate": "2026-05-22T12:49:26.047Z",
-        "viewed": false,
-        "schemaVersion": 1,
-        "overallResult": "Unknown",
-        "positiveAnalytes": [],
-        "_id": "6a104bba6068dd9a213db810",
-        "created": "2026-05-22T12:27:38.731Z"
-      },
-      {
-        "status": "Started",
-        "testInfoHeader": "Biolabs International",
-        "testName": "Speedy Swab COVID-19 + Flu Self-Test",
-        "recordedDate": "2026-05-22T10:11:10.181Z",
-        "viewed": false,
-        "schemaVersion": 1,
-        "overallResult": "Unknown",
-        "positiveAnalytes": [],
-        "_id": "6a102bbe6068dd9a213db80f",
-        "created": "2026-05-22T10:11:10.181Z"
+        "overallResult": "Unknown"
       }
     ],
     "message": "Success",
@@ -1169,175 +579,38 @@ const history = await safeCdx.listTestHistory("Invalid");
 ---
-### `getResultDetails(...)`
-Returns detailed data for a specific test attempt. This endpoint returns `SafeAPIResponse<T>` directly.
+### `getResultDetails(userTestResultId)` — POST
-#### Signature
+Returns full details for a specific test attempt. Returns **Shape C** — read `r.success` and `r.data` directly.
 ```ts
 safeCdx.getResultDetails(
-    userTestResultId: string
-): Promise<GetResultDetailsResponse>
+  userTestResultId: string
+): Promise<GetResultDetailsResponse>  // = SafeAPIResponse<TestResultDetails>
 ```
-`GetResultDetailsResponse` is:
 ```ts
-type GetResultDetailsResponse =
-    SafeAPIResponse<TestResultDetails>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `userTestResultId` | `string` | Yes | Identifier of the test attempt. |
-#### Usage
-```ts
-const details = await safeCdx.getResultDetails(userTestResultId);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>"
-    }
+const r = await safeCdx.getResultDetails(userTestResultId);
+if (r.success) {
+  const details = r.data;  // TestResultDetails
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "success": true,
   "data": {
-    "cvmlUploadId": "6a104bba6068dd9a213db810",
-    "userID": "5d00527a-2a9c-4d68-a7f4-8f154b2ca3e6",
-    "tenantID": "healthcheck",
-    "isSelfAssessment": false,
+    "_id": "6a104bba6068dd9a213db810",
     "status": "Started",
     "cvmlStatus": "Retake",
     "gtin": "860002060439",
-    "testInfoHeader": "Winx Health",
     "testName": "Winx UTI Test + Treat",
-    "imageOfCapture": "860002060439_6a104bba6068dd9a213db810-1.jpg",
-    "imageOfCaptureUploadAt": "2026-05-22T12:31:18.333Z",
-    "imageOfCaptureResults": [
-      {
-        "imageOfCapture": "860002060439_6a104bba6068dd9a213db810-1.jpg",
-        "uploadAt": "2026-05-22T12:31:18.333Z",
-        "cvmlStatus": "Retake",
-        "parsed": {
-          "outcome": "Retake",
-          "responseCode": "Err4",
-          "responseMessage": "ml_result_code_error_04_msg",
-          "responseTitle": "ml_result_code_error_04_title"
-        }
-      }
-    ],
-    "result": [],
-    "recordedDate": "2026-05-22T12:27:38.731Z",
-    "cvmlTestName": "winx-uti",
-    "isCVMLBackground": false,
-    "isCVMLResult": true,
-    "isSelfReportingPostTest": false,
-    "isSelfReportingPreTest": false,
-    "viewed": false,
     "finalized": false,
-    "schemaVersion": 1,
-    "capture": {
-      "retryCount": 1,
-      "retryLimit": 2,
-      "failoverEnabled": true,
-      "lastCvmlStatus": "Retake",
-      "failoverTriggered": false
-    },
-    "questionnaireSnapshot": {
-      "isValid": [],
-      "analyte": [
-        {
-          "_id": "1",
-          "displayOrder": 1,
-          "display": "CVML",
-          "name": "Leukocyte",
-          "question": "What is the Leukocyte reading?",
-          "image": "WinxLeuk.png",
-          "cvmlOrder": 1,
-          "responses": [
-            {
-              "value": "Negative -",
-              "displayOrder": 1,
-              "storedValue": "Neg",
-              "cvmlValue": "Neg",
-              "score": "0"
-            },
-            {
-              "value": "Trace 15+-",
-              "displayOrder": 2,
-              "storedValue": "15+-",
-              "cvmlValue": "15+-",
-              "score": "3"
-            },
-            {
-              "value": "Positive 70+",
-              "displayOrder": 3,
-              "storedValue": "70+",
-              "cvmlValue": "70+",
-              "score": "4"
-            }
-          ]
-        },
-        {
-          "_id": "2",
-          "displayOrder": 2,
-          "display": "CVML",
-          "name": "Nitrite",
-          "question": "What is the Nitrite reading?",
-          "image": "WinxNitr.png",
-          "cvmlOrder": 2,
-          "responses": [
-            {
-              "value": "Negative",
-              "displayOrder": 1,
-              "storedValue": "Neg",
-              "cvmlValue": "Neg",
-              "score": "0"
-            },
-            {
-              "value": "Positive Low+",
-              "displayOrder": 2,
-              "storedValue": "Low+",
-              "cvmlValue": "Low+",
-              "score": "2"
-            },
-            {
-              "value": "Positive High++",
-              "displayOrder": 3,
-              "storedValue": "High++",
-              "cvmlValue": "High++",
-              "score": "2"
-            }
-          ]
-        }
-      ]
-    },
-    "resumed": false,
-    "language": "en",
-    "labVendor": "Winx Health",
-    "labTestType": "Home Test (Rapid)",
-    "statusResultsText": "",
-    "externalId": "test-user@example.com",
-    "overallResult": "Unknown",
-    "positiveAnalytes": [],
-    "_id": "6a104bba6068dd9a213db810",
-    "modifier": "system",
-    "created": "2026-05-22T12:27:38.731Z",
-    "modified": "2026-05-22T12:33:17.308Z"
+    "result": [
+      { "analyte": "Purchase", "reportedValue": "drug store", "storedValue": "drug store", "score": "0" }
+    ]
   },
   "message": "Success",
   "code": 0
@@ -1346,51 +619,30 @@ const details = await safeCdx.getResultDetails(userTestResultId);
 ---
-### `getResultPdf(...)`
-Requests the PDF result for a specific test attempt.
+### `getResultPdf(userTestResultId)` — POST
-#### Signature
+Returns a pre-signed S3 URL for the PDF result. Returns **Shape B**. `Data.data` is the URL string.
 ```ts
-safeCdx.getResultPdf(userTestResultId: string): Promise<APIResponse<GetResultPdfData>>
+safeCdx.getResultPdf(
+  userTestResultId: string
+): Promise<APIResponse<SafeAPIResponse<string>>>
 ```
-`GetResultPdfData` is:
 ```ts
-type GetResultPdfData = SafeAPIResponse<string>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `userTestResultId` | `string` | Yes | Identifier of the test attempt. |
-#### Usage
-```ts
-const pdf = await safeCdx.getResultPdf(userTestResultId);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>"
-    }
+const r = await safeCdx.getResultPdf(userTestResultId);
+if (r.IsOK && r.Data?.success) {
+  const pdfUrl = r.Data.data;  // string — pre-signed S3 URL
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "Data": {
     "success": true,
-    "data": "https://safe-manual-test-results-us-west-2-quality-speed.s3.us-west-2.amazonaws.com/archive/2026/05/22/12/48/7ecfd730-c4c3-4cd6-8b12-4210b9a2db28.pdf?X-Amz-Expires=900&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=***&X-Amz-Date=20260522T124843Z&X-Amz-SignedHeaders=host&X-Amz-Signature=***",
+    "data": "https://safe-manual-test-results-us-west-2-quality-speed.s3.us-west-2.amazonaws.com/archive/2026/05/22/12/48/7ecfd730-c4c3-4cd6-8b12-4210b9a2db28.pdf?X-Amz-Expires=900&...",
     "message": "Success",
     "code": 0
   },
@@ -1401,53 +653,29 @@ const pdf = await safeCdx.getResultPdf(userTestResultId);
 ---
-### `getImageCaptureUrl(...)`
-Requests image capture data for a specific test attempt. This endpoint returns `SafeAPIResponse<T>` directly.
+### `getImageCaptureUrl(userTestResultId)` — POST
-#### Signature
+Returns image capture metadata for a test attempt. Returns **Shape C**.
 ```ts
 safeCdx.getImageCaptureUrl(
-    userTestResultId: string
-): Promise<GetImageCaptureUrlResponse>
+  userTestResultId: string
+): Promise<GetImageCaptureUrlResponse>  // = SafeAPIResponse<string>
 ```
-`GetImageCaptureUrlResponse` is:
 ```ts
-type GetImageCaptureUrlResponse =
-    SafeAPIResponse<string>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `userTestResultId` | `string` | Yes | Identifier of the test attempt. |
-#### Usage
-```ts
-const imageUrl = await safeCdx.getImageCaptureUrl(userTestResultId);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>"
-    }
+const r = await safeCdx.getImageCaptureUrl(userTestResultId);
+if (r.success) {
+  const imageUrl = r.data;  // string — pre-signed URL
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "success": true,
-  "data": "https://sf-us-west-2-lower-neural-cdx-img-uploads-quality.s3.us-west-2.amazonaws.com/healthcheck/winx-uti/860002060439_6a104bba6068dd9a213db810-1.jpg?X-Amz-Expires=900&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=***&X-Amz-Date=20260522T125017Z&X-Amz-SignedHeaders=host&X-Amz-Signature=***",
+  "data": "https://sf-us-west-2-lower-neural-cdx-img-uploads-quality.s3.us-west-2.amazonaws.com/healthcheck/winx-uti/...?X-Amz-Expires=900&...",
   "message": "Success",
   "code": 0
 }
@@ -1455,70 +683,40 @@ const imageUrl = await safeCdx.getImageCaptureUrl(userTestResultId);
 ---
-### `resumeFlow(...)`
+### `resumeFlow(userTestResultId, resumed?)` — POST
-Marks a test attempt as resumed or not resumed.
+Marks a test attempt as resumed or not. Returns **Shape B**.
-#### Signature
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `userTestResultId` | `string` | — | Test attempt identifier |
+| `resumed` | `boolean` | `true` | Resume state to set |
 ```ts
 safeCdx.resumeFlow(
-    userTestResultId: string,
-    resumed?: boolean
-): Promise<APIResponse<ResumeFlowData>>
+  userTestResultId: string,
+  resumed?: boolean
+): Promise<APIResponse<SafeAPIResponse<ResumeFlowResult>>>
 ```
-`ResumeFlowData` is:
-```ts
-type ResumeFlowData =
-    SafeAPIResponse<ResumeFlowResult>;
-```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `userTestResultId` | `string` | Yes | Identifier of the test attempt. |
-| `resumed` | `boolean` | No | Resume state sent to the API. Defaults to `true`. |
-#### Usage
 ```ts
-const response = await safeCdx.resumeFlow(userTestResultId);
-```
-```ts
-const response = await safeCdx.resumeFlow(
-    userTestResultId,
-    true
-);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>",
-        "Resumed": true
-    }
+const r = await safeCdx.resumeFlow(userTestResultId, true);
+if (r.IsOK && r.Data?.success) {
+  const result = r.Data.data;  // ResumeFlowResult
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "Data": {
     "success": true,
     "data": {
+      "_id": "6a02f6da6068dd9a213db7cb",
       "cvmlStatus": "Retake",
-      "reportType": "SELF",
       "resumed": true,
-      "failoverTriggered": false,
-      "showValidity": false,
-      "_id": "6a02f6da6068dd9a213db7cb"
+      "failoverTriggered": false
     },
     "message": "Success",
     "code": 0
@@ -1530,75 +728,40 @@ const response = await safeCdx.resumeFlow(
 ---
-### `submitAnswers(...)`
+### `submitAnswers(submission)` — POST
-Submits analyte answers for a test attempt. This method accepts a structured object because the request contains a collection of answer entries.
+Submits analyte answers for a test attempt. Returns **Shape B**.
-#### Signature
+| Parameter | Type | Required | Description |
+|---|---|---|---|
+| `submission.UserTestResultId` | `string` | Yes | Test attempt identifier |
+| `submission.Result` | `AnswerResult[]` | Yes | At least one answer required |
 ```ts
 safeCdx.submitAnswers(
-    submission: SubmitAnswersRequest
-): Promise<APIResponse<SubmitAnswersData>>
-```
-`SubmitAnswersData` is:
-```ts
-type SubmitAnswersData =
-    SafeAPIResponse<EntityReferenceData>;
+  submission: SubmitAnswersRequest
+): Promise<APIResponse<SafeAPIResponse<EntityReferenceData>>>
 ```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `submission.UserTestResultId` | `string` | Yes | Identifier of the test attempt. |
-| `submission.Result` | `AnswerResult[]` | Yes | Answer entries submitted for the test attempt. |
-#### Usage
 ```ts
-const response = await safeCdx.submitAnswers({
-    UserTestResultId: userTestResultId,
-    Result: [
-        {
-            Analyte: "Purchase",
-            ReportedValue: "drug store",
-            StoredValue: "drug store",
-            Score: "0"
-        }
-    ]
+const r = await safeCdx.submitAnswers({
+  UserTestResultId: userTestResultId,
+  Result: [
+    { Analyte: "Purchase", ReportedValue: "drug store", StoredValue: "drug store", Score: "0" }
+  ]
 });
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>",
-        "Result": [
-            {
-                "Analyte": "Purchase",
-                "ReportedValue": "drug store",
-                "StoredValue": "drug store",
-                "Score": "0"
-            }
-        ]
-    }
+if (r.IsOK && r.Data?.success) {
+  const id = r.Data.data?._id;
 }
 ```
-#### API response example
+Example response:
 ```json
 {
   "Data": {
     "success": true,
-    "data": {
-      "_id": "6a104bba6068dd9a213db810"
-    },
+    "data": { "_id": "6a104bba6068dd9a213db810" },
     "message": "Success",
     "code": 0
   },
@@ -1609,82 +772,48 @@ const response = await safeCdx.submitAnswers({
 ---
-### `finalizeTest(...)`
+### `finalizeTest(userTestResultId)` — POST
-Finalizes the test attempt identified by `userTestResultId`.
+Finalizes a test attempt. Returns **Shape A**.
-#### Signature
+`Data` is typed as `unknown`, so treat any returned payload as illustrative rather than a stable SDK contract. Check `r.IsOK` for success.
 ```ts
-safeCdx.finalizeTest(userTestResultId: string): Promise<APIResponse<FinalizeTestData>>
+safeCdx.finalizeTest(userTestResultId: string): Promise<APIResponse<unknown>>
 ```
-#### Parameters
-| Parameter | Type | Required | Description |
-|---|---|---:|---|
-| `userTestResultId` | `string` | Yes | Identifier of the test attempt to finalize. |
-#### Usage
 ```ts
-const response = await safeCdx.finalizeTest(userTestResultId);
-```
-#### API request sent internally
-```json
-{
-    "Data": {
-        "UserTestResultId": "<USER_TEST_RESULT_ID>"
-    }
+const r = await safeCdx.finalizeTest(userTestResultId);
+if (r.IsOK) {
+  // test finalized
 }
 ```
-## Distinct API Host
-Safe CDX calls a **different backend service** from all other connectors. The host is `api-hcs.healthcloud-services.com` (not `api-healthcheck.healthcloud-services.com`). The URL is derived from `loginClient.getEnvironment()`:
-| Environment | Host |
-| --- | --- |
-| `dev` | `https://dev-api-hcs.healthcloud-services.com/api/console/hcservice/safecdx` |
-| `uat` | `https://uat-api-hcs.healthcloud-services.com/api/console/hcservice/safecdx` |
-| `prod` | `https://api-hcs.healthcloud-services.com/api/console/hcservice/safecdx` |
-`loginClient.getBaseUrl()` is **not used** by this connector — it points to the Healthcheck API, not SafeCDX.
----
-## Response Type by Method
-| Method | Returns |
-| --- | --- |
-| `getTestProfileByGTIN(gtin)` | `APIResponse<GetTestProfileByGTINData>` |
-| `listTestProfilesByAccount(...)` | `SafeAPIResponse<TestProfileByAccountItem[]>` |
-| `createUploadUrl(...)` | `APIResponse<CreateUploadUrlData>` |
-| `uploadImage(preSignedURL, image, contentType?)` | `Promise<void>` — direct S3 upload, no envelope |
-| `updateCvmlStatus(...)` | `SafeAPIResponse<UpdateCvmlStatusResponse>` |
-| `getCvmlResults(imageOfCaptureId)` | `SafeAPIResponse<GetCvmlResultsResponse>` |
-| `listPendingResults(excludeStatus?)` | `APIResponse<GetPendingResultsData>` |
-| `getLastResults(excludeStatus?)` | `APIResponse<GetLastResultsData>` |
-| `listTestHistory(excludeStatus?)` | `APIResponse<GetTestHistoryData>` |
-| `getResultDetails(userTestResultId)` | `SafeAPIResponse<GetResultDetailsResponse>` |
-| `getResultPdf(userTestResultId)` | `APIResponse<GetResultPdfData>` |
-| `getImageCaptureUrl(userTestResultId)` | `SafeAPIResponse<GetImageCaptureUrlResponse>` |
-| `resumeFlow(userTestResultId, resumed?)` | `APIResponse<ResumeFlowData>` |
-| `submitAnswers(submission)` | `APIResponse<SubmitAnswersData>` |
-| `finalizeTest(userTestResultId)` | `APIResponse<FinalizeTestData>` |
-`uploadImage` bypasses the `HttpClient` entirely and calls the pre-signed storage URL directly using the native `fetch` API. Auth headers are **not** sent — the pre-signed URL provides its own short-lived credential.
 ---
-## Notes
-- `HCSafeCDXClient` documents the authenticated patient workflow supported by the current client.
-- The connector does not perform login; it uses `HCLoginClient` for authenticated patient headers.
-- POST payloads are wrapped internally as `{ Data: payload }`.
-- Patient tenant and identity context are supplied by the backend from the authenticated request.
-- API responses are returned in their endpoint-defined shape without being unwrapped or transformed by `HCSafeCDXClient`.
-- Direct image upload uses the pre-signed URL and sends the raw file body without Health Cloud authorization headers.
+## Method Summary
+| Method | Shape | Return type | Access data via |
+|---|---|---|---|
+| `getTestProfileByGTIN(gtin)` | A | `APIResponse<GetTestProfileByGTINData>` | `r.Data` |
+| `listTestProfilesByAccount(...)` | B | `APIResponse<SafeAPIResponse<TestProfileByAccountItem[]>>` | `r.Data?.data` |
+| `createUploadUrl(...)` | A | `APIResponse<CreateUploadUrlData>` | `r.Data` |
+| `uploadImage(...)` | — | `Promise<void>` | throws on failure |
+| `updateCvmlStatus(...)` | C | `SafeAPIResponse<EntityReferenceData>` | `r.data` |
+| `getCvmlResults(imageOfCaptureId)` | C | `SafeAPIResponse<CvmlResultsData>` | `r.data` |
+| `listPendingResults(...)` | B | `APIResponse<SafeAPIResponse<TestResultSummary[]>>` | `r.Data?.data` |
+| `getLastResults(...)` | B | `APIResponse<SafeAPIResponse<TestResultDetails>>` | `r.Data?.data` |
+| `listTestHistory(...)` | B | `APIResponse<SafeAPIResponse<TestResultSummary[]>>` | `r.Data?.data` |
+| `getResultDetails(userTestResultId)` | C | `SafeAPIResponse<TestResultDetails>` | `r.data` |
+| `getResultPdf(userTestResultId)` | B | `APIResponse<SafeAPIResponse<string>>` | `r.Data?.data` |
+| `getImageCaptureUrl(userTestResultId)` | C | `SafeAPIResponse<string>` | `r.data` |
+| `resumeFlow(...)` | B | `APIResponse<SafeAPIResponse<ResumeFlowResult>>` | `r.Data?.data` |
+| `submitAnswers(submission)` | B | `APIResponse<SafeAPIResponse<EntityReferenceData>>` | `r.Data?.data` |
+| `finalizeTest(userTestResultId)` | A | `APIResponse<unknown>` | `r.IsOK` |
+**Shape legend:**
+- **A** — `APIResponse<T>` — check `r.IsOK`, read `r.Data`
+- **B** — `APIResponse<SafeAPIResponse<T>>` — check `r.IsOK && r.Data?.success`, read `r.Data.data`
+- **C** — `SafeAPIResponse<T>` — check `r.success`, read `r.data`
+> Shape B is a backend pass-through: the Health Cloud gateway returns the SafeCDX vendor response as-is inside `APIResponse.Data`, without normalising it. `r.IsOK` and `r.Data?.success` are independent checks — both must be true before reading `r.Data.data`.