@inkeep/agents-api 0.0.0-dev-20260129102848 → 0.0.0-dev-20260129143016

package/dist/.well-known/workflow/v1/manifest.debug.json

@@ -11,20 +11,6 @@
         "stepId": "__builtin_response_text"
       }
     },
-    "src/domains/evals/workflow/functions/evaluateConversation.ts": {
-      "executeEvaluatorStep": {
-        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//executeEvaluatorStep"
-      },
-      "getConversationStep": {
-        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//getConversationStep"
-      },
-      "getEvaluatorsStep": {
-        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//getEvaluatorsStep"
-      },
-      "logStep": {
-        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//logStep"
-      }
-    },
     "src/domains/evals/workflow/functions/runDatasetItem.ts": {
       "callChatApiStep": {
         "stepId": "step//src/domains/evals/workflow/functions/runDatasetItem.ts//callChatApiStep"
@@ -38,6 +24,20 @@
       "logStep": {
         "stepId": "step//src/domains/evals/workflow/functions/runDatasetItem.ts//logStep"
       }
+    },
+    "src/domains/evals/workflow/functions/evaluateConversation.ts": {
+      "executeEvaluatorStep": {
+        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//executeEvaluatorStep"
+      },
+      "getConversationStep": {
+        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//getConversationStep"
+      },
+      "getEvaluatorsStep": {
+        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//getEvaluatorsStep"
+      },
+      "logStep": {
+        "stepId": "step//src/domains/evals/workflow/functions/evaluateConversation.ts//logStep"
+      }
     }
   },
   "workflows": {

package/dist/.well-known/workflow/v1/step.cjs

@@ -212680,7 +212680,6 @@ var envSchema2 = external_exports.object({
   NANGO_SECRET_KEY: external_exports.string().optional(),
   OTEL_BSP_SCHEDULE_DELAY: external_exports.coerce.number().optional().default(500),
   OTEL_BSP_MAX_EXPORT_BATCH_SIZE: external_exports.coerce.number().optional().default(64),
-  DISABLE_AUTH: external_exports.string().optional().default("false").transform((val) => val === "true"),
   TENANT_ID: external_exports.string().optional().default("default"),
   SIGNOZ_URL: external_exports.string().optional(),
   SIGNOZ_API_KEY: external_exports.string().optional(),

package/dist/createApp.d.ts

@@ -1,10 +1,10 @@
 import { AppConfig } from "./types/app.js";
 import "./types/index.js";
 import { Hono } from "hono";
-import * as hono_types1 from "hono/types";
+import * as hono_types16 from "hono/types";
 
 //#region src/createApp.d.ts
 declare const isWebhookRoute: (path: string) => boolean;
-declare function createAgentsHono(config: AppConfig): Hono<hono_types1.BlankEnv, hono_types1.BlankSchema, "/">;
+declare function createAgentsHono(config: AppConfig): Hono<hono_types16.BlankEnv, hono_types16.BlankSchema, "/">;
 //#endregion
 export { createAgentsHono, isWebhookRoute };

package/dist/createApp.js

@@ -1,4 +1,4 @@
-import { getLogger } from "./logger.js";
+import { getLogger as getLogger$1 } from "./logger.js";
 import { env } from "./env.js";
 import { evalRoutes } from "./domains/evals/index.js";
 import { workflowRoutes } from "./domains/evals/workflow/routes.js";
@@ -22,13 +22,14 @@ import { executionBaggageMiddleware } from "./middleware/tracing.js";
 import { setupOpenAPIRoutes } from "./openapi.js";
 import { healthChecksHandler } from "./routes/healthChecks.js";
 import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
+import { OrgRoles } from "@inkeep/agents-core";
 import { Hono } from "hono";
 import { cors } from "hono/cors";
 import { requestId } from "hono/request-id";
 import { pinoLogger } from "hono-pino";
 
 //#region src/createApp.ts
-const logger = getLogger("agents-api");
+const logger = getLogger$1("agents-api");
 const isTestEnvironment = () => env.ENVIRONMENT === "test";
 const isWebhookRoute = (path) => {
 	return path.includes("/triggers/") && !path.endsWith("/triggers") && !path.endsWith("/triggers/");
@@ -82,7 +83,7 @@ function createAgentsHono(config) {
 		return next();
 	});
 	app.use(pinoLogger({
-		pino: getLogger("agents-api").getPinoInstance(),
+		pino: getLogger$1("agents-api").getPinoInstance(),
 		http: { onResLevel(c) {
 			if (c.res.status >= 500) return "error";
 			if (c.req.path.includes("/signoz/")) return "debug";
@@ -107,7 +108,7 @@ function createAgentsHono(config) {
 		});
 	});
 	app.use("/manage/tenants/*", async (c, next) => {
-		if (env.DISABLE_AUTH || isTestEnvironment()) {
+		if (isTestEnvironment()) {
 			await next();
 			return;
 		}
@@ -115,7 +116,7 @@ function createAgentsHono(config) {
 		return sessionAuth()(c, next);
 	});
 	app.use("/manage/capabilities", async (c, next) => {
-		if (!auth || env.DISABLE_AUTH || isTestEnvironment()) {
+		if (!auth || isTestEnvironment()) {
 			await next();
 			return;
 		}
@@ -140,11 +141,12 @@ function createAgentsHono(config) {
 			runtime: sandboxConfig.runtime
 		} });
 	});
-	if (env.DISABLE_AUTH || isTestEnvironment()) app.use("/manage/tenants/:tenantId/*", async (c, next) => {
+	if (isTestEnvironment()) app.use("/manage/tenants/:tenantId/*", async (c, next) => {
 		const tenantId = c.req.param("tenantId");
 		if (tenantId) {
 			c.set("tenantId", tenantId);
 			c.set("userId", "anonymous");
+			c.set("tenantRole", OrgRoles.OWNER);
 		}
 		await next();
 	});

package/dist/data/db/runDbClient.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core3 from "@inkeep/agents-core";
+import * as _inkeep_agents_core0 from "@inkeep/agents-core";
 
 //#region src/data/db/runDbClient.d.ts
-declare const runDbClient: _inkeep_agents_core3.AgentsRunDatabaseClient;
+declare const runDbClient: _inkeep_agents_core0.AgentsRunDatabaseClient;
 //#endregion
 export { runDbClient as default };

package/dist/domains/evals/routes/datasetTriggers.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono9 from "hono";
+import * as hono2 from "hono";
 
 //#region src/domains/evals/routes/datasetTriggers.d.ts
-declare const app: OpenAPIHono<hono9.Env, {}, "/">;
+declare const app: OpenAPIHono<hono2.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/evals/routes/index.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono8 from "hono";
+import * as hono3 from "hono";
 
 //#region src/domains/evals/routes/index.d.ts
-declare const app: OpenAPIHono<hono8.Env, {}, "/">;
+declare const app: OpenAPIHono<hono3.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/github/index.d.ts

@@ -3,10 +3,10 @@ import { GenerateInstallationAccessTokenResult, GenerateTokenError, GenerateToke
 import { GetJwkResult, JwksError, JwksResult, clearJwksCache, getJwkForToken, getJwksCacheStatus } from "./jwks.js";
 import { GitHubOidcClaims, ValidateOidcTokenResult, ValidateTokenError, ValidateTokenResult, validateOidcToken } from "./oidcToken.js";
 import { Hono } from "hono";
-import * as hono_types14 from "hono/types";
+import * as hono_types9 from "hono/types";
 
 //#region src/domains/github/index.d.ts
-declare function createGithubRoutes(): Hono<hono_types14.BlankEnv, hono_types14.BlankSchema, "/">;
-declare const githubRoutes: Hono<hono_types14.BlankEnv, hono_types14.BlankSchema, "/">;
+declare function createGithubRoutes(): Hono<hono_types9.BlankEnv, hono_types9.BlankSchema, "/">;
+declare const githubRoutes: Hono<hono_types9.BlankEnv, hono_types9.BlankSchema, "/">;
 //#endregion
 export { type GenerateInstallationAccessTokenResult, type GenerateTokenError, type GenerateTokenResult, type GetJwkResult, type GitHubAppConfig, type GitHubOidcClaims, type InstallationAccessToken, type InstallationInfo, type JwksError, type JwksResult, type LookupInstallationError, type LookupInstallationForRepoResult, type LookupInstallationResult, type ValidateOidcTokenResult, type ValidateTokenError, type ValidateTokenResult, clearJwksCache, createGithubRoutes, generateInstallationAccessToken, getGitHubAppConfig, getJwkForToken, getJwksCacheStatus, githubRoutes, isGitHubAppConfigured, lookupInstallationForRepo, validateOidcToken };

package/dist/domains/manage/routes/conversations.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono6 from "hono";
+import * as hono13 from "hono";
 
 //#region src/domains/manage/routes/conversations.d.ts
-declare const app: OpenAPIHono<hono6.Env, {}, "/">;
+declare const app: OpenAPIHono<hono13.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/evals/evaluationResults.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono7 from "hono";
+import * as hono16 from "hono";
 
 //#region src/domains/manage/routes/evals/evaluationResults.d.ts
-declare const app: OpenAPIHono<hono7.Env, {}, "/">;
+declare const app: OpenAPIHono<hono16.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/index.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono5 from "hono";
+import * as hono14 from "hono";
 
 //#region src/domains/manage/routes/index.d.ts
-declare const app: OpenAPIHono<hono5.Env, {}, "/">;
+declare const app: OpenAPIHono<hono14.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/mcp.d.ts

@@ -1,7 +1,7 @@
 import { Hono } from "hono";
-import * as hono_types12 from "hono/types";
+import * as hono_types13 from "hono/types";
 
 //#region src/domains/manage/routes/mcp.d.ts
-declare const app: Hono<hono_types12.BlankEnv, hono_types12.BlankSchema, "/">;
+declare const app: Hono<hono_types13.BlankEnv, hono_types13.BlankSchema, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/projectMembers.js

@@ -1,6 +1,6 @@
 import { requireProjectPermission } from "../../../middleware/projectAccess.js";
 import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
-import { ProjectRoles, changeProjectRole, commonGetErrorResponses, createApiError, grantProjectAccess, isAuthzEnabled, listProjectMembers, revokeProjectAccess } from "@inkeep/agents-core";
+import { ProjectRoles, changeProjectRole, commonGetErrorResponses, createApiError, grantProjectAccess, listProjectMembers, revokeProjectAccess } from "@inkeep/agents-core";
 
 //#region src/domains/manage/routes/projectMembers.ts
 const app = new OpenAPIHono();
@@ -51,7 +51,6 @@ app.openapi(createRoute({
 	}
 }), async (c) => {
 	const { projectId, tenantId } = c.req.valid("param");
-	if (!isAuthzEnabled()) return c.json({ data: [] });
 	const members = await listProjectMembers({
 		tenantId,
 		projectId
@@ -83,10 +82,6 @@ app.openapi(createRoute({
 }), async (c) => {
 	const { projectId, tenantId } = c.req.valid("param");
 	const { userId, role } = c.req.valid("json");
-	if (!isAuthzEnabled()) throw createApiError({
-		code: "bad_request",
-		message: "Project member management requires authorization to be enabled (ENABLE_AUTHZ=true)"
-	});
 	await grantProjectAccess({
 		tenantId,
 		projectId,
@@ -120,10 +115,6 @@ app.openapi(createRoute({
 }), async (c) => {
 	const { projectId, userId, tenantId } = c.req.valid("param");
 	const { role: newRole, previousRole } = c.req.valid("json");
-	if (!isAuthzEnabled()) throw createApiError({
-		code: "bad_request",
-		message: "Project member management requires authorization to be enabled (ENABLE_AUTHZ=true)"
-	});
 	if (!previousRole) throw createApiError({
 		code: "bad_request",
 		message: "previousRole is required to update a member role"
@@ -164,10 +155,6 @@ app.openapi(createRoute({
 }), async (c) => {
 	const { projectId, userId, tenantId } = c.req.valid("param");
 	const { role } = c.req.valid("query");
-	if (!isAuthzEnabled()) throw createApiError({
-		code: "bad_request",
-		message: "Project member management requires authorization to be enabled (ENABLE_AUTHZ=true)"
-	});
 	await revokeProjectAccess({
 		tenantId,
 		projectId,

package/dist/domains/manage/routes/projectPermissions.js

@@ -1,6 +1,5 @@
-import { env } from "../../../env.js";
 import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
-import { OrgRoles, SpiceDbProjectPermissions, SpiceDbResourceTypes, checkBulkPermissions, commonGetErrorResponses, createApiError, isAuthzEnabled } from "@inkeep/agents-core";
+import { OrgRoles, SpiceDbProjectPermissions, SpiceDbResourceTypes, checkBulkPermissions, commonGetErrorResponses, createApiError } from "@inkeep/agents-core";
 
 //#region src/domains/manage/routes/projectPermissions.ts
 const app = new OpenAPIHono();
@@ -32,8 +31,7 @@ app.openapi(createRoute({
 	const { projectId } = c.req.valid("param");
 	const userId = c.get("userId");
 	const tenantRole = c.get("tenantRole");
-	const isTestEnvironment = process.env.ENVIRONMENT === "test";
-	if (env.DISABLE_AUTH || isTestEnvironment) return c.json({ data: {
+	if (process.env.ENVIRONMENT === "test") return c.json({ data: {
 		canView: true,
 		canUse: true,
 		canEdit: true
@@ -43,11 +41,6 @@ app.openapi(createRoute({
 		canUse: true,
 		canEdit: true
 	} });
-	if (!isAuthzEnabled()) return c.json({ data: {
-		canView: true,
-		canUse: true,
-		canEdit: false
-	} });
 	if (!userId) throw createApiError({
 		code: "unauthorized",
 		message: "User not found"

package/dist/domains/manage/routes/projects.js

@@ -4,7 +4,7 @@ import { requireProjectPermission } from "../../../middleware/projectAccess.js";
 import { speakeasyOffsetLimitPagination } from "../../../utils/speakeasy.js";
 import { requirePermission } from "../../../middleware/requirePermission.js";
 import { OpenAPIHono, createRoute } from "@hono/zod-openapi";
-import { ErrorResponseSchema, PaginationQueryParamsSchema, ProjectApiInsertSchema, ProjectApiUpdateSchema, ProjectListResponse, ProjectResponse, TenantIdParamsSchema, TenantParamsSchema, cascadeDeleteByProject, commonGetErrorResponses, createApiError, createProject, createProjectMetadataAndBranch, deleteProject, deleteProjectWithBranch, doltCheckout, getProject, getProjectMainBranchName, isAuthzEnabled, listAccessibleProjectIds, listProjectsWithMetadataPaginated, removeProjectFromSpiceDb, syncProjectToSpiceDb, updateProject } from "@inkeep/agents-core";
+import { ErrorResponseSchema, PaginationQueryParamsSchema, ProjectApiInsertSchema, ProjectApiUpdateSchema, ProjectListResponse, ProjectResponse, TenantIdParamsSchema, TenantParamsSchema, cascadeDeleteByProject, commonGetErrorResponses, createApiError, createProject, createProjectMetadataAndBranch, deleteProject, deleteProjectWithBranch, doltCheckout, getProject, getProjectMainBranchName, listAccessibleProjectIds, listProjectsWithMetadataPaginated, removeProjectFromSpiceDb, syncProjectToSpiceDb, updateProject } from "@inkeep/agents-core";
 
 //#region src/domains/manage/routes/projects.ts
 const app = new OpenAPIHono();
@@ -45,7 +45,7 @@ app.openapi(createRoute({
 	const page = Number(c.req.query("page")) || 1;
 	const limit = Math.min(Number(c.req.query("limit")) || 10, 100);
 	let accessibleIds;
-	if (isAuthzEnabled() && userId) {
+	if (userId) {
 		const result$1 = await listAccessibleProjectIds({
 			userId,
 			orgRole: tenantRole
@@ -148,20 +148,18 @@ app.openapi(createRoute({
 			tenantId,
 			...body
 		});
-		if (isAuthzEnabled()) {
-			if (!userId) throw createApiError({
-				code: "unauthorized",
-				message: "User not found"
+		if (!userId) throw createApiError({
+			code: "unauthorized",
+			message: "User not found"
+		});
+		try {
+			await syncProjectToSpiceDb({
+				tenantId,
+				projectId: body.id,
+				creatorUserId: userId
 			});
-			try {
-				await syncProjectToSpiceDb({
-					tenantId,
-					projectId: body.id,
-					creatorUserId: userId
-				});
-			} catch (syncError) {
-				console.warn("Failed to sync project to SpiceDB:", syncError);
-			}
+		} catch (syncError) {
+			console.warn("Failed to sync project to SpiceDB:", syncError);
 		}
 		return c.json({ data: {
 			...projectConfig,
@@ -255,7 +253,7 @@ app.openapi(createRoute({
 			code: "not_found",
 			message: "Project not found"
 		});
-		if (isAuthzEnabled()) try {
+		try {
 			await removeProjectFromSpiceDb({
 				tenantId,
 				projectId: id

package/dist/domains/manage/routes/signoz.d.ts

@@ -1,10 +1,10 @@
 import { ManageAppVariables } from "../../../types/app.js";
 import { Hono } from "hono";
-import * as hono_types9 from "hono/types";
+import * as hono_types15 from "hono/types";
 
 //#region src/domains/manage/routes/signoz.d.ts
 declare const app: Hono<{
   Variables: ManageAppVariables;
-}, hono_types9.BlankSchema, "/">;
+}, hono_types15.BlankSchema, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/signoz.js

@@ -1,8 +1,8 @@
 import { getLogger as getLogger$1 } from "../../../logger.js";
 import { env } from "../../../env.js";
 import { enforceSecurityFilters } from "../../../utils/signozHelpers.js";
-import { Hono } from "hono";
 import { createApiError, projectExists } from "@inkeep/agents-core";
+import { Hono } from "hono";
 import axios from "axios";
 
 //#region src/domains/manage/routes/signoz.ts

package/dist/domains/manage/routes/userProjectMemberships.js

@@ -1,5 +1,5 @@
 import { OpenAPIHono, createRoute, z } from "@hono/zod-openapi";
-import { ProjectRoles, commonGetErrorResponses, isAuthzEnabled, listUserProjectMembershipsInSpiceDb } from "@inkeep/agents-core";
+import { ProjectRoles, commonGetErrorResponses, listUserProjectMembershipsInSpiceDb } from "@inkeep/agents-core";
 
 //#region src/domains/manage/routes/userProjectMemberships.ts
 const app = new OpenAPIHono();
@@ -32,7 +32,6 @@ app.openapi(createRoute({
 	}
 }), async (c) => {
 	const { tenantId, userId } = c.req.valid("param");
-	if (!isAuthzEnabled()) return c.json({ data: [] });
 	const memberships = await listUserProjectMembershipsInSpiceDb({
 		tenantId,
 		userId

package/dist/domains/run/context/validation.d.ts

@@ -1,5 +1,5 @@
-import { Context, Next } from "hono";
 import { CredentialStoreRegistry, FullExecutionContext } from "@inkeep/agents-core";
+import { Context, Next } from "hono";
 import { ValidateFunction } from "ajv";
 
 //#region src/domains/run/context/validation.d.ts

package/dist/domains/run/services/TriggerService.d.ts

@@ -1,5 +1,5 @@
-import { Context } from "hono";
 import { ResolvedRef } from "@inkeep/agents-core";
+import { Context } from "hono";
 
 //#region src/domains/run/services/TriggerService.d.ts
 

package/dist/domains/run/utils/token-estimator.d.ts

@@ -1,4 +1,4 @@
-import * as _inkeep_agents_core0 from "@inkeep/agents-core";
+import * as _inkeep_agents_core3 from "@inkeep/agents-core";
 import { BreakdownComponentDef, ContextBreakdown, calculateBreakdownTotal, createEmptyBreakdown } from "@inkeep/agents-core";
 
 //#region src/domains/run/utils/token-estimator.d.ts
@@ -17,7 +17,7 @@ interface AssembleResult {
   /** The assembled prompt string */
   prompt: string;
   /** Token breakdown for each component */
-  breakdown: _inkeep_agents_core0.ContextBreakdown;
+  breakdown: _inkeep_agents_core3.ContextBreakdown;
 }
 //#endregion
 export { AssembleResult, type BreakdownComponentDef, type ContextBreakdown, calculateBreakdownTotal, createEmptyBreakdown, estimateTokens };

package/dist/env.d.ts

@@ -37,7 +37,6 @@ declare const envSchema: z.ZodObject<{
   NANGO_SECRET_KEY: z.ZodOptional<z.ZodString>;
   OTEL_BSP_SCHEDULE_DELAY: z.ZodDefault<z.ZodOptional<z.ZodCoercedNumber<unknown>>>;
   OTEL_BSP_MAX_EXPORT_BATCH_SIZE: z.ZodDefault<z.ZodOptional<z.ZodCoercedNumber<unknown>>>;
-  DISABLE_AUTH: z.ZodPipe<z.ZodDefault<z.ZodOptional<z.ZodString>>, z.ZodTransform<boolean, string>>;
   TENANT_ID: z.ZodDefault<z.ZodOptional<z.ZodString>>;
   SIGNOZ_URL: z.ZodOptional<z.ZodString>;
   SIGNOZ_API_KEY: z.ZodOptional<z.ZodString>;
@@ -60,7 +59,6 @@ declare const env: {
   NANGO_SERVER_URL: string;
   OTEL_BSP_SCHEDULE_DELAY: number;
   OTEL_BSP_MAX_EXPORT_BATCH_SIZE: number;
-  DISABLE_AUTH: boolean;
   TENANT_ID: string;
   ANTHROPIC_API_KEY: string;
   INKEEP_AGENTS_MANAGE_UI_URL?: string | undefined;

package/dist/env.js

@@ -39,7 +39,6 @@ const envSchema = z.object({
 	NANGO_SECRET_KEY: z.string().optional(),
 	OTEL_BSP_SCHEDULE_DELAY: z.coerce.number().optional().default(500),
 	OTEL_BSP_MAX_EXPORT_BATCH_SIZE: z.coerce.number().optional().default(64),
-	DISABLE_AUTH: z.string().optional().default("false").transform((val) => val === "true"),
 	TENANT_ID: z.string().optional().default("default"),
 	SIGNOZ_URL: z.string().optional(),
 	SIGNOZ_API_KEY: z.string().optional(),

package/dist/factory.d.ts

@@ -1,10 +1,9 @@
 import { SandboxConfig } from "./types/app.js";
 import "./types/index.js";
 import { createAgentsHono } from "./createApp.js";
-import { initializeDefaultUser } from "./initialization.js";
 import { createAuth0Provider, createOIDCProvider } from "./ssoHelpers.js";
-import * as hono0 from "hono";
 import { CredentialStore, ServerConfig } from "@inkeep/agents-core";
+import * as hono0 from "hono";
 import * as zod0 from "zod";
 import { SSOProviderConfig, UserAuthConfig } from "@inkeep/agents-core/auth";
 import * as hono_types0 from "hono/types";
@@ -122,11 +121,11 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
     useSecureCookies?: boolean | undefined;
     disableCSRFCheck?: boolean | undefined;
     disableOriginCheck?: boolean | undefined;
-    crossSubDomainCookies: {
+    crossSubDomainCookies?: {
       enabled: boolean;
       additionalCookies?: string[];
       domain?: string;
-    };
+    } | undefined;
     cookies?: {
       [key: string]: {
         name?: string;
@@ -795,27 +794,28 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
       ac: better_auth_plugins0.AccessControl;
       roles: {
         member: {
-          authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
-            actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
+          authorize<K_1 extends "project" | "organization" | "member" | "invitation" | "ac" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key] | {
+            actions: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key];
             connector: "OR" | "AND";
           } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-          statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
+          statements: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>;
         };
         admin: {
-          authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
-            actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
+          authorize<K_1 extends "project" | "organization" | "member" | "invitation" | "ac" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key] | {
+            actions: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key];
             connector: "OR" | "AND";
           } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-          statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
+          statements: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>;
         };
         owner: {
-          authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
-            actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
+          authorize<K_1 extends "project" | "organization" | "member" | "invitation" | "ac" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key] | {
+            actions: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key];
             connector: "OR" | "AND";
           } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-          statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
+          statements: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>;
         };
       };
+      creatorRole: "admin";
       membershipLimit: number;
       invitationLimit: number;
       invitationExpiresIn: number;
@@ -987,7 +987,7 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
         id: string;
         organizationId: string;
         email: string;
-        role: "member" | "admin" | "owner";
+        role: "owner" | "admin" | "member";
         status: better_auth_plugins0.InvitationStatus;
         inviterId: string;
         expiresAt: Date;
@@ -996,7 +996,7 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
       Member: {
         id: string;
         organizationId: string;
-        role: "member" | "admin" | "owner";
+        role: "owner" | "admin" | "member";
         createdAt: Date;
         userId: string;
         user: {
@@ -1012,7 +1012,7 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
         members: {
           id: string;
           organizationId: string;
-          role: "member" | "admin" | "owner";
+          role: "owner" | "admin" | "member";
           createdAt: Date;
           userId: string;
           user: {
@@ -1026,7 +1026,7 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
           id: string;
           organizationId: string;
           email: string;
-          role: "member" | "admin" | "owner";
+          role: "owner" | "admin" | "member";
           status: better_auth_plugins0.InvitationStatus;
           inviterId: string;
           expiresAt: Date;
@@ -1104,27 +1104,28 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
       ac: better_auth_plugins0.AccessControl;
       roles: {
         member: {
-          authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
-            actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
+          authorize<K_1 extends "project" | "organization" | "member" | "invitation" | "ac" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key] | {
+            actions: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key];
             connector: "OR" | "AND";
           } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-          statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
+          statements: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>;
         };
         admin: {
-          authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
-            actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
+          authorize<K_1 extends "project" | "organization" | "member" | "invitation" | "ac" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key] | {
+            actions: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key];
             connector: "OR" | "AND";
           } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-          statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
+          statements: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>;
         };
         owner: {
-          authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
-            actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
+          authorize<K_1 extends "project" | "organization" | "member" | "invitation" | "ac" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key] | {
+            actions: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>[key];
             connector: "OR" | "AND";
           } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-          statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
+          statements: better_auth_plugins0.Subset<"project" | "organization" | "member" | "invitation" | "ac" | "team", better_auth_plugins0.Statements>;
         };
       };
+      creatorRole: "admin";
       membershipLimit: number;
       invitationLimit: number;
       invitationExpiresIn: number;
@@ -1529,13 +1530,12 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig): better_auth0
       verificationUri?: string | undefined;
     }>;
   }];
-}> | null;
+}>;
 declare function createAgentsApp(config?: {
   serverConfig?: ServerConfig;
   credentialStores?: CredentialStore[];
   auth?: UserAuthConfig;
   sandboxConfig?: SandboxConfig;
-  skipInitialization?: boolean;
 }): hono0.Hono<hono_types0.BlankEnv, hono_types0.BlankSchema, "/">;
 //#endregion
-export { type SSOProviderConfig, type UserAuthConfig, createAgentsApp, createAgentsAuth, createAgentsHono, createAuth0Provider, createOIDCProvider, initializeDefaultUser };
+export { type SSOProviderConfig, type UserAuthConfig, createAgentsApp, createAgentsAuth, createAgentsHono, createAuth0Provider, createOIDCProvider };