@inkeep/agents-api 0.0.0-dev-20260317081523 → 0.0.0-dev-20260317180950

package/dist/createApp.d.ts

@@ -1,10 +1,10 @@
 import { AppConfig } from "./types/app.js";
 import "./types/index.js";
 import { Hono } from "hono";
-import * as hono_types10 from "hono/types";
+import * as hono_types11 from "hono/types";
 
 //#region src/createApp.d.ts
 declare const isWebhookRoute: (path: string) => boolean;
-declare function createAgentsHono(config: AppConfig): Hono<hono_types10.BlankEnv, hono_types10.BlankSchema, "/">;
+declare function createAgentsHono(config: AppConfig): Hono<hono_types11.BlankEnv, hono_types11.BlankSchema, "/">;
 //#endregion
 export { createAgentsHono, isWebhookRoute };

package/dist/data/db/manageDbClient.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core1 from "@inkeep/agents-core";
+import * as _inkeep_agents_core0 from "@inkeep/agents-core";
 
 //#region src/data/db/manageDbClient.d.ts
-declare const manageDbClient: _inkeep_agents_core1.AgentsManageDatabaseClient;
+declare const manageDbClient: _inkeep_agents_core0.AgentsManageDatabaseClient;
 //#endregion
 export { manageDbClient as default };

package/dist/data/db/runDbClient.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core7 from "@inkeep/agents-core";
+import * as _inkeep_agents_core0 from "@inkeep/agents-core";
 
 //#region src/data/db/runDbClient.d.ts
-declare const runDbClient: _inkeep_agents_core7.AgentsRunDatabaseClient;
+declare const runDbClient: _inkeep_agents_core0.AgentsRunDatabaseClient;
 //#endregion
 export { runDbClient as default };

package/dist/data-reconciliation/handlers/agent.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core6 from "@inkeep/agents-core";
+import * as _inkeep_agents_core2 from "@inkeep/agents-core";
 
 //#region src/data-reconciliation/handlers/agent.d.ts
-declare const agentHandlers: _inkeep_agents_core6.EntityEffectHandlers<"agent">;
+declare const agentHandlers: _inkeep_agents_core2.EntityEffectHandlers<"agent">;
 //#endregion
 export { agentHandlers };

package/dist/data-reconciliation/handlers/context-configs.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core8 from "@inkeep/agents-core";
+import * as _inkeep_agents_core3 from "@inkeep/agents-core";
 
 //#region src/data-reconciliation/handlers/context-configs.d.ts
-declare const contextConfigsHandlers: _inkeep_agents_core8.EntityEffectHandlers<"context_configs">;
+declare const contextConfigsHandlers: _inkeep_agents_core3.EntityEffectHandlers<"context_configs">;
 //#endregion
 export { contextConfigsHandlers };

package/dist/data-reconciliation/handlers/scheduled-triggers.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core0 from "@inkeep/agents-core";
+import * as _inkeep_agents_core7 from "@inkeep/agents-core";
 
 //#region src/data-reconciliation/handlers/scheduled-triggers.d.ts
-declare const scheduledTriggersHandlers: _inkeep_agents_core0.EntityEffectHandlers<"scheduled_triggers">;
+declare const scheduledTriggersHandlers: _inkeep_agents_core7.EntityEffectHandlers<"scheduled_triggers">;
 //#endregion
 export { scheduledTriggersHandlers };

package/dist/data-reconciliation/handlers/sub-agents.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core0 from "@inkeep/agents-core";
+import * as _inkeep_agents_core1 from "@inkeep/agents-core";
 
 //#region src/data-reconciliation/handlers/sub-agents.d.ts
-declare const subAgentsHandlers: _inkeep_agents_core0.EntityEffectHandlers<"sub_agents">;
+declare const subAgentsHandlers: _inkeep_agents_core1.EntityEffectHandlers<"sub_agents">;
 //#endregion
 export { subAgentsHandlers };

package/dist/data-reconciliation/handlers/tools.d.ts

@@ -1,6 +1,6 @@
-import * as _inkeep_agents_core2 from "@inkeep/agents-core";
+import * as _inkeep_agents_core4 from "@inkeep/agents-core";
 
 //#region src/data-reconciliation/handlers/tools.d.ts
-declare const toolsHandlers: _inkeep_agents_core2.EntityEffectHandlers<"tools">;
+declare const toolsHandlers: _inkeep_agents_core4.EntityEffectHandlers<"tools">;
 //#endregion
 export { toolsHandlers };

package/dist/domains/evals/routes/datasetTriggers.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono11 from "hono";
+import * as hono12 from "hono";
 
 //#region src/domains/evals/routes/datasetTriggers.d.ts
-declare const app: OpenAPIHono<hono11.Env, {}, "/">;
+declare const app: OpenAPIHono<hono12.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/evals/workflow/routes.d.ts

@@ -1,7 +1,7 @@
 import { Hono } from "hono";
-import * as hono_types5 from "hono/types";
+import * as hono_types9 from "hono/types";
 
 //#region src/domains/evals/workflow/routes.d.ts
-declare const workflowRoutes: Hono<hono_types5.BlankEnv, hono_types5.BlankSchema, "/">;
+declare const workflowRoutes: Hono<hono_types9.BlankEnv, hono_types9.BlankSchema, "/">;
 //#endregion
 export { workflowRoutes };

package/dist/domains/manage/routes/availableAgents.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono12 from "hono";
+import * as hono14 from "hono";
 
 //#region src/domains/manage/routes/availableAgents.d.ts
-declare const app: OpenAPIHono<hono12.Env, {}, "/">;
+declare const app: OpenAPIHono<hono14.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/conversations.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono10 from "hono";
+import * as hono15 from "hono";
 
 //#region src/domains/manage/routes/conversations.d.ts
-declare const app: OpenAPIHono<hono10.Env, {}, "/">;
+declare const app: OpenAPIHono<hono15.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/index.d.ts

@@ -1,7 +1,7 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono14 from "hono";
+import * as hono16 from "hono";
 
 //#region src/domains/manage/routes/index.d.ts
-declare const app: OpenAPIHono<hono14.Env, {}, "/">;
+declare const app: OpenAPIHono<hono16.Env, {}, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/invitations.d.ts

@@ -1,10 +1,10 @@
 import { ManageAppVariables } from "../../../types/app.js";
 import { Hono } from "hono";
-import * as hono_types7 from "hono/types";
+import * as hono_types5 from "hono/types";
 
 //#region src/domains/manage/routes/invitations.d.ts
 declare const invitationsRoutes: Hono<{
   Variables: ManageAppVariables;
-}, hono_types7.BlankSchema, "/">;
+}, hono_types5.BlankSchema, "/">;
 //#endregion
 export { invitationsRoutes as default };

package/dist/domains/manage/routes/passwordResetLinks.d.ts

@@ -1,10 +1,10 @@
 import { ManageAppVariables } from "../../../types/app.js";
 import { Hono } from "hono";
-import * as hono_types8 from "hono/types";
+import * as hono_types6 from "hono/types";
 
 //#region src/domains/manage/routes/passwordResetLinks.d.ts
 declare const passwordResetLinksRoutes: Hono<{
   Variables: ManageAppVariables;
-}, hono_types8.BlankSchema, "/">;
+}, hono_types6.BlankSchema, "/">;
 //#endregion
 export { passwordResetLinksRoutes as default };

package/dist/domains/manage/routes/signoz.d.ts

@@ -1,10 +1,10 @@
 import { ManageAppVariables } from "../../../types/app.js";
 import { Hono } from "hono";
-import * as hono_types12 from "hono/types";
+import * as hono_types7 from "hono/types";
 
 //#region src/domains/manage/routes/signoz.d.ts
 declare const app: Hono<{
   Variables: ManageAppVariables;
-}, hono_types12.BlankSchema, "/">;
+}, hono_types7.BlankSchema, "/">;
 //#endregion
 export { app as default };

package/dist/domains/manage/routes/users.d.ts

@@ -1,10 +1,10 @@
 import { ManageAppVariables } from "../../../types/app.js";
 import { Hono } from "hono";
-import * as hono_types9 from "hono/types";
+import * as hono_types8 from "hono/types";
 
 //#region src/domains/manage/routes/users.d.ts
 declare const usersRoutes: Hono<{
   Variables: ManageAppVariables;
-}, hono_types9.BlankSchema, "/">;
+}, hono_types8.BlankSchema, "/">;
 //#endregion
 export { usersRoutes as default };

package/dist/domains/run/agents/relationTools.d.ts

@@ -1,7 +1,7 @@
 import { AgentConfig, DelegateRelation } from "./agent-types.js";
 import "./Agent.js";
 import { InternalRelation } from "../utils/project.js";
-import * as _inkeep_agents_core3 from "@inkeep/agents-core";
+import * as _inkeep_agents_core5 from "@inkeep/agents-core";
 import { CredentialStoreRegistry, FullExecutionContext } from "@inkeep/agents-core";
 import * as ai0 from "ai";
 
@@ -45,7 +45,7 @@ declare function createDelegateToAgentTool({
   message: string;
 }, {
   toolCallId: any;
-  result: _inkeep_agents_core3.Message | _inkeep_agents_core3.Task;
+  result: _inkeep_agents_core5.Message | _inkeep_agents_core5.Task;
 }>;
 /**
  * Parameters for building a transfer relation config

package/dist/domains/run/routes/auth.d.ts

@@ -1,8 +1,8 @@
 import { OpenAPIHono } from "@hono/zod-openapi";
-import * as hono15 from "hono";
+import * as hono18 from "hono";
 
 //#region src/domains/run/routes/auth.d.ts
 declare function getAnonJwtSecret(): Uint8Array;
-declare const app: OpenAPIHono<hono15.Env, {}, "/">;
+declare const app: OpenAPIHono<hono18.Env, {}, "/">;
 //#endregion
 export { app as default, getAnonJwtSecret };

package/dist/domains/run/utils/token-estimator.d.ts

@@ -1,4 +1,4 @@
-import * as _inkeep_agents_core5 from "@inkeep/agents-core";
+import * as _inkeep_agents_core8 from "@inkeep/agents-core";
 import { BreakdownComponentDef, ContextBreakdown, calculateBreakdownTotal, createEmptyBreakdown } from "@inkeep/agents-core";
 
 //#region src/domains/run/utils/token-estimator.d.ts
@@ -17,7 +17,7 @@ interface AssembleResult {
   /** The assembled prompt string */
   prompt: string;
   /** Token breakdown for each component */
-  breakdown: _inkeep_agents_core5.ContextBreakdown;
+  breakdown: _inkeep_agents_core8.ContextBreakdown;
 }
 //#endregion
 export { AssembleResult, type BreakdownComponentDef, type ContextBreakdown, calculateBreakdownTotal, createEmptyBreakdown, estimateTokens };

package/dist/env.d.ts

@@ -14,11 +14,11 @@ declare const envSchema: z.ZodObject<{
     pentest: "pentest";
   }>>;
   LOG_LEVEL: z.ZodDefault<z.ZodEnum<{
-    trace: "trace";
+    error: "error";
     debug: "debug";
     info: "info";
     warn: "warn";
-    error: "error";
+    trace: "trace";
   }>>;
   INKEEP_AGENTS_MANAGE_DATABASE_URL: z.ZodString;
   INKEEP_AGENTS_RUN_DATABASE_URL: z.ZodString;
@@ -78,7 +78,7 @@ declare const envSchema: z.ZodObject<{
 declare const env: {
   NODE_ENV: "development" | "production" | "test";
   ENVIRONMENT: "development" | "production" | "test" | "pentest";
-  LOG_LEVEL: "trace" | "debug" | "info" | "warn" | "error";
+  LOG_LEVEL: "error" | "debug" | "info" | "warn" | "trace";
   INKEEP_AGENTS_MANAGE_DATABASE_URL: string;
   INKEEP_AGENTS_RUN_DATABASE_URL: string;
   INKEEP_AGENTS_API_URL: string;

package/dist/factory.d.ts

@@ -1170,25 +1170,25 @@ declare function createAgentsAuth(userAuthConfig?: UserAuthConfig, emailService?
     ac: better_auth_plugins0.AccessControl;
     roles: {
       member: {
-        authorize<K_1 extends "organization" | "member" | "invitation" | "project" | "team" | "ac">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>[key] | {
-          actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>[key];
+        authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
+          actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
           connector: "OR" | "AND";
         } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-        statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>;
+        statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
       };
       admin: {
-        authorize<K_1 extends "organization" | "member" | "invitation" | "project" | "team" | "ac">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>[key] | {
-          actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>[key];
+        authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
+          actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
           connector: "OR" | "AND";
         } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-        statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>;
+        statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
       };
       owner: {
-        authorize<K_1 extends "organization" | "member" | "invitation" | "project" | "team" | "ac">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>[key] | {
-          actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>[key];
+        authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key] | {
+          actions: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>[key];
           connector: "OR" | "AND";
         } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
-        statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins0.Statements>;
+        statements: better_auth_plugins0.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins0.Statements>;
       };
     };
     creatorRole: "admin";

package/dist/index.d.ts

@@ -1171,25 +1171,25 @@ declare const auth: better_auth99.Auth<{
     ac: better_auth_plugins35.AccessControl;
     roles: {
       member: {
-        authorize<K_1 extends "organization" | "member" | "invitation" | "project" | "team" | "ac">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>[key] | {
-          actions: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>[key];
+        authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>[key] | {
+          actions: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>[key];
           connector: "OR" | "AND";
         } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins35.AuthorizeResponse;
-        statements: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>;
+        statements: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>;
       };
       admin: {
-        authorize<K_1 extends "organization" | "member" | "invitation" | "project" | "team" | "ac">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>[key] | {
-          actions: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>[key];
+        authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>[key] | {
+          actions: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>[key];
           connector: "OR" | "AND";
         } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins35.AuthorizeResponse;
-        statements: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>;
+        statements: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>;
       };
       owner: {
-        authorize<K_1 extends "organization" | "member" | "invitation" | "project" | "team" | "ac">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>[key] | {
-          actions: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>[key];
+        authorize<K_1 extends "organization" | "member" | "invitation" | "ac" | "project" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>[key] | {
+          actions: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>[key];
           connector: "OR" | "AND";
         } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins35.AuthorizeResponse;
-        statements: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "project" | "team" | "ac", better_auth_plugins35.Statements>;
+        statements: better_auth_plugins35.Subset<"organization" | "member" | "invitation" | "ac" | "project" | "team", better_auth_plugins35.Statements>;
       };
     };
     creatorRole: "admin";

package/dist/middleware/evalsAuth.d.ts

@@ -1,5 +1,5 @@
 import { BaseExecutionContext } from "@inkeep/agents-core";
-import * as hono18 from "hono";
+import * as hono19 from "hono";
 
 //#region src/middleware/evalsAuth.d.ts
 
@@ -7,7 +7,7 @@ import * as hono18 from "hono";
  * Middleware to authenticate API requests using Bearer token authentication
  * First checks if token matches INKEEP_AGENTS_EVAL_API_BYPASS_SECRET,
  */
-declare const evalApiKeyAuth: () => hono18.MiddlewareHandler<{
+declare const evalApiKeyAuth: () => hono19.MiddlewareHandler<{
   Variables: {
     executionContext: BaseExecutionContext;
   };

package/dist/middleware/manageAuth.d.ts

@@ -1,5 +1,5 @@
 import { BaseExecutionContext } from "@inkeep/agents-core";
-import * as hono0 from "hono";
+import * as hono2 from "hono";
 import { createAuth } from "@inkeep/agents-core/auth";
 
 //#region src/middleware/manageAuth.d.ts
@@ -15,7 +15,7 @@ import { createAuth } from "@inkeep/agents-core/auth";
  * NOTE: Database API keys are intentionally NOT accepted on manage endpoints.
  * API keys are restricted to the run domain only (chat, agent execution).
  */
-declare const manageBearerAuth: () => hono0.MiddlewareHandler<{
+declare const manageBearerAuth: () => hono2.MiddlewareHandler<{
   Variables: {
     executionContext: BaseExecutionContext;
     userId?: string;
@@ -29,6 +29,6 @@ declare const manageBearerAuth: () => hono0.MiddlewareHandler<{
  * Uses Bearer token → manage bearer auth (bypass secret, session, Slack JWT, internal service),
  * otherwise falls back to session auth.
  */
-declare const manageBearerOrSessionAuth: () => hono0.MiddlewareHandler<any, string, {}, Response>;
+declare const manageBearerOrSessionAuth: () => hono2.MiddlewareHandler<any, string, {}, Response>;
 //#endregion
 export { manageBearerAuth, manageBearerOrSessionAuth };

package/dist/middleware/projectConfig.d.ts

@@ -1,11 +1,11 @@
 import { BaseExecutionContext, ResolvedRef } from "@inkeep/agents-core";
-import * as hono16 from "hono";
+import * as hono0 from "hono";
 
 //#region src/middleware/projectConfig.d.ts
 /**
  * Middleware that fetches the full project definition from the Management API
  */
-declare const projectConfigMiddleware: hono16.MiddlewareHandler<{
+declare const projectConfigMiddleware: hono0.MiddlewareHandler<{
   Variables: {
     executionContext: BaseExecutionContext;
     resolvedRef: ResolvedRef;
@@ -15,7 +15,7 @@ declare const projectConfigMiddleware: hono16.MiddlewareHandler<{
  * Creates a middleware that applies project config fetching except for specified route patterns
  * @param skipRouteCheck - Function that returns true if the route should skip the middleware
  */
-declare const projectConfigMiddlewareExcept: (skipRouteCheck: (path: string) => boolean) => hono16.MiddlewareHandler<{
+declare const projectConfigMiddlewareExcept: (skipRouteCheck: (path: string) => boolean) => hono0.MiddlewareHandler<{
   Variables: {
     executionContext: BaseExecutionContext;
     resolvedRef: ResolvedRef;

package/dist/middleware/requirePermission.d.ts

@@ -1,5 +1,5 @@
 import { ManageAppVariables } from "../types/app.js";
-import * as hono19 from "hono";
+import * as hono17 from "hono";
 
 //#region src/middleware/requirePermission.d.ts
 type Permission = {
@@ -9,6 +9,6 @@ declare const requirePermission: <Env$1 extends {
   Variables: ManageAppVariables;
 } = {
   Variables: ManageAppVariables;
-}>(permissions: Permission) => hono19.MiddlewareHandler<Env$1, string, {}, Response>;
+}>(permissions: Permission) => hono17.MiddlewareHandler<Env$1, string, {}, Response>;
 //#endregion
 export { requirePermission };

package/dist/middleware/runAuth.d.ts

@@ -1,8 +1,8 @@
 import { BaseExecutionContext } from "@inkeep/agents-core";
-import * as hono7 from "hono";
+import * as hono6 from "hono";
 
 //#region src/middleware/runAuth.d.ts
-declare const runApiKeyAuth: () => hono7.MiddlewareHandler<{
+declare const runApiKeyAuth: () => hono6.MiddlewareHandler<{
   Variables: {
     executionContext: BaseExecutionContext;
   };
@@ -11,7 +11,7 @@ declare const runApiKeyAuth: () => hono7.MiddlewareHandler<{
  * Creates a middleware that applies API key authentication except for specified route patterns
  * @param skipRouteCheck - Function that returns true if the route should skip authentication
  */
-declare const runApiKeyAuthExcept: (skipRouteCheck: (path: string) => boolean) => hono7.MiddlewareHandler<{
+declare const runApiKeyAuthExcept: (skipRouteCheck: (path: string) => boolean) => hono6.MiddlewareHandler<{
   Variables: {
     executionContext: BaseExecutionContext;
   };
@@ -20,7 +20,7 @@ declare const runApiKeyAuthExcept: (skipRouteCheck: (path: string) => boolean) =
  * Helper middleware for endpoints that optionally support API key authentication
  * If no auth header is present, it continues without setting the executionContext
  */
-declare const runOptionalAuth: () => hono7.MiddlewareHandler<{
+declare const runOptionalAuth: () => hono6.MiddlewareHandler<{
   Variables: {
     executionContext?: BaseExecutionContext;
   };

package/dist/middleware/tenantAccess.d.ts

@@ -1,4 +1,4 @@
-import * as hono6 from "hono";
+import * as hono11 from "hono";
 
 //#region src/middleware/tenantAccess.d.ts
 
@@ -12,7 +12,7 @@ import * as hono6 from "hono";
  * - API key user: Access only to the tenant associated with the API key
  * - Session user: Access based on organization membership
  */
-declare const requireTenantAccess: () => hono6.MiddlewareHandler<{
+declare const requireTenantAccess: () => hono11.MiddlewareHandler<{
   Variables: {
     userId: string;
     tenantId: string;

package/dist/middleware/tracing.d.ts

@@ -1,7 +1,7 @@
-import * as hono2 from "hono";
+import * as hono9 from "hono";
 
 //#region src/middleware/tracing.d.ts
-declare const otelBaggageMiddleware: () => hono2.MiddlewareHandler<any, string, {}, Response>;
-declare const executionBaggageMiddleware: () => hono2.MiddlewareHandler<any, string, {}, Response>;
+declare const otelBaggageMiddleware: () => hono9.MiddlewareHandler<any, string, {}, Response>;
+declare const executionBaggageMiddleware: () => hono9.MiddlewareHandler<any, string, {}, Response>;
 //#endregion
 export { executionBaggageMiddleware, otelBaggageMiddleware };

package/dist/utils/signozHelpers.d.ts

@@ -1,8 +1,7 @@
 //#region src/utils/signozHelpers.d.ts
 /**
- * Helper function to enforce projectId filter on SigNoz queries.
- * This modifies the query payload to ensure all builder queries include
- * a server-side project.id filter, preventing client-side filter bypass.
+ * Enforces server-side filters on SigNoz builder queries.
+ * Scopes to known Inkeep services and prevents tenant/project filter bypass.
  */
 declare function enforceSecurityFilters(payload: any, tenantId: string, projectId?: string): any;
 //#endregion

package/dist/utils/signozHelpers.js

@@ -1,8 +1,8 @@
 //#region src/utils/signozHelpers.ts
+const ALLOWED_SERVICE_NAMES = ["inkeep-agents-api", "inkeep-agents-run-api"];
 /**
-* Helper function to enforce projectId filter on SigNoz queries.
-* This modifies the query payload to ensure all builder queries include
-* a server-side project.id filter, preventing client-side filter bypass.
+* Enforces server-side filters on SigNoz builder queries.
+* Scopes to known Inkeep services and prevents tenant/project filter bypass.
 */
 function enforceSecurityFilters(payload, tenantId, projectId) {
 	const modifiedPayload = JSON.parse(JSON.stringify(payload));
@@ -12,8 +12,18 @@ function enforceSecurityFilters(payload, tenantId, projectId) {
 			op: "AND",
 			items: []
 		};
-		query.filters.items = query.filters.items.filter((item) => item.key?.key !== "tenant.id" && item.key?.key !== "project.id");
+		query.filters.items = query.filters.items.filter((item) => item.key?.key !== "serviceName" && item.key?.key !== "tenant.id" && item.key?.key !== "project.id");
 		query.filters.items.push({
+			key: {
+				key: "serviceName",
+				dataType: "string",
+				type: "resource",
+				isColumn: true,
+				isJSON: false
+			},
+			op: "in",
+			value: ALLOWED_SERVICE_NAMES
+		}, {
 			key: {
 				key: "tenant.id",
 				dataType: "string",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@inkeep/agents-api",
-  "version": "0.0.0-dev-20260317081523",
+  "version": "0.0.0-dev-20260317180950",
   "description": "Unified Inkeep Agents API - combines management, runtime, and evaluation capabilities",
   "types": "dist/index.d.ts",
   "exports": {
@@ -74,10 +74,10 @@
     "pg": "^8.16.3",
     "undici": "^7.22.0",
     "workflow": "^4.2.0-beta.64",
-    "@inkeep/agents-core": "^0.0.0-dev-20260317081523",
-    "@inkeep/agents-email": "^0.0.0-dev-20260317081523",
-    "@inkeep/agents-mcp": "^0.0.0-dev-20260317081523",
-    "@inkeep/agents-work-apps": "^0.0.0-dev-20260317081523"
+    "@inkeep/agents-core": "^0.0.0-dev-20260317180950",
+    "@inkeep/agents-email": "^0.0.0-dev-20260317180950",
+    "@inkeep/agents-mcp": "^0.0.0-dev-20260317180950",
+    "@inkeep/agents-work-apps": "^0.0.0-dev-20260317180950"
   },
   "peerDependencies": {
     "@hono/zod-openapi": "^1.1.5",